[ANNOUNCE] NSS 3.30 Release

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[ANNOUNCE] NSS 3.30 Release

Tim Taubert
The NSS team has released Network Security Services (NSS) 3.30

New in NSS 3.30:
* In the PKCS#11 root CA module (nssckbi), CAs with positive trust are
marked with a new boolean attribute, CKA_NSS_MOZILLA_CA_POLICY, set to
true. Applications that need to distinguish them from other other root CAs
may use the exported function PK11_HasAttributeSet.
* Support for callback functions that can be used to monitor SSL/TLS alerts
that are sent or received.

Notable Changes:
* The TLS server code has been enhanced to support session tickets when no
RSA certificate is configured.
* RSA-PSS signatures produced by key pairs with a modulus bit length that
is not a multiple of 8 are now supported.
* The pk12util tool now supports importing and exporting data encrypted in
the AES based schemes defined in PKCS#5 v2.1.

The full release notes are available at

The HG tag is NSS_3_30_RTM. NSS 3.30 requires NSPR 4.13.1 or newer.

NSS 3.30 source distributions are available for secure download:
dev-tech-crypto mailing list
[hidden email]