nss_3_90.rst (3722B)
1 .. _mozilla_projects_nss_nss_3_90_release_notes: 2 3 NSS 3.90 release notes 4 ====================== 5 6 `Introduction <#introduction>`__ 7 -------------------------------- 8 9 .. container:: 10 11 Network Security Services (NSS) 3.90 was released on *4 June 2023**. 12 13 14 15 16 `Distribution Information <#distribution_information>`__ 17 -------------------------------------------------------- 18 19 .. container:: 20 21 The HG tag is NSS_3_90_RTM. NSS 3.90 requires NSPR 4.35 or newer. 22 23 NSS 3.90 source distributions are available on ftp.mozilla.org for secure HTTPS download: 24 25 - Source tarballs: 26 https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_90_RTM/src/ 27 28 Other releases are available :ref:`mozilla_projects_nss_releases`. 29 30 .. _changes_in_nss_3.90: 31 32 `Changes in NSS 3.90 <#changes_in_nss_3.90>`__ 33 ---------------------------------------------------- 34 35 .. container:: 36 37 - Bug 1623338 - ride along: remove a duplicated doc page 38 - Bug 1623338 - remove a reference to IRC 39 - Bug 1831983 - clang-format lib/freebl/stubs.c 40 - Bug 1831983 - Add a constant time select function 41 - Bug 1774657 - Updating an old dbm with lots of certs with keys to sql results in a database that is slow to access. 42 - Bug 1830973 - output early build errors by default 43 - Bug 1804505 - Update the technical constraints for KamuSM 44 - Bug 1822921 - Add BJCA Global Root CA1 and CA2 root certificates 45 - Bug 1790763 - Enable default UBSan Checks 46 - Bug 1786018 - Add explicit handling of zero length records 47 - Bug 1829391 - Tidy up DTLS ACK Error Handling Path 48 - Bug 1786018 - Refactor zero length record tests 49 - Bug 1829112 - Fix compiler warning via correct assert 50 - Bug 1755267 - run linux tests on nss-t/t-linux-xlarge-gcp 51 - Bug 1806496 - In FIPS mode, nss should reject RSASSA-PSS salt lengths larger than the output size of the hash function used, or provide an indicator 52 - Bug 1784163 - Fix reading raw negative numbers 53 - Bug 1748237 - Repairing unreachable code in clang built with gyp 54 - Bug 1783647 - Integrate Vale Curve25519 55 - Bug 1799468 - Removing unused flags for Hacl* 56 - Bug 1748237 - Adding a better error message 57 - Bug 1727555 - Update HACL* till 51a72a953a4ee6f91e63b2816ae5c4e62edf35d6 58 - Bug 1782980 - Fall back to the softokn when writing certificate trust 59 - Bug 1806010 - FIPS-104-3 requires we restart post programmatically 60 - Bug 1826650 - cmd/ecperf: fix dangling pointer warning on gcc 13 61 - Bug 1818766 - Update ACVP dockerfile for compatibility with debian package changes 62 - Bug 1815796 - Add a CI task for tracking ECCKiila code status, update whitespace in ECCKiila files 63 - Bug 1819958 - Removed deprecated sprintf function and replaced with snprintf 64 - Bug 1822076 - fix rst warnings in nss doc 65 - Bug 1821997 - Fix incorrect pygment style 66 - Bug 1821292 - Change GYP directive to apply across platforms 67 - Add libsmime3 abi-check exception for NSS_CMSSignerInfo_GetDigestAlgTag 68 69 70 `Compatibility <#compatibility>`__ 71 ---------------------------------- 72 73 .. container:: 74 75 NSS 3.90 shared libraries are backwards-compatible with all older NSS 3.x shared 76 libraries. A program linked with older NSS 3.x shared libraries will work with 77 this new version of the shared libraries without recompiling or 78 relinking. Furthermore, applications that restrict their use of NSS APIs to the 79 functions listed in NSS Public Functions will remain compatible with future 80 versions of the NSS shared libraries. 81 82 `Feedback <#feedback>`__ 83 ------------------------ 84 85 .. container:: 86 87 Bugs discovered should be reported by filing a bug report on 88 `bugzilla.mozilla.org <https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>`__ (product NSS).