the symbols in alphabetical order. In softokn.def, changed "Sofoken 3.4
release" to "NSS 3.4 release, which is what we use in other *.def files.
Added seven new PKCS7 exports to smime.def. r=relyea
Modified files: nss.def smime.def softokn.def ssl.def
git-svn-id: svn://10.0.0.236/trunk@116083 18797224-902f-48f8-a5cc-f745e15eee43
rather than being pointed to by the sslSocket. This reduces the number
of malloc/free calls, and greatly reduces pointer fetches, and null
pointer checks. sslGather and sslSecurityInfo are separately initialized.
2. SSL_ResetHandshake no longer deallocates and reallocates the sslSecurityInfo and all its subcomponents.
3. Many places that formerly did not check for memory allocation failures
now do check, and do the right thing when allocation failed.
git-svn-id: svn://10.0.0.236/trunk@115407 18797224-902f-48f8-a5cc-f745e15eee43
it's not IPv4. Fixes a bug on systems that don't support IPV6, but
do support other address families.
git-svn-id: svn://10.0.0.236/trunk@115336 18797224-902f-48f8-a5cc-f745e15eee43
smime3 dylibs and the NSS tools so that they can find the indirectly
referenced libsoftokn3.dylib. Define and export DYLD_LIBRARY_PATH. The
patch is contributed by Brian Ryner <bryner@netscape.com>. r=wtc,beard.
Modified Files:
coreconf/Darwin.mk nss/cmd/platlibs.mk nss/lib/smime/config.mk
nss/lib/ssl/config.mk nss/tests/common/init.sh
git-svn-id: svn://10.0.0.236/trunk@114612 18797224-902f-48f8-a5cc-f745e15eee43
be overridden via an environment variable) rather than OS_ARCH.
This is a precursor to more flexibility in cross-platform builds.
Bug 104541.
git-svn-id: svn://10.0.0.236/trunk@114608 18797224-902f-48f8-a5cc-f745e15eee43
1) Implicit declaration of function.
2) Possibly unitialized variables.
These warnings have indicated some real problems in the code, so many changes
are not just to silence the warnings, but to fix the problems. Others were
inocuous, but the warnings were silenced to reduce the noise.
git-svn-id: svn://10.0.0.236/trunk@109938 18797224-902f-48f8-a5cc-f745e15eee43
remember the certs it sent back when it established the SSL session.
Bug 78959. Also, hold on the certs in the received cert chain until
the SSL connection is complete. This makes it easier for applications
to look at the entire cert chain after the handshake is over without
having to write their own custom authCert callbacks. It is backwards
compatible with older NSS SSL applications, but may use more memory.
git-svn-id: svn://10.0.0.236/trunk@107729 18797224-902f-48f8-a5cc-f745e15eee43
remove lots of depricated files.
move some files to appropriate directories (pcertdb *_rand
associated headers to soft token, for instance)
rename several stan files which had the same name as other nss files.
remove depricated functions.
git-svn-id: svn://10.0.0.236/trunk@107628 18797224-902f-48f8-a5cc-f745e15eee43
getpeername() occasionally fails with ENOTCONN after a successful
completion of non-blocking connect.
git-svn-id: svn://10.0.0.236/trunk@103680 18797224-902f-48f8-a5cc-f745e15eee43
the maximum amount of time to wait before recovering a session cache
mutex (semaphore) from a dead process on Unix.
git-svn-id: svn://10.0.0.236/trunk@97732 18797224-902f-48f8-a5cc-f745e15eee43
requires client auth. Work around bug in NT TCP stack by only shutting
down the socket for SEND (not for BOTH) after sending a bad_certificate
alert. This avoids bogus CONNECTION_RESET_BY_PEER errors at the client.
git-svn-id: svn://10.0.0.236/trunk@97079 18797224-902f-48f8-a5cc-f745e15eee43
server session cache locks. We may yet decide to back this out for the
NSS 3.3 release. Modified Files: ssl.def ssl.h sslsnce.c
git-svn-id: svn://10.0.0.236/trunk@96958 18797224-902f-48f8-a5cc-f745e15eee43
Posix semaphore code to make the non-contention case really fast.
Modified Files: sslmutex.c sslmutex.h
git-svn-id: svn://10.0.0.236/trunk@96909 18797224-902f-48f8-a5cc-f745e15eee43
sid cache entry is a multiple of 8 bytes long. On OSF1, reduce the
maximum number of POSIX semaphores so it doesn't exceed the per-process
limit of 256.
git-svn-id: svn://10.0.0.236/trunk@96786 18797224-902f-48f8-a5cc-f745e15eee43
1. New SSL server session cache implementation that uses finer grained
locking to reduce lock contention, and does 128-way associative caching.
2. rename symbol SSL_SESSIONID_BYTES to SSL2_SESSIONID_BYTES.
3. Work around compiler bug on Solaris i386.
Modified Files:
manifest.mn sslcon.c sslimpl.h sslsecur.c sslsnce.c
git-svn-id: svn://10.0.0.236/trunk@96768 18797224-902f-48f8-a5cc-f745e15eee43
and data is now buffered for sending and the application calls PR_Poll
to poll on read, poll on write also. This way, if the socket becomes
writable, the application's read attempt will send (more of) the buffered
write data.
git-svn-id: svn://10.0.0.236/trunk@95409 18797224-902f-48f8-a5cc-f745e15eee43
