summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Documentation: release notes for NSS 3.87.1NSS_3_87_1_RTMJohn M. Schanck2023-02-091-0/+57
|
* Set version numbers to 3.87.1 finalJohn M. Schanck2023-02-093-6/+6
|
* Bug 1804640 - improve handling of unknown PKCS#12 safe bag types. r=rrelyeaJohn M. Schanck2023-02-093-10/+18
| | | | Differential Revision: https://phabricator.services.mozilla.com/D167443
* Added tag NSS_3_87_RTM for changeset 41b6d2645eadNSS_3_87_BRANCHDennis Jackson2023-01-050-0/+0
|
* Set version numbers to 3.87 finalNSS_3_87_RTMDennis Jackson2023-01-053-6/+6
|
* Documentation: Release notes for NSS 3.87Dennis Jackson2023-01-052-18/+82
|
* Added tag NSS_3_87_BETA1 for changeset 36367f03b298Dennis Jackson2022-12-160-0/+0
|
* Bug 1798823 - Additional zero-length RSA modulus checks. r=nkulatovaNSS_3_87_BETA1John M. Schanck2022-12-152-12/+21
| | | | Differential Revision: https://phabricator.services.mozilla.com/D163622
* Bug 1798823 - add checks for zero-length RSA modulus to avoid memory errors ↵Iaroslav Gridin2022-12-152-0/+26
| | | | | | and failed assertions later r=nss-reviewers,nkulatova,jschanck Differential Revision: https://phabricator.services.mozilla.com/D162111
* Bug 1730353 - Add support for the LoongArch 64-bit architecture. ↵yetist2022-12-141-1/+1
| | | | | | r=nss-reviewers,djackson Differential Revision: https://phabricator.services.mozilla.com/D142421
* Bug 1751705 - Update ECCKiila generated files r=nss-reviewers,nkulatovaIaroslav Gridin2022-12-122-854/+1967
| | | | Differential Revision: https://phabricator.services.mozilla.com/D135765
* Bug 1751707 - Add configuration option to enable source-based coverage ↵Iaroslav Gridin2022-12-124-2/+12
| | | | | | sanitizer r=nss-reviewers,mt Differential Revision: https://phabricator.services.mozilla.com/D135764
* Bug 1774654 tstclnt crashes when accessing gnutls server without a user cert ↵Robert Relyea2022-12-081-5/+5
| | | | | | | | | in the database. The filter functions do not handle NULL CERTCertLists, but CERT_FindUserCertsByUsage can return a NULL cert list. If it returns a NULL list, we should just fail at the point (there are no certs available). Differential Revision: https://phabricator.services.mozilla.com/D164273
* Bug 1749030 - Modification of supported compilers r=nss-reviewers,bbeurdoucheAnna Weine2022-12-082-37/+9
| | | | | | | Adding: clang-10. Removing: gcc-6, gcc-9, gcc-10. Differential Revision: https://phabricator.services.mozilla.com/D162545
* Bug 1803595 - Updating the compiler parsing for build ↵Natalia Kulatova2022-12-082-2/+12
| | | | | | | | r=nss-reviewers,bbeurdouche The patch now introduces a new flag for ninja build - cc_is_cc. It states if the compiler we use is cc (that's indeed often stands for gcc, but for some cases the compiler check fails). Differential Revision: https://phabricator.services.mozilla.com/D163602
* Bug 1804071 - Fix rng stub signature for fuzzing builds. ↵Jesse Schwartzentruber2022-12-081-1/+3
| | | | | | r=nss-reviewers,jschanck Differential Revision: https://phabricator.services.mozilla.com/D163846
* Bug 1803226 - NULL password encoding incorrect. r=nss-reviewers,jschanckRobert Relyea2022-12-081-3/+2
| | | | | | | | The test for adding the unicode null in the null password case was incorrect from Bug 1757075 (https://bugzilla.mozilla.org/show_bug.cgi?id=1757075). The sense of the test was backwards meaning that no null was added. We didn't notice because NSS and openssl tolerate incorrect null password encoding. It was picked up in gnutls interop testing. Differential Revision: https://phabricator.services.mozilla.com/D163498
* Set version numbers to 3.87 BetaJohn M. Schanck2022-12-084-7/+7
|
* Documentation: Release notes for NSS 3.86John M. Schanck2022-12-082-5/+92
|
* Bug 1803211: Disable libpkix for static builds r=bbeurdouche,nss-reviewersskhamis2022-12-021-1/+1
| | | | Differential Revision: https://phabricator.services.mozilla.com/D163369
* Set version numbers to 3.86 BetaNSS_3_86_BETA1John M. Schanck2022-12-014-7/+7
|
* Bug 1803190 conscious language removal in NSSRobert Relyea2022-11-306-33/+11
| | | | | | | Clean up problemantic terms are master, slave, whitelist, blacklist. These are usually easily changes to main/server, client, allowlist, and blocklist (or other similiar terms, which are often more descriptive anyway). Things related to the tls/ssl master key, which part of the tls spec and needs to first be handled by the tls ietf working group. Differential Revision: https://phabricator.services.mozilla.com/D163522
* Bug 1803453 - Set CKA_NSS_SERVER_DISTRUST_AFTER and ↵John M. Schanck2022-11-301-6/+25
| | | | | | CKA_NSS_EMAIL_DISTRUST_AFTER for 3 TrustCor Root Certificates. r=KathleenWilson Differential Revision: https://phabricator.services.mozilla.com/D163527
* Bug 1794506 - Set nssckbi version number to 2.60. r=nss-reviewers,bbeurdoucheJohn M. Schanck2022-11-291-2/+2
| | | | | | Depends on D162769 Differential Revision: https://phabricator.services.mozilla.com/D162770
* Bug 1799038 - Remove Staat der Nederlanden EV Root CA from NSS. r=KathleenWilsonJohn M. Schanck2022-11-291-166/+0
| | | | | | Depends on D162768 Differential Revision: https://phabricator.services.mozilla.com/D162769
* Bug 1797559 - Remove EC-ACC root cert from NSS. r=KathleenWilsonJohn M. Schanck2022-11-291-202/+0
| | | | | | Depends on D162767 Differential Revision: https://phabricator.services.mozilla.com/D162768
* Bug 1794507 - Remove SwissSign Platinum CA - G2 from NSS. r=KathleenWilsonJohn M. Schanck2022-11-291-168/+0
| | | | | | Depends on D162766 Differential Revision: https://phabricator.services.mozilla.com/D162767
* Bug 1794495 - Remove Network Solutions Certificate Authority. r=KathleenWilsonJohn M. Schanck2022-11-291-146/+0
| | | | Differential Revision: https://phabricator.services.mozilla.com/D162766
* Bug 1802331 - compress docker image artifact with zstd. ↵Julien Cristau2022-11-293-5/+8
| | | | | | | | | | | | | | | | | | | | | r=nss-reviewers,releng-reviewers,jlorenzo,bbeurdouche When we moved tasks to run on GCP from AWS in bug 1799315, we started using a newer version of docker-worker including the changes from bug 1637302; as a result, artifacts are compressed with gzip before upload to s3, and downloads now come with a "content-encoding: gzip" header and compressed content, regardless of the client's "accept-encoding". Unfortunately docker-worker doesn't handle that encoding and expects an artifact called image.tar to be uncompressed. To work around that issue, we now compress docker images in image_builder with zstd before upload. [Ideally we'd install the zstd package in the nssdev/image_builder docker image itself instead of doing it in every task, however I'm not sure who owns that or how it's built so this might be good enough for right now.] Differential Revision: https://phabricator.services.mozilla.com/D163306
* Bug 1799315 - Migrate nss from AWS to GCP r=ahal,nss-reviewers,bbeurdoucheMichelle Goossens2022-11-242-2/+2
| | | | Differential Revision: https://phabricator.services.mozilla.com/D161376
* Bug 1800989 - Enable static builds in the CI r=bbeurdoucheskhamis2022-11-171-0/+6
| | | | Differential Revision: https://phabricator.services.mozilla.com/D162252
* Documenation: release notes for NSS 3.85Natalia Kulatova2022-11-102-0/+72
|
* Bug 1765759 - Removing SAW docker from the NSS build system. ↵Anna Weine2022-11-0712-995/+0
| | | | | | r=nss-reviewers,jschanck Differential Revision: https://phabricator.services.mozilla.com/D160237
* Bug 1783231 - Initialising variables in the rsa blinding code r=jschanckAnna Weine2022-11-041-4/+6
| | | | | | The PR introduces the modifications asked in the previous RSA blinding patch: https://phabricator.services.mozilla.com/D153763. Differential Revision: https://phabricator.services.mozilla.com/D161270
* Bug 320582 - Implementation of the double-signing of the message for ECDSA. ↵Anna Weine2022-11-031-3/+34
| | | | | | r=nss-reviewers,jschanck Differential Revision: https://phabricator.services.mozilla.com/D160198
* Bug 1783231 - Adding exponent blinding for RSA r=nss-reviewers,rrelyea,jschanckAnna Weine2022-11-031-0/+52
| | | | Differential Revision: https://phabricator.services.mozilla.com/D153763
* Bug 1798150 - on-demand initialization of OID tables. r=nss-reviewers,nkulatovaNSS_3_85_BETA1John M. Schanck2022-10-311-1/+9
| | | | Differential Revision: https://phabricator.services.mozilla.com/D160714
* Bug 1792821 - Modification of the primes.c and dhe-params.c in order to have ↵Anna Weine2022-10-312-9486/+1186
| | | | | | better looking tables r=jschanck Differential Revision: https://phabricator.services.mozilla.com/D160516
* Documentation: Release notes for NSS 3.79.2John M. Schanck2022-10-252-3/+63
|
* Bug 1796815 - Update zlib in NSS to 1.2.13. r=nss-reviewers,mtRyan VanderMeulen2022-10-2420-230/+298
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159949
* Bug 1796504 - Skip building modutil and shlibsign when building in Firefox. ↵Mike Hommey2022-10-201-2/+2
| | | | | | | | | | r=nss-reviewers,mt shlibsign hasn't been used since bug 1620158. I'm not sure modutil was ever actually used, but it was related included in relation to the .chk signatures too, which we don't produce anymore. Differential Revision: https://phabricator.services.mozilla.com/D159827
* Bug 1796504 - Use __STDC_VERSION__ rather than __STDC__ as a guard. ↵Mike Hommey2022-10-201-3/+3
| | | | | | | | r=nss-reviewers,mt clang-cl doesn't define the latter. Differential Revision: https://phabricator.services.mozilla.com/D159826
* Bug 1796407 - Fix -Wunused-but-set-variable warning from clang 15. ↵Mike Hommey2022-10-201-1/+1
| | | | | | r=nss-reviewers,jschanck Differential Revision: https://phabricator.services.mozilla.com/D159824
* Bug 1796308 - Fix -Wtautological-constant-out-of-range-compare and ↵Mike Hommey2022-10-204-32/+55
| | | | | | | | | | | -Wtype-limits warnings. r=nss-reviewers,mt Unfortunately, e.g. `((unsigned long long)len) >= (1ULL << (6 + 32))` doesn't work around the warning, and while `len >= (unsigned int)(1ULL << (6 + 32))` would, it feels dangerous. The ideal would be casting to typeof(len), but it's not standard. Differential Revision: https://phabricator.services.mozilla.com/D159799
* Bug 1796281 - Followup: add missing stdint.h include. r=nss-reviewers,mtMike Hommey2022-10-201-0/+2
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159800
* Bug 1796281 - Fix -Wint-to-void-pointer-cast warnings. r=nss-reviewers,jschanckMike Hommey2022-10-194-19/+19
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159772
* Bug 1796280 - Fix -Wunused-{function,variable,but-set-variable} warnings on ↵Mike Hommey2022-10-195-6/+10
| | | | | | Windows. r=nss-reviewers,jschanck Differential Revision: https://phabricator.services.mozilla.com/D159771
* Bug 1796079 - Fix -Wstring-conversion warnings. r=nss-reviewers,mtMike Hommey2022-10-191-5/+5
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159676
* Bug 1796075 - Fix -Wempty-body warnings. r=nss-reviewers,mtMike Hommey2022-10-191-6/+6
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159675
* Bug 1795242 - Fix unused-but-set-parameter warning. r=nss-reviewers,jschanckMike Hommey2022-10-191-2/+0
| | | | Differential Revision: https://phabricator.services.mozilla.com/D159372
View Lorry Controller Status