Commit Graph

193 Commits

Author SHA1 Message Date
relyea%netscape.com
b81edc1838 Add HP to the platforms that handle restricted symbols 2001-01-07 00:25:29 +00:00
relyea%netscape.com
a1caf9ee0d Conform to the new .def rules 2001-01-06 23:52:11 +00:00
nelsonb%netscape.com
800d49e219 Remove 8 deprecated functions from export list. 2001-01-06 23:10:30 +00:00
relyea%netscape.com
69531a060f Merge UNIX and Win Data types 2001-01-06 21:36:59 +00:00
nelsonb%netscape.com
1962fdcb4f Remove declarations of SOCKS support functions, which have never worked
in NSS 3.x and are not supported.  Ifdef out declarations of deprecated
functions, since they are not exported by ssl3.dll.
2001-01-06 20:56:40 +00:00
relyea%netscape.com
c3228676cf 1) Add AIX to the exportted symbols controlled plaform.
2) reduce the exported symbol list down to one
2001-01-06 01:59:03 +00:00
nelsonb%netscape.com
f4895bd017 Use _WIN32 instead of _WINDOWS in windows-dependent ifdefs. 2001-01-05 23:53:38 +00:00
nelsonb%netscape.com
1311ab52d4 Changes to deal with exporting data from Windows DLLs.
SECHashObjects[] is no longer exported.
New function HASH_GetHashObject returns pointer to selected const object.
SSL statistics are now in a structure whose address is obtained via a
call to SSL_GetStatistics().
On NT, the new symbol NSS_USE_STATIC_LIBS must be declared in programs
that use the static SSL library.
Also, propagate "const" declaration for SECHashObjects.
2001-01-05 01:38:26 +00:00
wtc%netscape.com
4c72980500 Bugzilla bug #64238: removed the unnecessary inclusion of mcom_db.h from
cryptohi.h, pk11func.h, secpkcs7.h, and cms.h.  Some files now need to
include <errno.h>.  They were including <errno.h> indirectly through
mcom_db.h.
Modified Files:
	cmd/atob/atob.c cmd/btoa/btoa.c cmd/derdump/derdump.c
	lib/cryptohi/cryptohi.h lib/pk11wrap/pk11func.h
	lib/pkcs7/secpkcs7.h lib/smime/cms.h lib/ssl/sslsnce.c
2001-01-04 00:44:30 +00:00
larryh%netscape.com
351f30a205 Bugzilla: 64132. NSS lock instrumentation 2001-01-03 19:51:22 +00:00
wtc%netscape.com
1e4d956b10 Added the LIBRARY statements to the .DEF files.
Modified files: nss.def, smime.def, and ssl.def.
2001-01-03 01:31:10 +00:00
wtc%netscape.com
ed14a2aca7 Use mapfiles when building the nss, smime, and ssl shared libraries on
Solaris and Linux.
Modified files: nss/config.mk smime/config.mk ssl/config.mk
2000-12-29 07:13:20 +00:00
wtc%netscape.com
4f92128074 Added mapfiles for libnss3.so, libsmime.so, and libssl3.so. The linkers
on Solaris and Linux support mapfiles (also called version scripts).
Added Files:
    nss/mapfile smime/mapfile ssl/mapfile
2000-12-29 06:07:06 +00:00
wtc%netscape.com
f77af3ca2a I found that the Windows linker 'link' pulls from an archive library only
the object files needed to resolve referenced symbols, so we will need to
link with the objects directly as we do on Unix.  As a result, nss3.dll
needs to export more (PKCS7) symbols, needed by the new PKCS12 objects
that are linked into smime3.dll.
Modified Files:
    coreconf/rules.mk nss/lib/nss/config.mk
    nss/lib/smime/config.mk nss/lib/ssl/config.mk
2000-12-29 02:47:16 +00:00
wtc%netscape.com
007933d882 Built nss3.dll, smime3.dll, and ssl3.dll on Windows. Note that we do
not want the "32" in the DLL names that coreconf adds by default.  We
use module-definition (.DEF) files to control the exported symbols.
Made pkcs7 part of nss3.dll to temporarily work around circular dependency
between nss3.dll and smime3.dll (certread.c depends on some PKCS7 symbols).
Modified files: lib/nss/config.mk, lib/smime/config.mk, lib/ssl/config.mk
2000-12-29 01:16:56 +00:00
wtc%netscape.com
e424fb6173 Added Windows module-definition (.DEF) files for nss, smime, and ssl
shared libraries.
Added files: nss.def, smime.def, ssl.def
2000-12-29 00:57:17 +00:00
relyea%netscape.com
065da8f734 Shared library changes.
Three directories pull the NSS libraries together into a three shared libaries:
nss, ssl, and smime. Symbols need to be exported by the DLL from the imported
libraries are defined in XXX/XXXsym.c Library linkage is controlled by
XXX/config.mk
2000-12-22 17:16:24 +00:00
nelsonb%netscape.com
8c2b42042f In ssl3_GatherData, the value of gs->inbuf.len was incorrect during the
GS_HEADER state.  It should be correct in all states.
In ssl_DestroyGather, prior to freeing the buffers, the code zeroed out
the ciphertext buffer.  It now zeros out the plaintext buffer instead.
2000-12-02 00:54:01 +00:00
nelsonb%netscape.com
686aa7a151 Release the SpecRead Lock before returning in an error path.
This bug was found while reading code looking for a different bug.
2000-11-10 01:36:26 +00:00
nelsonb%netscape.com
fdd0021538 With this change, SSL will not crash if the next lower layer's Recv
function returns more data than we asked for.  SSL will turn that event
into a PR_BUFFER_OVERFLOW_ERROR error.  iWS team asked for this.
2000-10-07 02:22:22 +00:00
nelsonb%netscape.com
c37f533589 The SSL client cache timeout values for SSL2 and SSL3 were reversed.
This caused all SSL3 sessions to timeout after 100 seconds. Bug 55231.
2000-10-05 23:10:14 +00:00
wtc%netscape.com
906deebf85 Bugzilla bug #54711: fixed a typo. Thanks to hctrinh@us.ibm.com
(Huynh Trinh) for the patch.
2000-10-01 03:17:56 +00:00
relyea%netscape.com
9bd5c43fa0 OS/2 build changes. 2000-09-20 17:07:22 +00:00
wtc%netscape.com
0ccd4053f0 Bugzilla bug #52404: FreeBSD doesn't have cuserid() either. Thanks to
Thomas Stromberg <tstromberg@rtci.com> for the bug report.
2000-09-19 06:05:28 +00:00
nelsonb%netscape.com
574fcbedd2 Fix bug 52396. Don't compile case ENOSR on platforms that don't have it. 2000-09-18 19:53:59 +00:00
nelsonb%netscape.com
4df4541965 Remove duplicate PORT_Free call. Fix bug 52633. 2000-09-14 20:25:26 +00:00
jgmyers%netscape.com
51e59fccb4 support IPv6 in ssl: bug 48657 r=nelsonb 2000-09-12 20:15:44 +00:00
nelsonb%netscape.com
ed8cacc2c9 Stop using "reserved" fields of PRIOMethods by name. Fixes bug 52092. 2000-09-11 22:37:12 +00:00
nelsonb%netscape.com
d856a6e4f8 Create a new function, CERT_DupCertList(), and call it instead of calling
CERT_CertChainFromCert in ssl_DupSocket().  This is MUCH faster.  This is
the first approximation of the right fix.  The next step is to consider
doing ref counting instead of actual duplication.  Fixes bug 51425 .
2000-09-09 06:08:46 +00:00
nelsonb%netscape.com
6547254b53 If an application calls SSL_SetURL on an NSPR FD that has NOT had SSL
"imported" into it, SSL_SetURL will crash.  This change fixes that.
2000-09-07 19:01:48 +00:00
nelsonb%netscape.com
2d0c9ab694 Attempt to prevent certain NSS internal error codes from being seen by
applications that use SSL sockets.  These include:
SEC_ERROR_EXTENSION_NOT_FOUND and SSL_ERROR_SESSION_NOT_FOUND
2000-09-07 03:35:31 +00:00
nelsonb%netscape.com
6449cf0e9f Emulate an SSL3 client more closely after a server negotiates down to 3.0. 2000-08-08 22:54:02 +00:00
nelsonb%netscape.com
9d2744f5ce Carry forward fix from NSS 2.8 for servers that don't do ssl2. 2000-06-06 20:32:18 +00:00
nelsonb%netscape.com
34ae72b37f Simplify and speed up client cache expiration detection. 2000-05-24 19:28:27 +00:00
nelsonb%netscape.com
0ea2ec3f99 Fix the logic in client and server to detect version roll-back attack,
rolling back from TLS (SSL 3.1) to SSL 3.0.  Provide a new SSL socket
option to disable roll-back detection in servers, since certain TLS
clients are doing it incorrectly.
2000-05-24 03:35:23 +00:00
nelsonb%netscape.com
d14a82cbb8 Changes in support of corrected TLS rollback detection. 2000-05-24 03:31:44 +00:00
mcgreer%netscape.com
5ca43c9e50 Changing MIN's and MAX's to PR_MIN, PR_MAX 2000-05-18 15:32:18 +00:00
nelsonb%netscape.com
db1c7e8b35 Changes to ssl_EmulateSendFile suggested by Wan-Teh.
See http://bugzilla.mozilla.org/show_bug.cgi?id=39011
2000-05-18 01:32:53 +00:00
nelsonb%netscape.com
401cd644f6 In ssl3_GenerateSessionKeys() ensure params secitem always points to valid
CK_SSL3_MASTER_KEY_DERIVE_PARAMS structure.  Bugzilla bug 39682.
2000-05-18 00:41:38 +00:00
relyea%netscape.com
9da670d592 Only output caching if we turn tracing on. 2000-05-16 17:28:31 +00:00
dougt%netscape.com
7dc028cf1e Minor changes to fix mac build bustages. 2000-05-12 18:43:28 +00:00
nelsonb%netscape.com
e65d9f2223 Small optimization for RSA Server Key exchange message. Uses fewer PK11_
calls to do the job. Also, plug one mem leak in Fortezza code.
2000-05-08 23:55:05 +00:00
relyea%netscape.com
9fd7059a19 Initial NSS Open Source checkin 2000-03-31 20:13:40 +00:00