Menu
▾
▴
opensc-commits — commit notifications
You can subscribe to this list here.
| 2013 |
Jan
(18) |
Feb
(20) |
Mar
(15) |
Apr
(5) |
May
(7) |
Jun
(3) |
Jul
(4) |
Aug
(20) |
Sep
(10) |
Oct
(12) |
Nov
(12) |
Dec
(7) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2014 |
Jan
(12) |
Feb
(8) |
Mar
(3) |
Apr
(7) |
May
(12) |
Jun
(19) |
Jul
(1) |
Aug
(5) |
Sep
(9) |
Oct
(11) |
Nov
(13) |
Dec
(20) |
| 2015 |
Jan
(12) |
Feb
(25) |
Mar
(33) |
Apr
(37) |
May
(36) |
Jun
(2) |
Jul
(18) |
Aug
(31) |
Sep
(98) |
Oct
(50) |
Nov
(25) |
Dec
(34) |
| 2016 |
Jan
(95) |
Feb
(35) |
Mar
(78) |
Apr
(12) |
May
(11) |
Jun
(20) |
Jul
(28) |
Aug
(21) |
Sep
(30) |
Oct
(29) |
Nov
(15) |
Dec
(15) |
| 2017 |
Jan
(29) |
Feb
(17) |
Mar
(34) |
Apr
(28) |
May
(12) |
Jun
(25) |
Jul
(39) |
Aug
(14) |
Sep
(12) |
Oct
(38) |
Nov
(28) |
Dec
(6) |
| 2018 |
Jan
(15) |
Feb
(22) |
Mar
(27) |
Apr
(71) |
May
(78) |
Jun
(47) |
Jul
(24) |
Aug
(63) |
Sep
(43) |
Oct
(34) |
Nov
(27) |
Dec
(18) |
| 2019 |
Jan
(51) |
Feb
(17) |
Mar
(48) |
Apr
(46) |
May
(25) |
Jun
(9) |
Jul
(14) |
Aug
(46) |
Sep
(18) |
Oct
(25) |
Nov
(26) |
Dec
(25) |
| 2020 |
Jan
(28) |
Feb
(30) |
Mar
(20) |
Apr
(69) |
May
(40) |
Jun
(16) |
Jul
(13) |
Aug
(9) |
Sep
(17) |
Oct
(40) |
Nov
(55) |
Dec
(6) |
| 2021 |
Jan
(44) |
Feb
(13) |
Mar
(33) |
Apr
(31) |
May
(32) |
Jun
(10) |
Jul
(9) |
Aug
(27) |
Sep
(33) |
Oct
(7) |
Nov
(14) |
Dec
(17) |
| 2022 |
Jan
(25) |
Feb
(11) |
Mar
(42) |
Apr
(14) |
May
(18) |
Jun
(3) |
Jul
(10) |
Aug
(41) |
Sep
(12) |
Oct
(13) |
Nov
(18) |
Dec
(9) |
| 2023 |
Jan
(10) |
Feb
(18) |
Mar
(25) |
Apr
(27) |
May
(16) |
Jun
(26) |
Jul
(9) |
Aug
(29) |
Sep
(17) |
Oct
(24) |
Nov
(18) |
Dec
(16) |
| 2024 |
Jan
(23) |
Feb
(55) |
Mar
(40) |
Apr
(17) |
May
(15) |
Jun
(12) |
Jul
(12) |
Aug
(6) |
Sep
(15) |
Oct
(16) |
Nov
(29) |
Dec
(26) |
| 2025 |
Jan
(29) |
Feb
(37) |
Mar
(24) |
Apr
(35) |
May
(38) |
Jun
(20) |
Jul
(7) |
Aug
(10) |
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Paul W. <no...@gi...> - 2021-03-23 13:02:40
|
Branch: refs/heads/master Home: https://github.com/OpenSC/pam_pkcs11 Commit: df2dbf7e8e0c4167b1bbe8a8faa92a9fe4575d44 https://github.com/OpenSC/pam_pkcs11/commit/df2dbf7e8e0c4167b1bbe8a8faa92a9fe4575d44 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-14 (Fri, 14 Aug 2020) Changed paths: M src/common/cert_vfy.c Log Message: ----------- Fixed some reference type errors for OpenSSL objects Signed-off-by: Paul Wolneykien <ma...@al...> Commit: e07d35fe21027f91a60f625d6d197f6c745d3e8f https://github.com/OpenSC/pam_pkcs11/commit/e07d35fe21027f91a60f625d6d197f6c745d3e8f Author: Paul Wolneykien <ma...@al...> Date: 2020-09-03 (Thu, 03 Sep 2020) Changed paths: M src/common/cert_vfy.c Log Message: ----------- Fix: Use X509_CRL_get0_lastUpdate() and X509_CRL_get0_nextUpdate() Use X509_CRL_get0_lastUpdate(crl) and X509_CRL_get0_nextUpdate(crl) in new OpenSSL versions instead of X509_CRL_get_lastUpdate(crl) and X509_CRL_get_nextUpdate(crl). Commit: 75fe90e29b35593a6a07ffc77b7f26bd611bf5a0 https://github.com/OpenSC/pam_pkcs11/commit/75fe90e29b35593a6a07ffc77b7f26bd611bf5a0 Author: Paul Wolneykien <ma...@al...> Date: 2020-09-03 (Thu, 03 Sep 2020) Changed paths: M src/common/cert_vfy.c Log Message: ----------- Use ECDSA_SIG_set0() instead of ECDSA_SIG_get0_r() + ECDSA_SIG_get0_s() FIXME: Why not to use d2i_ECDSA_SIG() ??? Commit: 25f843d923e69556b3dd653b771254965754a321 https://github.com/OpenSC/pam_pkcs11/commit/25f843d923e69556b3dd653b771254965754a321 Author: Paul Wolneykien <wol...@gm...> Date: 2021-03-23 (Tue, 23 Mar 2021) Changed paths: M src/common/cert_vfy.c Log Message: ----------- Merge pull request #51 from wolneykien/devel/opensslfix Tested with RSA certificate, `opensc` and `generic` mappers. Compare: https://github.com/OpenSC/pam_pkcs11/compare/05a1d2f1a726...25f843d923e6 |
|
From: Paul W. <no...@gi...> - 2021-03-23 11:28:58
|
Branch: refs/heads/master Home: https://github.com/OpenSC/pam_pkcs11 Commit: 22097e4e7343b9342087edb62cd986a71b17b8ad https://github.com/OpenSC/pam_pkcs11/commit/22097e4e7343b9342087edb62cd986a71b17b8ad Author: Paul Wolneykien <ma...@al...> Date: 2020-07-10 (Fri, 10 Jul 2020) Changed paths: M src/common/pkcs11_lib.c Log Message: ----------- Fixed double free() in refresh_slots() Commit: 4de7adf9617903618ddc6fdfbc453a8035721640 https://github.com/OpenSC/pam_pkcs11/commit/4de7adf9617903618ddc6fdfbc453a8035721640 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-11 (Tue, 11 Aug 2020) Changed paths: M ChangeLog M NEWS M README M README.md M configure.ac M doc/Makefile.am M src/common/cert_info.c M src/common/cert_vfy.c M src/common/cert_vfy.h M src/common/debug.c M src/common/pam-pkcs11-ossl-compat.h M src/common/pkcs11_lib.c M src/common/strings.c M src/mappers/ldap_mapper.c M src/mappers/mail_mapper.c M src/mappers/null_mapper.c M src/mappers/openssh_mapper.c M src/pam_pkcs11/pam_pkcs11.c M src/scconf/parse.c M src/tools/card_eventmgr.c M src/tools/pkcs11_eventmgr.c Log Message: ----------- Merge branch 'devel/base' into devel/fixes Commit: a051d93de746a3b8e2eac8dcf787fb1204244343 https://github.com/OpenSC/pam_pkcs11/commit/a051d93de746a3b8e2eac8dcf787fb1204244343 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-14 (Fri, 14 Aug 2020) Changed paths: M src/common/pkcs11_lib.c Log Message: ----------- Fixed the format strings for error code values Signed-off-by: Paul Wolneykien <ma...@al...> Commit: 1316783430cf5b812e3befb898ff877901e22272 https://github.com/OpenSC/pam_pkcs11/commit/1316783430cf5b812e3befb898ff877901e22272 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-14 (Fri, 14 Aug 2020) Changed paths: M src/common/pkcs11_lib.c Log Message: ----------- Merge branch 'devel/formats' into devel/fixes Commit: 426769340cdd893a8346e68d567268b9eaf35ee6 https://github.com/OpenSC/pam_pkcs11/commit/426769340cdd893a8346e68d567268b9eaf35ee6 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-14 (Fri, 14 Aug 2020) Changed paths: M src/pam_pkcs11/pam_pkcs11.c Log Message: ----------- Fix: Cast pointers for pam_get_item() Commit: b91c1fcc0e69f65accc88c3b113de974fbe7769d https://github.com/OpenSC/pam_pkcs11/commit/b91c1fcc0e69f65accc88c3b113de974fbe7769d Author: Paul Wolneykien <ma...@al...> Date: 2020-08-14 (Fri, 14 Aug 2020) Changed paths: M src/common/pkcs11_lib.c Log Message: ----------- Fixed format for CK_RV error code Signed-off-by: Paul Wolneykien <ma...@al...> Commit: c80edf668e2e276483c9bbbcae18f717964e3218 https://github.com/OpenSC/pam_pkcs11/commit/c80edf668e2e276483c9bbbcae18f717964e3218 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-15 (Sat, 15 Aug 2020) Changed paths: M configure.ac Log Message: ----------- Disable pointer-sign warnings for a while... Commit: 0af26b6d5d227cd6279fb4b14e6d759013c65527 https://github.com/OpenSC/pam_pkcs11/commit/0af26b6d5d227cd6279fb4b14e6d759013c65527 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-15 (Sat, 15 Aug 2020) Changed paths: M src/pam_pkcs11/pam_pkcs11.c Log Message: ----------- Fix: Cast more pointers for pam_get_item() Commit: 8563f9f9b0fe1eaaa6a60c63bc26e3484d6bb092 https://github.com/OpenSC/pam_pkcs11/commit/8563f9f9b0fe1eaaa6a60c63bc26e3484d6bb092 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-15 (Sat, 15 Aug 2020) Changed paths: M src/tools/card_eventmgr.c Log Message: ----------- Fix: Use the return values of fscanf() and write() Commit: 4a7ffa6084c012bee5627947c13bd8cbfc42c50c https://github.com/OpenSC/pam_pkcs11/commit/4a7ffa6084c012bee5627947c13bd8cbfc42c50c Author: Paul Wolneykien <ma...@al...> Date: 2020-08-15 (Sat, 15 Aug 2020) Changed paths: M src/common/pkcs11_lib.c M src/common/pkcs11_lib.h Log Message: ----------- Fix: Remove `const` from `get_X509_certificate()` as OpenSSL functions have non-const arguments Commit: 5b7dfad7b05ebd32109fbfd5c0c60c0b647c4d51 https://github.com/OpenSC/pam_pkcs11/commit/5b7dfad7b05ebd32109fbfd5c0c60c0b647c4d51 Author: Paul Wolneykien <ma...@al...> Date: 2020-08-16 (Sun, 16 Aug 2020) Changed paths: M src/common/pkcs11_lib.c Log Message: ----------- Fixed more format for CK_RV error code Commit: 05a1d2f1a726678d91caadf3f478cc6b670e0554 https://github.com/OpenSC/pam_pkcs11/commit/05a1d2f1a726678d91caadf3f478cc6b670e0554 Author: Paul Wolneykien <wol...@gm...> Date: 2021-03-23 (Tue, 23 Mar 2021) Changed paths: M configure.ac M src/common/pkcs11_lib.c M src/common/pkcs11_lib.h M src/pam_pkcs11/pam_pkcs11.c M src/tools/card_eventmgr.c Log Message: ----------- Merge pull request #52 from wolneykien/devel/fixes I've just tested it with RSA cert and the `generic` mapper. Compare: https://github.com/OpenSC/pam_pkcs11/compare/228915871c35...05a1d2f1a726 |
|
From: Frank M. <no...@gi...> - 2021-03-22 14:37:30
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: f726d4f20121d034b22927f6085a263f9a317b8c https://github.com/OpenSC/OpenSC/commit/f726d4f20121d034b22927f6085a263f9a317b8c Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c M src/libopensc/pkcs15-openpgp.c M src/libopensc/pkcs15-sec.c M src/libopensc/sec.c Log Message: ----------- Improve logging mostly in opengpg Commit: 86e01d7c47644cd33fc8a71cc9bbf236f1b37f34 https://github.com/OpenSC/OpenSC/commit/86e01d7c47644cd33fc8a71cc9bbf236f1b37f34 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/debug.c Log Message: ----------- pkcs11: Prefer CKA_EC_PARAMS over deprecated CKA_ECDSA_PARAMS by listing it first in the list Commit: e82f8750476947452fb47fca42c0fca9ed237ac0 https://github.com/OpenSC/OpenSC/commit/e82f8750476947452fb47fca42c0fca9ed237ac0 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/pkcs11-spy.c Log Message: ----------- pkcs11-spy: Systematize output of C_GetMechanismInfo Commit: a5a6757d1002126ed67aac71402c43ff2dae976c https://github.com/OpenSC/OpenSC/commit/a5a6757d1002126ed67aac71402c43ff2dae976c Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/pkcs11-tool.c Log Message: ----------- pkcs11-tool: Add CKA_KEY_TYPE attribute for keygen as recommeneded in specification Commit: a30bf95eed1686416111ffa27dc4ff8947790d15 https://github.com/OpenSC/OpenSC/commit/a30bf95eed1686416111ffa27dc4ff8947790d15 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c Log Message: ----------- openpgp: Fix typo in the card name Commit: c78fa164c9e27b82b50cc54453cd5063583718f0 https://github.com/OpenSC/OpenSC/commit/c78fa164c9e27b82b50cc54453cd5063583718f0 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/openpgp-tool.c Log Message: ----------- openpgp-tool: Fix typos OpenGPG -> OpenPGP Commit: 0455a5665e6ea17cb8c255df9585a6c210597ac1 https://github.com/OpenSC/OpenSC/commit/0455a5665e6ea17cb8c255df9585a6c210597ac1 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/internal-winscard.h Log Message: ----------- winscard: Add missing constant define Commit: 095c28e3726a96a49342c7b341049372b80225b8 https://github.com/OpenSC/OpenSC/commit/095c28e3726a96a49342c7b341049372b80225b8 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/pkcs11.h Log Message: ----------- pkcs11: Add new (X)EDDSA identifiers Commit: 80f80317d1ea60c3c2417853ce4f21090f4c0905 https://github.com/OpenSC/OpenSC/commit/80f80317d1ea60c3c2417853ce4f21090f4c0905 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/pkcs11.h Log Message: ----------- pkcs11: Add new SHA3 identifiers Commit: caae75758c6b556d12c2753a9ce6ebeb977a9089 https://github.com/OpenSC/OpenSC/commit/caae75758c6b556d12c2753a9ce6ebeb977a9089 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card.c M src/libopensc/cardctl.h M src/libopensc/internal.h M src/libopensc/libopensc.exports M src/libopensc/opensc.h M src/libopensc/pkcs15-algo.c M src/libopensc/pkcs15-prkey.c M src/libopensc/pkcs15-pubkey.c M src/libopensc/pkcs15-sec.c M src/libopensc/pkcs15-syn.c M src/libopensc/pkcs15.h M src/pkcs11/debug.c M src/pkcs11/framework-pkcs15.c M src/pkcs11/mechanism.c M src/pkcs11/pkcs11-display.c M src/pkcs11/pkcs11-object.c M src/pkcs11/pkcs11.h Log Message: ----------- Add internal support for (X)EdDSA keys Commit: b351bf5ea4c0004ef444a7a7147b57fd5a715c23 https://github.com/OpenSC/OpenSC/commit/b351bf5ea4c0004ef444a7a7147b57fd5a715c23 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c M src/libopensc/card-openpgp.h M src/libopensc/pkcs15-openpgp.c M src/pkcs15init/pkcs15-openpgp.c Log Message: ----------- openpgp: Initial support for (X)EdDSA keys Commit: 2fb688683e284fadcac782da68907a87beb3adee https://github.com/OpenSC/OpenSC/commit/2fb688683e284fadcac782da68907a87beb3adee Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/pkcs15-tool.c Log Message: ----------- pkcs15-tool: Support for new (X)EdDSA keys Commit: 5178e74e1b45098671f972c1471a97b104655686 https://github.com/OpenSC/OpenSC/commit/5178e74e1b45098671f972c1471a97b104655686 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/pkcs11-tool.c Log Message: ----------- pkcs11-tool: Support for new (X)EdDSA keys Commit: 5d5c39179377da4d2994afb1079b523f498bfaba https://github.com/OpenSC/OpenSC/commit/5d5c39179377da4d2994afb1079b523f498bfaba Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/opensc-tool.c Log Message: ----------- opensc-tool: Support for new (X)EdDSA keys Commit: a965829f526f4abb4f33687c4f6f682b7fa27c92 https://github.com/OpenSC/OpenSC/commit/a965829f526f4abb4f33687c4f6f682b7fa27c92 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c Log Message: ----------- openpgp: Use only Derive mechanism for curve25519 keys Commit: e7d390f9dd4cda46f589f674c34f61ff69dff2c0 https://github.com/OpenSC/OpenSC/commit/e7d390f9dd4cda46f589f674c34f61ff69dff2c0 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c Log Message: ----------- openpgp: Unbreak EC algorithms for GNUK Since 09a594d bringing ECC support to openPGP card, it did not count with GNUK. This adds exception for GNUK to unbreak ECC signatures as GNUK presents BCD version < 3. Commit: 32ec1f92b9f1ff134ee74677a449d87c68d1c01d https://github.com/OpenSC/OpenSC/commit/32ec1f92b9f1ff134ee74677a449d87c68d1c01d Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c M src/libopensc/pkcs15-openpgp.c Log Message: ----------- openpgp: Set reasonable usage for (X)EdDSA keys Commit: 485b6cff44a9fd3094b6644a5f800fa91a8221f7 https://github.com/OpenSC/OpenSC/commit/485b6cff44a9fd3094b6644a5f800fa91a8221f7 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tests/p11test/p11test_case_common.c M src/tests/p11test/p11test_case_common.h M src/tests/p11test/p11test_case_ec_derive.c M src/tests/p11test/p11test_case_mechs.c M src/tests/p11test/p11test_case_multipart.c M src/tests/p11test/p11test_case_readonly.c M src/tests/p11test/p11test_case_usage.c M src/tests/p11test/p11test_common.h Log Message: ----------- p11test: Add support for EdDSA keys Commit: 35cfc291ce950c02ba2e700dd4159b1b162fa2a4 https://github.com/OpenSC/OpenSC/commit/35cfc291ce950c02ba2e700dd4159b1b162fa2a4 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tools/pkcs11-tool.c Log Message: ----------- pkcs11-tool: Add support for (X)EDDSA key generation Commit: 091b7670ebfc3c2aab379777cc02d44255fb4a09 https://github.com/OpenSC/OpenSC/commit/091b7670ebfc3c2aab379777cc02d44255fb4a09 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tests/p11test/runtest.sh Log Message: ----------- p11test: Reformat the script and allow running against softhsm ed25519 keys (with few tweaks) The Ed25519 implementation in SoftHSM is now broken /non-interoperable. After fixing that, the interoperability tests should work with this script: * SoftHSMv2#528: Avoid creating duplicate mechanisms * SoftHSMv2#522: Fix advertised min and max mechanism sizes according to final PKCS#11 3.0 specification * SoftHSMv2#526: Adjust EDDSA code to return valid EC_PARAMS according to the final PKCS #11 3.0 specification Commit: 0380142482c9a4dd77c2c3d1c5c5216b65b8d912 https://github.com/OpenSC/OpenSC/commit/0380142482c9a4dd77c2c3d1c5c5216b65b8d912 Author: Doug Engert <dee...@gm...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card.c M src/libopensc/pkcs15-openpgp.c Log Message: ----------- Fix obtaining key_length i.e. field_length pkcs15-openpgp card-opennpgp.c and pkcs15-openpgp.c have a strang way of using sc_object_id_t to store what they call a binary_oid or oid_binary. It is used to convert the EC curve asn1 returned in the cxdata. This code uses asn1_decode_object_id to use sc_object_id_t as used in the rest of the code. The code and ec_curve tabes in card-openpgp.c where not changed. pkcs15-openpgp.c was channge si to can use: algorithm_info = sc_card_find_ec_alg(card, 0, &oid); to retried the key_length to add to the pubkey and prkey entries. The EC and EDDSA needs (i.e. field_length) to run. On branch eddsa Your branch is up to date with 'Jakuje/eddsa'. Changes to be committed: modified: card.c modified: pkcs15-openpgp.c Commit: 8c4d3255762d770dbbedb65c5c09846ddf3b339a https://github.com/OpenSC/OpenSC/commit/8c4d3255762d770dbbedb65c5c09846ddf3b339a Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c Log Message: ----------- framework-pkcs15: Fix typo in comment Commit: 9bd139d1e49096d3c20642cb9f51b9bcd0222def https://github.com/OpenSC/OpenSC/commit/9bd139d1e49096d3c20642cb9f51b9bcd0222def Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/pkcs15-openpgp.c Log Message: ----------- openpgp: Check return code of OID decoding from ASN1 Commit: 64b61a755693044e197aaeff35ec99abc41d87d9 https://github.com/OpenSC/OpenSC/commit/64b61a755693044e197aaeff35ec99abc41d87d9 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/pkcs15-openpgp.c Log Message: ----------- openpgp: Do not fail hard if unknown algorithm is encountered and fix typo Commit: 73e283b4b1c57c9a556c24b4f8f17a19b04312c9 https://github.com/OpenSC/OpenSC/commit/73e283b4b1c57c9a556c24b4f8f17a19b04312c9 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card.c M src/libopensc/pkcs15-openpgp.c Log Message: ----------- openpgp: Correctly handle curve25519 keys Commit: a020b85d943bd1c1a892b31a27b3c41e15727f97 https://github.com/OpenSC/OpenSC/commit/a020b85d943bd1c1a892b31a27b3c41e15727f97 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tests/unittests/asn1.c Log Message: ----------- unittests: Briefly test asn1_encode Commit: cb8c7647ca4381273765ea6d5de750940e2ab248 https://github.com/OpenSC/OpenSC/commit/cb8c7647ca4381273765ea6d5de750940e2ab248 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/asn1.c Log Message: ----------- asn1: Do not crash on invalid arguments Commit: ae771a135f921f18905a5d9cda8fb6700a5f0be4 https://github.com/OpenSC/OpenSC/commit/ae771a135f921f18905a5d9cda8fb6700a5f0be4 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c Log Message: ----------- openpgp: Rewrite decipher/derive to use asn1 functions Commit: c39e31b274b8325d6ce6cd57aaa5eb73f869c635 https://github.com/OpenSC/OpenSC/commit/c39e31b274b8325d6ce6cd57aaa5eb73f869c635 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c Log Message: ----------- pkcs11: Rewrite ec params to use sc_asn1_put_tag() Commit: 56af7de137fbae073c6b71a9707aa2e22bd961a1 https://github.com/OpenSC/OpenSC/commit/56af7de137fbae073c6b71a9707aa2e22bd961a1 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c M src/tests/p11test/p11test_case_common.c M src/tools/pkcs11-tool.c Log Message: ----------- Change (X)EDDSA EC_PARAMS encoding to OID This is the current interpretation of the specs after talking with several members of PKCS #11 TC. Commit: 0ce245a41187c399c15e56be3010d5d8b20484c9 https://github.com/OpenSC/OpenSC/commit/0ce245a41187c399c15e56be3010d5d8b20484c9 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/tests/p11test/p11test_case_common.c Log Message: ----------- p11test: Fix one-off comparison Commit: b8266a4c86e06bec9e3d150e688efcd96b0721e1 https://github.com/OpenSC/OpenSC/commit/b8266a4c86e06bec9e3d150e688efcd96b0721e1 Author: Jakub Jelen <jj...@re...> Date: 2021-03-01 (Mon, 01 Mar 2021) Changed paths: M src/libopensc/card-openpgp.c M win32/customactions.cpp Log Message: ----------- Revert "fixed atrmask for gnuk" This reverts commit 98beb86a389f9186b2bf9a0f18350a988ad64f1b. Commit: 5f9085fedb5fba3695f90da4efdbdec7a136a4e8 https://github.com/OpenSC/OpenSC/commit/5f9085fedb5fba3695f90da4efdbdec7a136a4e8 Author: Frank Morgner <fra...@gm...> Date: 2021-03-22 (Mon, 22 Mar 2021) Changed paths: M src/libopensc/asn1.c M src/libopensc/card-openpgp.c M src/libopensc/card-openpgp.h M src/libopensc/card.c M src/libopensc/cardctl.h M src/libopensc/internal-winscard.h M src/libopensc/internal.h M src/libopensc/libopensc.exports M src/libopensc/opensc.h M src/libopensc/pkcs15-algo.c M src/libopensc/pkcs15-openpgp.c M src/libopensc/pkcs15-prkey.c M src/libopensc/pkcs15-pubkey.c M src/libopensc/pkcs15-sec.c M src/libopensc/pkcs15-syn.c M src/libopensc/pkcs15.h M src/libopensc/sec.c M src/pkcs11/debug.c M src/pkcs11/framework-pkcs15.c M src/pkcs11/mechanism.c M src/pkcs11/pkcs11-display.c M src/pkcs11/pkcs11-object.c M src/pkcs11/pkcs11-spy.c M src/pkcs11/pkcs11.h M src/pkcs15init/pkcs15-openpgp.c M src/tests/p11test/p11test_case_common.c M src/tests/p11test/p11test_case_common.h M src/tests/p11test/p11test_case_ec_derive.c M src/tests/p11test/p11test_case_mechs.c M src/tests/p11test/p11test_case_multipart.c M src/tests/p11test/p11test_case_readonly.c M src/tests/p11test/p11test_case_usage.c M src/tests/p11test/p11test_common.h M src/tests/p11test/runtest.sh M src/tests/unittests/asn1.c M src/tools/openpgp-tool.c M src/tools/opensc-tool.c M src/tools/pkcs11-tool.c M src/tools/pkcs15-tool.c M win32/customactions.cpp Log Message: ----------- Merge pull request #1960 from Jakuje/eddsa Add support for (X)EdDSA keys in OpenPGP driver Compare: https://github.com/OpenSC/OpenSC/compare/845eac425093...5f9085fedb5f |
|
From: Marco T. <no...@gi...> - 2021-03-22 14:36:25
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 845eac425093079af050b1c8f1ed885876488a3d https://github.com/OpenSC/OpenSC/commit/845eac425093079af050b1c8f1ed885876488a3d Author: Marco Trevisan (Treviño) <ma...@3v...> Date: 2021-03-22 (Mon, 22 Mar 2021) Changed paths: M src/pkcs11/pkcs11-global.c Log Message: ----------- pkcs11-global: Obey to the tokenPresent parameter on C_GetSlotList Since commit dba0f56 the tokenPresent parameter is ignored in case the slot has been already seen. This breaks the API expectations as we may return a slot that has no token inserted. So, only consider the SC_PKCS11_SLOT_FLAG_SEEN if tokenPresent is false |
|
From: Vincent J. <no...@gi...> - 2021-03-22 12:15:42
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 40e9a9c830a6a36a70692b8aa00a6d2ff7e7ccb0 https://github.com/OpenSC/OpenSC/commit/40e9a9c830a6a36a70692b8aa00a6d2ff7e7ccb0 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-22 (Mon, 22 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c Log Message: ----------- pkcs15: log HSM capabilities (can_do) Some Smartcards have some capabilities (for instance the IASECC) that can influence the can_do cases. In order to track them, it is useful to log any checks. |
|
From: Vincent J. <no...@gi...> - 2021-03-22 12:09:02
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: b18234a7d9a2d63df1f1df6fa31a2b81447ede46 https://github.com/OpenSC/OpenSC/commit/b18234a7d9a2d63df1f1df6fa31a2b81447ede46 Author: Vincent JARDIN <vja...@fr...> Date: 2021-03-22 (Mon, 22 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- iasecc: Fix ACLs support when length is 6 (#2264) * IASECC: offset is a size_t Let's use a size_t for the offset in order to have a proper logic along with the related arithmetics. Fix: part if issue #2262 Suggested-by: Frank Morgner <fra...@gm...> * iasecc: Fix ACLs support when length is 6 ACLs with length < 6 are allowed, depending on the mask of the offset 0. For instance, when the offset 0 is 0x7B, then length can be up to 7 when the offset 0 is 0x7A, the loop was never performing any access to the acls[7] thanks to: if (!(mask & acls[0])) continue; However, the oss-fuzz tools cannot guess such behavior. So let's have a robust boundary check. Fix: issue #2262 Fix: ae1cf0be90396f 'Prevent stack buffer overflow when empty ACL is returned' Co-authored-by: Vincent JARDIN <vj...@fr...> Co-authored-by: Frank Morgner <fra...@gm...> |
|
From: Jakub J. <no...@gi...> - 2021-03-21 08:53:36
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 5d4daf6c92e4668f5458f380f3cacea3e879d91a https://github.com/OpenSC/OpenSC/commit/5d4daf6c92e4668f5458f380f3cacea3e879d91a Author: Jakub Jelen <jj...@re...> Date: 2021-03-21 (Sun, 21 Mar 2021) Changed paths: M src/libopensc/pkcs15-oberthur.c Log Message: ----------- oberthur: One more overlooked buffer overflow Thanks oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32202 |
|
From: Michał T. <no...@gi...> - 2021-03-20 18:59:23
|
Branch: refs/heads/master Home: https://github.com/OpenSC/libp11 Commit: 61589573da39972c56189bb110c2c6f86c02313f https://github.com/OpenSC/libp11/commit/61589573da39972c56189bb110c2c6f86c02313f Author: Callum McLoughlin <cal...@al...> Date: 2021-03-20 (Sat, 20 Mar 2021) Changed paths: M src/p11_attr.c Log Message: ----------- Fix issue with endianness when using addattr_bool This patch fixes an issue where adding a boolean attribute truncates the value and depending on the endianness of the system, results in the wrong value being added. |
|
From: Timo T. <no...@gi...> - 2021-03-20 18:58:04
|
Branch: refs/heads/master Home: https://github.com/OpenSC/libp11 Commit: a8856e892fc37e108685b10d4c2abfe2a785a9cd https://github.com/OpenSC/libp11/commit/a8856e892fc37e108685b10d4c2abfe2a785a9cd Author: Timo Teräs <tim...@ik...> Date: 2021-03-20 (Sat, 20 Mar 2021) Changed paths: M appveyor.yml Log Message: ----------- Bump AppVeyor OpenSSL version to 1.1.1i Commit: 98c8ba148852f16d0f1689e681d889c2c773f41d https://github.com/OpenSC/libp11/commit/98c8ba148852f16d0f1689e681d889c2c773f41d Author: Timo Teräs <tim...@ik...> Date: 2021-03-20 (Sat, 20 Mar 2021) Changed paths: M .travis.sh Log Message: ----------- travis: Build openssl with --disable-strict Current OpenSC git master gets compiler warnings in some buid combinations, and that causes the whole build to fail. Since our chain concerns libp11, build the OpenSC without -Werror. Commit: 26a5afec58ddf8967af877008b43321af7bbd3ec https://github.com/OpenSC/libp11/commit/26a5afec58ddf8967af877008b43321af7bbd3ec Author: Timo Teräs <tim...@ik...> Date: 2021-03-20 (Sat, 20 Mar 2021) Changed paths: M .travis.sh Log Message: ----------- travis: Remove "brew update" This is equivalent of "apt-get dist-upgrade" which udpates everything installed. On current CI this fails due to trying to recompile Java and timing out on it. Brew is basically needed to install pcsclite. This makes it also more equal to the apt-get variant which also does not try to upgrade system. The Mac OSX builds should be considerably faster as result of this. Compare: https://github.com/OpenSC/libp11/compare/b02940e7dcde...26a5afec58dd |
|
From: Jakub J. <no...@gi...> - 2021-03-18 12:18:41
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 715c17c469f6c463dd511a5deb229da4de9ee100 https://github.com/OpenSC/OpenSC/commit/715c17c469f6c463dd511a5deb229da4de9ee100 Author: Jakub Jelen <jj...@re...> Date: 2021-03-18 (Thu, 18 Mar 2021) Changed paths: M src/libopensc/pkcs15-oberthur.c Log Message: ----------- oberthur: Fix memory leaks Thanks oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32149 |
|
From: Jakub J. <no...@gi...> - 2021-03-18 08:58:51
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 16b7c60fd35f8ff1bb5bd0c1fd5efd6c41e50e77 https://github.com/OpenSC/OpenSC/commit/16b7c60fd35f8ff1bb5bd0c1fd5efd6c41e50e77 Author: Jakub Jelen <jj...@re...> Date: 2021-03-18 (Thu, 18 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c M src/pkcs11/pkcs11-spy.c M src/tools/pkcs11-tool.c Log Message: ----------- Fix more issues with strict aliasing reported by gcc v8 Thanks popoves for reporting this issue Commit: d5dea2dd1b3a412adace25ee8a9ff2e73a97508a https://github.com/OpenSC/OpenSC/commit/d5dea2dd1b3a412adace25ee8a9ff2e73a97508a Author: Jakub Jelen <jj...@re...> Date: 2021-03-18 (Thu, 18 Mar 2021) Changed paths: M tests/test-duplicate-symbols.sh Log Message: ----------- tests: Investigate test failure on bionic Compare: https://github.com/OpenSC/OpenSC/compare/05648b0604bf...d5dea2dd1b3a |
|
From: Frank M. <no...@gi...> - 2021-03-18 08:57:20
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 05648b0604bf3e498e8d42dff3c6e7c56a5bf749 https://github.com/OpenSC/OpenSC/commit/05648b0604bf3e498e8d42dff3c6e7c56a5bf749 Author: Frank Morgner <fra...@gm...> Date: 2021-03-18 (Thu, 18 Mar 2021) Changed paths: M src/libopensc/pkcs15-oberthur.c Log Message: ----------- oberthur: fixed Heap-buffer-overflow fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32149 |
|
From: Vincent J. <no...@gi...> - 2021-03-17 09:58:48
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: acb8822444958a687888d821a7dda2a4e21b76de https://github.com/OpenSC/OpenSC/commit/acb8822444958a687888d821a7dda2a4e21b76de Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c M src/libopensc/cards.h Log Message: ----------- IASECC: Add support for CPx cards The French CPx Healthcare cards are designed to support the IASECC standard. Commit: 560692221bee43a63bef445d26107807db159fc5 https://github.com/OpenSC/OpenSC/commit/560692221bee43a63bef445d26107807db159fc5 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: file selection and app enumeration Thanks to this commit, we get the full support of: - ./opensc-explore cd 0001 asn1 2F00 - ./pkcs11-tool -O - etc. Commit: fd97f49a8414dcf23297dfcd05b4c6677bd6c674 https://github.com/OpenSC/OpenSC/commit/fd97f49a8414dcf23297dfcd05b4c6677bd6c674 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/dir.c Log Message: ----------- IASECC: CPX have 2 applications There are 2 applications: default one (contact mode) and the contactless mode. Commit: 7cd713d15dfe949de0db1535b8c539ef02bd57ef https://github.com/OpenSC/OpenSC/commit/7cd713d15dfe949de0db1535b8c539ef02bd57ef Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: enable RSA algorithms Without this fix, we get: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest Once we include it, we get: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest RSA-9796, keySize={1024,2048}, hw, decrypt, sign, verify RSA-PKCS, keySize={1024,2048}, hw, decrypt, sign, verify SHA1-RSA-PKCS, keySize={1024,2048}, sign, verify SHA256-RSA-PKCS, keySize={1024,2048}, sign, verify RSA-PKCS-KEY-PAIR-GEN, keySize={1024,2048}, generate_key_pair Commit: 41edcaa413988daef1810a0e5ab198f86cdedc2f https://github.com/OpenSC/OpenSC/commit/41edcaa413988daef1810a0e5ab198f86cdedc2f Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: proper set of RSA support The previous commit was over simplified. According to the known mechanism, we should have the following scope: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest RSA-X-509, keySize={512,2048}, hw, decrypt, sign, verify RSA-PKCS, keySize={512,2048}, hw, decrypt, sign, verify SHA1-RSA-PKCS, keySize={512,2048}, sign, verify SHA256-RSA-PKCS, keySize={512,2048}, sign, verify RSA-PKCS-PSS, keySize={512,2048}, hw, sign, verify SHA1-RSA-PKCS-PSS, keySize={512,2048}, sign, verify SHA256-RSA-PKCS-PSS, keySize={512,2048}, sign, verify do not use the default flags yet: _sc_card_add_rsa_alg(card, 1024, IASECC_CARD_DEFAULT_FLAGS, 0x10001); _sc_card_add_rsa_alg(card, 2048, IASECC_CARD_DEFAULT_FLAGS, 0x10001); _sc_card_add_rsa_alg(card, 512, IASECC_CARD_DEFAULT_FLAGS, 0x10001); Contactless specific behaviour shall be added later on. Commit: 6efd7b30294cb0a971912c76837e8c629ad7ebda https://github.com/OpenSC/OpenSC/commit/6efd7b30294cb0a971912c76837e8c629ad7ebda Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC: send/recv from EF.ATR Log the send/recv data extracted from the EF.ATR (2F01). Commit: fd83e885f7799d4269fa19f3525535438de8f875 https://github.com/OpenSC/OpenSC/commit/fd83e885f7799d4269fa19f3525535438de8f875 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/ef-atr.c Log Message: ----------- IASECC/CPX: parse EF.ATR from ASN1 2F01 object 2F01 is: ./opensc-explorer -r 0 OpenSC [3F00]> cat 2F01 00000000: 80 43 01 B8 46 04 04 B0 EC C1 47 03 94 01 80 4F .C..F.....G....O 00000010: 08 80 25 00 00 01 FF 01 00 E0 10 02 02 01 04 02 ..%............. 00000020: 02 01 04 02 02 01 00 02 02 01 00 78 08 06 06 2B ...........x...+ 00000030: 81 22 F8 78 02 82 02 90 00 .".x..... so the ASN1 decoder gets confused because it assumes that two bytes are needed before getting the first tag 43/ISO7816_TAG_II_CARD_SERVICE. In order to avoid such confusion, whenever the content of the EF.ATR/2F01 starts with ISO7816_II_CATEGORY_TLV, we skip the first byte in order to parse the ASN1 payload. Fix: issue #2220 Commit: c581d1b26f7b832d2e57062246d852d997d49721 https://github.com/OpenSC/OpenSC/commit/c581d1b26f7b832d2e57062246d852d997d49721 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/tools/opensc-explorer.c Log Message: ----------- IASECC/CPX: opensc-explorer asn1 of EF.ATR objects Workaround the parsing of EF.ATR objects, for instance: ./opensc-explorer -r 0 OpenSC [3F00]> cat 2F01 00000000: 80 43 01 B8 46 04 04 B0 EC C1 47 03 94 01 80 4F .C..F.....G....O 00000010: 08 80 25 00 00 01 FF 01 00 E0 10 02 02 01 04 02 ..%............. 00000020: 02 01 04 02 02 01 00 02 02 01 00 78 08 06 06 2B ...........x...+ 00000030: 81 22 F8 78 02 82 02 90 00 .".x..... OpenSC [3F00]> info 2F01 Working Elementary File ID 2F01, SFI E8 File path: 3F00/2F01 File size: 57 bytes EF structure: Transparent ACL for READ: NONE ACL for UPDATE: SecOx45 ACL for DELETE: SecOx45 ACL for WRITE: N/A ACL for REHABILITATE: N/A ACL for INVALIDATE: N/A ACL for LIST FILES: N/A ACL for CRYPTO: N/A Type attributes: 01 Life cycle: Operational, activated In order to avoid adding an offset of 1 for such objects on some OpenSC [3F00]> asn1 2F01 1 specific cards, then, we get: OpenSC [3F00]> asn1 2F01 80 Context 0 (0 bytes) 43 Application 3 (1 byte): decode error: B8 . 46 Application 6 (4 bytes): decode error: 04 B0 EC C1 .... 47 Application 7 (3 bytes): 94 01 80 ... 4F Application 15 (8 bytes): 80 25 00 00 01 FF 01 00 .%...... E0 Private 0 (16 bytes) 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 256 02 INTEGER (2 bytes): 256 78 Application 24 (8 bytes) 06 OBJECT IDENTIFIER (6 bytes): 1.3.162.15480.2 82 Context 2 (2 bytes): 36864: 90 00 .. OpenSC [3F00]> which means: ef-atr.c:49:sc_parse_ef_atr_content: EF.ATR: card service 0xB8 ef-atr.c:59:sc_parse_ef_atr_content: EF.ATR: Pre-Issuing data '04B0ECC1' ef-atr.c:67:sc_parse_ef_atr_content: EF.ATR: DF selection 94, unit_size 1, card caps 80 ef-atr.c:95:sc_parse_ef_atr_content: EF.ATR: AID '8025000001FF0100' ef-atr.c:106:sc_parse_ef_atr_content: EF.ATR: Issuer data '02020104020201040202010002020100' ef-atr.c:111:sc_parse_ef_atr_content: EF.ATR: DER encoded OID 06062B8122F87802 ef-atr.c:114:sc_parse_ef_atr_content: EF.ATR: OID 2B8122F87802 ef-atr.c:123:sc_parse_ef_atr_content: EF.ATR: status word 0x9000 Fix: issue #2220 Commit: 20f359ea0461710b59219b51aa1d0f347097a838 https://github.com/OpenSC/OpenSC/commit/20f359ea0461710b59219b51aa1d0f347097a838 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: SC_PATH_TYPE_FILE_ID, wrong APDU For SC_PATH_TYPE_FILE_ID, P2 should be 0x04, if not, then we get the following errors: [opensc-pkcs11] reader-pcsc.c:324:pcsc_transmit: Outgoing APDU (7 bytes): 00 A4 02 00 02 A0 01 ....... [opensc-pkcs11] reader-pcsc.c:242:pcsc_internal_transmit: called [opensc-pkcs11] reader-pcsc.c:333:pcsc_transmit: Incoming APDU (2 bytes): 6A 86 j. [opensc-pkcs11] apdu.c:382:sc_single_transmit: returning with: 0 (Success) [opensc-pkcs11] apdu.c:535:sc_transmit: returning with: 0 (Success) [opensc-pkcs11] card.c:523:sc_unlock: called [opensc-pkcs11] iso7816.c:128:iso7816_check_sw: Incorrect parameters P1-P2 [opensc-pkcs11] card-iasecc.c:1107:iasecc_select_file: iasecc_select_file() check SW failed: -1205 (Incorrect parameters in APDU) [opensc-pkcs11] card.c:866:sc_select_file: 'SELECT' error: -1205 (Incorrect parameters in APDU) when running: ./pkcs11-tool --test --login --pin abcd Commit: b50834901028f2e1cb68e035171a3e050f2ca878 https://github.com/OpenSC/OpenSC/commit/b50834901028f2e1cb68e035171a3e050f2ca878 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/tools/opensc-explorer.c Log Message: ----------- IASECC/CPX: opensc-explorer asn1 EF.ATR parsing Let's the advance users be able to parse the ASN1 contant for any offset. OpenSC [3F00]> asn1 2F01 0 Error in decoding. OpenSC [3F00]> asn1 2F01 1 43 Application 3 (1 byte): decode error, : B8 . 46 Application 6 (4 bytes): decode error: 04 B0 EC C1 .... 47 Application 7 (3 bytes): 94 01 80 ... 4F Application 15 (8 bytes): 80 25 00 00 01 FF 01 00 .%...... E0 Private 0 (16 bytes) 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 256 02 INTEGER (2 bytes): 256 78 Application 24 (8 bytes) 06 OBJECT IDENTIFIER (6 bytes): 1.3.162.15480.2 82 Context 2 (2 bytes): 36864: 90 00 .. Fix: issue #2220 Commit: 4119b2c3e7eadf0bccb1a3592ded897ce6619121 https://github.com/OpenSC/OpenSC/commit/4119b2c3e7eadf0bccb1a3592ded897ce6619121 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/asn1.c M src/libopensc/asn1.h M src/tests/unittests/asn1.c Log Message: ----------- ASN1 lax bit string decoding Some ASN1 objects stored on some smartcards (for instance the IASECC/CPX ones) do not comply strictly with the rules 8.6.2.3 and 8.6.2.3 from the ITU. Since these rules are not some strict ones, let's have a loose decoding option that can be displayed by the command: opensc-explorer asn1 7001 # for instance Fix: issue #2224 Commit: 76507508d7b3c31935a641e87bf93709812049e1 https://github.com/OpenSC/OpenSC/commit/76507508d7b3c31935a641e87bf93709812049e1 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: code factorization There are two flavours of CPX cards: - contact mode, - contactless mode Commit: fc0df4e5d578e5926a59dbf3a34ce737424464ba https://github.com/OpenSC/OpenSC/commit/fc0df4e5d578e5926a59dbf3a34ce737424464ba Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-17 (Wed, 17 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: revert removal of 3F00 from the path Few years ago, the commit 03628449b75a93787eb2359412a3980365dda49b did squash the 3F00nnnn path to nnnn. For instance, 3F002F00 becomes 2F00. It is an issue such as: 00000200 [139681798813440] APDU: 00 A4 09 04 02 2F 00 00029790 [139681798813440] SW: 6A 82 Fix: issue #2231 Compare: https://github.com/OpenSC/OpenSC/compare/40c50a3a4219...fc0df4e5d578 |
|
From: Jakub J. <no...@gi...> - 2021-03-16 11:02:50
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 40c50a3a4219308aae90f6efd7b10213794a8d86 https://github.com/OpenSC/OpenSC/commit/40c50a3a4219308aae90f6efd7b10213794a8d86 Author: Jakub Jelen <jj...@re...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M src/libopensc/pkcs15-oberthur.c Log Message: ----------- oberthur: Handle more memory issues during initialization Thanks oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31540 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31448 |
|
From: Frank M. <no...@gi...> - 2021-03-16 10:50:11
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 63e66833842b0a6eb4181c579d4480d95103149a https://github.com/OpenSC/OpenSC/commit/63e66833842b0a6eb4181c579d4480d95103149a Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: R MacOSX/OpenSC_Uninstaller.entitlements A MacOSX/OpenSC_applescripts.entitlements A MacOSX/OpenSC_binaries.entitlements M MacOSX/build-package.in Log Message: ----------- mac: use dedicated entitlements for binaries and scripts fixes the codesigning issue with the unknown blobs in the entitlements (missing "/" to complete blob) Commit: 85c5610d398c26d537e550cd19a4ebaa3a100eb5 https://github.com/OpenSC/OpenSC/commit/85c5610d398c26d537e550cd19a4ebaa3a100eb5 Author: Raul Metsma <ra...@me...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M MacOSX/build-package.in Log Message: ----------- Build arm64 on macOS with Xcode 12.2 Signed-off-by: Raul Metsma <ra...@me...> Commit: 1325d5c3333f6fef35b3890f8c3402ab343be7f8 https://github.com/OpenSC/OpenSC/commit/1325d5c3333f6fef35b3890f8c3402ab343be7f8 Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M .travis.yml Log Message: ----------- travis: use newer version of xcode for pushed binaries Commit: 578128e46484f4267a3e47a6b322514f3961edd7 https://github.com/OpenSC/OpenSC/commit/578128e46484f4267a3e47a6b322514f3961edd7 Author: Raul Metsma <ra...@me...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M .travis.yml M MacOSX/build-package.in Log Message: ----------- Fix build on travis and with CryptoTokenKit enabled Commit: aae9254018a4ded2ded980613f50d8b4ea9804d6 https://github.com/OpenSC/OpenSC/commit/aae9254018a4ded2ded980613f50d8b4ea9804d6 Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M .travis.yml Log Message: ----------- Fixed syntax error Commit: b9080c16d662418961dad09b0a0b0a8e64c74aa9 https://github.com/OpenSC/OpenSC/commit/b9080c16d662418961dad09b0a0b0a8e64c74aa9 Author: Raul Metsma <ra...@me...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M MacOSX/build-package.in Log Message: ----------- Make sure that we build always x86_64 openssl on macOS Signed-off-by: Raul Metsma <ra...@me...> Commit: 26fac9592de4e6c84ff39889ad6ca8c207f63d4e https://github.com/OpenSC/OpenSC/commit/26fac9592de4e6c84ff39889ad6ca8c207f63d4e Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M .travis.yml M MacOSX/build-package.in Log Message: ----------- macos: add a tokend postfix for dmg Commit: 4512676795e094ad68f41e32e9b553cc30c5f87b https://github.com/OpenSC/OpenSC/commit/4512676795e094ad68f41e32e9b553cc30c5f87b Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M .github/push_artifacts.sh Log Message: ----------- Nightly: in case of conflicts, add "our" changes on top Compare: https://github.com/OpenSC/OpenSC/compare/f46b61739711...4512676795e0 |
|
From: Frank M. <no...@gi...> - 2021-03-16 09:58:27
|
Branch: refs/heads/script_entitlements Home: https://github.com/OpenSC/OpenSC Commit: e3820ddb885a1f8c28792650da574da312d222da https://github.com/OpenSC/OpenSC/commit/e3820ddb885a1f8c28792650da574da312d222da Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: R MacOSX/OpenSC_Uninstaller.entitlements A MacOSX/OpenSC_applescripts.entitlements A MacOSX/OpenSC_binaries.entitlements M MacOSX/build-package.in Log Message: ----------- mac: use dedicated entitlements for binaries and scripts fixes the codesigning issue with the unknown blobs in the entitlements (missing "/" to complete blob) |
|
From: Peter P. <no...@gi...> - 2021-03-16 09:58:12
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: f46b61739711f400fe28c7274c8b49db412a0515 https://github.com/OpenSC/OpenSC/commit/f46b61739711f400fe28c7274c8b49db412a0515 Author: Peter Popovec <pop...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M src/libopensc/card-myeid.c M src/libopensc/types.h M src/pkcs15init/pkcs15-lib.c Log Message: ----------- Skip authentication if card access control mechanism is not active. Depending on the "lifecycle" of the file, we may omit the authentication operation. Typically if the card is in initialization or creation state, the access control mechanism is inactive. If authentification can be skiped, the card driver is responsible for setting the "acl_inactive" variable in sc_file structure. |
|
From: Frank M. <no...@gi...> - 2021-03-16 09:57:10
|
Branch: refs/heads/script_entitlements Home: https://github.com/OpenSC/OpenSC Commit: 849bdc5cd7535af5b9e9f99f43e915b3a927ace2 https://github.com/OpenSC/OpenSC/commit/849bdc5cd7535af5b9e9f99f43e915b3a927ace2 Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: R MacOSX/OpenSC_Uninstaller.entitlements A MacOSX/OpenSC_applescripts.entitlements A MacOSX/OpenSC_binaries.entitlements M MacOSX/build-package.in Log Message: ----------- mac: use dedicated entitlements for binaries and scripts this hopefully fixes the codesigning issue with the unknown blobs in the entitlements |
|
From: Frank M. <no...@gi...> - 2021-03-16 09:25:48
|
Branch: refs/heads/script_entitlements Home: https://github.com/OpenSC/OpenSC Commit: 39f8a37a7246a79ec7230ab418564308c8843d61 https://github.com/OpenSC/OpenSC/commit/39f8a37a7246a79ec7230ab418564308c8843d61 Author: Frank Morgner <fra...@gm...> Date: 2021-03-16 (Tue, 16 Mar 2021) Changed paths: M MacOSX/OpenSC_Uninstaller.entitlements A MacOSX/OpenSC_applescripts.entitlements A MacOSX/OpenSC_binaries.entitlements M MacOSX/build-package.in Log Message: ----------- mac: use dedicated entitlements for binaries and scripts this hopefully fixes the codesigning issue with the unknown blobs in the entitlements |
|
From: Frank M. <no...@gi...> - 2021-03-15 15:39:01
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 8e614bfe6ebe2a1a955e57678da0c41b93149528 https://github.com/OpenSC/OpenSC/commit/8e614bfe6ebe2a1a955e57678da0c41b93149528 Author: Frank Morgner <fra...@gm...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .travis.yml Log Message: ----------- Nightly: unencrypt only if encrypted key is in available |
|
From: Frank M. <no...@gi...> - 2021-03-15 11:19:08
|
Branch: refs/heads/arm64 Home: https://github.com/OpenSC/OpenSC Commit: 960421b9cf65398b4d1c453aa1382b8a97a7dcaa https://github.com/OpenSC/OpenSC/commit/960421b9cf65398b4d1c453aa1382b8a97a7dcaa Author: Raul Metsma <ra...@me...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M MacOSX/build-package.in Log Message: ----------- Build arm64 on macOS with Xcode 12.2 Signed-off-by: Raul Metsma <ra...@me...> Commit: 31013445e676d6fb94a98fbb204142b2f7990ac3 https://github.com/OpenSC/OpenSC/commit/31013445e676d6fb94a98fbb204142b2f7990ac3 Author: Frank Morgner <fra...@gm...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .travis.yml Log Message: ----------- travis: use newer version of xcode for pushed binaries Commit: 0af538708cb9f306991e43d800af82f25b3e0777 https://github.com/OpenSC/OpenSC/commit/0af538708cb9f306991e43d800af82f25b3e0777 Author: Raul Metsma <ra...@me...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .travis.yml M MacOSX/build-package.in Log Message: ----------- Fix build on travis and with CryptoTokenKit enabled Commit: 3804c19f8594812095ad901274b5cfeadd43b573 https://github.com/OpenSC/OpenSC/commit/3804c19f8594812095ad901274b5cfeadd43b573 Author: Frank Morgner <fra...@gm...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .travis.yml Log Message: ----------- Fixed syntax error Commit: aec9f7c0a7c6a6ed785f86a60f0a8837b7e61cae https://github.com/OpenSC/OpenSC/commit/aec9f7c0a7c6a6ed785f86a60f0a8837b7e61cae Author: Raul Metsma <ra...@me...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M MacOSX/build-package.in Log Message: ----------- Make sure that we build always x86_64 openssl on macOS Signed-off-by: Raul Metsma <ra...@me...> Commit: 600f2aa70fd6a9e3e97b62c939c502b50e3f2174 https://github.com/OpenSC/OpenSC/commit/600f2aa70fd6a9e3e97b62c939c502b50e3f2174 Author: Frank Morgner <fra...@gm...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .travis.yml M MacOSX/build-package.in Log Message: ----------- macos: add a tokend postfix for dmg Commit: a5a94a75e912fa5c13859778702be306ae4eab92 https://github.com/OpenSC/OpenSC/commit/a5a94a75e912fa5c13859778702be306ae4eab92 Author: Frank Morgner <fra...@gm...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M .github/push_artifacts.sh Log Message: ----------- Nightly: in case of conflicts, add "our" changes on top Compare: https://github.com/OpenSC/OpenSC/compare/634e963adcf1...a5a94a75e912 |
|
From: Jakub J. <no...@gi...> - 2021-03-15 08:34:28
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 8d61d0d20db1df9b9c5e95b95dac3240e685b603 https://github.com/OpenSC/OpenSC/commit/8d61d0d20db1df9b9c5e95b95dac3240e685b603 Author: Jakub Jelen <jj...@re...> Date: 2021-03-15 (Mon, 15 Mar 2021) Changed paths: M tests/test-duplicate-symbols.sh Log Message: ----------- Use more portable switch for uniq to unbreak osx build |
|
From: Jakub J. <no...@gi...> - 2021-03-09 23:00:31
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: b5f26051bb0860296fda347bd76ac827ac86c462 https://github.com/OpenSC/OpenSC/commit/b5f26051bb0860296fda347bd76ac827ac86c462 Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c Log Message: ----------- Fix build on gcc11 This made most of the applications crashing in Fedora 34 when smart card was plugged in. The suggested patch makes the code path more obvious for gcc to handle. https://bugzilla.redhat.com/show_bug.cgi?id=1930652 Commit: 45e262f5372195bb7e1f1f141067d8290e2276dc https://github.com/OpenSC/OpenSC/commit/45e262f5372195bb7e1f1f141067d8290e2276dc Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/libopensc/pkcs15-westcos.c Log Message: ----------- westcos: Avoid strict aliasing violations Commit: 2fa6700599f358bc97d69ff923b7bde9304b7dc7 https://github.com/OpenSC/OpenSC/commit/2fa6700599f358bc97d69ff923b7bde9304b7dc7 Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/pkcs11/framework-pkcs15.c M src/pkcs11/pkcs11-object.c M src/tools/pkcs11-register.c Log Message: ----------- Remove more issues with strict aliasing These would demonstrate with gcc11 and can be detected with gcc flag -Wstrict-aliasing=2 (also with older gcc) Commit: 544dcc68272db07e1847a008dcae4ad8d4462989 https://github.com/OpenSC/OpenSC/commit/544dcc68272db07e1847a008dcae4ad8d4462989 Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M configure.ac Log Message: ----------- configure: Warn about strict alliasing issues in strict builds Commit: 63031b2193b35cd6d46d5ef14206fa1cb8539b7f https://github.com/OpenSC/OpenSC/commit/63031b2193b35cd6d46d5ef14206fa1cb8539b7f Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/tools/pkcs11-tool.c Log Message: ----------- pkcs11-tool: Avoid strict-aliasing issues on 32b architectures Commit: 60632100a0ea5634896c625c0e26657f3b5d874d https://github.com/OpenSC/OpenSC/commit/60632100a0ea5634896c625c0e26657f3b5d874d Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/pkcs11/pkcs11.h Log Message: ----------- pkcs11: Avoid redefinition of ck_interface (#2243) Commit: 1ef79e99f70305edf3e0b21cd7c039c70ec4b255 https://github.com/OpenSC/OpenSC/commit/1ef79e99f70305edf3e0b21cd7c039c70ec4b255 Author: Jakub Jelen <jj...@re...> Date: 2021-03-09 (Tue, 09 Mar 2021) Changed paths: M src/libopensc/reader-pcsc.c Log Message: ----------- reader-pcsc: Avoid strict aliasing issues Compare: https://github.com/OpenSC/OpenSC/compare/5b42a62ec023...1ef79e99f703 |
|
From: Vincent J. <no...@gi...> - 2021-03-05 16:41:40
|
Branch: refs/heads/iasecc_cpx Home: https://github.com/OpenSC/OpenSC Commit: 17ccb3a970a65c2215f21e9c1c42a624a28de3c4 https://github.com/OpenSC/OpenSC/commit/17ccb3a970a65c2215f21e9c1c42a624a28de3c4 Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-01 (Mon, 01 Feb 2021) Changed paths: M src/libopensc/card-iasecc.c M src/libopensc/cards.h Log Message: ----------- IASECC: Add support for CPx cards The French CPx Healthcare cards are designed to support the IASECC standard. Commit: f772a7750d0a060539bb6ce78a90fa5a7cd3629c https://github.com/OpenSC/OpenSC/commit/f772a7750d0a060539bb6ce78a90fa5a7cd3629c Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-01 (Mon, 01 Feb 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: file selection and app enumeration Thanks to this commit, we get the full support of: - ./opensc-explore cd 0001 asn1 2F00 - ./pkcs11-tool -O - etc. Commit: 57119689f075239d64b10a0c0d217519ba60aeab https://github.com/OpenSC/OpenSC/commit/57119689f075239d64b10a0c0d217519ba60aeab Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-01 (Mon, 01 Feb 2021) Changed paths: M src/libopensc/dir.c Log Message: ----------- IASECC: CPX have 2 applications There are 2 applications: default one (contact mode) and the contactless mode. Commit: f8ce28b35b3cef4a1fe15ec76f9153a3230b5025 https://github.com/OpenSC/OpenSC/commit/f8ce28b35b3cef4a1fe15ec76f9153a3230b5025 Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-03 (Wed, 03 Feb 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: enable RSA algorithms Without this fix, we get: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest Once we include it, we get: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest RSA-9796, keySize={1024,2048}, hw, decrypt, sign, verify RSA-PKCS, keySize={1024,2048}, hw, decrypt, sign, verify SHA1-RSA-PKCS, keySize={1024,2048}, sign, verify SHA256-RSA-PKCS, keySize={1024,2048}, sign, verify RSA-PKCS-KEY-PAIR-GEN, keySize={1024,2048}, generate_key_pair Commit: 3867bd357a9122f78aa92bfa4a49c584e4e47b7c https://github.com/OpenSC/OpenSC/commit/3867bd357a9122f78aa92bfa4a49c584e4e47b7c Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-14 (Sun, 14 Feb 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: proper set of RSA support The previous commit was over simplified. According to the known mechanism, we should have the following scope: ./pkcs11-tool --module ../lib/onepin-opensc-pkcs11.so -M Using slot 0 with a present token (0x0) Supported mechanisms: SHA-1, digest SHA224, digest SHA256, digest SHA384, digest SHA512, digest MD5, digest RIPEMD160, digest GOSTR3411, digest RSA-X-509, keySize={512,2048}, hw, decrypt, sign, verify RSA-PKCS, keySize={512,2048}, hw, decrypt, sign, verify SHA1-RSA-PKCS, keySize={512,2048}, sign, verify SHA256-RSA-PKCS, keySize={512,2048}, sign, verify RSA-PKCS-PSS, keySize={512,2048}, hw, sign, verify SHA1-RSA-PKCS-PSS, keySize={512,2048}, sign, verify SHA256-RSA-PKCS-PSS, keySize={512,2048}, sign, verify do not use the default flags yet: _sc_card_add_rsa_alg(card, 1024, IASECC_CARD_DEFAULT_FLAGS, 0x10001); _sc_card_add_rsa_alg(card, 2048, IASECC_CARD_DEFAULT_FLAGS, 0x10001); _sc_card_add_rsa_alg(card, 512, IASECC_CARD_DEFAULT_FLAGS, 0x10001); Contactless specific behaviour shall be added later on. Commit: 5b79bc252257f091b1ec39dcbb3d6c897de724f3 https://github.com/OpenSC/OpenSC/commit/5b79bc252257f091b1ec39dcbb3d6c897de724f3 Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-14 (Sun, 14 Feb 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC: send/recv from EF.ATR Log the send/recv data extracted from the EF.ATR (2F01). Commit: 79acbefe05d0a9624d26cf5b8888bc02d5b6e906 https://github.com/OpenSC/OpenSC/commit/79acbefe05d0a9624d26cf5b8888bc02d5b6e906 Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-14 (Sun, 14 Feb 2021) Changed paths: M src/libopensc/ef-atr.c Log Message: ----------- IASECC/CPX: parse EF.ATR from ASN1 2F01 object 2F01 is: ./opensc-explorer -r 0 OpenSC [3F00]> cat 2F01 00000000: 80 43 01 B8 46 04 04 B0 EC C1 47 03 94 01 80 4F .C..F.....G....O 00000010: 08 80 25 00 00 01 FF 01 00 E0 10 02 02 01 04 02 ..%............. 00000020: 02 01 04 02 02 01 00 02 02 01 00 78 08 06 06 2B ...........x...+ 00000030: 81 22 F8 78 02 82 02 90 00 .".x..... so the ASN1 decoder gets confused because it assumes that two bytes are needed before getting the first tag 43/ISO7816_TAG_II_CARD_SERVICE. In order to avoid such confusion, whenever the content of the EF.ATR/2F01 starts with ISO7816_II_CATEGORY_TLV, we skip the first byte in order to parse the ASN1 payload. Fix: issue #2220 Commit: 756fc2e83c2244488a877bd669990189c0e2c6d1 https://github.com/OpenSC/OpenSC/commit/756fc2e83c2244488a877bd669990189c0e2c6d1 Author: Vincent JARDIN <vj...@fr...> Date: 2021-02-14 (Sun, 14 Feb 2021) Changed paths: M src/tools/opensc-explorer.c Log Message: ----------- IASECC/CPX: opensc-explorer asn1 of EF.ATR objects Workaround the parsing of EF.ATR objects, for instance: ./opensc-explorer -r 0 OpenSC [3F00]> cat 2F01 00000000: 80 43 01 B8 46 04 04 B0 EC C1 47 03 94 01 80 4F .C..F.....G....O 00000010: 08 80 25 00 00 01 FF 01 00 E0 10 02 02 01 04 02 ..%............. 00000020: 02 01 04 02 02 01 00 02 02 01 00 78 08 06 06 2B ...........x...+ 00000030: 81 22 F8 78 02 82 02 90 00 .".x..... OpenSC [3F00]> info 2F01 Working Elementary File ID 2F01, SFI E8 File path: 3F00/2F01 File size: 57 bytes EF structure: Transparent ACL for READ: NONE ACL for UPDATE: SecOx45 ACL for DELETE: SecOx45 ACL for WRITE: N/A ACL for REHABILITATE: N/A ACL for INVALIDATE: N/A ACL for LIST FILES: N/A ACL for CRYPTO: N/A Type attributes: 01 Life cycle: Operational, activated In order to avoid adding an offset of 1 for such objects on some OpenSC [3F00]> asn1 2F01 1 specific cards, then, we get: OpenSC [3F00]> asn1 2F01 80 Context 0 (0 bytes) 43 Application 3 (1 byte): decode error: B8 . 46 Application 6 (4 bytes): decode error: 04 B0 EC C1 .... 47 Application 7 (3 bytes): 94 01 80 ... 4F Application 15 (8 bytes): 80 25 00 00 01 FF 01 00 .%...... E0 Private 0 (16 bytes) 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 256 02 INTEGER (2 bytes): 256 78 Application 24 (8 bytes) 06 OBJECT IDENTIFIER (6 bytes): 1.3.162.15480.2 82 Context 2 (2 bytes): 36864: 90 00 .. OpenSC [3F00]> which means: ef-atr.c:49:sc_parse_ef_atr_content: EF.ATR: card service 0xB8 ef-atr.c:59:sc_parse_ef_atr_content: EF.ATR: Pre-Issuing data '04B0ECC1' ef-atr.c:67:sc_parse_ef_atr_content: EF.ATR: DF selection 94, unit_size 1, card caps 80 ef-atr.c:95:sc_parse_ef_atr_content: EF.ATR: AID '8025000001FF0100' ef-atr.c:106:sc_parse_ef_atr_content: EF.ATR: Issuer data '02020104020201040202010002020100' ef-atr.c:111:sc_parse_ef_atr_content: EF.ATR: DER encoded OID 06062B8122F87802 ef-atr.c:114:sc_parse_ef_atr_content: EF.ATR: OID 2B8122F87802 ef-atr.c:123:sc_parse_ef_atr_content: EF.ATR: status word 0x9000 Fix: issue #2220 Commit: 5fe1b667358f921936d219bc7a910b967635fc8c https://github.com/OpenSC/OpenSC/commit/5fe1b667358f921936d219bc7a910b967635fc8c Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: SC_PATH_TYPE_FILE_ID, wrong APDU For SC_PATH_TYPE_FILE_ID, P2 should be 0x04, if not, then we get the following errors: [opensc-pkcs11] reader-pcsc.c:324:pcsc_transmit: Outgoing APDU (7 bytes): 00 A4 02 00 02 A0 01 ....... [opensc-pkcs11] reader-pcsc.c:242:pcsc_internal_transmit: called [opensc-pkcs11] reader-pcsc.c:333:pcsc_transmit: Incoming APDU (2 bytes): 6A 86 j. [opensc-pkcs11] apdu.c:382:sc_single_transmit: returning with: 0 (Success) [opensc-pkcs11] apdu.c:535:sc_transmit: returning with: 0 (Success) [opensc-pkcs11] card.c:523:sc_unlock: called [opensc-pkcs11] iso7816.c:128:iso7816_check_sw: Incorrect parameters P1-P2 [opensc-pkcs11] card-iasecc.c:1107:iasecc_select_file: iasecc_select_file() check SW failed: -1205 (Incorrect parameters in APDU) [opensc-pkcs11] card.c:866:sc_select_file: 'SELECT' error: -1205 (Incorrect parameters in APDU) when running: ./pkcs11-tool --test --login --pin abcd Commit: 8cc328d423f24aef01b084a6b250b3a019645af0 https://github.com/OpenSC/OpenSC/commit/8cc328d423f24aef01b084a6b250b3a019645af0 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M src/tools/opensc-explorer.c Log Message: ----------- IASECC/CPX: opensc-explorer asn1 EF.ATR parsing Let's the advance users be able to parse the ASN1 contant for any offset. OpenSC [3F00]> asn1 2F01 0 Error in decoding. OpenSC [3F00]> asn1 2F01 1 43 Application 3 (1 byte): decode error, : B8 . 46 Application 6 (4 bytes): decode error: 04 B0 EC C1 .... 47 Application 7 (3 bytes): 94 01 80 ... 4F Application 15 (8 bytes): 80 25 00 00 01 FF 01 00 .%...... E0 Private 0 (16 bytes) 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 260 02 INTEGER (2 bytes): 256 02 INTEGER (2 bytes): 256 78 Application 24 (8 bytes) 06 OBJECT IDENTIFIER (6 bytes): 1.3.162.15480.2 82 Context 2 (2 bytes): 36864: 90 00 .. Fix: issue #2220 Commit: 87a35b170b8571db3a274cfda26aab838f097dfb https://github.com/OpenSC/OpenSC/commit/87a35b170b8571db3a274cfda26aab838f097dfb Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M src/libopensc/asn1.c M src/libopensc/asn1.h M src/tests/unittests/asn1.c Log Message: ----------- ASN1 lax bit string decoding Some ASN1 objects stored on some smartcards (for instance the IASECC/CPX ones) do not comply strictly with the rules 8.6.2.3 and 8.6.2.3 from the ITU. Since these rules are not some strict ones, let's have a loose decoding option that can be displayed by the command: opensc-explorer asn1 7001 # for instance Fix: issue #2224 Commit: 2a7b55c56d45fab2dd5cf0e4a86e07a872f4e848 https://github.com/OpenSC/OpenSC/commit/2a7b55c56d45fab2dd5cf0e4a86e07a872f4e848 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: code factorization There are two flavours of CPX cards: - contact mode, - contactless mode Commit: db1e178b5f7888917713cb9d28b99f6960f273b4 https://github.com/OpenSC/OpenSC/commit/db1e178b5f7888917713cb9d28b99f6960f273b4 Author: Vincent JARDIN <vj...@fr...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M src/libopensc/card-iasecc.c Log Message: ----------- IASECC/CPX: revert removal of 3F00 from the path Few years ago, the commit 03628449b75a93787eb2359412a3980365dda49b did squash the 3F00nnnn path to nnnn. For instance, 3F002F00 becomes 2F00. It is an issue such as: 00000200 [139681798813440] APDU: 00 A4 09 04 02 2F 00 00029790 [139681798813440] SW: 6A 82 Fix: issue #2231 Compare: https://github.com/OpenSC/OpenSC/compare/17ccb3a970a6%5E...db1e178b5f78 |
|
From: Frank M. <no...@gi...> - 2021-03-04 17:26:41
|
Branch: refs/heads/arm64 Home: https://github.com/OpenSC/OpenSC Commit: 634e963adcf1a4f88bb81c72d3b2067dbeb646ea https://github.com/OpenSC/OpenSC/commit/634e963adcf1a4f88bb81c72d3b2067dbeb646ea Author: Frank Morgner <fra...@gm...> Date: 2021-03-04 (Thu, 04 Mar 2021) Changed paths: M .github/push_artifacts.sh Log Message: ----------- in case of conflicts, add "our" changes on top |
