1 Name: Network Security Services (NSS)
2 URL: http://www.mozilla.org/projects/security/pki/nss/
6 License File: NOT_SHIPPED
8 This directory includes a copy of NSS's libssl from the hg repo at:
9 https://hg.mozilla.org/projects/nss
11 The same module appears in crypto/third_party/nss (and third_party/nss on some
12 platforms), so we don't repeat the license file here.
14 The snapshot was updated to the hg tag: NSS_3_15_1_RTM
18 * Commenting out a couple of functions because they need NSS symbols
19 which may not exist in the system NSS library.
20 patches/versionskew.patch
22 * Send empty renegotiation info extension instead of SCSV unless TLS is
24 patches/renegoscsv.patch
25 https://bugzilla.mozilla.org/show_bug.cgi?id=549042
27 * Cache the peer's intermediate CA certificates in session ID, so that
28 they're available when we resume a session.
29 patches/cachecerts.patch
30 https://bugzilla.mozilla.org/show_bug.cgi?id=731478
32 * Add the SSL_PeerCertificateChain function
33 patches/peercertchain.patch
34 patches/peercertchain2.patch
35 https://bugzilla.mozilla.org/show_bug.cgi?id=731485
37 * Add support for client auth with native crypto APIs on Mac and Windows
38 patches/clientauth.patch
41 * Add a function to export whether the last handshake on a socket resumed a
43 patches/didhandshakeresume.patch
44 https://bugzilla.mozilla.org/show_bug.cgi?id=731798
46 * Allow SSL_HandshakeNegotiatedExtension to be called before the handshake
48 https://bugzilla.mozilla.org/show_bug.cgi?id=681839
49 patches/negotiatedextension.patch
51 * Add function to retrieve TLS client cert types requested by server.
52 https://bugzilla.mozilla.org/show_bug.cgi?id=51413
53 patches/getrequestedclientcerttypes.patch
55 * Add a function to restart a handshake after a client certificate request.
56 patches/restartclientauth.patch
58 * Add support for TLS Channel IDs
59 patches/channelid.patch
61 * Add support for extracting the tls-unique channel binding value
62 patches/tlsunique.patch
63 https://bugzilla.mozilla.org/show_bug.cgi?id=563276
65 * Define the EC_POINT_FORM_UNCOMPRESSED macro. In NSS 3.13.2 the macro
66 definition was moved from the internal header ec.h to blapit.h. When
67 compiling against older system NSS headers, we need to define the macro.
68 patches/ecpointform.patch
70 * SSL_ExportKeyingMaterial should get the RecvBufLock and SSL3HandshakeLock.
71 This change was made in https://chromiumcodereview.appspot.com/10454066.
72 patches/secretexporterlocks.patch
74 * Allow the constant-time CBC processing code to be compiled against older
75 NSS that doesn't contain the CBC constant-time changes.
77 https://code.google.com/p/chromium/issues/detail?id=172658#c12
78 TODO(wtc): remove this patch now that NSS 3.14.3 is the minimum
79 compile-time and run-time version.
81 * Change ssl3_SuiteBOnly to always return PR_TRUE. The softoken in NSS
82 versions older than 3.15 report an EC key size range of 112 bits to 571
83 bits, even when it is compiled to support only the NIST P-256, P-384, and
84 P-521 curves. Remove this patch when all system NSS softoken packages are
86 patches/suitebonly.patch
88 * Define the SECItemArray type and declare the SECItemArray handling
89 functions, which were added in NSS 3.15. Remove this patch when all system
90 NSS packages are NSS 3.15 or later.
91 patches/secitemarray.patch
93 * Update Chromium-specific code for TLS 1.2.
94 patches/tls12chromium.patch
96 * Add the Application Layer Protocol Negotiation extension.
99 * Fix an issue with allocating an SSL socket when under memory pressure.
100 https://bugzilla.mozilla.org/show_bug.cgi?id=903565
101 patches/sslsock_903565.patch
103 * Implement the AES GCM cipher suites.
104 https://bugzilla.mozilla.org/show_bug.cgi?id=880543
107 * Add Chromium-specific code to detect AES GCM support in the system NSS
108 libraries at run time.
109 patches/aesgcmchromium.patch
111 * Prefer to generate SHA-1 signatures for TLS 1.2 client authentication if
112 the client private key is in a CAPI service provider on Windows or if the
113 client private key is a 1024-bit RSA or DSA key.
114 patches/tls12backuphash.patch
116 * Support ChaCha20+Poly1305 ciphersuites
117 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-01
118 patches/chacha20poly1305.patch
120 * Fix session cache lock creation race.
121 patches/cachelocks.patch
122 https://bugzilla.mozilla.org/show_bug.cgi?id=764646
124 * Don't advertise TLS 1.2-only cipher suites in a TLS 1.1 ClientHello.
125 https://bugzilla.mozilla.org/show_bug.cgi?id=919677
126 patches/ciphersuiteversion.patch
128 * Don't use record versions greater than 0x0301 in resumption ClientHello
130 https://bugzilla.mozilla.org/show_bug.cgi?id=923696
131 https://code.google.com/p/chromium/issues/detail?id=303398
132 patches/resumeclienthelloversion.patch
134 * Make SSL False Start work with asynchronous certificate validation.
135 https://bugzilla.mozilla.org/show_bug.cgi?id=713933
136 patches/canfalsestart.patch
138 * Have the Null Cipher limit output to the maximum allowed
139 https://bugzilla.mozilla.org/show_bug.cgi?id=934016
140 patches/nullcipher_934016.patch
142 Apply the patches to NSS by running the patches/applypatches.sh script. Read
143 the comments at the top of patches/applypatches.sh for instructions.
145 The ssl/bodge directory contains files taken from the NSS repo that we required
146 for building libssl outside of its usual build environment.