2c913155a2
asn1: Do not accept non-minimal encoding of OBJECT IDs
2020-01-07 14:50:48 +01:00
37c8c46623
unittests: Simplify the OBJECT ID tests
2020-01-07 14:50:48 +01:00
1e2b0fe45f
unittests: Restructure the BIT STRING tests
2020-01-07 14:50:48 +01:00
71e45bb5a7
unittest: Rewrite the INTEGER unittests to use macros and avoid code duplication
2020-01-07 14:50:47 +01:00
aaa302ca35
asn1: Allow non-strict INTEGER parsing for other code paths (FCI parsing)
2020-01-07 14:50:47 +01:00
fefff2e462
asn1: Simplify the OID decoding
2020-01-07 14:50:47 +01:00
4569009418
unittests: Improve test coverage mostly with negative test cases
...
Thanks @hkario for review
2020-01-07 14:50:47 +01:00
89ed273e81
cac1: Simplify the cycle definintion
2020-01-07 14:50:47 +01:00
4faf517af4
asn1: Handle more corner cases of OBJECT ID parsing
2020-01-07 14:50:47 +01:00
c449aa4430
asn1: Reject integers with bogus zero/non-zero bytes on left
2020-01-07 14:50:47 +01:00
d3e9b55223
asn1: Distinguish error codes for invalid objects from implementation limitation (integer size)
2020-01-07 14:50:47 +01:00
1271299955
ans1: Verify the padding in BIT STRING contains only zero bits
2020-01-07 14:50:47 +01:00
611d1cea4c
unittests: Verify BIT STRING parsing as integers
2020-01-07 14:50:47 +01:00
c1814571bd
asn1: Avoid invalid unused bits values
2020-01-07 14:50:47 +01:00
8d49e4a305
unittests: Test encoding of OIDs and integers
2020-01-07 14:50:47 +01:00
61af2c1d0a
asn1: Add support for encoding large values in OIDs
2020-01-07 14:50:47 +01:00
7971bfded3
unittests: Verify parsing of more OIDs
2020-01-07 14:50:47 +01:00
19501715d7
asn1: Correctly handle OIDs with second octet > 39
2020-01-07 14:50:47 +01:00
b6b9a886f9
unittests: Verify negative ASN1 integeres parsing
2020-01-07 14:50:47 +01:00
8e6d2e251d
unittests: Reproducer for undefined shift in ASN1 parser
2020-01-07 14:50:47 +01:00
8e8c3735bc
idprime: Reflect the OS version in the card name
2020-01-07 14:16:46 +01:00
bebb5be6e0
idprime: Simplify applet selection and limit file size to sensible values
2020-01-07 14:16:46 +01:00
3537cbbc78
Unbreak RSA-PSS padding
2020-01-07 14:16:46 +01:00
fe8f6297f0
idprime: Add support for longer PINs
2020-01-07 14:16:46 +01:00
5017768e5b
idprime: Detect the newer version of OS using CPLC data
2020-01-07 14:16:46 +01:00
2c9510af1e
Improve parsing of the root file and store also the object length
2020-01-07 14:16:46 +01:00
fdcc843e78
idprime: Implement a way of getting token label from special card structure
2020-01-07 14:16:46 +01:00
48e3239857
pkcs15-cac: Use constants rather than magic numbers
2020-01-07 14:16:46 +01:00
9db15089b8
p11test: Avoid memory leaks
2020-01-07 14:16:46 +01:00
f61d9b3b53
Implement new Gemalto IDPrime driver
...
The card is largely ISO 7816 compliant, but does not provide any
simple way of listing the content which is supported by current
PKCS#15 implementation therefore the PKCS#15 emulator had to be
used.
The certificates are compressed in a similar way as in DNIE
cards which complicates reading from the card and which I think
could be moved to the shared ISO (or some other file since I saw
that code already many times).
The card supports wide range of algorithms including
RSA-PSS and RSA-OAEP padding schemes in-card. On the other hand,
it does not allow raw RSA and SHA1 hashes on card anymore.
The card is manufactured by Gemalto so it has strict ATR which
can be used for detection.
2020-01-07 14:16:46 +01:00
3a3a465e6b
Add basic support for OEAP decryption in OpenSC internals
2020-01-07 13:30:28 +01:00
40c41cee0c
pkcs11-tool: Make the SHA256 default for OAEP decryption
...
It is already default in all the other functions and it really makes sense since
the SHA1 is being obsoleted
2020-01-07 13:29:53 +01:00
2882c93ec1
pkcs15: Expose the map_usage() function from CAC to other pkcs15 emulators
2020-01-07 13:29:53 +01:00
5e1bfe0acc
Drop the pkcs15.h from simpletlv.h
2020-01-07 13:29:53 +01:00
fe44567d2b
avoid redefinition of NDEBUG
...
fixes https://github.com/OpenSC/OpenSC/issues/1799
2020-01-07 11:27:57 +01:00
4d2b860c7f
OpenPGP: add ATR for Yubikey 5
2020-01-07 11:09:00 +01:00
31b8c7a404
OpenPGP: first steps at supporting OpenPGP card spec 3.4
2020-01-07 11:09:00 +01:00
3af3d0ecee
openpgp: add nistp256 and secp251k1 curves for gnuk devices
2020-01-07 11:08:25 +01:00
f14043aad6
opensc-explorer get: prevent sc_read_binary applied on record-based files
2020-01-07 10:35:39 +01:00
c1fb5b130e
opensc-tool print_file: fix addressing records
2020-01-07 10:24:10 +01:00
5dd9fcb25c
Fix asn1.c:print_tags_recursive
2020-01-07 10:18:46 +01:00
4ad55997e0
sc_pkcs15_decode_skdf_entry: break all looping on oid match: on average better performance
2020-01-07 10:17:39 +01:00
cfd5519b98
simplify PIV I/O
2020-01-07 10:06:23 +01:00
31169afb72
fixed fuzzing build
...
wrapping/unwrapping is hopefully correctly initialized
2020-01-06 22:34:16 +01:00
0b4b7fbaf0
openssl: Drop all compatibility checks for <=openssl-1.0.0
2020-01-06 15:47:07 +01:00
295cf100a8
Bump minimum required openssl version to 1.0.1
...
Everything older than 1.0.2 is not longer supported by the OpenSSL team.
2020-01-06 15:47:07 +01:00
6b84407c3d
tcos: fix indentation and braces
...
Increase readability. No content-based changes.
2020-01-06 15:43:46 +01:00
45e29056cc
Release 0.20.0
2019-12-29 13:42:06 +01:00
a2b133ef4f
Updated NEWS
2019-12-29 13:39:01 +01:00
05e3f7b667
Fix misleading code indentation
...
Fixes
error: misleading indentation; statement is not part of the previous 'if' [-Werror,-Wmisleading-indentation]
if(cipher)
^
../../../git/src/libopensc/card-entersafe.c:369:2: note: previous statement is here
if(sbuf)
^
2019-12-28 18:18:06 +01:00
Jakub Jelen
Frank Morgner
Peter Marschall
alex-nitrokey
carblue
Priit Laes
Julian Strobl
Khem Raj