Update pem sources to latest from nss-pem upstream

- Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key
- Fixes memory leak on failed ASN1 decoding of RSA keys with rebase
- https://git.fedorahosted.org/cgit/nss-pem.git
This commit is contained in:
Elio Maldonado 2016-03-08 06:47:48 -08:00
parent e4343992f0
commit 2a45956d5b
3 changed files with 9 additions and 13 deletions

2
.gitignore vendored
View File

@ -7,7 +7,7 @@ PayPalEE.cert
TestCA.ca.cert TestCA.ca.cert
TestUser50.cert TestUser50.cert
TestUser51.cert TestUser51.cert
/nss-pem-20140125.tar.bz2 /nss-pem-20160308.tar.bz2
/PayPalRootCA.cert /PayPalRootCA.cert
/PayPalICA.cert /PayPalICA.cert
/nss-3.23.0.tar.gz /nss-3.23.0.tar.gz

View File

@ -21,7 +21,7 @@ Name: nss
Version: 3.23.0 Version: 3.23.0
# for Rawhide, please always use release >= 2 # for Rawhide, please always use release >= 2
# for Fedora release branches, please use release < 2 (1.0, 1.1, ...) # for Fedora release branches, please use release < 2 (1.0, 1.1, ...)
Release: 2%{?dist} Release: 3%{?dist}
License: MPLv2.0 License: MPLv2.0
URL: http://www.mozilla.org/projects/security/pki/nss/ URL: http://www.mozilla.org/projects/security/pki/nss/
Group: System Environment/Libraries Group: System Environment/Libraries
@ -58,7 +58,7 @@ Source6: blank-cert9.db
Source7: blank-key4.db Source7: blank-key4.db
Source8: system-pkcs11.txt Source8: system-pkcs11.txt
Source9: setup-nsssysinit.sh Source9: setup-nsssysinit.sh
Source12: %{name}-pem-20140125.tar.bz2 Source12: %{name}-pem-20160308.tar.bz2
Source20: nss-config.xml Source20: nss-config.xml
Source21: setup-nsssysinit.xml Source21: setup-nsssysinit.xml
Source22: pkcs11.txt.xml Source22: pkcs11.txt.xml
@ -98,13 +98,6 @@ Patch55: skip_stress_TLS_RC4_128_with_MD5.patch
# Local patch for TLS_ECDHE_{ECDSA|RSA}_WITH_3DES_EDE_CBC_SHA ciphers # Local patch for TLS_ECDHE_{ECDSA|RSA}_WITH_3DES_EDE_CBC_SHA ciphers
Patch58: rhbz1185708-enable-ecc-3des-ciphers-by-default.patch Patch58: rhbz1185708-enable-ecc-3des-ciphers-by-default.patch
# As of nss-3.21 we compile NSS with -Werror.
# see https://bugzilla.mozilla.org/show_bug.cgi?id=1182667
# This requires a cleanup of the PEM module as we have it here.
# TODO: submit a patch to the interim nss-pem upstream project
# The submission will be very different from this patch as
# cleanup there is already in progress there.
Patch59: pem-compile-with-Werror.patch
%description %description
Network Security Services (NSS) is a set of libraries designed to Network Security Services (NSS) is a set of libraries designed to
@ -194,7 +187,6 @@ popd
%patch54 -p0 -b .ssl2_off %patch54 -p0 -b .ssl2_off
%patch55 -p1 -b .skip_stress_tls_rc4_128_with_md5 %patch55 -p1 -b .skip_stress_tls_rc4_128_with_md5
%patch58 -p0 -b .1185708_3des %patch58 -p0 -b .1185708_3des
%patch59 -p0 -b .compile_Werror
######################################################### #########################################################
# Higher-level libraries and test tools need access to # Higher-level libraries and test tools need access to
@ -823,7 +815,11 @@ fi
%changelog %changelog
* Sat Mar 05 2016 emaldona <emaldona@redhat.com> - 3.23.0-2 * Tue Mar 08 2016 Elio Maldonado <emaldona@redhat.com> - 3.23.0-3
- Update pem sources to latest from nss-pem upstream
- Resolves: Bug 1300652 - [PEM] insufficient input validity checking while loading a private key
* Sat Mar 05 2016 Elio Maldonado <emaldona@redhat.com> - 3.23.0-2
- Rebase to NSS 3.23 - Rebase to NSS 3.23
* Sat Feb 27 2016 Elio Maldonado <emaldona@redhat.com> - 3.22.2-2 * Sat Feb 27 2016 Elio Maldonado <emaldona@redhat.com> - 3.22.2-2

View File

@ -3,5 +3,5 @@ a5ae49867124ac75f029a9a33af31bad blank-cert8.db
73bc040a0542bba387e6dd7fb9fd7d23 blank-secmod.db 73bc040a0542bba387e6dd7fb9fd7d23 blank-secmod.db
691e663ccc07b7a1eaa6f088e03bf8e2 blank-cert9.db 691e663ccc07b7a1eaa6f088e03bf8e2 blank-cert9.db
2ec9e0606ba40fe65196545564b7cc2a blank-key4.db 2ec9e0606ba40fe65196545564b7cc2a blank-key4.db
b8a94e863c852e1f8b75e930e76f8640 nss-pem-20140125.tar.bz2 4d8e770b105483e365f3327d883dd229 nss-pem-20160308.tar.bz2
574488f97390085832299cc3b90814a8 nss-3.23.0.tar.gz 574488f97390085832299cc3b90814a8 nss-3.23.0.tar.gz