- 18 Aug, 2017 16 commits
-
-
Luca Boccassi authored
Solution: remove it. Looking at the code: https://github.com/krb5/krb5/blob/master/src/lib/gssapi/mechglue/g_unseal.c#L55 gss_unwrap as the very first thing checks that plaintext is not a null pointer, which in our case it's true given it's on the stack, and then initialises its members to 0 length and null ptr. https://github.com/krb5/krb5/blob/master/src/lib/gssapi/mechglue/g_rel_buffer.c#L36 So it should be safe to release it in all cases, and the release API seems to check again if it's not a null pointer and then if the members are 0 length and null pointer it's a no-op.
-
Luca Boccassi authored
Solution: free wrapper.value instead of wrapper.
-
Doron Somech authored
Problem: missing files from VS2008 solution
-
Luca Boccassi authored
Problem: gssapi_mechanism_base_t aborts the application when it receives a message it cannot decode
-
Luca Boccassi authored
Solution: generate list of sources and headers with: ls -1 src/*cpp | sort | sed 's|src/\(.*\)| <File RelativePath="..\\..\\..\\..\\src\\\1" />|g' ls -1 src/*hpp | sort | sed 's|src/\(.*\)| <File RelativePath="..\\..\\..\\..\\src\\\1" />|g' and add them.
-
sigiesec authored
Solution: emit an ZMQ_EVENT_HANDSHAKE_FAILED_PROTOCOL event instead of using zmq_assert
-
Luca Boccassi authored
Problem: Values in ZMQ_EVENT_HANDSHAKE_FAILED_* are not helpful
-
sigiesec authored
Solution: extracted common base class curve_mechanism_base_t
-
sigiesec authored
Solution: emit appropriate events
-
sigiesec authored
Solution: emit events at appropriate places
-
sigiesec authored
Solution: use check_basic_command_structure in curve_client_t::decode, also prepare other client mechanisms to use that method by rearranging inheritance hierarchy
-
sigiesec authored
state of ZMQ_EVENT_HANDSHAKE_FAILED_* events Solution: update documentation
-
sigiesec authored
Solution: add handshake failure events to curve_client_t
-
sigiesec authored
Solution: emit socket monitor events for NULL protocol errors (like CURVE)
-
sigiesec authored
Solution: emit socket monitor events for PLAIN protocol errors (like CURVE)
-
sigiesec authored
Solution: redesign ZMQ_HANDSHAKE_FAILED_* events, introduce new class of ZMQ_HANDSHAKE_FAILED_AUTH events
-
- 17 Aug, 2017 16 commits
-
-
Constantin Rack authored
Problem: coverage CI job does not print test errors
-
Luca Boccassi authored
Solution: run make check with VERBOSE=1
-
Luca Boccassi authored
specify that groups shall be UTF8
-
Min RK authored
group being a `char *` is logically a text type, which needs an encoding. Declare in the API that groups shall be UTF8-encoded, matching the `zmq_msg_gets` API, which is the other user-facing `char *` API, which has the same definition. This allows bindings to provide text-type APIs, which they cannot do if arbitrary bytes are allowed
-
Luca Boccassi authored
Problem: no relicense agreement by sigiesec
-
sigiesec authored
Solution: added relicense agreement
-
Luca Boccassi authored
Problem: ZAP client code duplicated across mechanisms with behaviour deviations
-
Jim Klimov authored
Problem: missing flags break build of test_security_curve
-
sigiesec authored
Solution: replaced unreachable code by assertions and adapted uses
-
sigiesec authored
Solution: add testutil_security.hpp to Makefile.am
-
sigiesec authored
Solution: added ZAP tests for PLAIN
-
sigiesec authored
Solution: added ZAP tests for NULL
-
sigiesec authored
Solution: move relevant behavior to zap_client_t
-
sigiesec authored
Solution: Move ZAP tests to own file test_security_zap.cpp, move common code to testutil_security.hpp
-
sigiesec authored
Solution: as a first step, parametrize mechanism configuration in CURVE tests
-
sigiesec authored
Solution: unification, pulled up common behaviour to zap_client_t/zap_client_common_handshake_t
-
- 16 Aug, 2017 8 commits
-
-
sigiesec authored
Problem: zap_msg_available duplicated between curve_server_t and plain_server_t (with deviating behaviour) Solution: pull up into zap_client_common_handshake_t, along with handle_zap_status_code and error_detail/current_error_detail
-
sigiesec authored
Solution: extract into new intermediate base class zap_client_common_handshake_t
-
sigiesec authored
Solution: pull state enum up to zap_client_t and unify names of enum values
-
sigiesec authored
Solution: extract receive_and_process_zap_reply into zap_client_t and convert zap_client_t into base class of the server mechanism classes
-
sigiesec authored
Solution: Use zap_client_t::send_zap_request
-
sigiesec authored
Solution: Set more flag depending on presence of credentials
-
sigiesec authored
Problem: null_mechanism duplicates zap_client_t::send_zap_request\nSolution: use zap_client_t::send_zap_request
-
sigiesec authored
Solution: Use zap_client_t::send_zap_request
-