Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
218,460 Commits 3,986 Branches 0 Tags
Commit Graph

24 Commits

Author SHA1 Message Date
kaie%kuix.de
96ed6ee6a5 Bug 360420, OCSP Stapling, TLS client side implementation, based on work by Adam Langley, with tweaks from me and bsmith. r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@264732 18797224-902f-48f8-a5cc-f745e15eee43
 2013-02-15 17:52:45 +00:00
wtc%google.com
20f531e00c Bug 507359: add SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_VERSION. Update the 
error message for SSL_ERROR_HANDSHAKE_NOT_COMPLETED.  r=bsmith,rrelyea.
Modified Files:
	SSLerrs.h sslerr.h sslinfo.c


git-svn-id: svn://10.0.0.236/trunk@264025 18797224-902f-48f8-a5cc-f745e15eee43
 2012-07-13 00:51:57 +00:00
gerv%gerv.net
f465fa7d7e Bug 716563 - update license to MPL 2. r=rrelyea. 
git-svn-id: svn://10.0.0.236/trunk@263750 18797224-902f-48f8-a5cc-f745e15eee43
 2012-04-25 14:50:19 +00:00
wtc%google.com
39e8820abe Bug 681065: Implement DTLS (Datagram TLS) 1.0. The patch is contributed by 
Eric Rescorla <ekr@rtfm.com>.  r=wtc.
Modified Files:
	SSLerrs.h derive.c manifest.mn ssl.def ssl.h ssl3con.c
	ssl3gthr.c ssl3prot.h sslcon.c ssldef.c sslerr.h sslgathr.c
	sslimpl.h sslproto.h sslsecur.c sslsock.c sslt.h
Added Files:
	dtls1con.c


git-svn-id: svn://10.0.0.236/trunk@263637 18797224-902f-48f8-a5cc-f745e15eee43
 2012-04-04 03:37:07 +00:00
wtc%google.com
1d16428221 Bug 565047: Block export cipher suites when TLS 1.1 is negotiated. The 
patch is contributed by Brian Smith <bsmith@mozilla.com>.  r=wtc.
Modified Files:
	SSLerrs.h ssl3con.c sslerr.h


git-svn-id: svn://10.0.0.236/trunk@263634 18797224-902f-48f8-a5cc-f745e15eee43
 2012-04-03 02:30:54 +00:00
wtc%google.com
c40d150f71 Bug 571722: Implement SSL Version Range API. The patch is written by 
Brian Smith <bsmith@mozilla.com>.  r=wtc.
Modified Files:
	SSLerrs.h ssl.def ssl.h ssl3con.c sslcon.c sslerr.h sslgathr.c
	sslimpl.h sslproto.h sslsock.c sslt.h


git-svn-id: svn://10.0.0.236/trunk@263554 18797224-902f-48f8-a5cc-f745e15eee43
 2012-03-11 04:32:35 +00:00
kaie%kuix.de
9d33576904 Bug 542832 - SSL_RestartHandshakeAfterServerCert is broken, patch by Brian Smith, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@263382 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-11 12:55:58 +00:00
bsmith%mozilla.com
9b720db9f7 Bug 700516: Remove SSL2 support for SSL_RestartHandshakeAfterServerCert and SSL_RestartHandshakeAfterCertReq, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@263089 18797224-902f-48f8-a5cc-f745e15eee43
 2011-11-19 21:58:21 +00:00
kaie%kuix.de
51ddd562f1 Fix Tinderbox bustage, backout all patches from 2011-11-11 
git-svn-id: svn://10.0.0.236/trunk@263077 18797224-902f-48f8-a5cc-f745e15eee43
 2011-11-16 19:12:36 +00:00
bsmith%mozilla.com
4778bbc800 Bug 700516: Remove SSL2 support for SSL_RestartHandshakeAfterServerCert and SSL_RestartHandshakeAfterCertReq, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@263067 18797224-902f-48f8-a5cc-f745e15eee43
 2011-11-11 19:06:52 +00:00
bsmith%mozilla.com
0601ca68ad Bug 547312: Implement client-side support for NPN; original patch by agl r=wtc; changes by bsmith r=agl 
git-svn-id: svn://10.0.0.236/trunk@263024 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-29 00:29:11 +00:00
emaldona%redhat.com
3037aaaa3a Bug 683424 - tstclnt emits "SSL peer is in another FORTEZZA domain." error messages, r=wtc 
git-svn-id: svn://10.0.0.236/trunk@262961 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-05 18:07:18 +00:00
wtc%google.com
4fb0cbda9f Bug 587234: SSL_ERROR_WEAK_SERVER_KEY is renamed 
SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY to be specific about key type.
TBR=kaie.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@262706 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:02:05 +00:00
wtc%google.com
74f8f184d5 Bug 587234: Better error reporting for tiny DH keys in Server Key Exchange. 
Add a new error code SSL_ERROR_WEAK_SERVER_KEY for the dh_p size check in
ssl3_HandleServerKeyExchange.  r=nelson.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@262704 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:02:03 +00:00
wtc%google.com
2d904a0db9 Bug 275744: Add new error code SSL_ERROR_RX_UNEXPECTED_UNCOMPRESSED_RECORD 
when we detect missing compression.  The patch is contributed by Adam
Langley <agl@chromium.org>.  r=nelson,wtc.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@262702 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:02:01 +00:00
nelson%bolyard.com
d5fea0b0a5 Bug 537356: Implement new safe SSL3 & TLS renegotiation, r=wtc 
git-svn-id: svn://10.0.0.236/trunk@262700 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:59 +00:00
nelson%bolyard.com
40b99b60c5 Bug 526689: (CVE-2009-3555) SSL3 & TLS Renegotiation Vulnerability 
Disable SSL 3.x renegotiation by default.  Add new options to re-enable.
r=wtc,rrelyea


git-svn-id: svn://10.0.0.236/trunk@262698 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:57 +00:00
wtc%google.com
b2535bc0a6 Bug 403563: implement the TLS session ticket extension (rfc4507bis). The 
patch is contributed by Nagendra Modadugu <ngm+mozilla@google.com>.  A
small portion (PKCS #11 code and tests) was written by Wan-Teh Chang
<wtc@google.com>.  r=nelson,wtc
Modified Files:
	cmd/lib/SSLerrs.h cmd/selfserv/selfserv.c
	cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
	lib/ssl/manifest.mn lib/ssl/ssl.h lib/ssl/ssl3con.c
	lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslerr.h
	lib/ssl/sslimpl.h lib/ssl/sslnonce.c lib/ssl/sslsnce.c
	lib/ssl/sslsock.c lib/ssl/sslt.h tests/ssl/sslstress.txt
Added Files:
	lib/ssl/ssl3ext.c


git-svn-id: svn://10.0.0.236/trunk@262696 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:55 +00:00
kaie%kuix.de
94334effd5 Bug 371024, Typos in NSS' error strings 
r=rrelyea, r=nelson


git-svn-id: svn://10.0.0.236/trunk@262691 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:50 +00:00
kaie%kuix.de
720c174ff6 Bug 359280, fix typo in mozilla/security/nss/cmd/lib/SSLerrs.h 
r=nelson


git-svn-id: svn://10.0.0.236/trunk@262690 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:49 +00:00
nelson%bolyard.com
7d6737fda5 Define alerts and error codes for TLS Hello extensions. Bug 226271. 
r=julien.pierre


git-svn-id: svn://10.0.0.236/trunk@262689 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:48 +00:00
nelsonb%netscape.com
fc05e22027 Do not crash if Server SID cache is uninitialized. Bug 237724 r=Julien 
Instead, if SSL_NO_CACHE is not set, return an error code.


git-svn-id: svn://10.0.0.236/trunk@262688 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:47 +00:00
gerv%gerv.net
a8f69584c2 Bug 236613: change to MPL/LGPL/GPL tri-license. 
git-svn-id: svn://10.0.0.236/trunk@262684 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:43 +00:00
relyea%netscape.com
35f7c2e008 Initial NSS Open Source checkin 
git-svn-id: svn://10.0.0.236/trunk@262676 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-17 05:01:35 +00:00