1)return proper error code in more cases. 2) Fix bug in DH KeyPair Generation.
the essential part of this fix in pkcs11c.c where we add the CKA_NETSCAPE_DB
attribute on Diffie-Hellman key gen. I don't know why the code would have even
thought of working without this (unless we were testing with pregenerated
keys).
The rest of the fix is to surface more of the PKCS #11 error back up. There is
a separate bug to continue tracking the issue of lost PKCS #11 errors.
git-svn-id: svn://10.0.0.236/trunk@137229 18797224-902f-48f8-a5cc-f745e15eee43
This function has the same semantics as the NSPR 4.3 function
PR_GetLibraryFilePathname. This patch should be backed out when NSPR 4.3 is
released.
Modified Files: config.mk manifest.mn
Added Files: libpath.c
git-svn-id: svn://10.0.0.236/trunk@137130 18797224-902f-48f8-a5cc-f745e15eee43
1) Provide accessor functions for the PK11_DefaultArray so that modutil
does not have to link statically to access it.
2) Try setting the attribute on an object before we go to the work of copying
it (Function Only used in Java).
3) Optimize searching for the more common types of attributes.
git-svn-id: svn://10.0.0.236/trunk@137029 18797224-902f-48f8-a5cc-f745e15eee43
Don't fail the search if the token returned an error that indicates that it
legitimately couldn't find a CRL
git-svn-id: svn://10.0.0.236/trunk@136929 18797224-902f-48f8-a5cc-f745e15eee43
beginning of PK11_GetKeyLength to work around a deadlock in nCipher
module if PK11_ExtractKeyValue is called.
git-svn-id: svn://10.0.0.236/trunk@136795 18797224-902f-48f8-a5cc-f745e15eee43
length of the buffer would also terminate the active operation if the
buffer length is 0. PKCS#11 says it doesn't, so we need to make the
additional C_XxxFinal call even if the buffer length is 0. Allocate a
buffer from the heap if the stack buffer is too small and free the
heap-allocated buffer before we return from pk11_Finalize. We can use the
stack buffer if count is equal to its size.
git-svn-id: svn://10.0.0.236/trunk@136742 18797224-902f-48f8-a5cc-f745e15eee43
as necessary, per the PKCS 11 spec. Also, implement padding and unpadding
for single-part only ciphers.
git-svn-id: svn://10.0.0.236/trunk@136493 18797224-902f-48f8-a5cc-f745e15eee43
Solaris if NSS is loaded with dlopen() by an executable linked with the
RTLD_GROUP flag.
git-svn-id: svn://10.0.0.236/trunk@136052 18797224-902f-48f8-a5cc-f745e15eee43
cause NSS shutdown and the next NSS initialization to fail but do not
destroy the cert caches (and the crypto context and trust domain containing
them) to avoid a crash if the NSS client destroys the certs later. New
error codes needed to be added to indicate the failure of NSS shutdown and
NSS initialization due to this cause.
git-svn-id: svn://10.0.0.236/trunk@136016 18797224-902f-48f8-a5cc-f745e15eee43
cause NSS shutdown and the next NSS initialization to fail but do not
destroy the cert caches (and the crypto context and trust domain containing
them) to avoid a crash if the NSS client destroys the certs later. New
error codes needed to be added to indicate the failure of NSS shutdown and
NSS initialization due to this cause.
Modified Files:
base/errorval.c nss/nssinit.c pki/pki3hack.c pki/pki3hack.h
pki/pkistore.c pki/pkistore.h pki/tdcache.c pki/trustdomain.c
util/secerr.h
git-svn-id: svn://10.0.0.236/trunk@136014 18797224-902f-48f8-a5cc-f745e15eee43
declared and defined with an argument list of "(void)" instead of "()".
Modified Files: pk11cert.c secmodi.h
git-svn-id: svn://10.0.0.236/trunk@135492 18797224-902f-48f8-a5cc-f745e15eee43
function names containing SubjectKey and PublicKey. Moved internal
functions to private headers and use the lowercase cert_ prefix for the
internal functions for subject key ID mapping hash table. r=nelsonb.
git-svn-id: svn://10.0.0.236/trunk@135480 18797224-902f-48f8-a5cc-f745e15eee43
