Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 1334054 - fix CERT_FormatName output buffer length calculation r=franziskus | David Keeler | 2017-05-10 | 1 | -2/+23 |
| | | | | | | | | | | | | | | Summary: Before this patch, CERT_FormatName attempted to account for the length of the additional formatting in its output buffer length, but added an insufficient amount (a fixed 128 bytes). This patch dynamically accounts for the additional space required by the formatting output (it can over-account in some cases, but this is unlikely to be a performance concern compared to the original implementation). Reviewers: franziskus Differential Revision: https://nss-review.dev.mozaws.net/D307 | ||||
* | Bug 1278965 - tsan race in CERTCertificate, r=wtc,ttaubert | Franziskus Kiefer | 2017-02-08 | 1 | -4/+7 |
| | |||||
* | Backed out changeset 545e059dbb17 | Franziskus Kiefer | 2017-03-20 | 1 | -7/+4 |
| | |||||
* | Bug 1278965 - tsan race in CERTCertificate, r=wtc,ttaubert | Franziskus Kiefer | 2017-02-08 | 1 | -4/+7 |
| | |||||
* | Bug 1342061 - Fix some misuses of CERT_LIST* APIs r=franziskus | Tim Taubert | 2017-02-27 | 1 | -1/+1 |
| | | | | Differential Revision: https://nss-review.dev.mozaws.net/D231 | ||||
* | Bug 1323611 - Add some missing return value checks for SECITEM_CopyItem(). r=mt. | Nicholas Nethercote | 2016-07-12 | 1 | -1/+4 |
| | |||||
* | Bug 1311995, additional clang-format fixes, r=bustage | Kai Engert | 2016-12-13 | 1 | -3/+3 |
| | |||||
* | Bug 1311995, follow-up fix, uint32_t type is unknown in NSS builds, use ↵ | Kai Engert | 2016-12-13 | 1 | -1/+1 |
| | | | | PRUint32, r=bustage | ||||
* | Bug 1311995, follow-up to fix clang-format, r=bustage | Kai Engert | 2016-12-13 | 1 | -61/+59 |
| | |||||
* | Bug 1311995, NSS should implement the equivalent date-based distrust for ↵ | Kai Engert | 2016-12-13 | 1 | -0/+145 |
| | | | | WoSign/StartCom roots, r=rrelyea | ||||
* | Bug 1321301 - Disable pragma diagnostic with old GCC. r=mt | Jan Beich | 2016-12-01 | 1 | -2/+2 |
| | |||||
* | bug 1316604 - Add variables for <(nss_dist_dir)/{public,private}. r=franziskus | Ted Mielczarek | 2016-11-10 | 1 | -2/+2 |
| | | | | | Mozilla's build system currently puts NSS public headers directly in $(DIST)/include/nss, so we need a way to override the export directory. | ||||
* | Bug 1311615 - Building with gyp should copy headers, libs, executables to ↵ | Tim Taubert | 2016-10-21 | 1 | -3/+3 |
| | | | | | | the right directory r=franziskus Differential Revision: https://nss-dev.phacility.com/D104 | ||||
* | Bug 1208405 - coverity and infer fixes, r=ttaubert | Franziskus Kiefer | 2016-10-20 | 1 | -39/+39 |
| | |||||
* | Bug 1277228 - some scan-build fixes to enable it on base/certdb/certhigh, ↵ | Franziskus Kiefer | 2016-10-17 | 2 | -3/+5 |
| | | | | | | r=ttaubert try: -t all | ||||
* | bug 1237872 - Add gyp build system for NSS. r=fkiefer | Ted Mielczarek | 2016-09-23 | 2 | -0/+64 |
| | |||||
* | Bug 1302568 - [CID 1372890] API usage errors (VARARGS) r=franziskus | Tim Taubert | 2016-09-15 | 1 | -4/+4 |
| | |||||
* | Bug 1302232 - Fix buildbot test failures complaining about #pragma inside a ↵ | Tim Taubert | 2016-09-13 | 1 | -7/+7 |
| | | | | function r=bustage | ||||
* | Bug 1302232 - Update Taskcluster to use clang-3.9 r=mt | Tim Taubert | 2016-09-12 | 1 | -4/+11 |
| | |||||
* | Bug 1295115 - follow up to clang-format for CI, r= kaie | Franziskus Kiefer | 2016-08-14 | 3 | -17/+10 |
| | |||||
* | Bug 1227795 - Add NSS_DISABLE_LIBPKIX to allow compiling without libpkix, ↵ | Eugen Sawin | 2016-06-22 | 2 | -1/+66 |
| | | | | r=franziskus,wtc | ||||
* | Bug 1251185, NSS clang-format: else line-break fixes, r=ttaubertNSS_3_23_BETA7 | Franziskus Kiefer | 2016-02-25 | 6 | -272/+187 |
| | |||||
* | Bug 1194680, Use PR_GetEnvSecure, r=jldNSS_3_23_BETA1 | Kai Engert | 2016-01-29 | 2 | -3/+3 |
| | |||||
* | Bug 1229362 - clang format on lib/certhigh with minor manual corrections, r=kaie | Franziskus Kiefer | 2015-12-15 | 13 | -4799/+4817 |
| | |||||
* | Bug 1118245. Apply uniform style across NSS [remove trailing commas in ↵ | Franziskus Kiefer | 2015-11-10 | 1 | -4/+4 |
| | | | | initializers]. r=ekr | ||||
* | Bug 1208440 - Fix NULL deref in CERT_CreateEncodedOCSPSuccessResponse, ↵ | Tim Taubert | 2015-10-21 | 1 | -1/+1 |
| | | | | r=wtc,kaie,ekr,keeler | ||||
* | Bug 1214806: Remove unnecessary #include "sslerr.h". r=mt,emaldona. | Wan-Teh Chang | 2015-10-14 | 1 | -1/+0 |
| | |||||
* | bug 1009429 | Robert Relyea | 2015-10-01 | 1 | -2/+96 |
| | | | | | 0005-Check-for-acceptable-certificate-parameters-when-ver.patch (also 0004) Also update tests to use > 512 bit keys. | ||||
* | Bug 1208503 - Variable assigned once to a constant guards dead code in ↵ | Tim Taubert | 2015-09-29 | 1 | -4/+0 |
| | | | | cert_pkixSetParam, r=mt | ||||
* | Bug 1182667 - Enable warnings as errors, r=rrelyea | Martin Thomson | 2015-08-17 | 4 | -16/+13 |
| | |||||
* | Backed out changeset 4355f55afeb2 (Bug 1158489) | Martin Thomson | 2015-08-12 | 3 | -13/+13 |
| | |||||
* | Bug 1182667 - Removing warnings, enabling -Werror, r=rrelyea | Martin Thomson | 2015-08-07 | 3 | -13/+13 |
| | |||||
* | Bug 1050107: Remove lib/certhigh/certvfypkixprint.c from NSS | Sachin Kumar Gupta | 2014-08-13 | 3 | -275/+2 |
| | | | | compilation, to remove dead code. r=ryan.sleevi,wtc. | ||||
* | Bug 979070, don't assert in CERT_DecodeOCSPResponse, return a better error code | David Keeler | 2014-03-21 | 1 | -2/+1 |
| | |||||
* | Bug 743700: Enforce name constriants for root certificates, r=rsleeviNSS_3_16_BETA1 | Camilo Viecco | 2014-02-05 | 1 | -11/+12 |
| | |||||
* | Bug 964493: Adding missing PORT_SetError to CERT_CheckOCSPStatus, r=briansmith | David Keeler | 2014-02-03 | 1 | -0/+3 |
| | |||||
* | Bug 950129: Make OCSP fetching for intermediate CA certificates consistent, ↵ | Brian Smith | 2014-02-03 | 2 | -14/+27 |
| | | | | r=wtc, r=rrelyea | ||||
* | Bug 950299: ocsp_CertIDsMatch should return PR_FALSE instead of SECFailure | Wan-Teh Chang | 2014-01-03 | 1 | -4/+3 |
| | | | | on error. Remove the unused parameter |handle|. r=ryan.sleevi. | ||||
* | Bug 952808: Make CERT_CacheOCSPResponseFromSideChannel replace error entries ↵NSS_3_15_4_BETA10 | Brian Smith | 2013-12-21 | 1 | -1/+5 |
| | | | | when a better entry is passed in, r=wtc | ||||
* | Bug 933109: Improve handling of cached Unknown and Revoked OCSP status, r=wtc | Brian Smith | 2013-12-21 | 2 | -37/+89 |
| | |||||
* | Bug 436414: Rename "mechanism" to "method" in function or variable/argumentNSS_3_15_4_BETA9 | Wan-Teh Chang | 2013-12-19 | 2 | -44/+48 |
| | | | | | | names that refer to the HTTP GET and POST methods. Do not export CERT_GetEncodedOCSPResponseByMethod because it is not declared in ocsp.h. Rename CERT_GetSPKIDigest to CERT_GetSubjectPublicKeyDigest. r=briansmith. | ||||
* | Bug 436414: Fix compiler warnings about the arguments to PL_Base64Encode | Wan-Teh Chang | 2013-12-10 | 1 | -2/+3 |
| | | | | in cert_GetOCSPResponse. r=kaie. | ||||
* | Bug 928142, Part 1 (classic): Add option to control whether OCSP GET is ↵ | Brian Smith | 2013-10-31 | 2 | -2/+39 |
| | | | | used, r=rrelyea | ||||
* | Bug 932020 - CERT_CacheOCSPResponseFromSideChannel fails to set error code, ↵ | Kai Engert | 2013-10-31 | 1 | -2/+4 |
| | | | | legacy fix third attempt (and backout earlier bustage fix), r=wtc | ||||
* | Bug 932020, fix a legacy code path to set an error code on failure, bustage ↵ | Kai Engert | 2013-10-30 | 1 | -1/+2 |
| | | | | fix, TBR=wtc | ||||
* | Bug 932020 - CERT_CacheOCSPResponseFromSideChannel fails to set error code ↵ | Kai Engert | 2013-10-29 | 1 | -2/+3 |
| | | | | in some cases when returning SECFailure, r=wtc | ||||
* | Bug 436414, fix memory leak bustage, TBR=rrelyeaNSS_3_15_3_BETA1 | Kai Engert | 2013-10-16 | 1 | -1/+6 |
| | |||||
* | Bug 910438: Have CERT_VerifyCert return the correct result when certificate ↵ | Brian Smith | 2013-10-11 | 1 | -2/+5 |
| | | | | verification fails and a verifyLog is not used, r=briansmith, r=rrelyea | ||||
* | Bug 436414, support OCSP via HTTP GET. Part 4, enhance libPKIX portion of ↵ | Kai Engert | 2013-10-08 | 2 | -16/+19 |
| | | | | OCSP client code. r=rrelyea | ||||
* | Bug 436414, support OCSP via HTTP GET. Part 3, enhance classic portion of ↵ | Kai Engert | 2013-10-08 | 2 | -133/+414 |
| | | | | OCSP client code. r=rrelyea |