diff options
author | John M. Schanck <jschanck@mozilla.com> | 2022-06-23 10:40:53 -0700 |
---|---|---|
committer | John M. Schanck <jschanck@mozilla.com> | 2022-06-23 10:40:53 -0700 |
commit | 97a97c86cc4634a17a60807ea08879b9b993dc7c (patch) | |
tree | fbf97549f5cdaad21b033d6e157684737bbb6cbe /doc | |
parent | 88cfe9bef776c0bd3af05f1194a47e822b432473 (diff) | |
download | nss-hg-97a97c86cc4634a17a60807ea08879b9b993dc7c.tar.gz |
Documentation: release notes for NSS 3.80
Diffstat (limited to 'doc')
-rw-r--r-- | doc/rst/releases/index.rst | 41 | ||||
-rw-r--r-- | doc/rst/releases/nss_3_80.rst | 75 |
2 files changed, 98 insertions, 18 deletions
diff --git a/doc/rst/releases/index.rst b/doc/rst/releases/index.rst index 470b34b7c..96a3e8fb2 100644 --- a/doc/rst/releases/index.rst +++ b/doc/rst/releases/index.rst @@ -8,8 +8,9 @@ Releases :glob: :hidden: + nss_3_80.rst nss_3_79.rst - nss_3_78_1.rst + nss_3_78_1.rst nss_3_78.rst nss_3_77.rst nss_3_76_1.rst @@ -36,8 +37,8 @@ Releases .. note:: - **NSS 3.79** is the latest version of NSS. - Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_79_release_notes` + **NSS 3.80** is the latest version of NSS. + Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_80_release_notes` **NSS 3.79** is the latest ESR version of NSS. Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_79_release_notes` @@ -45,20 +46,24 @@ Releases .. container:: - Changes in 3.79 included in this release: - - - Bug 205717 - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls. - - Bug 1766907 - Update mercurial in clang-format docker image. - - Bug 1454072 - Use of uninitialized pointer in lg_init after alloc fail. - - Bug 1769295 - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo. - - Bug 1753315 - Add SECMOD_LockedModuleHasRemovableSlots. - - Bug 1387919 - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite GROUP. - - Bug 1765753 - Added RFC8422 compliant TLS <= 1.2 undefined/compressed ECPointFormat extension alerts. - - Bug 1765753 - TLS 1.3 Server: Send protocol_version alert on unsupported ClientHello.legacy_version. - - Bug 1764788 - Correct invalid record inner and outer content type alerts. - - Bug 1757075 - NSS does not properly import or export pkcs12 files with large passwords and pkcs5v2 encoding. - - Bug 1766978 - improve error handling after nssCKFWInstance_CreateObjectHandle. - - Bug 1767590 - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. - - Bug 1769302 - NSS 3.79 should depend on NSPR 4.34 + Changes in 3.80 included in this release: + - Bug 1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h. + - Bug 1617956 - Add support for asynchronous client auth hooks. + - Bug 1497537 - nss-policy-check: make unknown keyword check optional. + - Bug 1765383 - GatherBuffer: Reduced plaintext buffer allocations by allocating it on initialization. Replaced redundant code with assert. Debug builds: Added buffer freeing/allocation for each record. + - Bug 1773022 - Mark 3.79 as an ESR release. + - Bug 1764206 - Bump nssckbi version number for June. + - Bug 1759815 - Remove Hellenic Academic 2011 Root. + - Bug 1770267 - Add E-Tugra Roots. + - Bug 1768970 - Add Certainly Roots. + - Bug 1764392 - Add DigitCert Roots. + - Bug 1759794 - Protect SFTKSlot needLogin with slotLock. + - Bug 1366464 - Compare signature and signatureAlgorithm fields in legacy certificate verifier. + - Bug 1771497 - Uninitialized value in cert_VerifyCertChainOld. + - Bug 1771495 - Unchecked return code in sec_DecodeSigAlg. + - Bug 1771498 - Uninitialized value in cert_ComputeCertType. + - Bug 1760998 - Avoid data race on primary password change. + - Bug 1769063 - Replace ppc64 dcbzl intrinisic. + - Bug 1771036 - Allow LDFLAGS override in makefile builds. diff --git a/doc/rst/releases/nss_3_80.rst b/doc/rst/releases/nss_3_80.rst new file mode 100644 index 000000000..028393a9f --- /dev/null +++ b/doc/rst/releases/nss_3_80.rst @@ -0,0 +1,75 @@ +.. _mozilla_projects_nss_nss_3_80_release_notes: + +NSS 3.80 release notes +====================== + +`Introduction <#introduction>`__ +-------------------------------- + +.. container:: + + Network Security Services (NSS) 3.80 was released on **23 June 2022**. + + +.. _distribution_information: + +`Distribution Information <#distribution_information>`__ +-------------------------------------------------------- + +.. container:: + + The HG tag is NSS_3_80_RTM. NSS 3.80 requires NSPR 4.34 or newer. + + NSS 3.80 source distributions are available on ftp.mozilla.org for secure HTTPS download: + + - Source tarballs: + https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_80_RTM/src/ + + Other releases are available :ref:`mozilla_projects_nss_releases`. + +.. _changes_in_nss_3.80: + +`Changes in NSS 3.80 <#changes_in_nss_3.80>`__ +---------------------------------------------------- + +.. container:: + + - Bug 1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h. + - Bug 1617956 - Add support for asynchronous client auth hooks. + - Bug 1497537 - nss-policy-check: make unknown keyword check optional. + - Bug 1765383 - GatherBuffer: Reduced plaintext buffer allocations by allocating it on initialization. Replaced redundant code with assert. Debug builds: Added buffer freeing/allocation for each record. + - Bug 1773022 - Mark 3.79 as an ESR release. + - Bug 1764206 - Bump nssckbi version number for June. + - Bug 1759815 - Remove Hellenic Academic 2011 Root. + - Bug 1770267 - Add E-Tugra Roots. + - Bug 1768970 - Add Certainly Roots. + - Bug 1764392 - Add DigitCert Roots. + - Bug 1759794 - Protect SFTKSlot needLogin with slotLock. + - Bug 1366464 - Compare signature and signatureAlgorithm fields in legacy certificate verifier. + - Bug 1771497 - Uninitialized value in cert_VerifyCertChainOld. + - Bug 1771495 - Unchecked return code in sec_DecodeSigAlg. + - Bug 1771498 - Uninitialized value in cert_ComputeCertType. + - Bug 1760998 - Avoid data race on primary password change. + - Bug 1769063 - Replace ppc64 dcbzl intrinisic. + - Bug 1771036 - Allow LDFLAGS override in makefile builds. + + +`Compatibility <#compatibility>`__ +---------------------------------- + +.. container:: + + NSS 3.80 shared libraries are backwards-compatible with all older NSS 3.x shared + libraries. A program linked with older NSS 3.x shared libraries will work with + this new version of the shared libraries without recompiling or + relinking. Furthermore, applications that restrict their use of NSS APIs to the + functions listed in NSS Public Functions will remain compatible with future + versions of the NSS shared libraries. + +`Feedback <#feedback>`__ +------------------------ + +.. container:: + + Bugs discovered should be reported by filing a bug report on + `bugzilla.mozilla.org <https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>`__ (product NSS). |