Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | bumped library versiongnutls_2_12_8 | Nikos Mavrogiannopoulos | 2011-08-08 | 2 | -2/+2 |
| | |||||
* | document new config files of p11-kit. | Nikos Mavrogiannopoulos | 2011-08-08 | 1 | -7/+6 |
| | |||||
* | Prevent from loading twice the same module. | Nikos Mavrogiannopoulos | 2011-08-08 | 1 | -4/+17 |
| | |||||
* | better placement of ifdefs. | Nikos Mavrogiannopoulos | 2011-08-05 | 1 | -3/+3 |
| | |||||
* | updated news | Nikos Mavrogiannopoulos | 2011-08-04 | 1 | -3/+4 |
| | |||||
* | check the output of fgets. | Nikos Mavrogiannopoulos | 2011-08-01 | 1 | -1/+3 |
| | |||||
* | corrected uninitialized warning. | Nikos Mavrogiannopoulos | 2011-08-01 | 1 | -6/+2 |
| | |||||
* | document p11-kit | Nikos Mavrogiannopoulos | 2011-08-01 | 2 | -6/+9 |
| | |||||
* | documented p11-kit addition. | Nikos Mavrogiannopoulos | 2011-08-01 | 1 | -0/+4 |
| | |||||
* | Don't try to do PKCS#11 login if session is already logged in. | Stef Walter | 2011-08-01 | 1 | -0/+10 |
| | | | | | | | | | * It is possible for new PKCS#11 sessions to be logged in if another logged in session already exists. * In these cases, don't log in, but detect the condition and return success. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | When finding private keys fail, return error code. | Stef Walter | 2011-08-01 | 1 | -2/+4 |
| | | | | | | * Previously this would result in an endless loop. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | pkcs11: Use p11_kit_pin_xxx() functionality when 'pinfile' is in uris. | Stef Walter | 2011-08-01 | 6 | -80/+202 |
| | | | | | | | | * This allows other apps to register a handler for a specific pinfile and then that application will be able to provide the PIN for those URIs. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Use pkcs11.h specification file from p11-kit. | Stef Walter | 2011-08-01 | 2 | -1/+2 |
| | | | | | | * Remove one included briefly in gnutls. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Fix up compiler warnings. | Stef Walter | 2011-08-01 | 5 | -12/+6 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | The attached patch ports gnutls to p11-kit. | Stef Walter | 2011-08-01 | 27 | -4291/+1056 |
| | | | | | | | | | | | | * p11-kit is added as a dependency. p11-kit itself has no dependencies outside of basic libc stuff. The source code for p11-kit is available both in git and tarball form. * If the gnutls dependency on p11-kit is disabled (via a configure option) then the PKCS#11 support is disabled. This is useful in bare bones embedded systems or places where very minimal dependencies are limited. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | gnutls-cli: Fix uninitialized variable when PKCS#11 uris in use. | Stef Walter | 2011-08-01 | 1 | -1/+1 |
| | | | | | | | * When PKCS#11 URIs are in use previously tried to free uninitialized memory. Initialize to zero. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Added GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED flag for ↵ | Nikos Mavrogiannopoulos | 2011-07-31 | 6 | -6/+279 |
| | | | | | | gnutls_x509_crt_list_import. It checks whether the list to be imported is properly sorted. | ||||
* | checking converted to gnutls_cert from pcert. | Nikos Mavrogiannopoulos | 2011-07-31 | 1 | -3/+3 |
| | |||||
* | removed unused variable | Nikos Mavrogiannopoulos | 2011-07-31 | 1 | -1/+0 |
| | |||||
* | bumped version to 2.12.8 | Nikos Mavrogiannopoulos | 2011-07-31 | 3 | -3/+3 |
| | |||||
* | Added GNUTLS_E_CERTIFICATE_LIST_UNSORTED. | Nikos Mavrogiannopoulos | 2011-07-31 | 4 | -0/+77 |
| | | | | | | | | If a certificate list is loaded then verify that it is sorted with order to starts with the subject and finished with the trusted root. That way we make sure we don't send data that violate the TLS protocol. | ||||
* | corrected typo | Nikos Mavrogiannopoulos | 2011-07-28 | 2 | -2/+2 |
| | |||||
* | documented updates. | Nikos Mavrogiannopoulos | 2011-07-27 | 1 | -1/+8 |
| | |||||
* | only add zlib.pc if found. Corrected libs.private in nettle case. | Nikos Mavrogiannopoulos | 2011-07-27 | 2 | -4/+11 |
| | |||||
* | documented fixes. | Nikos Mavrogiannopoulos | 2011-07-25 | 1 | -0/+11 |
| | |||||
* | Replaced all occurences of gcry_sexp_nth_mpi (..., 0) with | Andreas Metzler | 2011-07-25 | 1 | -16/+16 |
| | | | | gcry_sexp_nth_mpi (..., GCRYMPI_FMT_USG). | ||||
* | writev_emu: stop on the first incomplete write | Sjoerd Simons | 2011-07-25 | 1 | -0/+3 |
| | | | | | | | | Just like standard writev, we should only move on to the next block if all the previous ones have been successfully written out. Otherwise there is a potential for data loss and/or confusing push functions. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Honor uninitialized private key in destructor | Petr Písař | 2011-07-23 | 1 | -0/+2 |
| | | | | | | Fixes bug #107730. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Corrected initialization of key when generating request. Reported by Petr Pisar. | Nikos Mavrogiannopoulos | 2011-07-23 | 1 | -3/+4 |
| | |||||
* | Crippled status of gnutls_x509_privkey_t was removed to avoid thread safety ↵ | Nikos Mavrogiannopoulos | 2011-07-23 | 4 | -80/+26 |
| | | | | issues. | ||||
* | bumped version.gnutls_2_12_7_a | Nikos Mavrogiannopoulos | 2011-06-18 | 5 | -5/+5 |
| | |||||
* | Limit the number of attempts with the same PIN, to avoid attempting again ↵gnutls_2_12_7 | Nikos Mavrogiannopoulos | 2011-06-17 | 1 | -2/+5 |
| | | | | and again with a wrong PIN. | ||||
* | When writing an object with CKA_TRUSTED set CKA_PRIVATE explicitly to FALSE, ↵ | Nikos Mavrogiannopoulos | 2011-06-17 | 1 | -1/+8 |
| | | | | to allow the SO to write it. Reported by Rickard Bellgrim. | ||||
* | corrected makefile. | Nikos Mavrogiannopoulos | 2011-06-16 | 1 | -1/+1 |
| | |||||
* | updated news | Nikos Mavrogiannopoulos | 2011-06-16 | 1 | -0/+18 |
| | |||||
* | Corrections on security officer login. | Nikos Mavrogiannopoulos | 2011-06-16 | 4 | -74/+15 |
| | |||||
* | The CKA_SUBJECT must be specified for a certificate. | Rickard Bellgrim | 2011-06-16 | 1 | -1/+15 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | When setting the TRUSTED flag login as security officer. | Nikos Mavrogiannopoulos | 2011-06-15 | 3 | -1/+9 |
| | |||||
* | write label in PKCS #11 privkey. | Nikos Mavrogiannopoulos | 2011-06-15 | 1 | -0/+8 |
| | |||||
* | define ck_bool_t to be compatible with PKCS #11 bool type. | Nikos Mavrogiannopoulos | 2011-06-15 | 7 | -7/+6 |
| | |||||
* | Return error code when an object is not found. | Nikos Mavrogiannopoulos | 2011-06-07 | 2 | -2/+2 |
| | | | | | | Only request for token insertion if the expected data is not found. Based on patch by Stef Walter. | ||||
* | tests: Build eagain-cli with correct libraries | Stef Walter | 2011-06-07 | 1 | -1/+1 |
| | | | | | | * Add -ldl -lpthread to linker flags Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | pkcs11: Accept CKR_USER_ALREADY_LOGGED_IN as successful result for PAP Login | Stef Walter | 2011-06-07 | 1 | -2/+2 |
| | | | | | | | | | | * When doing CKF_PROTECTED_AUTHENTICATION_PATH login, accept CKR_USER_ALREADY_LOGGED_IN as a successful result. * Another code path, or another consumer of the same PKCS#11 module may have already logged in. * This is what the non PAP code path already does. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | Corrected typo. Reported by Andreas Metzler. | Nikos Mavrogiannopoulos | 2011-06-05 | 1 | -1/+1 |
| | |||||
* | regenerated Makefile. | Nikos Mavrogiannopoulos | 2011-06-05 | 1 | -8/+11 |
| | |||||
* | corrected .so version number.gnutls_2_12_6_1 | Nikos Mavrogiannopoulos | 2011-06-05 | 2 | -2/+2 |
| | |||||
* | preparing for release.gnutls_2_12_6 | Nikos Mavrogiannopoulos | 2011-06-04 | 5 | -5/+11 |
| | |||||
* | Follow http://tools.ietf.org/html/draft-mavrogiannopoulos-tls-dss-00 in DSA ↵ | Nikos Mavrogiannopoulos | 2011-06-04 | 5 | -37/+28 |
| | | | | signature generation. | ||||
* | updates | Nikos Mavrogiannopoulos | 2011-06-01 | 1 | -3/+3 |
| | |||||
* | Added parameter generation section. | Nikos Mavrogiannopoulos | 2011-05-31 | 1 | -16/+62 |
| |