Update to NSS 3.15.3.

nss/lib/certdb/certt.h

 /* This Source Code Form is subject to the terms of the Mozilla Public
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 /*
  * certt.h - public data structures for the certificate library
  */
 #ifndef _CERTT_H_
 #define _CERTT_H_
 
 #include "prclist.h"
@@ skipping 1023 matching lines @@
  * each integer contained in the array pointed to be:
  *     CERTRevocationTests.cert_rev_flags_per_method
  * All Flags are prefixed by CERT_REV_M_, where _M_ indicates
  * this is a method dependent flag.
  */
 
 /*
  * Whether or not to use a method for revocation testing.
  * If set to "do not test", then all other flags are ignored.
  */
-#define CERT_REV_M_DO_NOT_TEST_USING_THIS_METHOD     0L
-#define CERT_REV_M_TEST_USING_THIS_METHOD            1L
+#define CERT_REV_M_DO_NOT_TEST_USING_THIS_METHOD     0UL
+#define CERT_REV_M_TEST_USING_THIS_METHOD            1UL
 
 /*
  * Whether or not NSS is allowed to attempt to fetch fresh information
  *         from the network.
  * (Although fetching will never happen if fresh information for the
  *           method is already locally available.)
  */
-#define CERT_REV_M_ALLOW_NETWORK_FETCHING            0L
-#define CERT_REV_M_FORBID_NETWORK_FETCHING           2L
+#define CERT_REV_M_ALLOW_NETWORK_FETCHING            0UL
+#define CERT_REV_M_FORBID_NETWORK_FETCHING           2UL
 
 /*
  * Example for an implicit default source:
  *         The globally configured default OCSP responder.
  * IGNORE means:
  *        ignore the implicit default source, whether it's configured or not.
  * ALLOW means:
  *       if an implicit default source is configured, 
  *          then it overrides any available or missing source in the cert.
  *       if no implicit default source is configured,
  *          then we continue to use what's available (or not available) 
  *          in the certs.
  */ 
-#define CERT_REV_M_ALLOW_IMPLICIT_DEFAULT_SOURCE     0L
-#define CERT_REV_M_IGNORE_IMPLICIT_DEFAULT_SOURCE    4L
+#define CERT_REV_M_ALLOW_IMPLICIT_DEFAULT_SOURCE     0UL
+#define CERT_REV_M_IGNORE_IMPLICIT_DEFAULT_SOURCE    4UL
 
 /*
  * Defines the behavior if no fresh information is available,
  *   fetching from the network is allowed, but the source of revocation
  *   information is unknown (even after considering implicit sources,
  *   if allowed by other flags).
  * SKIPT_TEST means:
  *          We ignore that no fresh information is available and 
  *          skip this test.
  * REQUIRE_INFO means:
  *          We still require that fresh information is available.
  *          Other flags define what happens on missing fresh info.
  */
-#define CERT_REV_M_SKIP_TEST_ON_MISSING_SOURCE       0L
-#define CERT_REV_M_REQUIRE_INFO_ON_MISSING_SOURCE    8L
+#define CERT_REV_M_SKIP_TEST_ON_MISSING_SOURCE       0UL
+#define CERT_REV_M_REQUIRE_INFO_ON_MISSING_SOURCE    8UL
 
 /*
  * Defines the behavior if we are unable to obtain fresh information.
  * INGORE means:
  *      Return "cert status unknown"
  * FAIL means:
  *      Return "cert revoked".
  */
-#define CERT_REV_M_IGNORE_MISSING_FRESH_INFO         0L
-#define CERT_REV_M_FAIL_ON_MISSING_FRESH_INFO        16L
+#define CERT_REV_M_IGNORE_MISSING_FRESH_INFO         0UL
+#define CERT_REV_M_FAIL_ON_MISSING_FRESH_INFO        16UL
 
 /*
  * What should happen if we were able to find fresh information using
  * this method, and the data indicated the cert is good?
  * STOP_TESTING means:
  *              Our success is sufficient, do not continue testing
  *              other methods.
  * CONTINUE_TESTING means:
  *                  We will continue and test the next allowed
  *                  specified method.
  */
-#define CERT_REV_M_STOP_TESTING_ON_FRESH_INFO        0L
-#define CERT_REV_M_CONTINUE_TESTING_ON_FRESH_INFO    32L
+#define CERT_REV_M_STOP_TESTING_ON_FRESH_INFO        0UL
+#define CERT_REV_M_CONTINUE_TESTING_ON_FRESH_INFO    32UL
 
 /*
  * The following flags are supposed to be used to control bits in
  *     CERTRevocationTests.cert_rev_method_independent_flags
  * All Flags are prefixed by CERT_REV_M_, where _M_ indicates
  * this is a method independent flag.
  */
 
 /*
  * This defines the order to checking.
  * EACH_METHOD_SEPARATELY means:
  *      Do all tests related to a particular allowed method
  *      (both local information and network fetching) in a single step.
  *      Only after testing for a particular method is done,
  *      then switching to the next method will happen.
  * ALL_LOCAL_INFORMATION_FIRST means:
  *      Start by testing the information for all allowed methods
  *      which are already locally available. Only after that is done
  *      consider to fetch from the network (as allowed by other flags).
  */
-#define CERT_REV_MI_TEST_EACH_METHOD_SEPARATELY       0L
-#define CERT_REV_MI_TEST_ALL_LOCAL_INFORMATION_FIRST  1L
+#define CERT_REV_MI_TEST_EACH_METHOD_SEPARATELY       0UL
+#define CERT_REV_MI_TEST_ALL_LOCAL_INFORMATION_FIRST  1UL
 
 /*
  * Use this flag to specify that it's necessary that fresh information
  * is available for at least one of the allowed methods, but it's
  * irrelevant which of the mechanisms succeeded.
  * NO_OVERALL_INFO_REQUIREMENT means:
  *     We strictly follow the requirements for each individual method.
  * REQUIRE_SOME_FRESH_INFO_AVAILABLE means:
  *     After the individual tests have been executed, we must have
  *     been able to find fresh information using at least one method.
  *     If we were unable to find fresh info, it's a failure.
  *     This setting overrides the CERT_REV_M_FAIL_ON_MISSING_FRESH_INFO
  *     flag on all methods.
  */
-#define CERT_REV_MI_NO_OVERALL_INFO_REQUIREMENT       0L
-#define CERT_REV_MI_REQUIRE_SOME_FRESH_INFO_AVAILABLE 2L
+#define CERT_REV_MI_NO_OVERALL_INFO_REQUIREMENT       0UL
+#define CERT_REV_MI_REQUIRE_SOME_FRESH_INFO_AVAILABLE 2UL
 
 
 typedef struct {
     /*
      * The size of the array that cert_rev_flags_per_method points to,
      * meaning, the number of methods that are known and defined
      * by the caller.
      */
     PRUint32 number_of_defined_methods;
 
@@ skipping 178 matching lines @@
 SEC_ASN1_CHOOSER_DECLARE(CERT_SetOfSignedCrlTemplate)
 SEC_ASN1_CHOOSER_DECLARE(CERT_SignedDataTemplate)
 SEC_ASN1_CHOOSER_DECLARE(CERT_SubjectPublicKeyInfoTemplate)
 SEC_ASN1_CHOOSER_DECLARE(SEC_SignedCertificateTemplate)
 SEC_ASN1_CHOOSER_DECLARE(CERT_SignedCrlTemplate)
 SEC_ASN1_CHOOSER_DECLARE(CERT_TimeChoiceTemplate)
 
 SEC_END_PROTOS
 
 #endif /* _CERTT_H_ */