Update NSS to NSS_3_16_RC0.

nss/lib/freebl/rsapkcs.c

 /* This Source Code Form is subject to the terms of the Mozilla Public
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 
 /*
  * RSA PKCS#1 v2.1 (RFC 3447) operations
  */
 
 #ifdef FREEBL_NO_DEPEND
 #include "stubs.h"
 #endif
 
 #include "secerr.h"
 
 #include "blapi.h"
 #include "secitem.h"
 #include "blapii.h"
 
 #define RSA_BLOCK_MIN_PAD_LEN            8
 #define RSA_BLOCK_FIRST_OCTET            0x00
 #define RSA_BLOCK_PRIVATE_PAD_OCTET      0xff
 #define RSA_BLOCK_AFTER_PAD_OCTET        0x00
 
 /*
  * RSA block types
  *
- * The actual values are important -- they are fixed, *not* arbitrary.
- * The explicit value assignments are not needed (because C would give
- * us those same values anyway) but are included as a reminder...
+ * The values of RSA_BlockPrivate and RSA_BlockPublic are fixed.
+ * The value of RSA_BlockRaw isn't fixed by definition, but we are keeping
+ * the value that NSS has been using in the past.
  */
 typedef enum {
-    RSA_BlockUnused = 0,    /* unused */
     RSA_BlockPrivate = 1,   /* pad for a private-key operation */
     RSA_BlockPublic = 2,    /* pad for a public-key operation */
-    RSA_BlockRaw = 4,       /* simply justify the block appropriately */
-    RSA_BlockTotal
+    RSA_BlockRaw = 4        /* simply justify the block appropriately */
 } RSA_BlockType;
 
 /* Needed for RSA-PSS functions */
 static const unsigned char eightZeros[] = { 0, 0, 0, 0, 0, 0, 0, 0 };
 
 /* Constant time comparison of a single byte.
  * Returns 1 iff a == b, otherwise returns 0.
  * Note: For ranges of bytes, use constantTimeCompare.
  */
 static unsigned char constantTimeEQ8(unsigned char a, unsigned char b) {
@@ skipping 1326 matching lines @@
     PORT_Memcpy(output, buffer + modulusLen - *outputLen, *outputLen);
 
     PORT_Free(buffer);
     return SECSuccess;
 
 loser:
     PORT_Free(buffer);
 failure:
     return SECFailure;
 }