[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12

gnutls-commit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12_8-4-gc6fc7e

From:	Nikos Mavrogiannopoulos
Subject:	[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12_8-4-gc6fc7ec
Date:	Sun, 14 Aug 2011 12:45:06 +0000

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".

http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=c6fc7ec81a41473766fa42a4b2cdeb47ba031b9b

The branch, gnutls_2_12_x has been updated
       via  c6fc7ec81a41473766fa42a4b2cdeb47ba031b9b (commit)
       via  a2eeac96c617aa757fd2cd3416f7bf26f3a782a1 (commit)
       via  b7e9f4caa15c269c703e540a9170c04428d59469 (commit)
      from  0ccd850d5738944b63c3ddc53246019edb2a6f46 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit c6fc7ec81a41473766fa42a4b2cdeb47ba031b9b
Author: Nikos Mavrogiannopoulos <address@hidden>
Date:   Sun Aug 14 14:38:59 2011 +0200

    Corrected issue when asking multiple times for PIN.

commit a2eeac96c617aa757fd2cd3416f7bf26f3a782a1
Author: Nikos Mavrogiannopoulos <address@hidden>
Date:   Sun Aug 14 13:27:28 2011 +0200

    corrected configure test.

commit b7e9f4caa15c269c703e540a9170c04428d59469
Author: Nikos Mavrogiannopoulos <address@hidden>
Date:   Fri Aug 12 16:54:53 2011 +0200

    do not escape \#

-----------------------------------------------------------------------

Summary of changes:
 doc/manpages/gnutls-cli.1 |    8 ++++----
 lib/configure.ac          |    2 +-
 lib/pkcs11.c              |   19 +++++++++----------
 3 files changed, 14 insertions(+), 15 deletions(-)

diff --git a/doc/manpages/gnutls-cli.1 b/doc/manpages/gnutls-cli.1
index 0b170ec..8a42a5c 100644
--- a/doc/manpages/gnutls-cli.1
+++ b/doc/manpages/gnutls-cli.1
@@ -123,14 +123,14 @@ SRP password to use.
 .IP "\-\-srpusername \fINAME\fR"
 SRP username to use.
 .IP "\-\-x509cafile \fIFILE\fR"
-Certificate file to use. This option accepts PKCS \#11 URLs such as
-pkcs11:token=Root%20CA%20Certificates;serial=1%3AROOTS%3ADEFAULT;model=1%2E0;manufacturer=Gnome%20Keyring
+Certificate file to use. This option accepts PKCS #11 URLs such as
+"pkcs11:token=xxx"
 .IP "\-\-x509certfile \fIFILE\fR"
-X.509 Certificate file to use, or a PKCS \#11 URL.
+X.509 Certificate file to use, or a PKCS #11 URL.
 .IP "\-\-x509fmtder"
 Use DER format for certificates
 .IP "\-\-x509keyfile \fIFILE\fR"
-X.509 key file or PKCS \#11 URL to use.
+X.509 key file or PKCS #11 URL to use.
 .IP "\-\-x509crlfile \fIFILE\fR"
 X.509 CRL file to use.
 .IP "\-\-pskusername \fINAME\fR"
diff --git a/lib/configure.ac b/lib/configure.ac
index 4d54c15..75bdc8d 100644
--- a/lib/configure.ac
+++ b/lib/configure.ac
@@ -84,7 +84,7 @@ PKG_CHECK_EXISTS(zlib, ZLIB_HAS_PKGCONFIG=y, 
ZLIB_HAS_PKGCONFIG=n)
 
 if test x$ac_zlib != xno; then
   if test "$ZLIB_HAS_PKGCONFIG" = "y" ; then
-    if test x$GNUTLS_REQUIRES_PRIVATE = x; then
+    if test "x$GNUTLS_REQUIRES_PRIVATE" = "x"; then
       GNUTLS_REQUIRES_PRIVATE="Requires.private: zlib"
     else
       GNUTLS_REQUIRES_PRIVATE="$GNUTLS_REQUIRES_PRIVATE , zlib"
diff --git a/lib/pkcs11.c b/lib/pkcs11.c
index f5ce8ad..fed076b 100644
--- a/lib/pkcs11.c
+++ b/lib/pkcs11.c
@@ -1854,16 +1854,12 @@ retrieve_pin_for_callback (struct ck_token_info 
*token_info, int attempts,
   free (label);
 
   if (ret < 0)
-    {
-      gnutls_assert ();
-      return GNUTLS_E_PKCS11_PIN_ERROR;
-    }
+    return gnutls_assert_val(GNUTLS_E_PKCS11_PIN_ERROR);
 
   *pin = p11_kit_pin_new_for_string (pin_value);
-
-  /* Try to scrub the pin off the stack.  Clever compilers will
-   * probably optimize this away, oh well. */
-  memset (pin, 0, sizeof pin);
+  
+  if (*pin == NULL)
+    return gnutls_assert_val(GNUTLS_E_INTERNAL_ERROR);
 
   return 0;
 }
@@ -1879,7 +1875,10 @@ retrieve_pin (struct p11_kit_uri *info, struct 
ck_token_info *token_info,
   /* Check if a pinfile is specified, and use that if possible */
   pinfile = p11_kit_uri_get_pinfile (info);
   if (pinfile != NULL)
-    return retrieve_pin_for_pinfile (pinfile, token_info, attempts, user_type, 
pin);
+    {
+      _gnutls_debug_log("pk11: Using pinfile to retrieve PIN\n");
+      return retrieve_pin_for_pinfile (pinfile, token_info, attempts, 
user_type, pin);
+    }
 
   /* The global gnutls pin callback */
   else if (pin_func)
@@ -1961,7 +1960,7 @@ pkcs11_login (struct ck_function_list * module, 
ck_session_handle_t pks,
             }
         }
 
-      ret = retrieve_pin (info, &tinfo, attempt, user_type, &pin);
+      ret = retrieve_pin (info, &tinfo, attempt++, user_type, &pin);
       if (ret < 0)
         {
           gnutls_assert ();


hooks/post-receive
-- 
GNU gnutls

[Prev in Thread]

Current Thread

[Next in Thread]

[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12_8-4-gc6fc7ec, Nikos Mavrogiannopoulos <=

Prev by Date: [SCM] GNU gnutls branch, gnutls_3_0_x, updated. gnutls_3_0_0-123-g621b24c
Next by Date: [SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12_8-5-g13480c8
Previous by thread: [SCM] GNU gnutls branch, gnutls_3_0_x, updated. gnutls_3_0_0-123-g621b24c
Next by thread: [SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_12_8-5-g13480c8
Index(es):
- Date
- Thread