Commit Graph

Select branches

Hide Pull Requests

golem/tessera-sanitaria

0.12.2

0.12.2-rc1

0.13.0

0.13.0pre1

0.13.0rc1

0.14.0

0.14.0rc2

0.14.0rtm

0.15.0

0.16.0

0.16.0-rc1

0.16.0-rc2

0.17.0

0.17.0-rc1

0.17.0-rc2

0.18.0

0.18.0-rc1

0.18.0-rc2

0.19.0

0.19.0-rc1

0.20.0

0.20.0-rc1

0.20.0-rc2

0.20.0-rc3

0.20.0-rc4

0.21.0

0.21.0-rc1

0.21.0-rc2

0.22.0

0.22.0-rc1

0.22.0-rc2

maintainer-pgp-pub

v0.12.2

v0.15.0-pre1

v0.15.0-pre2

v0.15.0-pre3

v0.15.0-rtm

v0.16.0-pre1

Mono Color

• 3331a7f134 Fix MF selection APDU to use 0x0c in P2 (no data). The previous value of 0x00 is invalid according to IAS-ECC and resulted in 6A 86 on the Oberthur cards that we tested with. Zoltan Kelemen 2020-07-01 09:59:32 +0200
• 471468260e Improved PIN unblock function: - Uses PIN padding from merged policy - Added PIN-pad support - Use ISO 7816 layer to avoid code duplication Zoltan Kelemen 2020-07-01 09:53:18 +0200
• 79e81eeef0 Improved PIN change function: - Uses PIN padding from merged policy - Improved PIN-pad logic and merged here from separate function Zoltan Kelemen 2020-07-01 09:31:01 +0200
• 5ae488c1b9 Improved PIN verification function: - Uses PIN padding from merged policy - Moved PIN-pad logic into this function instead of keeping separate Zoltan Kelemen 2020-07-01 09:09:10 +0200
• d0b3e90431 Simlified low-level CHV verification function: - Removed special PIN-pad case, moving logic into high-level function. - Use ISO 7816 layer to avoid code duplication. Zoltan Kelemen 2020-07-01 08:54:51 +0200
• 8c2d629f94 Functions used to control PIN padding and PIN pad use: - Use PIN padding information when provided by upper layers - Enable PIN padding at card level when min/max len set to same, nonzero value - Allow PIN-pad use to be dynamically selected for each PIN Zoltan Kelemen 2020-07-01 08:38:54 +0200
• ca911e342c Improved PIN info retrieval, now returning verification status, and attempts left even when previously not available (due to card not providing it in the SDO). Zoltan Kelemen 2020-07-01 08:16:27 +0200
• 19063932f0 Simplified PIN policy retrieval to only read the data that is actually needed, excluding the CRT info from the SE-SDO, which is not guaranteed to be available in all card types. Zoltan Kelemen 2020-07-01 08:02:53 +0200
• 741ee73ec9 Add generic function for PIN status retrieval, for subsequent use (among others intended to replace iasecc_pin_is_verified). Zoltan Kelemen 2020-07-01 07:18:10 +0200
• 7ed876c816 Added ATR mask for Idemia (Oberthur) IAS-ECC card to recognize Cosmo V8 cards. Zoltan Kelemen 2020-06-29 18:51:47 +0200
• eb3e00a385 Corrected highly misleading, confusing and ambiguous use of PIN length_offset field. Now only the PIN offset fields are used. Also added error checking for invalid values. Zoltan Kelemen 2020-07-04 09:43:38 +0200
• 80853bda31 Only enable static frame size for PIN padding when padding length is below maximum limits. Otherwise resort to adaptive support. Zoltan Kelemen 2020-07-03 12:08:31 +0200
• afffeccc29 Fixed problems with PIN min/max length handling: - The wrong PIN was selected from the sc_pin_cmd_data structure. - When the PIN max value was zero from the caller (meaning unknown max), the reader max value was not used. Zoltan Kelemen 2020-07-03 09:23:54 +0200
• 1dc359cb61 Fix for issue #1999: - Reset context to undefined handle value on error since call may alter output parameter. - Continue to assume -1 as undefined handle value in all PCSC implementations, to keep this fix as small and surgical as possible. Zoltan Kelemen 2020-07-12 22:07:13 +0200
• b16a5cbee0 pkcs15: Free app info when allocating new and in cleanup Jakub Jelen 2020-06-30 11:39:17 +0200
• c82aa92687 pkcs15: Clean memory on alocation failure Jakub Jelen 2020-06-30 11:38:38 +0200
• 2d6de2510c pkcs15: Drop bogus checks Jakub Jelen 2020-06-30 11:16:59 +0200
• 4c473fba29 authentic: Clean private data on error Jakub Jelen 2020-06-29 21:29:16 +0200
• 05dcde508b authentic: Use memmove as the memory can overlap (if path is > 2B) Jakub Jelen 2020-06-29 19:16:57 +0200
• 5098cfdb40 authentic: Do not leak memory on fail path Jakub Jelen 2020-06-29 18:53:16 +0200
• 7cf8087351 asepcos: Avoid heap-buffer-overflow Jakub Jelen 2020-06-22 11:22:46 +0200
• c4d7bb1a7b Do not crash on if private certificate is ignored (#2057) Jakub Jelen 2020-06-22 10:57:00 +0200
• 43379b3b22 coolkey: Rewrite coolkey_rsa_op() for better readability Jakub Jelen 2020-06-15 14:27:33 +0200
• 0cda376dba pkcs15-pubkey: Make sc_pkcs15_pubkey_from_spki_fields more robust against errors Jakub Jelen 2020-06-15 12:27:42 +0200
• e759b17b66 pkcs15-pubkey: Avoid memory leaks when spki parsing fails Jakub Jelen 2020-06-10 15:15:17 +0200
• 56f4c6c34a piv: Free pubkey on error Jakub Jelen 2020-06-10 13:54:13 +0200
• 3696331d5c Remove more needless checks for NULL before free Jakub Jelen 2020-06-10 12:35:19 +0200
• fea08d749d coolkey: Avoid memory leak Jakub Jelen 2020-06-10 12:22:36 +0200
• 054cb08c90
  Add CII Best practices badge Jakub Jelen 2020-07-07 12:37:58 +0200
• 0defebfe05 doc: Recommend pin caching in combination with pin_cache_ignore_user_consent configuration option Jakub Jelen 2020-06-09 14:00:34 +0200
• 97ec23a2d9 pkcs11: Propagate ignore_user_consent Jakub Jelen 2020-05-27 14:47:01 +0200
• 7a29e6c047 Move to macOS Utilities folder Raul Metsma 2020-06-16 11:14:31 +0300
• c458d81723 SECURITY.md: Introduce security reporting process Jakub Jelen 2020-06-11 14:58:13 +0200
• 929717b505 Make PUK reference available to card driver from PKCS #15 layer for PIN unblock operations. This helps some of the card drivers which otherwise would have a hard time locating the PUK for a PIN. Zoltan Kelemen 2020-07-02 10:26:13 +0200
• bf30d64cf9 Fixes build error in opensc-notify (issue #2068). Zoltan Kelemen 2020-06-30 16:45:11 +0200
• 223a0949e8 Add sc_free() René Liebscher 2020-06-16 08:14:20 +0200
• 4d96fbfed4 Remove compiler warnings/errors René Liebscher 2020-06-16 14:24:57 +0200
• e63f054af9
  README: Fix pipeline icons from gitlab CI Jakub Jelen 2020-06-11 11:23:31 +0200
• 7ae74c524f piv: Avoid accessing memory after zero-length tags Jakub Jelen 2020-06-09 10:11:29 +0200
• 5e7d4fb8ba oberthur: Avoid memory leaks Jakub Jelen 2020-06-08 14:55:03 +0200
• 0a34d11cb7 oberthur: Avoid memory leaks on error paths Jakub Jelen 2020-06-08 14:52:30 +0200
• c3b9152a99 .travis-ci: Explicitly require new build dependency for yubico-piv-tool Jakub Jelen 2020-06-05 12:42:59 +0200
• 57c895165f .travis-ci: yubico-piv-tool build system was changed to cmake Jakub Jelen 2020-06-05 12:42:59 +0200
• 62403eec34 tcos: Use memset instead of for cycle Jakub Jelen 2020-06-05 10:38:18 +0200
• 9dd3370673 oberthur: Fix operator precedence Jakub Jelen 2020-06-04 16:32:40 +0200
• a5f04188bc pteid: Do not overwrite already set information in tokeninfo Jakub Jelen 2020-06-04 16:12:32 +0200
• f49162af04 Avoid memory leaks when initializing tokeninfo in various drivers Jakub Jelen 2020-06-04 12:21:47 +0200
• 71d1f69a3a Reformat tcos_compute_signature() for better readability Jakub Jelen 2020-06-04 11:08:25 +0200
• e6848b6d88 tcos: Yet anoter buffer underflow as previous Jakub Jelen 2020-06-04 11:08:01 +0200
• fa719b301f tcos: Prevent buffer underflow Jakub Jelen 2020-06-04 10:54:39 +0200
• d141b35596 tcos: Rewrite assert to explicit check Jakub Jelen 2020-06-04 10:20:48 +0200
• 1819ca33d6 tcos_decipher: Reformat to improve readability Jakub Jelen 2020-06-04 10:17:19 +0200
• 53395f4075 tcos: Replace assert with explicit check Jakub Jelen 2020-06-04 10:02:44 +0200
• 8940ed5d85 tcos: Avoid memory leak on invalid inputs Jakub Jelen 2020-06-04 09:41:06 +0200
• b418601942 pkcs11-spy: Dump slot id for C_WaitForSlotEvent Jakub Jelen 2020-05-20 10:23:03 +0200
• 36247d85b0 pkcs11: fixed notifying twice in case of an attached reader Frank Morgner 2020-06-08 17:04:49 +0200
• 1c7b311289 pcsc: immediately exit on hotplug events Frank Morgner 2020-06-05 15:50:31 +0200
• 8f6e5dc2b0 Unbreak wait for events Frank Morgner 2020-06-05 14:57:00 +0200
• 1bb2547abc respect PKCS#11 allowed return values Frank Morgner 2020-06-02 22:43:42 +0200
• fc296b5488 IsoApplet: Add some more Travis tests Luka Logar 2020-06-01 14:38:58 +0200
• 6a6b3e4b62 prevent memory leak Frank Morgner 2020-06-02 17:28:14 +0200
• 58b03b68dd check for unbound cards Frank Morgner 2020-06-02 17:25:04 +0200
• a10b661f99 IsoApplet: Fix uninitialized public key oid during key generation Luka Logar 2020-06-01 23:09:23 +0200
• ca5f5c8844 explorer: set stdout to O_BINARY in Windows where needed Peter Marschall 2020-03-14 15:48:37 +0100
• 5714dbfa08 opensc-explorer: add function 'get_record' Peter Marschall 2020-01-12 10:40:05 +0100
• f55c4e5c93 opensc-explorer: extend path_to_filename() Peter Marschall 2020-02-02 12:57:08 +0100
• 180c57fd15 fixed compiler warning Frank Morgner 2020-06-05 09:43:38 +0200
• 0f0e0b2e30 prevent out of bounds read Frank Morgner 2020-06-05 08:31:19 +0200
• 9d294de90d prevent out of bounds write Frank Morgner 2020-06-04 10:04:10 +0200
• 55fd3db2b5 prevent integer underflow and subsequent heap overflow Frank Morgner 2020-06-04 09:47:22 +0200
• 4bc03cb55d fixed memory leak Frank Morgner 2020-06-04 00:13:57 +0200
• 1125e37738 macOS: include static OpenSSL Frank Morgner 2020-06-03 16:49:35 +0200
• f334f3eabe
  Bug fixed (#1859) Feitian Technologies 2020-06-03 20:54:39 +0800
• e98f6733d9 workaround for unfinished installer Frank Morgner 2020-06-02 13:49:40 +0200
• 141a83029f ignore errors when running `pkgutil --forget` Frank Morgner 2020-06-02 13:49:23 +0200
• d756be1f48 macOS: renew code signing certificate Frank Morgner 2020-05-29 21:57:49 +0200
• 2a1a952fe7 fixed non-origin builds Frank Morgner 2020-05-27 23:53:11 +0200
• ceb3448e06 Revert "travis-ci: Do not pass sign arguments if we do not have the secret params in PRs" Frank Morgner 2020-05-27 23:38:49 +0200
• 16456922e2 pkcs11: Return CKR_TOKEN_NOT_RECOGNIZED for not recognized cards Jakub Jelen 2020-05-19 16:52:38 +0200
• e8a2644435 Remove duplicate condition Jakub Jelen 2020-05-28 22:45:42 +0200
• 38474739b3 card-cardos: Fix NULL dereference Jakub Jelen 2020-05-28 22:45:02 +0200
• b02da8348b configure: Do not check for strlcpy and strlcat in Linux. Jakub Jelen 2020-05-18 17:43:14 +0200
• 741091b3c6 travis-ci: Add clang linux target Jakub Jelen 2020-05-18 17:28:46 +0200
• 0a17188710 fixed out of bounds read Frank Morgner 2020-05-24 23:45:38 +0200
• d4a9405bf4
  Initial support for Polish eID card (e-dowód, eDO) (#2023) Piotr Majkrzak 2020-05-19 15:05:13 +0300
• ed55fcd299 fixed invalid read Frank Morgner 2020-05-18 17:25:32 +0200
• 96a7eca99a fixed memory leak Frank Morgner 2020-05-18 17:13:48 +0200
• 4cb9788b99 fixed invalid read Frank Morgner 2020-05-18 16:45:24 +0200
• 7e1679b2db fixed memory leak Frank Morgner 2020-05-18 16:38:43 +0200
• 93bed892a8 tests: Fix card present check Torin Carey 2020-05-18 01:36:22 +0100
• 57f538810e travis-ci: Do not pass sign arguments if we do not have the secret params in PRs Jakub Jelen 2020-05-18 08:57:11 +0200
• 8175df0e47 Make sure pcscd is started when using emulation Jakub Jelen 2020-05-12 14:45:13 +0200
• e1830ea6d2 Install OpenJDK 8 to build jcardsim (it does not work with Java 11) Jakub Jelen 2020-05-12 10:36:11 +0200
• 47a36efa7c travis: Update to something with sensible openssl version to make yubico-piv-tool build Jakub Jelen 2020-05-07 21:19:04 +0200
• 66bcce8a8d travis-ci: Use newer JavaCard SDK to unbreak PivApplet build to enable ECDSA support Jakub Jelen 2020-05-07 19:59:05 +0200
• 687f52233e travis-ci: Fail if any applet or tool needed for tests fails to build Jakub Jelen 2020-05-07 20:01:17 +0200
• 3b3aecbf8c travis: Kill particular pid instead of killall to avoid killing unrelated processes Jakub Jelen 2020-05-07 18:36:33 +0200
• 27a819baa7 framework-pkcs15: Do not leak memory (CID 139147) Jakub Jelen 2020-05-07 12:05:39 +0200
• 19791f63d5 piv: Avoid cast ignoring errors (CID 357984) Jakub Jelen 2020-05-07 11:56:15 +0200
• 787c32d195 piv: Avoid cast to unsigned ints to properly check for errors (CID 357985) Jakub Jelen 2020-05-07 11:48:50 +0200