Commit 1daad3a3 authored by Niels Möller's avatar Niels Möller

*** empty log message ***

Rev: src/nettle/ChangeLog:1.152
Rev: src/nettle/TODO:1.5
Rev: src/spki/ChangeLog:1.22
Rev: src/spki/certificate.h:1.17
parent c767c166
2002-12-04 Niels Mller <nisse@cuckoo.hack.org>
* sexp-format.c (format_length_string): Deleted function.
(format_string): Deleted function.
(sexp_vformat): New %t specifier, formatting an optional display
type. Deleted %z specifier. Instead, introduced a new modifier "0"
that can be used with %s, %l and %t, which says that the data is
NUL-terminated.
* rsa2sexp.c (rsa_keypair_to_sexp): Use %0s rather than %z, when
formatting s-expressions.
* buffer.c (nettle_buffer_grow): Fixed assertion.
2002-11-22 Niels Mller <niels@s3.kth.se>
* buffer.c: Include assert.h.
2002-11-21 Niels Mller <nisse@cuckoo.hack.org>
* testsuite/testutils.c (print_hex): Add line breaks.
* Makefile.am (libnettleinclude_HEADERS): Added realloc.h.
(libnettle_a_SOURCES): Added buffer-init.c and realloc.c.
* sexp.c (sexp_iterator_exit_lists): New function, #if:ed out for
now.
* desdata.c: Include config.h, to get definition of UNUSED.
* shadata.c: Likewise.
* buffer.c (nettle_buffer_grow): New function, replacing
grow_realloc.
(nettle_buffer_clear): Rewritten to use buffer->realloc.
* buffer.h (struct nettle_buffer): REplaced the GROW function
pointer with a nettle_realloc_func pointer and a void
(NETTLE_BUFFER_GROW): Deleted macro, use function instead.
*realloc_ctx.
* buffer-init.c (nettle_buffer_init): Moved to a separate file.
* realloc.c (nettle_realloc): New function.
(nettle_xrealloc): New function.
* realloc.h (nettle_realloc_func): New typedef.
* configure.ac: Check for gcc:s __attribute__.
2002-11-16 Niels Mller <nisse@cuckoo.hack.org>
* sexp2dsa.c, sexp2rsa.c: (macro GET): Check sign of parsed
......
......@@ -11,7 +11,9 @@ Counter, and CFB. Suggested by Rafael 'Dido' Sevilla. References:
http://csrc.nist.gov/encryption/modes/Recommendation/Modes01.pdf
Fix sexp handling of integers, according to
draft-ietf-spki-cert-structure-06.txt, integers are now signed two's
complement numbers, similar to what is used in SSH.
Improve sexp_Format to accept literals, like "n" in
sexp_format(buffer, "(n%b)", n);
Add a "avanced-hex" syntax to sexp-conv. Like the advanced syntax, but
prefer hex instead of base 64 for non-ascii literals.
2002-12-04 Niels Mller <nisse@cuckoo.hack.org>
* tag.c (atom_prefix): Fixed assertion.
(spki_tag_intersect): The ordering of a and b (with a having the
"widest" type) was wrong.
* reduce.c (spki_5_tuple_by_subject): Use spki_principal_normalize
for comparisons.
* parse.c (spki_parse_fail): New function. Changed all parser
functons to use it when they fail.
(spki_parse_principal): Changed to parse a complete subject or
issuer subexpression.
(spki_parse_acl_entry): Use new spki_parse_principal.
(spki_parse_cert): Likewise.
(spki_parse_tag): Don't assert that expression is of the right
type, simply call spki_parse_fail.
* certificate.c (spki_principal_normalize): New function, to be
used when comparing principals.
(spki_5_tuple_fix_aliases): #if:ed out this function, as it didn't
seem robust enough. Also #if:ed out all uses.
* testsuite/Makefile.am (TS_PROGS): Added cdsa-reduce-test.
* testsuite/cdsa-reduce-test.c (filter_by_tag, filter_by_subject)
(filter_by_date): New functions.
(test_main): Process the red-test filter expressions. Omit some
tests that seem broken, or use features that we haven't
implemented yet. Don't ASSERT that the resulting 5-tuple list is
non-empty, some test cases result in empty lists.
2002-12-03 Niels Mller <nisse@cuckoo.hack.org>
* testsuite/cdsa-reduce-test.c: New test program, using cdsa tests.
* testsuite/cdsa-cases: New directory with test cases snarfed from
cdsa.
2002-11-27 Niels Mller <nisse@cuckoo.hack.org>
* testsuite/lookup-acl-test.c (test_main): Updated for new acl
......
......@@ -65,7 +65,8 @@ struct spki_principal
/* If the lookup code sees hashes and keys in an unfortunate order,
* it may create several principal structs that represent the same
* key. In this case, we install an alias pointer when the mistake
* is discovered. */
* is discovered. This means that one should call
* spki_principal_normalize before comparing two principals. */
struct spki_principal *alias;
......@@ -165,6 +166,9 @@ void
spki_principal_free_chain(struct spki_acl_db *db,
struct spki_principal *chain);
const struct spki_principal *
spki_principal_normalize(const struct spki_principal *principal);
/* Handling the acl database */
int
spki_acl_parse(struct spki_acl_db *db, struct spki_iterator *i);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment