Frank Morgner
2e04fa99c1
fixed pointless array comparisons
2015-01-28 07:39:35 +01:00
Frank Morgner
6641cbf455
fixed potential string overflow
2015-01-24 20:17:26 +01:00
Frank Morgner
3f64d3a805
fixed bad memory allocation
2015-01-24 20:11:16 +01:00
Frank Morgner
f143d7b73e
Merge pull request #346 from frankmorgner/pkcs11provider
...
use OpenSC as default PKCS#11 provider
2015-01-20 23:43:48 +01:00
Andreas Schwier
3961275d8c
Allow user to overwrite SO-PIN when using PIN-PAD reader
2014-12-29 13:39:37 +01:00
Frank Morgner
291e9dab9e
use OpenSC as default PKCS#11 provider
...
closes #229
2014-12-19 22:27:34 +01:00
Frank Morgner
a2ba4d3bae
Merge pull request #319 from CardContact/add-sec-k-curves
...
sc-hsm: Add support for Koblitz curves secp192k1 and secp256k1 (Bitcoin)
2014-12-06 23:22:43 +01:00
Frank Morgner
4459e146c4
use util_get_pin in tools
2014-11-04 22:07:07 +01:00
Andreas Schwier
d014056f1d
sc-hsm: Add support for Koblitz curves secp192k1 and secp256k1 (Bitcoin)
2014-11-04 17:11:34 +01:00
Doug Engert
9a82a95132
Merge branch 'master' of github.com:OpenSC/OpenSC
2014-10-03 06:50:04 -05:00
Frank Morgner
5d6c4b391d
Merge pull request #253 from github-frankmorgner/remove-deadcode
...
card-asepcos: removed dead code
card-authentic: removed dead code
card-belpic: removed dead code
card-epass2003: removed dead code
card-flex: removed dead code
card-gpk: removed dead code
card-oberthur: removed dead code
card-piv: removed dead code
card-setcos: removed dead code
ctbcs: removed dead code
cwa14890: removed dead code
muscle: removed dead code
pkcs15-atrust-acos: removed dead code
pkcs15-gemsafeV1: removed dead code
pkcs15-skey: removed dead code
reader-ctapi: removed dead code
framework-pkcs15: removed dead code
pkcs11-object: removed dead code
pkcs15-asepcos: removed dead code
pkcs15-cardos: removed dead code
pkcs15-jcop: removed dead code
pkcs15-lib: removed dead code
pkcs15-oberthur: removed dead code
parse: removed dead code
sclex: removed dead code
sm-card-authentic: removed dead code
sm-card-iasecc: removed dead code
sm-cwa14890: removed dead code
sm-global-platform: removed dead code
sc-test: removed dead code
pkcs11-tool: removed dead code
pkcs15-tool: removed dead code
2014-09-07 21:22:43 +02:00
Doug Engert
2de38a1230
pkcs11-tool sets CKA_DECRYPT=true rather then CKA_DERIVE=true when generating EC keys ( #277 )
...
RSA and EC keys have different usage attributes. Appropriate attributes are set
When using --keypairgen the user can use the --usage-sign, --usage-decrypt,
and --usage-derive. to get finer control.
Changes to be committed:
modified: tools/pkcs11-tool.c
2014-08-26 09:59:40 -05:00
Henrik Andersson
1df8570a66
Add fence against using EVP_sha256 mech.
...
Which is only available in >=0.9.8
2014-05-14 22:11:25 +02:00
Frank Morgner
a64326e768
fixed compiler warnings (partially submitted)
...
Signed-off-by: Frank Morgner <morgner@informatik.hu-berlin.de>
PR-222: commit 0b567dbaa8
partially submitted by Viktor Tarasov
2014-05-03 21:47:15 +02:00
Nikos Mavrogiannopoulos
ba66459f33
When setting pointers to a template, ensure they do not get out of scope prior of being used.
...
This was causing issues when using pkcs11-tool with opencryptoki:
https://bugzilla.redhat.com/show_bug.cgi?id=1062307
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
2014-04-21 20:47:39 +02:00
Ludovic Rousseau
cdc379fa25
pkcs11-tool: check for buffer overflows
...
Check the subject, issuer and serialNumber will encode in the allocated
space before copying the data.
Thanks to Umberto Rustichelli for the bug report
https://sourceforge.net/p/opensc/mailman/message/32210626/
2014-04-10 16:40:12 +02:00
Viktor Tarasov
1775198ed7
pkcs11-tool: format object info output
2014-02-09 18:49:58 +01:00
Viktor Tarasov
687fdf2a60
pkcs11-tool: more token flags to display
2013-12-29 22:00:28 +01:00
Frank Morgner
1a65ed1ecf
use _setmode instead of _set_fmode in windows
...
now compiles with MinGW-w64
2013-07-10 17:05:17 +02:00
Viktor Tarasov
a24ecd0733
pkcs11-tool: ignore CRYPTOKI_ALREADY_INITIALIZED error
...
https://github.com/OpenSC/OpenSC/pull/118
Print warning and ignore 'Cryptoki library has already been initialized' error
returned by C_Initialize().
2013-03-10 13:45:32 +01:00
mescheryakov1
f55bb019d9
Update src/tools/pkcs11-tool.c
...
fixed filling key type attr on writing object
pointer refers to local variable from destroyed stack frame
2013-01-27 18:37:45 +01:00
sjoblomt
457426543d
MyEID ECDSA support
2012-12-03 14:37:13 +01:00
Anthony Foiani
f63135afab
tools: check return value after each call.
...
It seems that this suffered some copy and paste damage at some point.
Change so that we check each return value immediately after the API
call.
Signed-Off-By: Anthony Foiani <anthony.foiani@gmail.com>
2012-11-20 08:46:27 +01:00
Andreas Schwier
fba298c6f4
pksc11: Added ability to indicate hardware and firmware version information at PKCS#11 interface
2012-10-21 15:51:55 +02:00
Andreas Schwier
1619a42375
ecc: Adding more curves
2012-10-01 13:04:02 +02:00
Andreas Schwier
02fe6d474b
pkcs11-tool: Fixed issue with ID increment failing on constant data
2012-10-01 13:04:01 +02:00
Viktor Tarasov
628ead7e41
pkcs11-tool: suppress warnings about the missing attributes
...
when showing an object do not print warnings about missing 'uncommon' attributes
2012-09-24 11:51:04 +02:00
Viktor Tarasov
58b4304957
libopensc: 'init', 'format', 'compare', 'is-valid' OID procedures
...
In a reason of number of bugs(*) that concern the OID management,
the general usage OID procedures 'init', 'format', 'compare', 'is-valid' are introduced.
These procedures should be used by all actors: libopensc, pkcs15, pkcs11, tools, ....
(*)
This bug reported by Andreas Schwier :
8e75d971cb (commitcomment-1792477)
In pkcs15-algo sc_asn1_get_algorithm_info() can return the OID without ending '-1's:
https://github.com/OpenSC/OpenSC/blob/staging/src/libopensc/pkcs15-algo.c#L452
https://github.com/OpenSC/OpenSC/blob/staging/src/libopensc/pkcs15-algo.c#L459
2012-09-06 10:47:29 +02:00
Andreas Schwier
0fa6e7f977
pkcs11-tool: Added CKM_SHA256_RSA_PKCS to tests in test_signatures
2012-08-20 11:22:02 +02:00
Andreas Schwier
efb4673ec8
Revert change to pkcs11-tool because of upstream changes in RSA signature tests
...
Fixed a typo that went undetected
2012-08-20 11:22:02 +02:00
Viktor Tarasov
8e8acf1ff6
pkcs11-tool: implement 'find mechanism from the given list'
...
and use it when testing signature
2012-08-20 11:22:02 +02:00
Andreas Schwier
f678b68650
Activated ECDSA for SmartCard-HSM
...
Fixed issues in pkcs11-tool/test_signature is card has RSA and ECDSA keys
Fixed bug in sc_pkcs11_signature_size that returns the wrong ECDSA signature size
2012-08-20 11:22:02 +02:00
Viktor Tarasov
cb54ebf747
pkcs11: #371 : Public key create template should not include CKA_MODULUS_BITS
...
Thanks to 'z22' and Martin.
2012-08-16 16:00:35 +02:00
Viktor Tarasov
7e42c6d97d
pkcs11-tool: #407 : on Windows use O_BINARY open file mode
...
https://www.opensc-project.org/opensc/ticket/407
http://msdn.microsoft.com/en-us/library/ee2849wt%28v=VS.71%29.aspx
2012-08-15 23:15:06 +02:00
Viktor Tarasov
dfbc3996bf
pkcs11: #439 : 'SEQUENCE' of 'SET' issue when comparing cert attributes
...
Thanks to 'crank'.
https://www.opensc-project.org/opensc/ticket/439
Some pkcs11 callers (i.e. netscape) will pass in the ASN.1 encoded SEQUENCE OF SET,
while OpenSC just keeps the SET in the issuer/subject field.
2012-08-15 19:59:09 +02:00
Viktor Tarasov
25f7bc5ac5
pkcs11-tool: implement 'find mechanism from the given list'
...
and use it when testing signature
2012-08-13 11:34:01 +02:00
Viktor Tarasov
2cff47d9b3
pkcs11-tool: support for secret-key objects
...
support of 'secret-key' objects
key conversion procedures are now in libopensc library
change name for OPENSC NON-REPUDIATION CKA attribute
2012-06-02 18:25:23 +02:00
Peter Marschall
367ebd94d4
tools: allow arguments to be printed in usage message
...
Extend util_print_usage_and_die() by a string argument that describes
further arguments to the program.
1st user: opensc-explorer
2012-05-30 09:39:12 +02:00
Viktor Tarasov
cb13633634
remove trailing whitespaces
...
inspired by
http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html
Change-Id: If170e830d8d9587a31742feffb6fff54cfdf75b4
2012-04-03 00:00:56 +02:00
andre
8a5961e970
pkcs11-tool.c: At least CKS_RO_PUBLIC_SESSION is needed.
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5563 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-08 08:50:42 +00:00
vtarasov
a479c368a6
pkcs11-tool: allow non-interactive change of User/SO PIN
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5543 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-02 19:20:11 +00:00
vtarasov
3095f5479f
pkcs11-tool: resolve compiler warning '"OPENSSL_VERSION_NUMBER" is not defined', thanks to Ludovic
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5536 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-02 17:12:12 +00:00
andre
31a56bb374
pkcs11-tool.c: Remove useless parameter 'slot' from a lot of function prototypes.
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5533 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-01 18:51:26 +00:00
vtarasov
185e3f8259
pkcs11-tool: replace 'slot-label' argument with the two new ones -- 'slot-description' and 'token-label'...
...
the main difference between 'slot-description' and 'token-label' is that
the first one is unique in any case,
the second one can be the same for more then one slots.
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5528 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-30 14:47:50 +00:00
vtarasov
8931231396
pkcs11-tool: show CKA_VALUE of the GOST public key object
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5527 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-30 13:28:16 +00:00
vtarasov
4d2428378d
pkcs11-tool: CKA_VALUE of imported GOST key has to be presented in the little endian order
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5518 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-29 17:55:26 +00:00
andre
4a2dfa6822
pkcs11-tool.c: In function ‘sign_data’:
...
pkcs11-tool.c:1253: warning: comparison between signed and unsigned
pkcs11-tool.c: In function ‘write_object’:
pkcs11-tool.c:1777: warning: unused variable ‘type’
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5505 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-27 09:24:09 +00:00
vtarasov
dd30eb1905
pkcs11-tool: import GOST key; key to import in DER or PEM format
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5465 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-22 10:52:44 +00:00
vtarasov
cb39b2dcc9
pkcs11-tool: when doing signature try at first the procedure for the short input data ...
...
Not all PKCS#11 driver support the C_SignUpdate.
So, for the short data begin with procedure "C_SignInit & C_Sign".
If no success, try to applicate the procedure "C_SignInit & C_SignUpdate & ... & C_SignFinal".
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5458 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-22 07:13:09 +00:00
martin
6277099a27
pkcs11-tool: correct typos about --login-type option, change id -> ID in help texts.
...
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5448 c6295689-39f2-0310-b995-f0e70906c6a9
2011-05-17 13:27:13 +00:00