Name: | nss |
---|---|
Version: | 3.28.4 |
Release: | 8.el7 |
Architecture: | i686 |
Group: | System Environment/Libraries |
Size: | 2339282 |
License: | MPLv2.0 |
RPM: | nss-3.28.4-8.el7.i686.rpm |
Source RPM: | nss-3.28.4-8.el7.src.rpm |
Build Date: | Wed Aug 02 2017 |
Build Host: | x86-ol7-builder-02.us.oracle.com |
Vendor: | Oracle America |
URL: | http://www.mozilla.org/projects/security/pki/nss/ |
Summary: | Network Security Services |
Description: | Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. |
- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5
- Update nss-pk12util.patch to include fix from mozbz#1353724.
- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.
- Fix zero-length record treatment for stream ciphers and SSLv2
- Correctly set policy file location when building
- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9
- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325
- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now
- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config
- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn