cfc9461fe5
Update NEWS for opensc-0.13.1
2014-05-16 16:51:01 +02:00
612c7fe43a
git: ignore version.m4.ci
2014-05-16 16:50:27 +02:00
3418e9c146
OpenSC 0.13.1 rc1
2014-05-16 09:18:17 +02:00
de6d61405b
Dont use sha256 if openssl is older than 0.9.8.
2014-05-14 22:11:31 +02:00
1df8570a66
Add fence against using EVP_sha256 mech.
...
Which is only available in >=0.9.8
2014-05-14 22:11:25 +02:00
e41d94ca1a
md: fix return code in 'CardGetContainerInfo'
2014-05-13 18:34:18 +02:00
808fff2246
pkcs11: take pubkey CKA_VALUE from pub_data
2014-05-13 18:34:09 +02:00
b6ad7a92f5
pkcs11: more of debug messages
2014-05-13 18:33:58 +02:00
7dcb4359ff
build: put PACKAGE_VERSION_REVISION into version.m4
2014-05-12 07:27:04 +02:00
24fa9d8cc2
build: by default enable SM support
2014-05-11 17:44:34 +02:00
7b1e2e5dd3
build: uninstall-hook for opensc.conf
2014-05-11 17:44:34 +02:00
d4195e297c
build: bootstrap script has expected content
...
added CI specific 'bootstrap' script version: with parameters it creates the 'm4.version.ci' -- CI specific 'm4.version'
2014-05-11 09:15:27 +02:00
4bed397fbc
build: return to standard use of 'autoconf'
...
Following http://sourceforge.net/p/opensc/mailman/message/32009859/
* 'configure.ac' is not mored created by bootstrap script, but present in source
* 'version.m4' is introduced and contains the 'volatile' package settings:
settings that can be changed for the needs of particular build (ex. change PACKAGE_SUFFIX using the Git 'describe' or 'commit' data)
* 'bootstrap' script facilitate change of the package setting during the 'autoconf' phase
2014-05-07 09:53:08 +02:00
5f45739ecb
fixed one more warning
2014-05-03 22:24:06 +02:00
e1fd9d2a4c
cardos,incrypto34: restored semantics of select_pin_reference
2014-05-03 22:24:06 +02:00
511c8e6382
dnie: dont ignore error on sm free operation
...
Signed-off-by: Frank Morgner <morgner@informatik.hu-berlin.de>
2014-05-03 22:24:06 +02:00
b483d1d27d
westcos: fixed initialization of driver data
...
Signed-off-by: Frank Morgner <morgner@informatik.hu-berlin.de>
Updated by Viktor Tarasov
2014-05-03 22:23:40 +02:00
3b50ccc0ea
fixed incompatible function usage
...
Signed-off-by: Frank Morgner <morgner@informatik.hu-berlin.de>
2014-05-03 21:54:40 +02:00
a64326e768
fixed compiler warnings (partially submitted)
...
Signed-off-by: Frank Morgner <morgner@informatik.hu-berlin.de>
PR-222: commit 0b567dbaa8
2014-05-03 21:47:15 +02:00
883d42b1f8
libopensc: export 'iasecc_sdo_encode_update_field'
...
used by 'local SMM' module
2014-05-02 13:43:10 +02:00
8d000774df
EstEID: match card only based on presence of application.
...
Contact cards have ATR-s, contactless not. Only contact
cards should be broken so that they answer 0x9000 to application
selection, so this should be failsafe.
2014-04-21 21:05:11 +02:00
ba66459f33
When setting pointers to a template, ensure they do not get out of scope prior of being used.
...
This was causing issues when using pkcs11-tool with opencryptoki:
https://bugzilla.redhat.com/show_bug.cgi?id=1062307
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
2014-04-21 20:47:39 +02:00
46b0bed93f
fixed PUK handling
...
Note that
`SC_PKCS15_PIN_AUTH_TYPE_PIN` is used for `sc_pkcs15_auth_info_t.auth_type`
`SC_PKCS15_TYPE_AUTH_PIN` is used for `sc_pkcs15_object_t.type`
2014-04-21 20:43:41 +02:00
218d198bdc
Call dlclose() only when having a valid handle.
...
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
2014-04-21 20:23:11 +02:00
fc5714a4c9
Set missing default create_slots_flags.
...
Without this pkcs11 cant be used without a configuration file
or a configfile without pkcs11 block due to the missing initialization
of default flag.
2014-04-21 13:53:57 +02:00
332ced5be7
Remove the bogus javacard "driver".
...
I had some ideas on how to improve the experience for JavaCards
but that path did not get implemented further and my approach now
is very different.
While it would be nice if OpenSC (command line) detected
somehow blank JavaCard-s and informed the user that steps a-b-c
should be taken to make use of it, it doesn't really fit in.
2014-04-21 13:44:27 +02:00
7796d2c95c
Mention that create_slots_for_pins can be used to get opensc-onepin behavior.
2014-04-21 13:40:26 +02:00
e7cda857f0
Fix memory leak, sc_pkcs15_cert_t *cert is never freed
2014-04-21 13:31:06 +02:00
cdc379fa25
pkcs11-tool: check for buffer overflows
...
Check the subject, issuer and serialNumber will encode in the allocated
space before copying the data.
Thanks to Umberto Rustichelli for the bug report
https://sourceforge.net/p/opensc/mailman/message/32210626/
2014-04-10 16:40:12 +02:00
8b4125e79d
Merge pull request #213 from martinpaljak/default-driver
...
Default driver: do not send possibly arbitrary APDU-s to an unknown card...
2014-03-16 16:35:38 +00:00
a399905d23
Merge pull request #211 from viktorTarasov/fix-206
...
Fix #206
2014-02-21 13:09:57 +01:00
8871e61596
pkcs15: change names of internal SPKI procedures
...
sc_pkcs15_pubkey_from_spki_sequence() takes the ASN1 'subjectPublicKeyInfo' data
sc_pkcs15_pubkey_from_spki_fields() takes the ASN1 'subjectPublicKeyInfo' data without outter SEQUENCE tag
2014-02-16 22:35:52 +01:00
53eae613d4
pkcs15: remove not used internal procedures
...
sc_pkcs15_copy_pubkey_from_spki_object() not used
2014-02-16 22:11:39 +01:00
3acb3d8e60
Default driver: do not send possibly arbitrary APDU-s to an unknown card.
2014-02-14 11:53:10 +00:00
72bf7a8593
pkcs15init: NULL 'store-key' hahdle
...
Card driver can not define 'store-key' init handle
2014-02-09 18:49:58 +01:00
345d4b905c
PIV: encode SPKI public key data
2014-02-09 18:49:58 +01:00
12d362fc73
PIV: fix segfault and valgrind issue
...
prototype of 'get-guid' has been changed;
valgrind issue:
Conditional jump or move depends on uninitialised value(s)
at 0x5A0159B: vfprintf (vfprintf.c:1629)
by 0x5AC04BF: __vsnprintf_chk (vsnprintf_chk.c:65)
by 0x522A665: sc_do_log_va.part.0 (stdio2.h:78)
by 0x522A819: sc_do_log (log.c:52)
by 0x529462F: piv_card_ctl (card-piv.c:1794)
by 0x5232E2F: sc_card_ctl (card.c:772)
by 0x52E561D: sc_pkcs15emu_piv_init (pkcs15-piv.c:626)
2014-02-09 18:49:58 +01:00
8000564239
pkcs15: fix encoding of 'SubjectPublicKeyInfo'
2014-02-09 18:49:58 +01:00
dd5115bc02
pkcs15: use 'direct' public key value
...
pkcs15: in pubkey-info data
* introduced new 'direct' 'raw' and 'spki' members
* removed 'encoded der data' member
* in 'read-public-key' try firstly SPKI direct value
pkcs11:
'direct' data used when getting CKA_VALUE attribute of public key
pkcs15init:
* initialize 'raw' and 'spki' direct public key value
2014-02-09 18:49:58 +01:00
343a627c78
pkcs15init: set EC pubkey key params using init arguments
2014-02-09 18:49:58 +01:00
122c58de85
pkcs15init: do not use 'der-data' of pubkey data
2014-02-09 18:49:58 +01:00
efa6e852c2
myeid: support of EC key is broken,
...
waiting for specification and card from Aventra (VTA)
2014-02-09 18:49:58 +01:00
2f8fc498ae
sc-hsm: emu: initialize EC key params
...
;fix EC parameters for the emulated public keys
;add 'sc-context' argument in some function prototypes
2014-02-09 18:49:58 +01:00
1775198ed7
pkcs11-tool: format object info output
2014-02-09 18:49:58 +01:00
46303a640a
build: new 'disable-optimization' configure option
2014-02-09 18:49:58 +01:00
032a3ece20
pkcs15init: ignore if no TokenInfo file to update
2014-02-09 11:59:26 +01:00
c5c49e3fd4
sc_pkcs15_encode_pubkey_as_spki depends on DER encoded RAW key
...
Make sure the sc_pkcs15_pubkey structure contains the DER endoding
of the RAW public key before trying to produce the SPKI version.
2014-01-19 19:30:04 +01:00
46c86fcb66
coding style: use short form of debug macros
2014-01-19 19:19:17 +01:00
3f023d3342
pkcs15: PIN value not validated in pkcs15-verify
...
In pkcs15-verify the value of PIN is not more validated for conformity with PIN policy,
value is only checked for maximal allowed length.
So that, no more need of 'ignore-pin-length' configuration option - now it's default behavior of common framework.
2014-01-19 19:19:17 +01:00
0efe1ec05e
coding style: remove trailing spaces
2014-01-19 19:19:17 +01:00
Viktor Tarasov
Henrik Andersson
Frank Morgner
Martin Paljak
Nikos Mavrogiannopoulos
Raul Metsma
Ludovic Rousseau
Doug Engert