diff options
author | Benjamin Beurdouche <bbeurdouche@mozilla.com> | 2021-09-04 19:48:45 +0200 |
---|---|---|
committer | Benjamin Beurdouche <bbeurdouche@mozilla.com> | 2021-09-04 19:48:45 +0200 |
commit | 49852c6fe1e01e06e95c0d65a90424669e0de4a2 (patch) | |
tree | bb47957bc4edc6ee5f76e1a4569aa1cc467bb5b9 | |
parent | b92655eb31000e011739e0ed4277c2adf4baf218 (diff) | |
download | nss-hg-49852c6fe1e01e06e95c0d65a90424669e0de4a2.tar.gz |
Documentation: release notes for NSS 3.70
-rw-r--r-- | doc/rst/releases/index.rst | 29 | ||||
-rw-r--r-- | doc/rst/releases/nss_3_70.rst | 68 |
2 files changed, 85 insertions, 12 deletions
diff --git a/doc/rst/releases/index.rst b/doc/rst/releases/index.rst index ed666a86a..31b1bab58 100644 --- a/doc/rst/releases/index.rst +++ b/doc/rst/releases/index.rst @@ -8,6 +8,8 @@ Releases :glob: :hidden: + nss_3_70.rst + nss_3_69_1.rst nss_3_69.rst nss_3_68.rst nss_3_67.rst @@ -17,21 +19,24 @@ Releases .. note:: - **NSS 3.69** is the latest version of NSS. + **NSS 3.70** is the latest version of NSS. - Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_69_release_notes` + Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_70_release_notes` .. container:: Changes included in this release: - - Bug 1722613 - Disable DTLS 1.0 and 1.1 by default - - Bug 1720226 - integrity checks in key4.db not happening on private components with AES_CBC - - Bug 1720235 - SSL handling of signature algorithms ignores environmental invalid algorithms. - - Bug 1721476 - sqlite 3.34 changed it's open semantics, causing nss failures. - - Bug 1720230 - Gtest update changed the gtest reports, losing gtest details in all.sh reports. - - Bug 1720228 - NSS incorrectly accepting 1536 bit DH primes in FIPS mode - - Bug 1720232 - SQLite calls could timeout in starvation situations. - - Bug 1720225 - Coverity/cpp scanner errors found in nss 3.67 - - Bug 1709817 - Import the NSS documentation from MDN in nss/doc. - - Bug 1720227 - NSS using a tempdir to measure sql performance not active + - Documentation: release notes for NSS 3.70. + - Documentation: release notes for NSS 3.69.1. + - Bug 1726022 - Update test case to verify fix. + - Bug 1714579 - Explicitly disable downgrade check in TlsConnectStreamTls13.EchOuterWith12Max + - Bug 1714579 - Explicitly disable downgrade check in TlsConnectTest.DisableFalseStartOnFallback + - Formatting for lib/util + - Bug 1681975 - Avoid using a lookup table in nssb64d. + - Bug 1724629 - Use HW accelerated SHA2 on AArch64 Big Endian. + - Bug 1714579 Change default value of enableHelloDowngradeCheck to true. + - Formatting for gtests/pk11_gtest/pk11_hpke_unittest.cc + - Bug 1726022 Cache additional PBE entries. + - Bug 1709750 - Read HPKE vectors from official JSON. + - Documentation: update for NSS 3.69 release. diff --git a/doc/rst/releases/nss_3_70.rst b/doc/rst/releases/nss_3_70.rst new file mode 100644 index 000000000..99c6c2974 --- /dev/null +++ b/doc/rst/releases/nss_3_70.rst @@ -0,0 +1,68 @@ +.. _mozilla_projects_nss_nss_3_70_release_notes: + +NSS 3.70 release notes +====================== + +`Introduction <#introduction>`__ +-------------------------------- + +.. container:: + + Network Security Services (NSS) 3.70 was released on **5 August 2021**. + +.. _distribution_information: + +`Distribution Information <#distribution_information>`__ +-------------------------------------------------------- + +.. container:: + + The HG tag is NSS_3_70_RTM. NSS 3.70 requires NSPR 4.32 or newer. + + NSS 3.70 source distributions are available on ftp.mozilla.org for secure HTTPS download: + + - Source tarballs: + https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_70_RTM/src/ + + Other releases are available :ref:`mozilla_projects_nss_releases`. + +.. _changes_in_nss_3.70: + +`Changes in NSS 3.70 <#changes_in_nss_3.70>`__ +---------------------------------------------------- + +.. container:: + + - Documentation: release notes for NSS 3.70. + - Documentation: release notes for NSS 3.69.1. + - Bug 1726022 - Update test case to verify fix. + - Bug 1714579 - Explicitly disable downgrade check in TlsConnectStreamTls13.EchOuterWith12Max + - Bug 1714579 - Explicitly disable downgrade check in TlsConnectTest.DisableFalseStartOnFallback + - Formatting for lib/util + - Bug 1681975 - Avoid using a lookup table in nssb64d. + - Bug 1724629 - Use HW accelerated SHA2 on AArch64 Big Endian. + - Bug 1714579 Change default value of enableHelloDowngradeCheck to true. + - Formatting for gtests/pk11_gtest/pk11_hpke_unittest.cc + - Bug 1726022 Cache additional PBE entries. + - Bug 1709750 - Read HPKE vectors from official JSON. + - Documentation: update for NSS 3.69 release. + + +`Compatibility <#compatibility>`__ +---------------------------------- + +.. container:: + + NSS 3.70 shared libraries are backwards-compatible with all older NSS 3.x shared libraries. A + program linked with older NSS 3.x shared libraries will work with NSS 3.70 shared libraries + without recompiling or relinking. Furthermore, applications that restrict their use of NSS APIs + to the functions listed in NSS Public Functions will remain compatible with future versions of + the NSS shared libraries. + +`Feedback <#feedback>`__ +------------------------ + +.. container:: + + Bugs discovered should be reported by filing a bug report on + `bugzilla.mozilla.org <https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>`__ (product NSS). |