./devel/nss, Libraries to support development of security-enabled applications

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 3.83, Package name: nss-3.83, Maintainer: pkgsrc-users

Network Security Services (NSS) is a set of libraries designed to support
cross-platform development of security-enabled client and server applications.
Applications built with NSS can support SSL v3, TLS, PKCS #5, PKCS #7,
PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security
standards.


Required to run:
[databases/sqlite3] [devel/nspr]

Required to build:
[pkgtools/cwrappers]

Master sites:

Filesize: 82855.655 KB

Version history: (Expand)


CVS history: (Expand)


   2022-09-15 21:55:52 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.83.

Changes:
   - Bug 1788875 - Remove set-but-unused variables from
                   SEC_PKCS12DecoderValidateBags
   - Bug 1563221 - remove older oses that are unused part3/ BeOS
   - Bug 1563221 - remove older unix support in NSS part 3 Irix
   - Bug 1563221 - remove support for older unix in NSS part 2 DGUX
   - Bug 1563221 - remove support for older unix in NSS part 1 OSF
   - Bug 1778413 - Set nssckbi version number to 2.58
   - Bug 1785297 - Add two SECOM root certificates to NSS
   - Bug 1787075 - Add two DigitalSign root certificates to NSS
   - Bug 1778412 - Remove Camerfirma Global Chambersign Root from NSS
   - Bug 1771100 - Added bug reference and description to disabled
                   UnsolicitedServerNameAck bogo ECH test
   - Bug 1779361 - Removed skipping of ECH on equality of private and
                   public server name
   - Bug 1779357 - Added comment and bug reference to
                   ECHRandomHRRExtension bogo test
   - Bug 1779370 - Added Bogo shim client HRR test support. Fixed
                   overwriting of CHInner.random on HRR
   - Bug 1779234 - Added check for server only sending ECH extension
                   with retry configs in EncryptedExtensions and if not
                   accepting ECH. Changed config setting behavior to
                   skip configs with unsupported mandatory extensions
                   instead of failing
   - Bug 1771100 - Added ECH client support to BoGo shim. Changed
                   CHInner creation to skip TLS 1.2 only extensions to
                   comply with BoGo
   - Bug 1771100 - Added ECH server support to BoGo shim. Fixed NSS ECH
                   server accept_confirmation bugs
   - Bug 1771100 - Update BoGo tests to recent BoringSSL version
   - Bug 1785846 - Bump minimum NSPR version to 4.34.1
   2022-08-19 18:34:54 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.82.

Changes:
   - Bug 1330271 - check for null template in sec_asn1{d,e}_push_state
   - Bug 1735925 - QuickDER: Forbid NULL tags with non-zero length
   - Bug 1784724 - Initialize local variables in \ 
TlsConnectTestBase::ConnectAndCheckCipherSuite
   - Bug 1784191 - Cast the result of GetProcAddress
   - Bug 1681099 - pk11wrap: Tighten certificate lookup based on PKCS #11 URI.
   2022-07-25 13:53:57 by Tobias Nygren | Files touched by this commit (1)
Log message:
nss: set MAKE_JOBS_SAFE=no and this time explain why
   2022-07-21 15:52:50 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.81.

Changes:
 - Bug 1762831: Enable aarch64 hardware crypto support on OpenBSD.
 - Bug 1775359 - make NSS_SecureMemcmp 0/1 valued.
 - Bug 1779285: Add no_application_protocol alert handler and test client error \ 
code is set.
 - Bug 1777672 - Gracefully handle null nickname in CERT_GetCertNicknameWithValidity.
   2022-07-16 21:14:51 by Tobias Nygren | Files touched by this commit (1)
Log message:
nss: drop MAKE_JOBS_SAFE=no

I cannot recall the reason it was set; seems to work without it now.
   2022-07-16 21:11:15 by Tobias Nygren | Files touched by this commit (3)
Log message:
nss: remove no longer needed aarch64 patches
   2022-06-28 13:38:00 by Thomas Klausner | Files touched by this commit (3952)
Log message:
*: recursive bump for perl 5.36
   2022-06-24 08:10:38 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.80.

Ok during freeze: gdt@

Changes:
   - Bug 1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h.
   - Bug 1617956 - Add support for asynchronous client auth hooks.
   - Bug 1497537 - nss-policy-check: make unknown keyword check optional.
   - Bug 1765383 - GatherBuffer: Reduced plaintext buffer allocations
   by allocating it on initialization. Replaced redundant code with
   assert. Debug builds: Added buffer freeing/allocation for each
   record.
   - Bug 1773022 - Mark 3.79 as an ESR release.
   - Bug 1764206 - Bump nssckbi version number for June.
   - Bug 1759815 - Remove Hellenic Academic 2011 Root.
   - Bug 1770267 - Add E-Tugra Roots.
   - Bug 1768970 - Add Certainly Roots.
   - Bug 1764392 - Add DigitCert Roots.
   - Bug 1759794 - Protect SFTKSlot needLogin with slotLock.
   - Bug 1366464 - Compare signature and signatureAlgorithm fields
   in legacy certificate verifier.
   - Bug 1771497 - Uninitialized value in cert_VerifyCertChainOld.
   - Bug 1771495 - Unchecked return code in sec_DecodeSigAlg.
   - Bug 1771498 - Uninitialized value in cert_ComputeCertType.
   - Bug 1760998 - Avoid data race on primary password change.
   - Bug 1769063 - Replace ppc64 dcbzl intrinisic.
   - Bug 1771036 - Allow LDFLAGS override in makefile builds.