Menu
▾
▴
[Opensc-commits] [OpenSC/OpenSC] 498576: Add support to initialize custom OpenSSL context
|
From: Simo S. <no...@gi...> - 2023-03-08 10:13:23
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 4985762eaff529afcb4f7ac8e85e0d9f8c4d2ffb https://github.com/OpenSC/OpenSC/commit/4985762eaff529afcb4f7ac8e85e0d9f8c4d2ffb Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/ctx.c M src/libopensc/opensc.h M src/libopensc/sc-ossl-compat.h Log Message: ----------- Add support to initialize custom OpenSSL context Add an openssl custom libcontext to sc_context_t and intitalize it if we are using OpenSSL 3.0+ Signed-off-by: Simo Sorce <si...@re...> Commit: df81788d3bbaa179c577c21b335cf1f06bc1da78 https://github.com/OpenSC/OpenSC/commit/df81788d3bbaa179c577c21b335cf1f06bc1da78 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/sc-ossl-compat.h M src/pkcs11/openssl.c Log Message: ----------- Convert pkcs11/openssl.c to use the custom osslctx Signed-off-by: Simo Sorce <si...@re...> Commit: 0d34432a9150491c1d3fe9c9bcb0029e2ac59f59 https://github.com/OpenSC/OpenSC/commit/0d34432a9150491c1d3fe9c9bcb0029e2ac59f59 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/ctx.c M src/libopensc/sc-ossl-compat.h Log Message: ----------- Load also the legacy provider This is not ideal, but some of the code uses legacy algorithms that are not available without this provider. The code that depends on those legacy algorithms will fail if the legacy provider is not available (which is a legitimate choice by the admin and/or system integrator). Therefore we just report an error but do not fail initialization if the legacy provider is not available. Signed-off-by: Simo Sorce <si...@re...> Commit: 30fad6e1243f7442bda9a0326515624fc90a0cf7 https://github.com/OpenSC/OpenSC/commit/30fad6e1243f7442bda9a0326515624fc90a0cf7 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/sc-ossl-compat.h Log Message: ----------- Add wrappers for EVP_CIPHERs Signed-off-by: Simo Sorce <si...@re...> Commit: 4b793c3ca055f3d05c2044e5e87fd880287f5f1d https://github.com/OpenSC/OpenSC/commit/4b793c3ca055f3d05c2044e5e87fd880287f5f1d Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-entersafe.c Log Message: ----------- Convert card entersafe to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 870b47fb22fd4fa720b6feb6c83854f3aeb66ff3 https://github.com/OpenSC/OpenSC/commit/870b47fb22fd4fa720b6feb6c83854f3aeb66ff3 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-epass2003.c Log Message: ----------- Convert card epass2003 to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 84a3552fef90b87bc20366b6bdf04618123b7586 https://github.com/OpenSC/OpenSC/commit/84a3552fef90b87bc20366b6bdf04618123b7586 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-authentic.c M src/libopensc/cwa14890.c Log Message: ----------- Remove call to load legacy provider from cwa14890 Library code should *never* arbitrarily load the legacy provider in the default application context. It may literally break or make an application vulnerable by sneaking in unexpected algorithms. This is not needed anymore given we will use an opensc specific context that will not affect the rest of the application (or other libraries). Signed-off-by: Simo Sorce <si...@re...> Commit: d5029d41e0dee3e84ed5ac70f5cc7759f696c9f1 https://github.com/OpenSC/OpenSC/commit/d5029d41e0dee3e84ed5ac70f5cc7759f696c9f1 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/cwa-dnie.c M src/libopensc/cwa14890.c Log Message: ----------- Convert card cwa14890 to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 23c71da7647d84a6e28ea836ada9c05646cb30de https://github.com/OpenSC/OpenSC/commit/23c71da7647d84a6e28ea836ada9c05646cb30de Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-gids.c Log Message: ----------- Convert card GIDS to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 48e92e467bd52e0d520f854b39c50471e5b5cd7b https://github.com/OpenSC/OpenSC/commit/48e92e467bd52e0d520f854b39c50471e5b5cd7b Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-gpk.c Log Message: ----------- Convert card GPK to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 2de1a7171171c960528e419e7dc754b75a00c545 https://github.com/OpenSC/OpenSC/commit/2de1a7171171c960528e419e7dc754b75a00c545 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- Convert card IASECC to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 410b9b4c451f8b360468b921faa5a186f62c3dea https://github.com/OpenSC/OpenSC/commit/410b9b4c451f8b360468b921faa5a186f62c3dea Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-oberthur.c Log Message: ----------- Convert card oberthur to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: bbb53979a57b1ec384806a499f54e3ad79c2be44 https://github.com/OpenSC/OpenSC/commit/bbb53979a57b1ec384806a499f54e3ad79c2be44 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-piv.c Log Message: ----------- Convert card PIV to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: 264b23aff5b01acebe9627dff4468fa42eb5a825 https://github.com/OpenSC/OpenSC/commit/264b23aff5b01acebe9627dff4468fa42eb5a825 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/card-westcos.c Log Message: ----------- Convert card westcos to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: fceeca13e9fb811896648456d44ef9c5d1c7ffcd https://github.com/OpenSC/OpenSC/commit/fceeca13e9fb811896648456d44ef9c5d1c7ffcd Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/libopensc/padding.c Log Message: ----------- Convert padding.c to use openssllibctx Signed-off-by: Simo Sorce <si...@re...> Commit: 75dc92a57d53268fe6b549e840a3e278ad7bf03e https://github.com/OpenSC/OpenSC/commit/75dc92a57d53268fe6b549e840a3e278ad7bf03e Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/pkcs15init/pkcs15-westcos.c Log Message: ----------- Convert pkcs15-westcos.c to use OpenSSL libctx Signed-off-by: Simo Sorce <si...@re...> Commit: a931d8835f0ddc1f2aba31421e9274f4c347d525 https://github.com/OpenSC/OpenSC/commit/a931d8835f0ddc1f2aba31421e9274f4c347d525 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/sm/sm-common.c Log Message: ----------- Remove call to load legacy provider from libsm Library code should *never* arbitrarily load the legacy provider in the default application context. It may literally break or make an application vulnerable by sneaking in unexpected algorithms. This is not needed anymore given we will use an opensc specific context that will not affect the rest of the application (or other libraries). Signed-off-by: Simo Sorce <si...@re...> Commit: 3934f6febc5b951b0b4d1f804c9ba22ec4f84ef7 https://github.com/OpenSC/OpenSC/commit/3934f6febc5b951b0b4d1f804c9ba22ec4f84ef7 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/sm/sm-common.c M src/sm/sm-common.h M src/smm/sm-card-authentic.c M src/smm/sm-cwa14890.c M src/smm/sm-global-platform.c M src/smm/sm-module.h M src/tests/unittests/sm.c Log Message: ----------- Convert libsm to use openssl libctx Signed-off-by: Simo Sorce <si...@re...> Commit: fe58e93d6d55537649e687ccc4cbf5f13e2af92d https://github.com/OpenSC/OpenSC/commit/fe58e93d6d55537649e687ccc4cbf5f13e2af92d Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/pkcs11/pkcs11-global.c Log Message: ----------- Protect from nested initializations If a library used by the module itself tries, somehow to also initializae the module, return a hard error. Nested Initializations are not permitted. Signed-off-by: Simo Sorce <si...@re...> Commit: b09e371906f49a40b7886b440cb3b937094fd8b4 https://github.com/OpenSC/OpenSC/commit/b09e371906f49a40b7886b440cb3b937094fd8b4 Author: Simo Sorce <si...@re...> Date: 2023-03-08 (Wed, 08 Mar 2023) Changed paths: M src/pkcs11/pkcs11-global.c Log Message: ----------- Add thread locking protection for nesting check Signed-off-by: Simo Sorce <si...@re...> Compare: https://github.com/OpenSC/OpenSC/compare/bdb89174cd54...b09e371906f4 |
