Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add r/w support. The Capi token can now: | relyea%netscape.com | 2005-11-15 | 8 | -294/+1866 |
| | | | | | Import certs and keys. Delete certs and keys. | ||||
* | Fix for bug 316219. Don't build an import library on OS/2. r=wtchang | julien.pierre.bugs%sun.com | 2005-11-14 | 1 | -2/+1 |
| | |||||
* | Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson | julien.pierre.bugs%sun.com | 2005-11-12 | 1 | -2/+2 |
| | |||||
* | Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson | julien.pierre.bugs%sun.com | 2005-11-11 | 2 | -8/+8 |
| | |||||
* | Fix for 292156. Prevent crash in SSL session cache init if invalid arguments ↵ | julien.pierre.bugs%sun.com | 2005-11-11 | 1 | -0/+5 |
| | | | | are passed. r=nelson | ||||
* | Resolve symlinks when loader freebl shared libs, and limit iterations to 20. ↵ | julien.pierre.bugs%sun.com | 2005-11-10 | 1 | -1/+63 |
| | | | | r=wtchang | ||||
* | Bugzilla Bug 311432: renamed USE_FP_CODE as ECL_USE_FP. Do not set | wtchang%redhat.com | 2005-11-08 | 1 | -15/+13 |
| | | | | | ECL_USE_FP to 1 on Linux x86 to work around the bug. Moved a dependency rule to the appropriate section of the makefile. r=nelsonb. | ||||
* | Improved a comment. Suggested by Nelson Bolyard of Sun. r=wtc. | wtchang%redhat.com | 2005-11-08 | 1 | -1/+1 |
| | |||||
* | Bugzilla Bug 298522: added power-up self tests for HMAC SHA-384 and HMAC | wtchang%redhat.com | 2005-11-07 | 1 | -0/+52 |
| | | | | SHA-512. The patch was written by Glen Beasley of Sun. r=wtc. | ||||
* | Bugzilla bug 313196: include the minimal headers. | wtchang%redhat.com | 2005-11-07 | 1 | -1/+3 |
| | |||||
* | Bugzilla Bug 313196: checked in a header inclusion change that I missed in | wtchang%redhat.com | 2005-11-07 | 1 | -2/+1 |
| | | | | the previous checkin. | ||||
* | Bugzilla Bug 313196: HMAC code should not use a fixed hash input block size | wtchang%redhat.com | 2005-11-07 | 5 | -23/+60 |
| | | | | | | | | of 64 bytes, which is wrong for SHA-384 and SHA-512. This requires adding the hash input block size to the SECHashObject structure. r=relyea,nelsonb Modified Files: cryptohi/hasht.h cryptohi/sechash.c freebl/alghmac.c freebl/blapit.h freebl/rawhash.c | ||||
* | Replaced the magic constant 20 by SHA1_LENGTH. Use sizeof(buffer) to | wtchang%redhat.com | 2005-11-05 | 1 | -4/+4 |
| | | | | be more robust. r=nelsonb | ||||
* | replace missing header files. | relyea%netscape.com | 2005-11-04 | 6 | -2/+425 |
| | |||||
* | Bugzilla Bug 311958: Update the nssckbi versions for NSS 3.11. r=relyea. | wtchang%redhat.com | 2005-11-04 | 1 | -3/+4 |
| | |||||
* | Move ret_cr16.s from util to freebl. r=nelsonb | julien.pierre.bugs%sun.com | 2005-11-04 | 3 | -6/+1 |
| | |||||
* | Initial CAPI PKCS #11 Module. | relyea%netscape.com | 2005-11-04 | 15 | -0/+3336 |
| | | | | Needs the updated ckfw. | ||||
* | Bugzilla Bug 298512: Ensure the seed and seed key input for RNG do not have | wtchang%redhat.com | 2005-11-04 | 1 | -6/+33 |
| | | | | same value for FIPS 140-2. r=nelsonb. | ||||
* | Fix for 314115 . Comments about QuickDER and classic ASN.1 decoders relating ↵ | julien.pierre.bugs%sun.com | 2005-10-31 | 1 | -0/+7 |
| | | | | to SECItem.type field | ||||
* | Fix for 314115 - QuickDER modifies SECItem.type while decoding. r=wtchang | julien.pierre.bugs%sun.com | 2005-10-31 | 1 | -4/+6 |
| | |||||
* | Bugzilla bug 298522: added power-up self tests for HMAC SHA-1 and HMAC | wtchang%redhat.com | 2005-10-20 | 1 | -0/+103 |
| | | | | SHA-256. The patch is contributed by Glen Beasley of Sun. r=wtc. | ||||
* | Add dependency on freebl so ssl will rebuild if freebl has changed. | julien.pierre.bugs%sun.com | 2005-10-19 | 1 | -0/+3 |
| | |||||
* | Add dependency on freebl so softoken will rebuild if freebl has changed. | julien.pierre.bugs%sun.com | 2005-10-19 | 1 | -0/+3 |
| | |||||
* | Bugzilla bug 311440: ssl3_ConsumeHandshakeVariable now longer returns a | wtchang%redhat.com | 2005-10-14 | 1 | -2/+0 |
| | | | | | SECItem pointing to memory allocated with PORT_Alloc, so we don't need to use PORT_Free to free the SECItem's buffer. r=nelsonb. | ||||
* | Bugzilla Bug 312202: checked in HP-UX IPF (Itanium) porting changes | wtchang%redhat.com | 2005-10-12 | 1 | -1/+1 |
| | | | | | | | | | contributed by Grace Lu of HP. Use the .so suffix for shared libraries on HP-UX IPF. Support building on HP-UX B.11.23. r=wtc. Modified Files: coreconf/HP-UX.mk nss/lib/nss/nssinit.c Added Files: coreconf/HP-UXB.11.23.mk | ||||
* | Bugzilla Bug 302998: disallow x=0,1 and k=0. r=nelsonb. | wtchang%redhat.com | 2005-10-12 | 1 | -3/+41 |
| | |||||
* | CBug 290263, patch CERT_CreateCertificateRequest for doing extensions | neil.williams%sun.com | 2005-10-12 | 1 | -71/+94 |
| | | | | | r=bob `VS: ---------------------------------------------------------------------- | ||||
* | Bugzilla Bug 304360: generate ECC key with private key value less than the | wtchang%redhat.com | 2005-10-06 | 1 | -31/+73 |
| | | | | | | | group order using a combination of ANSI X9.62 A.4.1 and FIPS 186-2 Change Notice 1. Also changed structure of EC key generation functions to match the scheme used in dsa.c. The patch is contributed by Douglas Stebila <douglas@stebila.ca> of Sun Labs. r=wtc. | ||||
* | Bugzilla Bug 257693: set the correct error code in EC_ValidatePublicKey. | wtchang%redhat.com | 2005-10-06 | 4 | -9/+35 |
| | | | | | | | | Documented the return values of ECPoint_validate. Have the tests compare the return value of ECPoint_validate with MP_NO for negative test cases. r=doublas.stebila. Modified Files: ec.c ecl/ecl.h ecl/tests/ec2_test.c ecl/tests/ecp_test.c | ||||
* | Bugzilla bug 259135: fixed build breakage. In C, declarations must precede | wtchang%redhat.com | 2005-10-05 | 1 | -6/+6 |
| | | | | code. | ||||
* | Bugzilla bug 259135: minor comment fix. | wtchang%redhat.com | 2005-10-05 | 1 | -1/+1 |
| | |||||
* | 259135 added SHA 256,384,512 and AES powerupself tests sr=Wan-Teh | glen.beasley%sun.com | 2005-10-05 | 1 | -40/+283 |
| | |||||
* | Back out non-reviewed strictly white space change in pk11sdr.c | relyea%netscape.com | 2005-10-04 | 1 | -88/+65 |
| | |||||
* | Bugzilla bug 310518: map CKR_PIN_INVALID and CKR_PIN_LEN_RANGE to | wtchang%redhat.com | 2005-10-03 | 1 | -2/+2 |
| | | | | SEC_ERROR_INVALID_PASSWORD instead of SEC_ERROR_BAD_PASSWORD. r=relyea. | ||||
* | Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - ↵ | relyea%netscape.com | 2005-10-03 | 8 | -96/+67 |
| | | | | | | PK11_FreeSymKey] r=wtc [part 3 of 3] | ||||
* | Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - ↵ | relyea%netscape.com | 2005-10-03 | 1 | -0/+2 |
| | | | | | | PK11_FreeSymKey] r=wtc [part 2 of 3] | ||||
* | This change was not part of bug 272484 and has not been reviewed. | relyea%netscape.com | 2005-10-03 | 1 | -38/+0 |
| | | | | Back it out. | ||||
* | Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - ↵ | relyea%netscape.com | 2005-10-03 | 7 | -113/+310 |
| | | | | | | | | | | | | | | | | | PK11_FreeSymKey] The problem only happens if we try to import a key into a token which then fails to import. The basic issue was a hack in the pkcs 7 code to support PKCS 12, A special structure was used to replace the SymKey structure, and the code 'knew' the special structure existed before it dealt with the symkey. The fix addes a new capability to symkeys, where applications can attach application specific data to the key structure. PKCS 12 uses this to attache the PBE information for CMS. (part 1 of 3) This patch also improves the key's reuse of sessions, so sessions are not thrashed when SSL is used with them. r=wtc | ||||
* | Bugzilla Bug 294106: removed an assertion that's no longer necessary. | wtchang%redhat.com | 2005-09-30 | 1 | -2/+4 |
| | | | | Added buffer length error checking to back up an assertion. r=nelsonb. | ||||
* | Bugzilla Bug 244922 ASN.1 encoder outputs trash for optional may-stream ↵ | relyea%netscape.com | 2005-09-30 | 1 | -84/+126 |
| | | | | | | subtemplate r=nelson (original patch by nelson, modifications by me). | ||||
* | Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported | relyea%netscape.com | 2005-09-29 | 2 | -8/+9 |
| | | | | wtc's review r=wtc | ||||
* | Bugzilla Bug 294106: dsa.c: use const in the function prototype of | wtchang%redhat.com | 2005-09-29 | 2 | -127/+177 |
| | | | | | | DSA_GenerateGlobalRandomBytes. prng_fips1861.c: implemented Algorithm 1 of FIPS 186-2 Change Notice 1 and increased the size (b) of the RNG's seed-key from 160 bits to 256 bits. r=relyea,nelsonb. | ||||
* | Bug 308887 CRMF request generation problem when using latest firefox | relyea%netscape.com | 2005-09-29 | 1 | -11/+21 |
| | | | | Add crmf tests to the test suite. | ||||
* | Bugzilla Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not ↵ | relyea%netscape.com | 2005-09-29 | 2 | -3/+61 |
| | | | | | | | | | supported r=nelson This is only the NSS portion of this patch. The PSM portion will be checked in once the NSS portion is mainlined to mozilla. | ||||
* | Bug 271317, remove the old fortezza code | wtchang%redhat.com | 2005-09-29 | 1 | -15/+0 |
| | |||||
* | Bugzilla Bug 298630 freebl needs a memory cache invariant RSA implementation. | relyea%netscape.com | 2005-09-29 | 1 | -325/+338 |
| | | | | r=nelson | ||||
* | Bug 271317, remove the old fortezza code | relyea%netscape.com | 2005-09-29 | 46 | -17617/+0 |
| | |||||
* | Internal NSS defines shared between softoken and the rest of NSS, but not | relyea%netscape.com | 2005-09-28 | 1 | -0/+52 |
| | | | | | | exported. added as part of bug 305697. | ||||
* | Bug 305697 Softoken needs to give on the fly access to additional databases. ↵ | relyea%netscape.com | 2005-09-28 | 3 | -0/+295 |
| | | | | | | Part 2, User interface r=julien | ||||
* | bug 305697: open additional database on the fly in softoken. part1: softoken ↵ | relyea%netscape.com | 2005-09-28 | 13 | -489/+1166 |
| | | | | | | changes. r=julien |