pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/devel/nss Update to 3.18
details: https://anonhg.NetBSD.org/pkgsrc/rev/decddfb96712
branches: trunk
changeset: 649555:decddfb96712
user: ryoon <ryoon%pkgsrc.org@localhost>
date: Sun Apr 05 12:51:51 2015 +0000
description:
Update to 3.18
Changelog:
The NSS team has released Network Security Services (NSS) 3.18,
which is a minor release.
New functionality:
* When importing certificates and keys from a PKCS#12 source,
it's now possible to override the nicknames, prior to importing
them into the NSS database, using new API
SEC_PKCS12DecoderRenameCertNicknames.
* The tstclnt test utility program has new command-line options
-C, -D, -b and -R.
Use -C one, two or three times to print information about the
certificates received from a server, and information about the
locally found and trusted issuer certificates, to diagnose
server side configuration issues. It is possible to run tstclnt
without providing a database (-D). A PKCS#11 library that
contains root CA certificates can be loaded by tstclnt, which
may either be the nssckbi library provided by NSS (-b) or
another compatible library (-R).
New Functions:
* SEC_CheckCrlTimes
* SEC_GetCrlTimes
* SEC_PKCS12DecoderRenameCertNicknames
New Types
* SEC_PKCS12NicknameRenameCallback
Notable Changes:
* The highest TLS protocol version enabled by default has been
increased from TLS 1.0 to TLS 1.2. Similarly, the highest DTLS
protocol version enabled by default has been increased from
DTLS 1.0 to DTLS 1.2.
* The default key size used by certutil when creating an RSA key
pair has been increased from 1024 bits to 2048 bits.
* On Mac OS X, by default the softokn shared library will link
with the sqlite library installed by the operating system,
if it is version 3.5 or newer.
* The following CA certificates had the Websites and Code Signing
trust bits turned off:
- Equifax Secure Certificate Authority
- Equifax Secure Global eBusiness CA-1
- TC TrustCenter Class 3 CA II
* The following CA certificates were Added:
- Staat der Nederlanden Root CA - G3
- Staat der Nederlanden EV Root CA
- IdenTrust Commercial Root CA 1
- IdenTrust Public Sector Root CA 1
- S-TRUST Universal Root CA
- Entrust Root Certification Authority - G2
- Entrust Root Certification Authority - EC1
- CFCA EV ROOT
* The version number of the updated root CA list has been set
to 2.3
diffstat:
devel/nss/Makefile | 4 ++--
devel/nss/distinfo | 8 ++++----
2 files changed, 6 insertions(+), 6 deletions(-)
diffs (29 lines):
diff -r 349a4fd12404 -r decddfb96712 devel/nss/Makefile
--- a/devel/nss/Makefile Sun Apr 05 08:52:07 2015 +0000
+++ b/devel/nss/Makefile Sun Apr 05 12:51:51 2015 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.92 2015/01/28 21:12:09 ryoon Exp $
+# $NetBSD: Makefile,v 1.93 2015/04/05 12:51:51 ryoon Exp $
DISTNAME= nss-${NSS_RELEASE:S/.0$//}
-NSS_RELEASE= 3.17.4
+NSS_RELEASE= 3.18.0
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/}
diff -r 349a4fd12404 -r decddfb96712 devel/nss/distinfo
--- a/devel/nss/distinfo Sun Apr 05 08:52:07 2015 +0000
+++ b/devel/nss/distinfo Sun Apr 05 12:51:51 2015 +0000
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.44 2015/01/28 21:12:09 ryoon Exp $
+$NetBSD: distinfo,v 1.45 2015/04/05 12:51:51 ryoon Exp $
-SHA1 (nss-3.17.4.tar.gz) = 76beddfea9f1503920e40d7066aa704bbaeef558
-RMD160 (nss-3.17.4.tar.gz) = 69e0a19929ad8d34d16deaaaeceef77169637955
-Size (nss-3.17.4.tar.gz) = 6924699 bytes
+SHA1 (nss-3.18.tar.gz) = b4461d270d9af84b66376437dfd29414f2889f88
+RMD160 (nss-3.18.tar.gz) = 81c8dd56e79fcd6b96d3372bca670f19424bcbbc
+Size (nss-3.18.tar.gz) = 6944836 bytes
SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5
SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69
SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f
Home |
Main Index |
Thread Index |
Old Index