summaryrefslogtreecommitdiff
path: root/p11-kit
Commit message (Collapse)AuthorAgeFilesLines
* Add more p11-kit cleanup to fix valgrind leak reportsStef Walter2012-04-021-0/+11
| | | | | * per-thread memory isn't actually a real memory leak, but was still reachable after exit, so clean this up.
* Fix crasher when a duplicate module is presentStef Walter2012-04-011-6/+7
|
* Add enable-in and disable-in options to module configStef Walter2012-04-014-3/+193
| | | | | | | | * These can be used to load certain modules in certain programs, or prevent loading in others. * Useful for a key manager like seahorse, so we can load extra modules (think NSS) that other modules shouldn't load.
* Fix broken hashmap behaviorStef Walter2012-03-271-7/+5
| | | | | | | * We were relying on undefined gcc behavior related to the & operator. * This would show up as a test failure when running with -O2 on certain GCC versions, as well as failure on clang 3.1
* Remove automatic reinitialization of PKCS#11 after forkStef Walter2012-01-231-9/+2
| | | | | | | | | | | | | | * First of all one should only call async-signal-safe functions from the callbacks of pthread_atfork(), and so we cannot reinitialize directly. * Some modules use pthread_atfork() to detect forking and setup their internal state. If we call into them in our pthread_atfork() callback then this is inherently racy. * There was danger of endless loops and deadlocks which are caused by handlers which fork in their C_Initialize * Many processes do fork/exec, reinitializing PKCS#11 for these forks is quite resourc intensive when the child process won't use PKCS#11 at all.
* Fix build warning on mingw64Stef Walter2012-01-021-1/+1
|
* Build fix for MinGW w64Michael Cronenworth2011-11-251-1/+7
|
* Fix problems crashing when freeing TLS on windowsStef Walter2011-10-291-0/+2
|
* Add debug output to windows init and uninit of libraryStef Walter2011-10-291-1/+8
|
* Fix broken build on cygwin and mingwDr. Volker Zell2011-10-251-0/+2
| | | | * Add correct linking options for libintl
* Fix broken build on windowsMichael Cronenworth2011-10-251-1/+1
| | | | | * The debug_init() call needed a rename to _p11_debug_init() to match the non-Win32 code.
* More fixes for non-static function namesStef Walter2011-10-246-56/+53
| | | | | * See previous commit * Initialize library before debug statements
* Rename non-static functions to have a _p11_xxx prefix.Stef Walter2011-10-2416-230/+252
| | | | | | | * Work around issues with brain-dead linkers not respecting the libtool -export-symbol-regex argument https://bugs.freedesktop.org/show_bug.cgi?id=42020
* Initial port to win32Stef Walter2011-10-1710-131/+563
| | | | | | | | * Tests do not all yet pass, at least not on wine * Added abstraction of some non-portable functions in compat.h/c * Build with an argument like this for win32 support: ./autogen.sh --host=i586-mingw32msvc * This win32 port needs more work from interested parties
* Only call C_Initialize and C_Finalize once per moduleStef Walter2011-10-101-55/+62
| | | | | | | | * Do not concurretnly call C_Initialize or C_Finalize in a module * The PKCS#11 spec indicates that mone thread should call those functions. * It's reasonable for a module to expect to only be initialized or finalized in one thread. * In particular NSS does not lock its C_Initialize or C_Finalize.
* Don't allow recursive calling of C_Initialize on a given module.Stef Walter2011-10-101-1/+8
|
* Don't use PATH_MAX unless its definedPino Toscano2011-09-301-1/+6
| | | | | | * Fixes build on GNU/Hurd https://bugs.freedesktop.org/show_bug.cgi?id=41303
* Fix quoting of build variablesAndreas Metzler2011-09-261-2/+2
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=40985
* Expand the libdir path correctlyStef Walter2011-09-191-1/+8
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=40985
* Add #include <limits.h> for PATH_MAX to fix compilation on FreeBSD.Roman Bogorodskiy2011-09-161-1/+2
| | | | https://bugs.freedesktop.org/show_bug.cgi?id=40923
* When a module has a relative path, load it from $libdir/pkcs11Kalev Lember2011-09-142-3/+59
| | | | | | | So far we have only supported full paths to the pkcs11 modules in config files. This change adds relative path support, so that for modules installed under the standard $libdir/pkcs11, the config file won't have to spell out the full path.
* Rename pkgconfig configuration directory variablesKalev Lember2011-09-144-8/+11
| | | | | | | | | | | | Renamed them to reduce ambiguity and to pave the way for exposing some additional parameters. p11_system_modules -> p11_system_config_modules p11_user_modules -> p11_user_config_modules configure --with-pkcs11-dir => configure --with-system-config
* Don't crash if p11_kit_registered_modules() called after failed initStef Walter2011-08-301-2/+3
|
* Remove useless typedefStef Walter2011-08-301-2/+0
|
* Add 'critical' setting for modulesStef Walter2011-08-303-1/+27
| | | | | | * When a module has critical set to 'yes', and that module fails to init then it aborts the entire init process. * Defaults to 'no'
* Fix bugs in the p11-kit proxy module.Stef Walter2011-08-243-15/+31
| | | | | | * Initialize the mappings properly * Lookup session handles correctly * Debug initialization and finalization
* Ignore spaces in PKCS#11 URIsStef Walter2011-08-192-23/+66
| | | | | | * These should be able to occur anywhere and should be ignored according to RFC 3986. This is documented in the PKCS#11 URI specification.
* Fix endless loop if module forks during initialization.Stef Walter2011-08-141-5/+7
| | | | | | | * If a module forks during its C_Initialize, previously our fork handler would try to initialize it again, ad nauseum. Reported by Nikos on the mailing list.
* Safer initialization of individually initialized module.Stef Walter2011-08-141-6/+30
| | | | | | | * More checks for out of memory. * Take more of the same code paths when initializing a single module as when initializing registered, or loading from file. * Cleanup halfway initialized globals if fail during init.
* Update PKCS#11 URI code for new draft of specStef Walter2011-08-054-95/+133
| | | | | | | | | * pinfile attribute was renamed to pin-source * objecttype attribute was renamed to object-type * secretkey value was renamed to secret-key We continue to support parsing the old attribute names and values but generate URIs with the new ones.
* Don't fail when duplicate modules are configured.Stef Walter2011-08-031-1/+1
| | | | | | * Duplicate modules may be caused by editor backups, misconfigurations or a multitude of other sources. Failing dead is a bit harsh. * After discussing gnutls needs with Nikos
* Better debug output for initialization and loading modules.Stef Walter2011-08-031-4/+7
|
* Fix broken debug argumentsStef Walter2011-08-031-1/+1
|
* Add example configuration documentation.Stef Walter2011-08-012-1/+14
| | | | * And also install example pkcs11.conf file.
* Make p11-kit-proxy.so link point to libp11-kit.so.0.0.0Stef Walter2011-07-281-1/+1
| | | | | | | * The link now points to the actual library, rather than to another link. https://bugzilla.redhat.com/show_bug.cgi?id=725905
* Add libtool style versioning variables to p11-kitStef Walter2011-07-271-1/+3
|
* Fix bug in hashtable rewrite.Stef Walter2011-07-271-1/+1
| | | | * Initialization mixup.
* Create a link for the proxy module.Stef Walter2011-07-272-1/+6
| | | | | | | | | | | | * Install proxy module at its own path which is not prefixed by 'lib' * Since the proxy module is the same as the library, and actually needs to be loaded as the same library in memory (due to resource tracking per process), use a symlink for proxy. * Add a variable to the pkg-config file which shows the path to the proxy module. ie: $ pkg-config --variable=proxy_module p11-kit-1 https://bugzilla.redhat.com/show_bug.cgi?id=725905
* Reimplement and remove apache licensed bits of code.Stef Walter2011-07-279-590/+466
| | | | | | | | | | * Reimplement the various bits of the hash table that were still based on the apache apr code. Use different algorithms for hashing, lookup and other stuff. * Use this as an opportunity to cleanup that code and make it more legible. https://bugzilla.redhat.com/show_bug.cgi?id=725905
* pin: Fix uninitialized variableStef Walter2011-07-121-1/+1
|
* More fine tuning of the pin APIs.Stef Walter2011-07-062-3/+19
|
* Add documentation for PIN callbacks.Stef Walter2011-07-062-67/+265
|
* Add P11KitPin structure, which encapsulates a returned pin.Stef Walter2011-07-062-24/+191
| | | | | * Lets us use variable size buffers. * Helps minimize copying.
* Rename p11_kit_pin_read_pinfile to p11_kit_pin_retrieveStef Walter2011-07-062-8/+9
| | | | * Fix up duplicate register logic as well.
* Implement support for registering and calling pinfile callbacksStef Walter2011-07-065-0/+631
| | | | | | * These are callbacks that hanlde the pinfile part of a PKCS#11 URI. * One library can register a callback that another can then call in a thread-safe and simple fashion.
* Fix logic error loading registered modules.Stef Walter2011-06-161-1/+1
| | | | Thanks to Richard Bellgrim.
* Update pkcs11.h with PKCS#11 2.20 ammendments.Stef Walter2011-06-091-3/+19
|
* Complete documentation for message functionality.Stef Walter2011-06-092-0/+44
|
* Store last failure message per thread.Stef Walter2011-06-096-30/+142
| | | | * Add p11_kit_message() function to get last message.
* Refactor configurationStef Walter2011-06-088-397/+579
| | | | | * Move configuration loading into conf.c * Have user modules with same name merge/override modules in system.