Re: [dev-tech-crypto] nss symbols vs openssl symbols

https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS&component=Build for a direct link. On Wed, May 5, 2021 at 9:45 AM Robert Relyea wrote: > > On 5/1/21 2:57 PM, Thomas Klausner wrote: > > Hi Bob! > > > > Thanks again for the detailed explanation of the nss build system. > > > > With it, it wa

[dev-tech-crypto] NSS 3.69 Release

Network Security Services (NSS) 3.69 was released on 5 August 2021. The HG tag is NSS_3_69_RTM. NSS 3.69 requires NSPR 4.32 or newer. NSS 3.69 source distributions are available on ftp.mozilla.org for secure HTTPS download: < https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_69_

Re: [dev-tech-crypto] NSS 3.69 Release

I don't know. This was the same NSPR version used in the last version of NSS. The release notes are in the tree: https://searchfox.org/nss/source/doc/rst/releases The bump was in 3.68 according to those. On Thu, Aug 19, 2021 at 3:29 AM Robert Relyea wrote: > On 8/8/21 10:12 PM

Re: [dev-tech-crypto] NSS 3.69 Release

Bug 1717610 is a risk here; it might be that the ESR code depends on that function being present. But if you want to backport it, I don't see a problem. On Tue, Aug 24, 2021 at 1:45 AM Robert Relyea wrote: > On 8/23/21 3:04 AM, Kai Engert

Re: [dev-tech-crypto] Cannot build NSS 3.12.8 and NSPR 4.8.6

Hi George, NSS 3.12 is extremely old and likely not secure. You might find an old version of MozillaBuild will allow make to run, but Windows 10 didn't exist when that was released, so I don't know how successful you will be. On Sun, Mar 13, 2022 at 3:44 AM George Lee wrote: > Hello, > > I am

Re: [dev-tech-crypto] Why did the server sent "unsupported extension" alert ?

It's possible that we have a bug on our end here. There are two extensions we don't fully support here: * encrypt_then_mac - we have absolutely no knowledge of this, so we should be ignoring it. * certificate_authorities - the tricky one We do understand certificate_authorities, but we don't hand

Re: [dev-tech-crypto] NSS sqlite3 version question

Just to expand on what Bob said, we don't make any guarantees about the version of sqlite that is in our tree. It exists only to support standalone builds of NSS. As a general rule, it will be out of date and can be vulnerable. But the sqlite project has a history of excellent ABI compatibility,

Re: [dev-tech-crypto] Build NSS on windows using gyp/ninja

You should be able to run ./build.sh -v That passes verbose options to gyp and ninja, so you should see a log that includes where MSVC is invoked. (FWIW, I'm not aware of any problem moving from C++ 11 to C++ 20, but that requirement sounds a little silly to me. In the C++ 11 transition we had t

Re: [dev-tech-crypto] Build NSS on windows using gyp/ninja

/FC @obj\gtests\google_test\gtest\src\gtest.gtest-all.obj.rsp > /c ..\..\gtests\google_test\gtest\src\gtest-all.cc > /Foobj\gtests\google_test\gtest\src\gtest.gtest-all.obj > /Fdobj\gtests\google_test\gtest.cc.pdb > > Thanks. > > On Wed, Apr 26, 2023 at 9:14 PM Martin T

Re: [dev-tech-crypto] Re: NSS 3.89.1 Release

That's more helpful. There is a script: https://searchfox.org/nss/source/coreconf/msvc.sh that we use to detect where all the MSVC stuff is. Try poking at that to see what it produces. (Run `bash -x .../msvc.sh` should produce a bunch of variables with paths that you can check.) On Wed, May 17,