julien.pierre.bugs%sun.com
49a5cedc08
Fix for 176705 - fix rpath on AMD64 platform. r=saul, sr=wtchang
2005-03-09 23:04:49 +00:00
neil.williams%sun.com
5431bc6445
r=nelson Bug=263779
2005-03-09 23:02:48 +00:00
nelsonb%netscape.com
d126b39b34
Do not crash if Server SID cache is uninitialized. Bug 237724 r=Julien
...
Instead, if SSL_NO_CACHE is not set, return an error code.
2005-03-09 05:20:44 +00:00
nelsonb%netscape.com
f6cd864211
Correctly print cert request attributes in pp. Bug 284191. r=neil.williams
2005-03-08 01:20:04 +00:00
julien.pierre.bugs%sun.com
0923544a58
Fix for bug 283761 - use of memset in selfserv is inefficient. r=nelson
2005-02-26 04:57:32 +00:00
wtchang%redhat.com
e180302d71
Bugzilla Bug 282527: fixed a bug that prevented certutil from generating
...
a cert with multiple DNS names in the subjectAltName extension. The patch
is contributed by Neil Williams of Sun. r=wtc.
2005-02-23 23:44:09 +00:00
wtchang%redhat.com
07d5483970
Bugzilla Bug 282367: Export CERT_DestroyUserNotice from the nss shared
...
library. Added a CERT_DestroyUserNotice call to cmd/lib/pppolicy.c to
fix a leak of CERTUserNotice. r=nelsonb.
Modified Files: lib/nss/nss.def cmd/lib/pppolicy.c
2005-02-22 20:02:22 +00:00
neil.williams%sun.com
a7dcc795a8
Bug#:280602 Added list option to pk12uti, test for it.
...
r=nelson@bolyard.com
2005-02-08 01:04:50 +00:00
gerv%gerv.net
f45b5900c8
Bug 236613: change to MPL/LGPL/GPL tri-license.
2005-02-02 22:28:27 +00:00
wtchang%redhat.com
82b1183c84
Bugzilla Bug 267158: removed the $Name$ RCS keyword from our source files.
...
This keyword adds noise to the output of "ident libnss3.so | grep NSS"
on our debug build, and appears to cause spurious CVS conflicts. r=nelsonb.
2005-01-20 02:25:51 +00:00
julien.pierre.bugs%sun.com
7bcac0c35b
Check for NULL PRFileDesc before closing them . r=saul,nelson
2004-12-07 06:25:34 +00:00
wchang0222%aol.com
896b606026
Removed a useless makefile rule.
2004-11-05 02:46:09 +00:00
wchang0222%aol.com
382316cb4d
Define the macro 'verbose' as -1 to turn all all zlib trace messages in
...
debug builds. This is to be consistent with our modifications to the old
zlib (Bugzilla bug 131826).
2004-11-04 16:23:19 +00:00
wchang0222%aol.com
37654a1a9c
Removed the definition of 'errno' as a global variable for WinCE. Our
...
WinCE port implements 'errno' as thread local storage.
2004-11-04 06:14:23 +00:00
wchang0222%aol.com
f4dfeee106
The test programs $(PROGRAMS) need to be added to TARGETS, otherwise
...
they won't get built and the libs target will fail trying to install them.
2004-11-04 06:09:24 +00:00
wchang0222%aol.com
1540a23e93
Added makefile rules to build the test programs (example and minigzip) and
...
the test target to run the tests.
Modified Files: Makefile config.mk manifest.mn
2004-11-03 02:17:04 +00:00
wchang0222%aol.com
bf8833c4b9
Bugzilla bug 131826: upgraded to zlib 1.2.2. a=relyea,jpierre.
...
Modified Files:
README adler32.c compress.c config.mk crc32.c deflate.c
deflate.h example.c gzio.c inffast.c inffast.h inffixed.h
inflate.c inftrees.c inftrees.h manifest.mn minigzip.c trees.c
uncompr.c zconf.h zlib.h zutil.c zutil.h
Added Files:
crc32.h infback.c inflate.h
Removed Files:
infblock.c infblock.h infcodes.c infcodes.h infutil.c
infutil.h makefile.win maketree.c netscape_mods.doc zip16.def
2004-11-02 23:40:10 +00:00
julien.pierre.bugs%sun.com
358d31e347
Fix for 266940 . increase MAX_THREADS in selfserv
2004-10-31 00:22:56 +00:00
julien.pierre.bugs%sun.com
c2ba47a939
Fix for 265504 - cmsutil dumps core with invalid option set. r=wtc
2004-10-22 22:39:47 +00:00
julien.pierre.bugs%sun.com
ff3b02711f
Remove unused variable
2004-10-07 04:14:18 +00:00
julien.pierre.bugs%sun.com
e5604f6a11
Include secmodi.h for SECMOD_NewListLock
2004-10-07 04:08:16 +00:00
julien.pierre.bugs%sun.com
604d7f6c98
Remove unused variable
2004-10-07 04:04:25 +00:00
julien.pierre.bugs%sun.com
61e303f6e7
Remove unused variables
2004-10-07 04:03:35 +00:00
julien.pierre.bugs%sun.com
fc043a3854
initialize variable
2004-10-07 03:57:19 +00:00
julien.pierre.bugs%sun.com
ed405e7ea1
Remove unused variables
2004-10-07 03:56:37 +00:00
julien.pierre.bugs%sun.com
acc95e4dd9
Remove unused variable
2004-10-07 03:55:25 +00:00
julien.pierre.bugs%sun.com
1fce2635d0
Avoid divide by zero iteration
2004-10-01 03:19:30 +00:00
wchang0222%aol.com
202405c65b
Print the error message if NSS_NoDB_Init fails.
2004-09-30 00:49:36 +00:00
nelsonb%netscape.com
5178c6777b
Fix bugzilla bug 261496. Absent OPTIONAL CHOICEs should not cause fatal
...
errors. Fix printing code to not crash on missing optional nextUpdate.
r=julien.pierre
2004-09-27 22:41:41 +00:00
saul.edwards%sun.com
ca0a1ce2ad
245518: Add /usr/lib/mps to RPATH for tools.
2004-09-17 21:59:04 +00:00
relyea%netscape.com
c2b70291da
1) Add time command to time specific functions.
...
2) improve the help system.
3) bug fixes for arrays.
2004-07-30 00:25:21 +00:00
relyea%netscape.com
b4b4a3f900
Error strings for new error codes.
2004-07-30 00:19:49 +00:00
nelsonb%netscape.com
20e64eb7e5
Correct option parsing, and add missing error messages.
2004-07-28 21:10:07 +00:00
nelsonb%netscape.com
c55043fc52
Support GeneralizeTime in the CRMF library. Bug 219080. r=julien.
...
Patch by nelson and julien.
2004-07-27 05:06:02 +00:00
nelsonb%netscape.com
371f19c6b9
Use the "c beautifier" (cb) to give this code a common K&R style with
...
an indentation of 4. Also rewrap a few strangely wrapped lines.
Bug 249330.
2004-07-16 00:04:47 +00:00
nelsonb%netscape.com
2ed86b689a
Apply review feedback to signtool sources. Add test case to QA tests.
...
Bug 248751.
2004-07-15 22:21:57 +00:00
nelsonb%netscape.com
07c4feeb45
Add -X option to produce signed XPI files for mozilla. Bug 248751.
...
Path contributed by jeff klawiter <jeff@j-maxx.net>. r=nelson
2004-07-15 00:01:50 +00:00
nelsonb%netscape.com
e054aef7bf
Output properly encoded PQGParams. r=wtc. Bug 247738.
2004-07-01 02:07:02 +00:00
jpierre%netscape.com
309d389ab8
Fix for 249310 - add option to disable SSL2 in selfserv . r=nelson
2004-07-01 02:06:31 +00:00
nelsonb%netscape.com
35ab44f5ac
Fix certutil's ability to read PQG files. Make certutil able to read
...
the files produced by the command "makepqg -a". Plug some memory leaks.
r=relyea,vipul Bug 247739
2004-06-23 22:23:00 +00:00
saul.edwards%sun.com
172f3b4cbc
Bug 245518: add RPATH to BUILD_SUN_PKG, add $ORIGIN to rpath
2004-06-19 06:09:03 +00:00
nelsonb%netscape.com
6edf60ce5c
Make crmftest compile and run with NSS 3.10 shared libraries.
...
Enhance the command line parsing to permit portions of the tests
to be individually selected. The code still doesn't all run
to completion without errors, but it gets MUCH farther than before.
Bug 244329.
2004-06-03 03:56:48 +00:00
nelsonb%netscape.com
f2dedf230d
a) adds the missing code to put stdin into binary mode.
...
b) add the -i option to the usage message
c) builds addbuiltins with shared libs
(includes "nssrenam.h" for some symbols)
d) build addbuiltins as part of the normal builds.
2004-05-25 21:47:44 +00:00
nelsonb%netscape.com
ed9a466108
Fix crash when array member is used as variable. Bug 243655. r=relyea.
2004-05-22 01:24:22 +00:00
nelsonb%netscape.com
81bf125709
Add missing license block. Wrap long lines. Bug 243580. r=relyea.
2004-05-22 00:56:46 +00:00
ian.mcgreer%sun.com
be72ca16c5
bug 180268, reimplement ssl step-up for builtins
2004-05-17 20:08:38 +00:00
wchang0222%aol.com
081ede0ac7
Bugscape bug 57081: If the make variable NISCC_TEST is defined at build
...
time, add -DNISCC_TEST to the compile command line. The NISCC_TEST macro
enables special code that's conditionally compiled for NISCC testing.
Modified Files:
cmd/smimetools/Makefile cmd/smimetools/cmsutil.c
lib/ssl/config.mk lib/ssl/manifest.mn
2004-05-13 01:29:15 +00:00
relyea%netscape.com
5d4e32454a
scripts for pk11util
2004-05-12 23:49:39 +00:00
ian.mcgreer%sun.com
1d3c78cf5a
program for generating FIPS algorithm test results
2004-05-12 17:30:31 +00:00
relyea%netscape.com
1d997eb6cd
Fix mechanism command.
2004-05-05 00:36:52 +00:00
gerv%gerv.net
9bd361a285
Bug 236613: change to MPL/LGPL/GPL tri-license. Restore Id: lines.
2004-04-27 23:04:40 +00:00
gerv%gerv.net
3634d4d94b
Bug 236613: change to MPL/LGPL/GPL tri-license.
2004-04-25 15:03:26 +00:00
relyea%netscape.com
d5abab03d4
Program to decrypt passwords inline from prefs files
2004-03-23 00:46:38 +00:00
relyea%netscape.com
70a5776e59
Fix arrays handling strings, and help
2004-03-13 02:44:26 +00:00
jpierre%netscape.com
9383b61a6e
Fix for bug 143456 - add -P option for dbprefix to selfserv . r=MisterSSL
2004-03-10 02:47:13 +00:00
nelsonb%netscape.com
7debba55ce
Import base64 encoded certificate files with old MAC line endings.
...
Bug 221272. sr=wtc.
2004-02-16 23:52:46 +00:00
wchang0222%aol.com
46de977590
Removed unused function _OS_SELECT for AIX. Thanks to Philip K. Warren
...
<pkw@us.ibm.com> for reporting this.
2004-02-13 03:13:04 +00:00
jpierre%netscape.com
42b100808b
Fix strings in SECU_PrintError. bug 233493
2004-02-12 02:08:59 +00:00
jpierre%netscape.com
2703a27453
Fix for bug 233605 . Check CRL entry extensions after partial decoding. Also add some new CRL decoding errors. r=nelsonb
2004-02-11 06:05:18 +00:00
jpierre%netscape.com
560beb63f1
Fix for 233493 . Corrections based on Wan-Teh's feedback.
2004-02-11 05:27:32 +00:00
jpierre%netscape.com
13dcfd3e4c
Fix for 233493 - fix symkeyutil build on OS/2. r=relyea
2004-02-10 23:48:37 +00:00
wchang0222%aol.com
bab3c2af5e
Bugzilla bug 233319: prepend, rather than append, the NSS lib and bin
...
directories to PATH. r=relyea.
2004-02-09 22:39:11 +00:00
wchang0222%aol.com
5c995a5d18
Bugzilla bug 233239: do not include cmd/zlib and cmd/lib headers and
...
libraries in NSS binary releases.
Modified Files:
lib/Makefile lib/manifest.mn makepqg/manifest.mn zlib/Makefile
zlib/manifest.mn
2004-02-07 00:26:02 +00:00
wchang0222%aol.com
ce288b37c7
Bugzilla bug 233112: fixed a typo: "futuer" -> "future". Thanks to
...
Heikki Toivonen <hjtoi-bugzilla@comcast.net> for the bug report.
2004-02-05 05:56:54 +00:00
nelsonb%netscape.com
3f581fae9e
Max crlutil return 0 or 1 correctly, depending on the success of the
...
operation. Bug 232937. r=jpierre.
2004-02-03 06:59:35 +00:00
nelsonb%netscape.com
50f63ee713
Invoke SECU_RegisterDynamicOids() so that more OIDs will print out.
...
Bug 132942. a=wtc.
2004-01-29 22:48:58 +00:00
nelsonb%netscape.com
792e8d1e9e
Bug 132942. r=wtc
...
Make the following enhancements to NSS's ASN.1 printing code:
- Print warning messages that are properly indendented.
- PrintAsHex notices when the buffer contains entirely printable characters, and is larger than an int, and prints it as text in that case.
- PrintRawString now indents the string, rather than always printing it on
a separate line.
- now prints decoded bit strings
- now prints BMP (UCS2) strings as strings (not as hex) when they contain only printable ASCII characters.
- now prints Universal (UCS4) Strings as strings (not hex) when they contain only printable ASCII characters.
- Decodes certain encoded data that was previously printed as hex.
- Generically decodes ASN.1 data, rather than merely printing an error, when the ASN.1 data doesn't fit a known template.
- properly handles all optional components of basic constraints extensions.
- Prints the names of the bits in the X509 Key Usage extension.
- Prints General Names.
- Print Auth Key ID extensions
- Print subject and issuer alt name extensions
- Print CRL distribution points extensions
- format and print name constraints extensions
- print Authority Information Access extensions
- Print optional X509v2 subject and issuer Unique ID bit strings
2004-01-29 22:45:20 +00:00
nelsonb%netscape.com
6d506e4aea
Export cert functions that decode extensions and traverse decoded
...
extensions. Bug 231881. r= relyea, wtc.
2004-01-28 23:23:45 +00:00
nelsonb%netscape.com
978fc338e7
Change program return value to reflect test outcome. Bug 221737. r=wtc
2004-01-28 22:30:27 +00:00
jpierre%netscape.com
a5aaee4048
Fix for 231051 - crlutil asserts after deleting CRL. r=wtc, nelsonb
2004-01-28 01:17:13 +00:00
nelsonb%netscape.com
d45b087145
Add -a option for Base64 encoded ASCII input and output.
...
The -i and -o options now understand "-" to mean stdin and stdout.
Usage is displayed when -? or no arguments are given.
Bug 231536. r=relyea.
2004-01-22 22:08:59 +00:00
nelsonb%netscape.com
b45bc04f3b
Fix some erronous code that set SEC_ERROR_NO_MEMORY when there had been
...
no memory failure. r=relyea. Bug 231566
2004-01-22 02:17:26 +00:00
jpierre%netscape.com
f10a7a4ffd
Support GeneralizedTime in NSS tools. bug 210530. r=wtc
2004-01-21 01:15:01 +00:00
nelsonb%netscape.com
14ff763caa
Use the results from PK11_ProtectedAuthenticationPath(slot) in the
...
password callback function. Bug 229023. r=relyea. verified by submittor.
2004-01-21 00:18:59 +00:00
nelsonb%netscape.com
b35fce94e4
Make this code build on Windows as well as Unix.
2004-01-19 01:05:53 +00:00
nelsonb%netscape.com
5dea4e12cf
Add vfychain to list of NSS cmds being built nightly. r=wtc. Bug 231025
2004-01-16 02:03:08 +00:00
relyea%netscape.com
49152980bd
Tool to manage pkcs 11 module tests.
2004-01-14 21:34:20 +00:00
nelsonb%netscape.com
0a29c7fe2b
Fix double free introduced in rev 1.54. r=wtc. bug 230774.
...
Bug occurs only in NSS utilities that import base64 encoded files, e.g.
with the -a option.
2004-01-14 01:19:26 +00:00
jpierre%netscape.com
70f0bbf00d
Rename CERT_DecodeTimeChoice/CERT_EncodeTimeChoice to DER_DecodeTimeChoice/DER_EncodeTimeChoice
2004-01-07 23:07:24 +00:00
wchang0222%aol.com
1550e4ab3e
Removed unused variable 'val'.
2003-12-23 21:40:52 +00:00
wchang0222%aol.com
010acd81c1
PK11_MoveKey was renamed PK11_MoveSymKey. r=relyea.
...
Modified Files: symkeyutil.c nss.def pk11func.h pk11skey.c
2003-12-19 23:29:43 +00:00
nelsonb%netscape.com
b41986df1b
Fix S/MIME bugs that caused parallel arrays of digest OIDs and digest
...
values to become out of sync. Bugscape bug 54256. r=relyea.
Modified Files: cmd/smimetools/cmsutil.c lib/smime/cmsdigest.c
2003-12-12 23:55:06 +00:00
nelsonb%netscape.com
2b4825491c
Add new -k option to NSS QA test program cmsutil. By default, cmsutil
...
will no longer add any decoded certs to the cert db file, which is
useful for reproducibility of results in QA scripts.
Bugscape bug 54293. r=relyea,jpierre,wtc
2003-12-06 06:31:08 +00:00
nelsonb%netscape.com
8cc8dfcdf3
This patch reduces the scope of many variables in cmsutil's decode function. It frees the signer's CN string after use.
...
Bugscape bug 54021. r=jpierre
2003-11-25 23:26:39 +00:00
nelsonb%netscape.com
0fa7d0adc8
Implement new "batch mode" (see the -b option). Plug some leaks.
...
Facilitates memory leak testing of the SMIME library.
This revision combines the patches for Bugzilla bug 225513 and
Bugscape bug 53775. r = relyea and wchang0222
2003-11-20 02:33:18 +00:00
wchang0222%aol.com
c7610ca80e
Bugzilla bug 222568: fixed a bug introduced in rev. 1.54.
2003-11-19 01:38:26 +00:00
nelsonb%netscape.com
c4ce0736e8
Fix unnecessary assertion failures occuring in SMIME testing in
...
debug builds only. Partial fix for bugscape bug 53775. r=wchang0222
2003-11-18 06:16:26 +00:00
wchang0222%aol.com
3569f15993
Removed an extraneous comma (,) at the end of an enum type definition.
2003-11-15 16:15:01 +00:00
nelsonb%netscape.com
b904b47318
Detect empty emailAddr strings in CERTCertificates. Bugzilla bug 211540.
...
Modified Files:
cmd/dbck/dbck.c cmd/signtool/util.c lib/certdb/certdb.c
lib/certdb/stanpcertdb.c lib/pkcs7/p7decode.c lib/pki/certificate.c
lib/pki/pki3hack.c lib/smime/cmssiginfo.c lib/softoken/pkcs11u.c
2003-11-15 00:10:01 +00:00
relyea%netscape.com
a157ed2b26
Fix windows breakage.
2003-11-14 18:06:50 +00:00
relyea%netscape.com
aa736fe5ed
Add symkeyutil to the manifest file
2003-11-14 03:27:23 +00:00
relyea%netscape.com
4f0cd96574
New tool to manage fixed keys in the database.
2003-11-14 03:26:47 +00:00
nelsonb%netscape.com
aa085e7956
Fix bugzilla bug 225301. r=jpierre. This patch does the following:
...
1. Fixes the Usage message to document the command line options.
2. Changes the "decode" function to
a) report an error on bad signatures, only when decoding the input file,
not when decoding an ancillary "enveloped file".
b) only output the contents of the "detached content" file (-c option)
when that file's content was actually used in the computation.
3. Sundry other cleanup and added comments.
2003-11-13 23:03:12 +00:00
wchang0222%aol.com
4868d7e8c2
Bugzilla bug 225373: the return value of CERT_NameToAscii must be freed
...
with PORT_Free.
Modified Files:
cmd/lib/secutil.c cmd/selfserv/selfserv.c
cmd/signver/pk7print.c cmd/strsclnt/strsclnt.c
cmd/tstclnt/tstclnt.c lib/certdb/cert.h
2003-11-13 16:10:45 +00:00
wchang0222%aol.com
dd7a8790e8
Added a comment to note a question I had while reviewing the code.
2003-11-12 23:25:33 +00:00
jpierre%netscape.com
c8ebc52544
Fix crash in certutil if usage is omitted
2003-11-11 00:01:32 +00:00
nelsonb%netscape.com
0feb5dfd5f
Fix numerous errors (mostly off-by-1 errors) in the code that formats
...
and prints certs and CRLs. This code is common to certutil and pp.
Bug 222568 r=nicholson (for this portion).
2003-11-04 02:16:42 +00:00
nelsonb%netscape.com
bc763436c5
Better cleanup. Plug leaks in pp. bug 222568. r=nicolson (this part).
2003-11-04 01:51:54 +00:00
jpierre%netscape.com
1a37e6c822
Fix for 223494 - cmsutil signing does not work with hardware tokens. r=wtc, relyea
2003-10-28 02:34:15 +00:00
wchang0222%aol.com
76cb52bad5
Bugzilla bug 223624: removed an extraneous format string for fprintf.
...
r=nelsonb.
2003-10-25 14:05:08 +00:00
wchang0222%aol.com
8cfbd7293c
Bugzilla bug 223624: node->error is a 'long', so it should match a %ld
...
format. r=nelsonb.
2003-10-25 14:01:43 +00:00
wchang0222%aol.com
e4c6ee1dbb
Removed the nonexistent directory 'rngtest' from DIRS.
2003-10-24 06:22:58 +00:00
nelsonb%netscape.com
b6e5abc24b
Add new -N option, which completely suppresses the initialization and use
...
of the SSL server session ID cache. Used to test the fix for bug 222726.
2003-10-19 05:18:11 +00:00
ian.mcgreer%sun.com
5c2c5888f9
ECC code landing.
...
Contributed by Sheuling Chang, Stephen Fung, Vipul Gupta, Nils Gura,
and Douglas Stebila of Sun Labs
2003-10-17 13:45:42 +00:00
jpierre%netscape.com
8963533a51
Fix for bug 222180 . remove redundant code
2003-10-15 01:40:10 +00:00
jpierre%netscape.com
4efbc18260
Fix for bug 222180 . Change to quick decoder . r=wtc
2003-10-15 01:34:22 +00:00
nelsonb%netscape.com
159d38edba
This file has been dead code since NSS 3.4 released, if not sooner.
2003-10-11 01:10:51 +00:00
relyea%netscape.com
df0d80f9a5
Bug 203866
...
Make unloaded modules visible for administrative purposes.
sr=wtc r=nelson
2003-10-10 15:29:43 +00:00
jpierre%netscape.com
7f696b676c
Fix for bug 55898 - print name of certificate causing failure in certutil . r=wtc
2003-10-08 01:00:37 +00:00
nelsonb%netscape.com
8dd13ab659
Make tstclnt work with IPv6 addresses. Bug 161610.
2003-10-06 23:50:11 +00:00
nelsonb%netscape.com
7fab02474b
Check for presence of secmod.db file prior to acting on it, for all
...
cases except "multiaccess:". Bug 220217. r=relyea
2003-10-06 23:33:03 +00:00
jpierre%netscape.com
347ed6b99f
Fix for bug 94413 - OCSP needs more fine tuned error messages. r=wtc
2003-09-30 01:18:55 +00:00
jpierre%netscape.com
79d90909dc
Fix for bug 219539 - support GeneralizedTime in NSS tools
2003-09-27 00:01:45 +00:00
jpierre%netscape.com
e608b7e0f4
Fix for bug 219539 - support GeneralizedTime in NSS tools
2003-09-26 06:18:40 +00:00
nelsonb%netscape.com
7bff061d97
Fix usage message to list all commands. Also, fix a few lines of
...
code that did not follow the file's convention for indentation.
Bug 203870.
2003-09-24 21:49:49 +00:00
nelsonb%netscape.com
aeaa70ccff
Correctly compute certificate fingerprints. Bug 220016.
2003-09-23 02:05:47 +00:00
jpierre%netscape.com
945c4207d2
Fix for 215182 - certutil prints incorrect nickname. r=wtc
2003-09-23 00:10:54 +00:00
jpierre%netscape.com
ac38bd8aeb
Fix for 215214 - make certutil show all instances of certs . r=wtc
2003-09-18 02:00:32 +00:00
nelsonb%netscape.com
1eb6b9c682
Further enhance the verbose debugging command line option in tstclnt
...
for the case where client auth is requested by the server. It will
now report the name of the cert sent to the server, or "send no cert".
2003-09-09 20:22:54 +00:00
jpierre%netscape.com
8af297a802
Prevent crash if certlist is NULL
2003-09-09 00:54:20 +00:00
jpierre%netscape.com
bebd4ca8a9
Fix bug 214307 - add certutil batch mode . r=wtc
2003-09-08 23:30:29 +00:00
nelsonb%netscape.com
ba44a2b994
Back out rev 1.27, which turned verbose mode on by default for debugging
...
QA test script failures that only occurred on tinderbox machines.
bug 207313 is now fixed.
2003-06-02 20:39:48 +00:00
nelsonb%netscape.com
d8286a7935
This patch does two things, one large and one small. Bug 207313.
...
1, It uses two new symbols SSOCK_FD and STDIN_FD instead of 0 and 1 to
reference members of the poll set array. I just could never remember whether
pollset[0] was the socket or was stdin. Now I don't have to remember.
This changes a lot of lines, but is very simple.
2. It implementa a new flag clientSpeaksFirst, set with the -f option.
The only effect of this flag is whether the value of
pollset[SSOCK_FD].in_flags is initially zero (if true) or PR_POLL_READ (if false). Note that pollset[SSOCK_FD].in_flags is set to PR_POLL_READ after
each succesful write to the socket.
2003-06-01 03:01:39 +00:00
wtc%netscape.com
ce11300ca6
Bug 206926: 1. Undo the changes to secrng.h, pqgutil.h, swfutl.c,
...
unix_rand.c, and win_rand.c. 2. Make secrng.h and pqgutil.h private.
3. Public header pk11pqg.h can't include private header pqgutil.h.
4. Many files don't need to include secrng.h. A few don't need to include
pqgutil.h. 5. Remove duplicate declarations of PQG_DestroyParams and
PQG_DestroyVerify from blapi.h.
2003-05-30 23:31:32 +00:00
kirk.erickson%sun.com
52f15c0d08
Resolves bug 206971 - selfserv should OptimizeSpeed (use NSS_Initialize).
...
Both selfserv and strsclnt no longer OptimizeSpace. Moved SECMOD_DB
defines from nssinit.c to nss.h, make it availble for public use with
NSS_Initialize().
2003-05-30 17:25:13 +00:00
nelsonb%netscape.com
93542dbdb9
Back out rev 1.28 to test some hypotheses about bug 207313.
2003-05-30 10:06:29 +00:00
nelsonb%netscape.com
a4d31ce381
Add -3 and -T options, with same meaning as in tstclnt and selfserv,
...
disabling SSL3 and TLS respectively. With this change, the QA stress
tests that say they're testing SSL3 or TLS can finally test what they
claim they are testing.
2003-05-30 05:35:52 +00:00
nelsonb%netscape.com
d6507e92a9
All diagnostic output goes to stderr, not stdout. This change facilitates
...
investigation of bug 207313.
2003-05-28 02:11:17 +00:00
wtc%netscape.com
b10e3c77d3
Bug 206926: certcgi.c should not include blapi.h. Use the PK11_PQG_
...
functions instead.
2003-05-28 00:47:47 +00:00
wtc%netscape.com
332454d9b1
Checked in more temporary debugging code for the strange QA failure on
...
Windows.
2003-05-25 19:19:28 +00:00
wtc%netscape.com
0c43efe373
Enabled verbose mode temporarily for debugging a strange QA failure on
...
Windows.
2003-05-25 04:16:03 +00:00
wtc%netscape.com
cc344de70c
Bug 206926: now that secrng.h and pqgutil.h include blapit.h instead of
...
blapi.h, some files that include secrng.h or pqgutil.h need to include
blapi.h directly.
Modified Files: certcgi.c swfutl.c unix_rand.c win_rand.c
2003-05-25 01:21:27 +00:00
wtc%netscape.com
fc20d83b46
Include nss.h for the declaration of NSS_Shutdown. Use "" around prmem.h
...
and prio.h.
2003-05-24 05:23:42 +00:00
nelsonb%netscape.com
bf4cc8f8d1
Make tstclnt interactive on Windows. Bug 206031.
2003-05-22 04:34:38 +00:00
nelsonb%netscape.com
2a90f64d20
Eliminate double-spacing of output on windows. Bug 206551. r=wtc.
2003-05-22 01:51:18 +00:00
nelsonb%netscape.com
e38f5daae0
If the verbose option is given twice (e.g. -vv) and the server requests
...
client auhtentication, tstclnt will display the server's list of trusted
client CA names.
2003-05-17 05:38:01 +00:00
jpierre%netscape.com
481bd9b8d6
Fix for bug 204015 - make strsclnt reuse token after it is unplugged . r=nelsonb
2003-05-15 17:09:19 +00:00
nelsonb%netscape.com
00eb799722
Update ssltap's list of TLS ciphersuites. Bug 201158.
2003-05-15 06:28:44 +00:00
wtc%netscape.com
34bce4985a
Bug 205346: need to include <unistd.h> on BeOS for isatty(). Thanks to
...
timeless@bemail.org for the patch.
2003-05-12 19:52:44 +00:00
wtc%netscape.com
05536f8c3a
Bug 205346: fixed a compiler warning about a zero-length format string for
...
sprintf.
2003-05-12 18:58:33 +00:00
nelsonb%netscape.com
ecf80ee33f
Fix bug 143426 by not freeing names in loop that traverses them.
...
Patch contributed by liexter@hotmail.com (liqi)
2003-05-09 23:59:18 +00:00
nelsonb%netscape.com
8c95859745
Display an error message instead of crashing if the user forgets the -n
...
option with the -O (Dump Chain) option.
2003-05-06 02:50:03 +00:00
nelsonb%netscape.com
7d5a46cf84
Don't display user's password in hex. Bug 200005.
2003-05-06 02:45:12 +00:00
wtc%netscape.com
213a402f9d
Bug 134113: make NSS build on Win32 using GCC (MinGW). The patch
...
(attachment 121068) is contributed by Chris Seawood (cls@seawood.org ).
2003-04-20 04:23:37 +00:00
jpierre%netscape.com
f81ee69b6b
Fix for 202053 - signing of softokn3.dll may fail on OS/2. Force the use of OS/2 CMD.EXE default shell . r=pedemont
2003-04-15 22:42:09 +00:00
wtc%netscape.com
a5b3f9441e
Bug 201555: enable stripping of EXEs on OS/2 with gcc. The LIBPATHSTRICT
...
change in sign.cmd is so that you can run a VACPP build when gcc is
building (otherwise shlibsign loads the wrong DLLs). The patch is
contributed by IBM.
Modified Files:
coreconf/OS2.mk nss/cmd/shlibsign/sign.cmd
2003-04-15 04:08:09 +00:00
wtc%netscape.com
3248bf6d78
The .chk files should have the $(DLL_PREFIX), not $(LIB_PREFIX), because
...
they correspond to shared libraries/DLLs.
2003-04-12 20:44:45 +00:00
wtc%netscape.com
afe68e3619
Bug 200974: NetBSD uses GNU ld and so also needs -rpath-link.
2003-04-07 23:52:17 +00:00
nelsonb%netscape.com
e2e7547270
Fix bug 200224. Eliminate null ptr dereference.
2003-04-02 23:24:01 +00:00
wtc%netscape.com
c684e24248
Bug 200179: prepend, rather than overwrite, the shared library search path.
...
We can't assume the shared library search path is not set.
2003-04-01 22:58:26 +00:00
wtc%netscape.com
f18c2a96c5
Destroy the hash context, public key, private key, and slot so that NSS
...
shutdown will succeed. r=relyea.
2003-04-01 22:47:46 +00:00
wtc%netscape.com
845b452495
Added a missing {.
2003-04-01 22:03:07 +00:00
bishakhabanerjee%netscape.com
b9eafcbc3d
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:23:18 +00:00
bishakhabanerjee%netscape.com
6d93899099
checking return value of NSS_Shutdown - bug 171263
2003-04-01 19:13:50 +00:00
bishakhabanerjee%netscape.com
65218ae3b9
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:11:38 +00:00
bishakhabanerjee%netscape.com
8e0426802d
Checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:05:56 +00:00
bishakhabanerjee%netscape.com
7bbe39697c
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:00:50 +00:00
wtc%netscape.com
a68105106a
Bug 199628: support shlibsign on OpenVMS. Pass $(OS_TARGET) instead of
...
$(IS_WINDOWS) to sign.sh and sign.cmd (which ignores that argument). In
sign.sh, use a case statement with three cases: Windows, OpenVMS, and
others. The patch is contributed by Colin Blakes <colin@theblakes.com>.
Modified Files: Makefile sign.cmd sign.sh
2003-03-29 00:42:43 +00:00
nelsonb%netscape.com
3f52ba47c1
Changes to enable ECC over characteristic 2^m fields.
...
Contribution from Vipul Gupta <Vipul.Gupta@Sun.COM>
Modified Files:
nss/cmd/strsclnt/strsclnt.c nss/lib/cryptohi/seckey.c
nss/lib/freebl/blapit.h nss/lib/freebl/ec.c
nss/lib/freebl/manifest.mn nss/lib/freebl/mpi/Makefile
nss/lib/softoken/ecdecode.c nss/lib/softoken/pkcs11.c
nss/lib/ssl/ssl3con.c nss/lib/util/secoid.c
nss/lib/util/secoidt.h
2003-03-29 00:18:30 +00:00
wtc%netscape.com
032e2a412b
Bug 195797: support building NSS with GCC 3.x on OS/2. The patch is
...
contributed by Javier Pedemonte <pedemont@us.ibm.com>.
Modified Files:
security/coreconf/OS2.mk security/coreconf/rules.mk
security/nss/cmd/shlibsign/sign.cmd
2003-03-27 15:40:54 +00:00
wtc%netscape.com
3bcaeb4a87
Bug 199134: fixed build failures on FreeBSD. We need to specify -pthread
...
when linking an executable (already doing that when linking a shared lib),
and we need to use the -rpath-link flag to help the linker find the
shared libraries that we indirectly link with. r=cls.
Modified Files: coreconf/FreeBSD.mk nss/cmd/platlibs.mk
2003-03-27 01:17:28 +00:00
wtc%netscape.com
b3d9493f77
Bug 195127: set the LIBPATH environment variable (used by AIX) as absolute
...
pathname. It seems that AIX caches shared libraries. If another app loaded
the same shared library earlier, the cached copy of the shared library,
including the pathname with which it was loaded, will be used. So we need
to ensure that all apps load libsoftokn3.so with an absolute pathname so
that the pathname is correct to all apps.
2003-03-26 21:07:12 +00:00
wtc%netscape.com
6af49910b8
Removed extraneous trailing / after directory pathnames.
2003-03-26 18:30:33 +00:00
wtc%netscape.com
a98f4c0628
Bug 199082: checked in Nelson's patch, which
...
a) changes selfserv to test the return value from NSS_Shutdown.
b) changes SECMOD_Shutdown to set the error code SEC_ERROR_BUSY before
returning SECFailure.
c) Adds a new function SSL_ShutdownServerSessionIDCache to ssl.h.
d) Changes selfserv to call SSL_ShutdownServerSessionIDCache before calling
NSS_Shutdown.
Modified Files:
cmd/selfserv/selfserv.c lib/pk11wrap/pk11util.c
lib/ssl/ssl.def lib/ssl/ssl.h lib/ssl/ssl3con.c
lib/ssl/sslimpl.h lib/ssl/sslsnce.c
2003-03-26 00:31:13 +00:00
nelsonb%netscape.com
ba8e91e37c
Fix bug 198099. Display DSA public keys in certs properly.
2003-03-25 03:45:04 +00:00
wtc%netscape.com
d525a490d6
Removed the experimental change. It did not cause the intermittent QA
...
failures on the "aix64" tinderbox to go away.
2003-03-23 00:16:43 +00:00
wtc%netscape.com
d05787bdc0
Deleted an obsolete comment.
2003-03-22 08:01:44 +00:00
wtc%netscape.com
c2f89c4e52
An experimental change for debugging bug 195127: on the 64-bit AIX
...
tinderbox the dist/${OBJDIR}/lib/libsoftokn3.chk symlink sometimes does
not get created.
2003-03-22 07:52:25 +00:00
wtc%netscape.com
ff1e1c8393
Bug 198543: checked in the patch from Chris Seawood to fix BeOS bustage.
...
Apparently it is necessary to have LIBRARY_PATH set in the environment.
2003-03-22 02:59:26 +00:00
wtc%netscape.com
2242970351
BSD/OS seems to be using GNU ld, which needs -rpath-link to find the
...
implicit dependency of an explicitly lined .so at link time.
2003-03-22 01:26:58 +00:00
wtc%netscape.com
d6719582d1
Bug 198543: BeOS uses LIBRARY_PATH to search for shared libraries.
2003-03-21 21:33:43 +00:00
wtc%netscape.com
9d7d9e9189
Rewrote without the dirname() and basename() calls because they are not
...
available on some Unix platforms (e.g., BSD/OS 4.2).
2003-03-21 20:57:07 +00:00
wtc%netscape.com
162937967f
Bug 197890: backed out the previous checkin. For unknown reasons, the
...
Mozilla trunk Tinderbox machine "beast" had trouble running the cygpath
command. It failed with the error
"can't create title mutex, Win32 error 6".
2003-03-21 06:10:31 +00:00
wtc%netscape.com
c24221c822
On IRIX, dirname() and basename() are defined in -lgen.
2003-03-21 05:13:20 +00:00
wtc%netscape.com
5ecbb2e6d4
Bug 198482: OS/2 can't run sign.sh because we can't set DLL load path in
...
a shell script. This patch is contributed by Michael Kaply
<mkaply@us.ibm.com>.
Modified Files: Makefile
Added Files: sign.cmd
2003-03-21 03:48:11 +00:00
wtc%netscape.com
47c8a2f084
Bugzilla 198481: fixed all build problems with gcc on Solaris.
...
1. Removed the workarounds we put in before -- hardcoding LD to
/usr/ccs/bin/ld and passing the -B/usr/ccs/bin/ flag to gcc.
2. Use the compiler, $(CC), to build shared libraries.
3. If gcc is used, determine whether gcc uses GNU ld or Solaris
ld and set the new make variable GCC_USE_GNU_LD accordingly.
Modified Files:
coreconf/SunOS5.mk nss/cmd/platlibs.mk nss/lib/freebl/Makefile
2003-03-21 03:31:00 +00:00
wtc%netscape.com
88232d00e6
Bug 58221: don't use strlen to check if a string is of length 0.
2003-03-19 06:37:03 +00:00
wtc%netscape.com
c078ee6cdc
Bug 58221: don't use strlen to check if a string is of length 0.
2003-03-19 06:30:12 +00:00
wtc%netscape.com
20e6a3d1ec
Bug 197890: use Cygwin's cygpath command to "escape" a pathname with a
...
drive letter for Cygwin's bash.
2003-03-18 14:48:09 +00:00
wtc%netscape.com
d26ae8d600
Bug 197890: Eliminated the artificial dependency of all NSS cmd tools on
...
zlib. Only some of them (modutil and signtool) need zlib and we now define
that dependency explicitly. In shlibsign/sign.sh, escape the drive letter
if the pathname contains it and we are using Cygwin so that the pathname
does not contain any colon, which is the PATH separator in Cygwin. r=relyea
Modified Files: platlibs.mk modutil/manifest.mn shlibsign/sign.sh
signtool/manifest.mn
2003-03-17 21:48:18 +00:00
kirk.erickson%sun.com
9e574da214
Made 'seconds' argument to '-L' optional.
...
Updated Usage with '-L [seconds]' syntax, and default value (30).
2003-03-12 02:40:43 +00:00
relyea%netscape.com
7b8dfc1a95
remove last references to TraverseCerts by removing depricated functions with call it. r=wtc
2003-03-05 21:46:20 +00:00
relyea%netscape.com
df524309b9
Incorporate wtc comment from bug 19061 (removal of commented code).
2003-03-04 23:11:09 +00:00
relyea%netscape.com
c339a0b104
Print all the certs for a given nickname, not just the first.
2003-03-04 22:32:24 +00:00
ian.mcgreer%sun.com
dd7d756307
bug 177556, signtool -l fails
...
r=wtc
2003-02-28 21:14:36 +00:00
nelsonb%netscape.com
f87129ad87
Add support for Elliptic Curve Cryptography. Bug 195135.
...
Modified Files:
cmd/lib/SECerrs.h cmd/selfserv/selfserv.c
cmd/tstclnt/tstclnt.c lib/cryptohi/keyhi.h
lib/cryptohi/keythi.h lib/cryptohi/seckey.c
lib/cryptohi/secvfy.c lib/freebl/Makefile lib/freebl/blapi.h
lib/freebl/blapit.h lib/freebl/ldvector.c lib/freebl/loader.c
lib/freebl/loader.h lib/freebl/manifest.mn lib/nss/nss.def
lib/pk11wrap/pk11skey.c lib/pk11wrap/pk11slot.c
lib/softoken/lowkeyti.h lib/softoken/manifest.mn
lib/softoken/pkcs11.c lib/softoken/pkcs11c.c
lib/softoken/pkcs11t.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslcon.c lib/ssl/sslenum.c lib/ssl/sslimpl.h
lib/ssl/sslinfo.c lib/ssl/sslproto.h lib/ssl/sslsecur.c
lib/ssl/sslsock.c lib/ssl/sslt.h lib/util/secerr.h
lib/util/secoid.c lib/util/secoidt.h
Added Files:
lib/freebl/GFp_ecl.c lib/freebl/GFp_ecl.h lib/freebl/ec.c
lib/freebl/ec.h lib/softoken/ecdecode.c
2003-02-27 01:31:38 +00:00
nelsonb%netscape.com
83101081ca
Add missing dependency on error headers.
2003-02-26 23:52:40 +00:00
kirk.erickson%sun.com
58e6df6d02
Addresses bug 193378 modutil should print an error message,
...
by printing error on SECMOD_DeleteInternalModule() failure.
2003-02-25 02:09:11 +00:00
wtc%netscape.com
e82f9dbda9
Simplified the test for substrings.
2003-02-22 15:20:07 +00:00
thayes%netscape.com
a74f0fa8b2
Bug 192639: Use utility functions for managing token passwords so that
...
cmsutil will prompt for the value if it is not given on the command line.
r=nelsonb
2003-02-19 00:39:39 +00:00
wtc%netscape.com
03d1089088
Add DHE algorithms to the list. (Merged relyea's checkin (rev. 1.3.2.1)
...
from the NSS_3_7_BRANCH to the trunk.)
2003-02-18 02:53:54 +00:00
wtc%netscape.com
ada7b251c4
Bug 131826: backed out the zlib 1.1.4 upgrade because the signtool tests
...
failed.
Modified Files:
README adler32.c compress.c crc32.c deflate.c deflate.h
example.c gzio.c infblock.c infblock.h infcodes.c infcodes.h
inffast.c inffast.h inflate.c inftrees.c inftrees.h infutil.c
infutil.h minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c
zutil.h
2003-02-08 15:00:13 +00:00
wtc%netscape.com
22417a7df4
Bug 131826: checked in the README file of zlib 1.1.4.
2003-02-08 09:10:36 +00:00
wtc%netscape.com
305ac614c0
Bug 131826: upgraded to zlib 1.1.4.
...
Modified Files:
adler32.c compress.c crc32.c deflate.c deflate.h example.c
gzio.c infblock.c infblock.h infcodes.c infcodes.h inffast.c
inffast.h inflate.c inftrees.c inftrees.h infutil.c infutil.h
minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c zutil.h
2003-02-08 08:50:42 +00:00
wtc%netscape.com
80d543aa32
Bug 131826: added maketree.c from zlib 1.1.4.
2003-02-08 08:37:00 +00:00
wtc%netscape.com
9d38af738e
Removed unused files stubs.c and zip_nodl.c.
2003-02-08 08:35:07 +00:00
wtc%netscape.com
a301d47f42
Bug 131826: added new header files from zlib 1.1.4.
...
Added Files: trees.h inffixed.h
2003-02-08 08:30:11 +00:00
relyea%netscape.com
ab77a6c23c
Sigh, the QA scripts look for the word 'failed', but it's common that we
...
can't open the shared library and isn't a real failure, so change the wording
2003-02-08 01:52:37 +00:00
wtc%netscape.com
5076009554
Exit with 1 rather than -1 on failure. Make sure the program exit with 1
...
on all failures. Remove the symlink, if a file/symlink by that name already
exists, before creating it to avoid the EEXIST error.
2003-02-07 23:41:15 +00:00
wtc%netscape.com
d84be87533
Use <> around standard/system header files. This file does not need
...
string.h, but it should include stdio.h because it uses fprintf and printf.
2003-02-07 23:21:53 +00:00
relyea%netscape.com
7903049797
Fix signed/unsigned display issue.
...
Add more loggin information on errors (rev 1.3 added this but lost it's log).
2003-02-07 23:05:07 +00:00
relyea%netscape.com
d07389a152
*** empty log message ***
2003-02-07 23:02:43 +00:00
relyea%netscape.com
e196a4143b
Add Mangle logging...
2003-02-07 21:12:26 +00:00
wtc%netscape.com
3da1c11d28
Moved the definition of MD_LIB_RELEASE_FILES from manifest.mn to Makefile
...
so that it is right next to the definition of CHECKLOC, which it uses.
2003-02-06 22:37:37 +00:00
relyea%netscape.com
0022c47e93
Mangle will be changing the shared libraries, so it should link with them.
2003-02-06 18:18:42 +00:00
wtc%netscape.com
d12037cd31
Bug 177387: Put the configuration/assignments before the rules in Makefile.
...
Define MD_LIB_RELEASE_FILES in manifest.mn so that the *.chk files are
included in the mdbinary.jar files generated by the release target.
2003-02-06 16:56:46 +00:00
wtc%netscape.com
d7d81c7883
Support both ";" and ":" as PATH separators on Windows. MKS Korn shell
...
uses ";" but Cygwin bash uses ":".
2003-02-06 14:52:43 +00:00
relyea%netscape.com
0c754d450b
Update db test to verify cert8 not cert7
2003-02-05 00:33:52 +00:00
relyea%netscape.com
87a6506c3f
Surface the Err codes if we fail to shift to FIPS mode.
...
Add new option to verify that we have shifted to FIPS mode.
2003-02-05 00:31:15 +00:00
relyea%netscape.com
9091d5b06d
1) turn on mangle builds.
...
2) better fix for the missing MAXPATHLEN missing define.
3) make room for the '\0' in the pathname.
2003-02-05 00:29:35 +00:00
relyea%netscape.com
d4c0391ff4
Fix LINUX breakage (define MAXPATHLEN if it wasn't defined the the standard
...
system headers).
2003-02-04 23:39:15 +00:00
relyea%netscape.com
a0499c74ef
Add code to handle symlinks.
...
Add verbose output to print out hashes and signatures.
2003-02-04 23:18:08 +00:00
relyea%netscape.com
efdcf189a1
Add program which will mangle exactly 1 bit in a file.
2003-02-04 23:16:56 +00:00
relyea%netscape.com
75390fc662
Fix windows build breakage.
2003-02-04 19:03:11 +00:00
relyea%netscape.com
83e97a17cc
Shell script to set up the path before running the signing tool
2003-02-03 21:06:57 +00:00
relyea%netscape.com
2d91037f77
Generate .chk file at build time when we build shlibsign
2003-02-03 21:06:18 +00:00
wtc%netscape.com
604f0ed9a1
Bug 191214: fixed the object leaks in signtool that prevented NSS_Shutdown
...
from succeeding and added the NSS_Shutdown call back. r=jpierre.
Modified Files: certgen.c sign.c signtool.c
2003-01-30 23:11:13 +00:00
wtc%netscape.com
78b89796f5
Bug 191214: backed out the previous checkin until this bug (object leaks)
...
is fixed.
2003-01-30 01:50:31 +00:00
wtc%netscape.com
dd7b545622
Bug 171263: signtool should call NSS_Shutdown before it exits.
2003-01-30 00:39:37 +00:00
relyea%netscape.com
510d42958f
Move LIBJAR definitions around so that NT builds.
2003-01-29 23:37:10 +00:00
relyea%netscape.com
3a46194bdd
1) add vfyserv to the standard build.
...
2) add tool to build shared library signature files for FIP's.
Code to verify requires NSPR changes before we can check it in.
2003-01-28 18:53:22 +00:00
relyea%netscape.com
943c3bc77e
Compile modutil with shared libraries.
2003-01-28 16:44:33 +00:00
wtc%netscape.com
3cfd1da0cc
Bug 145029: fixed compiler warnings (mostly "xxx might be used
...
uninitialized").
2003-01-17 02:49:11 +00:00
bishakhabanerjee%netscape.com
f96d105632
Bug 171263 - NSS test apps to check return value of NSS_Shutdown
2003-01-14 01:03:21 +00:00
bishakhabanerjee%netscape.com
3f8b500ca5
Bug 171263 - NSS test apps shd check return value of NSS_Shutdown
2003-01-13 22:36:39 +00:00
relyea%netscape.com
449530f503
Add the ability to generate certs with multiple DNS names.
2003-01-09 22:59:42 +00:00
wtc%netscape.com
209f994fd3
Need to call SSL_ClearSessionCache before calling NSS_Shutdown.
2003-01-08 21:40:52 +00:00
bishakhabanerjee%netscape.com
c50dfa28ad
checking return value of NSS_Shutdown. Bug 171263
2003-01-07 22:53:13 +00:00
bishakhabanerjee%netscape.com
1b239a8ed0
checking return value of NSS_Shutdown. Bug 171263
2003-01-07 22:31:36 +00:00
bishakhabanerjee%netscape.com
985e092196
new revision: 1.19; previous revision: 1.18
2003-01-07 22:29:54 +00:00
wtc%netscape.com
b5e025dea3
Bug 183612: renamed some new functions to be consistent with existing
...
function names containing SubjectKey and PublicKey. Moved internal
functions to private headers and use the lowercase cert_ prefix for the
internal functions for subject key ID mapping hash table. r=nelsonb.
2002-12-19 00:26:34 +00:00
nelsonb%netscape.com
49ca4445ae
Clean up command line options parsing and Usage message.
2002-12-13 01:25:45 +00:00
nelsonb%netscape.com
a4ffefd8be
Support SHA256, SHA384, and SHA512 hashes in NSS.
2002-12-12 06:05:45 +00:00
relyea%netscape.com
79fda8d95f
Program to test smartcard removal and insertion detection.
2002-12-11 17:44:53 +00:00
thayes%netscape.com
8d4be901b5
Bug 184557: Allow usage specified on command line (-u) to be used to validate
...
certificates used for signing (-S option). Also add special handling for
nickname "NONE" in the -Y option. This specifies that no certificate and
encryption key preference should be included in the signature object.
2002-12-11 01:44:37 +00:00
relyea%netscape.com
abf1a9ae02
Sigh, this is what was breaking the Linux builds... incorrect initializer.
2002-12-10 18:09:16 +00:00
relyea%netscape.com
7ba80c7f5c
Add code to create multiple email addresses in a single cert.
2002-12-10 17:18:06 +00:00
nelsonb%netscape.com
aad3764409
Expunge dead code.
2002-12-05 22:16:22 +00:00
ian.mcgreer%sun.com
72edde5172
bug 172247, don't allow import of duplicate issuer/serial certs
2002-11-21 20:43:15 +00:00
nelsonb%netscape.com
6b8d4e688b
Add test modes for sha256, sha384 and sha512.
...
Fix the -c (restart) option for testing hashes. It works with all hashes.
When the -d option is given along with the -i or -o filename option,
and the filename is not absolute, the filename is taken to be relative to
the the mode's test directory.
2002-11-21 05:44:03 +00:00
nelsonb%netscape.com
f8fead2f58
Add test cases from FIPS 180-2.
2002-11-21 02:26:50 +00:00
nelsonb%netscape.com
2d2f10ff75
Fix crash when formatting a cert with optional version not given.
2002-11-15 06:32:51 +00:00
nelsonb%netscape.com
4f733e25ac
Make selfserv build for Darwin.
2002-11-14 23:33:24 +00:00
relyea%netscape.com
37feda0de1
Remove long dead code from util. triggered by bug 179038
2002-11-11 18:17:24 +00:00
relyea%netscape.com
789fae9e28
!@#!$@! signtool thinks it knows how to verify if the certdb's are there and
...
OK or not. Of course it doesn't.
bob
2002-11-04 20:37:08 +00:00
nelsonb%netscape.com
95badac2f4
Fix several problems related to error messages, including an attempt to
...
print a null string pointer.
2002-11-01 21:04:33 +00:00
nelsonb%netscape.com
cea8a96338
Reformat text. Fix syntax error in first examples.
2002-11-01 21:03:24 +00:00
relyea%netscape.com
4db4a5989a
The Serial number needs to be the DEREncoded serial number, not the decoded
...
Serial number.
2002-10-30 17:22:06 +00:00
nelsonb%netscape.com
2d36f59d67
Add -v option, which prints email addresses in certs. This excersizes
...
the new functions for extracting email addresses from certs. Bug 152986.
2002-10-24 01:40:40 +00:00
bishakhabanerjee%netscape.com
1d08dec690
commented out unchecked in tests
2002-10-24 00:19:53 +00:00
nelsonb%netscape.com
dc79671232
Verify the self-signed signature on PKCS 10 cert requests before honoring
...
them. Bug 174193.
2002-10-18 21:58:24 +00:00
bishakhabanerjee%netscape.com
7fcb4ea142
changed error string to reflect error better: 162714
2002-10-18 00:13:03 +00:00
nelsonb%netscape.com
b0606e475e
New utility to test cert chain verification using certs in files.
2002-10-17 22:24:35 +00:00
nelsonb%netscape.com
72e8094d87
Change instructions for entering a new token password to say "should"
...
instead of "must". Bug 174135.
2002-10-17 02:06:31 +00:00
nelsonb%netscape.com
5a4244682c
Use unsigned ints for serial numbers. Bug 173872.
...
Add missing line break to cert requests. Bug 174659.
Remove unused variables, and #ifndef NSPR20 code.
2002-10-17 01:41:14 +00:00
nelsonb%netscape.com
16d37d34ce
Use the new quick DER decoder to decode Certificate requests, because
...
it does it correctly. Fix some memory leaks in print code.
Print OCTET strings and bits strings better.
2002-10-16 05:34:54 +00:00
nelsonb%netscape.com
acdec25c4b
Eliminate a crash in pp formatting cert requests. Bug 174188.
...
When asking for a new password and the two values don't match, ask for
both again. Bug 174133.
2002-10-16 01:40:22 +00:00
relyea%netscape.com
72fe83e3f2
Make grammar, punctuation, capitalization, and content changes suggested by
...
nelson.
2002-10-15 00:56:23 +00:00
jpierre%netscape.com
66672a3266
Fix addbuiltin t add issuer & serial number to trust object
2002-10-12 01:00:33 +00:00
relyea%netscape.com
7db5df2a89
Fix memory leak in vfyserv.c
2002-10-10 22:38:09 +00:00
relyea%netscape.com
7cb062be5d
Fix Cert Reference leak in error path
2002-10-10 20:34:29 +00:00
relyea%netscape.com
e7544aab69
Add missing errors from secerr.h in lib/util
2002-10-10 20:31:25 +00:00
nelsonb%netscape.com
44827860fe
Make indentation style self-consistent: 4 spaces per indent.
...
Save error code at the beginning of printCertProblems, and restore it at
the end, since CERT_VerifyCert nearly always sets the error code to
-8157 Certificate extension not found when building an error log.
Bug 172036.
2002-10-08 03:39:50 +00:00
jpierre%netscape.com
b0fe3718ae
Fix for 164744 - implement new functions for pk12util . r=wtc
2002-10-03 03:35:32 +00:00
jpierre%netscape.com
2e48c1c8a4
Fix for 164744 - fix for pk12util to export multiple certs
2002-10-02 04:32:17 +00:00
wtc%netscape.com
4ae061289f
Bug 166772: 'cinfo' needs to be initialized to NULL. Fixed an indentation
...
problem.
2002-09-30 20:31:55 +00:00
wtc%netscape.com
bd264d3f32
Bug 166781: fixed the bug that 'r2' may be used uninitialized. r=nicolson.
2002-09-27 22:22:12 +00:00
ian.mcgreer%sun.com
0f153605e9
bug 158078, unitialized variable due to a lot of unneccessary code
2002-09-26 20:30:11 +00:00
wtc%netscape.com
3f0df98640
Bug 91224: Make sure that we use Solaris ld, not GNU ld, to build NSS.
...
Modified Files:
coreconf/SunOS5.mk nss/Makefile nss/cmd/platlibs.mk
nss/lib/freebl/Makefile
2002-09-18 23:25:29 +00:00
jpierre%netscape.com
49f89a069f
Call NSS_Shutdown() in crlutil. Part of purifying effort
2002-09-17 23:14:54 +00:00
jpierre%netscape.com
870b616b11
Fix indentation
2002-09-17 21:31:28 +00:00
jpierre%netscape.com
45c8746dd4
Add -r support to crlutil for multiple iterations
2002-09-17 00:28:42 +00:00
jpierre%netscape.com
411c8c7d0e
Purify crlutil
...
Add -E option to erase all CRLs from the certificate database even if the issuer certificate is not present
Add -T option to invoke custom test code
2002-09-17 00:22:09 +00:00
wtc%netscape.com
dd0f92656f
Removed the SIGTERM signal handler, which was added to debug bug 119340.
2002-09-13 05:10:59 +00:00
wtc%netscape.com
ca133cf458
Bug 129701: removed the sleep command for Linux in kill_selfserv().
...
Instead, we try to bind to the port in a loop until the port has been
freed. Added the -b (bindOnly) option to selfserv for this purpose.
Modified files: cmd/selfserv/selfserv.c tests/common/init.sh tests/ssl/ssl.sh
2002-09-07 13:41:21 +00:00
wtc%netscape.com
d982fc5cee
Bug 136209: added the -P dbprefix option. The original -P (partial CRL
...
decode) option was renamed -p.
2002-09-07 04:43:04 +00:00
nicolson%netscape.com
e179fe8904
Fix 164126: makefile build error.
...
Change the NSS module name from "security" to "nss".
2002-09-06 16:38:56 +00:00
ian.mcgreer%sun.com
1871593ad6
additional patch for bug 166768
2002-09-06 14:10:14 +00:00
wtc%netscape.com
5a3d303bc9
Bug 136804: initialize inFile to PR_STDIN instead of NULL so that we don't
...
crash if the -i option is not specified. Added two assertions to avoid
closing PR_STDIN due to internal errors.
2002-09-06 03:52:49 +00:00
wtc%netscape.com
a897ae16a9
Bugs 166734 and 166785: fixed compiler warnings reported by gcc on Linux.
...
The patch for this checkin is attached to bug 166785.
2002-09-06 00:27:52 +00:00
ian.mcgreer%sun.com
935b91935c
bugs 166722 and 166768, compiler warnings in blapitest
...
r=wtc
2002-09-05 20:37:44 +00:00
relyea%netscape.com
e8f4d6e455
Bring SSL strength up to NSS 3.x level.
2002-08-30 17:56:05 +00:00
kaie%netscape.com
43a34d7ec4
b=107034 OE requires special attribute in incoming signed messages to support dual key certificates. Add new function
...
NSS_CMSSignerInfo_AddMSSMIMEEncKeyPrefs.
r=relyea
2002-08-27 13:14:42 +00:00
kaie%netscape.com
21b34fa931
Backing myself out, since it didn't compile on Win32, and I would like to discuss the correct fix.
2002-08-27 00:05:11 +00:00
kaie%netscape.com
d478be6ac5
b=107034 OE requires special attribute in incoming signed messages to support dual key certificates. Add new function
...
NSS_CMSSignerInfo_AddMSSMIMEEncKeyPrefs.
r=relyea
2002-08-26 21:34:31 +00:00
jpierre%netscape.com
dc99c08db3
Fix for 164471 - Hide passwords in NSS command-line tools on OS/2
2002-08-25 03:00:34 +00:00
jpierre%netscape.com
95bad7466f
Correctly identify tty on OS/2 - fix for 164420
2002-08-24 13:46:50 +00:00
jpierre%netscape.com
cdaf8705fe
Fix for 164403 - make console input work in NSS tools on OS/2
2002-08-24 11:51:42 +00:00
relyea%netscape.com
bb6cf23f23
use error code in secutil.
...
Clean up the output.
Print out cert chain parsing issues more completely.
2002-08-16 23:09:02 +00:00
relyea%netscape.com
cf0278de93
Quick and dirty utility to pink SSL servers to see if they are configured
...
correctly.
NOTES: This program is a (very slightly) modified version of the
SSLSample/client.c program. As such it used the sample program support, which is
a duplication of much of secutil. Future enhancements would be 1) link with
secutil.lib. 2) When handling BadCert requests, run the Full VerifyCert and dump
the results. Make connections to the servers testing SSL2, SSL3 and TLS.
Changes were basically 1) Set the program to run without a security database
(this means no token support, or client auth). 2) Explicitly load the builtins
module so that we can test against the standard trust.
2002-08-16 16:29:18 +00:00
nelsonb%netscape.com
eeff02773b
Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. Fix Usage.
2002-08-09 22:06:12 +00:00
nelsonb%netscape.com
e90c165157
Add support for SSL_RSA_WITH_NULL_SHA. Bug 161529. Fix usage message.
2002-08-09 21:58:28 +00:00
jpierre%netscape.com
e6ee1f4c60
Add comment about partial CRLs
2002-08-09 07:09:25 +00:00
jpierre%netscape.com
9b074c9def
Fix for 157649 - allow crlutil to do partial decoding so it can be used as a test program
2002-08-07 03:53:07 +00:00
bishakhabanerjee%netscape.com
a5ff71eccd
Checking in riceman+bmo@mail.rit.edu's patch for bug 133702
2002-07-30 18:44:36 +00:00
jpierre%netscape.com
d57baf5140
Fix for 158221 - make crlutil save memory by using the new PK11_ImportCRL function with the CRL_DECODE_DONT_COPY_DER option
2002-07-19 01:07:27 +00:00
jpierre%netscape.com
c509948a27
Remove unreferenced variables
2002-07-18 23:50:03 +00:00
jpierre%netscape.com
0ef036408f
Fix usage
2002-07-17 22:53:33 +00:00
jpierre%netscape.com
e7033fb486
Fix for 157996 - add support for SEC_NewCrl browser emulation mode in crlutil
2002-07-17 22:22:26 +00:00
wtc%netscape.com
aa78a2f343
Bug 157946: removed the unused -m option. Added the -v option to Usage().
2002-07-17 18:39:02 +00:00
jpierre%netscape.com
dc151802c8
Make certutil use the new CERT_VerifyCertificate function when verifying certs
2002-07-16 00:45:50 +00:00
wtc%netscape.com
f1205a5879
Removed README.TXT, which is just README with Windows line endings (CRLF).
2002-07-09 17:11:25 +00:00
javi%netscape.com
6f5c3918c6
Go back to the lower case mechanism for the ocspResponse_* flags.
2002-07-03 20:22:27 +00:00
javi%netscape.com
7c36eac5d2
Use the newly exported symbol names.
2002-07-03 00:13:25 +00:00
kirk.erickson%sun.com
80cae9e038
Fixed indentation caught by Wan-Teh (66606).
2002-06-11 22:41:45 +00:00
kirk.erickson%sun.com
6e3d00368d
Resolves 66606. Added -O (enable OCSP checking).
2002-06-11 16:29:28 +00:00
bishakhabanerjee%netscape.com
76c8329a07
to build the new NSS tests.. bugzilla bug 144316
2002-06-03 17:16:57 +00:00
ian.mcgreer%sun.com
7ad9c0cc44
bug 136701, certutil should use PK11_ListCerts
2002-05-29 18:19:33 +00:00
kirk.erickson%sun.com
9ef935cd78
Fixed OCSP typo.
2002-05-28 18:26:37 +00:00
kirk.erickson%sun.com
fa04da4ff4
Resolves bug 90070 (now exiting with PK12UERR_PK11GETSLOT 13).
2002-05-23 22:21:42 +00:00
wtc%netscape.com
0c57191723
Bugzilla bug 135824: fixed slot reference leaks in signtool and removed
...
a faulty attempt to set user trust. r=relyea,mcgreer.
Modified files: certgen.c util.c
2002-05-13 17:08:20 +00:00
wtc%netscape.com
363fb30239
Bugzilla bug 135826: fixed the slot reference leaks.
2002-05-09 23:01:21 +00:00
wtc%netscape.com
894efe87d2
Bugzilla bug 135334: free the internal key slot reference when we are done.
2002-05-09 21:14:36 +00:00
jpierre%netscape.com
41ba83e283
Fix for 142658 - fix certutil crash with NULL nickname
2002-05-06 23:10:40 +00:00
ian.mcgreer%sun.com
a9ff4e3f4d
fix a cert reference leak in strsclnt
2002-04-15 14:24:15 +00:00
ian.mcgreer%sun.com
6d36e7eddc
fix error statement
2002-04-12 19:17:48 +00:00
relyea%netscape.com
7aa8e229f4
Bug 133584: Fix reference leaks which prevent shutdown in NSS and in the tests.
...
Debug builds can verify correct operation by setting NSS_STRICT_SHUTDOWN, which
will cause an assert if shutdown is called but not all the modules are freed (which
means a slot, key, or cert reference has been leaked).
2002-04-12 19:05:21 +00:00
ian.mcgreer%sun.com
341d4faa3c
bug 136806, don't authenticate to friendly slots when adding certs
2002-04-12 18:07:49 +00:00
nelsonb%netscape.com
977f0c234a
Stop linking in wsock32.lib and winmm.lib on Windows. We haven't needed
...
these since we started linking with NSPR's DLLs, and they don't exist
on WinCE.
2002-04-05 03:30:37 +00:00
relyea%netscape.com
68c7d19edd
return the correct error codes to make all.sh happy.
2002-04-05 03:16:41 +00:00
relyea%netscape.com
24ff51d1d9
Link certutil dynamically.
2002-04-05 00:12:21 +00:00
relyea%netscape.com
f7df04f838
Don't try verifying the db's in a multi-access database case
2002-04-05 00:10:39 +00:00
nelsonb%netscape.com
29d5f9376c
Add missing #include to fix errors on AIX.
2002-04-04 01:35:13 +00:00
nelsonb%netscape.com
515ed51a75
Add cross-platform (WinCE) support.
2002-04-04 00:00:27 +00:00
jpierre%netscape.com
79cf58115f
Call NSS_Shudown in modutil
2002-03-27 05:02:58 +00:00
ian.mcgreer%sun.com
2b65a7f806
bug 123296, infinite loop in signtool when incorrect password given at command line
2002-03-26 22:23:28 +00:00
wtc%netscape.com
fbb98b2514
Bugzilla bug 133545: fixed spelling errors "signning" in certutil memu
...
options. Thanks to Eric Murphy <ericmurphy@jabber.org> for the bug report.
2002-03-26 22:22:07 +00:00
wtc%netscape.com
608314e686
Bugzilla bug 131078: fixed compiler warnings. r=mcgreer.
2002-03-15 06:07:41 +00:00
wtc%netscape.com
4d973f2f8e
The previous checkin breaks signtool on Linux, AIX, and OSF1. Backing it
...
out.
2002-03-15 05:27:34 +00:00
wtc%netscape.com
9cf86aee4f
Bugzilla bug 131062: fixed a zlib vulnerability.
2002-03-15 01:43:49 +00:00
wtc%netscape.com
62b88996d5
Bugzilla bug 130703: fixed several issues in the NSS 3.4 exported headers.
...
1) Preseve the position of NSS 3.3 elements in the data structures. Some
new fields replace some old deprecated fields where possible to preserve
the total size of the structure.
2) Stan headers are removed from public exports.
3) Some exported functions didn't have prototypes in the public headers.
4) One bug fix: dev3hack.c did not pass the second argument to
nssToken_DestroyCertList.
5) Include the necessary headers to fix undeclared function warnings.
2002-03-14 04:12:25 +00:00
nelsonb%netscape.com
44154b43ce
Build p7content p7env p7sign and p7verify using nss shared libs.
...
bug 129354. r=wtc.
2002-03-07 22:07:21 +00:00
nelsonb%netscape.com
34151e77cf
Add support for new -p option to pass password to PK11 token.
...
Patch by evanchu@aol.com (Evan Chu). r=nelsonb a=wtc bug 129354.
2002-03-07 22:05:43 +00:00
jpierre%netscape.com
44ae883a06
Fix bug 128347 - add -string argument to pass strings to PKCS#11 modules upon addition
2002-03-02 01:56:27 +00:00
relyea%netscape.com
27a4ab74b6
Make makepqg build dynamic.
...
Call the dynamic high-level functions to accomplish the generation.
2002-03-02 00:50:39 +00:00
nelsonb%netscape.com
ebc48d2fa1
Fix Usage message. Add missing \n to string.
2002-03-01 01:53:07 +00:00
ian.mcgreer%sun.com
e9ae28e48e
fix looking up a key on a token
2002-02-27 22:12:06 +00:00
wtc%netscape.com
cb5e5f1f21
Bugzilla bug 112198: use the -dylib_file ld option to link the ssl3 and
...
smime3 dylibs and the NSS tools so that they can find the indirectly
referenced libsoftokn3.dylib. Define and export DYLD_LIBRARY_PATH. The
patch is contributed by Brian Ryner <bryner@netscape.com>. r=wtc,beard.
Modified Files:
coreconf/Darwin.mk nss/cmd/platlibs.mk nss/lib/smime/config.mk
nss/lib/ssl/config.mk nss/tests/common/init.sh
2002-02-15 23:38:47 +00:00
nelsonb%netscape.com
e023b4422a
Change most coreconf and NSS makefiles to use OS_TARGET (which can
...
be overridden via an environment variable) rather than OS_ARCH.
This is a precursor to more flexibility in cross-platform builds.
Bug 104541.
2002-02-15 22:54:08 +00:00
wtc%netscape.com
71f0b1eaab
Bugzilla bug 125790: free the nickName and passwd strings
2002-02-15 21:53:25 +00:00
ian.mcgreer%sun.com
a56e787c34
clean up certs & keys for purify
2002-02-15 20:50:47 +00:00
ian.mcgreer%sun.com
f10bd5bd8e
make listing of certs finish cleanly under purify
2002-02-14 18:02:30 +00:00
jpierre%netscape.com
284f6b65f8
Fix for 125373 - crash in crlutil
2002-02-14 00:06:52 +00:00
jpierre%netscape.com
7716bf30c8
Fix for 125143 - allow modutil to report PKCS#11 library load failure errors
2002-02-13 01:43:10 +00:00
jpierre%netscape.com
a5c73d7696
Reset NSPR error text before adding the module to make sure we aren't getting some previous error
2002-02-12 04:25:15 +00:00
jpierre%netscape.com
4a5d5b109f
Make modutil display a more detailed error when a PKCS#11 module fails to load. This is done by checking the NSPR error text that is set by PR_LoadLibrary failures deep in SECMOD_AddNewModule
2002-02-12 04:09:21 +00:00
wtc%netscape.com
232cdb0fbc
Bugzilla bug 114748: deleted unnecessary EXTRA_LIBS augmentation. The
...
zlib and jar libs are already added to EXTRA_LIBS by ../platlibs.mk.
2002-02-12 02:01:03 +00:00
nelsonb%netscape.com
42fdae57e1
Make NSS 3.4 build as part of mozilla on OS/2. Bug 114748.
...
Patch supplied by Javier Pedemonte.
2002-02-11 05:48:37 +00:00
ian.mcgreer%sun.com
8930954284
bug 124268, usage statement for dump chain option
2002-02-08 15:22:54 +00:00
wtc%netscape.com
a972f0ed13
Bugzilla bug 124318: do not link with -lsoftokn3 explicitly. Use the
...
-rpath-link linker option on Linux to find libsoftokn3.so.
2002-02-08 03:15:40 +00:00