Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-15 06:15:43 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
372,334 Commits 615 Branches 98 Tags 5.8 GiB
e10fdbd715
Commit Graph

1005 Commits

Author SHA1 Message Date
julien.pierre.bugs%sun.com
49a5cedc08 Fix for 176705 - fix rpath on AMD64 platform. r=saul, sr=wtchang 2005-03-09 23:04:49 +00:00
neil.williams%sun.com
5431bc6445 r=nelson Bug=263779 2005-03-09 23:02:48 +00:00
nelsonb%netscape.com
d126b39b34 Do not crash if Server SID cache is uninitialized. Bug 237724 r=Julien 
Instead, if SSL_NO_CACHE is not set, return an error code.
 2005-03-09 05:20:44 +00:00
nelsonb%netscape.com
f6cd864211 Correctly print cert request attributes in pp. Bug 284191. r=neil.williams 2005-03-08 01:20:04 +00:00
julien.pierre.bugs%sun.com
0923544a58 Fix for bug 283761 - use of memset in selfserv is inefficient. r=nelson 2005-02-26 04:57:32 +00:00
wtchang%redhat.com
e180302d71 Bugzilla Bug 282527: fixed a bug that prevented certutil from generating 
a cert with multiple DNS names in the subjectAltName extension.  The patch
is contributed by Neil Williams of Sun. r=wtc.
 2005-02-23 23:44:09 +00:00
wtchang%redhat.com
07d5483970 Bugzilla Bug 282367: Export CERT_DestroyUserNotice from the nss shared 
library.  Added a CERT_DestroyUserNotice call to cmd/lib/pppolicy.c to
fix a leak of CERTUserNotice. r=nelsonb.
Modified Files: lib/nss/nss.def cmd/lib/pppolicy.c
 2005-02-22 20:02:22 +00:00
neil.williams%sun.com
a7dcc795a8 Bug#:280602 Added list option to pk12uti, test for it. 
r=nelson@bolyard.com
 2005-02-08 01:04:50 +00:00
gerv%gerv.net
f45b5900c8 Bug 236613: change to MPL/LGPL/GPL tri-license. 2005-02-02 22:28:27 +00:00
wtchang%redhat.com
82b1183c84 Bugzilla Bug 267158: removed the $Name$ RCS keyword from our source files. 
This keyword adds noise to the output of "ident libnss3.so | grep NSS"
on our debug build, and appears to cause spurious CVS conflicts. r=nelsonb.
 2005-01-20 02:25:51 +00:00
julien.pierre.bugs%sun.com
7bcac0c35b Check for NULL PRFileDesc before closing them . r=saul,nelson 2004-12-07 06:25:34 +00:00
wchang0222%aol.com
896b606026 Removed a useless makefile rule. 2004-11-05 02:46:09 +00:00
wchang0222%aol.com
382316cb4d Define the macro 'verbose' as -1 to turn all all zlib trace messages in 
debug builds.  This is to be consistent with our modifications to the old
zlib (Bugzilla bug 131826).
 2004-11-04 16:23:19 +00:00
wchang0222%aol.com
37654a1a9c Removed the definition of 'errno' as a global variable for WinCE. Our 
WinCE port implements 'errno' as thread local storage.
 2004-11-04 06:14:23 +00:00
wchang0222%aol.com
f4dfeee106 The test programs $(PROGRAMS) need to be added to TARGETS, otherwise 
they won't get built and the libs target will fail trying to install them.
 2004-11-04 06:09:24 +00:00
wchang0222%aol.com
1540a23e93 Added makefile rules to build the test programs (example and minigzip) and 
the test target to run the tests.
Modified Files: Makefile config.mk manifest.mn
 2004-11-03 02:17:04 +00:00
wchang0222%aol.com
bf8833c4b9 Bugzilla bug 131826: upgraded to zlib 1.2.2. a=relyea,jpierre. 
Modified Files:
	README adler32.c compress.c config.mk crc32.c deflate.c
	deflate.h example.c gzio.c inffast.c inffast.h inffixed.h
	inflate.c inftrees.c inftrees.h manifest.mn minigzip.c trees.c
	uncompr.c zconf.h zlib.h zutil.c zutil.h
Added Files:
	crc32.h infback.c inflate.h
Removed Files:
	infblock.c infblock.h infcodes.c infcodes.h infutil.c
	infutil.h makefile.win maketree.c netscape_mods.doc zip16.def
 2004-11-02 23:40:10 +00:00
julien.pierre.bugs%sun.com
358d31e347 Fix for 266940 . increase MAX_THREADS in selfserv 2004-10-31 00:22:56 +00:00
julien.pierre.bugs%sun.com
c2ba47a939 Fix for 265504 - cmsutil dumps core with invalid option set. r=wtc 2004-10-22 22:39:47 +00:00
julien.pierre.bugs%sun.com
ff3b02711f Remove unused variable 2004-10-07 04:14:18 +00:00
julien.pierre.bugs%sun.com
e5604f6a11 Include secmodi.h for SECMOD_NewListLock 2004-10-07 04:08:16 +00:00
julien.pierre.bugs%sun.com
604d7f6c98 Remove unused variable 2004-10-07 04:04:25 +00:00
julien.pierre.bugs%sun.com
61e303f6e7 Remove unused variables 2004-10-07 04:03:35 +00:00
julien.pierre.bugs%sun.com
fc043a3854 initialize variable 2004-10-07 03:57:19 +00:00
julien.pierre.bugs%sun.com
ed405e7ea1 Remove unused variables 2004-10-07 03:56:37 +00:00
julien.pierre.bugs%sun.com
acc95e4dd9 Remove unused variable 2004-10-07 03:55:25 +00:00
julien.pierre.bugs%sun.com
1fce2635d0 Avoid divide by zero iteration 2004-10-01 03:19:30 +00:00
wchang0222%aol.com
202405c65b Print the error message if NSS_NoDB_Init fails. 2004-09-30 00:49:36 +00:00
nelsonb%netscape.com
5178c6777b Fix bugzilla bug 261496. Absent OPTIONAL CHOICEs should not cause fatal 
errors.  Fix printing code to not crash on missing optional nextUpdate.
r=julien.pierre
 2004-09-27 22:41:41 +00:00
saul.edwards%sun.com
ca0a1ce2ad 245518: Add /usr/lib/mps to RPATH for tools. 2004-09-17 21:59:04 +00:00
relyea%netscape.com
c2b70291da 1) Add time command to time specific functions. 
2) improve the help system.
3) bug fixes for arrays.
 2004-07-30 00:25:21 +00:00
relyea%netscape.com
b4b4a3f900 Error strings for new error codes. 2004-07-30 00:19:49 +00:00
nelsonb%netscape.com
20e64eb7e5 Correct option parsing, and add missing error messages. 2004-07-28 21:10:07 +00:00
nelsonb%netscape.com
c55043fc52 Support GeneralizeTime in the CRMF library. Bug 219080. r=julien. 
Patch by nelson and julien.
 2004-07-27 05:06:02 +00:00
nelsonb%netscape.com
371f19c6b9 Use the "c beautifier" (cb) to give this code a common K&R style with 
an indentation of 4.  Also rewrap a few strangely wrapped lines.
Bug 249330.
 2004-07-16 00:04:47 +00:00
nelsonb%netscape.com
2ed86b689a Apply review feedback to signtool sources. Add test case to QA tests. 
Bug 248751.
 2004-07-15 22:21:57 +00:00
nelsonb%netscape.com
07c4feeb45 Add -X option to produce signed XPI files for mozilla. Bug 248751. 
Path contributed by jeff klawiter <jeff@j-maxx.net>. r=nelson
 2004-07-15 00:01:50 +00:00
nelsonb%netscape.com
e054aef7bf Output properly encoded PQGParams. r=wtc. Bug 247738. 2004-07-01 02:07:02 +00:00
jpierre%netscape.com
309d389ab8 Fix for 249310 - add option to disable SSL2 in selfserv . r=nelson 2004-07-01 02:06:31 +00:00
nelsonb%netscape.com
35ab44f5ac Fix certutil's ability to read PQG files. Make certutil able to read 
the files produced by the command "makepqg -a".  Plug some memory leaks.
r=relyea,vipul  Bug 247739
 2004-06-23 22:23:00 +00:00
saul.edwards%sun.com
172f3b4cbc Bug 245518: add RPATH to BUILD_SUN_PKG, add $ORIGIN to rpath 2004-06-19 06:09:03 +00:00
nelsonb%netscape.com
6edf60ce5c Make crmftest compile and run with NSS 3.10 shared libraries. 
Enhance the command line parsing to permit portions of the tests
to be individually selected.  The code still doesn't all run
to completion without errors, but it gets MUCH farther than before.
Bug 244329.
 2004-06-03 03:56:48 +00:00
nelsonb%netscape.com
f2dedf230d a) adds the missing code to put stdin into binary mode. 
b) add the -i option to the usage message
c) builds addbuiltins with shared libs
   (includes "nssrenam.h" for some symbols)
d) build addbuiltins as part of the normal builds.
 2004-05-25 21:47:44 +00:00
nelsonb%netscape.com
ed9a466108 Fix crash when array member is used as variable. Bug 243655. r=relyea. 2004-05-22 01:24:22 +00:00
nelsonb%netscape.com
81bf125709 Add missing license block. Wrap long lines. Bug 243580. r=relyea. 2004-05-22 00:56:46 +00:00
ian.mcgreer%sun.com
be72ca16c5 bug 180268, reimplement ssl step-up for builtins 2004-05-17 20:08:38 +00:00
wchang0222%aol.com
081ede0ac7 Bugscape bug 57081: If the make variable NISCC_TEST is defined at build 
time, add -DNISCC_TEST to the compile command line.  The NISCC_TEST macro
enables special code that's conditionally compiled for NISCC testing.
Modified Files:
	cmd/smimetools/Makefile cmd/smimetools/cmsutil.c
	lib/ssl/config.mk lib/ssl/manifest.mn
 2004-05-13 01:29:15 +00:00
relyea%netscape.com
5d4e32454a scripts for pk11util 2004-05-12 23:49:39 +00:00
ian.mcgreer%sun.com
1d3c78cf5a program for generating FIPS algorithm test results 2004-05-12 17:30:31 +00:00
relyea%netscape.com
1d997eb6cd Fix mechanism command. 2004-05-05 00:36:52 +00:00
gerv%gerv.net
9bd361a285 Bug 236613: change to MPL/LGPL/GPL tri-license. Restore Id: lines. 2004-04-27 23:04:40 +00:00
gerv%gerv.net
3634d4d94b Bug 236613: change to MPL/LGPL/GPL tri-license. 2004-04-25 15:03:26 +00:00
relyea%netscape.com
d5abab03d4 Program to decrypt passwords inline from prefs files 2004-03-23 00:46:38 +00:00
relyea%netscape.com
70a5776e59 Fix arrays handling strings, and help 2004-03-13 02:44:26 +00:00
jpierre%netscape.com
9383b61a6e Fix for bug 143456 - add -P option for dbprefix to selfserv . r=MisterSSL 2004-03-10 02:47:13 +00:00
nelsonb%netscape.com
7debba55ce Import base64 encoded certificate files with old MAC line endings. 
Bug 221272. sr=wtc.
 2004-02-16 23:52:46 +00:00
wchang0222%aol.com
46de977590 Removed unused function _OS_SELECT for AIX. Thanks to Philip K. Warren 
<pkw@us.ibm.com> for reporting this.
 2004-02-13 03:13:04 +00:00
jpierre%netscape.com
42b100808b Fix strings in SECU_PrintError. bug 233493 2004-02-12 02:08:59 +00:00
jpierre%netscape.com
2703a27453 Fix for bug 233605 . Check CRL entry extensions after partial decoding. Also add some new CRL decoding errors. r=nelsonb 2004-02-11 06:05:18 +00:00
jpierre%netscape.com
560beb63f1 Fix for 233493 . Corrections based on Wan-Teh's feedback. 2004-02-11 05:27:32 +00:00
jpierre%netscape.com
13dcfd3e4c Fix for 233493 - fix symkeyutil build on OS/2. r=relyea 2004-02-10 23:48:37 +00:00
wchang0222%aol.com
bab3c2af5e Bugzilla bug 233319: prepend, rather than append, the NSS lib and bin 
directories to PATH. r=relyea.
 2004-02-09 22:39:11 +00:00
wchang0222%aol.com
5c995a5d18 Bugzilla bug 233239: do not include cmd/zlib and cmd/lib headers and 
libraries in NSS binary releases.
Modified Files:
	lib/Makefile lib/manifest.mn makepqg/manifest.mn zlib/Makefile
	zlib/manifest.mn
 2004-02-07 00:26:02 +00:00
wchang0222%aol.com
ce288b37c7 Bugzilla bug 233112: fixed a typo: "futuer" -> "future". Thanks to 
Heikki Toivonen <hjtoi-bugzilla@comcast.net> for the bug report.
 2004-02-05 05:56:54 +00:00
nelsonb%netscape.com
3f581fae9e Max crlutil return 0 or 1 correctly, depending on the success of the 
operation.  Bug 232937.  r=jpierre.
 2004-02-03 06:59:35 +00:00
nelsonb%netscape.com
50f63ee713 Invoke SECU_RegisterDynamicOids() so that more OIDs will print out. 
Bug 132942.  a=wtc.
 2004-01-29 22:48:58 +00:00
nelsonb%netscape.com
792e8d1e9e Bug 132942. r=wtc 
Make the following enhancements to NSS's ASN.1 printing code:
- Print warning messages that are properly indendented.
- PrintAsHex notices when the buffer contains entirely printable characters, and is larger than an int, and prints it as text in that case.
- PrintRawString now indents the string, rather than always printing it on
a separate line.
- now prints decoded bit strings
- now prints BMP (UCS2) strings as strings (not as hex) when they contain only printable ASCII characters.
- now prints Universal (UCS4) Strings as strings (not hex) when they contain only printable ASCII characters.
- Decodes certain encoded data that was previously printed as hex.
- Generically decodes ASN.1 data, rather than merely printing an error, when the ASN.1 data doesn't fit a known template.
- properly handles all optional components of basic constraints extensions.
- Prints the names of the bits in the X509 Key Usage extension.
- Prints General Names.
- Print Auth Key ID extensions
- Print subject and issuer alt name extensions
- Print CRL distribution points extensions
- format and print name constraints extensions
- print Authority Information Access extensions
- Print optional X509v2 subject and issuer Unique ID bit strings
 2004-01-29 22:45:20 +00:00
nelsonb%netscape.com
6d506e4aea Export cert functions that decode extensions and traverse decoded 
extensions.  Bug 231881. r= relyea, wtc.
 2004-01-28 23:23:45 +00:00
nelsonb%netscape.com
978fc338e7 Change program return value to reflect test outcome. Bug 221737. r=wtc 2004-01-28 22:30:27 +00:00
jpierre%netscape.com
a5aaee4048 Fix for 231051 - crlutil asserts after deleting CRL. r=wtc, nelsonb 2004-01-28 01:17:13 +00:00
nelsonb%netscape.com
d45b087145 Add -a option for Base64 encoded ASCII input and output. 
The -i and -o options now understand "-" to mean stdin and stdout.
Usage is displayed when -? or no arguments are given.
Bug 231536. r=relyea.
 2004-01-22 22:08:59 +00:00
nelsonb%netscape.com
b45bc04f3b Fix some erronous code that set SEC_ERROR_NO_MEMORY when there had been 
no memory failure.  r=relyea.  Bug 231566
 2004-01-22 02:17:26 +00:00
jpierre%netscape.com
f10a7a4ffd Support GeneralizedTime in NSS tools. bug 210530. r=wtc 2004-01-21 01:15:01 +00:00
nelsonb%netscape.com
14ff763caa Use the results from PK11_ProtectedAuthenticationPath(slot) in the 
password callback function.  Bug 229023. r=relyea.  verified by submittor.
 2004-01-21 00:18:59 +00:00
nelsonb%netscape.com
b35fce94e4 Make this code build on Windows as well as Unix. 2004-01-19 01:05:53 +00:00
nelsonb%netscape.com
5dea4e12cf Add vfychain to list of NSS cmds being built nightly. r=wtc. Bug 231025 2004-01-16 02:03:08 +00:00
relyea%netscape.com
49152980bd Tool to manage pkcs 11 module tests. 2004-01-14 21:34:20 +00:00
nelsonb%netscape.com
0a29c7fe2b Fix double free introduced in rev 1.54. r=wtc. bug 230774. 
Bug occurs only in NSS utilities that import base64 encoded files, e.g.
with the -a option.
 2004-01-14 01:19:26 +00:00
jpierre%netscape.com
70f0bbf00d Rename CERT_DecodeTimeChoice/CERT_EncodeTimeChoice to DER_DecodeTimeChoice/DER_EncodeTimeChoice 2004-01-07 23:07:24 +00:00
wchang0222%aol.com
1550e4ab3e Removed unused variable 'val'. 2003-12-23 21:40:52 +00:00
wchang0222%aol.com
010acd81c1 PK11_MoveKey was renamed PK11_MoveSymKey. r=relyea. 
Modified Files: symkeyutil.c nss.def pk11func.h pk11skey.c
 2003-12-19 23:29:43 +00:00
nelsonb%netscape.com
b41986df1b Fix S/MIME bugs that caused parallel arrays of digest OIDs and digest 
values to become out of sync.  Bugscape bug 54256. r=relyea.
Modified Files:	cmd/smimetools/cmsutil.c lib/smime/cmsdigest.c
 2003-12-12 23:55:06 +00:00
nelsonb%netscape.com
2b4825491c Add new -k option to NSS QA test program cmsutil. By default, cmsutil 
will no longer add any decoded certs to the cert db file, which is
useful for reproducibility of results in QA scripts.
Bugscape bug 54293. r=relyea,jpierre,wtc
 2003-12-06 06:31:08 +00:00
nelsonb%netscape.com
8cc8dfcdf3 This patch reduces the scope of many variables in cmsutil's decode function. It frees the signer's CN string after use. 
Bugscape bug 54021.  r=jpierre
 2003-11-25 23:26:39 +00:00
nelsonb%netscape.com
0fa7d0adc8 Implement new "batch mode" (see the -b option). Plug some leaks. 
Facilitates memory leak testing of the SMIME library.
This revision combines the patches for Bugzilla bug 225513 and
Bugscape bug 53775.  r = relyea and wchang0222
 2003-11-20 02:33:18 +00:00
wchang0222%aol.com
c7610ca80e Bugzilla bug 222568: fixed a bug introduced in rev. 1.54. 2003-11-19 01:38:26 +00:00
nelsonb%netscape.com
c4ce0736e8 Fix unnecessary assertion failures occuring in SMIME testing in 
debug builds only.  Partial fix for bugscape bug 53775. r=wchang0222
 2003-11-18 06:16:26 +00:00
wchang0222%aol.com
3569f15993 Removed an extraneous comma (,) at the end of an enum type definition. 2003-11-15 16:15:01 +00:00
nelsonb%netscape.com
b904b47318 Detect empty emailAddr strings in CERTCertificates. Bugzilla bug 211540. 
Modified Files:
    cmd/dbck/dbck.c cmd/signtool/util.c lib/certdb/certdb.c
    lib/certdb/stanpcertdb.c lib/pkcs7/p7decode.c lib/pki/certificate.c
    lib/pki/pki3hack.c lib/smime/cmssiginfo.c lib/softoken/pkcs11u.c
 2003-11-15 00:10:01 +00:00
relyea%netscape.com
a157ed2b26 Fix windows breakage. 2003-11-14 18:06:50 +00:00
relyea%netscape.com
aa736fe5ed Add symkeyutil to the manifest file 2003-11-14 03:27:23 +00:00
relyea%netscape.com
4f0cd96574 New tool to manage fixed keys in the database. 2003-11-14 03:26:47 +00:00
nelsonb%netscape.com
aa085e7956 Fix bugzilla bug 225301. r=jpierre. This patch does the following: 
1. Fixes the Usage message to document the command line options.
2. Changes the "decode" function to
   a) report an error on bad signatures, only when decoding the input file,
      not when decoding an ancillary "enveloped file".
   b) only output the contents of the "detached content" file (-c option)
      when that file's content was actually used in the computation.
3. Sundry other cleanup and added comments.
 2003-11-13 23:03:12 +00:00
wchang0222%aol.com
4868d7e8c2 Bugzilla bug 225373: the return value of CERT_NameToAscii must be freed 
with PORT_Free.
Modified Files:
	cmd/lib/secutil.c cmd/selfserv/selfserv.c
	cmd/signver/pk7print.c cmd/strsclnt/strsclnt.c
	cmd/tstclnt/tstclnt.c lib/certdb/cert.h
 2003-11-13 16:10:45 +00:00
wchang0222%aol.com
dd7a8790e8 Added a comment to note a question I had while reviewing the code. 2003-11-12 23:25:33 +00:00
jpierre%netscape.com
c8ebc52544 Fix crash in certutil if usage is omitted 2003-11-11 00:01:32 +00:00
nelsonb%netscape.com
0feb5dfd5f Fix numerous errors (mostly off-by-1 errors) in the code that formats 
and prints certs and CRLs.  This code is common to certutil and pp.
Bug 222568  r=nicholson (for this portion).
 2003-11-04 02:16:42 +00:00
nelsonb%netscape.com
bc763436c5 Better cleanup. Plug leaks in pp. bug 222568. r=nicolson (this part). 2003-11-04 01:51:54 +00:00
jpierre%netscape.com
1a37e6c822 Fix for 223494 - cmsutil signing does not work with hardware tokens. r=wtc, relyea 2003-10-28 02:34:15 +00:00
wchang0222%aol.com
76cb52bad5 Bugzilla bug 223624: removed an extraneous format string for fprintf. 
r=nelsonb.
 2003-10-25 14:05:08 +00:00
wchang0222%aol.com
8cfbd7293c Bugzilla bug 223624: node->error is a 'long', so it should match a %ld 
format.  r=nelsonb.
 2003-10-25 14:01:43 +00:00
wchang0222%aol.com
e4c6ee1dbb Removed the nonexistent directory 'rngtest' from DIRS. 2003-10-24 06:22:58 +00:00
nelsonb%netscape.com
b6e5abc24b Add new -N option, which completely suppresses the initialization and use 
of the SSL server session ID cache.  Used to test the fix for bug 222726.
 2003-10-19 05:18:11 +00:00
ian.mcgreer%sun.com
5c2c5888f9 ECC code landing. 
Contributed by Sheuling Chang, Stephen Fung, Vipul Gupta, Nils Gura,
and Douglas Stebila of Sun Labs
 2003-10-17 13:45:42 +00:00
jpierre%netscape.com
8963533a51 Fix for bug 222180 . remove redundant code 2003-10-15 01:40:10 +00:00
jpierre%netscape.com
4efbc18260 Fix for bug 222180 . Change to quick decoder . r=wtc 2003-10-15 01:34:22 +00:00
nelsonb%netscape.com
159d38edba This file has been dead code since NSS 3.4 released, if not sooner. 2003-10-11 01:10:51 +00:00
relyea%netscape.com
df0d80f9a5 Bug 203866 
Make unloaded modules visible for administrative purposes.
sr=wtc r=nelson
 2003-10-10 15:29:43 +00:00
jpierre%netscape.com
7f696b676c Fix for bug 55898 - print name of certificate causing failure in certutil . r=wtc 2003-10-08 01:00:37 +00:00
nelsonb%netscape.com
8dd13ab659 Make tstclnt work with IPv6 addresses. Bug 161610. 2003-10-06 23:50:11 +00:00
nelsonb%netscape.com
7fab02474b Check for presence of secmod.db file prior to acting on it, for all 
cases except "multiaccess:".  Bug 220217. r=relyea
 2003-10-06 23:33:03 +00:00
jpierre%netscape.com
347ed6b99f Fix for bug 94413 - OCSP needs more fine tuned error messages. r=wtc 2003-09-30 01:18:55 +00:00
jpierre%netscape.com
79d90909dc Fix for bug 219539 - support GeneralizedTime in NSS tools 2003-09-27 00:01:45 +00:00
jpierre%netscape.com
e608b7e0f4 Fix for bug 219539 - support GeneralizedTime in NSS tools 2003-09-26 06:18:40 +00:00
nelsonb%netscape.com
7bff061d97 Fix usage message to list all commands. Also, fix a few lines of 
code that did not follow the file's convention for indentation.
Bug 203870.
 2003-09-24 21:49:49 +00:00
nelsonb%netscape.com
aeaa70ccff Correctly compute certificate fingerprints. Bug 220016. 2003-09-23 02:05:47 +00:00
jpierre%netscape.com
945c4207d2 Fix for 215182 - certutil prints incorrect nickname. r=wtc 2003-09-23 00:10:54 +00:00
jpierre%netscape.com
ac38bd8aeb Fix for 215214 - make certutil show all instances of certs . r=wtc 2003-09-18 02:00:32 +00:00
nelsonb%netscape.com
1eb6b9c682 Further enhance the verbose debugging command line option in tstclnt 
for the case where client auth is requested by the server.  It will
now report the name of the cert sent to the server, or "send no cert".
 2003-09-09 20:22:54 +00:00
jpierre%netscape.com
8af297a802 Prevent crash if certlist is NULL 2003-09-09 00:54:20 +00:00
jpierre%netscape.com
bebd4ca8a9 Fix bug 214307 - add certutil batch mode . r=wtc 2003-09-08 23:30:29 +00:00
nelsonb%netscape.com
ba44a2b994 Back out rev 1.27, which turned verbose mode on by default for debugging 
QA test script failures that only occurred on tinderbox machines.
bug 207313 is now fixed.
 2003-06-02 20:39:48 +00:00
nelsonb%netscape.com
d8286a7935 This patch does two things, one large and one small. Bug 207313. 
1, It uses two new symbols SSOCK_FD and STDIN_FD instead of 0 and 1 to
reference members of the poll set array.  I just could never remember whether
pollset[0] was the socket or was stdin.  Now I don't have to remember.
This changes a lot of lines, but is very simple.
2. It implementa a new flag clientSpeaksFirst, set with the -f option.
The only effect of this flag is whether the value of
pollset[SSOCK_FD].in_flags is initially zero (if true) or PR_POLL_READ (if false).  Note that pollset[SSOCK_FD].in_flags is set to PR_POLL_READ after
each succesful write to the socket.
 2003-06-01 03:01:39 +00:00
wtc%netscape.com
ce11300ca6 Bug 206926: 1. Undo the changes to secrng.h, pqgutil.h, swfutl.c, 
unix_rand.c, and win_rand.c. 2. Make secrng.h and pqgutil.h private.
3. Public header pk11pqg.h can't include private header pqgutil.h.
4. Many files don't need to include secrng.h.  A few don't need to include
pqgutil.h.  5. Remove duplicate declarations of PQG_DestroyParams and
PQG_DestroyVerify from blapi.h.
 2003-05-30 23:31:32 +00:00
kirk.erickson%sun.com
52f15c0d08 Resolves bug 206971 - selfserv should OptimizeSpeed (use NSS_Initialize). 
Both selfserv and strsclnt no longer OptimizeSpace.  Moved SECMOD_DB
defines from nssinit.c to nss.h, make it availble for public use with
NSS_Initialize().
 2003-05-30 17:25:13 +00:00
nelsonb%netscape.com
93542dbdb9 Back out rev 1.28 to test some hypotheses about bug 207313. 2003-05-30 10:06:29 +00:00
nelsonb%netscape.com
a4d31ce381 Add -3 and -T options, with same meaning as in tstclnt and selfserv, 
disabling SSL3 and TLS respectively.  With this change, the QA stress
tests that say they're testing SSL3 or TLS can finally test what they
claim they are testing.
 2003-05-30 05:35:52 +00:00
nelsonb%netscape.com
d6507e92a9 All diagnostic output goes to stderr, not stdout. This change facilitates 
investigation of bug 207313.
 2003-05-28 02:11:17 +00:00
wtc%netscape.com
b10e3c77d3 Bug 206926: certcgi.c should not include blapi.h. Use the PK11_PQG_ 
functions instead.
 2003-05-28 00:47:47 +00:00
wtc%netscape.com
332454d9b1 Checked in more temporary debugging code for the strange QA failure on 
Windows.
 2003-05-25 19:19:28 +00:00
wtc%netscape.com
0c43efe373 Enabled verbose mode temporarily for debugging a strange QA failure on 
Windows.
 2003-05-25 04:16:03 +00:00
wtc%netscape.com
cc344de70c Bug 206926: now that secrng.h and pqgutil.h include blapit.h instead of 
blapi.h, some files that include secrng.h or pqgutil.h need to include
blapi.h directly.
Modified Files: certcgi.c swfutl.c unix_rand.c win_rand.c
 2003-05-25 01:21:27 +00:00
wtc%netscape.com
fc20d83b46 Include nss.h for the declaration of NSS_Shutdown. Use "" around prmem.h 
and prio.h.
 2003-05-24 05:23:42 +00:00
nelsonb%netscape.com
bf4cc8f8d1 Make tstclnt interactive on Windows. Bug 206031. 2003-05-22 04:34:38 +00:00
nelsonb%netscape.com
2a90f64d20 Eliminate double-spacing of output on windows. Bug 206551. r=wtc. 2003-05-22 01:51:18 +00:00
nelsonb%netscape.com
e38f5daae0 If the verbose option is given twice (e.g. -vv) and the server requests 
client auhtentication, tstclnt will display the server's list of trusted
client CA names.
 2003-05-17 05:38:01 +00:00
jpierre%netscape.com
481bd9b8d6 Fix for bug 204015 - make strsclnt reuse token after it is unplugged . r=nelsonb 2003-05-15 17:09:19 +00:00
nelsonb%netscape.com
00eb799722 Update ssltap's list of TLS ciphersuites. Bug 201158. 2003-05-15 06:28:44 +00:00
wtc%netscape.com
34bce4985a Bug 205346: need to include <unistd.h> on BeOS for isatty(). Thanks to 
timeless@bemail.org for the patch.
 2003-05-12 19:52:44 +00:00
wtc%netscape.com
05536f8c3a Bug 205346: fixed a compiler warning about a zero-length format string for 
sprintf.
 2003-05-12 18:58:33 +00:00
nelsonb%netscape.com
ecf80ee33f Fix bug 143426 by not freeing names in loop that traverses them. 
Patch contributed by liexter@hotmail.com (liqi)
 2003-05-09 23:59:18 +00:00
nelsonb%netscape.com
8c95859745 Display an error message instead of crashing if the user forgets the -n 
option with the -O (Dump Chain) option.
 2003-05-06 02:50:03 +00:00
nelsonb%netscape.com
7d5a46cf84 Don't display user's password in hex. Bug 200005. 2003-05-06 02:45:12 +00:00
wtc%netscape.com
213a402f9d Bug 134113: make NSS build on Win32 using GCC (MinGW). The patch 
(attachment 121068) is contributed by Chris Seawood (cls@seawood.org).
 2003-04-20 04:23:37 +00:00
jpierre%netscape.com
f81ee69b6b Fix for 202053 - signing of softokn3.dll may fail on OS/2. Force the use of OS/2 CMD.EXE default shell . r=pedemont 2003-04-15 22:42:09 +00:00
wtc%netscape.com
a5b3f9441e Bug 201555: enable stripping of EXEs on OS/2 with gcc. The LIBPATHSTRICT 
change in sign.cmd is so that you can run a VACPP build when gcc is
building (otherwise shlibsign loads the wrong DLLs).  The patch is
contributed by IBM.
Modified Files:
	coreconf/OS2.mk nss/cmd/shlibsign/sign.cmd
 2003-04-15 04:08:09 +00:00
wtc%netscape.com
3248bf6d78 The .chk files should have the $(DLL_PREFIX), not $(LIB_PREFIX), because 
they correspond to shared libraries/DLLs.
 2003-04-12 20:44:45 +00:00
wtc%netscape.com
afe68e3619 Bug 200974: NetBSD uses GNU ld and so also needs -rpath-link. 2003-04-07 23:52:17 +00:00
nelsonb%netscape.com
e2e7547270 Fix bug 200224. Eliminate null ptr dereference. 2003-04-02 23:24:01 +00:00
wtc%netscape.com
c684e24248 Bug 200179: prepend, rather than overwrite, the shared library search path. 
We can't assume the shared library search path is not set.
 2003-04-01 22:58:26 +00:00
wtc%netscape.com
f18c2a96c5 Destroy the hash context, public key, private key, and slot so that NSS 
shutdown will succeed.  r=relyea.
 2003-04-01 22:47:46 +00:00
wtc%netscape.com
845b452495 Added a missing {. 2003-04-01 22:03:07 +00:00
bishakhabanerjee%netscape.com
b9eafcbc3d checking return value of NSS_Shutdown() - bug 171263 2003-04-01 19:23:18 +00:00
bishakhabanerjee%netscape.com
6d93899099 checking return value of NSS_Shutdown - bug 171263 2003-04-01 19:13:50 +00:00
bishakhabanerjee%netscape.com
65218ae3b9 checking return value of NSS_Shutdown() - bug 171263 2003-04-01 19:11:38 +00:00
bishakhabanerjee%netscape.com
8e0426802d Checking return value of NSS_Shutdown() - bug 171263 2003-04-01 19:05:56 +00:00
bishakhabanerjee%netscape.com
7bbe39697c checking return value of NSS_Shutdown() - bug 171263 2003-04-01 19:00:50 +00:00
wtc%netscape.com
a68105106a Bug 199628: support shlibsign on OpenVMS. Pass $(OS_TARGET) instead of 
$(IS_WINDOWS) to sign.sh and sign.cmd (which ignores that argument).  In
sign.sh, use a case statement with three cases: Windows, OpenVMS, and
others.  The patch is contributed by Colin Blakes <colin@theblakes.com>.
Modified Files: Makefile sign.cmd sign.sh
 2003-03-29 00:42:43 +00:00
nelsonb%netscape.com
3f52ba47c1 Changes to enable ECC over characteristic 2^m fields. 
Contribution from Vipul Gupta <Vipul.Gupta@Sun.COM>
Modified Files:
 nss/cmd/strsclnt/strsclnt.c nss/lib/cryptohi/seckey.c
 nss/lib/freebl/blapit.h nss/lib/freebl/ec.c
 nss/lib/freebl/manifest.mn nss/lib/freebl/mpi/Makefile
 nss/lib/softoken/ecdecode.c nss/lib/softoken/pkcs11.c
 nss/lib/ssl/ssl3con.c nss/lib/util/secoid.c
 nss/lib/util/secoidt.h
 2003-03-29 00:18:30 +00:00
wtc%netscape.com
032e2a412b Bug 195797: support building NSS with GCC 3.x on OS/2. The patch is 
contributed by Javier Pedemonte <pedemont@us.ibm.com>.
Modified Files:
	security/coreconf/OS2.mk security/coreconf/rules.mk
	security/nss/cmd/shlibsign/sign.cmd
 2003-03-27 15:40:54 +00:00
wtc%netscape.com
3bcaeb4a87 Bug 199134: fixed build failures on FreeBSD. We need to specify -pthread 
when linking an executable (already doing that when linking a shared lib),
and we need to use the -rpath-link flag to help the linker find the
shared libraries that we indirectly link with.  r=cls.
Modified Files: coreconf/FreeBSD.mk nss/cmd/platlibs.mk
 2003-03-27 01:17:28 +00:00
wtc%netscape.com
b3d9493f77 Bug 195127: set the LIBPATH environment variable (used by AIX) as absolute 
pathname.  It seems that AIX caches shared libraries. If another app loaded
the same shared library earlier, the cached copy of the shared library,
including the pathname with which it was loaded, will be used.  So we need
to ensure that all apps load libsoftokn3.so with an absolute pathname so
that the pathname is correct to all apps.
 2003-03-26 21:07:12 +00:00
wtc%netscape.com
6af49910b8 Removed extraneous trailing / after directory pathnames. 2003-03-26 18:30:33 +00:00
wtc%netscape.com
a98f4c0628 Bug 199082: checked in Nelson's patch, which 
a) changes selfserv to test the return value from NSS_Shutdown.
b) changes SECMOD_Shutdown to set the error code SEC_ERROR_BUSY before
   returning SECFailure.
c) Adds a new function SSL_ShutdownServerSessionIDCache to ssl.h.
d) Changes selfserv to call SSL_ShutdownServerSessionIDCache before calling
NSS_Shutdown.
Modified Files:
	cmd/selfserv/selfserv.c lib/pk11wrap/pk11util.c
	lib/ssl/ssl.def lib/ssl/ssl.h lib/ssl/ssl3con.c
	lib/ssl/sslimpl.h lib/ssl/sslsnce.c
 2003-03-26 00:31:13 +00:00
nelsonb%netscape.com
ba8e91e37c Fix bug 198099. Display DSA public keys in certs properly. 2003-03-25 03:45:04 +00:00
wtc%netscape.com
d525a490d6 Removed the experimental change. It did not cause the intermittent QA 
failures on the "aix64" tinderbox to go away.
 2003-03-23 00:16:43 +00:00
wtc%netscape.com
d05787bdc0 Deleted an obsolete comment. 2003-03-22 08:01:44 +00:00
wtc%netscape.com
c2f89c4e52 An experimental change for debugging bug 195127: on the 64-bit AIX 
tinderbox the dist/${OBJDIR}/lib/libsoftokn3.chk symlink sometimes does
not get created.
 2003-03-22 07:52:25 +00:00
wtc%netscape.com
ff1e1c8393 Bug 198543: checked in the patch from Chris Seawood to fix BeOS bustage. 
Apparently it is necessary to have LIBRARY_PATH set in the environment.
 2003-03-22 02:59:26 +00:00
wtc%netscape.com
2242970351 BSD/OS seems to be using GNU ld, which needs -rpath-link to find the 
implicit dependency of an explicitly lined .so at link time.
 2003-03-22 01:26:58 +00:00
wtc%netscape.com
d6719582d1 Bug 198543: BeOS uses LIBRARY_PATH to search for shared libraries. 2003-03-21 21:33:43 +00:00
wtc%netscape.com
9d7d9e9189 Rewrote without the dirname() and basename() calls because they are not 
available on some Unix platforms (e.g., BSD/OS 4.2).
 2003-03-21 20:57:07 +00:00
wtc%netscape.com
162937967f Bug 197890: backed out the previous checkin. For unknown reasons, the 
Mozilla trunk Tinderbox machine "beast" had trouble running the cygpath
command.  It failed with the error
"can't create title mutex, Win32 error 6".
 2003-03-21 06:10:31 +00:00
wtc%netscape.com
c24221c822 On IRIX, dirname() and basename() are defined in -lgen. 2003-03-21 05:13:20 +00:00
wtc%netscape.com
5ecbb2e6d4 Bug 198482: OS/2 can't run sign.sh because we can't set DLL load path in 
a shell script.  This patch is contributed by Michael Kaply
<mkaply@us.ibm.com>.
Modified Files: Makefile
Added Files: sign.cmd
 2003-03-21 03:48:11 +00:00
wtc%netscape.com
47c8a2f084 Bugzilla 198481: fixed all build problems with gcc on Solaris. 
1. Removed the workarounds we put in before -- hardcoding LD to
/usr/ccs/bin/ld and passing the -B/usr/ccs/bin/ flag to gcc.
2. Use the compiler, $(CC), to build shared libraries.
3. If gcc is used, determine whether gcc uses GNU ld or Solaris
ld and set the new make variable GCC_USE_GNU_LD accordingly.
Modified Files:
	coreconf/SunOS5.mk nss/cmd/platlibs.mk nss/lib/freebl/Makefile
 2003-03-21 03:31:00 +00:00
wtc%netscape.com
88232d00e6 Bug 58221: don't use strlen to check if a string is of length 0. 2003-03-19 06:37:03 +00:00
wtc%netscape.com
c078ee6cdc Bug 58221: don't use strlen to check if a string is of length 0. 2003-03-19 06:30:12 +00:00
wtc%netscape.com
20e6a3d1ec Bug 197890: use Cygwin's cygpath command to "escape" a pathname with a 
drive letter for Cygwin's bash.
 2003-03-18 14:48:09 +00:00
wtc%netscape.com
d26ae8d600 Bug 197890: Eliminated the artificial dependency of all NSS cmd tools on 
zlib.  Only some of them (modutil and signtool) need zlib and we now define
that dependency explicitly.  In shlibsign/sign.sh, escape the drive letter
if the pathname contains it and we are using Cygwin so that the pathname
does not contain any colon, which is the PATH separator in Cygwin. r=relyea
Modified Files: platlibs.mk modutil/manifest.mn shlibsign/sign.sh
	signtool/manifest.mn
 2003-03-17 21:48:18 +00:00
kirk.erickson%sun.com
9e574da214 Made 'seconds' argument to '-L' optional. 
Updated Usage with '-L [seconds]' syntax, and default value (30).
 2003-03-12 02:40:43 +00:00
relyea%netscape.com
7b8dfc1a95 remove last references to TraverseCerts by removing depricated functions with call it. r=wtc 2003-03-05 21:46:20 +00:00
relyea%netscape.com
df524309b9 Incorporate wtc comment from bug 19061 (removal of commented code). 2003-03-04 23:11:09 +00:00
relyea%netscape.com
c339a0b104 Print all the certs for a given nickname, not just the first. 2003-03-04 22:32:24 +00:00
ian.mcgreer%sun.com
dd7d756307 bug 177556, signtool -l fails 
r=wtc
 2003-02-28 21:14:36 +00:00
nelsonb%netscape.com
f87129ad87 Add support for Elliptic Curve Cryptography. Bug 195135. 
Modified Files:
 	cmd/lib/SECerrs.h cmd/selfserv/selfserv.c
 	cmd/tstclnt/tstclnt.c lib/cryptohi/keyhi.h
 	lib/cryptohi/keythi.h lib/cryptohi/seckey.c
 	lib/cryptohi/secvfy.c lib/freebl/Makefile lib/freebl/blapi.h
 	lib/freebl/blapit.h lib/freebl/ldvector.c lib/freebl/loader.c
 	lib/freebl/loader.h lib/freebl/manifest.mn lib/nss/nss.def
 	lib/pk11wrap/pk11skey.c lib/pk11wrap/pk11slot.c
 	lib/softoken/lowkeyti.h lib/softoken/manifest.mn
 	lib/softoken/pkcs11.c lib/softoken/pkcs11c.c
 	lib/softoken/pkcs11t.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
 	lib/ssl/sslcon.c lib/ssl/sslenum.c lib/ssl/sslimpl.h
 	lib/ssl/sslinfo.c lib/ssl/sslproto.h lib/ssl/sslsecur.c
 	lib/ssl/sslsock.c lib/ssl/sslt.h lib/util/secerr.h
 	lib/util/secoid.c lib/util/secoidt.h
Added Files:
 	lib/freebl/GFp_ecl.c lib/freebl/GFp_ecl.h lib/freebl/ec.c
 	lib/freebl/ec.h lib/softoken/ecdecode.c
 2003-02-27 01:31:38 +00:00
nelsonb%netscape.com
83101081ca Add missing dependency on error headers. 2003-02-26 23:52:40 +00:00
kirk.erickson%sun.com
58e6df6d02 Addresses bug 193378 modutil should print an error message, 
by printing error on SECMOD_DeleteInternalModule() failure.
 2003-02-25 02:09:11 +00:00
wtc%netscape.com
e82f9dbda9 Simplified the test for substrings. 2003-02-22 15:20:07 +00:00
thayes%netscape.com
a74f0fa8b2 Bug 192639: Use utility functions for managing token passwords so that 
cmsutil will prompt for the value if it is not given on the command line.
r=nelsonb
 2003-02-19 00:39:39 +00:00
wtc%netscape.com
03d1089088 Add DHE algorithms to the list. (Merged relyea's checkin (rev. 1.3.2.1) 
from the NSS_3_7_BRANCH to the trunk.)
 2003-02-18 02:53:54 +00:00
wtc%netscape.com
ada7b251c4 Bug 131826: backed out the zlib 1.1.4 upgrade because the signtool tests 
failed.
Modified Files:
	README adler32.c compress.c crc32.c deflate.c deflate.h
	example.c gzio.c infblock.c infblock.h infcodes.c infcodes.h
	inffast.c inffast.h inflate.c inftrees.c inftrees.h infutil.c
	infutil.h minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c
	zutil.h
 2003-02-08 15:00:13 +00:00
wtc%netscape.com
22417a7df4 Bug 131826: checked in the README file of zlib 1.1.4. 2003-02-08 09:10:36 +00:00
wtc%netscape.com
305ac614c0 Bug 131826: upgraded to zlib 1.1.4. 
Modified Files:
	adler32.c compress.c crc32.c deflate.c deflate.h example.c
	gzio.c infblock.c infblock.h infcodes.c infcodes.h inffast.c
	inffast.h inflate.c inftrees.c inftrees.h infutil.c infutil.h
	minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c zutil.h
 2003-02-08 08:50:42 +00:00
wtc%netscape.com
80d543aa32 Bug 131826: added maketree.c from zlib 1.1.4. 2003-02-08 08:37:00 +00:00
wtc%netscape.com
9d38af738e Removed unused files stubs.c and zip_nodl.c. 2003-02-08 08:35:07 +00:00
wtc%netscape.com
a301d47f42 Bug 131826: added new header files from zlib 1.1.4. 
Added Files: trees.h inffixed.h
 2003-02-08 08:30:11 +00:00
relyea%netscape.com
ab77a6c23c Sigh, the QA scripts look for the word 'failed', but it's common that we 
can't open the shared library and isn't a real failure, so change the wording
 2003-02-08 01:52:37 +00:00
wtc%netscape.com
5076009554 Exit with 1 rather than -1 on failure. Make sure the program exit with 1 
on all failures. Remove the symlink, if a file/symlink by that name already
exists, before creating it to avoid the EEXIST error.
 2003-02-07 23:41:15 +00:00
wtc%netscape.com
d84be87533 Use <> around standard/system header files. This file does not need 
string.h, but it should include stdio.h because it uses fprintf and printf.
 2003-02-07 23:21:53 +00:00
relyea%netscape.com
7903049797 Fix signed/unsigned display issue. 
Add more loggin information on errors (rev 1.3 added this but lost it's log).
 2003-02-07 23:05:07 +00:00
relyea%netscape.com
d07389a152 *** empty log message *** 2003-02-07 23:02:43 +00:00
relyea%netscape.com
e196a4143b Add Mangle logging... 2003-02-07 21:12:26 +00:00
wtc%netscape.com
3da1c11d28 Moved the definition of MD_LIB_RELEASE_FILES from manifest.mn to Makefile 
so that it is right next to the definition of CHECKLOC, which it uses.
 2003-02-06 22:37:37 +00:00
relyea%netscape.com
0022c47e93 Mangle will be changing the shared libraries, so it should link with them. 2003-02-06 18:18:42 +00:00
wtc%netscape.com
d12037cd31 Bug 177387: Put the configuration/assignments before the rules in Makefile. 
Define MD_LIB_RELEASE_FILES in manifest.mn so that the *.chk files are
included in the mdbinary.jar files generated by the release target.
 2003-02-06 16:56:46 +00:00
wtc%netscape.com
d7d81c7883 Support both ";" and ":" as PATH separators on Windows. MKS Korn shell 
uses ";" but Cygwin bash uses ":".
 2003-02-06 14:52:43 +00:00
relyea%netscape.com
0c754d450b Update db test to verify cert8 not cert7 2003-02-05 00:33:52 +00:00
relyea%netscape.com
87a6506c3f Surface the Err codes if we fail to shift to FIPS mode. 
Add new option to verify that we have shifted to FIPS mode.
 2003-02-05 00:31:15 +00:00
relyea%netscape.com
9091d5b06d 1) turn on mangle builds. 
2) better fix for the missing MAXPATHLEN missing define.
3) make room for the '\0' in the pathname.
 2003-02-05 00:29:35 +00:00
relyea%netscape.com
d4c0391ff4 Fix LINUX breakage (define MAXPATHLEN if it wasn't defined the the standard 
system headers).
 2003-02-04 23:39:15 +00:00
relyea%netscape.com
a0499c74ef Add code to handle symlinks. 
Add verbose output to print out hashes and signatures.
 2003-02-04 23:18:08 +00:00
relyea%netscape.com
efdcf189a1 Add program which will mangle exactly 1 bit in a file. 2003-02-04 23:16:56 +00:00
relyea%netscape.com
75390fc662 Fix windows build breakage. 2003-02-04 19:03:11 +00:00
relyea%netscape.com
83e97a17cc Shell script to set up the path before running the signing tool 2003-02-03 21:06:57 +00:00
relyea%netscape.com
2d91037f77 Generate .chk file at build time when we build shlibsign 2003-02-03 21:06:18 +00:00
wtc%netscape.com
604f0ed9a1 Bug 191214: fixed the object leaks in signtool that prevented NSS_Shutdown 
from succeeding and added the NSS_Shutdown call back.  r=jpierre.
Modified Files: certgen.c sign.c signtool.c
 2003-01-30 23:11:13 +00:00
wtc%netscape.com
78b89796f5 Bug 191214: backed out the previous checkin until this bug (object leaks) 
is fixed.
 2003-01-30 01:50:31 +00:00
wtc%netscape.com
dd7b545622 Bug 171263: signtool should call NSS_Shutdown before it exits. 2003-01-30 00:39:37 +00:00
relyea%netscape.com
510d42958f Move LIBJAR definitions around so that NT builds. 2003-01-29 23:37:10 +00:00
relyea%netscape.com
3a46194bdd 1) add vfyserv to the standard build. 
2) add tool to build shared library signature files for FIP's.

Code to verify requires NSPR changes before we can check it in.
 2003-01-28 18:53:22 +00:00
relyea%netscape.com
943c3bc77e Compile modutil with shared libraries. 2003-01-28 16:44:33 +00:00
wtc%netscape.com
3cfd1da0cc Bug 145029: fixed compiler warnings (mostly "xxx might be used 
uninitialized").
 2003-01-17 02:49:11 +00:00
bishakhabanerjee%netscape.com
f96d105632 Bug 171263 - NSS test apps to check return value of NSS_Shutdown 2003-01-14 01:03:21 +00:00
bishakhabanerjee%netscape.com
3f8b500ca5 Bug 171263 - NSS test apps shd check return value of NSS_Shutdown 2003-01-13 22:36:39 +00:00
relyea%netscape.com
449530f503 Add the ability to generate certs with multiple DNS names. 2003-01-09 22:59:42 +00:00
wtc%netscape.com
209f994fd3 Need to call SSL_ClearSessionCache before calling NSS_Shutdown. 2003-01-08 21:40:52 +00:00
bishakhabanerjee%netscape.com
c50dfa28ad checking return value of NSS_Shutdown. Bug 171263 2003-01-07 22:53:13 +00:00
bishakhabanerjee%netscape.com
1b239a8ed0 checking return value of NSS_Shutdown. Bug 171263 2003-01-07 22:31:36 +00:00
bishakhabanerjee%netscape.com
985e092196 new revision: 1.19; previous revision: 1.18 2003-01-07 22:29:54 +00:00
wtc%netscape.com
b5e025dea3 Bug 183612: renamed some new functions to be consistent with existing 
function names containing SubjectKey and PublicKey.  Moved internal
functions to private headers and use the lowercase cert_ prefix for the
internal functions for subject key ID mapping hash table. r=nelsonb.
 2002-12-19 00:26:34 +00:00
nelsonb%netscape.com
49ca4445ae Clean up command line options parsing and Usage message. 2002-12-13 01:25:45 +00:00
nelsonb%netscape.com
a4ffefd8be Support SHA256, SHA384, and SHA512 hashes in NSS. 2002-12-12 06:05:45 +00:00
relyea%netscape.com
79fda8d95f Program to test smartcard removal and insertion detection. 2002-12-11 17:44:53 +00:00
thayes%netscape.com
8d4be901b5 Bug 184557: Allow usage specified on command line (-u) to be used to validate 
certificates used for signing (-S option).  Also add special handling for
nickname "NONE" in the -Y option.  This specifies that no certificate and
encryption key preference should be included in the signature object.
 2002-12-11 01:44:37 +00:00
relyea%netscape.com
abf1a9ae02 Sigh, this is what was breaking the Linux builds... incorrect initializer. 2002-12-10 18:09:16 +00:00
relyea%netscape.com
7ba80c7f5c Add code to create multiple email addresses in a single cert. 2002-12-10 17:18:06 +00:00
nelsonb%netscape.com
aad3764409 Expunge dead code. 2002-12-05 22:16:22 +00:00
ian.mcgreer%sun.com
72edde5172 bug 172247, don't allow import of duplicate issuer/serial certs 2002-11-21 20:43:15 +00:00
nelsonb%netscape.com
6b8d4e688b Add test modes for sha256, sha384 and sha512. 
Fix the -c (restart) option for testing hashes.  It works with all hashes.
When the -d option is given along with the -i or -o filename option,
and the filename is not absolute, the filename is taken to be relative to
the the mode's test directory.
 2002-11-21 05:44:03 +00:00
nelsonb%netscape.com
f8fead2f58 Add test cases from FIPS 180-2. 2002-11-21 02:26:50 +00:00
nelsonb%netscape.com
2d2f10ff75 Fix crash when formatting a cert with optional version not given. 2002-11-15 06:32:51 +00:00
nelsonb%netscape.com
4f733e25ac Make selfserv build for Darwin. 2002-11-14 23:33:24 +00:00
relyea%netscape.com
37feda0de1 Remove long dead code from util. triggered by bug 179038 2002-11-11 18:17:24 +00:00
relyea%netscape.com
789fae9e28 !@#!$@! signtool thinks it knows how to verify if the certdb's are there and 
OK or not. Of course it doesn't.

bob
 2002-11-04 20:37:08 +00:00
nelsonb%netscape.com
95badac2f4 Fix several problems related to error messages, including an attempt to 
print a null string pointer.
 2002-11-01 21:04:33 +00:00
nelsonb%netscape.com
cea8a96338 Reformat text. Fix syntax error in first examples. 2002-11-01 21:03:24 +00:00
relyea%netscape.com
4db4a5989a The Serial number needs to be the DEREncoded serial number, not the decoded 
Serial number.
 2002-10-30 17:22:06 +00:00
nelsonb%netscape.com
2d36f59d67 Add -v option, which prints email addresses in certs. This excersizes 
the new functions for extracting email addresses from certs.  Bug 152986.
 2002-10-24 01:40:40 +00:00
bishakhabanerjee%netscape.com
1d08dec690 commented out unchecked in tests 2002-10-24 00:19:53 +00:00
nelsonb%netscape.com
dc79671232 Verify the self-signed signature on PKCS 10 cert requests before honoring 
them.  Bug 174193.
 2002-10-18 21:58:24 +00:00
bishakhabanerjee%netscape.com
7fcb4ea142 changed error string to reflect error better: 162714 2002-10-18 00:13:03 +00:00
nelsonb%netscape.com
b0606e475e New utility to test cert chain verification using certs in files. 2002-10-17 22:24:35 +00:00
nelsonb%netscape.com
72e8094d87 Change instructions for entering a new token password to say "should" 
instead of "must".  Bug 174135.
 2002-10-17 02:06:31 +00:00
nelsonb%netscape.com
5a4244682c Use unsigned ints for serial numbers. Bug 173872. 
Add missing line break to cert requests.  Bug 174659.
Remove unused variables, and #ifndef NSPR20 code.
 2002-10-17 01:41:14 +00:00
nelsonb%netscape.com
16d37d34ce Use the new quick DER decoder to decode Certificate requests, because 
it does it correctly.  Fix some memory leaks in print code.
Print OCTET strings and bits strings better.
 2002-10-16 05:34:54 +00:00
nelsonb%netscape.com
acdec25c4b Eliminate a crash in pp formatting cert requests. Bug 174188. 
When asking for a new password and the two values don't match, ask for
both again.  Bug 174133.
 2002-10-16 01:40:22 +00:00
relyea%netscape.com
72fe83e3f2 Make grammar, punctuation, capitalization, and content changes suggested by 
nelson.
 2002-10-15 00:56:23 +00:00
jpierre%netscape.com
66672a3266 Fix addbuiltin t add issuer & serial number to trust object 2002-10-12 01:00:33 +00:00
relyea%netscape.com
7db5df2a89 Fix memory leak in vfyserv.c 2002-10-10 22:38:09 +00:00
relyea%netscape.com
7cb062be5d Fix Cert Reference leak in error path 2002-10-10 20:34:29 +00:00
relyea%netscape.com
e7544aab69 Add missing errors from secerr.h in lib/util 2002-10-10 20:31:25 +00:00
nelsonb%netscape.com
44827860fe Make indentation style self-consistent: 4 spaces per indent. 
Save error code at the beginning of printCertProblems, and restore it at
the end, since CERT_VerifyCert nearly always sets the error code to
-8157 Certificate extension not found when building an error log.
Bug 172036.
 2002-10-08 03:39:50 +00:00
jpierre%netscape.com
b0fe3718ae Fix for 164744 - implement new functions for pk12util . r=wtc 2002-10-03 03:35:32 +00:00
jpierre%netscape.com
2e48c1c8a4 Fix for 164744 - fix for pk12util to export multiple certs 2002-10-02 04:32:17 +00:00
wtc%netscape.com
4ae061289f Bug 166772: 'cinfo' needs to be initialized to NULL. Fixed an indentation 
problem.
 2002-09-30 20:31:55 +00:00
wtc%netscape.com
bd264d3f32 Bug 166781: fixed the bug that 'r2' may be used uninitialized. r=nicolson. 2002-09-27 22:22:12 +00:00
ian.mcgreer%sun.com
0f153605e9 bug 158078, unitialized variable due to a lot of unneccessary code 2002-09-26 20:30:11 +00:00
wtc%netscape.com
3f0df98640 Bug 91224: Make sure that we use Solaris ld, not GNU ld, to build NSS. 
Modified Files:
	coreconf/SunOS5.mk nss/Makefile nss/cmd/platlibs.mk
	nss/lib/freebl/Makefile
 2002-09-18 23:25:29 +00:00
jpierre%netscape.com
49f89a069f Call NSS_Shutdown() in crlutil. Part of purifying effort 2002-09-17 23:14:54 +00:00
jpierre%netscape.com
870b616b11 Fix indentation 2002-09-17 21:31:28 +00:00
jpierre%netscape.com
45c8746dd4 Add -r support to crlutil for multiple iterations 2002-09-17 00:28:42 +00:00
jpierre%netscape.com
411c8c7d0e Purify crlutil 
Add -E option to erase all CRLs from the certificate database even if the issuer certificate is not present
Add -T option to invoke custom test code
 2002-09-17 00:22:09 +00:00
wtc%netscape.com
dd0f92656f Removed the SIGTERM signal handler, which was added to debug bug 119340. 2002-09-13 05:10:59 +00:00
wtc%netscape.com
ca133cf458 Bug 129701: removed the sleep command for Linux in kill_selfserv(). 
Instead, we try to bind to the port in a loop until the port has been
freed.  Added the -b (bindOnly) option to selfserv for this purpose.
Modified files: cmd/selfserv/selfserv.c tests/common/init.sh tests/ssl/ssl.sh
 2002-09-07 13:41:21 +00:00
wtc%netscape.com
d982fc5cee Bug 136209: added the -P dbprefix option. The original -P (partial CRL 
decode) option was renamed -p.
 2002-09-07 04:43:04 +00:00
nicolson%netscape.com
e179fe8904 Fix 164126: makefile build error. 
Change the NSS module name from "security" to "nss".
 2002-09-06 16:38:56 +00:00
ian.mcgreer%sun.com
1871593ad6 additional patch for bug 166768 2002-09-06 14:10:14 +00:00
wtc%netscape.com
5a3d303bc9 Bug 136804: initialize inFile to PR_STDIN instead of NULL so that we don't 
crash if the -i option is not specified.  Added two assertions to avoid
closing PR_STDIN due to internal errors.
 2002-09-06 03:52:49 +00:00
wtc%netscape.com
a897ae16a9 Bugs 166734 and 166785: fixed compiler warnings reported by gcc on Linux. 
The patch for this checkin is attached to bug 166785.
 2002-09-06 00:27:52 +00:00
ian.mcgreer%sun.com
935b91935c bugs 166722 and 166768, compiler warnings in blapitest 
r=wtc
 2002-09-05 20:37:44 +00:00
relyea%netscape.com
e8f4d6e455 Bring SSL strength up to NSS 3.x level. 2002-08-30 17:56:05 +00:00
kaie%netscape.com
43a34d7ec4 b=107034 OE requires special attribute in incoming signed messages to support dual key certificates. Add new function 
NSS_CMSSignerInfo_AddMSSMIMEEncKeyPrefs.
r=relyea
 2002-08-27 13:14:42 +00:00
kaie%netscape.com
21b34fa931 Backing myself out, since it didn't compile on Win32, and I would like to discuss the correct fix. 2002-08-27 00:05:11 +00:00
kaie%netscape.com
d478be6ac5 b=107034 OE requires special attribute in incoming signed messages to support dual key certificates. Add new function 
NSS_CMSSignerInfo_AddMSSMIMEEncKeyPrefs.
r=relyea
 2002-08-26 21:34:31 +00:00
jpierre%netscape.com
dc99c08db3 Fix for 164471 - Hide passwords in NSS command-line tools on OS/2 2002-08-25 03:00:34 +00:00
jpierre%netscape.com
95bad7466f Correctly identify tty on OS/2 - fix for 164420 2002-08-24 13:46:50 +00:00
jpierre%netscape.com
cdaf8705fe Fix for 164403 - make console input work in NSS tools on OS/2 2002-08-24 11:51:42 +00:00
relyea%netscape.com
bb6cf23f23 use error code in secutil. 
Clean up the output.
Print out cert chain parsing issues more completely.
 2002-08-16 23:09:02 +00:00
relyea%netscape.com
cf0278de93 Quick and dirty utility to pink SSL servers to see if they are configured 
correctly.

NOTES: This program is a (very slightly) modified version of the
SSLSample/client.c program. As such it used the sample program support, which is
a duplication of much of secutil. Future enhancements would be 1) link with
secutil.lib. 2) When handling BadCert requests, run the Full VerifyCert and dump
the results. Make connections to the servers testing SSL2, SSL3 and TLS.

Changes were basically 1) Set the program to run without a security database
(this means no token support, or client auth). 2) Explicitly load the builtins
module so that we can test against the standard trust.
 2002-08-16 16:29:18 +00:00
nelsonb%netscape.com
eeff02773b Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. Fix Usage. 2002-08-09 22:06:12 +00:00
nelsonb%netscape.com
e90c165157 Add support for SSL_RSA_WITH_NULL_SHA. Bug 161529. Fix usage message. 2002-08-09 21:58:28 +00:00
jpierre%netscape.com
e6ee1f4c60 Add comment about partial CRLs 2002-08-09 07:09:25 +00:00
jpierre%netscape.com
9b074c9def Fix for 157649 - allow crlutil to do partial decoding so it can be used as a test program 2002-08-07 03:53:07 +00:00
bishakhabanerjee%netscape.com
a5ff71eccd Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:44:36 +00:00
jpierre%netscape.com
d57baf5140 Fix for 158221 - make crlutil save memory by using the new PK11_ImportCRL function with the CRL_DECODE_DONT_COPY_DER option 2002-07-19 01:07:27 +00:00
jpierre%netscape.com
c509948a27 Remove unreferenced variables 2002-07-18 23:50:03 +00:00
jpierre%netscape.com
0ef036408f Fix usage 2002-07-17 22:53:33 +00:00
jpierre%netscape.com
e7033fb486 Fix for 157996 - add support for SEC_NewCrl browser emulation mode in crlutil 2002-07-17 22:22:26 +00:00
wtc%netscape.com
aa78a2f343 Bug 157946: removed the unused -m option. Added the -v option to Usage(). 2002-07-17 18:39:02 +00:00
jpierre%netscape.com
dc151802c8 Make certutil use the new CERT_VerifyCertificate function when verifying certs 2002-07-16 00:45:50 +00:00
wtc%netscape.com
f1205a5879 Removed README.TXT, which is just README with Windows line endings (CRLF). 2002-07-09 17:11:25 +00:00
javi%netscape.com
6f5c3918c6 Go back to the lower case mechanism for the ocspResponse_* flags. 2002-07-03 20:22:27 +00:00
javi%netscape.com
7c36eac5d2 Use the newly exported symbol names. 2002-07-03 00:13:25 +00:00
kirk.erickson%sun.com
80cae9e038 Fixed indentation caught by Wan-Teh (66606). 2002-06-11 22:41:45 +00:00
kirk.erickson%sun.com
6e3d00368d Resolves 66606. Added -O (enable OCSP checking). 2002-06-11 16:29:28 +00:00
bishakhabanerjee%netscape.com
76c8329a07 to build the new NSS tests.. bugzilla bug 144316 2002-06-03 17:16:57 +00:00
ian.mcgreer%sun.com
7ad9c0cc44 bug 136701, certutil should use PK11_ListCerts 2002-05-29 18:19:33 +00:00
kirk.erickson%sun.com
9ef935cd78 Fixed OCSP typo. 2002-05-28 18:26:37 +00:00
kirk.erickson%sun.com
fa04da4ff4 Resolves bug 90070 (now exiting with PK12UERR_PK11GETSLOT 13). 2002-05-23 22:21:42 +00:00
wtc%netscape.com
0c57191723 Bugzilla bug 135824: fixed slot reference leaks in signtool and removed 
a faulty attempt to set user trust.  r=relyea,mcgreer.
Modified files: certgen.c util.c
 2002-05-13 17:08:20 +00:00
wtc%netscape.com
363fb30239 Bugzilla bug 135826: fixed the slot reference leaks. 2002-05-09 23:01:21 +00:00
wtc%netscape.com
894efe87d2 Bugzilla bug 135334: free the internal key slot reference when we are done. 2002-05-09 21:14:36 +00:00
jpierre%netscape.com
41ba83e283 Fix for 142658 - fix certutil crash with NULL nickname 2002-05-06 23:10:40 +00:00
ian.mcgreer%sun.com
a9ff4e3f4d fix a cert reference leak in strsclnt 2002-04-15 14:24:15 +00:00
ian.mcgreer%sun.com
6d36e7eddc fix error statement 2002-04-12 19:17:48 +00:00
relyea%netscape.com
7aa8e229f4 Bug 133584: Fix reference leaks which prevent shutdown in NSS and in the tests. 
Debug builds can verify correct operation by setting NSS_STRICT_SHUTDOWN, which
will cause an assert if shutdown is called but not all the modules are freed (which
means a slot, key, or cert reference has been leaked).
 2002-04-12 19:05:21 +00:00
ian.mcgreer%sun.com
341d4faa3c bug 136806, don't authenticate to friendly slots when adding certs 2002-04-12 18:07:49 +00:00
nelsonb%netscape.com
977f0c234a Stop linking in wsock32.lib and winmm.lib on Windows. We haven't needed 
these since we started linking with NSPR's DLLs, and they don't exist
on WinCE.
 2002-04-05 03:30:37 +00:00
relyea%netscape.com
68c7d19edd return the correct error codes to make all.sh happy. 2002-04-05 03:16:41 +00:00
relyea%netscape.com
24ff51d1d9 Link certutil dynamically. 2002-04-05 00:12:21 +00:00
relyea%netscape.com
f7df04f838 Don't try verifying the db's in a multi-access database case 2002-04-05 00:10:39 +00:00
nelsonb%netscape.com
29d5f9376c Add missing #include to fix errors on AIX. 2002-04-04 01:35:13 +00:00
nelsonb%netscape.com
515ed51a75 Add cross-platform (WinCE) support. 2002-04-04 00:00:27 +00:00
jpierre%netscape.com
79cf58115f Call NSS_Shudown in modutil 2002-03-27 05:02:58 +00:00
ian.mcgreer%sun.com
2b65a7f806 bug 123296, infinite loop in signtool when incorrect password given at command line 2002-03-26 22:23:28 +00:00
wtc%netscape.com
fbb98b2514 Bugzilla bug 133545: fixed spelling errors "signning" in certutil memu 
options.  Thanks to Eric Murphy <ericmurphy@jabber.org> for the bug report.
 2002-03-26 22:22:07 +00:00
wtc%netscape.com
608314e686 Bugzilla bug 131078: fixed compiler warnings. r=mcgreer. 2002-03-15 06:07:41 +00:00
wtc%netscape.com
4d973f2f8e The previous checkin breaks signtool on Linux, AIX, and OSF1. Backing it 
out.
 2002-03-15 05:27:34 +00:00
wtc%netscape.com
9cf86aee4f Bugzilla bug 131062: fixed a zlib vulnerability. 2002-03-15 01:43:49 +00:00
wtc%netscape.com
62b88996d5 Bugzilla bug 130703: fixed several issues in the NSS 3.4 exported headers. 
1) Preseve the position of NSS 3.3 elements in the data structures.  Some
new fields replace some old deprecated fields where possible to preserve
the total size of the structure.
2) Stan headers are removed from public exports.
3) Some exported functions didn't have prototypes in the public headers.
4) One bug fix: dev3hack.c did not pass the second argument to
nssToken_DestroyCertList.
5) Include the necessary headers to fix undeclared function warnings.
 2002-03-14 04:12:25 +00:00
nelsonb%netscape.com
44154b43ce Build p7content p7env p7sign and p7verify using nss shared libs. 
bug 129354.  r=wtc.
 2002-03-07 22:07:21 +00:00
nelsonb%netscape.com
34151e77cf Add support for new -p option to pass password to PK11 token. 
Patch by evanchu@aol.com (Evan Chu).  r=nelsonb a=wtc bug 129354.
 2002-03-07 22:05:43 +00:00
jpierre%netscape.com
44ae883a06 Fix bug 128347 - add -string argument to pass strings to PKCS#11 modules upon addition 2002-03-02 01:56:27 +00:00
relyea%netscape.com
27a4ab74b6 Make makepqg build dynamic. 
Call the dynamic high-level functions to accomplish the generation.
 2002-03-02 00:50:39 +00:00
nelsonb%netscape.com
ebc48d2fa1 Fix Usage message. Add missing \n to string. 2002-03-01 01:53:07 +00:00
ian.mcgreer%sun.com
e9ae28e48e fix looking up a key on a token 2002-02-27 22:12:06 +00:00
wtc%netscape.com
cb5e5f1f21 Bugzilla bug 112198: use the -dylib_file ld option to link the ssl3 and 
smime3 dylibs and the NSS tools so that they can find the indirectly
referenced libsoftokn3.dylib.  Define and export DYLD_LIBRARY_PATH.  The
patch is contributed by Brian Ryner <bryner@netscape.com>. r=wtc,beard.
Modified Files:
	coreconf/Darwin.mk nss/cmd/platlibs.mk nss/lib/smime/config.mk
	nss/lib/ssl/config.mk nss/tests/common/init.sh
 2002-02-15 23:38:47 +00:00
nelsonb%netscape.com
e023b4422a Change most coreconf and NSS makefiles to use OS_TARGET (which can 
be overridden via an environment variable) rather than OS_ARCH.
This is a precursor to more flexibility in cross-platform builds.
Bug 104541.
 2002-02-15 22:54:08 +00:00
wtc%netscape.com
71f0b1eaab Bugzilla bug 125790: free the nickName and passwd strings 2002-02-15 21:53:25 +00:00
ian.mcgreer%sun.com
a56e787c34 clean up certs & keys for purify 2002-02-15 20:50:47 +00:00
ian.mcgreer%sun.com
f10bd5bd8e make listing of certs finish cleanly under purify 2002-02-14 18:02:30 +00:00
jpierre%netscape.com
284f6b65f8 Fix for 125373 - crash in crlutil 2002-02-14 00:06:52 +00:00
jpierre%netscape.com
7716bf30c8 Fix for 125143 - allow modutil to report PKCS#11 library load failure errors 2002-02-13 01:43:10 +00:00
jpierre%netscape.com
a5c73d7696 Reset NSPR error text before adding the module to make sure we aren't getting some previous error 2002-02-12 04:25:15 +00:00
jpierre%netscape.com
4a5d5b109f Make modutil display a more detailed error when a PKCS#11 module fails to load. This is done by checking the NSPR error text that is set by PR_LoadLibrary failures deep in SECMOD_AddNewModule 2002-02-12 04:09:21 +00:00
wtc%netscape.com
232cdb0fbc Bugzilla bug 114748: deleted unnecessary EXTRA_LIBS augmentation. The 
zlib and jar libs are already added to EXTRA_LIBS by ../platlibs.mk.
 2002-02-12 02:01:03 +00:00
nelsonb%netscape.com
42fdae57e1 Make NSS 3.4 build as part of mozilla on OS/2. Bug 114748. 
Patch supplied by Javier Pedemonte.
 2002-02-11 05:48:37 +00:00
ian.mcgreer%sun.com
8930954284 bug 124268, usage statement for dump chain option 2002-02-08 15:22:54 +00:00
wtc%netscape.com
a972f0ed13 Bugzilla bug 124318: do not link with -lsoftokn3 explicitly. Use the 
-rpath-link linker option on Linux to find libsoftokn3.so.
 2002-02-08 03:15:40 +00:00