ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity
strongswan/src/libstrongswan
History
Tobias Brunner 6537be9c8d pkcs11: Change how unavailable attributes like CKA_TRUSTED are handled 
If a PKCS#11 library/token doesn't provide one or more attributes via
C_GetAttributeValue(), we get back CKR_ATTRIBUTE_TYPE_INVALID (similar
for protected attributes where CKR_ATTRIBUTE_SENSITIVE is returned).
This is not an error as the spec demands that all attributes have been
processed with the unavailable attributes having set their length
field to CK_UNAVAILABLE_INFORMATION.

We use this to handle the CKA_TRUSTED attribute, which some tokens
apparently don't support.  We previously used a version check to remove
the attribute from the call but even the latest spec doesn't make the
attribute mandatory (it's just in a list of "common" attributes for
CKO_CERTIFICATE objects, without a default value), so there are current
tokens that don't support it and prevent us from enumerating certificates.
 		2021-06-14 13:58:48 +02:00
..
asn1 identification: Change abbreviation for surname/serialNumber RDNs 2021-01-18 17:41:37 +01:00
bio Fixed some typos, courtesy of codespell 2018-09-17 18:51:44 +02:00
collections path: Also accept / as directory separator on Windows 2021-02-03 17:27:57 +01:00
credentials credential_factory: Store name of plugin registering a builder 2021-06-01 21:12:46 +02:00
crypto proposal: Add aliases for AES-GCM/CCM without explicit ICV length 2021-02-12 14:35:23 +01:00
database Spelling fixes 2020-02-11 18:23:07 +01:00
eap Unify format of HSR copyright statements 2018-05-23 16:32:53 +02:00
fetcher Unify format of HSR copyright statements 2018-05-23 16:32:53 +02:00
ipsec ipsec-types: Move allocation of unique interface IDs to helper function 2019-04-04 09:31:38 +02:00
math/libnttfft Some whitespace fixes 2019-08-22 15:18:06 +02:00
networking host-resolver: Don't wait for a reply if there are no threads 2020-12-03 08:36:20 +01:00
pen Use standard unsigned integer types 2016-03-24 18:52:48 +01:00
plugins pkcs11: Change how unavailable attributes like CKA_TRUSTED are handled 2021-06-14 13:58:48 +02:00
processing scheduler: Use timercmp(3) instead of a custom function 2020-06-02 14:07:06 +02:00
resolver Spelling fixes 2020-02-11 18:23:07 +01:00
selectors Fixed some typos, courtesy of codespell 2018-09-17 18:51:44 +02:00
settings Don't report current text in parser error messages 2021-05-11 10:08:58 +02:00
tests diffie-hellman: Add enum names that match proposal keywords 2021-02-12 14:35:23 +01:00
threading time: Allow using different clocks 2020-06-02 13:57:37 +02:00
utils backtrace: The BFD API changed in newer versions 2021-05-05 16:17:54 +02:00
.gitignore Ignore verbose parser generator output file more generally 2020-12-15 10:42:43 +01:00
Android.mk hashtable: Maintain insertion order when enumerating 2020-07-20 13:50:11 +02:00
Makefile.am hashtable: Maintain insertion order when enumerating 2020-07-20 13:50:11 +02:00
library.c Spelling fixes 2020-02-11 18:23:07 +01:00
library.h library: Return FALSE from library_init() if loaded settings are invalid 2018-09-11 18:30:18 +02:00