Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Release version 0.20.50.20.5 | Stef Walter | 2014-09-05 | 2 | -1/+8 |
| | |||||
* | trust: Parse TRUSTED CERTIFICATE openssl format even without CertAux | Stef Walter | 2014-09-05 | 3 | -13/+151 |
| | | | | | | | | openssl sometimes outputs TRUSTED CERTIFICATE PEM files without the additional CertAux (ie: trust fields) information. It simply leaves that block out. This happens with a command like: $ openssl x509 -in my-cert.pem -out output -trustout | ||||
* | trust: Produce a proper message for an invalid stapled extension | Stef Walter | 2014-09-05 | 1 | -1/+10 |
| | | | | | | Previously we would output a line like this: p11-kit: 'node != NULL' not true at lookup_extension | ||||
* | configure: Don't use subdir-objects on our stable branch yet | Stef Walter | 2014-09-05 | 1 | -1/+1 |
| | | | | | | This just causes build problems when switching between branches. On master we've switched to a non-recursive Makefile so this is just relevant here. | ||||
* | Ignore clang scanner litter | Stef Walter | 2014-08-08 | 1 | -0/+1 |
| | |||||
* | trust: Don't use invalid public keys for looking up stapled extensions | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | | | | https://bugs.freedesktop.org/show_bug.cgi?id=82328 | ||||
* | trust: Print label of certificate when complaining about basic constraints | Stef Walter | 2014-08-08 | 1 | -1/+5 |
| | | | | https://bugs.freedesktop.org/show_bug.cgi?id=82328 | ||||
* | trust: Double check that index bucket is valid before access | Stef Walter | 2014-08-08 | 1 | -2/+2 |
| | |||||
* | p11-kit: Remove use after free in debug output code path | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | |||||
* | Quiten down scanner warnings about unused variables | Stef Walter | 2014-08-08 | 2 | -8/+2 |
| | |||||
* | common: Quiet down clang scanner with assertions | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | | | | | Quieten down the clang scanner by telling it to expect that our test assertions fail | ||||
* | Fix mostly erroneous scanner warnings in tests | Stef Walter | 2014-08-08 | 11 | -2/+22 |
| | |||||
* | trust: Fix leak in token loading error path | Stef Walter | 2014-08-08 | 1 | -0/+1 |
| | |||||
* | trust: Fix unlikely use of uninitialized memory in token loading | Stef Walter | 2014-08-08 | 1 | -3/+3 |
| | |||||
* | trust: Fix leak in trust list command | Stef Walter | 2014-08-08 | 1 | -0/+1 |
| | |||||
* | trust: Fix use after free and double free in extract command | Stef Walter | 2014-08-08 | 1 | -7/+4 |
| | |||||
* | trust: Remove dead while condition in anchor commond | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | |||||
* | p11-kit: Fix integer overflow in memset() argument | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | |||||
* | p11-kit: Fix bad check of asprintf() return value | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | |||||
* | configure.ac: Add subdir-objects to satisfy newer automakes | Stef Walter | 2014-08-08 | 1 | -1/+1 |
| | |||||
* | trust: Fix use of invalid memory in PEM parser | Stef Walter | 2014-08-08 | 1 | -3/+1 |
| | |||||
* | Release version 0.20.4 | Stef Walter | 2014-08-07 | 2 | -1/+5 |
| | |||||
* | p11-kit: Tweak last commit, handle the not-forked case | Stef Walter | 2014-08-07 | 1 | -1/+4 |
| | | | | | When we hadn't forked, but were just not initialized, still return CKR_CRYPTOKI_NOT_INITIALIZED from managed modules. | ||||
* | p11-kit: Don't complain about C_Finalize called in wrong process | Stef Walter | 2014-08-07 | 1 | -6/+13 |
| | | | | | | When C_Finalize is called in the wrong process, it's often because of a caller unaware of forking. This is a painful area of PKCS#11, but at least for C_Finalize, lets not complain loudly about it. | ||||
* | Fix typo: supress - > suppress | Andreas Metzler | 2014-07-07 | 4 | -4/+4 |
| | |||||
* | Release version 0.20.30.20.3 | Stef Walter | 2014-07-04 | 2 | -1/+11 |
| | |||||
* | Added test for non-null values in empty ID and label URI parts | Nikos Mavrogiannopoulos | 2014-07-04 | 1 | -0/+66 |
| | |||||
* | p11-kit: Mark p11_kit_be_quiet() and p11_kit_be_loud() stable | Stef Walter | 2014-07-04 | 2 | -6/+6 |
| | | | | | These are useful functions for callers who want to supress all output from p11-kit library. | ||||
* | p11-kit: Handle managed modules correctly when forking | Stef Walter | 2014-07-04 | 2 | -5/+56 |
| | | | | | | | | Correctly allow reinitialization when a process forks. We don't yet implement checks on all entry points of a managed module, but this allows callers to call C_Initialize again after forking, as outlined by the PKCS#11 v2 spec. | ||||
* | common: Fixed implementation of strerror_r for WinXP | Pavel A | 2014-07-01 | 1 | -0/+15 |
| | | | | | | ie: when streror_s is missing in msvcrt.dll https://bugs.freedesktop.org/show_bug.cgi?id=76594 | ||||
* | p11-kit: Fix corrupted list when initialization of modules fail | Stef Walter | 2014-06-25 | 1 | -0/+2 |
| | | | | | | | | This fixes the function call p11_kit_module_initialize() to correctly rearrange the modules array when initializing a module fails. Also fixes p11_kit_modules_load_and_initialize() | ||||
* | Don't try to symlink p11-proxy.so on windows | Milan Crha | 2014-06-20 | 1 | -5/+5 |
| | | | | https://bugs.freedesktop.org/show_bug.cgi?id=76594 | ||||
* | configure: Require automake 1.12 or later | Stef Walter | 2014-06-20 | 1 | -1/+1 |
| | | | | | We can't use automake 1.10 as serial-tests is not supported there. | ||||
* | Proposed fix for compiler warnings in common/compat.c | Pavel A | 2014-06-20 | 1 | -19/+23 |
| | | | | | | | | | | | | | when buliding for Windows (mingw). This issue has been reported in bug #76594 a. Moved vasprintf before asprintf b. Added prototypes for each of them Thanks, pa Signed-off-by: Pavel A <pavel.aronsky@daynix.com> | ||||
* | proxy: Fix cases where modules are unloaded while in use | Stef Walter | 2014-02-13 | 1 | -22/+31 |
| | | | | | | | | | | | | | The proxy module would unload the PKCS#11 modules it was proxying when C_Finalize() was called. However if a caller in another thread was inside of a PKCS#11 function at the time, this would cause a crash. Change things around so that underlying modules are finalized during the proxy C_Finalize() but not released/unloaded until the proxy module itself is unloaded. https://bugs.freedesktop.org/show_bug.cgi?id=74919 | ||||
* | proxy: Remove assertions when module is not initialized | Stef Walter | 2014-02-13 | 1 | -2/+0 |
| | | | | | | | | We should return CKR_CRYPTOKI_NOT_INITIALIZED rather than assert() when proxy PKCS#11 functions are called before the module is initialized. https://bugs.freedesktop.org/show_bug.cgi?id=74919 | ||||
* | Fix handling of mmap failure and mapping empty files | Pascal Terjan | 2014-02-13 | 2 | -2/+26 |
| | | | | | | | | | | | Check the return value of mmap() correctly. Empty files cannot be mmap'd so we implement some work around code for that. https://bugs.freedesktop.org/show_bug.cgi?id=74773 Signed-off-by: Stef Walter <stef@thewalter.net> | ||||
* | Support running autogen.sh from srcdir != builddir | Stef Walter | 2014-01-29 | 1 | -2/+6 |
| | |||||
* | Don't use 'aux' directory name | Stef Walter | 2014-01-29 | 2 | -1/+1 |
| | | | | | | Because Windows is really properly screwed up. https://bugs.freedesktop.org/show_bug.cgi?id=74149 | ||||
* | Release version 0.20.20.20.2 | Stef Walter | 2014-01-14 | 2 | -1/+8 |
| | |||||
* | distcheck: Build with optimizations so we get proper warnings | Stef Walter | 2014-01-14 | 1 | -1/+3 |
| | |||||
* | test-iter: Fix use of uninitialized variable | Stef Walter | 2014-01-14 | 1 | -0/+1 |
| | |||||
* | trust: Add installcheck target for testing extract | Stef Walter | 2014-01-14 | 4 | -0/+198 |
| | | | | | | | | This is an integration test that the extract and blacklist functionality basics work. More integration tests should follow, at which point we should place the various generic testing bits into their own file. | ||||
* | Build in srcdir != builddir fashion by default | Stef Walter | 2014-01-14 | 8 | -19/+17 |
| | | | | Naturally this doesn't apply to tarballs | ||||
* | Move gtk-doc.make into build directory | Stef Walter | 2014-01-14 | 2 | -1/+1 |
| | |||||
* | enumerate: Preload and respect blacklist across all tokens | Stef Walter | 2014-01-13 | 3 | -52/+186 |
| | | | | | | | This fixes an issue where a blacklist in one token wasn't properly skipping anchors being extracted with extract-compat https://bugs.freedesktop.org/show_bug.cgi?id=73558 | ||||
* | attrs: Allow NULL attribute to be passed to p11_attr_hash() | Stef Walter | 2014-01-13 | 2 | -5/+10 |
| | | | | | | This allows simpler lookups. https://bugs.freedesktop.org/show_bug.cgi?id=73558 | ||||
* | enumerate: Use p11_enumerate_ready() from tests | Stef Walter | 2014-01-13 | 2 | -13/+23 |
| | | | | | | This gives a little broader testing of the enumerator https://bugs.freedesktop.org/show_bug.cgi?id=73558 | ||||
* | iter: Fix return value in rare memory allocation case | Stef Walter | 2014-01-13 | 1 | -1/+1 |
| | |||||
* | iter: Add p11_kit_iter_get_attributes() function | Stef Walter | 2014-01-13 | 3 | -0/+106 |
| | | | | A simple wrapper for C_GetAttributeValue() |