luc14n0/glib
1
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/glib.git synced 2025-02-23 02:32:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
30,547 Commits 298 Branches 584 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Colin Walters 3ef71255bb Add a gnutls backend for GHmac 
For RHEL we want apps to use FIPS-certified crypto libraries,
and HMAC apparently counts as "keyed" and hence needs to
be validated.

Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1630260
Replaces: https://gitlab.gnome.org/GNOME/glib/merge_requests/897

This is a build-time option that backs the GHmac API with GnuTLS.
Most distributors ship glib-networking built with GnuTLS, and
most apps use glib-networking, so this isn't a net-new library
in most cases.

=======================================================================

mcatanzaro note:

I've updated Colin's original patch with several enhancements:

Implement g_hmac_copy() using gnutls_hmac_copy(), which didn't exist
when Colin developed this patch.

Removed use of GSlice

Better error checking in g_hmac_new(). It is possible for
gnutls_hmac_init() to fail if running in FIPS mode and an MD5 digest is
requested. In this case, we should return NULL rather than returning a
broken GHmac with a NULL gnutls_hmac_hd_t. This was leading to a later
null pointer dereference inside gnutls_hmac_update(). Applications are
responsible for checking to ensure the return value of g_hmac_new() is
not NULL since it is annotated as nullable. Added documentation to
indicate this possibility.

Properly handle length -1 in g_hmac_update(). This means we've been
given a NUL-terminated string and should use strlen(). GnuTLS doesn't
accept -1, so let's call strlen() ourselves.

Crash the application with g_error() if gnutls_hmac() fails for any
reason. This is necessary because g_hmac_update() is not fallible, so we
have no way to indicate error. Crashing seems better than returning the
wrong result later when g_hmac_get_string() or g_hmac_get_digest() is
later called. (Those functions are also not fallible.) Fortunately, I
don't think this error should actually be hit in practice.

https://gitlab.gnome.org/GNOME/glib/-/merge_requests/903
2024-07-19 11:55:37 +01:00
.gitlab-ci
replace package.version.Version by internal code
2024-07-04 11:04:38 +00:00
.reuse
reuse: License all .gitignore files as CC0-1.0 (public domain)
2024-04-17 15:32:42 +01:00
docs
docs(GNode): Traversal diagrams, color & dark-mode
2024-07-15 15:58:45 +00:00
fuzzing
gthreadedresolver: Move private testing symbols to a private header
2024-02-09 10:05:56 +00:00
gio
gio/appinfo: Directly link GdkAppLaunchContext
2024-07-11 16:23:06 +01:00
girepository
introspection: Correct GIO-Windows pkg-config name
2024-07-17 16:28:34 +08:00
glib
Add a gnutls backend for GHmac
2024-07-19 11:55:37 +01:00
gmodule
gmodule: skip local-binding test on Windows
2024-07-11 00:47:42 -04:00
gobject
Merge branch 'wsign-conversion' into 'main'
2024-07-04 12:33:38 +00:00
gthread
docs: spelling and grammar fixes
2024-04-01 11:01:06 +00:00
LICENSES
girepository: Add remaining license/copyright SPDX headers
2023-10-25 17:12:25 +01:00
m4macros
m4macros: drop unused m4 files
2023-07-30 17:03:07 +04:00
po
Update Slovenian translation
2024-06-14 20:10:04 +00:00
subprojects
docs: Add initial support for using gi-docgen for docs
2023-10-11 14:01:28 +01:00
tests
tests: Update the reuse lint limits
2024-04-17 15:47:02 +01:00
tools
Introspection: Fix running g-ir-scanner 1.80.x+ on Windows
2024-05-17 18:37:32 +08:00
.clang-format
CI: Code check formating in CI
2019-11-21 14:03:01 -06:00
.dir-locals.el
Add .dir-locals.el to tell Emacs users not to use tabs for C
2012-07-30 04:09:08 -04:00
.editorconfig
docs: Add .editorconfig file
2021-10-28 14:47:53 +01:00
.gitignore
docs: Move INSTALL.in to INSTALL.md
2022-05-11 13:02:49 +01:00
.gitlab-ci.yml
replace package.version.Version by internal code
2024-07-04 11:04:38 +00:00
.gitmodules
ci: Update git paths to reflect new GitLab URI
2022-11-02 16:49:51 +00:00
.lcovrc
build: Ignore branches in g_clear_*() functions under lcov
2024-01-18 13:06:10 +00:00
CODE_OF_CONDUCT.md
docs: Update Code of Conduct URI
2024-04-12 20:36:29 +01:00
CONTRIBUTING.md
ci: Use meson compile rather than bare ninja
2023-08-16 13:07:05 +01:00
COPYING
docs: Add all used licenses in a REUSE-compatible directory
2022-05-17 17:23:34 +01:00
glib.doap
DOAP: Link to GitLab Issues instead of New Issue URL
2024-05-20 17:36:29 +02:00
INSTALL.md
docs: Document issue and merge request triaging and review guidelines
2023-06-29 16:50:00 +01:00
meson.build
Add a gnutls backend for GHmac
2024-07-19 11:55:37 +01:00
meson.options
Add a gnutls backend for GHmac
2024-07-19 11:55:37 +01:00
NEWS
2.81.0
2024-06-28 12:25:56 +01:00
README.md
Expand security policy to cover previous stable branch
2023-10-03 09:12:37 +01:00
SECURITY.md
Expand security policy to cover previous stable branch
2023-10-03 09:12:37 +01:00

README.md

GLib

GLib is the low-level core library that forms the basis for projects such as GTK and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system.

The official download locations are: https://download.gnome.org/sources/glib

The official web site is: https://www.gtk.org/

Installation

See the file INSTALL.md. There is separate and more in-depth documentation for building GLib on Windows.

Supported versions

Upstream GLib only supports the most recent stable release series, the previous stable release series, and the current development release series. All older versions are not supported upstream and may contain bugs, some of which may be exploitable security vulnerabilities.

See SECURITY.md for more details.

Documentation

API documentation is available online for GLib for the:

Discussion

If you have a question about how to use GLib, seek help on GNOMEs Discourse instance. Alternatively, ask a question on StackOverflow and tag it glib.

Reporting bugs

Bugs should be reported to the GNOME issue tracking system. You will need to create an account for yourself. You may also submit bugs by e-mail (without an account) by e-mailing incoming+gnome-glib-658-issue-@gitlab.gnome.org, but this will give you a degraded experience.

Bugs are for reporting problems in GLib itself, not for asking questions about how to use it. To ask questions, use one of our discussion forums.

In bug reports please include:

  • Information about your system. For instance:
    • What operating system and version
    • For Linux, what version of the C library
    • And anything else you think is relevant.
  • How to reproduce the bug.
    • If you can reproduce it with one of the test programs that are built in the tests/ subdirectory, that will be most convenient. Otherwise, please include a short test program that exhibits the behavior. As a last resort, you can also provide a pointer to a larger piece of software that can be downloaded.
  • If the bug was a crash, the exact text that was printed out when the crash occurred.
  • Further information such as stack traces may be useful, but is not necessary.

Contributing to GLib

Please follow the contribution guide to know how to start contributing to GLib.

Patches should be submitted as merge requests to gitlab.gnome.org. If the patch fixes an existing issue, please refer to the issue in your commit message with the following notation (for issue 123):

Closes: #123

Otherwise, create a new merge request that introduces the change. Filing a separate issue is not required.

Description
Low-level core library that forms the basis for projects such as GTK+ and GNOME.
Readme 116 MiB
Languages
C 95.3%
Python 2.3%
Meson 1.3%
Objective-C 0.3%
Shell 0.2%
Other 0.5%