-
Notifications
You must be signed in to change notification settings - Fork 1
/
ChangeLog
626 lines (438 loc) · 23.8 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
2021-05-07 Omar A. Herrera Reyna <[email protected]>
* *.c: Fixed unused-but-set variable warnings; fixed libmicrohttpd conversion
warnings.
* db.c, db.h, configure.ac: Deleted local sqlite source code copy and made
changes to look for and include sqlite3 header files and libraries
2019-07-26 Omar A. Herrera Reyna <[email protected]>
* crypto.c, engine_admin.c: Fixed several issues with compatibility adjustments
for OpenSSL 1.1.x (...CTX_new(), ... CTX_free()).
2019-07-25 Omar A. Herrera Reyna <[email protected]>
* crypto.c (...Init, ...Final): Fixed compatibility problems with
OpenSSL 1.1.x by using recommended functions (...CTX_new(), ... CTX_free()).
* db.c (cmeDBOpen): fixed closing non-existent database when run the
first time without test files.
* web_interface.c: Replaced obsolete functions in libmicrohttpd calls.
* ./sqlite/*: Updated SQLITE3 to latest version.
2012-07-21 Omar A. Herrera Reyna <[email protected]>
* engine_admin.c (cmeSetupEngineAdminDBs): Modified LogsDB structure
so that we can log useful/available transaction information for each
request.
* engine_admin.c (IDD): checked and updated IDD compatibility
versions.
* engine_admin.c (cmeWebServiceCheckPermissions): Fixed error codes
(now returns 403 Forbidden to indicate that user priviledges for the
requested action couldn't be confirmed, even if the user was
authenticated).
* common.h (cmeIDDLogsDBTransactions): Added Internal Database
Definitions for table transactions in LogsDB database.
* common.h (cmeWSHTTPMaxResponseHeaders): Added Max. number of
response headers to be parsed by cmeWebServiceParseKeys().
* common.h (cmeWSMsgTransactionClassOptions): Added default options
message for transaction Class.
* webservice_interface.c webservice_interface.h
(cmeWebServiceLogRequest): Added function to log connection
information to LogsDB
* webservice_interface.c webservice_interface.h
(cmeWebServiceLogConnection): Added wrapper function for
cmeWebServiceLogRequest to prepare parameters for transaction
logging
* webservice_interface.c webservice_interface.h
(cmeWebServiceProcessTransactionClass): Added web service to process
transaction class requests.
* webservice_interface.c (cmeWebServiceParseKeys): Added routine to
process HTTP Response headers.
* webservice_interface.c (cmeWebServiceProcessRequest): included
cmeWebServiceProcessTransactionClass in the web services list.
* webservice_interface.c (cmeWebServiceProcessRequest): Fixed web
service requests processing order, so that powerStatus is checked at
the right time.
* webservice_interface.c (cmeWebServiceConfirmUserId,
cmeWebServiceConfirmOrgId): fixed authorization phase, so that the
system consistently returns 403 Forbidden error to indicate
authorization failure (different from authentication errors, which
are notified using 401 Authentication errors).
* engine_interface.c engine_interface.h
(cmeGetUnprotectDBTransactions): Added function to unprotect DB
transaction registers (i.e. Logs)
* README (resource hierarchy, examples, parameters): Updated information to
reflect transaction resource class processing capabilities (ie.
Logs).
2012-06-30 Omar A. Herrera Reyna <[email protected]>
* configure.ac (HARDEN_CFLAGS,HARDEN_LDFLAGS): added support
checking routines for compiler and linker hardening parameters.
* configure.ac (DEBUG): inverted the default mode to RELEASE, and
changed configure parameter to --enable-DEBUG.
2012-06-20 Omar A. Herrera Reyna <[email protected]>
* strhandling.c (cmeHexstrToBytes): Replaced isalnum() with isxdigit
to ensure that only valid hexadecimal string representations are
processed.
* crypto.c (cmePBKDF): Replaced hardcoded buffer length in PBKDF2
with dynamic allocation, using the corresponding key length.
* crypto.c (cmePBKDF): Added fast PBKDF2 routine (one iteration) to
be used only if password is an hexadecimal representation of a byte
string of length >= cipher's keyspace.
* engine_admin.c (cmeSetupEngineAdminDBs): Modified function to use
the default cipher's key length as the length of the random key for
engineAdmin.
* webservice_interface.c (cmeWebServicePOSTIteration): Fixed
argument handling with multipart POST
2012-06-18 Omar A. Herrera Reyna <[email protected]>
* common.h (cmeWSMsgContenColumnsOptions) Added contentColumn
resource options.
* webservice_interface.c, webservice_interface.h
(cmeWebServiceProcessContentColumnResource): Added web service to
process contentColumn resource requests.
* webservice_interface.c (cmeWebServiceProcessContentClass): Fixed
error response when document is not found. Fixed handling of emty
tables (i.e. those with just column names but no rows).
* filehandling.c (cmeMemTableToSecureDB): Modified function to
handle new tables with just 1 column and 0 rows, so that POST
requests of contentColumn when the documentId is new are handled
correctly.
* db.c,db.h (cmeMemTableWithTableColumnNames): Added function to get
(in cmeResultMemTable) a string array of column names for table
tableName. This function uses SQLite's PRAGMA table_info(). It is
needed for tables with 0 rows since in that case SQLite returns also
0 columns.
* db.c,db.h (cmeSanitizeStrForSQL): Added function to sanitize input
that will be used in sql queries directly, to avoid sql injection
attacks. It does this by doubling any single quote found within the
input string.
* db.c,filehandling.c,engine_interface.c (cmeMemSecureDBUnprotect,
cmeMemSecureDBProtect, cmeDeleteSecureDB, cmePostProtectDBRegister,
cmePutProtectDBRegister, cmeCVSFileToSecureSQL, cmeMemTableToMemDB,
cmeMemTableToSecureDB): Modified functions to include sql injection
protection using cmeSanitizeStrForSQL, for sql query parameters
coming from protected data tables (e.g. table column names).
* db.c (cmeMemTableToMemDB, cmeMemTableShuffle): Added standard
cleanup macro and adjusted function flow accordingly.
* db.c (cmeSQLRows): replaced free cmeResultMemTable routine with a
call to cmeResultMemTableClean() (which does exactly the same).
* engine_interface.c (cmeSecureDBToMemDB): Fixed Memory leak
(queryResult was not freed after call).
* engine_interface.c (cmeDeleteUnprotectDBRegister): Fixed memory
segfault error and orphan file parts.
* engine_interface.c,engine_interface.h (cmeExistsDocumentId): Added
function to identify if a protected document (with corresponding
orgKey, orgId) exists in ResourcesDB (table documents) without
having to unprotect and load the whole document in memory (with
cmeSecureDBToMemDB. This should improve performance considerably;
closed corresponding TODO.
* engine_interface.c,filehandling.c (cmeDeleteSecureDB,
cmeCSVFileToSecureDB, cmeMemTableToSecureDB): Modified functions so
that they now use cmeExistsDocumentId instead of cmeSecureDBToMemDB
to check if a document exists (much faster).
* webservice_interface.c (SELECT * FROM data;): eliminated BEGIN
TRANSACTION; and COMMIT; from several select statements since they
were single statements and therefore it is not necessary to group
them.
2012-05-22 Omar A. Herrera Reyna <[email protected]>
* common.h (cmeMaxRAWDataInPart): Closed pending FIXME,
cmeMaxRAWDataInPart > evpBufferSize works fine.
* common.h (cmeWSMsgContenRowOptions): Added contentRow resource
options.
* common.h (cmeWSURIMaxArguments): Increased Max. number of URI
arguments from 32 to 512, so that contentRow parameters may fit in
a single call within a POST or PUT request).
* webservice_interface.c,webservice_interface.h
(cmeWebServiceProcessContentRowResource): Added web service to
process contentRow resource requests.
* engine_interface.c,engine_interface.h (cmeConstructContentRow):
Added function to construct new content rows based on row index
parameters (i.e. [<column_0_based_idx_gt_0>] or [<column_name>]).
* filehandling.c,filehandling.h (cmeMemTableToSecureDB): Added
function to convert a memory table into a secure DB (analogous to
cmeCSVFileToSecureDB).
* filehandling.c (cmeCSVFileToSecureDB): Fixed some comments;
eliminated value from local free() macro. Added a column name check
for 'id', to ensure that this name is reserved for internal
databases.
* function_tests.c (testCSV): Added test for cmeMemTableToSecureDB.
* *.c (local free() macro): Corrected sintaxis; added semicolon
after while (0).
* README (resource hierarchy): Updated status of {contentRow} and
fixed index level.
* README (): Added specifications and examples for {contentRow}
resource requests.
2012-05-08 Omar A. Herrera Reyna <[email protected]>
* crypto.c,crypto.h (cmeHMACInit,cmeHMACUpdate,cmeHMACFinal): Added
MAC wrapper functions.
* crypto.c,crypto.h (cmeHMACByteString): Added integrated function
to create HMAC MACs out of byte strings.
* crypto.c (cmeDigestByteString): Modified digestBytes to be
assigned dynamically EVP_MAX_MD_SIZE bytes and wiped after use,
instead of using a static buffer.
* crypto.c (cmeDigestLen): Added function to return the size of the
digest produced by the specified digest algorithm.
* main.c,function_tests.c,function_tests.h (testCryptoHMAC): Added
tests for HMAC functions.
* function_tests.c (testCryptoDigest_Str): Modified printed
messages, also changed fixed digest buffer length to use
EVP_MAX_MD_SIZE.
* common.h (cmeDefaultMACAlg): Added define for default id of digest
algorithm to be used by HMAC functions.
* common.h (cmeIDDResourcesDBDocuments_partMAC): Updated internal
database definitions to reflect the use of MAC instead of Hashes in
field names.
* common.h (cmeDefaultPBKDFCount): Incremented default value from
1,000 to 2,000 (RFC 2898 recommends at least 1000). Higher values
are safer but they have a huge impact on performance, since each
encrypted element has a different salt. Therefore, we need to
derive a key for encryptiting or decrypting each element with PBKDF.
* common.h (cmeInternalDBDefinitionsVersion): Updated internal
database definitions versions; included DB column names as defines.
This should ease future modifications and allows us to keep IDD
definitions in a single place.
* filehandling.c (cmeCSVFileToSecureDB,cmeRAWFileToSecureFile):
Replaced hashing functions with HMAC MAC functions; MACs of each
encrypted file part are stored where hashes were stored before.
* filehandling.c (cmeSecureFileToTmpRAWFile,cmeSecureDBToMemDB):
Added MAC verification of encrypted parts before decryption. Also
added some debug and error output.
* filehandling.c (cmeSecureDBToMemDB): Cleaned code and fixed sqlite
file closing at exit points, as well as memory allocation and
handling.
* webservice_interface.c,engine_admin.c (partMAC): Replaced
references to partHash in Internal Database Definitions with
partMAC. We will be using a MAC (after encryption) instead of just
plain hashes.
* db.c,filehandling.c: replaced references to hash db ids with
references to MAC db ids.
* engine_interface.c (cmePostProtectDBRegister,
cmeGetUnprotectDBRegisters,cmePutProtectDBRegisters,
cmeDeleteSecureDB,cmeDeleteUnprotectDBRegisters): Modified functions
so that protected value now consists of the concatenation of the MAC
of the encrypted value and the encrypted value (instead of just the
encrypted value). Also optimized result gathering by eliminating
double decryption while matching search patterns.
* engine_admin.c (cmeRegisterSecureDBorFile): Added MAC support and
fixed table shuffling and copying that takes place on insertion of
new registers
* INSTALL, README (orgKEy): changed the default key for TEST
database.
* configure.ac (AC_INIT): Updated version to 0.90.alpha
2012-05-01 Omar A. Herrera Reyna <[email protected]>
* filehandling.c (cmeFileOverwriteAndDelete): Changed error into
warning (debug) when the filepointer is null.
* filehandling.c (cmeFileOverwriteAndDelete): fixed error outputs.
Error logging should be done to stderr, not to stdout as debug
output.
* engine_interface.c (cmeGetUnprotectDBRegister): replaced
cmeUnprotectDBValue + manual salt skipping with
cmeUnprotectDBSaltedValue function, which skips the salt already in a
standardized way.
* engine_interface.c (cmeGetUnprotectDBRegister,
cmePutProtectDBRegister): Changed error output into warning (debug)
when cmeUnprotectDBSaltedValue fails.
* filehandling.c (cmeSecureFileToTmpRAWFile): fixed compiler warning
when calling fwrite without storing result.
* filehandling.c (cmeCSVFileToSecureDB): fixed compiler warning
"'totalParts' may be used uninitialized in this function".
* db.c (cmeMemSecureDBProtect): fixed warning "'cont2' may be used
uninitialized in this function".
* function_tests.c (testCryptoSymmetric): fixed compiler warning
when calling fwrite without storing result.
* webservice_interface.c (cmeWebServiceProcessEngineResource): fixed
compiler warning "'tmpPowerStatus' may be used uninitialized in this
function". This one might have actually caused some problems.
2012-04-23 Omar A. Herrera Reyna <[email protected]>
* common.h (prngSeedBytes,evpSaltBufferSize,cmeDefaultValueSaltLen):
Changed default settings to 16 bytes.
* common.h (cmeDefaultHshAlg): Changed default hash algorithm to
sha-512.
* common.h (cmeCopyright,cmeWSHTMLPageStart): Created Copyright
define and modified cmeWSHTMLPageStart notice to use it.
* common.h (cmeDefaultPBKDFCount): Created default count for the key
derivation function cmePBKDF.
* common.h (cmeDefaultPBKDFVersion): Added default PBKDF version.
* function_tests.c (testCSV): Changed attributesData to use
cmeDefaultEncAlg instead of the fixed algortihm string
"aes-128-cbc".
* function_tests.c (testCryptoSymmetric): Changed fixed tests with
"aes-256-cbc" to test the algorithm specified by cmeDefaultEncAlg.
* webservice_interface.c (cmeWebServiceProcessDocumentResource):
Changed attributesData to use cmeDefaultEncAlg instead of the fixed
algortihm string "aes-128-cbc".
* configure.ac (AC_INIT): Updated version to 0.89.alpha
* configure.ac (OLDPBKDF1): Added --enable parameter to use old
PBKDF v1 (PKCS5v.1.5) instead of PBKDF2 (PKCS5v2.0). PBKDF2 is now
the default.
* main.c: changed Copyright notice to use cmeCopyright define.
* main.c: Cleaned up some comments and added function to check that
cmeDefaultEncAlg is a supported algorithm.
* main.c: Added standard free macro.
* db.c (cmeMemSecureDBReintegrate): fixed pointer to unallocated
region in pointer packing loop.
* db.c (cmeMemSecureDBReintegrate, cmeMemSecureDBProtect,
cmeMemSecureDBUnprotect): Replaced calls to cmeProtectDBValue and
cmeUnprotectDBValue with calls to cmeProtectDBSaltedValue and
cmeUnprotectDBSaltedValue. This adds salts to values before
encryption within secure databases (i.e. protected csv files).
* crypto.c (cmeGetCipher): Fixed validation of encryption algorithm
id.
* crypto.c, crypto.h, function_tests.c (cmePBKDF): Renamed to
cmePBKDF the key derivation function (was cmePKCS5v15).
* crypto.c (cmePBKDF): Added and set as default PBKDF2 support.
* sqlite/: updated the included sqlite version to v.3.7.11.
* TEST/: updated test files and test DB (compatible with new PBKDF2
method)
* README (OLDPBKDF1): added information on configure parameter
--enable-OLDPBKDF1, which enables old PBKDF1 to be used instead of
PBKDF2 (which is now the default).
* README (IV. Architecture and functionality): updated status of
current PBKDF algorithm.
* README (orgKEy): updated the default key for the TEST database.
* INSTALL (orgKey): added the default credentials for the test
database directly in this file.
2012-03-30 Omar A. Herrera Reyna <[email protected]>
* crypto.c (cmeSeedPrng): Added some comments and a TODO, in
relation to randomness sources for seeding the PRNG.
* crypto.c (cmeCipherByteString): Made all references to the size of
the byte salt, relative to constant evpSaltBufferSize.
* common.h (cmeDefaultIDBytesLen): Added comment on the use of this
constant.
* common.h (cmeDefaultSecureDBSaltLen): Created a salt length
constant specific for meta and data salts within secure databases
(they were using cmeDefaultIDBytesLen, which is for a different
purpose: define the lenght of random file names for secured files
and databases).
* filehandling.c (cmeRAWFileToSecureFile): Cleaned up some
previously commented code.
*db.c (cmeMemSecureDBProtect): Replaced calls to cmePrngGetBytes() and
cmeBytesToHexstr() with a single call to cmeGetRndSaltAnySize();
also used cmeDefaultSecureDBSaltLen instead of cmeDefaultIDBytesLen.
2012-03-13 Omar A. Herrera Reyna <[email protected]>
* engine_admin.c (cmeWebServiceCheckPermissions): fixed some
comments.
* webservice_interface.c (cmeWebServiceProcessRequest): solved
FIXME, moved processing of cmeWebServiceProcessEngineResource after
authentication and authorization, validating engineCommands resource
class.
* webservice_interface.c (cmeWebServiceProcessEngineResource):
deleted redundant authorization checks.
* common.h (cmeWSMsgEngineOptions) fixed definition.
* db.c (cmeMemSecureDBReintegrate) deleted unused variable written2.
* README (engineCommands,setEnginePower) documented new
functionality to enable or disable a running engine
2012-03-07 Omar A. Herrera Reyna <[email protected]>
* db.c (cmeProtectDBSaltedValue,cmeProtectDBValue): replaced
cmeCipherByteString + cmeStrToB64 with the already existent wrapper
function cmeProtectByteString; simplify and improve clarity.
* db.c (cmeMemSecureDBProtect): replaced cmeCipherByteString +
cmeStrToB64 with the already existent wrapper function
cmeProtectDBValue; simplify and improve clarity.
* db.c (cmeMemSecureDBReintegrate): replaced cmeB64ToStr +
cmeCipherByteString with the already existent wrapper function
cmeUnprotectDBValue; simplify and improve clarity.
* db.c (cmeUnprotectDBSaltedValue,cmeUnprotectDBValue): replaced
cmeB64ToStr + cmeCipherByteString with the already existent wrapper
function cmeUnprotectByteString; simplify and improve clarity.
* db.c (cmeMemSecureDBProtect): added rndBytes to Free macro, for
consistency.
* db.h (cmeProtectDBValue,cmeUnprotectDBValue): solved TODO,
replaced cmeCipherByteString + B64 conversion function with wrapper
function; simplify and improve clarity.
* crypto.h: fixed/modified some comments.
* crypto.c (cmeProtectByteString,cmeUnprotectByteString): fixed and
standardized Free macros. Solved TODO, replaced cmeCipherByteString
with calls to cmeProtectByteString, cmeUnprotectByteString,
cmeProtectDBValue and cmeUnprotectDBValue.
* filehandling.c (cmeRAWFileToSecureFile); replaced
cmeCipherByteString + cmeStrToB64 with the already existent wrapper
function cmeProtectByteString; simplify and improve clarity. Also
added error logging.
* function_tests.c (testCryptoSymmetric): added tests for
cmeProtectByteString and cmeUnprotectByteString.
* Makefile: removed file from distribution.
2012-03-01 Omar A. Herrera Reyna <[email protected]>
* CaumeDSE: Tested the whole project against buffer overflows and
underflows by linking the debug version with the duma library and
gdb. No problems were found.
* README: cleaned up and fixed some typos.
* webservice_interface.c (cmeWebServiceRequestCompleted): solved
TODO; implemented file overwrite before delete for temporary files
(e.g. in secureTmp).
2012-02-28 Omar A. Herrera Reyna <[email protected]>
* webservice_interface.c filehandling.c: cleaned up and fixed some
comments/fprintfs.
* webservice_interface.c (cmeRAWFileToSecureFile): added
currentFilePartPath to cmeRAWFileToSecureFileFree for consistency
* engine_admin.c (cmeWebServiceSetup): reordered MHD_start_daemon
parameters for clarity.
2012-02-27 Omar A. Herrera Reyna <[email protected]>
* filehandling.c: cleaned up and fixed some comments.
* filehandling.c (cmeSecureFileToTmpRAWFile): deleted unused
variable resultMemTable. Solved TODO; added orgResourceId and
storageId checks and corresponding parameters.
* filehandling.h (cmeSecureFileToTmpRAWFile cmeCSVFileToSecureDB):
adjusted function call parameters.
* webservice_interface.c (cmeWebServiceProcessContentClass):
adjusted function call parameters for cmeSecureFileToTmpRAWFile.
* db.c db.h engine_admin.c engine_interface.c filehandling.c
webservice_interface.c function_test.c (cmeMemTable cmeSQLRows
cmeCSVFileToSecureDB): replaced pErrmsg/errMsg parameter with local
variable. SQLite3 Error msg handling will be done only within
cmeMemTable function.
2012-02-24 Omar A. Herrera Reyna <[email protected]>
* perl_interpreter.c (cmePerlParserCmdLineInit,
cmePerlParserInstruction): Disabled deallocation and reallocation
procedure for Perl interpreter on each execution to fix problems
with some Perl instances.
* config.log: deleted from distribution.
* configure.ac (GENERAL_CFLAGS RELEASE_CFLAGS DEBUG_CFLAGS): deleted
manual optimization flags. We'll go with the defaults (user can
override them with configure script anyway).
* configure.ac (echo): changed order of compiler paramters in
configure result printout, to reflect actual order and added
environment CFLAGS.
2012-02-23 Omar A. Herrera Reyna <[email protected]>
* README: Reformatted some paragraphs, corrected some spelling
errors and changed some wording.
* engine_admin.c (cmeWebServiceSetup): removed
MHD_USE_THREAD_PER_CONNECTION from HTTP configuration since we are
using a single thread (i.e. MHD_USE_SELECT_INTERNALLY, as in
HTTPS).
* common.h (cmeBypassTLSAuthenticationInHTTP): added define for
bypassing TLS authentication when non TLS sessions (e.g. HTTP) are
used. Value comes from BYPASS_TLS_IN_HTTP in config.h.
* webservice_interface.c (cmeWebServiceProcessRequest): Now skips
TLS authentication if no TLS session is available, and bypasses
(i.e. accepts) authentication if TLS authentication is required,
session is no HTTP and cmeBypassTLSAuthenticationInHTTP is 1.
* configure.ac (BYPASSTLSAUTHINHTTP BYPASS_TLS_IN_HTTP): included
enable parameter to allow TLS authentication bypasses for non TLS
sessions (e.g. for HTTP session testing).
* config.h (BYPASS_TLS_IN_HTTP): define included by configure.ac
* configure.ac (PERL): fixed perl check; autoreconf -i works again.
2012-02-22 Omar A. Herrera Reyna <[email protected]>
* configure.ac (PATH_DATADIR): Added C preprocessor define for
default data/system databases path, to be included in config.h.
* common.h (cmeDefaultFilePath, cmeDefaultSecureTmpFilePath,
cmeDefaultHTTPSKeyFile, cmeDefaultHTTPSCertFile,
cmeDefaultCACertFile, cmeAdminDefaultStoragePath): Set defines
relative to PATH_DATADIR from config.h, if available.
* common.h (cmeEngineVersion): Set define = PACKAGE_VERSION
from config.h, if available.
* README: Reformatted some paragraphs and corrected some spelling
errors
2012-02-21 Omar A. Herrera Reyna <[email protected]>
* configure.ac: New file, Autoconf template.
* Makefile.ac: New file, Automake template.
* NEWS: New file, placeholder for news.
* AUTHORS: New file, list of authors.
* ChangeLog: New file, list of changes.
* configure, compile, depcomp, missing, install-sh: New scripts from
Autotools.
2012-02-16 Omar A. Herrera Reyna <[email protected]>
* RELEASED first version 0.88.alpha
2012-09-02 Omar A. Herrera Reyna <[email protected]>
* RELEASED version 0.9.0 alpha
2018-01-18 Omar A. Herrera Reyna <[email protected]>
* RELEASED first stable version 1.0.1
* configure.ac, makefile.am: added gnutls library check and fixed
several compilation issues (embedded perl, automake options)
* README, *.c, *.h: updated version in comments
* sqlite/*: updated SQLite version
Copyright 2010 - 2018 Omar Alejandro Herrera Reyna
Copying and distribution of this file, with or without modification, are
permitted provided the copyright notice and this notice are preserved.