Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
214,977 Commits 3,986 Branches 0 Tags
ea57f487688a00a6713d17dcc7068b20df63ecc3
Commit Graph

8309 Commits

Author SHA1 Message Date
wtc%google.com
b41a67ad55 Bug 606049: Add the SSL peer's CA certificates to ss->ssl3.peerCertChain in 
the correct order.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@261441 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-21 17:31:36 +00:00
wtc%google.com
e945f23c99 Bug 600438: Fix the locking order assertion in ssl_Get1stHandshakeLock, 
allowing firstHandshakeLock -> recvBufLock -> firstHandshakeLock, which can
happen if a callback function calls some libSSL functions.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@261439 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-20 23:54:04 +00:00
wtc%google.com
b8e2518399 Bug 602754: Fix "a the" in comments. The patch is contributed by 
Edmund Wong <ewong@pw-wspx.org>.  r=wtc.
Modified Files:
	cmd/symkeyutil/symkey.man lib/jar/jarver.c
	lib/pk11wrap/pk11akey.c lib/pk11wrap/pk11pbe.c
	lib/smime/smime.h lib/softoken/legacydb/lowkeyi.h


git-svn-id: svn://10.0.0.236/trunk@261374 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-11 19:30:10 +00:00
wtc%google.com
593e30c71b Bug 528743: ignore unknown AIA location types. r=alexei. 
Modified Files:
	libpkix/include/pkix_errorstrings.h
	libpkix/pkix_pl_nss/module/pkix_pl_aiamgr.c util/secerr.h


git-svn-id: svn://10.0.0.236/trunk@261285 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-27 21:51:28 +00:00
wtc%google.com
dcfc6e5841 Bug 597622: map more libpkix errors to SEC_ERROR_BAD_INFO_ACCESS_LOCATION. 
r=alexei.


git-svn-id: svn://10.0.0.236/trunk@261282 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-27 21:21:08 +00:00
wtc%google.com
f028bfff96 Bug 597622: update the comments for CERT_ParseURL because it is no longer 
used just for parsing the URI of an OCSP responder.  r=alexei.


git-svn-id: svn://10.0.0.236/trunk@261281 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-27 21:18:53 +00:00
wtc%google.com
4317b583d0 Bug 597622: Add SEC_ERROR_BAD_CRL_DP_URL. r=alexei. 
Modified Files:
	cmd/lib/SECerrs.h
	lib/libpkix/pkix_pl_nss/module/pkix_pl_pk11certstore.c
	lib/util/secerr.h


git-svn-id: svn://10.0.0.236/trunk@261279 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-27 21:02:00 +00:00
kaie%kuix.de
856edfa42a bug 337433, Need CERT_FindCertByNicknameOrEmailAddrByUsage 
r=rrelyea


git-svn-id: svn://10.0.0.236/trunk@261270 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-24 13:31:58 +00:00
jdennis%redhat.com
5c1db556f4 remove dangling reference to deleted file lib/httplib.py 
git-svn-id: svn://10.0.0.236/trunk@261265 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-22 18:57:57 +00:00
nelson%bolyard.com
809830b8b5 Bug 388978: Add EV-defined subject name attributes, r=emaldona 
git-svn-id: svn://10.0.0.236/trunk@261231 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-18 21:17:53 +00:00
wtc%google.com
ff7089f380 Bug 595264: Fix an infinite loop in pkix_pl_InfoAccess_ParseTokens if the 
input contains a "%" hex hex escape sequence that's not the expected "%20".
The patch is contributed by Adam Langley of Google <agl@chromium.org>.
r=wtc,alexei.


git-svn-id: svn://10.0.0.236/trunk@261221 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-16 17:37:05 +00:00
wtc%google.com
32bb98716a Bug 586163: Document the change to PKCS #12 nickname collision callback in 
NSS 3.12 by renaming the 'wincx' argument to 'leafCert'.  Also remove
several unused 'wincx' arguments.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@261201 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-13 20:05:03 +00:00
wtc%google.com
9a0c4e43d7 Bug 586163: Document the change to PKCS #12 nickname collision callback in 
NSS 3.12.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@261200 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-13 20:00:23 +00:00
nelson%bolyard.com
d82d18ef54 Fix parsing of serial numbers 
git-svn-id: svn://10.0.0.236/trunk@261196 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-11 22:03:43 +00:00
nelson%bolyard.com
8dfbbe224f Remove dependence on external programs, add dependence on NSS shared libs 
git-svn-id: svn://10.0.0.236/trunk@261195 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-11 19:54:05 +00:00
nelson%bolyard.com
bc490afc4c Program to pretty print the certdata.txt file and patches to it. 
To review patches, use an optional argument with a value of 1.
Contributed by Nelson Bolyard <nelson@bolyard.me>


git-svn-id: svn://10.0.0.236/trunk@261194 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-11 18:34:43 +00:00
emaldona%redhat.com
29c6d7d4a6 Bug 589288, nsslow_GetFIPSEnabled returns 0 when /proc/sys/crypto/fips_enabled isn't present, r=rrelyea 
git-svn-id: svn://10.0.0.236/trunk@261192 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-10 00:42:36 +00:00
rrelyea%redhat.com
89270aa72c coverity memory leak 
found by timeless
patch by timeless
r= rrelyea
Bug 587422


git-svn-id: svn://10.0.0.236/trunk@261191 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-09 21:25:05 +00:00
rrelyea%redhat.com
2c2d87932e Coverity identified memory leaks in error paths. 
identified by timeless.
patches by timeless.
r=rrelyea
bugs 587404 587405 587409 587386 587387


git-svn-id: svn://10.0.0.236/trunk@261190 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-09 21:14:24 +00:00
nelson%bolyard.com
6937fdc8b3 [Bug 593422] Enhance pp to print DER Names (e.g. certificate subject), r=wtc 
git-svn-id: svn://10.0.0.236/trunk@261179 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-03 19:25:02 +00:00
wtc%google.com
05c0113e99 Bug 573367: Add README.nss and patches to make it easier to update to new 
versions of zlib.  r=emaldona.
Added Files:
	README.nss patches/msvc-vsnprintf.patch patches/prune-zlib.sh


git-svn-id: svn://10.0.0.236/trunk@261173 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-02 15:05:40 +00:00
wtc%google.com
bfb9e1b9b7 Bug 573367: Update the makefile target "test" to the shell commands used in 
zlib 1.2.5.  r=emaldona.


git-svn-id: svn://10.0.0.236/trunk@261172 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-02 15:04:17 +00:00
wtc%google.com
db53542ee4 Bug 525092: Allow SSL_GetChannelInfo to be called as soon as a TLS false 
start handshake is done.  r=agl.


git-svn-id: svn://10.0.0.236/trunk@261168 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-02 01:12:57 +00:00
wtc%google.com
555fca8a3d Bug 584875: Clean up sec_PKCS12EncoderContext at the end of 
SEC_PKCS12Encode.  The patch is contributed by Matt Mueller of Google
<mattm@chromium.org>.  r=wtc.


git-svn-id: svn://10.0.0.236/trunk@261165 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-02 00:35:41 +00:00
wtc%google.com
557f5d7897 Bug 584871: Add the dIsOpen flag to SEC_PKCS12DecoderContext to track 
whether we need to remove the digest temp file, and do so in
SEC_PKCS12DecoderFinish.  The patch is contributed by Matt Mueller of
Google <mattm@chromium.org>.  r=wtc.


git-svn-id: svn://10.0.0.236/trunk@261161 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-01 21:57:03 +00:00
wtc%google.com
e1d2b6d850 Bug 587234: SSL_ERROR_WEAK_SERVER_KEY is renamed 
SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY to be specific about key type.
TBR=kaie.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@261157 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-01 19:43:48 +00:00
wtc%google.com
83ce5788fc Bug 573367: compile with -D_CRT_NONSTDC_NO_WARNINGS to suppress Visual C++ 
warnings like "warning C4996: read': The POSIX name for this item is
deprecated. Instead, use the ISO C++ conformant name: _read.".
r=christophe


git-svn-id: svn://10.0.0.236/trunk@261156 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-01 18:06:44 +00:00
wtc%google.com
c8300c8eb2 Bug 500439: remove unused function SECU_GetCert added in the previous 
checkin.


git-svn-id: svn://10.0.0.236/trunk@261138 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-29 00:34:52 +00:00
wtc%google.com
e34c07fe08 Bug 500439: back out what seems to be an unintentional change in the 
previous checkin -- fall back on NSS_NoDB_Init if NSS_Initialize fails.
This may have broken the "test opening the database read/write in a
nonexisting directory" in dbtests.sh.


git-svn-id: svn://10.0.0.236/trunk@261137 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-29 00:31:56 +00:00
wtc%google.com
2b958eb6a4 Bug 588698: wrap a long line, partly to cause this file to be recompiled 
after the change to sslimpl.h in rev. 1.80.  (NSS makefiles don't have
header dependencies.)


git-svn-id: svn://10.0.0.236/trunk@261136 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 21:28:48 +00:00
wtc%google.com
f470fd33f5 Bug 588698: comment out the locking order assertion in 
ssl_Get1stHandshakeLock because it's too strict when reentering
firstHandshakeLock.


git-svn-id: svn://10.0.0.236/trunk@261125 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:52:46 +00:00
nelson%bolyard.com
d36b5e1607 Bug 586697 - ssl3_DeriveMasterSecret must not request pVersion when it does 
Master key derivation for Diffie-Hellman through pkcs11.
Patch contributed by Alexei Volkov <alexei.volkov.bugs@sun.com>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261124 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:22:07 +00:00
nelson%bolyard.com
73c454a7af Bug 587399 crmf_copy_cert_req_msg leaks poolp if newReqMsg = PORT_ArenaZNew fails 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261123 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:17:41 +00:00
nelson%bolyard.com
a8f146f9c8 Bug 587622 print_attr_value calls get_obj_class instead of get_key_type for CKA_KEY_TYPE 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261122 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:13:18 +00:00
nelson%bolyard.com
4aab335a44 Bug 587432 NSS_CMSSignerInfo_Sign leaks tmppoolp when things fail 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261121 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:09:09 +00:00
nelson%bolyard.com
49149d23dd Bug 587393 remove JAR_cert_attribute declaration 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261120 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:06:02 +00:00
nelson%bolyard.com
1ff383cfc2 Bug 586957 CERT_FormatName leaks things if properties exist multiple times 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261119 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 18:00:28 +00:00
nelson%bolyard.com
91bc46fbb7 Bug 586967: CERT_CreateCertificate leaks arena if PORT_ArenaZAlloc fails 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261118 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 17:56:27 +00:00
nelson%bolyard.com
5ba1e84e2e Bug 586953: CERT_FormatName leaks everything if it can't PORT_Alloc for buf 
Patch contributed by Timeless <timeless@mozdev.org>, r=nelson


git-svn-id: svn://10.0.0.236/trunk@261117 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 17:52:45 +00:00
nelson%bolyard.com
563da2d498 Bug 500439: Make certutil to be able to read and display a der cert from a file 
Patch by Alexei Volkov <alexei.volkov.bugs@sun.com>


git-svn-id: svn://10.0.0.236/trunk@261116 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 17:37:18 +00:00
wtc%google.com
dc58ba1b0e Bug 588698: Add assertions to discover and enforce current locking order. 
Based on patch contributed by Adam Langley of Google <agl@chromium.org>.
r=agl,nelson.
Modified Files:
	notes.txt ssl3con.c sslcon.c sslimpl.h sslsecur.c


git-svn-id: svn://10.0.0.236/trunk@261113 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-28 00:56:10 +00:00
kaie%kuix.de
db07a70cf5 Bug 582575, Add July 2010 batch of roots to NSS 
r=nelson


git-svn-id: svn://10.0.0.236/trunk@261110 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-27 15:46:45 +00:00
wtc%google.com
53532bd03f Bug 588698: SSL_DataPending only needs to get recvBufLock. r=nelson. 
git-svn-id: svn://10.0.0.236/trunk@261107 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-26 18:04:41 +00:00
nelson%bolyard.com
b4cfd67ad6 Bug 578697: Wildcards and IP addresses don't mix. 
git-svn-id: svn://10.0.0.236/trunk@261080 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-22 20:59:01 +00:00
wtc%google.com
9a9b6bcc66 Bug 573367: Update to zlib 1.2.5. The patch is contributed by 
Daniel Jeter II <djeter@ripleycable.net>.  r=wtc.
Modified Files:
	README adler32.c compress.c crc32.c deflate.c deflate.h
	example.c infback.c inffast.c inffast.h inflate.c inflate.h
	inftrees.c inftrees.h manifest.mn minigzip.c trees.c trees.h
	uncompr.c zconf.h zlib.h zutil.c zutil.h
Added Files:
	gzclose.c gzguts.h gzlib.c gzread.c gzwrite.c
Removed Files:
	gzio.c


git-svn-id: svn://10.0.0.236/trunk@261079 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-22 01:07:03 +00:00
emaldona%redhat.com
69ad261969 Bug 356713 - Support SHA224 has/hmac and rsa signature, r=wtc 
git-svn-id: svn://10.0.0.236/trunk@261061 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-18 05:57:05 +00:00
wtc%google.com
97cb4383a3 Bug 567134: use the -DYNAMICBASE linker option for Visual C++ 8 (2005) SP1 
or later.  Adapted from the code in NSPR's configure.in.  r=Christophe.


git-svn-id: svn://10.0.0.236/trunk@261058 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-18 01:16:12 +00:00
emaldona%redhat.com
f44486fcc8 Bug 588052 - FREEBL_NO_DEPEND should not depend on FREEBL_CHILD_BUILD=1, r=wtc,emaldona 
git-svn-id: svn://10.0.0.236/trunk@261056 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-17 22:27:12 +00:00
wtc%google.com
0901e3da32 Bug 586857: Mark SEC_OID_NS_CERT_EXT_SSL_SERVER_NAME as an unsupported 
certificate extension.  r=nelson.


git-svn-id: svn://10.0.0.236/trunk@261051 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-16 18:27:24 +00:00
wtc%google.com
07feacb99e Bug 587234: Better error reporting for tiny DH keys in Server Key Exchange. 
Add a new error code SSL_ERROR_WEAK_SERVER_KEY for the dh_p size check in
ssl3_HandleServerKeyExchange.  r=nelson.
Modified Files:
	cmd/lib/SSLerrs.h lib/ssl/ssl3con.c lib/ssl/sslerr.h


git-svn-id: svn://10.0.0.236/trunk@261049 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-16 18:19:02 +00:00