Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
213,632 Commits 3,986 Branches 0 Tags
Commit Graph

8087 Commits

Author SHA1 Message Date
christophe.ravel.bugs%sun.com
a9181dbd9c Prepare NSS 3.12.6 RC1. 
git-svn-id: svn://10.0.0.236/trunk@259763 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-19 23:00:02 +00:00
slavomir.katuscak%sun.com
b9f471980d Bug 367376: Adding one more stack pattern. 
git-svn-id: svn://10.0.0.236/trunk@259743 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-18 09:26:57 +00:00
wtc%google.com
88282f31d8 Bug 537356: Redefine SSL_RENEGOTIATE_CLIENT_ONLY as 
SSL_RENEGOTIATE_TRANSITIONAL, changing its meaning for server sockets,  and
make it the default.  r=rrelyea.
Modified Files:
	ssl.h ssl3con.c sslsock.c


git-svn-id: svn://10.0.0.236/trunk@259722 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-17 02:29:08 +00:00
kaie%kuix.de
32993a9e71 Bug 542476, Add January 2010 batch of new roots to NSS 
r=rrelyea


git-svn-id: svn://10.0.0.236/trunk@259718 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-16 22:14:35 +00:00
kaie%kuix.de
5d3fe62e8e Bug 546389, nsssysinit binary built inside source tree, not objdir 
Patch v3, contributed by wtc@google.com, r=rrelyea


git-svn-id: svn://10.0.0.236/trunk@259717 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-16 19:38:42 +00:00
kaie%kuix.de
f61b8a539b Bug 546389, nsssysinit binary built inside source tree, not objdir 
Patch v1, r=rrelyea


git-svn-id: svn://10.0.0.236/trunk@259716 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-16 19:37:04 +00:00
wtc%google.com
7438b8e95a Bug 537356: Rename SCSV. In the final RFC, the symbolic name of the SCSV 
changed to TLS_EMPTY_RENEGOTIATION_INFO_SCSV.  r=christophe,rrelyea.
Modified Files:
	cmd/ssltap/ssltap.c lib/ssl/ssl.h lib/ssl/ssl3con.c
	lib/ssl/sslproto.h


git-svn-id: svn://10.0.0.236/trunk@259715 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-16 18:56:48 +00:00
slavomir.katuscak%sun.com
5b63e1778d Bug 546277: Fixed string comparison to work on AIX. r=christophe 
git-svn-id: svn://10.0.0.236/trunk@259713 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-16 10:40:31 +00:00
christophe.ravel.bugs%sun.com
49c62f0ccb NSS 3.12.6 RC0. 
git-svn-id: svn://10.0.0.236/trunk@259692 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-11 19:12:47 +00:00
wtc%google.com
708aef4d68 Bug 545273: Remove unused, obsolete function SEC_Init. r=rrelyea. 
Modified Files:
	cmd/lib/secutil.h cmd/p7env/p7env.c lib/util/manifest.mn
Removed Files:
	lib/util/secinit.c


git-svn-id: svn://10.0.0.236/trunk@259687 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-11 02:39:47 +00:00
emaldona%redhat.com
570d0c05ec Add sysinit directory to DIRS for Linux only builds, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@259684 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-11 01:11:33 +00:00
wtc%google.com
79f155021f Bug 526910: Increase the max response length for CRL downloads to 512 KB. 
r=alexei.


git-svn-id: svn://10.0.0.236/trunk@259677 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 18:33:24 +00:00
wtc%google.com
1aa1b407a5 Bug 496993: Add accessor functions for SSL_ImplementedCiphers and 
SSL_NumImplementedCiphers.  r=nelson.
Modified Files:
	cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c lib/ssl/ssl.def
	lib/ssl/ssl.h lib/ssl/sslenum.c


git-svn-id: svn://10.0.0.236/trunk@259676 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 18:07:21 +00:00
wtc%google.com
fe86a63c90 Bug 506804: Add SCCS and RCS version strings to libnssutil3.so. r=emaldona. 
git-svn-id: svn://10.0.0.236/trunk@259673 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 17:48:01 +00:00
slavomir.katuscak%sun.com
de1badf671 Bug 539950: Delayed selfserv kill. r=christophe 
git-svn-id: svn://10.0.0.236/trunk@259671 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 08:38:14 +00:00
wtc%google.com
1fa0d06df6 Bug 515870: Discard the return value of nssTrustDomain_GetCertsFromCache 
using (void) instead of (void *).  r=nelson.
Modified Files:
	lib/pk11wrap/pk11cert.c lib/pki/tdcache.c
	lib/pki/trustdomain.c


git-svn-id: svn://10.0.0.236/trunk@259664 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 02:04:32 +00:00
wtc%google.com
da452eb737 Bug 515870: Fix compiler warnings regarding unsigned char * vs. char *. 
r=nelson.
Modified Files:
	cmd/ssltap/ssltap.c lib/certdb/alg1485.c lib/certdb/certdb.c
	lib/pkcs7/certread.c


git-svn-id: svn://10.0.0.236/trunk@259663 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 02:00:57 +00:00
wtc%google.com
83374322f8 Bug 515870: Make conditional expressions explicit when they involve 
assignments.  r=nelson.
Modified Files:
	lib/certdb/secname.c lib/libpkix/pkix/util/pkix_list.c


git-svn-id: svn://10.0.0.236/trunk@259662 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 01:54:31 +00:00
wtc%google.com
fbff1691d6 Bug 515870: Remove an unnecessary null check for x_name because x_name is 
the name of an array.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@259661 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 01:51:18 +00:00
wtc%google.com
54e4e3c6d7 Bug 518255: Add const to SEC_SignData and VFY_VerifyData. r=alexei. 
Modified Files:
	cryptohi.h secsign.c secvfy.c


git-svn-id: svn://10.0.0.236/trunk@259660 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 00:49:43 +00:00
wtc%google.com
9c501fd076 Bug 495358: Remove obsolete Classic Mac OS code. r=emaldona. 
Modified Files:
	nss/nss.h ssl/sslimpl.h


git-svn-id: svn://10.0.0.236/trunk@259658 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-10 00:33:50 +00:00
emaldona%redhat.com
a4891fbd55 nsssyinit cummulative patch from Fedora 12, Bug 544584, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@259629 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-06 04:56:37 +00:00
emaldona%redhat.com
b8b0eba98d Fix seg fault when enumerating the nss database, 544584, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@259628 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-06 04:48:56 +00:00
wtc%google.com
8243dfe878 Bug 275744: Use either system zlib or nss/lib/zlib. Unset NSS_ENABLE_ZLIB 
when building (make NSS_ENABLE_ZLIB=) to turn off TLS deflate compression.
r=rrelyea.
Modified Files:
	Makefile config.mk


git-svn-id: svn://10.0.0.236/trunk@259602 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-04 19:09:08 +00:00
wtc%google.com
bd2878fda4 Bug 544191: Use system zlib on Mac OS X. When using system zlib, -lz has 
to be added to OS_LIBS instead of EXTRA_LIBS because $(PROGRAM) depends on
$(EXTRA_LIBS).  r=rrelyea.
Modified Files:
	coreconf/Darwin.mk nss/cmd/platlibs.mk
	nss/cmd/modutil/Makefile nss/cmd/signtool/Makefile


git-svn-id: svn://10.0.0.236/trunk@259601 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-04 18:59:11 +00:00
christophe.ravel.bugs%sun.com
a7471de73f Change micro version after fix for bug 536485: turn off intel aes HW accelleration. 
git-svn-id: svn://10.0.0.236/trunk@259599 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-04 18:50:17 +00:00
wtc%google.com
4ad6a3c20d Bug 540304: Rename ExtensionType to SSLExtensionType. The patch is 
contributed by Kai Engert <kaie@kuix.de>.  r=wtc.
Modified Files:
	ssl.h sslreveal.c sslt.h


git-svn-id: svn://10.0.0.236/trunk@259597 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-04 03:21:11 +00:00
wtc%google.com
94ac5cd996 Bug 537356: Don't add SCSV to ss->cipherSpecs (for SSL 2.0), to eliminate 
the doubt that SCSV could be negotiated by mistake.  r=nelson,rrelyea.
Modified Files:
	sslcon.c sslimpl.h


git-svn-id: svn://10.0.0.236/trunk@259596 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-04 03:08:45 +00:00
wtc%google.com
13cd60e59c Bug 275744: Add new error code SSL_ERROR_RX_UNEXPECTED_UNCOMPRESSED_RECORD 
when we detect missing compression.  The patch is contributed by Adam
Langley <agl@chromium.org>.  r=nelson,wtc.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@259586 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-03 03:44:29 +00:00
wtc%google.com
d49496f0ff Bug 537356: Disable the ECC cipher suites for SSL 3.0 renegotiations 
because we don't send the elliptic_curves and ec_point_format extensions
in SSL 3.0 client hello.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@259579 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-03 02:46:15 +00:00
wtc%google.com
44e58a0d4e Bug 537356: Don't bother initializing unused entries in client hello 
senders arrays with { -1, NULL }.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@259578 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-03 02:38:20 +00:00
alexei.volkov.bugs%sun.com
08cba3b588 360421 - Implement TLS Server Name Indication for servers. Save server name in session ticket. r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@259576 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-03 02:25:36 +00:00
dveditz%cruzio.com
88a0afc78f bug 528184 missing null check, patch by romaxa, r=kaie, a=dveditz 
git-svn-id: svn://10.0.0.236/trunk@259566 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-02 09:40:23 +00:00
alexei.volkov.bugs%sun.com
1b9a24c664 Allow unsafe renegotiation for interoperability tests untill interoperability server is fixed. 
git-svn-id: svn://10.0.0.236/trunk@259554 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-01 23:46:48 +00:00
wtc%google.com
86e8c7a68f Bug 542538: Update the comments to use RFC 2560 language. Define a "valid" 
and a "good" response.  The patch is contributed by Adam Langley
<agl@chromium.org>.  r=wtc.
Modified Files:
	ocsp.c ocsp.h


git-svn-id: svn://10.0.0.236/trunk@259552 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-01 20:09:32 +00:00
wtc%google.com
7ee94bb1fa Bug 542538: Add the pwArg argument to CERT_CacheOCSPResponseFromSideChannel. 
r=rrelyea.
Modified Files:
	ocsp.c ocsp.h


git-svn-id: svn://10.0.0.236/trunk@259549 18797224-902f-48f8-a5cc-f745e15eee43
 2010-02-01 19:46:49 +00:00
wtc%google.com
e33fb104bb Bug 537356: Send SCSV in SSLv2-compatible client hellos. r=nelson. 
git-svn-id: svn://10.0.0.236/trunk@259513 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-30 03:48:10 +00:00
wtc%google.com
5134f38789 Bug 494603: Add a README file to document SQLite version and local changes. 
r=rrelyea.


git-svn-id: svn://10.0.0.236/trunk@259512 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-30 01:39:39 +00:00
wtc%google.com
f51c6b5126 Bug 537356: Re-enable SSL renegotiation tests. Add the -2 option to 
tstclnt (to turn off SSLv2-compatible client hellos) to work around SNI
name change issue with renegotiation.  r=rrelyea
Modified Files:
	ssl.sh sslauth.txt


git-svn-id: svn://10.0.0.236/trunk@259511 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-29 22:36:25 +00:00
wtc%google.com
9d8c3c0f17 Fixed typo sss => ssl. 
git-svn-id: svn://10.0.0.236/trunk@259507 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-29 19:58:40 +00:00
wtc%google.com
3f6d220c28 Bug 537356: server-side SSL_RENEGOTIATE_REQUIRES_XTN code should handle 
both client-initiated (ss->ssl3.hs.ws == idle_handshake) and
server-initiated (ss->ssl3.hs.ws == wait_client_hello) renegotiations.
r=kaie,nelson.


git-svn-id: svn://10.0.0.236/trunk@259506 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-29 19:55:42 +00:00
wtc%google.com
fa46d39e9d Bug 537356: In SSL 3.0, send and handle the renegotiation_info extension 
but not any other extension.  r=rrelyea.
Modified Files:
	ssl3con.c ssl3ext.c


git-svn-id: svn://10.0.0.236/trunk@259505 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-29 19:20:28 +00:00
wtc%google.com
bc7ddad30d Bug 542538: Add the CERT_CacheOCSPResponseFromSideChannel function for 
recording stapled OCSP responses.  The patch is contributed by Adam Langley
<agl@chromium.org>.  r=wtc,rrelyea.
Modified Files:
	certhigh/ocsp.c certhigh/ocsp.h nss/nss.def


git-svn-id: svn://10.0.0.236/trunk@259504 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-29 03:09:17 +00:00
glen.beasley%sun.com
077cc0c686 536485 turn off intel aes HW accelleration r=bob relyea 
git-svn-id: svn://10.0.0.236/trunk@259503 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-28 23:14:03 +00:00
kaie%kuix.de
bd4c4b9fa4 Bug 540304, Implement SSL_HandshakeNegotiatedExtension 
r=nelson


git-svn-id: svn://10.0.0.236/trunk@259501 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-28 16:14:25 +00:00
nelson%bolyard.com
0bc55de11a Bug 537356: Implement new safe SSL3 & TLS renegotiation, r=wtc 
git-svn-id: svn://10.0.0.236/trunk@259500 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-28 06:19:13 +00:00
wtc%google.com
629b2da1d5 Bug 536023: Change the type of the endptr parameter of der_TimeStringToTime 
to fix a compiler warning.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@259456 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-22 04:13:25 +00:00
wtc%google.com
66dfd7adba Bug 536474: Add support for logging pre-master secrets. The patch is 
contributed by Adam Langley <agl@chromium.org>.  r=nelson,wtc.
Modified Files:
	ssl3con.c sslimpl.h sslsock.c


git-svn-id: svn://10.0.0.236/trunk@259455 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-22 03:47:42 +00:00
wtc%google.com
d1df34d7a4 Bug 541228: Fix a mistake in the previous checkin: != should be ==. 
git-svn-id: svn://10.0.0.236/trunk@259454 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-22 02:34:30 +00:00
wtc%google.com
2b516d2b7c Bug 541228: Remove an obsolete NSPR version check in lib/util/secport.c. 
r=emaldona.


git-svn-id: svn://10.0.0.236/trunk@259453 18797224-902f-48f8-a5cc-f745e15eee43
 2010-01-22 02:18:54 +00:00