b6910cab5f1e148cfced2d4cf1fab5a7d6ceec3e: Added tag NSS_3_44_3_RTM for changeset d871fc63531d NSS_3_44_BRANCH
J.C. Jones <jjones@mozilla.com> - Tue, 19 Nov 2019 12:54:22 -0700 - rev 15404
Push 3589 by jjones@mozilla.com at Tue, 19 Nov 2019 21:05:38 +0000
Added tag NSS_3_44_3_RTM for changeset d871fc63531d
d871fc63531dae2c00cbba438504dc2efe32be1e: Set version numbers to 3.44.3 final NSS_3_44_BRANCH NSS_3_44_3_RTM
J.C. Jones <jjones@mozilla.com> - Tue, 19 Nov 2019 12:54:12 -0700 - rev 15403
Push 3589 by jjones@mozilla.com at Tue, 19 Nov 2019 21:05:38 +0000
Set version numbers to 3.44.3 final
331b7f2480de01fd126129aabb915b516da85c19: Added tag NSS_3_47_1_RTM for changeset 6339a6f350c9 NSS_3_47_BRANCH
J.C. Jones <jjones@mozilla.com> - Tue, 19 Nov 2019 12:55:36 -0700 - rev 15402
Push 3588 by jjones@mozilla.com at Tue, 19 Nov 2019 20:57:33 +0000
Added tag NSS_3_47_1_RTM for changeset 6339a6f350c9
6339a6f350c97debf60f7121e419b1023ae7c14d: Set version numbers to 3.47.1 final NSS_3_47_BRANCH NSS_3_47_1_RTM
J.C. Jones <jjones@mozilla.com> - Tue, 19 Nov 2019 12:55:30 -0700 - rev 15401
Push 3588 by jjones@mozilla.com at Tue, 19 Nov 2019 20:57:33 +0000
Set version numbers to 3.47.1 final
60bca7c6dc6dc44579b9b3e0fb62ca3b82d92eec: Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus NSS_3_44_BRANCH
Craig Disselkoen <cdisselk@cs.ucsd.edu> - Tue, 19 Nov 2019 11:54:57 -0700 - rev 15400
Push 3587 by jjones@mozilla.com at Tue, 19 Nov 2019 19:45:37 +0000
Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus
4c20de402b3901df0cde590a46be2ba49adc028e: Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus NSS_3_47_BRANCH
Craig Disselkoen <cdisselk@cs.ucsd.edu> - Tue, 19 Nov 2019 11:54:57 -0700 - rev 15399
Push 3586 by jjones@mozilla.com at Tue, 19 Nov 2019 19:45:20 +0000
Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus
64e55c9f658e2a75f0835d00a8a1cdc2f25c74d6: bug 1579060 - fix handling of issuerUniqueID and subjectUniqueID in mozilla::pkix::BackCert r=jcj NSS_3_44_BRANCH
Dana Keeler <dkeeler@mozilla.com> - Tue, 15 Oct 2019 14:59:05 +0000 - rev 15398
Push 3585 by jjones@mozilla.com at Tue, 19 Nov 2019 19:33:04 +0000
bug 1579060 - fix handling of issuerUniqueID and subjectUniqueID in mozilla::pkix::BackCert r=jcj According to RFC 5280, the definitions of issuerUniqueID and subjectUniqueID in TBSCertificate are as follows: issuerUniqueID [1] IMPLICIT UniqueIdentifier OPTIONAL, subjectUniqueID [2] IMPLICIT UniqueIdentifier OPTIONAL, where UniqueIdentifier is a BIT STRING. IMPLICIT tags replace the tag of the underlying type. For these fields, there is no specified class (just a tag number within the class), and the underlying type of BIT STRING is "primitive" (i.e. not constructed). Thus, the tags should be of the form CONTEXT SPECIFIC | [number in class], which comes out to 0x81 and 0x82, respectively. When originally implemented, mozilla::pkix incorrectly required that the CONSTRUCTED bit also be set for these fields. Consequently, the library would reject any certificate that actually contained these fields. Evidently such certificates are rare. Differential Revision: https://phabricator.services.mozilla.com/D49013
1e22a0c93afe9f46545560c86caedef9dab6cfda: Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus
Craig Disselkoen <cdisselk@cs.ucsd.edu> - Tue, 19 Nov 2019 11:54:57 -0700 - rev 15397
Push 3584 by jjones@mozilla.com at Tue, 19 Nov 2019 18:56:26 +0000
Bug 1586176 - EncryptUpdate should use maxout not block size. r=franziskus
e8f2720c8254a5327260dec70153a3c3b7c745b9: bug 1593141 - add validity period beginning argument to mozilla::pkix::TrustDomain::CheckRevocation r=jcj
Dana Keeler <dkeeler@mozilla.com> - Sat, 09 Nov 2019 00:36:23 +0000 - rev 15396
Push 3583 by jjones@mozilla.com at Thu, 14 Nov 2019 22:23:57 +0000
bug 1593141 - add validity period beginning argument to mozilla::pkix::TrustDomain::CheckRevocation r=jcj This allows TrustDomain implementations to make decisions based on when the validity period of a certificate began. For instance, if an implementation has revocation information that is valid and complete as of a particular time, but a certificate's validity period begins after that time, the implementation may decide to disregard this revocation information on the basis that the information it has available cannot possibly apply to that certificate. Differential Revision: https://phabricator.services.mozilla.com/D51485
d0f80763697fa63e5367a0370b84a532de276f6b: Bug 1594891 - Use tc-proxy for nss tooltool; r=dustin,jcj NSS_3_44_BRANCH
Tom Prince <mozilla@hocat.ca> - Mon, 11 Nov 2019 16:44:09 +0000 - rev 15395
Push 3582 by jjones@mozilla.com at Thu, 14 Nov 2019 00:03:56 +0000
Bug 1594891 - Use tc-proxy for nss tooltool; r=dustin,jcj Differential Revision: https://phabricator.services.mozilla.com/D52469
f2604281fdcdb0be7b78454b492072fc1122827b: Bug 1594891 - Updates to run correctly on the new TC deployment r=jcj NSS_3_44_BRANCH
Dustin J. Mitchell <dustin@mozilla.com> - Fri, 08 Nov 2019 05:21:17 +0000 - rev 15394
Push 3582 by jjones@mozilla.com at Thu, 14 Nov 2019 00:03:56 +0000
Bug 1594891 - Updates to run correctly on the new TC deployment r=jcj * Update the Taskcluster client used in the decision task to one that understands Taskcluster rootUrls. * Update scripts that fetch content to use the TASKCLUSTER_ROOT_URL * the absence of this variale signals an "old" worker so we use an "old" URL Differential Revision: https://phabricator.services.mozilla.com/D52287
11b2065c9197bfdbea20f7f69fe3be8c27a0d71b: Bug 1591275: Switch workers to use AWS Provder; r=kjacobs NSS_3_44_BRANCH
Tom Prince <mozilla@hocat.ca> - Thu, 07 Nov 2019 19:58:42 +0000 - rev 15393
Push 3582 by jjones@mozilla.com at Thu, 14 Nov 2019 00:03:56 +0000
Bug 1591275: Switch workers to use AWS Provder; r=kjacobs Differential Revision: https://phabricator.services.mozilla.com/D51952
86f505b6557691448566f426a51ec0a176d24fde: Bug 1589810 - Uninitialized variable warnings from certdata.perl. r=mt NSS_3_47_BRANCH
Marcus Burghardt <mburghardt@mozilla.com> - Mon, 21 Oct 2019 23:12:49 +0000 - rev 15392
Push 3581 by jjones@mozilla.com at Wed, 13 Nov 2019 22:33:30 +0000
Bug 1589810 - Uninitialized variable warnings from certdata.perl. r=mt Differential Revision: https://phabricator.services.mozilla.com/D49978
54ce0e2caeb8e7ce8ce93f89cdc0bb2bc7305783: Bug 1590495 - Crash in PK11_MakeCertFromHandle->pk11_fastCert. r=jcj NSS_3_47_BRANCH
Marcus Burghardt <mburghardt@mozilla.com> - Mon, 04 Nov 2019 23:01:14 +0000 - rev 15391
Push 3581 by jjones@mozilla.com at Wed, 13 Nov 2019 22:33:30 +0000
Bug 1590495 - Crash in PK11_MakeCertFromHandle->pk11_fastCert. r=jcj Fixed controls to avoid crashes caused by slots possibly without a token in pk11_fastCert. Also, improved arguments controls in PK11_MakeCertFromHandle. Differential Revision: https://phabricator.services.mozilla.com/D51406
15b52523699531c217e55df94b9c5bf1bf0bf932: Bug 1594891 - Use tc-proxy for nss tooltool; r=dustin,jcj NSS_3_47_BRANCH
Tom Prince <mozilla@hocat.ca> - Mon, 11 Nov 2019 16:44:09 +0000 - rev 15390
Push 3581 by jjones@mozilla.com at Wed, 13 Nov 2019 22:33:30 +0000
Bug 1594891 - Use tc-proxy for nss tooltool; r=dustin,jcj Differential Revision: https://phabricator.services.mozilla.com/D52469
054c57351ca0e1a9d324be4410d1cda8ca04f227: Bug 1594891 - Updates to run correctly on the new TC deployment r=jcj NSS_3_47_BRANCH
Dustin J. Mitchell <dustin@mozilla.com> - Fri, 08 Nov 2019 05:21:17 +0000 - rev 15389
Push 3581 by jjones@mozilla.com at Wed, 13 Nov 2019 22:33:30 +0000
Bug 1594891 - Updates to run correctly on the new TC deployment r=jcj * Update the Taskcluster client used in the decision task to one that understands Taskcluster rootUrls. * Update scripts that fetch content to use the TASKCLUSTER_ROOT_URL * the absence of this variale signals an "old" worker so we use an "old" URL Differential Revision: https://phabricator.services.mozilla.com/D52287
af55d9185ec53052fde4c24c696c09aa81f8d35e: Bug 1591275: Switch workers to use AWS Provder; r=kjacobs NSS_3_47_BRANCH
Tom Prince <mozilla@hocat.ca> - Thu, 07 Nov 2019 19:58:42 +0000 - rev 15388
Push 3581 by jjones@mozilla.com at Wed, 13 Nov 2019 22:33:30 +0000
Bug 1591275: Switch workers to use AWS Provder; r=kjacobs Differential Revision: https://phabricator.services.mozilla.com/D51952
87f35ba4c82f17204c6714f10559a37896f0314f: Bug 1591363 - Fixup double-free of params in nsc_SetupPBEKeyGen r=keeler
J.C. Jones <jjones@mozilla.com> - Wed, 13 Nov 2019 18:52:22 +0000 - rev 15387
Push 3580 by jjones@mozilla.com at Wed, 13 Nov 2019 18:59:21 +0000
Bug 1591363 - Fixup double-free of params in nsc_SetupPBEKeyGen r=keeler Caused in commit 7ef8d2604494. Differential Revision: https://phabricator.services.mozilla.com/D52848
d244c72879080747cfa4275f04a02969ce0be932: Bug 1592869 - Use NEON for ctr_xor. r=kjacobs
Makoto Kato <m_kato@ga2.so-net.ne.jp> - Thu, 07 Nov 2019 15:10:38 +0000 - rev 15386
Push 3579 by jjones@mozilla.com at Tue, 12 Nov 2019 23:14:21 +0000
Bug 1592869 - Use NEON for ctr_xor. r=kjacobs Using NEON for ctr_xor, aes_ctr can improve 30%-40%i decode/encode time on Cortex-A72. Differential Revision: https://phabricator.services.mozilla.com/D51380
7ef8d2604494dcd1785151a00d27e0bcf4989574: Bug 1591363 - PBKDF2 memory leaks in NSC_GenerateKey. r=jcj
Marcus Burghardt <mburghardt@mozilla.com> - Tue, 12 Nov 2019 17:08:12 +0000 - rev 15385
Push 3578 by jjones@mozilla.com at Tue, 12 Nov 2019 19:42:02 +0000
Bug 1591363 - PBKDF2 memory leaks in NSC_GenerateKey. r=jcj A memory leak was reported and confirmed in this bug. However, during the "manual" analysis of the flow, another possible leak was found. I created a patch for both leaks, added gtests for unexpected keySizes and adjusted the general syntax of the gtest file. Differential Revision: https://phabricator.services.mozilla.com/D52536
(0) -10000 -3000 -1000 -300 -100 -50 -20 +20 +50 +100 +300 tip