Go to file
Wolfgang Rosenauer 05db003205 - update to NSS 3.24
New functionality:
  * NSS softoken has been updated with the latest National Institute
    of Standards and Technology (NIST) guidance (as of 2015):
    - Software integrity checks and POST functions are executed on
      shared library load. These checks have been disabled by default,
      as they can cause a performance regression. To enable these
      checks, you must define symbol NSS_FORCE_FIPS when building NSS.
    - Counter mode and Galois/Counter Mode (GCM) have checks to
      prevent counter overflow.
    - Additional CSPs are zeroed in the code.
    - NSS softoken uses new guidance for how many Rabin-Miller tests
      are needed to verify a prime based on prime size.
  * NSS softoken has also been updated to allow NSS to run in FIPS
    Level 1 (no password). This mode is triggered by setting the
    database password to the empty string. In FIPS mode, you may move
    from Level 1 to Level 2 (by setting an appropriate password),
    but not the reverse.
  * A SSL_ConfigServerCert function has been added for configuring
    SSL/TLS server sockets with a certificate and private key. Use
    this new function in place of SSL_ConfigSecureServer,
    SSL_ConfigSecureServerWithCertChain, SSL_SetStapledOCSPResponses,
    and SSL_SetSignedCertTimestamps. SSL_ConfigServerCert automatically
    determines the certificate type from the certificate and private key.
    The caller is no longer required to use SSLKEAType explicitly to
    select a "slot" into which the certificate is configured (which
    incorrectly identifies a key agreement type rather than a certificate).
    Separate functions for configuring Online Certificate Status Protocol
    (OCSP) responses or Signed Certificate Timestamps are not needed,
    since these can be added to the optional SSLExtraServerCertData struct

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/mozilla-nss?expand=0&rev=216
2016-07-31 10:48:39 +00:00
.gitattributes fix system database 2010-06-03 20:48:06 +00:00
.gitignore OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/mozilla-nss?expand=0&rev=1 2007-01-15 23:25:44 +00:00
baselibs.conf Updating link to change in openSUSE:Factory/mozilla-nss revision 33.0 2010-03-26 15:17:51 +00:00
cert9.db fix system database 2010-06-03 20:48:06 +00:00
key4.db fix system database 2010-06-03 20:48:06 +00:00
malloc.patch - update to 3.15 2013-06-11 15:41:13 +00:00
mozilla-nss-rpmlintrc 3.12.9beta2 2010-12-09 23:14:38 +00:00
mozilla-nss.changes - update to NSS 3.24 2016-07-31 10:48:39 +00:00
mozilla-nss.spec - update to NSS 3.24 2016-07-31 10:48:39 +00:00
nss-3.24.tar.gz - update to NSS 3.24 2016-07-31 10:48:39 +00:00
nss-config.in OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/mozilla-nss?expand=0&rev=8 2008-03-26 15:24:30 +00:00
nss-disable-ocsp-test.patch rebase patch 2013-07-03 12:27:52 +00:00
nss-no-rpath.patch - update to 3.15 2013-06-11 15:41:13 +00:00
nss-opt.patch OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/mozilla-nss?expand=0&rev=125 2013-06-12 08:21:54 +00:00
nss-sqlitename.patch - update to 3.15 2013-06-11 15:41:13 +00:00
nss.pc.in 3.12.11 2011-08-12 20:57:47 +00:00
pkcs11.txt fix system database 2010-06-03 20:48:06 +00:00
renegotiate-transitional.patch - update to NSS 3.23 2016-05-26 20:20:47 +00:00
setup-nsssysinit.sh update to 3.12.6 2010-03-15 15:05:35 +00:00
system-nspr.patch - update to 3.15 2013-06-11 15:41:13 +00:00