=== gnome-keyring 2.25.91 ===

2009-02-14  Stef Walter  <stef@memberwebs.com>

	* configure.in: 
	* NEWS: 
	* gcr/tests/unit-test-certificate.c: Release version 2.25.91

2009-02-14  Stef Walter  <stef@memberwebs.com>

	* daemon/ui/gkr-ask-tools.c: Add strings for fixing of bug #571423
	
2009-02-14  Magnus Boman  <captain.magnus@gmail.com>

	reviewed by: Stef Walter

	* daemon/ui/gkr-ask-tool.c (create_markup), (run_dialog):
	Bug #570295, Correctly escape markups. Patch by Joe Shaw

2009-02-13  Stef Walter  <stef@memberwebs.com>

	* egg/egg-asn1.c:
	* egg/egg-asn1.h:
	* egg/egg-oid.c: (added)
	* egg/egg-oid.h: (added)
	* egg/Makefile.am:
	* egg/tests/unit-test-asn1.c:
	* egg/tests/unit-test-oid.c: (added)
	* egg/tests/Makefile.am:
	* gcr/gcr-certificate-details-widget.c: Pull out OID information 
	functionality into it's own file. 
	
	* gcr/tests/ui-test-details.c: Change to right directory so we can 
	easily find test certificates.
	
	* gcr/gcr-certificate-details-widget.c: Fill in key and signature
	algorithms and parameters.
	
	* gcr/gcr-certificate.c:
	* gcr/gcr-certificate.h:
	* gcr/gcr-certificate-details-widget.c: Fill in the key size field.
	
	* egg/egg-oid.c: Fill in the OID descriptions for RSA and DSA stuff.
	
	* gcr/tests/ui-test-details.c: Allow loading any DER certificate file.
	
	* gcr/gcr-certificate-details-widget.c: Show extensions as in hex form.
	No parsing of extensions yet.
	
	* gcr/gcr-certificate-details-widget.c: Don't show horizontal scrollbar.
	
2009-02-13  Stef Walter  <stef@memberwebs.com>

	* gcr/gcr-certificate-basics-widget.c: Show the correct MD5 hash
	in certificate basics dialog. Patch by Fabrizio Tarizzo. Fixes bug #567769
	
	* egg/egg-hex.c:
	* egg/egg-hex.h:
	* egg/tests/unit-test-hex.c:
	* gcr/gcr-certificate-details-widget.c: Allow specifying the delemiter
	and case of hex encodings.
	
	* gcr/gcr-certificate.c: Use more readable upper case space delemited
	hex encoding for the fingerprint.

2009-02-13  Stef Walter  <stef@memberwebs.com>

	 * daemon/gkr-daemon-io.c:
	 * daemon/gkr-daemon.c:
	 * daemon/keyrings/gkr-keyring.c:
	 * daemon/ui/gkr-ask-tool.c:
	 * egg/egg-buffer.h:
	 * egg/egg-secure-memory.c:
	 * egg/egg-secure-memory.h:
	 * gcr/gcr-library.c:
	 * library/gnome-keyring-memory.c:
	 * library/gnome-keyring-proto.c:
	 * pam/gkr-pam-stubs.c:
	 * pkcs11/gck/gck-data-types.h:
	 * pkcs11/roots-store/gck-roots-standalone.c:
	 * pkcs11/rpc-layer/gck-rpc-module.c:
	 * pkcs11/ssh-agent/gck-ssh-agent-standalone.c:
	 * pkcs11/ssh-store/gck-ssh-standalone.c:
	 * pkcs11/user-store/gck-user-standalone.c:
	 * tests/gtest-helpers.c:
	 * tests/test-helpers.c: Use size_t and gsize for memory sizes rather
	 than unsigned long. Fixes bug #571615
	 
	 * egg/egg-secure-memory.c: Don't allow allocating zero bytes.
	 
	 * egg/egg-buffer.c: Don't try and allocate 0 bytes when changing 
	 allocator on an empty buffer.

2009-02-11  Stef Walter  <stef@memberwebs.com>

	* egg/egg-secure-memory.c: Remove non-useful mincell structure
	element from sub allocator.
	
	* egg/egg-secure-memory.c: Remove FORCE_MALLOC_MEMORY define. It seems
	we can accomplish the identical goal with FORCE_FALLBACK_MEMORY.
	
	* egg/egg-secure-memory.c: Calculate memory header size at compile time.
	
	* egg/egg-secure-memory.c: Remove unused field.
	
	* egg/egg-secure-memory.c: Be much stricter about checking pointers and
	sizes being passed around.
	
	* egg/egg-secure-memory.c: Completely overhaul the secure memory allocator.
	Don't store metadata inside the secure memory area. Add memory guards, so 
	that we can see if/when memory is incorrectly overflown. 
	
2009-02-11  Stef Walter  <stef@memberwebs.com>

	* gcr/gcr-certificate-basics-widget.h:
	* gcr/gcr-certificate-details-widget.h:
	* gcr/gcr-certificate.h:
	* gcr/gcr-import-dialog.h:
	* gcr/gcr-importer.h:
	* gcr/gcr-parser.h:
	* gcr/gcr-simple-certificate.h:
	* gcr/gcr-types.h: Add G_BEGIN_DECLS/G_END_DECLS to gcr headers.

2009-02-10  Xan Lopez  <xan@gnome.org>

	Bug 571194 -G_BEGIN_DECLS/G_END_DECLS missing from headers

	* library/gnome-keyring.h:
	* library/gnome-keyring-memory.h:

	Add G_BEGIN_DECLS/G_END_DECLS so the library can be used with a
	C++ compiler.

2009-02-10  Stef Walter  <stef@memberwebs.com>

	* gcr/gcr.pc.in: Correct pkg-config for the gp11 dependency.

2009-02-09  Stef Walter  <stef@memberwebs.com>

	* pkcs11/gck/gck-module.c: Remove two useless unused class members.
	
	* pkcs11/gck/gck-module.c: 
	* pkcs11/gck/gck-module.h: 
	* pkcs11/roots-store/gck-roots-module.c: 
	* pkcs11/ssh-store/gck-ssh-module.c:
	* pkcs11/user-store/gck-user-module.c: Allow dynamically changing the 
	slot info and token info.
	
	* pkcs11/roots-store/gck-roots-module.c: 
	* pkcs11/ssh-store/gck-ssh-module.c:
	* pkcs11/user-store/gck-user-module.c: Set the serial numbers to something
	more maintainable, since we use them for looking up passwords.
	
	* daemon/pkcs11/gkr-pkcs11-auth-ep.c: Correlate state correctly between
	prompt and done function.
	
	* pkcs11/user-store/gck-user-module.c:
	* pkcs11/user-store/gck-user-storage.c:
	* pkcs11/user-store/gck-user-storage.h: Dynamically update the state which 
	allows us to prompt for a password for a new token.	
	
2009-02-08  Stef Walter  <stef@memberwebs.com>

	* pkcs11/gck/gck-data-der.c: Make output of RSA keys and PKCS8
	more interoperable.
	
	* pkcs11/gck/gck-transaction.c: Fix problem not deleting temporary
	files after doing a transaction write.
	
2009-02-08  Stef Walter  <stef@memberwebs.com>

	* daemon/gkr-daemon-ops.c:
	* daemon/pkcs11/gkr-pkcs11-auth.c:
	* gcr/gcr-importer.c: Add translator comments. Fixes bug #570529
	
2009-02-08  Stef Walter  <stef@memberwebs.com>

	* daemon/data/gnome-keyring.schemas: Remove gconf schema for loading
	of PKCS#11 modules. See mailing list.

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* pkcs11/gck/gck-certificate.c:
	* pkcs11/gck/gck-certificate.h:
	* pkcs11/gck/gck-module.c:
	* pkcs11/gck/gck-private-key.c:
	* pkcs11/gck/gck-private-key.h:
	* pkcs11/gck/gck-public-key.c:
	* pkcs11/gck/gck-public-key.h:
	* pkcs11/user-store/gck-user-module.c:
	* pkcs11/user-store/gck-user-private-key.c:
	* pkcs11/user-store/gck-user-private-key.h:
	* pkcs11/user-store/gck-user-public-key.c:
	* pkcs11/user-store/gck-user-public-key.h: Create proper factories
	for storable objects and certificate.
	
	* gcr/gcr-importer.c: CKA_TOKEN is a CK_BBOOL not a CK_ULONG
	
	* gcr/gcr-library.c: Setup automatically log into token, and pool sessions.
	
	* pkcs11/user-store/gck-user-storage.c: Initialize fd members properly.
	
	* pkcs11/user-store/gck-user-storage.c: Don't try to load objects that we add 
	to the store ourselves.
	
	* pkcs11/user-store/gck-user-private-key.c: Properly initialize new token
	private keys, so that they can be saved.
	
	* pkcs11/user-store/gck-user-storage.c: Don't add a dash to the front of 
	the identifiers of stored objects.

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* gp11/Makefile.am: Fix problem with not distributing pkcs11.h

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* HACKING: Update after refactoring with new info about parts
	
2009-02-07  Stef Walter  <stef@memberwebs.com>

	* common/Makefile.am:
	* common/gkr-location.c:
	* common/tests/Makefile.am:
	* daemon/Makefile.am:
	* daemon/gkr-daemon-dbus.c:
	* egg/Makefile.am:
	* egg/egg-dbus.c (moved from common/gkr-dbus.c):
	* egg/egg-dbus.h (moved from common/gkr-dbus.h): Move the 
	general dbus code into our egg folder.  

	* common/gkr-daemon-util.c -> daemon/gkr-daemon-util.c:
	* common/gkr-daemon-util.h -> daemon/gkr-daemon-util.h:
	* common/Makefile.am:
	* daemon/Makefile.am:
	* daemon/gkr-daemon-dbus.c:
	* daemon/gkr-daemon-io.c:
	* daemon/gkr-daemon-ops.c:
	* daemon/gkr-daemon-util.c:
	* daemon/gkr-daemon-util.h:
	* daemon/gkr-daemon.c:
	* daemon/pkcs11/gkr-pkcs11-daemon.c:
	* daemon/ui/gkr-ask-daemon.c: Move gkr-daemon-util code from 
	common into daemon since that's where it's used.

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* daemon/gkr-daemon.c:
	* egg/Makefile.am:
	* egg/tests/unit-test-symkey.c:
	* gcr/gcr-library.c:
	* pkcs11/gck/gck-crypto.c:
	* egg/egg-libgcrypt.c: (added)
	* egg/egg-libgcrypt.h: (added) Centralize the way that libgcrypt
	is initialized from our code, so the different components don't
	step on each other's toes.

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* configure.in:
	* daemon/pk/*: (deleted)
	* daemon/pkix/*: (mostly deleted)
	* daemon/Makefile.am: Removed all old 'pkix' stuff since it's now 
	implemented in the modular gck components. Also remove most of the 
	'pk' stuff. Only leaving behind the last few things we need to 
	refactor.
	
	* common/gkr-crypto.c: (deleted)
	* common/gkr-crypto.h: (deleted)
	* common/gkr-id.c: (deleted)
	* common/gkr-id.h: (deleted)
	* common/Makefile.am:
	* common/tests/unit-test-unique.c: (deleted)
	* common/tests/Makefile.am:
	* daemon/gkr-daemon.c: Remove more unused code. 

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* pkcs11/gck/Makefile.am:
	* pkcs11/gck/gck-certificate-trust.c:
	* pkcs11/gck/gck-certificate-trust.h:
	* pkcs11/gck/gck-certificate.c:
	* pkcs11/gck/gck-certificate.h:
	* pkcs11/gck/gck-types.h:
	* pkcs11/roots-store/gck-roots-certificate.c:
	* pkcs11/roots-store/gck-roots-certificate.h:
	* pkcs11/roots-store/gck-roots-module.c: Implement netscape trust 
	in roots-store, so that we can have Root CA certificates trusted
	by NSS programs.

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* pkcs11/gck/gck-data-der.c:
	* pkcs11/gck/tests/test-data/test-certificate-2.der: (added)
	* pkcs11/gck/tests/unit-test-data-der.c: Enable key usage and enhanced
	usage parsing, and build tests for them. 
	
	* pkcs11/gck/tests/test.asn: Fix MPI ASN.1 test
	
	* gp11/pkcs11g.h:
	* daemon/pk/gkr-pk-cert.c:
	* daemon/pk/gkr-pk-netscape-trust.c:
	* daemon/pk/gkr-pk-util.c:
	* daemon/pk/tests/unit-test-pk-cert.c: Remove the trust bits since 
	they're very ambiguous and not necessary.

	* pkcs11/user-store/gck-user-module.c: Call base class in login and 
	logout methods so all the sessions are marked with appropriate state.
	
	* pkcs11/rpc-layer/gck-rpc-message.c:
	* pkcs11/rpc-layer/gck-rpc-module.c: Use 64 bit integers when 
	transferring ulongs between module and daemon.
	
	* pkcs11/gck/gck-attributes.c: Return -1 when an attribute buffer
	was provided but too small. Correct according to PKCS#11. 

	* gp11/Makefile.am:
	* gp11/pkcs11.h:
	* pkcs11/Makefile.am: We should only have one pkcs11.h header.
	
	* pkcs11/pkcs11.h: More fixes for 64-bit ulongs.	
	
2009-02-07  Stef Walter  <stef@memberwebs.com>

	* gcr/Makefile.am: Add GTK library dependency in libgcr.
	See bug #570393
	
	* pkcs11/gck/Makefile.am:
	* pkcs11/roots-store/Makefile.am:
	* pkcs11/ssh-store/Makefile.am:
	* pkcs11/user-store/Makefile.am: Link libegg into gck where 
	it's actually used. See bug #568406

2009-02-07  Stef Walter  <stef@memberwebs.com>

	* egg/egg-secure-memory.c: Fix problems with clearing
	out entire memory block when allocating memory, and 
	then reallocating it. 
	
	* egg/tests/unit-test-secmem.c: Use more portable construct
	for signifying invalid memory in a test.
	
	* gp11/tests/unit-test-gp11-attributes.c: Fix problem not 
	specifying size correctly when using varargs in tests.
	
	* gp11/tests/unit-test-gp11-slot.c: Don't use freed memory
	in test.
	
	* gp11/tests/unit-test-gp11-session.c: Use properly sized variable
	to store handle in the test.
	
	* gp11/tests/unit-test-gp11-object.c: Use varargs properly.

2009-02-05  Thomas H.P. Andersen  <phomes@gmail.com>

	* pkcs11/rpc-layer/gck-rpc-private.h:
	* egg/tests/unit-test-symkey.c:
	* egg/tests/unit-test-openssl.c:
	* egg/egg-openssl.c:
	* gp11/tests/gp11-test-module.c: Fix warnings from -Wold-style-declaration. 
	Fixes bug #570652

2009-02-02  Stef Walter  <stef@memberwebs.com>

	* configure.in: Bump version number