| Name: | nss |
|---|---|
| Version: | 3.28.4 |
| Release: | 8.el7 |
| Architecture: | aarch64 |
| Group: | System Environment/Libraries |
| Size: | 2591862 |
| License: | MPLv2.0 |
| RPM: | nss-3.28.4-8.el7.aarch64.rpm |
| Source RPM: | nss-3.28.4-8.el7.src.rpm |
| Build Date: | Thu May 03 2018 |
| Build Host: | ca-buildarm01.us.oracle.com |
| Vendor: | Oracle America |
| URL: | http://www.mozilla.org/projects/security/pki/nss/ |
| Summary: | Network Security Services |
| Description: | Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. |
- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5
- Update nss-pk12util.patch to include fix from mozbz#1353724.
- Update nss-alert-handler.patch with the upstream fix from mozbz#1360207.
- Fix zero-length record treatment for stream ciphers and SSLv2
- Correctly set policy file location when building
- Reorder ChaCha20-Poly1305 cipher suites, as suggested in: https://bugzilla.redhat.com/show_bug.cgi?id=1373158#c9
- Rebase to NSS 3.28.4 - Update nss-pk12util.patch with backport of mozbz#1353325
- Switch default hash algorithm used by tools from SHA-1 to SHA-256 - Avoid race condition in nssSlot_IsTokenPresent() - Enable SHA-2 and AES in pk12util - Disable RSA-PSS for now
- Utilize CKA_NSS_MOZILLA_CA_POLICY attribute, patch by Kai Engert - Backport changes adding SSL alert callbacks from upstream - Add nss-check-policy-file.patch from Fedora - Install policy config in /etc/pki/nss-legacy/nss-rhel7.config
- Make sure 32bit nss-pem always be installed with 32bit nss in multlib environment, patch by Kamil Dudka - Enable new algorithms supported by the new nss-softokn