./security/p11-kit, PKCS#11 module manager

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 0.23.14, Package name: p11-kit-0.23.14, Maintainer: pkgsrc-users

P11-KIT
Provides a way to load and enumerate PKCS#11 modules. Provides a standard
configuration setup for installing PKCS#11 modules in such a way that they're
discoverable.


Required to run:
[security/libtasn1] [devel/libffi] [security/mozilla-rootcerts]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: 30cab1d4b716022e6918f9a49976609c425f9cfc
RMD160: 795ea86b15fbcb6865cf65c146c6f54b5a27d1cd
Filesize: 1236.909 KB

Version history: (Expand)


CVS history: (Expand)


   2018-09-05 10:34:10 by Patrick Welche | Files touched by this commit (3) | Package updated
Log message:
Update p11-kit to 0.23.14

0.23.14 (stable)
 * proxy: Avoid invalid memory access when unloading proxy module [PR#180]
 * Update pkcs11 header to allow SoftHSMv2 to compile [PR#181]
 * build: Restore libpthread dependency [PR#183]
 * Build fixes [PR#188]
   2018-09-02 09:49:51 by Tobias Nygren | Files touched by this commit (3)
Log message:
p11-kit: Hide getauxval(). PR pkg/53387 (related to port-arm/53386)
   2018-08-19 07:00:41 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
p11-kit: update to 0.23.13.

0.23.13 (stable)
 * server: Enable socket activation through systemd [PR#173]
 * rpc-server: p11_kit_remote_serve_tokens: Allow exporting all modules [PR#174]
 * proxy: Fail early if there is no slot mapping [PR#175]
 * Remove hard dependency on libpthread on glibc systems [PR#177]
 * Build fixes [PR#170, PR#176]
   2018-08-01 21:18:19 by Jonathan Perkin | Files touched by this commit (2)
Log message:
p11-kit: Build fix for older Darwin.
   2018-07-13 13:21:29 by Patrick Welche | Files touched by this commit (1)
Log message:
reallocarray exists in NetBSD's libc, so AC_CHECK_LIB will find it.
For some reason it is hidden in stdlib.h by _OPENBSD_SOURCE, so add
that to p11-kit's Makefile to avoid coredumps. Fixes PR pkg/53426.
   2018-07-06 17:33:39 by Patrick Welche | Files touched by this commit (6) | Package updated
Log message:
Update p11-kit to 0.23.12

0.23.12 (stable)
 * Fix compile error when PKCS#11 GNU calling convention is enabled [PR#160]
 * Fix getauxval() and secure_getenv() emulation on macOS and FreeBSD [PR#167]
 * Build and test fixes on macOS [PR#162, PR#168]

0.23.11 (stable)
 * trust: Add extractor for edk2/cacerts.bin [PR#139]
 * modules: Add option to control module visibility from proxy [PR#140]
 * trust: Prevent trust module being loaded by proxy module [PR#142]
 * library: Use dedicated locale object for printing error [PR#148]
 * Treat CKR_CRYPTOKI_ALREADY_INITIALIZED correctly [PR#134]
 * Improve const correctness for P11KitUri [PR#152]
 * PKCS#11 URI scheme comparison is now case insensitive [PR#156]
 * Build and test fixes [PR#151, PR#149, PR#141, PR#138, PR#135]
   2018-04-18 02:46:25 by Amitai Schleier | Files touched by this commit (2)
Log message:
Fix PLIST on Darwin.
   2018-04-17 15:26:15 by Thomas Klausner | Files touched by this commit (8) | Package updated
Log message:
p11-kit: update to 0.23.10.

This is a development release, but gnutls needs at least 0.23.x,
so take the latest development release.

0.23.10 (devel)
 * filter: Respect "write-protected" vendor-specific attribute in
   PKCS#11 URI [PR#129]
 * server: Improve shell integration and documentation [PR#107, PR#108]
 * proxy: Reuse existing slot ID mapping in after fork() [PR#120]
 * trust: Forcibly mark "Default Trust" read-only [PR#123]
 * New function p11_kit_override_system_files() which can be used for
   testing [PR#110]
 * trust: Filter out duplicate extensions [PR#69]
 * Update translations [PR#128]
 * Bug fixes [PR#125, PR#126]

0.23.9 (devel)
 * Fix p11-kit server regressions [PR#103, PR#104]
 * trust: Respect anyExtendedKeyUsage in CA certificates [PR#99]
 * Build fixes related to reallocarray [PR#96, PR#98, PR#100]

0.23.8 (devel)
 * Improve vendor query attributes handling in PKCS#11 URI [PR#92]
 * Add OTP and GOST mechanisms to pkcs11.h [PR#90, PR#91]
 * New envvar P11_KIT_NO_USER_CONFIG to stop looking at user
   configurations [PR#87]
 * Build fixes for Solaris and 32-bit big-endian platforms [PR#81, PR#86]

0.23.7 (devel)
 * Fix memory issues with "p11-kit server" [PR#78]
 * Build fixes [PR#77 ...]

0.23.6 (devel)
 * Port "p11-kit server" to Windows and portability fixes of the RPC
   protocol [PR#67, PR#72, PR#74]
 * Recover the old behavior of "trust anchor --remove" [PR#70, PR#71]
 * Build fixes [PR#63 ...]

0.23.5 (devel)
 * Fix license notice of common/unix-peer.c [PR#58]
 * Remove systemd unit files for now [PR#60]
 * Build fixes for FreeBSD [PR#56]

0.23.4 (devel)
 * Recognize query attributes defined in PKCS#11 URI (RFC7512) [PR#31,
   PR#37, PR#52]
 * The trust policy module now recognizes CKA_NSS_MOZILLA_CA_POLICY
   attribute, used by Firefox [#99453, PR#46]
 * Add 'trust dump' command to dump all PKCS#11 objects in the
   persistence format [PR#44]
 * New experimental 'p11-kit server' command that allows PKCS#11
   forwarding through a Unix domain socket.  A client-side module
   p11-kit-client.so is also provided [PR#15]
 * Add systemd unit files for exporting the proxy module through a
   Unix domain socket [PR#35]
 * New P11KitIter API to iterate over slots, tokens, and modules in
   addition to objects [PR#28]
 * libffi dependency is now optional [PR#9]
 * Build fixes for FreeBSD, macOS, and Windows [PR#32, PR#39, PR#45]

0.23.3 (devel)
 * Install private executables in libexecdir [#98817]
 * Fix link error of proxy module on macOS [#98022]
 * Use new PKCS#11 URI specification for URIs [#97245]
 * Support x-init-reserved argument of C_Initialize() in remote modules [#80519]
 * Incorporate changes from PKCS#11 2.40 specification
 * Bump libtool library version
 * Documentation fixes
 * Build fixes [#87192 ...]

0.23.2 (devel)
 * Fix forking issues with libffi [#90289 ...]
 * Updated translations
 * Build fixes [#90827 #89081 #92434 #92520 #92445 #92551 #92843 #92842 #92807 \ 
#93211 ...]

0.23.1 (devel)
 * Use new PKCS#11 URI draft fields for URIs [#86474 #87582]
 * Add pem-directory-hash extract format
 * Build fixes