Hello community, here is the log from the commit of package mozilla-nss for openSUSE:Factory checked in at 2012-06-06 16:08:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-nss (Old) and /work/SRC/openSUSE:Factory/.mozilla-nss.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mozilla-nss", Maintainer is "[email protected]" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-nss/mozilla-nss.changes 2012-04-17 22:00:05.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.mozilla-nss.new/mozilla-nss.changes 2012-06-06 16:08:59.000000000 +0200 @@ -1,0 +2,5 @@ +Fri Jun 1 18:46:28 UTC 2012 - [email protected] + +- update to 3.13.5 RTM + +------------------------------------------------------------------- Old: ---- nss-3.13.4.tar.bz2 New: ---- nss-3.13.5.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-nss.spec ++++++ --- /var/tmp/diff_new_pack.c779qQ/_old 2012-06-06 16:09:02.000000000 +0200 +++ /var/tmp/diff_new_pack.c779qQ/_new 2012-06-06 16:09:02.000000000 +0200 @@ -23,9 +23,9 @@ BuildRequires: gcc-c++ BuildRequires: mozilla-nspr-devel BuildRequires: pkg-config -BuildRequires: zlib-devel BuildRequires: sqlite3-devel -Version: 3.13.4 +BuildRequires: zlib-devel +Version: 3.13.5 Release: 0 # bug437293 %ifarch ppc64 @@ -77,10 +77,10 @@ %package devel Summary: Network (Netscape) Security Services development files Group: Development/Libraries/Other -Requires: mozilla-nspr-devel -Requires: mozilla-nss = %{version}-%{release} Requires: libfreebl3 Requires: libsoftokn3 +Requires: mozilla-nspr-devel +Requires: mozilla-nss = %{version}-%{release} # bug437293 %ifarch ppc64 Obsoletes: mozilla-nss-devel-64bit ++++++ nss-3.13.4.tar.bz2 -> nss-3.13.5.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/certdb/stanpcertdb.c new/nss-3.13.5/mozilla/security/nss/lib/certdb/stanpcertdb.c --- old/nss-3.13.4/mozilla/security/nss/lib/certdb/stanpcertdb.c 2012-04-13 20:53:00.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/certdb/stanpcertdb.c 2012-05-17 23:40:53.000000000 +0200 @@ -311,13 +311,15 @@ } stanNick = nssCertificate_GetNickname(c, NULL); if (stanNick && nickname && strcmp(nickname, stanNick) != 0) { - /* take the new nickname */ + /* different: take the new nickname */ cert->nickname = NULL; + nss_ZFreeIf(stanNick); stanNick = NULL; } if (!stanNick && nickname) { - stanNick = nssUTF8_Duplicate((NSSUTF8 *)nickname, c->object.arena); - } + /* Either there was no nickname yet, or we have a new nickname */ + stanNick = nssUTF8_Duplicate((NSSUTF8 *)nickname, NULL); + } /* else: old stanNick is identical to new nickname */ /* Delete the temp instance */ nssCertificateStore_Lock(context->certStore, &lockTrace); nssCertificateStore_RemoveCertLOCKED(context->certStore, c); @@ -336,6 +338,8 @@ &c->serial, cert->emailAddr, PR_TRUE); + nss_ZFreeIf(stanNick); + stanNick = NULL; PK11_FreeSlot(slot); if (!permInstance) { if (NSS_GetError() == NSS_ERROR_INVALID_CERTIFICATE) { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/certhigh/certhigh.c new/nss-3.13.5/mozilla/security/nss/lib/certhigh/certhigh.c --- old/nss-3.13.4/mozilla/security/nss/lib/certhigh/certhigh.c 2011-03-10 05:29:04.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/certhigh/certhigh.c 2012-05-17 23:40:54.000000000 +0200 @@ -394,6 +394,8 @@ stanNickname = nssCertificate_GetNickname(c,NULL); if ( stanNickname ) { + nss_ZFreeIf(stanNickname); + stanNickname = NULL; if (names->what == SEC_CERT_NICKNAMES_USER) { saveit = NSSCertificate_IsPrivateKeyAvailable(c, NULL, NULL); } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/certhigh/certvfy.c new/nss-3.13.5/mozilla/security/nss/lib/certhigh/certvfy.c --- old/nss-3.13.4/mozilla/security/nss/lib/certhigh/certvfy.c 2011-09-14 02:28:47.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/certhigh/certvfy.c 2012-04-24 02:33:27.000000000 +0200 @@ -96,7 +96,7 @@ rv = NSS_GetAlgorithmPolicy(hashAlg, &policyFlags); if (rv == SECSuccess && !(policyFlags & NSS_USE_ALG_IN_CERT_SIGNATURE)) { - PORT_SetError(SEC_ERROR_INVALID_ALGORITHM); + PORT_SetError(SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED); rv = SECFailure; } } @@ -496,7 +496,10 @@ PORT_SetError(SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE); LOG_ERROR_OR_EXIT(log,issuerCert,count+1,0); } else { - PORT_SetError(SEC_ERROR_BAD_SIGNATURE); + if (PORT_GetError() != + SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED) { + PORT_SetError(SEC_ERROR_BAD_SIGNATURE); + } LOG_ERROR_OR_EXIT(log,subjectCert,count,0); } } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/libpkix/include/pkix_errorstrings.h new/nss-3.13.5/mozilla/security/nss/lib/libpkix/include/pkix_errorstrings.h --- old/nss-3.13.4/mozilla/security/nss/lib/libpkix/include/pkix_errorstrings.h 2010-09-27 23:51:27.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/libpkix/include/pkix_errorstrings.h 2012-04-24 02:33:28.000000000 +0200 @@ -997,7 +997,7 @@ PKIX_ERRORENTRY(SHUTDOWNFAILED,PKIX_PL_Shutdown failed,0), PKIX_ERRORENTRY(SIGNATURECHECKERINITIALIZEFAILED,pkix_SignatureChecker_Initialize failed,0), PKIX_ERRORENTRY(SIGNATURECHECKERSTATECREATEFAILED,pkix_SignatureCheckerState_Create failed,0), -PKIX_ERRORENTRY(SIGNATUREDIDNOTVERIFYWITHTHEPUBLICKEY,Signature did not verify with the public key,SEC_ERROR_BAD_SIGNATURE), +PKIX_ERRORENTRY(SIGNATUREDIDNOTVERIFYWITHTHEPUBLICKEY,Signature did not verify with the public key,0), PKIX_ERRORENTRY(SINGLEPOLICYNODEEQUALSFAILED,PKIX_PL_SinglePolicyNode_Equals failed,0), PKIX_ERRORENTRY(SINGLEPOLICYNODEHASHCODEFAILED,pkix_SinglePolicyNode_Hashcode failed,0), PKIX_ERRORENTRY(SINGLEPOLICYNODETOSTRINGFAILED,pkix_SinglePolicyNode_ToString failed,0), @@ -1100,7 +1100,7 @@ PKIX_ERRORENTRY(VALIDATERESULTCREATEFAILED,pkix_ValidateResult_Create failed,0), PKIX_ERRORENTRY(VALIDATERESULTGETPOLICYTREEFAILED,PKIX_ValidateResult_GetPolicyTree failed,0), PKIX_ERRORENTRY(VALIDATERESULTGETTRUSTANCHORFAILED,PKIX_ValidateResult_GetTrustAnchor failed,0), -PKIX_ERRORENTRY(VALIDATIONFAILEDCERTSIGNATURECHECKING,Validation failed: Cert Signature checking,SEC_ERROR_BAD_SIGNATURE), +PKIX_ERRORENTRY(VALIDATIONFAILEDCERTSIGNATURECHECKING,Validation failed: Cert Signature checking,0), PKIX_ERRORENTRY(VALIDATIONFAILEDNULLCERTPOINTER,Validation failed: NULL Cert pointer,0), PKIX_ERRORENTRY(VALIDATIONFAILEDPATHTONAMECHECKFAILED,Validation failed: PathToName check failed,SEC_ERROR_CERT_NOT_IN_NAME_SPACE), PKIX_ERRORENTRY(VALUEINESCAPEDASCII,value in EscapedASCII,0), diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix/checker/pkix_signaturechecker.c new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix/checker/pkix_signaturechecker.c --- old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix/checker/pkix_signaturechecker.c 2008-09-23 00:04:29.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix/checker/pkix_signaturechecker.c 2012-04-24 02:33:28.000000000 +0200 @@ -245,7 +245,6 @@ certVerified = PKIX_TRUE; } else { certVerified = PKIX_FALSE; - PKIX_DECREF(verifyFail); } } @@ -292,6 +291,7 @@ plContext), PKIX_LISTGETITEMFAILED); + PKIX_DECREF(verifyFail); verifyFail = PKIX_PL_Cert_VerifySignature (cert, pKey, plContext); @@ -300,7 +300,6 @@ break; } else { certVerified = PKIX_FALSE; - PKIX_DECREF(verifyFail); } PKIX_DECREF(pKey); @@ -309,6 +308,8 @@ #endif if (certVerified == PKIX_FALSE) { + pkixErrorResult = verifyFail; + verifyFail = NULL; PKIX_ERROR(PKIX_VALIDATIONFAILEDCERTSIGNATURECHECKING); } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c --- old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c 2012-04-13 20:53:03.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c 2012-04-24 02:33:29.000000000 +0200 @@ -2889,6 +2889,9 @@ status = CERT_VerifySignedDataWithPublicKey(tbsCert, nssPubKey, wincx); if (status != SECSuccess) { + if (PORT_GetError() != SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED) { + PORT_SetError(SEC_ERROR_BAD_SIGNATURE); + } PKIX_ERROR(PKIX_SIGNATUREDIDNOTVERIFYWITHTHEPUBLICKEY); } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_crl.c new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_crl.c --- old/nss-3.13.4/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_crl.c 2010-03-28 20:58:03.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_crl.c 2012-04-24 02:33:29.000000000 +0200 @@ -1043,6 +1043,7 @@ status = CERT_VerifySignedDataWithPublicKey(tbsCrl, nssPubKey, wincx); if (status != SECSuccess) { + PORT_SetError(SEC_ERROR_BAD_SIGNATURE); PKIX_ERROR(PKIX_SIGNATUREDIDNOTVERIFYWITHTHEPUBLICKEY); } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/nss/nss.h new/nss-3.13.5/mozilla/security/nss/lib/nss/nss.h --- old/nss-3.13.4/mozilla/security/nss/lib/nss/nss.h 2012-04-13 20:53:03.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/nss/nss.h 2012-05-31 20:29:27.000000000 +0200 @@ -36,7 +36,7 @@ * the terms of any one of the MPL, the GPL or the LGPL. * * ***** END LICENSE BLOCK ***** */ -/* $Id: nss.h,v 1.92.2.1 2012/04/06 15:20:43 kaie%kuix.de Exp $ */ +/* $Id: nss.h,v 1.92.2.4 2012/05/31 18:29:27 kaie%kuix.de Exp $ */ #ifndef __nss_h_ #define __nss_h_ @@ -66,10 +66,10 @@ * The format of the version string should be * "<major version>.<minor version>[.<patch level>[.<build number>]][ <ECC>][ <Beta>]" */ -#define NSS_VERSION "3.13.4.0" _NSS_ECC_STRING _NSS_CUSTOMIZED +#define NSS_VERSION "3.13.5.0" _NSS_ECC_STRING _NSS_CUSTOMIZED #define NSS_VMAJOR 3 #define NSS_VMINOR 13 -#define NSS_VPATCH 4 +#define NSS_VPATCH 5 #define NSS_VBUILD 0 #define NSS_BETA PR_FALSE diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/certificate.c new/nss-3.13.5/mozilla/security/nss/lib/pki/certificate.c --- old/nss-3.13.4/mozilla/security/nss/lib/pki/certificate.c 2011-07-12 23:29:17.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/certificate.c 2012-05-17 23:40:54.000000000 +0200 @@ -35,7 +35,7 @@ * ***** END LICENSE BLOCK ***** */ #ifdef DEBUG -static const char CVS_ID[] = "@(#) $RCSfile: certificate.c,v $ $Revision: 1.68 $ $Date: 2011/07/12 21:29:17 $"; +static const char CVS_ID[] = "@(#) $RCSfile: certificate.c,v $ $Revision: 1.68.2.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ #ifndef NSSPKI_H @@ -230,6 +230,7 @@ } } +/* Returns a copy, Caller must free using nss_ZFreeIf */ NSS_IMPLEMENT NSSUTF8 * nssCertificate_GetNickname ( NSSCertificate *c, diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/pki.h new/nss-3.13.5/mozilla/security/nss/lib/pki/pki.h --- old/nss-3.13.4/mozilla/security/nss/lib/pki/pki.h 2005-01-20 03:25:49.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/pki.h 2012-05-17 23:40:54.000000000 +0200 @@ -38,7 +38,7 @@ #define PKI_H #ifdef DEBUG -static const char PKI_CVS_ID[] = "@(#) $RCSfile: pki.h,v $ $Revision: 1.13 $ $Date: 2005/01/20 02:25:49 $"; +static const char PKI_CVS_ID[] = "@(#) $RCSfile: pki.h,v $ $Revision: 1.13.196.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ #ifndef NSSDEVT_H @@ -115,6 +115,7 @@ NSSCertificate *c ); +/* Returns a copy, Caller must free using nss_ZFreeIf */ NSS_EXTERN NSSUTF8 * nssCertificate_GetNickname ( diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/pki3hack.c new/nss-3.13.5/mozilla/security/nss/lib/pki/pki3hack.c --- old/nss-3.13.4/mozilla/security/nss/lib/pki/pki3hack.c 2012-02-17 23:44:56.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/pki3hack.c 2012-05-17 23:40:54.000000000 +0200 @@ -35,7 +35,7 @@ * ***** END LICENSE BLOCK ***** */ #ifdef DEBUG -static const char CVS_ID[] = "@(#) $RCSfile: pki3hack.c,v $ $Revision: 1.106 $ $Date: 2012/02/17 22:44:56 $"; +static const char CVS_ID[] = "@(#) $RCSfile: pki3hack.c,v $ $Revision: 1.106.2.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ /* @@ -1168,6 +1168,8 @@ &c->serial, email, PR_TRUE); + nss_ZFreeIf(nickname); + nickname = NULL; if (!newInstance) { nssrv = PR_FAILURE; goto done; @@ -1200,6 +1202,8 @@ &c->serial, email, PR_TRUE); + nss_ZFreeIf(nickname); + nickname = NULL; if (!newInstance) { nssrv = PR_FAILURE; goto done; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/pkibase.c new/nss-3.13.5/mozilla/security/nss/lib/pki/pkibase.c --- old/nss-3.13.4/mozilla/security/nss/lib/pki/pkibase.c 2010-04-03 20:27:32.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/pkibase.c 2012-05-17 23:40:54.000000000 +0200 @@ -35,7 +35,7 @@ * ***** END LICENSE BLOCK ***** */ #ifdef DEBUG -static const char CVS_ID[] = "@(#) $RCSfile: pkibase.c,v $ $Revision: 1.33 $ $Date: 2010/04/03 18:27:32 $"; +static const char CVS_ID[] = "@(#) $RCSfile: pkibase.c,v $ $Revision: 1.33.6.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ #ifndef DEV_H @@ -364,8 +364,8 @@ if ((!tokenOpt && object->instances[i]->label) || (object->instances[i]->token == tokenOpt)) { - /* XXX should be copy? safe as long as caller has reference */ - nickname = object->instances[i]->label; + /* Must copy, see bug 745548 */ + nickname = nssUTF8_Duplicate(object->instances[i]->label, NULL); break; } } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/pkistore.c new/nss-3.13.5/mozilla/security/nss/lib/pki/pkistore.c --- old/nss-3.13.4/mozilla/security/nss/lib/pki/pkistore.c 2010-12-17 03:34:07.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/pkistore.c 2012-05-17 23:40:54.000000000 +0200 @@ -35,7 +35,7 @@ * ***** END LICENSE BLOCK ***** */ #ifdef DEBUG -static const char CVS_ID[] = "@(#) $RCSfile: pkistore.c,v $ $Revision: 1.34 $ $Date: 2010/12/17 02:34:07 $"; +static const char CVS_ID[] = "@(#) $RCSfile: pkistore.c,v $ $Revision: 1.34.2.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ #ifndef PKIM_H @@ -458,6 +458,7 @@ { nt->subjectList = subjectList; } + nss_ZFreeIf(nickname); } /* diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/pki/tdcache.c new/nss-3.13.5/mozilla/security/nss/lib/pki/tdcache.c --- old/nss-3.13.4/mozilla/security/nss/lib/pki/tdcache.c 2010-02-10 03:04:32.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/pki/tdcache.c 2012-05-17 23:40:54.000000000 +0200 @@ -35,7 +35,7 @@ * ***** END LICENSE BLOCK ***** */ #ifdef DEBUG -static const char CVS_ID[] = "@(#) $RCSfile: tdcache.c,v $ $Revision: 1.49 $ $Date: 2010/02/10 02:04:32 $"; +static const char CVS_ID[] = "@(#) $RCSfile: tdcache.c,v $ $Revision: 1.49.6.1 $ $Date: 2012/05/17 21:40:54 $"; #endif /* DEBUG */ #ifndef PKIM_H @@ -771,6 +771,7 @@ log_cert_ref("attempted to add cert already in cache", cert); #endif PZ_Unlock(td->cache->lock); + nss_ZFreeIf(certNickname); /* collision - somebody else already added the cert * to the cache before this thread got around to it. */ @@ -839,8 +840,11 @@ } rvCert = cert; PZ_Unlock(td->cache->lock); + nss_ZFreeIf(certNickname); return rvCert; loser: + nss_ZFreeIf(certNickname); + certNickname = NULL; /* Remove any handles that have been created */ subjectList = NULL; if (added >= 1) { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/softoken/softkver.h new/nss-3.13.5/mozilla/security/nss/lib/softoken/softkver.h --- old/nss-3.13.4/mozilla/security/nss/lib/softoken/softkver.h 2012-04-13 20:53:04.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/softoken/softkver.h 2012-05-31 20:29:28.000000000 +0200 @@ -57,10 +57,10 @@ * The format of the version string should be * "<major version>.<minor version>[.<patch level>[.<build number>]][ <ECC>][ <Beta>]" */ -#define SOFTOKEN_VERSION "3.13.4.0" SOFTOKEN_ECC_STRING +#define SOFTOKEN_VERSION "3.13.5.0" SOFTOKEN_ECC_STRING #define SOFTOKEN_VMAJOR 3 #define SOFTOKEN_VMINOR 13 -#define SOFTOKEN_VPATCH 4 +#define SOFTOKEN_VPATCH 5 #define SOFTOKEN_VBUILD 0 #define SOFTOKEN_BETA PR_FALSE diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/ssl/derive.c new/nss-3.13.5/mozilla/security/nss/lib/ssl/derive.c --- old/nss-3.13.4/mozilla/security/nss/lib/ssl/derive.c 2011-03-22 23:15:22.000000000 +0100 +++ new/nss-3.13.5/mozilla/security/nss/lib/ssl/derive.c 2012-04-20 02:37:53.000000000 +0200 @@ -36,7 +36,7 @@ * the terms of any one of the MPL, the GPL or the LGPL. * * ***** END LICENSE BLOCK ***** */ -/* $Id: derive.c,v 1.13 2011/03/22 22:15:22 alexei.volkov.bugs%sun.com Exp $ */ +/* $Id: derive.c,v 1.13.2.2 2012/04/20 00:37:53 emaldona%redhat.com Exp $ */ #include "ssl.h" /* prereq to sslimpl.h */ #include "certt.h" /* prereq to sslimpl.h */ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/ssl/ssl3con.c new/nss-3.13.5/mozilla/security/nss/lib/ssl/ssl3con.c --- old/nss-3.13.4/mozilla/security/nss/lib/ssl/ssl3con.c 2012-04-13 20:53:06.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/ssl/ssl3con.c 2012-04-20 02:37:53.000000000 +0200 @@ -40,7 +40,7 @@ * the terms of any one of the MPL, the GPL or the LGPL. * * ***** END LICENSE BLOCK ***** */ -/* $Id: ssl3con.c,v 1.167 2012/03/06 02:23:25 wtc%google.com Exp $ */ +/* $Id: ssl3con.c,v 1.167.2.2 2012/04/20 00:37:53 emaldona%redhat.com Exp $ */ #include "cert.h" #include "ssl.h" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/ssl/ssl3ext.c new/nss-3.13.5/mozilla/security/nss/lib/ssl/ssl3ext.c --- old/nss-3.13.4/mozilla/security/nss/lib/ssl/ssl3ext.c 2012-04-13 20:53:06.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/ssl/ssl3ext.c 2012-04-20 02:37:53.000000000 +0200 @@ -41,7 +41,7 @@ * ***** END LICENSE BLOCK ***** */ /* TLS extension code moved here from ssl3ecc.c */ -/* $Id: ssl3ext.c,v 1.22 2012/03/12 19:14:12 wtc%google.com Exp $ */ +/* $Id: ssl3ext.c,v 1.22.2.2 2012/04/20 00:37:53 emaldona%redhat.com Exp $ */ #include "nssrenam.h" #include "nss.h" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/ssl/sslsock.c new/nss-3.13.5/mozilla/security/nss/lib/ssl/sslsock.c --- old/nss-3.13.4/mozilla/security/nss/lib/ssl/sslsock.c 2012-04-13 20:53:07.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/ssl/sslsock.c 2012-04-20 02:37:53.000000000 +0200 @@ -40,7 +40,7 @@ * the terms of any one of the MPL, the GPL or the LGPL. * * ***** END LICENSE BLOCK ***** */ -/* $Id: sslsock.c,v 1.82.2.1 2012/03/31 23:16:38 wtc%google.com Exp $ */ +/* $Id: sslsock.c,v 1.82.2.3 2012/04/20 00:37:53 emaldona%redhat.com Exp $ */ #include "seccomon.h" #include "cert.h" #include "keyhi.h" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/util/SECerrs.h new/nss-3.13.5/mozilla/security/nss/lib/util/SECerrs.h --- old/nss-3.13.4/mozilla/security/nss/lib/util/SECerrs.h 2011-08-17 07:01:46.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/util/SECerrs.h 2012-05-24 22:19:25.000000000 +0200 @@ -573,3 +573,6 @@ ER3(SEC_ERROR_BAD_CRL_DP_URL, (SEC_ERROR_BASE + 175), "Invalid or unsupported URL in CRL distribution point name.") + +ER3(SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED, (SEC_ERROR_BASE + 176), +"The certificate was signed using a signature algorithm that is disabled because it is not secure.") diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/util/nssutil.h new/nss-3.13.5/mozilla/security/nss/lib/util/nssutil.h --- old/nss-3.13.4/mozilla/security/nss/lib/util/nssutil.h 2012-04-13 20:53:07.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/util/nssutil.h 2012-05-31 20:29:28.000000000 +0200 @@ -51,10 +51,10 @@ * The format of the version string should be * "<major version>.<minor version>[.<patch level>[.<build number>]][ <Beta>]" */ -#define NSSUTIL_VERSION "3.13.4.0" +#define NSSUTIL_VERSION "3.13.5.0" #define NSSUTIL_VMAJOR 3 #define NSSUTIL_VMINOR 13 -#define NSSUTIL_VPATCH 4 +#define NSSUTIL_VPATCH 5 #define NSSUTIL_VBUILD 0 #define NSSUTIL_BETA PR_FALSE diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nss-3.13.4/mozilla/security/nss/lib/util/secerr.h new/nss-3.13.5/mozilla/security/nss/lib/util/secerr.h --- old/nss-3.13.4/mozilla/security/nss/lib/util/secerr.h 2010-09-27 23:51:28.000000000 +0200 +++ new/nss-3.13.5/mozilla/security/nss/lib/util/secerr.h 2012-04-24 02:33:29.000000000 +0200 @@ -236,6 +236,8 @@ SEC_ERROR_BAD_CRL_DP_URL = (SEC_ERROR_BASE + 175), +SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED = (SEC_ERROR_BASE + 176), + /* Add new error codes above here. */ SEC_ERROR_END_OF_LIST } SECErrorCodes; -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
