p11-kit.git - Clone of https://github.com/p11-glue/p11-kit

	Commit message (Collapse)	Author	Age	Files	Lines
*	Don't try to guess at overflowing time values on 32-bit systems	Stef Walter	2013-03-28	2	-0/+3
\| \| \| \| \| \| \| \| \|	Since CKA_START_DATE and CKA_END_DATE are the only places where we want to parse out times, and these are optional, just leave blank if the time overflows what libc can handle on a 32-bit system. https://bugs.freedesktop.org/show_bug.cgi?id=62825
*	hash: Add the murmur2 hash and start using it	Stef Walter	2013-03-20	1	-3/+3
\| \| \| \| \| \| \| \| \| \| \|	Add implementation of the murmur2 hash function, and start using it for our dictionaries. Our implementation is incremental like our other hash functions. Also remove p11_oid_hash() which wasn't being used. In addition fix several tests whose success was based on the way that the dictionary hashed. This was a hidden testing bug.
*	trust: Add a builder which builds objects out of parsed data	Stef Walter	2013-03-15	2	-0/+0
\| \| \| \| \| \| \| \| \| \| \|	The builder completes the objects from the parsed data and takes over the responsibilities that the parser and adapter previously shared. This is necessary to prepare for arbitrary data coming from the p11-kit specific input files. https://bugs.freedesktop.org/show_bug.cgi?id=62329
*	trust: Rework input path treatment	Stef Walter	2013-03-15	2	-6/+7
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* Accept a single --with-trust-paths argument to ./configure which cotnains all the input paths. * The --with-system-anchors and --with-system-certificates ./configure arguments are no longer supported. Since they were only present briefly, no provision is made for backwards compatibility. * Each input file is treated as containing anchors by default unless an input certificate contains detailed trust information. * The files in each input directory are not automatically treated as anchors unless a certificate contains detailed trust information. * The files in anchors/ subdirectory of each input directory are automatically marked as anchors. * The files in the blacklist/ subdirectory of each input directory are automatically marked as blacklisted. * Update tests and move around test certificates so we can test these changes. https://bugs.freedesktop.org/show_bug.cgi?id=62327
*	Add support for exporting OpenSSL's TRUSTED CERTIFICATE format	Stef Walter	2013-02-05	1	-0/+9
\|
*	Add support for extracting to pem-bundle and pem-directory formats	Stef Walter	2013-02-05	1	-0/+2
\|
*	Support for sane writing to files extracted	Stef Walter	2013-02-05	1	-0/+2
\| \| \| \| \| \|	* Implement atomic writes of files * Writing with checks that not overwriting anything unless desired * Writing and overwriting of directory contents in a robust way
*	Test a TRUSTED CERTIFICATE without any trust OIDs	Stef Walter	2013-02-05	2	-0/+2
\|
*	Add support for openssl TRUSTED CERTIFICATE PEM files	Stef Walter	2013-02-05	1	-0/+3
\|
*	Add support for parsing PEM files	Stef Walter	2013-02-05	1	-0/+1
\|
*	Add basic trust module	Stef Walter	2013-02-05	10	-0/+65
	This is based off the roots-store from gnome-keyring and loads certificates from a root directory and exposes them as PKCS#11 objects.