OLD | NEW |
1 Name: Network Security Services (NSS) | 1 Name: Network Security Services (NSS) |
2 URL: http://www.mozilla.org/projects/security/pki/nss/ | 2 URL: http://www.mozilla.org/projects/security/pki/nss/ |
3 Version: 3.15.5 Beta 2 | 3 Version: 3.15.5 Beta 2 |
4 Security Critical: Yes | 4 Security Critical: Yes |
5 License: MPL 2 | 5 License: MPL 2 |
6 License File: NOT_SHIPPED | 6 License File: NOT_SHIPPED |
7 | 7 |
8 This directory includes a copy of NSS's libssl from the hg repo at: | 8 This directory includes a copy of NSS's libssl from the hg repo at: |
9 https://hg.mozilla.org/projects/nss | 9 https://hg.mozilla.org/projects/nss |
10 | 10 |
(...skipping 57 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
68 patches/aesgcmchromium.patch | 68 patches/aesgcmchromium.patch |
69 | 69 |
70 * Support ChaCha20+Poly1305 ciphersuites | 70 * Support ChaCha20+Poly1305 ciphersuites |
71 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-01 | 71 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-01 |
72 patches/chacha20poly1305.patch | 72 patches/chacha20poly1305.patch |
73 | 73 |
74 * Fix session cache lock creation race. | 74 * Fix session cache lock creation race. |
75 patches/cachelocks.patch | 75 patches/cachelocks.patch |
76 https://bugzilla.mozilla.org/show_bug.cgi?id=764646 | 76 https://bugzilla.mozilla.org/show_bug.cgi?id=764646 |
77 | 77 |
78 * Always add an extension to a ClientHello to make it 512 bytes. | |
79 patches/paddingextensionall.patch | |
80 | |
81 * Support the Certificate Transparency (RFC 6962) TLS extension | 78 * Support the Certificate Transparency (RFC 6962) TLS extension |
82 signed_certificate_timestamp (client only). | 79 signed_certificate_timestamp (client only). |
83 patches/signedcertificatetimestamps.patch | 80 patches/signedcertificatetimestamps.patch |
84 https://bugzilla.mozilla.org/show_bug.cgi?id=944175 | 81 https://bugzilla.mozilla.org/show_bug.cgi?id=944175 |
85 | 82 |
86 * Add a function to allow the cipher suites preference order to be set. | 83 * Add a function to allow the cipher suites preference order to be set. |
87 patches/cipherorder.patch | 84 patches/cipherorder.patch |
88 | 85 |
89 * Add TLS_FALLBACK_SCSV cipher suite to version fallback connections. | 86 * Add TLS_FALLBACK_SCSV cipher suite to version fallback connections. |
90 patches/fallbackscsv.patch | 87 patches/fallbackscsv.patch |
(...skipping 11 matching lines...) Expand all Loading... |
102 * Use NSSRWLock instead of PRRWLock in sslSessionID. This avoids the bugs | 99 * Use NSSRWLock instead of PRRWLock in sslSessionID. This avoids the bugs |
103 in the lock rank checking code in PRRWLock. | 100 in the lock rank checking code in PRRWLock. |
104 patches/nssrwlock.patch | 101 patches/nssrwlock.patch |
105 https://bugzilla.mozilla.org/show_bug.cgi?id=957812 | 102 https://bugzilla.mozilla.org/show_bug.cgi?id=957812 |
106 | 103 |
107 Apply the patches to NSS by running the patches/applypatches.sh script. Read | 104 Apply the patches to NSS by running the patches/applypatches.sh script. Read |
108 the comments at the top of patches/applypatches.sh for instructions. | 105 the comments at the top of patches/applypatches.sh for instructions. |
109 | 106 |
110 The ssl/bodge directory contains files taken from the NSS repo that we required | 107 The ssl/bodge directory contains files taken from the NSS repo that we required |
111 for building libssl outside of its usual build environment. | 108 for building libssl outside of its usual build environment. |
OLD | NEW |