Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(945)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: README.chromium

Issue 1504923011: Update NSS to 3.21 RTM and NSPR to 4.11 RTM (Closed) Base URL: http://src.chromium.org/svn/trunk/deps/third_party/nss
Patch Set: Created 5 years ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « no previous file | nspr/lib/ds/plarena.h » ('j') | nss/lib/certdb/crl.c » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 Name: Network Security Services (NSS) 1 Name: Network Security Services (NSS)
2 Short Name: nss 2 Short Name: nss
3 URL: http://www.mozilla.org/projects/security/pki/nss/ 3 URL: http://www.mozilla.org/projects/security/pki/nss/
4 Version: 3.16.5 4 Version: 3.21
5 License: MPL 2 5 License: MPL 2
6 License File: nss/COPYING 6 License File: nss/COPYING
7 Security Critical: yes 7 Security Critical: yes
8 8
9 Description: 9 Description:
10 NSS 3.19 with NSPR 4.10.8 10 NSS 3.21 with NSPR 4.11
11 11
12 This copy of NSS has been customized for Chromium. NSPR is also put here 12 This copy of NSS has been customized for Chromium. NSPR is also put here
13 rather than in a separate directory to emphasize the fact that Chromium is 13 rather than in a separate directory to emphasize the fact that Chromium is
14 using NSPR strictly as an NSS dependency. 14 using NSPR strictly as an NSS dependency.
15 15
16 We took a subset of NSS, omitting the SSL and SMIME libraries and the 16 We took a subset of NSS, omitting the SSL and SMIME libraries.
17 built-in root CA certificates module. This NSS subset satisfies the 17 This NSS subset satisfies the dependencies of the NSS SSL library in
18 dependencies of the NSS SSL library in src/net/third_party/nss. Do NOT use 18 src/net/third_party/nss. Do NOT use this copy of NSS on platforms that
19 this copy of NSS on platforms that have NSS as system libraries, such as 19 have NSS as system libraries, such as Linux.
20 Linux.
21 20
22 The source code was checked out from the mozilla.org CVS or hg repository using 21 The source code was checked out from the mozilla.org CVS or hg repository using
23 the nspr-checkout.sh and nss-checkout.sh scripts in the scripts directory. 22 the nspr-checkout.sh and nss-checkout.sh scripts in the scripts directory.
24 The current source code was checked out with the hg tag NSS_3_19_RTM 23 The current source code was checked out with the hg tag NSS_3_21_RTM
25 and the hg tag NSPR_4_10_8_RTM. 24 and the hg tag NSPR_4_11_RTM.
26 25
27 Local Modifications: 26 Local Modifications:
28 27
29 We made the following local changes to NSPR. 28 We made the following local changes to NSPR.
30 - patches/nspr-static.patch: to build NSPR as static libraries. See NSPR 29 - patches/nspr-static.patch: to build NSPR as static libraries. See NSPR
31 bug 533014 (https://bugzilla.mozilla.org/show_bug.cgi?id=533014). 30 bug 533014 (https://bugzilla.mozilla.org/show_bug.cgi?id=533014).
32 - patches/prcpucfg.h: added to the nspr/pr/include directory. 31 - patches/prcpucfg.h: added to the nspr/pr/include directory.
33 - patches/nspr-attach-as-system-thread.patch: attach a "foreign" thread 32 - patches/nspr-attach-as-system-thread.patch: attach a "foreign" thread
34 (a thread not created by NSPR) to NSPR as a "system" thread rather than 33 (a thread not created by NSPR) to NSPR as a "system" thread rather than
35 a "user" thread, which needs to terminate before PR_Cleanup can return. 34 a "user" thread, which needs to terminate before PR_Cleanup can return.
36 (The "system" vs. "user" thread distinction comes from Java, and 35 (The "system" vs. "user" thread distinction comes from Java, and
37 ultimately from Solaris threads.) This is a workaround for 36 ultimately from Solaris threads.) This is a workaround for
38 http://crbug.com/40663. 37 http://crbug.com/40663.
39 - patches/nspr-remove-io.patch: Remove IO operations in NSPR to allow NSS 38 - patches/nspr-remove-io.patch: Remove IO operations in NSPR to allow NSS
40 to work in the sandbox. Do not initialize IO when initializing NSPR. 39 to work in the sandbox. Do not initialize IO when initializing NSPR.
41 Windows version of NSPR also tried to use getaddrinfo to resolve hostname 40 Windows version of NSPR also tried to use getaddrinfo to resolve hostname
42 in a SSL connection. By removing _PR_HAVE_GETADDRINFO this will force it 41 in a SSL connection. By removing _PR_HAVE_GETADDRINFO this will force it
43 to use PR_GetHostByName. Removing _PR_INET6_PROBE will prevent it from 42 to use PR_GetHostByName. Removing _PR_INET6_PROBE will prevent it from
44 creating an IPv6 socket to probe if IPv6 is there. 43 creating an IPv6 socket to probe if IPv6 is there.
45 DO NOT upstream this patch. 44 DO NOT upstream this patch.
46 - patches/nspr-unused-variable.patch: Remove an unused variable. See NSPR 45 - patches/nspr-unused-variable.patch: Remove an unused variable. See NSPR
davidben 2015/12/11 22:10:58 I think this patch fell off a while ago.
47 bug 1126408 (https://bugzilla.mozilla.org/show_bug.cgi?id=1126408). 46 bug 1126408 (https://bugzilla.mozilla.org/show_bug.cgi?id=1126408).
48 - patches/nspr-overflow.patch: See NSPR bug 1205157
49 (https://bugzilla.mozilla.org/show_bug.cgi?id=1205157).
50 47
51 We made the following local changes to NSS. 48 We made the following local changes to NSS.
49
50 Files Added:
52 - nss/exports_win.def: The list of exports to use when building nss as a 51 - nss/exports_win.def: The list of exports to use when building nss as a
53 dynamic library (crnss.dll). 52 dynamic library (crnss.dll).
54 - nss/lib/ckfw/builtins/certdata.c: a generated file. Do an upstream NSS 53 - nss/lib/ckfw/builtins/certdata.c: a generated file. Do an upstream NSS
55 build and copy the generated certdata.c. 54 build and copy the generated certdata.c.
56 - nss/lib/freebl/nss_build_config_mac.h: a header that defines the target 55 - nss/lib/freebl/nss_build_config_mac.h: a header that defines the target
57 arch specific configuration macros for lib/freebl on iOS and Mac OS X. 56 arch specific configuration macros for lib/freebl on iOS and Mac OS X.
58 This works around the lack of support for the xcode_settings 57 This works around the lack of support for the xcode_settings
59 GCC_PREPROCESSOR_DEFINITIONS[arch=foo] by the ninja GYP generator 58 GCC_PREPROCESSOR_DEFINITIONS[arch=foo] by the ninja GYP generator
60 (http://crbug.com/122592). 59 (http://crbug.com/122592).
61 - nss/lib/freebl/mpi/mpi_arm_mac.c: a wrapper file for mpi_arm.c for iOS 60 - nss/lib/freebl/mpi/mpi_arm_mac.c: a wrapper file for mpi_arm.c for iOS
62 and Mac OS X. This works around the inability to specify target arch 61 and Mac OS X. This works around the inability to specify target arch
63 specific source files in Xcode. 62 specific source files in Xcode.
63
64 Patches Applied:
64 - patches/nss-remove-fortezza.patch: remove Fortezza certificate support 65 - patches/nss-remove-fortezza.patch: remove Fortezza certificate support
65 from PK11_ImportPublicKey. See NSS bug 668397 66 from PK11_ImportPublicKey. See NSS bug 668397
66 (https://bugzilla.mozilla.org/show_bug.cgi?id=668397). 67 (https://bugzilla.mozilla.org/show_bug.cgi?id=668397).
67 - patches/nss-urandom-abort.patch: call abort() if NSS cannot read from 68 - patches/nss-urandom-abort.patch: call abort() if NSS cannot read from
68 /dev/urandom. See Chromium issue 244661 (http://crbug.com/244661). 69 /dev/urandom. See Chromium issue 244661 (http://crbug.com/244661).
69 - patches/nss-chacha20-poly1305.patch: Support ChaCha20+Poly1305 cipher 70 - patches/nss-chacha20-poly1305.patch: Support ChaCha20+Poly1305 cipher
70 suites. See NSS bug 917571 71 suites. See NSS bug 917571
71 (https://bugzilla.mozilla.org/show_bug.cgi?id=917571). 72 (https://bugzilla.mozilla.org/show_bug.cgi?id=917571).
72 - patches/nss-static.patch: to build NSS as static libraries and omit 73 - patches/nss-static.patch: to build NSS as static libraries and omit
73 libpkix (the new certification path validation library) and 74 libpkix (the new certification path validation library) and
74 softoken/legacydb (support for the old Berkeley DB databases). See NSS 75 softoken/legacydb (support for the old Berkeley DB databases). See NSS
75 bug 534471 (https://bugzilla.mozilla.org/show_bug.cgi?id=534471). 76 bug 534471 (https://bugzilla.mozilla.org/show_bug.cgi?id=534471).
76 - patches/nss-ber-fixes.patch: See NSS bugs 1192028
77 (https://bugzilla.mozilla.org/show_bug.cgi?id=1192028) and 1202868
78 (https://bugzilla.mozilla.org/show_bug.cgi?id=1202868).
79 77
OLDNEW
« no previous file with comments | « no previous file | nspr/lib/ds/plarena.h » ('j') | nss/lib/certdb/crl.c » ('J')

Powered by Google App Engine
This is Rietveld 408576698