wchang0222%aol.com
4868d7e8c2
Bugzilla bug 225373: the return value of CERT_NameToAscii must be freed
...
with PORT_Free.
Modified Files:
cmd/lib/secutil.c cmd/selfserv/selfserv.c
cmd/signver/pk7print.c cmd/strsclnt/strsclnt.c
cmd/tstclnt/tstclnt.c lib/certdb/cert.h
2003-11-13 16:10:45 +00:00
ian.mcgreer%sun.com
5c2c5888f9
ECC code landing.
...
Contributed by Sheuling Chang, Stephen Fung, Vipul Gupta, Nils Gura,
and Douglas Stebila of Sun Labs
2003-10-17 13:45:42 +00:00
nelsonb%netscape.com
8dd13ab659
Make tstclnt work with IPv6 addresses. Bug 161610.
2003-10-06 23:50:11 +00:00
nelsonb%netscape.com
1eb6b9c682
Further enhance the verbose debugging command line option in tstclnt
...
for the case where client auth is requested by the server. It will
now report the name of the cert sent to the server, or "send no cert".
2003-09-09 20:22:54 +00:00
nelsonb%netscape.com
ba44a2b994
Back out rev 1.27, which turned verbose mode on by default for debugging
...
QA test script failures that only occurred on tinderbox machines.
bug 207313 is now fixed.
2003-06-02 20:39:48 +00:00
nelsonb%netscape.com
d8286a7935
This patch does two things, one large and one small. Bug 207313.
...
1, It uses two new symbols SSOCK_FD and STDIN_FD instead of 0 and 1 to
reference members of the poll set array. I just could never remember whether
pollset[0] was the socket or was stdin. Now I don't have to remember.
This changes a lot of lines, but is very simple.
2. It implementa a new flag clientSpeaksFirst, set with the -f option.
The only effect of this flag is whether the value of
pollset[SSOCK_FD].in_flags is initially zero (if true) or PR_POLL_READ (if false). Note that pollset[SSOCK_FD].in_flags is set to PR_POLL_READ after
each succesful write to the socket.
2003-06-01 03:01:39 +00:00
nelsonb%netscape.com
93542dbdb9
Back out rev 1.28 to test some hypotheses about bug 207313.
2003-05-30 10:06:29 +00:00
nelsonb%netscape.com
d6507e92a9
All diagnostic output goes to stderr, not stdout. This change facilitates
...
investigation of bug 207313.
2003-05-28 02:11:17 +00:00
wtc%netscape.com
332454d9b1
Checked in more temporary debugging code for the strange QA failure on
...
Windows.
2003-05-25 19:19:28 +00:00
wtc%netscape.com
0c43efe373
Enabled verbose mode temporarily for debugging a strange QA failure on
...
Windows.
2003-05-25 04:16:03 +00:00
nelsonb%netscape.com
bf4cc8f8d1
Make tstclnt interactive on Windows. Bug 206031.
2003-05-22 04:34:38 +00:00
nelsonb%netscape.com
e38f5daae0
If the verbose option is given twice (e.g. -vv) and the server requests
...
client auhtentication, tstclnt will display the server's list of trusted
client CA names.
2003-05-17 05:38:01 +00:00
wtc%netscape.com
213a402f9d
Bug 134113: make NSS build on Win32 using GCC (MinGW). The patch
...
(attachment 121068) is contributed by Chris Seawood (cls@seawood.org ).
2003-04-20 04:23:37 +00:00
nelsonb%netscape.com
f87129ad87
Add support for Elliptic Curve Cryptography. Bug 195135.
...
Modified Files:
cmd/lib/SECerrs.h cmd/selfserv/selfserv.c
cmd/tstclnt/tstclnt.c lib/cryptohi/keyhi.h
lib/cryptohi/keythi.h lib/cryptohi/seckey.c
lib/cryptohi/secvfy.c lib/freebl/Makefile lib/freebl/blapi.h
lib/freebl/blapit.h lib/freebl/ldvector.c lib/freebl/loader.c
lib/freebl/loader.h lib/freebl/manifest.mn lib/nss/nss.def
lib/pk11wrap/pk11skey.c lib/pk11wrap/pk11slot.c
lib/softoken/lowkeyti.h lib/softoken/manifest.mn
lib/softoken/pkcs11.c lib/softoken/pkcs11c.c
lib/softoken/pkcs11t.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslcon.c lib/ssl/sslenum.c lib/ssl/sslimpl.h
lib/ssl/sslinfo.c lib/ssl/sslproto.h lib/ssl/sslsecur.c
lib/ssl/sslsock.c lib/ssl/sslt.h lib/util/secerr.h
lib/util/secoid.c lib/util/secoidt.h
Added Files:
lib/freebl/GFp_ecl.c lib/freebl/GFp_ecl.h lib/freebl/ec.c
lib/freebl/ec.h lib/softoken/ecdecode.c
2003-02-27 01:31:38 +00:00
bishakhabanerjee%netscape.com
985e092196
new revision: 1.19; previous revision: 1.18
2003-01-07 22:29:54 +00:00
nicolson%netscape.com
e179fe8904
Fix 164126: makefile build error.
...
Change the NSS module name from "security" to "nss".
2002-09-06 16:38:56 +00:00
nelsonb%netscape.com
eeff02773b
Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. Fix Usage.
2002-08-09 22:06:12 +00:00
relyea%netscape.com
7aa8e229f4
Bug 133584: Fix reference leaks which prevent shutdown in NSS and in the tests.
...
Debug builds can verify correct operation by setting NSS_STRICT_SHUTDOWN, which
will cause an assert if shutdown is called but not all the modules are freed (which
means a slot, key, or cert reference has been leaked).
2002-04-12 19:05:21 +00:00
nelsonb%netscape.com
e023b4422a
Change most coreconf and NSS makefiles to use OS_TARGET (which can
...
be overridden via an environment variable) rather than OS_ARCH.
This is a precursor to more flexibility in cross-platform builds.
Bug 104541.
2002-02-15 22:54:08 +00:00
nelsonb%netscape.com
9740e66d2f
Reimplement SSL_GetChannelInfo. Add new function SSL_GetCipherSuiteInfo().
...
Also, implement new ciphersuite preference order. Bug 78959.
2001-11-02 04:24:28 +00:00
nelsonb%netscape.com
cbf52380ab
Correct the test for length of data in SSL channel info struct.
2001-09-26 04:22:55 +00:00
nelsonb%netscape.com
c9558281fc
Add support for new TLS AES ciphersuites. Bug 87021.
2001-09-21 03:09:32 +00:00
relyea%netscape.com
1cdc9162cb
Fix compiler warnings.
2001-09-20 22:01:37 +00:00
nelsonb%netscape.com
943a907b01
Use new function SSL_GetChannelInfo(). Bugzilla bug 78959.
2001-09-18 02:02:05 +00:00
nelsonb%netscape.com
a8fd9268d1
Allow the 5 new DHE cipher suites to be selected with the -c command line
...
option. Facilitates testing of bug 95987.
2001-08-31 04:29:45 +00:00
wtc%netscape.com
365a4318af
Bugzilla bug 94685: deleted unused variable 'iter'.
2001-08-23 00:05:46 +00:00
wtc%netscape.com
f2143ac49e
Bugzilla bug 86528: have tstclnt exit with 254 (= -2 mod 256) where it
...
was exiting with -2 before so that old test script that expects 254
continues to work. r=larryh.
Modified Files: tstclnt.c sslauth.txt
2001-06-27 00:29:01 +00:00
wtc%netscape.com
7481a570da
Bugzilla bug #86528 : fixed tstclnt so that it always exits with a
...
nonnegative status. This way we can correctly extract its exit status on
Windows, so the temporary workaround in ssl.sh can be removed. Changed
sslauth.txt to match the new exit status of tstclnt. r=larryh.
Modified files:
cmd/tstclnt/tstclnt.c tests/ssl/ssl.sh tests/ssl/sslauth.txt
2001-06-25 19:53:16 +00:00
sonmi%netscape.com
07415aa237
cleanup after testclient -q successfully connected before exiting
2001-01-23 05:01:24 +00:00
nelsonb%netscape.com
14c87961d5
Add implementation of SSL_RSA_WITH_RC4_128_SHA SSL3 cipher suite,
...
which is not enabled by default. Bug 59795.
2001-01-13 02:05:15 +00:00
nelsonb%netscape.com
793dba6814
Stop using deprecated SSL functions. Convert them to the supported ones.
2001-01-06 02:40:02 +00:00
nelsonb%netscape.com
1311ab52d4
Changes to deal with exporting data from Windows DLLs.
...
SECHashObjects[] is no longer exported.
New function HASH_GetHashObject returns pointer to selected const object.
SSL statistics are now in a structure whose address is obtained via a
call to SSL_GetStatistics().
On NT, the new symbol NSS_USE_STATIC_LIBS must be declared in programs
that use the static SSL library.
Also, propagate "const" declaration for SECHashObjects.
2001-01-05 01:38:26 +00:00
nelsonb%netscape.com
317fd465f9
When disabling SSL2, also disable ssl2 compatible client hellos.
...
This allows us to test with TLS servers that don't grok ssl2 hellos.
2000-11-17 21:57:02 +00:00
mcgreer%netscape.com
993de1b485
add new ping command to usage
2000-11-09 19:17:04 +00:00
mcgreer%netscape.com
ede896e5fc
add "-q" option for creating a client which will "ping" the server until it
...
is available, or for 1 minute, whichever comes first
2000-11-09 18:29:52 +00:00
nelsonb%netscape.com
78d958f2e2
Add -v option. v means "verbose progress messages". Formerly, this
...
program was always very verbose. Now, it only outputs progress messages
when -v is specified. This is very useful for interactive use.
Cache statistics are written to stderr.
2000-10-13 00:50:05 +00:00
nelsonb%netscape.com
05b9dba846
When an invalid option is encountered, print the usage message and exit.
...
Previously, it would simply silently stop parsing options and the program
would continue to run, leading to false successes in coverage tests.
2000-10-09 23:39:46 +00:00
nelsonb%netscape.com
a57f63746a
Correct the implementation of the options for disabling SSL2, SSL3 and TLS.
...
Add a new -R option to selfserv, which disables detection of rollback from
TLS to SSL3.0. This is necessary for testing with broken TLS clients.
2000-05-24 03:44:50 +00:00
relyea%netscape.com
cf7b7608db
Update makefiles so NT will build. (and other platforms that don't have symbolic links)
2000-04-03 21:41:33 +00:00
relyea%netscape.com
9fd7059a19
Initial NSS Open Source checkin
2000-03-31 20:13:40 +00:00