LogoopenSUSE Build Service > Projects > openSUSE:Factory > mozilla-nss
Sign Up | Log In

Network Security Services

Network Security Services (NSS) is a set of libraries designed to
support cross-platform development of security-enabled server
applications. Applications built with NSS can support SSL v2 and v3,
TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3
certificates, and other security standards.

Source Files

Filename Size Changed Actions
baselibs.conf 319 Bytes over 6 years ago Download File
cert9.db 9 KB about 6 years ago Download File
key4.db 11 KB about 6 years ago Download File
malloc.patch 488 Bytes about 3 years ago Download File
mozilla-nss-rpmlintrc 187 Bytes over 5 years ago Download File
mozilla-nss.changes 68.6 KB 21 days ago Download File
mozilla-nss.spec 12.6 KB 21 days ago Download File
nss-3.24.tar.gz 6.97 MB 27 days ago
nss-config.in 2.35 KB over 8 years ago Download File
nss-disable-ocsp-test.patch 392 Bytes about 3 years ago Download File
nss-no-rpath.patch 899 Bytes about 3 years ago Download File
nss-opt.patch 591 Bytes about 3 years ago Download File
nss-sqlitename.patch 570 Bytes about 3 years ago Download File
nss.pc.in 250 Bytes about 5 years ago Download File
pkcs11.txt 450 Bytes about 6 years ago Download File
renegotiate-transitional.patch 1.16 KB 3 months ago Download File
setup-nsssysinit.sh 1.23 KB over 6 years ago Download File
system-nspr.patch 706 Bytes about 3 years ago Download File

Latest Revision

Dominique Leuenberger Dominique Leuenberger (dimstar_suse) accepted request 417032 13 days ago (revision 116)
- also sign libfreeblpriv3.so to allow FIPS mode again (boo#992236)

- update to NSS 3.24
  New functionality:
  * NSS softoken has been updated with the latest National Institute
    of Standards and Technology (NIST) guidance (as of 2015):
    - Software integrity checks and POST functions are executed on
      shared library load. These checks have been disabled by default,
      as they can cause a performance regression. To enable these
      checks, you must define symbol NSS_FORCE_FIPS when building NSS.
    - Counter mode and Galois/Counter Mode (GCM) have checks to
      prevent counter overflow.
    - Additional CSPs are zeroed in the code.
    - NSS softoken uses new guidance for how many Rabin-Miller tests
      are needed to verify a prime based on prime size.
  * NSS softoken has also been updated to allow NSS to run in FIPS
    Level 1 (no password). This mode is triggered by setting the
    database password to the empty string. In FIPS mode, you may move
    from Level 1 to Level 2 (by setting an appropriate password),
    but not the reverse.
  * A SSL_ConfigServerCert function has been added for configuring
    SSL/TLS server sockets with a certificate and private key. Use
    this new function in place of SSL_ConfigSecureServer,
    SSL_ConfigSecureServerWithCertChain, SSL_SetStapledOCSPResponses,
    and SSL_SetSignedCertTimestamps. SSL_ConfigServerCert automatically
    determines the certificate type from the certificate and private key.
    The caller is no longer required to use SSLKEAType explicitly to
    select a "slot" into which the certificate is configured (which
    incorrectly identifies a key agreement type rather than a certificate).
    Separate functions for configuring Online Certificate Status Protocol

Comments for openSUSE:Factory (0)