Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 1064670 - (CVE-2014-1569) ASN.1 DER decoding of lengths is too ↵NSS_3_16_2_BRANCH | J.C. Jones | 2014-11-07 | 1 | -18/+73 |
| | | | | permissive, allowing undetected smuggling of arbitrary data (r=wtc) | ||||
* | Added tag NSS_3_16_2_3_RTM for changeset 0d8c1882213b | Kai Engert | 2014-10-27 | 0 | -0/+0 |
| | |||||
* | Added tag NSS_3_16_2_3_RC0 for changeset 215863cde755NSS_3_16_2_3_RTM | Kai Engert | 2014-10-25 | 0 | -0/+0 |
| | |||||
* | set version numbers to 3.16.2.3NSS_3_16_2_3_RC0 | Kai Engert | 2014-10-25 | 3 | -6/+6 |
| | |||||
* | Bug 1036735, backported patch. Add TLS_FALLBACK_SCSV cipher suite to version ↵ | Kai Engert | 2014-10-25 | 8 | -3/+68 |
| | | | | fallback connections (draft-ietf-tls-downgrade-scsv). Original author: Adam Langley (agl). r=wtc,martin.thomson | ||||
* | Bug 1057161 - NSS hangs with 100% CPU on invalid EC key. r=rrelyea | Richard Barnes | 2014-10-25 | 3 | -0/+16 |
| | |||||
* | Added tag NSS_3_16_2_2_RTM for changeset ce23a4662dc5 | Kai Engert | 2014-10-10 | 0 | -0/+0 |
| | |||||
* | Added tag NSS_3_16_2_2_RC for changeset 497ce63b1e23NSS_3_16_2_2_RTM | Kai Engert | 2014-10-10 | 0 | -0/+0 |
| | |||||
* | set version numbers to 3.6.2.2 releaseNSS_3_16_2_2_RC | Kai Engert | 2014-10-10 | 3 | -6/+6 |
| | |||||
* | Bug 1049435: Change RSA_PrivateKeyCheck to not require p > q. | Wan-Teh Chang | 2014-10-10 | 1 | -8/+21 |
| | | | | | | | | | | | | Change RSA_PrivateKeyCheck and rsa_build_from_primes (called by RSA_NewKey and RSA_PopulatePrivateKey) to require p != q. Continue to allow RSA_NewKey and RSA_PopulatePrivateKey to force p > q, but add a comment to note that it is not necessary. Remove unused variable prevbp in get_blinding_params. r=rlb,rrelyea. | ||||
* | Added tag NSS_3_16_2_1_RTM for changeset 3b917fa78d76 | Kai Engert | 2014-09-23 | 0 | -0/+0 |
| | |||||
* | Set version numbers to 3.16.2.1 releaseNSS_3_16_2_1_RTM | Kai Engert | 2014-09-23 | 3 | -6/+6 |
| | |||||
* | Bug 1064636, follow up commit to fix Windows build bustage | Kai Engert | 2014-09-23 | 1 | -1/+1 |
| | |||||
* | Fix bug 1064636, patch part 1, r=rrelyea | Kai Engert | 2014-09-23 | 2 | -0/+199 |
| | |||||
* | Fix bug 1064636, patch part 1, r=rrelyea | Kai Engert | 2014-09-23 | 2 | -0/+8 |
| | |||||
* | Fix bug 1064636, patch part 3, r=rrelyea | Kai Engert | 2014-09-23 | 1 | -50/+28 |
| | |||||
* | Fix bug 1064636, patch part 2, r=rrelyea | Kai Engert | 2014-09-23 | 1 | -78/+124 |
| | |||||
* | created NSS_3_16_2_BRANCH based on NSS_3_16_2_RTM | Kai Engert | 2014-09-23 | 0 | -0/+0 |
| | |||||
* | Set version numbers to 3.16.2 finalNSS_3_16_2_RTM | Kai Engert | 2014-06-24 | 3 | -6/+6 |
| | |||||
* | Bug 1016836: Remove stale comments from RSA_PrivateKeyCheck. | Wan-Teh Chang | 2014-06-24 | 1 | -8/+1 |
| | | | | r=ryan.sleevi. | ||||
* | Bug 902171 - Support choosing the appropriate subset of the cipher suite to ↵ | Elio Maldonado | 2014-06-17 | 1 | -2/+8 |
| | | | | run according to the type of build, r=wtc | ||||
* | Bug 1020395 - Check to determine the last tool built according to build type ↵ | Elio Maldonado | 2014-06-17 | 1 | -2/+8 |
| | | | | isn't incorrect, r=wtc | ||||
* | Added tag NSS_3_16_2_BETA4 for changeset 8da5fd3ea88d | Wan-Teh Chang | 2014-06-13 | 0 | -0/+0 |
| | |||||
* | Bug 1021102: RSA_PrivateKeyCheck should require p > q. r=rlb.NSS_3_16_2_BETA4 | Wan-Teh Chang | 2014-06-12 | 1 | -4/+3 |
| | |||||
* | Bug 1021102: RSA_PrivateKeyCheck should not swap the prime1 and prime2 | Wan-Teh Chang | 2014-06-09 | 4 | -12/+5 |
| | | | | | and exponent1 and exponent2 members of the input RSAPrivateKey. r=ryan.sleevi. | ||||
* | Bug 1016836: Remove the unused function swap_in_key_value. r=ryan.sleevi. | Wan-Teh Chang | 2014-06-09 | 1 | -25/+0 |
| | |||||
* | Bug 1016811: Fix copy-and-paste typos. Fix SFTKAttribute leaks. | Wan-Teh Chang | 2014-06-09 | 1 | -2/+11 |
| | | | | r=ryan.sleevi,rrelyea. | ||||
* | Bug 952572: Fix compiler warnings in getNameExtensionsBuiltIn that are | Wan-Teh Chang | 2014-06-05 | 1 | -2/+2 |
| | | | | treated as errors by -Werror,-Wpointer-sign. r=ryan.sleevi. | ||||
* | Bug 1007126 - various flaws in the man pages, r=rrelyea | Elio Maldonado | 2014-06-05 | 30 | -545/+464 |
| | |||||
* | Added tag NSS_3_16_2_BETA3 for changeset dee23d59c940 | Wan-Teh Chang | 2014-06-04 | 0 | -0/+0 |
| | |||||
* | Bug 970539: Back out unused function SEC_NumberOrNameStringToOIDTag,NSS_3_16_2_BETA3 | Wan-Teh Chang | 2014-06-04 | 1 | -31/+0 |
| | | | | | which passes the second argument of a wrong type to SEC_StringToOID. TBR=kaie. | ||||
* | Added tag NSS_3_16_2_BETA3 for changeset 204f22c527f8 | Wan-Teh Chang | 2014-06-04 | 0 | -0/+0 |
| | |||||
* | Bug 963150: Add nssCertificate_AddRef and nssCertificate_Destroy calls | Robert Relyea | 2014-06-04 | 1 | -0/+7 |
| | | | | | to PK11_ImportCert to prevent nssTrustDomain_AddCertsToCache from freeing the CERTCertificate associated with the NSSCertificate. r=wtc. | ||||
* | Bug 1009227: discard out of order DTLS change_cipher_spec. r=wtc. | Eric Rescorla | 2014-06-03 | 1 | -0/+8 |
| | |||||
* | Bug 996250: Improve the error message for | Wan-Teh Chang | 2014-06-03 | 0 | -0/+0 |
| | | | | SSL_ERROR_NEXT_PROTOCOL_NO_PROTOCOL. r=martin.thomson. | ||||
* | Bug 996250: Server-side support for ALPN. r=wtc. | Martin Thomson | 2014-06-03 | 5 | -39/+157 |
| | |||||
* | Bug 1018536 - Expose the freebl PATCH and BUILD versions via the CK_SLOT_INFO | Ryan Sleevi | 2014-05-30 | 1 | -3/+2 |
| | | | | | | | firmware version. This is logically consistent with exposing the MAJOR/MINOR versions via the CK_SLOT_INFO hardware version. r=rrelyea | ||||
* | Bug 1016811 - Ensure softoken performs RSA consistency checks for private keys | Ryan Sleevi | 2014-05-30 | 1 | -49/+86 |
| | | | | r=rrelyea | ||||
* | Bug 1016836 - Make RSA_PrivateKeyCheck robust against 'bad' (empty) parameters. | Ryan Sleevi | 2014-05-30 | 1 | -14/+17 |
| | | | | r=rrelyea | ||||
* | Bug 970539, bustage fix, move variable declaration to start of block | Kai Engert | 2014-05-29 | 1 | -2/+2 |
| | |||||
* | Bug 959864: Add DTLS 1.2 support. r=wtc. | Martin Thomson | 2014-05-29 | 2 | -10/+21 |
| | |||||
* | Bug 334013 - Fix references to undefined symbols in cryptohi.h and secsign.c ↵ | Cykesiopka | 2014-05-29 | 2 | -2/+2 |
| | | | | comments v1, r=emaldona | ||||
* | Bug 485732 - Fix nsslowcert_OpenCertDB() on failure PRMonitor leak. ↵ | Cykesiopka | 2014-05-29 | 1 | -2/+5 |
| | | | | r=emaldona, r=rrelyea | ||||
* | Bug 1016567 - Make SECU_PrintFingerprints print SHA-256 instead of MD5 v1, ↵ | Cykesiopka | 2014-05-29 | 1 | -5/+5 |
| | | | | r=emaldona | ||||
* | Bug 970539, NSS tool improvements/fixes: certutil/btoa/pp/httpserv, r=rrelyea | Kai Engert | 2014-05-29 | 15 | -114/+858 |
| | |||||
* | Bug 996237: Whitespace cleanup. r=wtc. | Martin Thomson | 2014-05-28 | 2 | -381/+381 |
| | |||||
* | Bug 1013088: disallow ECC cipher suites if SSL 3.0 is negotiated. r=wtc. | Julien Pierre | 2014-05-22 | 1 | -0/+26 |
| | |||||
* | Added tag NSS_3_16_2_BETA2 for changeset b48e80f3f44d | Wan-Teh Chang | 2014-05-22 | 0 | -0/+0 |
| | |||||
* | Bug 1011090: Fix signed/unsigned comparison warnings inNSS_3_16_2_BETA2 | Wan-Teh Chang | 2014-05-20 | 2 | -4/+4 |
| | | | | lib/softoken/legacydb. r=briansmith. | ||||
* | Bug 1011090: Make CERTDB_* constants in pcertt.h unsigned for | Wan-Teh Chang | 2014-05-20 | 1 | -12/+12 |
| | | | | consistency with certdb.h. r=briansmith. |