summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* remote: only accept if the FD is setrpc-daemonNikos Mavrogiannopoulos2014-09-251-42/+44
|
* remote: gracefully handle sigtermNikos Mavrogiannopoulos2014-09-251-0/+13
|
* remote: cleanup socket fileNikos Mavrogiannopoulos2014-09-251-2/+4
|
* remote: increased debugging infoNikos Mavrogiannopoulos2014-09-251-2/+3
|
* remote: added --timeout optionNikos Mavrogiannopoulos2014-09-253-5/+16
|
* remote: updated self tests for new remote functionalityNikos Mavrogiannopoulos2014-09-253-8/+43
|
* remote: added option to run in foregroundNikos Mavrogiannopoulos2014-09-253-6/+16
|
* remote: provide the options --run-as-user and --run-as-groupNikos Mavrogiannopoulos2014-09-251-10/+54
|
* remote: server will overwrite the library manufacturerNikos Mavrogiannopoulos2014-09-254-8/+31
| | | | | | That would allow objects within a PKCS #11 module to remain unique if both the remote and the normal module are in use, as well when many remote modules exist.
* remote: Allow restricting the connecting user and groupNikos Mavrogiannopoulos2014-09-253-12/+70
|
* remote: updated to account for socket files onlyNikos Mavrogiannopoulos2014-09-252-105/+14
| | | | | | | Changes: 1. Isolated config option was removed 2. Remote config option now accepts a socket file 3. On remote modules, only connection to the socket file is attempted.
* remote: is now running as daemonNikos Mavrogiannopoulos2014-09-251-0/+6
|
* remote: eliminated timeout from serverNikos Mavrogiannopoulos2014-09-251-8/+6
|
* remote: does accept socket file on cmdNikos Mavrogiannopoulos2014-09-251-2/+13
|
* remote: operate as a single forking serverNikos Mavrogiannopoulos2014-09-2511-120/+549
|
* common: Move unistd include to define getopt and friendsMichael Cronenworth2014-09-181-1/+1
| | | | | | Needed to fix MinGW builds. Signed-off-by: Michael Cronenworth <mike@cchtml.com>
* Release version 2.21.30.21.3Stef Walter2014-09-172-1/+9
|
* trust: Use term 'attached extensions' instead of 'stapled'Stef Walter2014-09-108-72/+72
| | | | | | | The term 'stapled extensions' is confusing because it overloads terminology used with OSCP stapling. Suggested by Daniel Kahn Gillmor.
* common: New public pkcs11x.h header containing extensionsStef Walter2014-09-1012-457/+520
| | | | | | | Move our internal stuff to pkcs11i.h, and install the pkcs11x.h header containing extensions. https://bugs.freedesktop.org/show_bug.cgi?id=83495
* common: Change the CKA_X_PUBLIC_KEY_INFO constant to CKA_PUBLIC_KEY_INFOStef Walter2014-09-1011-48/+52
| | | | | | | | | CKA_PUBLIC_KEY_INFO is defined in the PKCS#11 2.40 draft, so use that rather than defining our own. * Fixed up by Nikos Mavrogiannopoulos <nmav@redhat.com> https://bugs.freedesktop.org/show_bug.cgi?id=83495
* common: Add support for multiple field names (ie: nicks) per constantStef Walter2014-09-103-21/+22
| | | | | | This allows us to have old/new names for a given constant. https://bugs.freedesktop.org/show_bug.cgi?id=83495
* p11-kit: Fix tests when building with MinGWMichael Cronenworth2014-09-093-0/+30
| | | | Signed-off-by: Michael Cronenworth <mike@cchtml.com>
* trust: Fix token test when building with MinGWMichael Cronenworth2014-09-091-0/+4
| | | | Signed-off-by: Michael Cronenworth <mike@cchtml.com>
* configure: Check for pthread_create() in pthread libraryRoman Bogorodskiy2014-09-091-3/+3
| | | | | | | Check for pthread_create() in pthread library instaed of pthread_mutexattr_init(). This fixes a linking error on FreeBSD. https://bugs.freedesktop.org/show_bug.cgi?id=75674
* p11-kit: Compilation fixes for previous commitStef Walter2014-09-091-4/+1
| | | | Pushed the wrong version
* p11-kit: Make proxy module respect critical = noStef Walter2014-09-091-37/+47
| | | | | | | The p11-kit-proxy.so module would not respect the critical = no setting in module configuration, and fail if any module failed to initialize. https://bugs.freedesktop.org/show_bug.cgi?id=83651
* Fix build without debugRoman Bogorodskiy2014-09-091-0/+2
| | | | | | | | | | | | | When building without debug build fails with: CCLD p11-kit/p11-kit ./.libs/libp11-kit.so: undefined reference to `P11_RPC_CHECK_CALLS' cc: error: linker command failed with exit code 1 (use -v to see invocation) gmake[2]: *** [p11-kit/p11-kit] Error 1 This happens because P11_RPC_CHECK_CALLS is not defined when debugging is enabled, so provide a noop macro for that case.
* trust: Show public-key-info in 'trust list --details'Stef Walter2014-09-051-0/+14
| | | | | Since the public-key-info is an important part of the way we represent trust, show it in 'trust list' if --details is present.
* Release version 0.21.20.21.2Stef Walter2014-09-052-1/+11
|
* trust: Produce a proper message for an invalid stapled extensionStef Walter2014-09-051-1/+10
| | | | | | Previously we would output a line like this: p11-kit: 'node != NULL' not true at lookup_extension
* Move to non-recursive Makefile for building bins and libsStef Walter2014-08-15133-589/+632
| | | | Still use recursive for documentation and translation.
* common: Fix regression introduced by last commitStef Walter2014-08-151-1/+1
| | | | | | The last commit caused dirfd() to become undefined. https://bugs.freedesktop.org/show_bug.cgi?id=82617
* Fix build against older pthreads implementationsBaruch Siach2014-08-141-0/+6
| | | | | | | | | | | | | | | | | Older pthreads implementations like glibc NPTL prior to version 2.12, and uClibc linuxthreads (both), need _XOPEN_SOURCE to expose pthread_mutexattr_settype() and THREAD_MUTEX_DEFAULT. The value 600 (SuSv3, POSIX.1-2001) is equivalent to _POSIX_C_SOURCE 200112L. Fixes the following build error: CC compat.lo compat.c: In function 'p11_mutex_init': compat.c:164:2: warning: implicit declaration of function 'pthread_mutexattr_settype' [-Wimplicit-function-declaration] compat.c:164:2: warning: nested extern declaration of 'pthread_mutexattr_settype' [-Wnested-externs] compat.c:164:36: error: 'PTHREAD_MUTEX_DEFAULT' undeclared (first use in this function) https://bugs.freedesktop.org/show_bug.cgi?id=82617
* Fix 'make upload-release' targetStef Walter2014-08-141-2/+2
|
* doc: Fix missing tag in p11-kit-sharing.xmlStef Walter2014-08-111-0/+1
|
* p11-kit: Fix various noise/issues highlighted by clangStef Walter2014-08-114-13/+13
|
* Ignore clang scanner litterStef Walter2014-08-081-0/+1
|
* trust: Don't use invalid public keys for looking up stapled extensionsStef Walter2014-08-081-1/+1
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=82328
* trust: Print label of certificate when complaining about basic constraintsStef Walter2014-08-081-1/+5
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=82328
* trust: Double check that index bucket is valid before accessStef Walter2014-08-081-2/+2
|
* p11-kit: Remove use after free in debug output code pathStef Walter2014-08-081-1/+1
|
* Quiten down scanner warnings about unused variablesStef Walter2014-08-082-8/+2
|
* common: Quiet down clang scanner with assertionsStef Walter2014-08-081-1/+1
| | | | | Quieten down the clang scanner by telling it to expect that our test assertions fail
* Fix mostly erroneous scanner warnings in testsStef Walter2014-08-0811-2/+22
|
* trust: Fix leak in token loading error pathStef Walter2014-08-081-0/+1
|
* trust: Fix unlikely use of uninitialized memory in token loadingStef Walter2014-08-081-3/+3
|
* trust: Fix leak in trust list commandStef Walter2014-08-081-0/+1
|
* trust: Fix use after free and double free in extract commandStef Walter2014-08-081-7/+4
|
* trust: Remove dead while condition in anchor commondStef Walter2014-08-081-1/+1
|
* p11-kit: Fix integer overflow in memset() argumentStef Walter2014-08-081-1/+1
|
View Lorry Controller Status