summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* travis: Add build scripts for macOSDaiki Ueno2018-05-304-0/+15
|
* travis: Use matrixDaiki Ueno2018-05-306-40/+90
|
* test: Avoid unnecessary memory allocationDaiki Ueno2018-05-301-4/+3
|
* common: Fix runtime directory detection when given prefix is longDaiki Ueno2018-05-301-7/+7
|
* common: Don't rely on issetugid() when it is brokenDaiki Ueno2018-05-302-2/+15
| | | | | | | | | | | On macOS and FreeBSD, issetugid() has different semantics from the original OpenBSD implementation and cannot reliably detect if the process made setuid/setgid: https://gist.github.com/nicowilliams/4daf74a3a0c86848d3cbd9d0cdb5e26e This should fix: https://bugs.freedesktop.org/show_bug.cgi?id=67451 https://bugs.freedesktop.org/show_bug.cgi?id=100287
* build: Don't use locale funcs if locale_t is not defined in locale.hDaiki Ueno2018-05-286-13/+24
| | | | | | On macOS, locale_t is not defined in <locale.h>. Although it is defined in <xlocale.h>, we rather not use locales at all for POSIX compliance.
* pkcs11: Exercise GNU calling convention at compile timeDaiki Ueno2018-05-284-0/+47
|
* build: Simplify README inclusionDaiki Ueno2018-05-253-7/+2
| | | | Use symlink in the repository, instead of copying.
* NEWS: Mention latest changesDaiki Ueno2018-05-251-0/+2
|
* build: Delay building mock-six.la until "make check"Daiki Ueno2018-05-251-1/+1
|
* build: Include README in the distributionDaiki Ueno2018-05-251-2/+6
| | | | | As we removed README from the repository, it is no longer automatically picked up for the distribution by Automake.
* build: Fix ChangeLog generationDaiki Ueno2018-05-251-1/+1
|
* build: Remove obsolete upload rulesDaiki Ueno2018-05-251-15/+0
|
* build: Include p11-kit/test-messages.sh in distributionDaiki Ueno2018-05-251-0/+1
|
* uri: Make scheme comparison case-insensitiveDaiki Ueno2018-05-252-3/+30
| | | | | RFC 3986 suggests that implementations should accept uppercase letters as equivalent to lowercase in scheme names.
* common: Make case conversion locale independentDaiki Ueno2018-05-256-6/+25
| | | | | | The tolower()/toupper() functions take into account of the current locale settings, which p11-kit doesn't want. Add replacement functions that work as if they are called under the C locale.
* Improve const correctness for P11KitUriNathaniel McCallum2018-05-243-41/+41
| | | | | | | | | This does not improve const for the getters. The reason for this is that they are usually passed into the PKCS#11 APIs directly and these APIs are not const correct. Trying to force const correctnesss here would result in pain for library consumers. This is an API and ABI compatible change.
* README: replace by README.mdNikos Mavrogiannopoulos2018-05-233-8/+2
| | | | | | | | | That is, use README.md as primary source to generate README as README is required by the GNU guidelines. We don't try to convert to "real" plain text as markdown is readable, and to avoid introducing another dependency (e.g., pandoc). Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* NEWS: mark the 0.23 series as stableNikos Mavrogiannopoulos2018-05-231-1/+1
| | | | | | Resolves #80 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* README.md: added reference to Daiki's keyNikos Mavrogiannopoulos2018-05-231-2/+23
| | | | | | Resolves #153 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Release 0.23.11Daiki Ueno2018-05-072-1/+9
|
* common: Pacify clang-analyzerDaiki Ueno2018-05-071-3/+4
|
* trust: Avoid array overflowDaiki Ueno2018-05-072-3/+3
|
* trust: Don't null terminate PKCS #11 string fieldsDaiki Ueno2018-05-071-6/+6
|
* proxy: Don't null terminate PKCS #11 string fieldsDaiki Ueno2018-05-071-2/+2
|
* test: Avoid exceeding maximum pathname length of Unix socketDaiki Ueno2018-05-041-2/+7
|
* library: Use dedicated locale object for printing errorDaiki Ueno2018-05-015-15/+43
|
* Revert "build: Check strerror_l() and uselocale() seperately"Daiki Ueno2018-05-013-15/+5
| | | | | | | | | This reverts commit 173ad93cc54057886b2055f3d73ea64a047127d1. We should rather use newlocale() when per-thread locale is not set. Otherwise uselocale() could return LC_GLOBAL_LOCALE on some platforms (e.g. musl-libc) and calling strerror_l() with it leads to an undefined behavior.
* build: Check strerror_l() and uselocale() seperatelyDaiki Ueno2018-04-193-5/+15
| | | | | | NetBSD deliberately doesn't support per-thread locale and our thread-safe replacement of strerror() using strerror_l() cannot be used. Fallback to strerror_r() in that case.
* travis: Optimize dnf install invocationDaiki Ueno2018-04-101-11/+7
|
* test: Add installcheck script to test trust moduleDaiki Ueno2018-04-102-1/+24
| | | | | Currently it only checks that "disable-in: p11-kit-proxy" properly prevents the trust module being loaded by the proxy module.
* trust: Prevent trust module being loaded by proxy moduleDaiki Ueno2018-04-101-0/+3
| | | | | Otherwise, when the proxy module were registerd in NSS database, the trust module would be loaded twice and degrade search performance.
* travis: Run "make installcheck"Daiki Ueno2018-04-101-8/+16
|
* trust: Fix memleak in p11_enumerate_opt_filterDaiki Ueno2018-04-101-0/+1
| | | | | p11_kit_iter_add_filter() takes the ownership of given attributes. Spotted by address sanitizer.
* test: Factor out common harness from test-extract.inDaiki Ueno2018-04-105-95/+114
|
* test: Add test for JKS extractorDaiki Ueno2018-04-064-1/+224
| | | | | Piggybacking commit de963b96, this adds a multi-cert test case for the Java keystore extractor.
* test: Add test for p11_attrs_purge()Daiki Ueno2018-04-061-0/+29
|
* mock-module-ep: Properly override C_GetFunctionListDaiki Ueno2018-04-061-1/+1
|
* modules: Add option to control module visibility from proxyDaiki Ueno2018-04-066-10/+118
| | | | | | This enables to control whether a module will be loaded from the proxy module. The configuration reuses the "enable-in" and "disable-in" options, with a special literal "p11-kit-proxy" as the value.
* trust: add unit test for the "edk2-cacerts" extractorLaszlo Ersek2018-03-303-0/+214
| | | | | | | | Add a multi-cert test case for the edk2 extractor, heavily based on the "/openssl/test_file_multiple" test case. Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1559580 Signed-off-by: Laszlo Ersek <lersek@redhat.com>
* trust: implement the "edk2-cacerts" extractorLaszlo Ersek2018-03-301-1/+168
| | | | | | | | | | | | | | | | | | | | | | | | Extract the DER-encoded X.509 certificates in the EFI_SIGNATURE_LIST format that is - defined by the UEFI 2.7 spec (using one inner EFI_SIGNATURE_DATA object per EFI_SIGNATURE_LIST, as specified for EFI_CERT_X509_GUID), - and expected by edk2's HttpDxe when it configures the certificate list for HTTPS boot from EFI_TLS_CA_CERTIFICATE_VARIABLE (see the TlsConfigCertificate() function in "NetworkPkg/HttpDxe/HttpsSupport.c"). The intended command line is p11-kit extract \ --format=edk2-cacerts \ --filter=ca-anchors \ --overwrite \ --purpose=server-auth \ $DEST/edk2/cacerts.bin Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1559580 Signed-off-by: Laszlo Ersek <lersek@redhat.com>
* trust: introduce the "edk2-cacerts" extractor skeletonLaszlo Ersek2018-03-304-1/+51
| | | | | | | | Introduce the p11_extract_edk2_cacerts() skeleton. At the moment it always fails, silently. Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1559580 Signed-off-by: Laszlo Ersek <lersek@redhat.com>
* modules: Fix memleak in re-initialization caseDaiki Ueno2018-03-291-0/+1
|
* Treat CKR_CRYPTOKI_ALREADY_INITIALIZED correctlyJustin King-Lacroix2018-03-291-1/+6
| | | | | | In p11_kit_modules_initialize(), treat a return code of CKR_CRYPTOKI_ALREADY_INITIALIZED as identical to CKR_OK.
* travis: Disallow failure on mingwDaiki Ueno2018-03-291-4/+0
|
* test: Add missing seven.module in Windows fixturesDaiki Ueno2018-03-291-0/+4
|
* travis: Use LOG_COMPILER to run tests under wineDaiki Ueno2018-03-291-3/+3
|
* build: Enable make check with wineDaiki Ueno2018-03-292-1/+14
|
* common: Fix compilation of runtime.c under mingwDaiki Ueno2018-03-292-10/+33
|
* test: Add failing test for CKR_CRYPTOKI_ALREADY_INITIALIZEDDaiki Ueno2018-03-294-1/+115
|
generated by cgit v1.1 at 2025-01-04 03:11:27 +0000