2022-11-10 20:25:25 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.85.
Changes:
- Bug 1792821 - Modification of the primes.c and dhe-params.c in order to \
have better looking tables.
- Bug 1796815 - Update zlib in NSS to 1.2.13.
- Bug 1796504 - Skip building modutil and shlibsign when building in Firefox.
- Bug 1796504 - Use __STDC_VERSION__ rather than __STDC__ as a guard.
- Bug 1796407 - Fix -Wunused-but-set-variable warning from clang 15.
- Bug 1796308 - Fix -Wtautological-constant-out-of-range-compare and \
-Wtype-limits warnings.
- Bug 1796281 - Followup: add missing stdint.h include.
- Bug 1796281 - Fix -Wint-to-void-pointer-cast warnings.
- Bug 1796280 - Fix -Wunused-{function,variable,but-set-variable} warnings \
on Windows.
- Bug 1796079 - Fix -Wstring-conversion warnings.
- Bug 1796075 - Fix -Wempty-body warnings.
- Bug 1795242 - Fix unused-but-set-parameter warning.
- Bug 1795241 - Fix unreachable-code warnings.
- Bug 1795222 - Mark _nss_version_c unused on clang-cl.
- Bug 1795668 - Remove redundant variable definitions in lowhashtest.
- No bug - Add note about python executable to build instructions.
|
2022-10-14 02:17:00 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.84.
Changes:
- Bug 1791699 - Bump minimum NSPR version to 4.35.
- Bug 1792103 - Add a flag to disable building libnssckbi.
|
2022-09-15 21:55:52 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.83.
Changes:
- Bug 1788875 - Remove set-but-unused variables from
SEC_PKCS12DecoderValidateBags
- Bug 1563221 - remove older oses that are unused part3/ BeOS
- Bug 1563221 - remove older unix support in NSS part 3 Irix
- Bug 1563221 - remove support for older unix in NSS part 2 DGUX
- Bug 1563221 - remove support for older unix in NSS part 1 OSF
- Bug 1778413 - Set nssckbi version number to 2.58
- Bug 1785297 - Add two SECOM root certificates to NSS
- Bug 1787075 - Add two DigitalSign root certificates to NSS
- Bug 1778412 - Remove Camerfirma Global Chambersign Root from NSS
- Bug 1771100 - Added bug reference and description to disabled
UnsolicitedServerNameAck bogo ECH test
- Bug 1779361 - Removed skipping of ECH on equality of private and
public server name
- Bug 1779357 - Added comment and bug reference to
ECHRandomHRRExtension bogo test
- Bug 1779370 - Added Bogo shim client HRR test support. Fixed
overwriting of CHInner.random on HRR
- Bug 1779234 - Added check for server only sending ECH extension
with retry configs in EncryptedExtensions and if not
accepting ECH. Changed config setting behavior to
skip configs with unsupported mandatory extensions
instead of failing
- Bug 1771100 - Added ECH client support to BoGo shim. Changed
CHInner creation to skip TLS 1.2 only extensions to
comply with BoGo
- Bug 1771100 - Added ECH server support to BoGo shim. Fixed NSS ECH
server accept_confirmation bugs
- Bug 1771100 - Update BoGo tests to recent BoringSSL version
- Bug 1785846 - Bump minimum NSPR version to 4.34.1
|
2022-08-19 18:34:54 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.82.
Changes:
- Bug 1330271 - check for null template in sec_asn1{d,e}_push_state
- Bug 1735925 - QuickDER: Forbid NULL tags with non-zero length
- Bug 1784724 - Initialize local variables in \
TlsConnectTestBase::ConnectAndCheckCipherSuite
- Bug 1784191 - Cast the result of GetProcAddress
- Bug 1681099 - pk11wrap: Tighten certificate lookup based on PKCS #11 URI.
|
2022-07-25 13:53:57 by Tobias Nygren | Files touched by this commit (1) |
Log message:
nss: set MAKE_JOBS_SAFE=no and this time explain why
|
2022-07-21 15:52:50 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.81.
Changes:
- Bug 1762831: Enable aarch64 hardware crypto support on OpenBSD.
- Bug 1775359 - make NSS_SecureMemcmp 0/1 valued.
- Bug 1779285: Add no_application_protocol alert handler and test client error \
code is set.
- Bug 1777672 - Gracefully handle null nickname in CERT_GetCertNicknameWithValidity.
|
2022-07-16 21:14:51 by Tobias Nygren | Files touched by this commit (1) |
Log message:
nss: drop MAKE_JOBS_SAFE=no
I cannot recall the reason it was set; seems to work without it now.
|
2022-07-16 21:11:15 by Tobias Nygren | Files touched by this commit (3) |
Log message:
nss: remove no longer needed aarch64 patches
|
2022-06-28 13:38:00 by Thomas Klausner | Files touched by this commit (3952) |
Log message:
*: recursive bump for perl 5.36
|
2022-06-24 08:10:38 by Thomas Klausner | Files touched by this commit (2) | |
Log message:
nss: update to 3.80.
Ok during freeze: gdt@
Changes:
- Bug 1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h.
- Bug 1617956 - Add support for asynchronous client auth hooks.
- Bug 1497537 - nss-policy-check: make unknown keyword check optional.
- Bug 1765383 - GatherBuffer: Reduced plaintext buffer allocations
by allocating it on initialization. Replaced redundant code with
assert. Debug builds: Added buffer freeing/allocation for each
record.
- Bug 1773022 - Mark 3.79 as an ESR release.
- Bug 1764206 - Bump nssckbi version number for June.
- Bug 1759815 - Remove Hellenic Academic 2011 Root.
- Bug 1770267 - Add E-Tugra Roots.
- Bug 1768970 - Add Certainly Roots.
- Bug 1764392 - Add DigitCert Roots.
- Bug 1759794 - Protect SFTKSlot needLogin with slotLock.
- Bug 1366464 - Compare signature and signatureAlgorithm fields
in legacy certificate verifier.
- Bug 1771497 - Uninitialized value in cert_VerifyCertChainOld.
- Bug 1771495 - Unchecked return code in sec_DecodeSigAlg.
- Bug 1771498 - Uninitialized value in cert_ComputeCertType.
- Bug 1760998 - Avoid data race on primary password change.
- Bug 1769063 - Replace ppc64 dcbzl intrinisic.
- Bug 1771036 - Allow LDFLAGS override in makefile builds.
|