bccf2120cd
use PREFIX as shortcut in build script
2015-10-13 15:05:28 +02:00
66415690d9
OSX: link pkcs11 library to /usr/local/lib
...
Circumvents SIP on El Capitan
2015-10-13 15:01:40 +02:00
ee5915700c
Merge pull request #516 from frankmorgner/lock
...
Only re-lock for Windows and Apple
2015-10-13 14:11:29 +02:00
a912004a7f
Merge pull request #574 from dengert/piv-cac
...
Partial fix for #570 . Select AID for PIV
2015-10-12 17:28:42 +02:00
0b268f789a
Allow PIV driver to use cards where default application in not PIV
...
card-piv.c was not selecting the PIV AID correctly from piv_find_aid.
This cause a CAC card that also has the PIV application to fail a VERIFY command
of the pin would use a VERIFY APDU P2 where P2 for PIV is 80, but for CAC was 00.
A CAC card could work if the caller requested the serial number of the card
which did call piv_select_aid. All the OpenSC tools, minidriver and
PKCS#11 do this, but Tokend does not.
This is a partial fix for https://github.com/OpenSC/OpenSC/issues/570 .
Tokend in later MacOS versions still has other issues.
A more complete solution is needed for cards with multiple applications.
I do not have a CAC card or MAC to do any testing.
Thanks to https://github.com/mouse07410 who has a CAC card, and a Mac,
and has tested this fix.
2015-10-11 19:14:02 -05:00
da1d4cc78a
Fix locking issue on OS X
...
Works around Apple shipping PCSC-Lite headers without PCSC-Lite. Let's
say they do it for "backward compatibility"...
2015-10-08 08:24:40 +02:00
5dd806815d
Merge pull request #572 from okirch/email-fixup-olaf
...
Update outdated address okir@lst.de -> okir@suse.de
2015-10-05 21:15:33 +02:00
f42a1c2563
Replace outdated address okir@lst.de -> okir@suse.de
...
Signed-off-by: Olaf Kirch <okir@suse.de>
2015-10-05 14:07:28 +02:00
b7f794ae48
AppVeyor: build with zlib on 32 bit only
2015-10-04 14:04:57 +02:00
64417c271e
fixed out of bounds access
2015-10-04 13:19:29 +02:00
78018a2b49
fixed string operation on fixed size array
2015-10-04 13:07:39 +02:00
d33517a58b
fixed missing comma
2015-10-04 12:55:25 +02:00
9e500e0b9a
fixed bad typecast
2015-10-04 12:52:49 +02:00
50e81d1de0
added missing break
2015-10-04 12:45:25 +02:00
ac65af0669
Fixes unreleased locks with pcsc-lite
...
This is a bug in PCSC-Lite propably won't be fixed, see
https://alioth.debian.org/tracker/index.php?func=detail&aid=315083&group_id=30105&atid=410088
Fixes https://github.com/OpenSC/OpenSC/issues/480
Closes https://github.com/OpenSC/OpenSC/pull/487
2015-10-03 12:55:15 +02:00
5e242c5fb2
Merge pull request #560 from CardContact/fix_sc_pkcs15init_finalize_profile
...
Removed error check to support card with PKCS#15 emulation but no mat…
2015-10-02 15:18:14 +02:00
a15363198c
Merge pull request #569 from mdealencar/patch-2
...
fix: change SC_TERMINATE (undefined) to SC_CTX_FLAG_TERMINATE
2015-10-02 15:16:42 +02:00
4f4643ee3e
Merge pull request #452 from frankmorgner/memory-leaks
...
Fix some memory leaks
2015-10-02 15:13:34 +02:00
e0a4e0bfec
Merge pull request #532 from frankmorgner/sloppy
...
implemented sloppy initialization for C_GetSlotInfo
2015-10-02 15:13:07 +02:00
f851197129
Merge pull request #565 from frankmorgner/sm-openssl
...
Build a lightweight version of OpenSC
2015-10-02 15:12:41 +02:00
34d6c10fa0
fix: change SC_TERMINATE (undefined) to SC_CTX_FLAG_TERMINATE
...
This file was not compiling because SC_TERMINATE is not defined anywhere. It seems like the intended expression is what I propose.
2015-10-01 08:38:23 -03:00
16fb74cca9
fixed generating opensc.conf in AppVeyor
2015-10-01 07:45:59 +02:00
1480a4ef4a
use one configuration file for all systems
2015-10-01 12:44:41 +02:00
a4ca19019e
Documented whitelisting drivers with opensc.conf
...
closes https://github.com/OpenSC/OpenSC/issues/358
2015-10-01 12:44:41 +02:00
7b677837a0
Always uses tabs instead of spaces in opensc.conf
2015-10-01 12:44:41 +02:00
f252277fab
Add configuration for sloppy PKCS#11 initialization
2015-10-01 12:44:41 +02:00
3307dd6f45
implemented sloppy initialization for C_GetSlotInfo
...
Makes things work for Java and closes #523
2015-10-01 12:44:41 +02:00
c5cf4f69a2
Merge pull request #559 from philipWendland/ecc-sig-format
...
ECDSA helper functions: strip zeroes when converting from R,S to sequence
2015-09-30 08:14:25 +02:00
90fb40f65e
include zlib1.dll and libeay32.dll in installer
2015-09-30 07:13:59 +02:00
9f7583a022
fixed indenting error in Makefile
2015-09-30 06:26:13 +02:00
fb705b6a2d
Merge pull request #563 from CardContact/fix_reselect_applet_for_pin_verification
...
Fix reselect applet for pin verification
2015-09-29 20:09:00 +02:00
83a28a1bc3
pkcs15: Observe path.aid for PIN operation
2015-09-25 11:56:32 +02:00
7fd4edf7b6
Allow cards without EF.DIR using default application
...
Removed error check to support card with PKCS#15 emulation but no matching card app
2015-09-25 11:43:01 +02:00
7120a9b549
Merge pull request #554 from frankmorgner/fixes
...
Some more fixes for problems reported by Coverity scan
2015-09-25 11:13:17 +02:00
30c90448fb
Adds missing Advapi32.lib to opensc_a.lib
2015-09-25 10:58:53 +02:00
a7bd14c77f
Builds lightweight Windows binaries by default
...
... without OpenSSL and zlib
2015-09-25 10:58:53 +02:00
97f8731402
Properly describe OpenSSL dependencies in WiX installer
2015-09-24 09:40:52 +02:00
d8d47bb06f
sc-hsm: Bind PIN object to applet aid to ensure SELECT before PIN verification
2015-09-23 15:38:57 +02:00
c41153aa13
pkcs15: Select application defined by path.aid for PIN verification
2015-09-23 15:36:56 +02:00
e14e028453
Properly describe OpenSSL dependencies in .mak files
2015-09-23 08:23:28 +02:00
ffd85adae7
Decouples SM from OpenSSL
2015-09-24 14:46:30 +02:00
4814863d18
Merge pull request #551 from frankmorgner/507
...
Fix OpenPGP driver to work correctly with YubiKey NEO
2015-09-21 13:23:18 +02:00
328176d28b
ECDSA helper functions: strip zeroes when converting from R,S to sequence
...
For ECDSA signatures, there are multiple ways to format the signature:
- R|S (R and S filled with zeroes at the most significant bytes)
- ASN1 sequence of R,S integers (e.g. used by OpenSSL).
It is rare that the filling with zeroes is needed.
But if it is, in the second case, the filling zeroes should not be there
or the verification of the signature by OpenSSL will fail.
2015-09-20 22:34:39 +02:00
bc9e42ddd7
Merge pull request #556 from philipWendland/dead-code
...
IsoApplet: fix dead code + pincache
2015-09-18 17:54:12 +02:00
09fb1e71a9
IsoApplet: add PIN to pincache upon creation
2015-09-18 17:02:45 +02:00
6bffeb7a36
IsoApplet: fix dead code
2015-09-18 17:02:45 +02:00
ba02d69f2b
Merge pull request #555 from dengert/piv-readability
...
Fix indentation for readability
2015-09-18 10:13:23 +02:00
24a3999386
Fix indentation for readability
2015-09-17 19:03:44 -05:00
c399bc94ec
piv-tool: fixed resource leak
2015-09-17 22:32:07 +02:00
2dca6ced06
pkcs15-oberthur: fixed resource leak
2015-09-17 22:32:07 +02:00
Frank Morgner
Doug Engert
Ludovic Rousseau
Olaf Kirch
mdealencar
Andreas Schwier
Philip Wendland