194e150b059e039d74aa64f3b678069b890f0f6a: Set version numbers to 3.68 Beta default tip
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Thu, 10 Jun 2021 14:36:56 +0200 - rev 15944
Push 3979 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 12:37:13 +0000
Set version numbers to 3.68 Beta
363983492edb13292ad74aa7b03924b637030fab: Added tag NSS_3_67_RTM for changeset 399e69cbefb9 NSS_3_67_BRANCH
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Thu, 10 Jun 2021 14:33:38 +0200 - rev 15943
Push 3978 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 12:33:59 +0000
Added tag NSS_3_67_RTM for changeset 399e69cbefb9
399e69cbefb9e314655f85d2c89f427143667fea: Set version numbers to 3.67 final NSS_3_67_BRANCH NSS_3_67_RTM
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Thu, 10 Jun 2021 14:33:12 +0200 - rev 15942
Push 3978 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 12:33:59 +0000
Set version numbers to 3.67 final
9d016c89bbbb004482dd269323b686ac3f2750cf: Added tag NSS_3_67_BETA1 for changeset f703a3855749 NSS_3_67_BRANCH
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Thu, 10 Jun 2021 14:28:11 +0200 - rev 15941
Push 3977 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 12:28:29 +0000
Added tag NSS_3_67_BETA1 for changeset f703a3855749
f703a3855749693c1b538c64850a93d119d476c7: Bug 1683710 - Add a means to disable ALPN, r=bbeurdouche NSS_3_67_BETA1
Martin Thomson <mt@lowentropy.net> - Thu, 10 Jun 2021 08:39:07 +0000 - rev 15940
Push 3976 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 08:52:17 +0000
Bug 1683710 - Add a means to disable ALPN, r=bbeurdouche We've recently learned the value of ALPN and SNI when it comes to protecting against cross-protocol attacks. However, some protocols don't have ALPN yet. For servers that terminate connections for those connections, validating that the client has not offered ALPN provides a way to protect against cross-protocol attacks. If the cross-protocol attack uses a protocol that does include ALPN, being able to reject those connections safely reduces exposure. This modifies SSL_SetNextProtoNego() to accept a zero-length buffer as an argument. Previously, this would have crashed. Now it causes the server to reject a handshake if ALPN is offered by the client. It was always possible to implement this by passing a function that always returns SECFailure to SSL_SetNextProtoCallback(). This approach has the advantage that the server generates a no_application_protocol alert, which is not something that user-provided code can do. Differential Revision: https://phabricator.services.mozilla.com/D110887
948968caef8dc5a695b53af70e79b3c22e55d763: Bug 1715720 - Fix nssckbi version number in NSS 3.67 (was supposed to be incremented in 3.66). r=beurdouche
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Thu, 10 Jun 2021 08:35:11 +0000 - rev 15939
Push 3975 by bbeurdouche@mozilla.com at Thu, 10 Jun 2021 08:37:34 +0000
Bug 1715720 - Fix nssckbi version number in NSS 3.67 (was supposed to be incremented in 3.66). r=beurdouche Differential Revision: https://phabricator.services.mozilla.com/D117400
9891dbb983526c2e0a9b3983db926f4da740f675: Bug 1714719 - Set NSS_USE_64 on riscv64 target when using GYP/Ninja. r=bbeurdouche
Makoto Kato <m_kato@ga2.so-net.ne.jp> - Mon, 07 Jun 2021 06:40:16 +0000 - rev 15938
Push 3974 by bbeurdouche@mozilla.com at Mon, 07 Jun 2021 06:42:25 +0000
Bug 1714719 - Set NSS_USE_64 on riscv64 target when using GYP/Ninja. r=bbeurdouche Differential Revision: https://phabricator.services.mozilla.com/D116922
91ce0df5a56952c35714c9790c7b19190a18d658: Bug 1566124 - Fix counter increase in ppc-gcm-wrap.c r=bbeurdouche
mamonet <maamoun.tk@gmail.com> - Fri, 04 Jun 2021 09:36:15 +0000 - rev 15937
Push 3973 by bbeurdouche@mozilla.com at Fri, 04 Jun 2021 09:38:24 +0000
Bug 1566124 - Fix counter increase in ppc-gcm-wrap.c r=bbeurdouche Differential Revision: https://phabricator.services.mozilla.com/D116297
66b9da6f53d50417d75eb076c2d97fcfb2ee4029: Bug 1566124 - Fix AES_GCM mode on ppc64le for messages of length more than 255-byte r=beurdouche
mamonet <maamoun.tk@gmail.com> - Fri, 04 Jun 2021 09:36:15 +0000 - rev 15936
Push 3973 by bbeurdouche@mozilla.com at Fri, 04 Jun 2021 09:38:24 +0000
Bug 1566124 - Fix AES_GCM mode on ppc64le for messages of length more than 255-byte r=beurdouche Differential Revision: https://phabricator.services.mozilla.com/D116274
0ef2306a623f8fcd90f094281678f3ee9e7e4738: Set version numbers to 3.67 Beta
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Fri, 28 May 2021 12:40:39 +0200 - rev 15935
Push 3972 by bbeurdouche@mozilla.com at Fri, 28 May 2021 10:40:56 +0000
Set version numbers to 3.67 Beta
14c91f2c4ea37c59019df48dd2cb2340b169a7a1: Added tag NSS_3_66_RTM for changeset 46633639570c NSS_3_66_BRANCH
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Fri, 28 May 2021 11:50:55 +0200 - rev 15934
Push 3971 by bbeurdouche@mozilla.com at Fri, 28 May 2021 09:51:13 +0000
Added tag NSS_3_66_RTM for changeset 46633639570c
46633639570ce453b908b9ffc77e1590b269be8a: Set version numbers to 3.66 final NSS_3_66_BRANCH NSS_3_66_RTM
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Fri, 28 May 2021 11:50:43 +0200 - rev 15933
Push 3971 by bbeurdouche@mozilla.com at Fri, 28 May 2021 09:51:13 +0000
Set version numbers to 3.66 final
9904a426633ea352c0073c4c76f8ea49f4230106: Added tag NSS_3_66_BETA1 for changeset ef591b9d25a3 NSS_3_66_BRANCH
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Fri, 28 May 2021 11:50:01 +0200 - rev 15932
Push 3970 by bbeurdouche@mozilla.com at Fri, 28 May 2021 09:50:20 +0000
Added tag NSS_3_66_BETA1 for changeset ef591b9d25a3
ef591b9d25a3e0811b598396396528e7b089b4f7: Bug 1710716 - Remove Expired Sonera Class2 CA from NSS. r=bwilson NSS_3_66_BETA1
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Tue, 25 May 2021 21:01:44 +0000 - rev 15931
Push 3969 by bbeurdouche@mozilla.com at Tue, 25 May 2021 21:03:53 +0000
Bug 1710716 - Remove Expired Sonera Class2 CA from NSS. r=bwilson Depends on D115882 Differential Revision: https://phabricator.services.mozilla.com/D115883
f7ff828026cd975bb846b1942313ae133d757f5f: Bug 1710716 - Remove Expired Root Certificates from NSS - QuoVadis Root Certification Authority. r=bwilson
Benjamin Beurdouche <bbeurdouche@mozilla.com> - Tue, 25 May 2021 21:01:43 +0000 - rev 15930
Push 3969 by bbeurdouche@mozilla.com at Tue, 25 May 2021 21:03:53 +0000
Bug 1710716 - Remove Expired Root Certificates from NSS - QuoVadis Root Certification Authority. r=bwilson Depends on D115877 Differential Revision: https://phabricator.services.mozilla.com/D115882
(0) -10000 -3000 -1000 -300 -100 -15 tip