giomba
/
opensc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
OpenSC fork, with some Italian healthcare smart card utils
7,409 Commits 1 Branch 30 Tags 20 MiB
C 95.9%
M4 1.2%
Shell 1.1%
Makefile 0.8%
C++ 0.5%
Other 0.5%
Go to file
Doug Engert 08a02ed5d2 Fix PKCS#11 Object Restrictions 
Framework-pkcs15.c silently ignores adding objects if MAX_OBJECTS
is exceeded while creating the fw_data objects. This simple fix
is to change the MAX_OBJECTS from 64 to 128. A better fix would
be to realloc the objects arrays as needed.

__pkcs15_create_data_object and __pkcs15_create_secret_key_object
now return rv like the other  __pkcs15_create_*_object routines.

pkcs15_dobj_get_value now calls sc_pkcs15_read_data_object just like
the other pkcs15_*_get_value routines. The problem was introduced
in 0c3412bb 2018-04-09 which added:
 `return sc_to_cryptoki_error(SC_SUCCESS, "C_GetAttributeValue");`
before trying to read the data object.

The MAX_OBJECT problem was discovered while trying to use a new PIV
card with 24 standard cert objects and 10 other objects for a total
of 106 objects. Each cert object corresponds to a cert, pubkey,
private key, and the cert object itself for a possible 112 data objects.

The pkcs15_dobj_get_value was found while running:
running pkcs11-tool -r -y data --application-id 2.16.840.1.101.3.7.2.1.1
using git bisect to locate the bad commit.  The pkcs11 data objects are
created last from the pkcs15 objects which are a linked list with no limits.

 On branch fix-object-restrictions
	modified:   src/pkcs11/framework-pkcs15.c
 		2019-01-15 07:31:39 +01:00
.github speed up checking out nightly branch 2018-11-20 13:02:29 +01:00
MacOSX Simulate and test Open Source Java Card Applets 2019-01-15 00:10:55 +01:00
doc sc-hsm-tool: add support for initializing biometry 2019-01-15 07:31:20 +01:00
etc pkcs11: CKF_WRITE_PROTECTED based on card's read_only flag 2018-09-14 08:23:08 +02:00
m4 opensc-notify: notify for card events 2017-08-02 19:04:09 +02:00
packaging/debian.templates fix LGPL version 2013-09-29 20:55:41 +02:00
src Fix PKCS#11 Object Restrictions 2019-01-15 07:31:39 +01:00
tests Add simple Sanity test for pkcs11-tool sign&verify operations 2018-12-06 09:27:50 +01:00
win32 added GoID Tool 2019-01-15 07:31:20 +01:00
.gitignore added GoID Tool 2019-01-15 07:31:20 +01:00
.travis.yml reduce the number of builds 2019-01-15 00:10:55 +01:00
COPYING - changed license to LGPL 2001-11-06 18:34:19 +00:00
Makefile.am Move the test into separate directory 2018-12-06 09:27:50 +01:00
Makefile.mak fixed and cleaned up nmake Makefiles 2016-06-23 07:35:53 +02:00
NEWS updated NEWS 2018-09-13 13:47:21 +02:00
README link README to README.md 2015-11-02 23:54:36 +01:00
README.md Add a badge about card status 2018-06-21 12:48:57 +02:00
appveyor.yml Appveyor: use deploy_script 2019-01-04 00:46:41 +01:00
bootstrap build: bootstrap script has expected content 2014-05-11 09:15:27 +02:00
bootstrap.ci bootstrap.ci: stop echoing executed commands 2018-05-21 20:45:04 +02:00
configure.ac Move the test into separate directory 2018-12-06 09:27:50 +01:00
version.m4 version.m4: remove unused macro PACKAGE_VERSION_REVISION 2018-05-21 20:45:04 +02:00

README.md

OpenSC documentation

Wiki is available online

Please take a look at the documentation before trying to use OpenSC.

Travis CI Build Status AppVeyor CI Build Status Coverity Scan Status

Build and test status of specific cards:

Cards Status
CAC CAC
Coolkey Coolkey