d0f047a649fb06313d71e11933be5ed657320eb4: From 44d103635eacd3c372a56b481407ce3d0323ddff Mon Sep 17 00:00:00 2001
varunnaganathan <varunnaganathan912@gmail.com> - Wed, 17 Aug 2016 02:15:45 +0530 - rev 13355
Push 2193 by kaie@kuix.de at Mon, 15 May 2017 12:35:46 +0000
From 44d103635eacd3c372a56b481407ce3d0323ddff Mon Sep 17 00:00:00 2001 Bug 1162897, Add CK_TOKEN_INFO to the PK11SlotInfo struct for caching the token info, r=rrelyea
497ec29ce18891a77945f166b198ca0128648be7: From b3a543fc2616501555997d7caf857a74c9c197a7 Mon Sep 17 00:00:00 2001
David Woodhouse <David.Woodhouse@intel.com> - Fri, 19 Aug 2016 15:22:23 +0100 - rev 13354
Push 2193 by kaie@kuix.de at Mon, 15 May 2017 12:35:46 +0000
From b3a543fc2616501555997d7caf857a74c9c197a7 Mon Sep 17 00:00:00 2001 Bug 1162897, Make NSSTrustDomain_FindTokenByName() take a ref on the token it returns, r=rrelyea
715d0cc075437ff06867c55fc035811bad60f675: From b02eff2c1e4ba65eceb8bf1549ef3e610764590c Mon Sep 17 00:00:00 2001
David Woodhouse <David.Woodhouse@intel.com> - Wed, 17 Aug 2016 17:54:51 +0100 - rev 13353
Push 2193 by kaie@kuix.de at Mon, 15 May 2017 12:35:46 +0000
From b02eff2c1e4ba65eceb8bf1549ef3e610764590c Mon Sep 17 00:00:00 2001 Bug 1162897, Remove duplication in PK11_FindCert{s,}FromNickname(), r=rrelyea
c2debc2d60a3389310d75ed7c382e0e799816ebe: From 23c0949786a1a7ac222be2b5391ab2d654342e99 Mon Sep 17 00:00:00 2001
Daiki Ueno <dueno@redhat.com> - Thu, 04 May 2017 20:35:53 +0200 - rev 13352
Push 2193 by kaie@kuix.de at Mon, 15 May 2017 12:35:46 +0000
From 23c0949786a1a7ac222be2b5391ab2d654342e99 Mon Sep 17 00:00:00 2001 Bug 1162897, pk11wrap: add pk11_MatchString, r=rrelyea
c4aa6d8bf3c7b5b8b2bc8989c450b345a8c62284: From 193777aedc558c56bb6501ba8e2134668ee5697b Mon Sep 17 00:00:00 2001
Daiki Ueno <dueno@redhat.com> - Wed, 03 May 2017 18:36:20 +0200 - rev 13351
Push 2193 by kaie@kuix.de at Mon, 15 May 2017 12:35:46 +0000
From 193777aedc558c56bb6501ba8e2134668ee5697b Mon Sep 17 00:00:00 2001 Bug 1162897, util: add minimal PKCS#11 URI parser, r=rrelyea
66268ec0eda0956937d66270999ca6e0fc424862: Bug 1350362 - Support building NSS in Firefox with MinGW on Linux, r=franziskus
Tom Ritter <tom@mozilla.com> - Thu, 11 May 2017 15:50:34 -0500 - rev 13350
Push 2192 by franziskuskiefer@gmail.com at Fri, 12 May 2017 17:41:39 +0000
Bug 1350362 - Support building NSS in Firefox with MinGW on Linux, r=franziskus
d4ff2a7359aaae918198459ad42ab62641bcc439: Bug 1364469 - Remove dead state check, r=franziskus
J.C. Jones <jjones@mozilla.com> - Fri, 12 May 2017 09:41:43 -0700 - rev 13349
Push 2191 by franziskuskiefer@gmail.com at Fri, 12 May 2017 16:42:35 +0000
Bug 1364469 - Remove dead state check, r=franziskus Summary: This change fixes dead code caught by Coverity after bug 1342137. Reviewers: franziskus Reviewed By: franziskus Differential Revision: https://nss-review.dev.mozaws.net/D318
f161a5fb1bf1dccabebaa719ccf134bf41224b26: Bug 1353724, fix key length calculation for PKCS#5 DES-EDE3-CBC-Pad, r=rrelyea
Daiki Ueno <dueno@redhat.com> - Wed, 05 Apr 2017 15:12:03 +0200 - rev 13348
Push 2190 by kaie@kuix.de at Fri, 12 May 2017 12:48:46 +0000
Bug 1353724, fix key length calculation for PKCS#5 DES-EDE3-CBC-Pad, r=rrelyea
11dde606220d799eb7cc38107b35ae9672f409ce: Merge NSS tip, a=merge NSS_TLS13_DRAFT19_BRANCH
Martin Thomson <martin.thomson@gmail.com> - Fri, 12 May 2017 16:29:32 +1000 - rev 13347
Push 2189 by martin.thomson@gmail.com at Fri, 12 May 2017 06:31:51 +0000
Merge NSS tip, a=merge
16e507e54552e881c07b4864cbf8863a49122bcc: Bug 1363981 - Update tests to use SSLProtocolVariant instead of Mode, r=ttaubert
Martin Thomson <martin.thomson@gmail.com> - Mon, 01 May 2017 08:53:54 +1000 - rev 13346
Push 2188 by martin.thomson@gmail.com at Fri, 12 May 2017 01:34:11 +0000
Bug 1363981 - Update tests to use SSLProtocolVariant instead of Mode, r=ttaubert
47eb8450e8ea14a558c41a0c3359b2ffb5eae994: Bug 1342137 - Permit unknown dotted-decimal X500 Principals r=franziskus,ttaubert
J.C. Jones <jjones@mozilla.com> - Thu, 11 May 2017 15:10:00 -0700 - rev 13345
Push 2187 by ttaubert@mozilla.com at Thu, 11 May 2017 22:14:35 +0000
Bug 1342137 - Permit unknown dotted-decimal X500 Principals r=franziskus,ttaubert RFC 1485 permits principals with OIDs in either "1.2=Name" or "OID.1.2=Name" form. This patch permits such forms, for unknown OIDs. This patch adds disabled tests which should fail, but do not, and need further cleanup. Original patch courtesy of Miklos Vajna. Differential Revision: https://nss-review.dev.mozaws.net/D310
19b8f1384e9802167eea5b7bc3a3d5824406420c: Bug 1363932 - reduce locking overhead in sftk_searchObjectList r=franziskus
David Keeler <dkeeler@mozilla.com> - Thu, 11 May 2017 13:22:52 -0700 - rev 13344
Push 2186 by franziskuskiefer@gmail.com at Thu, 11 May 2017 20:24:31 +0000
Bug 1363932 - reduce locking overhead in sftk_searchObjectList r=franziskus Summary: Before this patch, sftk_searchObjectList would acquire and release the SFTKSlot's objectLock once per bucket in the SFTKSlot's sessObjHashTable. This patch reduces the locking overhead by acquiring the lock once and then iterating over the entire table. This patch also removes the unused PRBool tokenOnly in NSC_FindObjectsInit (the only caller of sftk_searchObjectList). (Changeset b8f289456399 removed the code that modified tokenOnly. Unfortunately there doesn't appear to be a bug associated with that changeset, so we can't easily determine if that was intended. In any case, it's been this way for a decade, so if anything was broken by this, no one has noticed yet.) Reviewers: franziskus Reviewed By: franziskus Differential Revision: https://nss-review.dev.mozaws.net/D316
6e9684c66d5a40413854dc29b47d01a73b07fb75: Bug 1363569 - improve SQL queries in sdb_FindObjects* r=franziskus
David Keeler <dkeeler@mozilla.com> - Wed, 10 May 2017 15:56:55 -0700 - rev 13343
Push 2185 by franziskuskiefer@gmail.com at Wed, 10 May 2017 22:59:52 +0000
Bug 1363569 - improve SQL queries in sdb_FindObjects* r=franziskus Summary: When sqlite prepares statements, it appears to have an algorithm which is O(n * m), where n is the number of columns in the table and m is the number of columns selected in the query. Since the certificate database has about 115 columns, when "SELECT * FROM ..." is used, it introduces significant overhead. Since sdb_FindObjects only uses the id column of the results of the query, the queries in sdb_FindObjectsInit can be changed to select only the id column rather than all of them. Reviewers: franziskus Reviewed By: franziskus Differential Revision: https://nss-review.dev.mozaws.net/D314
ae8f6db7fcc1cfaf168e09c1fb8a8b14d096f99f: Bug 1339464 - Fix DH_GenParam, r=franziskus
Mark Goodwin <mgoodwin@mozilla.com> - Wed, 10 May 2017 15:09:13 -0700 - rev 13342
Push 2184 by franziskuskiefer@gmail.com at Wed, 10 May 2017 22:10:57 +0000
Bug 1339464 - Fix DH_GenParam, r=franziskus Summary: Fix DH_GenParam by repeating mpp_make_prime calls on failure Differential Revision: https://nss-review.dev.mozaws.net/D308
44595eb0471ab460062b978bebf36144af8cb1ad: Bug 1351314 - Add length check for SSL context for TLS 1.2 or prior, r=mt
Kate McKinley <kmckinley@mozilla.com> - Wed, 10 May 2017 11:48:48 -0700 - rev 13341
Push 2183 by franziskuskiefer@gmail.com at Wed, 10 May 2017 18:50:03 +0000
Bug 1351314 - Add length check for SSL context for TLS 1.2 or prior, r=mt Summary: RFC 5705 requires that the context length passed to SSL_ExportKeyingMaterial be no longer than will fit in a 16-bit integer (uint16). Reviewers: franziskus, mt Reviewed By: mt Differential Revision: https://nss-review.dev.mozaws.net/D309
7c60f66743b60cd0f301b138fec7f798dd4cd7f4: Bug 1334054 - fix CERT_FormatName output buffer length calculation r=franziskus
David Keeler <dkeeler@mozilla.com> - Wed, 10 May 2017 06:47:34 -0700 - rev 13340
Push 2182 by franziskuskiefer@gmail.com at Wed, 10 May 2017 16:34:36 +0000
Bug 1334054 - fix CERT_FormatName output buffer length calculation r=franziskus Summary: Before this patch, CERT_FormatName attempted to account for the length of the additional formatting in its output buffer length, but added an insufficient amount (a fixed 128 bytes). This patch dynamically accounts for the additional space required by the formatting output (it can over-account in some cases, but this is unlikely to be a performance concern compared to the original implementation). Reviewers: franziskus Differential Revision: https://nss-review.dev.mozaws.net/D307
159f96115053bf495a13660ce43ec984e5ff826f: Bug 1118245 - clang-format CI follow-up, r=ttaubert
Franziskus Kiefer <franziskuskiefer@gmail.com> - Tue, 09 May 2017 15:46:38 -0700 - rev 13339
Push 2182 by franziskuskiefer@gmail.com at Wed, 10 May 2017 16:34:36 +0000
Bug 1118245 - clang-format CI follow-up, r=ttaubert
205898c824cdd4fa39bdb5d8d0a24f3ddc24ad5f: Bug 1118245 - use blacklist or clang-format instead of white list, r=ttaubert
Franziskus Kiefer <franziskuskiefer@gmail.com> - Tue, 09 May 2017 09:16:49 -0700 - rev 13338
Push 2181 by franziskuskiefer@gmail.com at Tue, 09 May 2017 21:22:43 +0000
Bug 1118245 - use blacklist or clang-format instead of white list, r=ttaubert Differential Revision: https://nss-review.dev.mozaws.net/D312
63d25a2b60d223a110f00fcac9f74ef3febf46a4: Dummy change to trigger a build to test latest NSPR commit (bug 1358466)
Kai Engert <kaie@kuix.de> - Tue, 09 May 2017 13:40:21 +0200 - rev 13337
Push 2180 by kaie@kuix.de at Tue, 09 May 2017 11:40:05 +0000
Dummy change to trigger a build to test latest NSPR commit (bug 1358466)
36c91663522093cd14c4d97cfe3c397a676d28dc: Dummy change to trigger a build to test latest NSPR commit (bug 1310197)
Kai Engert <kaie@kuix.de> - Tue, 09 May 2017 13:36:47 +0200 - rev 13336
Push 2179 by kaie@kuix.de at Tue, 09 May 2017 11:36:31 +0000
Dummy change to trigger a build to test latest NSPR commit (bug 1310197)
(0) -10000 -3000 -1000 -300 -100 -50 -20 +20 +50 +100 +300 +1000 tip