9eab55825e
Merge branch 'f20' into private_pem_cleanup
2014-01-30 15:25:35 -08:00
45408955dd
Patch the pem module to cleanup the use of globals
...
- Remove unneeded global declarations
- Remove extrenal declarations, keep the ones in ckpem.h
- Rename some globals: gobj -> pem_objs ...
2013-12-24 11:39:42 -08:00
6ab230bb01
Remove unused patches
2013-12-18 08:00:55 -08:00
a0fd8d9501
Remove unused patch
2013-12-18 07:59:15 -08:00
7b557ce61e
Merge branch 'master' into f20
2013-12-11 11:46:07 -08:00
b5567867a7
- Resolves: Bug 1040192 - nss-3.15.3.1 is available
2013-12-11 10:41:54 -08:00
4f6555074f
Update to nss-3.15.3.1 (hg tag NSS_3_15_3_1_RTM)
...
- Resolves: Bug 1040282 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA
2013-117)
2013-12-11 08:37:47 -08:00
f37654e052
Bump the release tag
2013-12-03 14:12:35 -08:00
346792254e
Install symlink to setup-nsssysinit.sh, without suffix, to match manpage documentation
2013-12-03 08:27:21 -08:00
f7afdb6b33
Merge branch 'master' into f20
2013-12-02 13:48:29 -08:00
49e209f91d
Install symlink to setup-nsssysinit.sh, without the ".sh" suffix, that matches the man page documentation
2013-11-26 14:15:45 -08:00
67a7a21b0e
Update to NSS_3_15_3_RTM
...
- Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws
- Fix option descriptions for setup-nsssysinit manpage
- Fix man page of nss-sysinit wrong path and other flaws
- Document email option for certutil manpage
- Remove unused patches
2013-11-26 10:36:24 -08:00
129e66ef0e
Remove unused script mozilla-crypto-strip.sh
2013-11-24 14:22:43 -08:00
658733b0d3
Bump the minimum required verion of nss-util and nss-softokn to 3.15.3
2013-11-23 21:06:02 -08:00
db7fe53123
Update to NSS_3_15_3_RTM
...
- Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws
- Fix option descriptions for setup-nsssysinit manpage
2013-11-23 20:47:19 -08:00
a6a13f1a66
Bump the release tag
2013-10-27 11:04:28 -07:00
4b2b74e5e0
Revert one change from last commit to preserve full nss pluggable ecc supprt
2013-10-27 11:00:35 -07:00
c0d31ae1d8
Use the full pristine sources from upstream
...
- Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird
2013-10-27 10:43:24 -07:00
d61e6dba7b
Use the full pristine sources from upstream
...
- Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird
2013-10-27 09:45:10 -07:00
74d9e91174
Remove obsolete NSS_ECC_MORE_THAN_SUITE_B=1 export. It has no effect.
2013-10-23 11:38:39 -07:00
306dd778f4
Use the full sources from upstream
...
- Bug 1019245 - ECDHE in openssl available -> NSS needs too for Firefox/Thunderbird
2013-10-23 09:53:20 -07:00
1bb4981176
Disable application of the nss-ssl-cbc-random-iv-off-by-default.patch
...
- Resolves: rhbz#1020420 - Turn on the fix for BEAST by default [CVE-2011-3389]
2013-10-18 11:58:26 -07:00
bf043713d1
Ammend the merge from master by keeping the nss-ssl-cbc-random-iv-off-by-default.patch enabled
2013-10-01 14:16:46 -07:00
9b70717281
- Update to NSS_3_15_2_RTM
...
- Update iquote.patch on account of modified prototype on cert.h installed by nss-devel
- On CERT_GetKeyType a const qualifier was added to the input parameter and this we must include
- the cert.h from the build tree intead of the one in system/buildroot which is not up to date yet
2013-09-27 11:32:01 -07:00
8f6f357e88
Update to NSS_3_15_2_RTM
2013-09-27 09:50:45 -07:00
33f25f5720
Fix the release tag to be Release: 7%{?dist}
2013-08-28 15:08:50 -07:00
da85237ace
Update pem sources to pick up a patch applied upstream which a faulty merge had missed
...
- The pem module should not require unique file basenames
2013-08-28 12:59:23 -07:00
2285997461
Upload a new pem source tar ball with a fix to a relative patch
2013-08-27 21:39:03 -07:00
1c902d0023
Fix the version of nss-pem source tar ball to use
2013-08-27 21:17:53 -07:00
2c648570aa
Update pem sources to the latest from interim upstream
2013-08-27 21:08:54 -07:00
b4e6e308a6
Resolves: rhbz#996639 - Minor bugs in nss man pages
...
- Fix some typos and improve description and see also sections
2013-08-19 11:56:32 -07:00
5761e30a94
Cleanup spec file to address most rpmlint errors and warnings
...
- Using double percent symbols to fix macro-in-comment warnings
- Ignore unversioned-explicit-provides nss-system-init per spec comments
- Ignore invalid-url Source0 as it comes from the git lookaside cache
- Ignore invalid-url Source12 as it comes from the git lookaside cache
2013-08-11 12:16:20 -07:00
3888f3b230
Add man page for pkcs11.txt configuration file and cert and key databases
...
- Resolves: rhbz#985114 - Provide man pages for the nss configuration files
2013-07-25 14:21:44 -07:00
8ae46fa97f
Fix errors in the man pages
...
- Resolves: rhbz#984106 - Add missing option descriptions to man pages for {cert|cms|crl}util
- Resolves: rhbz#982856 - Fix path to script in man page for nss-sysinit
2013-07-19 10:42:57 -07:00
fdb9637677
Fix nss-3.14.0.0-disble-ocsp-test.patch
...
- it was disabling the wrong test, dsa instead of ocsp
2013-07-02 16:15:12 -07:00
cf4a750103
Update to NSS_3_15_1_RTM
...
- Enable the iquote.patch to access newly introduced types
- New types and constants added to sslprot.h, sslerr.h, and sslt.h require thhe in-tree headers to be picked up first
2013-07-02 15:15:25 -07:00
8943f1ad54
Update to NSS_3_15_RTM
2013-07-02 13:44:44 -07:00
efdced7007
Revert "Reenable patches required for compatibility on stable fedora branches"
...
This reverts commit 65efb2c2f3
2013-06-23 19:39:13 -07:00
65efb2c2f3
Reenable patches required for compatibility on stable fedora branches
...
- Reenable nss-ssl-enforce-no-pkcs11-bypass.path
- Renable nss-ssl-cbc-random-iv-off-by-default.patch
2013-06-23 19:00:21 -07:00
b8273ce04c
Install man pages for nss-tools and the nss-config and setup-nsssysinit scripts
...
- Resolves: rhbz#606020 - nss security tools lack man pages
2013-06-19 20:32:27 -07:00
e36079dd45
Build nss without softoken or util sources in the tree
...
- Resolves: rhbz#689918
2013-06-18 17:45:38 -07:00
41e94360c9
Update ssl-cbc-random-iv-by-default.patch
...
- Added a missing comma
2013-06-17 16:23:06 -07:00
2f66633263
Fix generation of NSS_VMAJOR, NSS_VMINOR, and NSS_VPATCH for nss-config
...
- These were blank in nss-config causing build failures on client paclages
- Reported by Martin Stransky when a xulrunner build failed
2013-06-16 10:07:11 -07:00
f6ec57311f
Update to NSS_3_15_RTM
2013-06-15 12:48:12 -07:00
2249db62a6
Fix incorrect path that hid failed test from view
...
- Add ocsp to the test suites to run but ...
- Temporarily disable the ocsp stapling tests
- Do not treat failed attempts at ssl pkcs11 bypass as fatal errors
2013-04-24 18:46:52 -07:00
30056fd35c
Update nss-pem-20130405.tar.bz2 to the git lookaside cache
2013-04-09 16:22:42 -07:00
2a8c1318ea
Update to NSS_3_15_BETA1
...
- Update spec file, patches, and helper scripts on account of a shallower source tree
- Update the pem sources also to adjust to the sallower source for nss
2013-04-09 16:14:36 -07:00
59b5d52d9e
* Sun Mar 24 2013 Kai Engert <kaie@redhat.com> - 3.14.3-12
...
- Update expired test certificates (fixed in upstream bug 852781)
2013-03-24 00:28:39 +01:00
21e8668243
* Fri Mar 08 2013 Kai Engert <kaie@redhat.com> - 3.14.3-10
...
- Fix incorrect post/postun scripts. Fix broken links in posttrans.
2013-03-08 23:34:55 +01:00
7b5d7ea05f
* Wed Mar 06 2013 Kai Engert <kaie@redhat.com> - 3.14.3-9
...
- Configure libnssckbi.so to use the alternatives system
in order to prepare for a drop in replacement.
2013-03-06 00:49:27 +01:00
Elio Maldonado
Kai Engert