ESAPI-C 1.0
The OWASP Enterprise Security API for C

Todo List

File access_ref.c

To support more than one reference map per process, remove the global map_t variables and change all functions to take a parameter that is an array of two map_t handles.

The put function should be replaced by an add function that take only a value param (plus the map).

esapi_fill_random_token() does not really need an ESAPI context parameter, but its signature asks for one.

File canonicalize.c

This module is unfinished. When it is fixed, OS command shell encoding can be performed by esapi_execute().

If it is feasible, the Base64 encoding module could be refactored into a Base64 codec.

Global decrypt_and_verify (struct esapi_ctx *ctx, void *msg, int len)
Implement.

Global encrypt_and_sign (struct esapi_ctx *ctx, void *msg, int len)
Implement.

Global esapi_verify_signature (struct esapi_ctx *, void *, int, gcry_sexp_t *)
Fix to pass valid gcry_sexp_t parameters.

Global VAL_LEN
Change to support dynamically sized values.
 All Data Structures Files Functions Variables Typedefs Defines