summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* trust: Correctly reflect the CK_TOKEN_INFO writability flagsStef Walter2013-06-146-3/+187
| | | | | Correctly set the CKF_TOKEN_WRITE_PROTECTED flag for paths which we will be able to write to.
* path: Add p11_path_parent() functionStef Walter2013-06-143-0/+55
| | | | | Gets the parent element of the path, removing the last component. Handles trailing and duplicate path separators correctly.
* path: Fix expanding of paths and testsStef Walter2013-06-142-25/+37
|
* common: Abort test cases when one failsStef Walter2013-06-131-0/+2
|
* Merge branch 'stable'Stef Walter2013-06-054-5/+166
|\
| * Release version 0.18.3Stef Walter2013-06-052-1/+6
| |
| * trust: Fix crash when C_Initialize args are NULLStef Walter2013-06-052-1/+22
| | | | | | | | https://bugs.freedesktop.org/show_bug.cgi?id=65401
| * trust: Fix reinitialization of trust moduleStef Walter2013-06-053-4/+139
| | | | | | | | | | | | | | | | | | Track number of C_Initialize calls, and require similar number of C_Finalize calls to finalize. This fixes leaks/disappearing sessions in the trust module. https://bugs.freedesktop.org/show_bug.cgi?id=65401
| * Fix uninitialized p11_library_oncemanphiz@gmail.com2013-05-281-1/+1
| | | | | | | | https://bugs.freedesktop.org/show_bug.cgi?id=57714
| * Force Mac OS shared library extension to .soStef Walter2013-05-281-1/+11
| | | | | | | | | | | | | | Darwin and libtool seem confused about what shared library extension they actually use. https://bugs.freedesktop.org/show_bug.cgi?id=57714
* | Fix uninitialized p11_library_oncemanphiz@gmail.com2013-05-281-1/+1
| | | | | | | | https://bugs.freedesktop.org/show_bug.cgi?id=57714
* | Force Mac OS shared library extension to .soStef Walter2013-05-281-1/+11
| | | | | | | | | | | | | | Darwin and libtool seem confused about what shared library extension they actually use. https://bugs.freedesktop.org/show_bug.cgi?id=57714
* | persist: Support for writing out p11-kit persist filesStef Walter2013-05-275-90/+587
| |
* | constants: Tweaks and add mechanismsStef Walter2013-05-272-253/+245
| |
* | pem: Write PEM data directly to a bufferStef Walter2013-05-275-56/+71
| |
* | url: Encode directly to a bufferStef Walter2013-05-274-46/+50
| |
* | Release version 0.19.1Stef Walter2013-05-272-1/+12
| |
* | Mark p11_kit_message() as a stable functionStef Walter2013-05-212-3/+3
| |
* | Fix building of applications using CRYPTOKI_GNU styleStef Walter2013-05-211-1/+3
| |
* | Bump the version for deprecated function documentationStef Walter2013-05-211-9/+9
| |
* | Fix up Makefile.am files for automake 1.13 warningsStef Walter2013-05-217-8/+8
| |
* | Our own unit testing frameworkStef Walter2013-05-2158-5188/+3901
| | | | | | | | | | | | | | | | * Support the TAP protocol * Much cleaner without having to carry around state * First class support for setup/teardown * Port the common tests * Wait on porting other tests until we've merged outstanding code
* | Further reorganization of the core module trackingStef Walter2013-05-211-188/+161
| | | | | | | | | | | | | | | | | | * Keep the module ownership apart from the tracking of module function pointers, since these are only relevant for unmanaged modules. * Less assumptions that each module has a raw unmanaged module function pointer. * More clarity in the naming of dictionaries tracking the modules.
* | Pull the argv parsing code into its own fileStef Walter2013-05-214-74/+164
| | | | | | | | So it can be used from multiple code paths
* | Support /xxx/yyy as an absolute path with Win32Stef Walter2013-05-212-5/+5
| | | | | | | | | | Because win32 code doesn't just run on windows, wine runs with unix style paths.
* | Bump the version number to unstableStef Walter2013-05-211-1/+1
| |
* | Add the log-calls module config optionStef Walter2013-05-2115-36/+2646
| | | | | | | | | | If 'log-calls = yes' is set then all the PKCS#11 modules are logged to stderr.
* | Manage C_CloseAllSessions function for multiple callersStef Walter2013-05-215-8/+275
| | | | | | | | | | | | Make C_CloseAllSessions work for different callers. Track the sessions that each caller opens and close just those when C_CloseAllSessiosn is called.
* | Update the proxy module to use managed PKCS#11 modulesStef Walter2013-05-2111-265/+1422
| | | | | | | | | | | | | | | | | | | | Each time C_GetFunctionList is called on the proxy module, a new managed PKCS#11 set of functions is returned. These are all cleaned up when the module is unloaded. We want the proxy module to continue to work even without the highly recommended libffi. For that reason we still keep the old behavior of sharing state in the proxy module.
* | p11-kit: Managed PKCS#11 module loadingStef Walter2013-05-2136-486/+4594
| | | | | | | | | | | | | | | | | | Support a new managed style module loading for PKCS#11 modules. This allows us to better coordinate between multiple callers of the same PKCS#11 modules and provide hooks into their behavior. This meant redoing the public facing API. The old methods are now deprecated, marked and documented as such.
* | Use libffi to implement mixins for managed codeStef Walter2013-05-168-3/+3265
| | | | | | | | | | | | * This allows us to call into subclassed PKCS#11 modules as if they were plain old PKCS#11 modules * libffi is an optional dependency
* | Add subclassable CK_X_FUNCTION_LISTStef Walter2013-05-153-4/+1561
| | | | | | | | | | | | | | | | | | | | One of the flaws in PKCS#11 for our usage is that each PKCS#11 module is not passed the pointer to the function list, ie: the vtable Here we define a new function list vtable, where each PKCS#11 function takes the vtable itself as the first argument. We use this new list internally to represent subclassable PKCS#11 modules for various features.
* | Fail early when running automaint.shStef Walter2013-05-151-0/+2
| |
* | Implement valgrind's hellgrind checks for threading problemsStef Walter2013-05-155-3/+13
|/ | | | | | | And cleanup our locks/locking model. There's no need to use recursive locks, especially since we can't use them on all platforms. In addition adjust taking of locks during initialization so that there's no chance of deadlocking here.
* Release version 0.18.2Stef Walter2013-05-142-1/+4
|
* Patch to make test-lexer depend on ASN.1manphiz@gmail.com2013-05-141-1/+1
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=64378
* Reduce libtasn1 dependency to 2.3Stef Walter2013-05-031-1/+1
| | | | * This passes all checks and is compatible
* Release version 0.18.1Stef Walter2013-04-152-1/+5
|
* doc: Use gtk-doc in the no-tmpl flavorStef Walter2013-04-042-30/+15
|
* manual: Use a consistent docbook versionStef Walter2013-04-046-12/+16
|
* Put the external tools in $libdir/p11-kitStef Walter2013-04-043-3/+6
| | | | | These are possibly architecture specific binaries, so they should be in $libdir/p11-kit and not in $datadir/p11-kit
* Release version 0.18.0Stef Walter2013-04-042-1/+9
|
* Fix off by one in date parsing codeStef Walter2013-04-041-1/+1
| | | | | We didn't treat the two digit year 00 as a valid year, whereas it actually represents the year 2000. This is in a non-critical code path.
* Don't print erroneous debug messages when skipping filesStef Walter2013-04-042-9/+11
| | | | | The parser automatically skips over files that it cannot parse. Don't print confusing debug messages about DER parse failures when it does so.
* Update to MurmurHash3Stef Walter2013-04-035-84/+91
| | | | | | | This should also fix problems with accessing memory in a non-aligned fashion on platforms where this causes problems. https://bugs.freedesktop.org/show_bug.cgi?id=62819
* Don't respect timezones for CKA_START_DATE or CKA_END_DATEStef Walter2013-04-034-371/+81
| | | | | | | | | | | | | The PKCS#11 specification does not note what timezone these dates are in. In addition the time values are not represented in PKCS#11. So don't reinterpret certificate dates, other than filling in the century for dates that have a two digit year. Lastly, these are low resolution optional fields so not being all strict about timezones here is appropriate. https://bugs.freedesktop.org/show_bug.cgi?id=62825
* trust: Fix logic for matching invalid NSS serial numbersStef Walter2013-04-032-47/+180
| | | | | | | | Sometimes NSS queries for trust objects using invalid serial numbers that do not have their DER decoding. We fixed this earlier, but want to make sure there are no corner cases, accidentally not matching serial numbers that happen to start with the same bytes as a DER TLV would.
* More compatible path munging and handling codeStef Walter2013-04-0319-175/+558
| | | | | | | | | | Centralize the path handling code, so we can remove unixy assumptions and have a chance of running on Windows. The current goal is to run all the tests on Windows. Includes some code from LRN <lrn1986@gmail.com> https://bugs.freedesktop.org/show_bug.cgi?id=63062
* Don't use free() on memory allocated by LocalFree()Stef Walter2013-04-031-1/+1
| | | | ihttps://bugs.freedesktop.org/show_bug.cgi?id=63046
* Separate library init from message codeStef Walter2013-04-0352-170/+294
| | | | | | | | | | | Put library init/uninit code its into their own statically linked library so that they don't get linked into the p11-kit executable. Refactor the message code so that the library initialization can plug in its per thread message buffer. https://bugs.freedesktop.org/show_bug.cgi?id=63046