Revisions of mozilla-nss
buildservice-autocommit
accepted
request 817441
from
Wolfgang Rosenauer (wrosenauer)
(revision 327)
Wolfgang Rosenauer (wrosenauer)
(revision 327)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
committed
(revision 326)
- add FIPS mode patches from SLE stream
nss-fips-aes-keywrap-post.patch
nss-fips-approved-crypto-non-ec.patch
nss-fips-cavs-dsa-fixes.patch
nss-fips-cavs-general.patch
nss-fips-cavs-kas-ecc.patch
nss-fips-cavs-kas-ffc.patch
nss-fips-cavs-keywrap.patch
nss-fips-cavs-rsa-fixes.patch
nss-fips-combined-hash-sign-dsa-ecdsa.patch
nss-fips-constructor-self-tests.patch
nss-fips-detect-fips-mode-fixes.patch
nss-fips-dsa-kat.patch
nss-fips-gcm-ctr.patch
nss-fips-pairwise-consistency-check.patch
nss-fips-rsa-keygen-strictness.patch
nss-fips-tls-allow-md5-prf.patch
nss-fips-use-getrandom.patch
nss-fips-use-strong-random-pool.patch
nss-fips-zeroization.patch
nss-fix-dh-pkcs-derive-inverted-logic.patch
- update to NSS 3.53.1
* required for Firefox 78
* CVE-2020-12402 - Use constant-time GCD and modular inversion in MPI.
(bmo#1631597, bsc#1173032)
- update to NSS 3.53
Notable changes
* SEED is now moved into a new freebl directory freebl/deprecated
Wolfgang Rosenauer (wrosenauer)
accepted
request 816170
from
michel_mno
(revision 325)
- Add ppc-old-abi-v3.patch as per upstream bug https://bugzilla.mozilla.org/show_bug.cgi?id=1642174
buildservice-autocommit
accepted
request 810949
from
Wolfgang Rosenauer (wrosenauer)
(revision 324)
Wolfgang Rosenauer (wrosenauer)
(revision 324)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
accepted
request 810947
from
Andreas Stieger (AndreasStieger)
(revision 323)
CVE-2020-12399 boo#1171978
Wolfgang Rosenauer (wrosenauer)
committed
(revision 322)
Wolfgang Rosenauer (wrosenauer)
committed
(revision 321)
- removed obsolete nss-kremlin-ppc64le.patch
Wolfgang Rosenauer (wrosenauer)
committed
(revision 320)
* CVE-2020-12399 - Force a fixed length for DSA exponentiation
(bmo#1631576)
Wolfgang Rosenauer (wrosenauer)
committed
(revision 319)
- update to NSS 3.52.1
* required for Firefox 77.0
Notable changes
* Update NSS to support PKCS#11 v3.0 (bmo#1603628)
* Support new PKCS #11 v3.0 Message Interface for AES-GCM and
ChaChaPoly (bmo#1623374)
* Integrate AVX2 ChaCha20, Poly1305, and ChaCha20Poly1305 from HACL*
(bmo#1612493)
- Add patch nss-kremlin-ppc64le.patch to fix ppc and s390x builds
buildservice-autocommit
accepted
request 799040
from
Wolfgang Rosenauer (wrosenauer)
(revision 318)
Wolfgang Rosenauer (wrosenauer)
(revision 318)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
accepted
request 798944
from
Martin Liška (marxin)
(revision 317)
- Set NSS_ENABLE_WERROR=0 in order to fix boo#1169746.
buildservice-autocommit
accepted
request 793077
from
Wolfgang Rosenauer (wrosenauer)
(revision 316)
Wolfgang Rosenauer (wrosenauer)
(revision 316)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
accepted
request 793073
from
Andreas Stieger (AndreasStieger)
(revision 315)
NSS 3.51.1
buildservice-autocommit
accepted
request 790238
from
Wolfgang Rosenauer (wrosenauer)
(revision 314)
Wolfgang Rosenauer (wrosenauer)
(revision 314)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
accepted
request 790234
from
michel_mno
(revision 313)
- Update previous patch nss-kremlin-ppc64le.patch slightly modified to support also ppc64 (BE) versus initial https://github.com/FStarLang/kremlin/issues/166
Wolfgang Rosenauer (wrosenauer)
accepted
request 790066
from
Martin Sirringhaus (MSirringhaus)
(revision 312)
- Add patch nss-kremlin-ppc64le.patch to fix ppc and s390x builds
Wolfgang Rosenauer (wrosenauer)
committed
(revision 311)
- update to NSS 3.51
* Updated DTLS 1.3 implementation to Draft-34. (bmo#1608892)
* Correct swapped PKCS11 values of CKM_AES_CMAC and
CKM_AES_CMAC_GENERAL (bmo#1611209)
* Complete integration of Wycheproof ECDH test cases (bmo#1612259)
* Check if PPC __has_include(<sys/auxv.h>) (bmo#1614183)
* Fix a compilation error for ‘getFIPSEnv’ "defined but not used"
(bmo#1614786)
* Send DTLS version numbers in DTLS 1.3 supported_versions extension
to avoid an incompatibility. (bmo#1615208)
* SECU_ReadDERFromFile calls strstr on a string that isn't guaranteed
to be null-terminated (bmo#1538980)
* Correct a warning for comparison of integers of different signs:
'int' and 'unsigned long' in security/nss/lib/freebl/ecl/ecp_25519.c:88
(bmo#1561337)
* Add test for mp_int clamping (bmo#1609751)
* Don't attempt to read the fips_enabled flag on the machine unless
NSS was built with FIPS enabled (bmo#1582169)
* Fix a null pointer dereference in BLAKE2B_Update (bmo#1431940)
* Fix compiler warning in secsign.c (bmo#1617387)
* Fix a OpenBSD/arm64 compilation error: unused variable 'getauxval'
(bmo#1618400)
* Fix a crash on unaligned CMACContext.aes.keySchedule when using
AES-NI intrinsics (bmo#1610687)
buildservice-autocommit
accepted
request 783555
from
Factory Maintainer (factory-maintainer)
(revision 310)
Factory Maintainer (factory-maintainer)
(revision 310)
baserev update by copy to link target
Wolfgang Rosenauer (wrosenauer)
committed
(revision 309)
Wolfgang Rosenauer (wrosenauer)
committed
(revision 308)
- update to NSS 3.50
* Verified primitives from HACL* were updated, bringing performance
improvements for several platforms.
Note that Intel processors with SSE4 but without AVX are currently
unable to use the improved ChaCha20/Poly1305 due to a build issue;
such platforms will fall-back to less optimized algorithms.
See bmo#1609569 for details
* Updated DTLS 1.3 implementation to Draft-30.
See bmo#1599514 for details.
* Added NIST SP800-108 KBKDF - PKCS#11 implementation.
See bmo#1599603 for details.
* Several bugfixes and minor changes
Displaying revisions 121 - 140 of 447
