Tobias Brunner
ac200bcda5
android: Imported certificates may be clicked to delete them
2014-07-22 10:41:50 +02:00
Tobias Brunner
eb01649079
android: Reload CA certificates without AsyncTask
...
We already use loaders in the GUI that can handle this asynchronously.
2014-07-22 10:41:50 +02:00
Tobias Brunner
918200378d
android: Change how CA certificate reloads are initiated
2014-07-22 10:41:50 +02:00
Tobias Brunner
08de6a08f0
android: Add option to reload CA certificates to TrustedCertificatesActivity
2014-07-22 10:41:50 +02:00
Tobias Brunner
2312985b2a
android: Replace option to reload CA certificates with CA certificate view
...
The reload option will be added there.
2014-07-22 10:41:50 +02:00
Tobias Brunner
1353f08fbc
android: Only close TrustedCertificatesActivity on click when selecting a certificate
2014-07-22 10:41:50 +02:00
Tobias Brunner
9c841b1f34
android: Set action when using TrustedCertificatesActivity to select a certificate
2014-07-22 10:41:50 +02:00
Tobias Brunner
f21a69dbec
android: Allow selection of local certificates
2014-07-22 10:41:49 +02:00
Tobias Brunner
3b2b536b70
android: Change how CA certificates from different sources are accessed
2014-07-22 10:41:49 +02:00
Tobias Brunner
8cdce00eb1
android: Cache certificates from multiple KeyStores
...
Including the new local one.
2014-07-22 10:41:49 +02:00
Tobias Brunner
8d3a058abc
android: Register local certificate store provider when the app is initialized
2014-07-22 10:41:49 +02:00
Tobias Brunner
5eb4297046
android: Add Provider for the local certificate store
2014-07-22 10:41:49 +02:00
Tobias Brunner
544267889e
android: Add KeyStoreSpi implementation that uses LocalCertificateStore
2014-07-22 10:41:49 +02:00
Tobias Brunner
275888d255
android: Add local certificate store
...
The class manages certificates stored in files within the app's
private data directory.
2014-07-22 10:41:49 +02:00
Tobias Brunner
463a6cd005
android: Move TrustedCertificateEntry to a new package
2014-07-22 10:41:49 +02:00
Tobias Brunner
6684195505
android: Subclass Application to provide static access to the application context
2014-07-22 10:41:49 +02:00
Tobias Brunner
7229bdd5c7
android: Target latest SDK version
2014-07-22 10:41:49 +02:00
Tobias Brunner
140ce41a39
android: Add utility method to convert a byte array to a hex string
2014-07-22 10:41:48 +02:00
Tobias Brunner
9d994ba5ea
android: Remove unused hash argument from getTrustedCertificates()
2014-07-22 10:41:48 +02:00
Tobias Brunner
b9fd95f476
android: Use correct tag to define category for CREATE_SHORTCUT intent-filter
2014-07-22 10:41:48 +02:00
Tobias Brunner
d962b25bcb
starter: Fix memory leaks and warn if conn/ca sections are ignored due to parse errors
2014-07-18 17:15:15 +02:00
Martin Willi
75122b90bb
receiver: Send a single INVALID_MAJOR_VERSION notify for IKE version > 2
...
We sent both a notify using IKEv1 and IKEv2. This is a little more aggressive
than required, RFC 5996 says we "SHOULD send an unauthenticated Notify
message of type INVALID_MAJOR_VERSION containing the highest (closest) version
number it supports".
Fixes #657 .
2014-07-17 09:35:49 +02:00
Andreas Steffen
13ec4cf2ad
Version bump to 5.2.1dr1
2014-07-16 15:59:56 +02:00
Andreas Steffen
3b96147353
Determine type of unsupported PA-TNC attribute in error message
2014-07-16 15:57:15 +02:00
Andreas Steffen
924ed795af
Replaced Tag File Path by Instance ID field
...
This update reflects the latest changes in the TCG TNC
SWID Messages and Attributes for IF-M specification
2014-07-16 15:57:15 +02:00
Tobias Brunner
b906d41214
man: Document where left|rightsigkey searches for public key files
2014-07-14 10:58:28 +02:00
Martin Willi
88a33f8aa7
swanctl: Fix the swanctl.conf cacerts option name in the manpage and template
2014-07-14 09:18:47 +02:00
Andreas Steffen
4ccfc879b5
Updated URL to swidGenerator in recipe
2014-07-09 15:08:18 +02:00
Martin Willi
9128666812
dumm: Undefine _GNU_SOURCE before including <ruby.h>, as it usually redefines it
2014-07-09 10:53:36 +02:00
Andreas Steffen
af494268fb
Version bump to 5.2.0
2014-07-08 15:24:31 +02:00
Tobias Brunner
3d2b36b812
NEWS: Updated URL to swidGenerator
2014-07-07 17:54:02 +02:00
Martin Willi
a51c48eeaa
settings: Allow spaces in time settings before the optional unit
2014-07-07 16:58:05 +02:00
Martin Willi
0058e26cb0
settings: Be more strict in converting settings to specific data types
...
As the behavior was inconsistent for empty strings or strings with characters
appended to a number, testing the code failed on some platforms. The new rules
are more strict, returning the default if additional characters or an empty
string was found for a setting.
2014-07-07 16:57:38 +02:00
Martin Willi
920d466f05
utils: Undefine mem{cpy,move,set} if set before defining them
...
Some platforms, such as OS X, use macros for these functions. Undefine them
to avoid compiler warnings.
2014-07-07 16:14:26 +02:00
Martin Willi
c1490c649a
enumerator: Enumerate glob(3) matches using gl_pathc
...
While glob should return a NULL terminated gl_pathv when having no matches,
at least on OS X this is not true when using GLOB_DOOFFS. Rely on the
number of matches returned in gl_pathc, which seems to be more reliable in
error cases.
2014-07-07 16:14:17 +02:00
Tobias Brunner
44870e5313
xauth-pam: Add workaround for null-terminated passwords
...
Fixes #631 .
2014-07-07 11:14:02 +02:00
Martin Willi
839951097c
kernel-netlink: Rename algorithm identifier from cast128 to cast5
...
Even if the XFRM identifier was named cast128 in the kernel before 2.6.31, it
actually never worked, because there is no such crypto algorithm.
The identifier has been changed to cast5 in
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=245acb87
to make it work, so we should use that.
Fixes #633 .
2014-07-04 10:18:12 +02:00
Tobias Brunner
118b2879aa
winhttp: Do not use countof() on pointer argument
2014-07-02 12:38:45 +02:00
Tobias Brunner
831045ef45
optionsfrom: Properly handle errors when determining file size
2014-07-02 12:38:45 +02:00
Tobias Brunner
e44223dbcc
windows: Fix off-by-one error in strerror_s_extended()
2014-07-02 12:38:45 +02:00
Tobias Brunner
0026600bfe
windows: accept() socket handle could theoretically be 0
2014-07-02 12:38:45 +02:00
Tobias Brunner
babe9e4f45
windows: Close correct socket when opening second socket fails in socketpair()
2014-07-02 12:38:44 +02:00
Tobias Brunner
0a26f39a71
windows: Make sure the string returned from ReadConsole() is null terminated
2014-07-02 12:38:44 +02:00
Tobias Brunner
32a262e7a1
windows: Remove useless assignment in put_thread()
2014-07-02 12:12:05 +02:00
Tobias Brunner
0e48f67562
backtrace: Remove name checks after SymFromAddr() calls
...
The Name member is an array whose address is always defined.
2014-07-02 12:11:59 +02:00
Tobias Brunner
fbe462e1b0
pts: Avoid integer overflow when reading file names in the old IMA format
2014-07-01 17:58:36 +02:00
Tobias Brunner
ecb55b4639
imv-attestation: Avoid memory leak when skipping unsupported work items
2014-07-01 17:58:36 +02:00
Tobias Brunner
530d87be1b
pts: Use memchr(3) instead of strchr(3) to extract hash algorithm name
...
The string read with read(2) might not be null terminated.
2014-07-01 17:58:36 +02:00
Tobias Brunner
f82d7aff85
swid: fgets(3) returns a pointer to the read string or NULL
2014-07-01 17:58:36 +02:00
Tobias Brunner
1be2b84124
parser-helper: Ensure file_next() does not remove the sentinel item
2014-07-01 17:58:36 +02:00