summaryrefslogtreecommitdiff
path: root/pkcs11/secret-store
Commit message (Collapse)AuthorAgeFilesLines
* Rework configure build options based on recent mailing list postsStef Walter2011-09-261-8/+1
| | | | | | | | * --enable-strict to enable -Werror, fatal warnings and disable deprecations * --disable-debug to G_DISABLE_ASSERT * default debug for -g, WITH_DEBUG * --enable-debug to -OO
* Secure memory taggingStef Walter2011-09-101-0/+2
| | | | | * Tag all secure memory with strings, and print out diagnostic report of what's in use, upon request.
* gcr: Documentation, testing and distcheck fixesStef Walter2011-09-011-1/+1
| | | | | | * Update symbols for new APIs * Update docs with new APIs * Change how tests find fixture files.
* Fix compile warnings when building with --disable-debugStef Walter2011-08-301-1/+1
|
* Don't keep going after tests failStef Walter2011-08-251-1/+1
| | | | * Remove -k from gtester arguments
* secret-store: Add more example keyrings to parse.Stef Walter2011-04-253-26/+48
| | | | | | * From RHEL and Solaris OpenCSW https://bugzilla.gnome.org/show_bug.cgi?id=647766
* Modernize the remainder of the tests.Stef Walter2011-04-2425-1816/+2148
| | | | | * Bring up to date with gtester running and individual binaries. * Make the tests run in make distcheck
* Fix more gcc 4.6 warnings.Marc Plano-Lesay2011-04-231-4/+0
| | | | https://bugzilla.gnome.org/show_bug.cgi?id=647315
* Link directly to gmodule for the modules that need itSjoerd Simons2011-01-241-1/+3
|
* Add missing files to distribution.Stef Walter2010-12-221-3/+3
|
* [pkcs11] Fix up standalone modules for use in tests.Stef Walter2010-12-102-2/+17
| | | | | * Make the standalone modules always resident after loading. * Install modules to a path that's published in the pkg-config file.
* [testing] Preprocess test files before searching for tests.Stef Walter2010-11-2410-120/+122
| | | | | | * Allows tests to be commented out or ifdefed. * Faster building of tests. * Other cleanup of tests.
* [testing] Add function for putting test files in scratch dir.Stef Walter2010-09-211-23/+2
| | | | Add testing_data_to_scratch() function for use in tests.
* [secret-store] Fix the CKA_TRUSTED attribute for collections.Stef Walter2010-09-011-1/+1
| | | | | This attribute signifies whether the collection is properly encrypted or not. Fix broken boolean check.
* [gkm] Always pass around session when finding stuff.Stef Walter2010-06-134-13/+17
| | | | | * This is because attributes can vary depending on session and we need the session to determine their value.
* Implement auto unlock in wrap-layer.Stef Walter2010-06-121-0/+11
| | | | * Including tests and necessary infrastructure.
* Cleaner naming in testing suite.Stef Walter2010-06-0810-12/+12
|
* Cleanup .gitignore files.Stef Walter2010-06-081-3/+0
|
* Cleanup naming and whitespace for testing stuff.Stef Walter2010-06-0812-34/+33
| | | | | * Rip off bandaid (painful) whitespace cleanup. * At the same time cleanup naming, and remove old cruft.
* Simpler way to define secure memory callbacks.Stef Walter2010-06-081-7/+1
| | | | * Also define locking on the daemon.
* Massive cleanup of line endings and file names.Stef Walter2010-06-0844-3634/+3634
| | | | | | | | * Cleanup all line endings for pkcs11 code. * Rename C namespace to GKM This is big "rip off the bandaid fast" change in order to prevent later constant pain with git and naming.
* [secret-store] Don't save session keyring to disk.Stef Walter2010-03-201-39/+43
| | | | | | | | | | | There was a major problem where the session keyring was being saved to disk, and since it had to master password, as a cleartext keyring Mark the session keyring as transient so it doesn't even come near the storage code. Also rework the collection storage code, so that it properly handles various corner cases. Fixes bug #612977
* More robust error display and handling.Stef Walter2010-03-192-3/+6
| | | | | | | Handle all cases where a function may return a failure with a NULL GError, such as preconditions and warnings. Also use proper function for checking error codes.
* [secret-store] Two minor fixes for keyring creation.Stef Walter2010-02-181-1/+1
| | | | Include translatable files, and a null pointer dereference.
* [secret-store] Allow specifying CKA_ID when creating collection.Stef Walter2010-02-181-4/+47
| | | | | | | This is necessary to allow creation of the login keyring, which needs a specific CKA_ID. Also we return an already existing collection if the ID matches one that already exists. This is similar to the behavior of item creation.
* Fix another Solaris CC build issue.Jeff Cai2010-02-141-1/+1
|
* [secret-store] Possible fix for a sporadic crash in this area.Stef Walter2010-02-141-1/+1
|
* [secret-store] Return OK when a search includes a bad collection identifier.Stef Walter2010-02-143-34/+38
| | | | | | | | So basically we just don't return any results. This is for two reasons: * PKCS#11 isn't very helpful to the caller of C_CreateObject about which attribute was wrong. * Race conditions abound where you set up a search of a collection that is being deleted.
* [pkcs11] Fix problem with not storing secret value properly.Stef Walter2010-02-133-9/+8
| | | | | If a new object was not created, such as when unwrapping a secret item, then the attributes set were not stored properly.
* [secret-store] Fix regression: secret value not stored properly.Stef Walter2010-02-131-1/+6
|
* [secret-store] Don't try to set credential attribute twice.Stef Walter2010-02-091-0/+1
|
* Solaris CC doesn't allow return voidJeff Cai2010-02-071-12/+24
| | | | Fixes bug #606710
* [secrets] Create unlock credentials with correct attributes.Stef Walter2010-02-061-0/+1
| | | | | Some minor fixes for creating unlock credentials with the right attributes, such as making them available to all applications.
* [secrets] Fix problems with collection reloading.Stef Walter2010-02-061-8/+11
| | | | | The module had a bug which would cause collections that were reloaded to appear as new collections
* Implement collection storing lock on idle, and unlock timeoutStef Walter2010-02-014-33/+81
|
* Fix unit testing which recent commit broke on this branch.Stef Walter2010-02-011-1/+1
|
* [pkcs11] Rework how credentials, and auto-destruct work.Stef Walter2010-02-016-51/+119
| | | | | | | Add the concept of a CKA_CREDENTIAL_TEMPLATE from which credential objects for a given object take attributes. Change around the various auto-destruct attributes.
* [secrets] Fix bug when setting schema attribute.Stef Walter2010-01-041-0/+1
|
* [pkcs11] Add schema attribute to secret items.Stef Walter2010-01-046-45/+112
| | | | This will be used for the Type secret API property.
* [pkcs11] Store objects after any attribute change.Stef Walter2010-01-031-2/+2
| | | | | | Previously most token objects did not have modifiable attributes, or at least not those stored on the token. This changed with the addition of secret objects.
* Release version 2.29.4GNOME_KEYRING_2_29_4Stef Walter2009-12-212-1/+6
| | | | And do a bunch of distcheck fixes.
* Remove old keyring socket, library and code support.Stef Walter2009-12-171-0/+68
| | | | | | After this commit, all callers must use the libgnome-keyring module to access secrets. The old socket method and included library no longer work.
* [pkcs11] Fix some shutdown ordering problems.Stef Walter2009-12-141-1/+12
|
* [secret-store] Fix assertion when parsing textual keyring.Stef Walter2009-12-141-2/+5
| | | | Use appropriate method call for null secret.
* [secret-store] Implement changing of master credentials for collection.Stef Walter2009-12-141-8/+86
| | | | | Use the credentials mechanism to allow changing master password for a collection.
* [secret-store] Implement always present 'session' keyring.Stef Walter2009-12-132-1/+41
|
* [dbus] Implement getting and setting of secrets.Stef Walter2009-11-251-0/+13
| | | | | | | This is not very well tested, but all basically speced out and implemented. We use wrapping and unwrapping to transfer secrets via the aes algorithm, or simple get/set attributes when transferring via plaintext.
* [pkcs11] Refactor object creation.Stef Walter2009-11-195-119/+127
| | | | | | Factories are now able to recycle objects, if they match the attributes in specific ways. Cleanup the factory function signature, and the semantics of pointer ownership.
* [pkcs11] Add support for creating credentials without object.Stef Walter2009-11-123-31/+88
| | | | | | This is necessary for creating collections, which expect a credential when they are created. That credential is used to lock the items.
* [pkcs11] Cleaner way of associating data with credentials.Stef Walter2009-11-101-4/+3
| | | | | Don't use g_object_set_data instead use our own way of associating data with credentials.
View Lorry Controller Status