Commit Graph

  • ce5fca5d71 lib: Implemented change pin for the management key Tharsan Ponnampalam 2019-07-12 12:42:25 -04:00
  • 8ba243f0b3 lib: correct parentheses around condition+assignment Klas Lindfors 2019-07-03 16:00:08 +02:00
  • 682d91be2b Remove note about ifd-yubico. Dain Nilsson 2019-06-24 15:01:48 +02:00
  • 8a9223a380 Merge PR #194 Alessio Di Mauro 2019-05-22 12:33:02 +02:00
  • a4c64c8c21 Initialize C_Initialize's reader list to NULs. Peter Jones 2019-05-20 15:08:23 -04:00
  • 6dd9ab09d4 Merge PR #193 Alessio Di Mauro 2019-05-20 09:04:33 +02:00
  • 08b32ef3e0 added switch to ignore CKA_LABEL on calls to check_pubkey_template and check_pvtkey_template Kelby Ludwig 2019-05-18 21:39:36 -05:00
  • 0f33efeff7 Merge branch 'pr-191' Klas Lindfors 2019-05-07 14:44:35 +02:00
  • c61d6c6f23 lib: warn, but don't fail on error reading serial number or version lib: fix Windows build with OpenSSL 1.1.1 ykcs11: fix size_t/unsigned long type mismatch on Windows x64 Dave Pate 2019-05-06 14:46:46 -07:00
  • 00ced78b7a bump openssl to 1.0.2r Klas Lindfors 2019-04-03 10:27:45 +02:00
  • 4424a541d7 bump version for 1.7.1 Klas Lindfors 2019-04-03 10:27:34 +02:00
  • d13515d11d NEWS for 1.7.0 Klas Lindfors 2019-04-03 09:53:29 +02:00
  • 3d084c6f9a Merge branch 'pr-188' Klas Lindfors 2019-04-03 09:47:54 +02:00
  • 7b64528cf7 lib: check tlv length encoding when reading complex data Dave Pate 2019-01-22 13:59:06 -08:00
  • 5113a5ed02 lib: tlv length buffer checks Dave Pate 2019-01-22 08:17:45 -08:00
  • afbe1b2670 lib: handle realloc failures safely Dave Pate 2019-01-22 07:53:22 -08:00
  • f37cf3f462 lib: clear secrets in set_protected_mgm Dave Pate 2019-01-22 07:38:36 -08:00
  • 7ff3007017 lib: clear secrets in ykpiv_import_private_key Dave Pate 2019-01-22 07:29:24 -08:00
  • a10ab1ace5 lib: correct zero memory defines, correct overflow checks in _write_certificate Dave Pate 2019-01-21 15:02:05 -08:00
  • c4dbf9d02c lib: clear secrets in auth api Dave Pate 2019-01-17 15:59:30 -08:00
  • 340177f070 lib: check that serial/version checks occur during select Dave Pate 2019-01-17 15:49:21 -08:00
  • 934120888f lib: define constant for max pin len magic numbers lib: clear pin buffers when no longer used Dave Pate 2019-01-07 15:50:18 -08:00
  • eb250134f8 lib: check internal authentication crypt errors Dave Pate 2019-01-07 15:10:18 -08:00
  • b2dd16deb4 lib: clear buffers containing key material Dave Pate 2019-01-07 15:04:31 -08:00
  • 28189201a4 lib: use secure zero memory platform functions Dave Pate 2019-01-07 14:37:30 -08:00
  • 2e72c8f85c lib: resolves potential reads of uninitialized data Dave Pate 2019-01-07 14:20:01 -08:00
  • 9a72ec1ba1 doc: set LC_CTYPE=C; fixes ef81d164 on MacOS pedro martelletto 2019-03-06 08:25:30 +01:00
  • 33a10a5adb Merge pull request #187 from Yubico/pvs_remove_warnings Alessio Di Mauro 2019-03-06 15:27:40 +01:00
  • bc2f161c51 Initialize buf to 0 to make a code scanner happy Gabriel Kihlman 2019-03-06 15:16:56 +01:00
  • f60d2d4ff8 Do not assign variable twice Gabriel Kihlman 2019-03-06 14:32:42 +01:00
  • 3f7f2b633b Remove duplicate check on op_info.type != YKCS11_SIGN Gabriel Kihlman 2019-03-06 14:31:04 +01:00
  • 1f8a759894 Merge branch 'pr-186' Klas Lindfors 2019-03-05 08:16:44 +01:00
  • ef81d16465 doc: rely on /dev/urandom's distribution to generate secrets pedro martelletto 2019-03-05 07:58:09 +01:00
  • bc72c7378f Merge PR#184 Alessio Di Mauro 2019-02-20 16:09:32 +01:00
  • 5baf9347e1 Check return value of strdup Gabriel Kihlman 2019-02-20 16:02:19 +01:00
  • 2581c0b3c3 bump openssl version and don't include check binaries Klas Lindfors 2019-02-18 13:52:16 +01:00
  • 1d6ed20182 Merge PR#183 Alessio Di Mauro 2019-02-15 16:05:38 +01:00
  • e4e3137556 tool: fix selfsigned extensions Klas Lindfors 2019-02-15 13:52:56 +01:00
  • 6264c6a578 Merge PR #182 Alessio Di Mauro 2019-02-15 13:34:45 +01:00
  • 7ecb5fe0b8 tool: add extensions for selfsigned certificates to match openssl Klas Lindfors 2019-02-15 12:45:42 +01:00
  • 5749371432 ykcs11: use a large enough buffer when writing EC signatures Alessio Di Mauro 2019-01-07 11:03:52 +01:00
  • 8b38f0c079 Merge branch 'pr-178' Klas Lindfors 2019-01-02 08:50:49 +01:00
  • 811ddbb22d CHUID: fix the encoding of the FASC-N data element in the CHUID Stacey Sheldon 2019-01-01 01:43:51 -05:00
  • 421469b220 FASC-N: correct encoding of the packed 4-bit decimal format with odd parity Stacey Sheldon 2019-01-01 01:23:55 -05:00
  • 79b86cf9bd fix fasc-n value of 1 Klas Lindfors 2018-12-18 09:25:05 +01:00
  • 5d1d044982 Merge branch 'pr-165' Klas Lindfors 2018-09-21 10:34:09 +02:00
  • 898b85821c ykcs11: allow the pkcs11 module to find headers from tool/ Klas Lindfors 2018-09-18 08:38:57 +02:00
  • cbd5ba5122 libykpiv/piv-tool 1.6.3 lib: promote get_serial to base API lib: add ykpiv_get_serial to external API tool: add serial number/version to status command build: fix msvc build of case insensitive-reader (missing strncasecmp and cast warnings) lib: consolidate neo/yk4 + yk5 serial number routines lib: fix GCC 8 compilier warnings lib: reimplement deauthenticate to select mgmt aid build: disable -Waggregate-return lib: fix warning differences between gcc and msvc lib: add option to disable implicit card transactions lib: remove application reselect prior to crypt operations build: fix msvc warnings wrt length checking logic fixes lib: fix error condition logic in untransacted internal functions lib: create internal transactionless ykpiv_transfer_data Dave Pate 2018-09-14 14:29:39 -07:00
  • 311ba9b30c bump version to 1.6.3 Klas Lindfors 2018-09-14 10:04:27 +02:00
  • 54ed4018b2 NEWS for 1.6.2 Klas Lindfors 2018-09-14 09:24:05 +02:00
  • a24dd0a2ee tool: for openssl 1.1 rsa signatures include hash oid Klas Lindfors 2018-09-10 10:24:32 +02:00
  • 228a04ad73 tool: only declare the static struct once in wrap_public_key() Klas Lindfors 2018-09-10 10:04:46 +02:00
  • 696894bc68 tool: handle error conditions from signing with openssl 1.1 Klas Lindfors 2018-09-10 08:52:39 +02:00
  • d0ba708260 Merge PR #163 Alessio Di Mauro 2018-09-07 13:58:18 +02:00
  • 6e51db8c80 lib: make the reader comparison case-insensitive Klas Lindfors 2018-09-07 12:54:32 +02:00
  • 62142a1b74 bump openssl versions to 1.0.2p Klas Lindfors 2018-08-17 09:45:39 +02:00
  • 945a0f314d bump version to 1.6.2 Klas Lindfors 2018-08-17 09:45:20 +02:00
  • ff12f8baf3 NEWS for 1.6.1 Klas Lindfors 2018-08-17 09:22:18 +02:00
  • 5bbce58cee update NEWS for more changes that happened in 1.6.0 Klas Lindfors 2018-08-17 09:20:36 +02:00
  • 23a4d008c6 finish up version bump to 1.6.1, LT_REVISION has to increase Klas Lindfors 2018-08-17 09:14:32 +02:00
  • 45e74cfccf tool: check length before trying to store cert in buffer Klas Lindfors 2018-08-16 14:49:32 +02:00
  • 16d539041e ykpiv: when decoding an object compare lengths correctly Klas Lindfors 2018-08-16 14:24:15 +02:00
  • c15efbfdd7 ykpiv: fix length when encoding exactly 0xff bytes Klas Lindfors 2018-08-16 14:23:16 +02:00
  • 7b1c8197fb Merge branch 'pr-157' Klas Lindfors 2018-08-09 10:23:52 +02:00
  • d613b42b0c Avoid unused variables and warnings when building against OpenSSL 1.1 Jakub Jelen 2018-08-08 16:03:23 +02:00
  • 419d0da8bc Revert the configure.ac portion of c31a0425. Thordur Bjornsson 2018-08-08 15:25:09 +02:00
  • c31a042595 Bump version to 1.6.1 unreleased Thordur Bjornsson 2018-08-08 10:41:04 +02:00
  • 5258920cff release: 1.6.0 Thordur Bjornsson 2018-08-06 17:31:55 +02:00
  • 80d47c82f0 lib: in _ykpiv_fetch_object() handle bogus length by returning Klas Lindfors 2018-05-22 13:31:50 +02:00
  • 01a127a44a lib: in ykpiv_transfer_data() handle overflow by exiting Klas Lindfors 2018-05-22 13:31:20 +02:00
  • 5877998f03 ykcs11: ignore more attributes when creating objects Alessio Di Mauro 2018-05-15 11:45:00 +02:00
  • bdfe49f223 Make slot 9e private so that OpenSSL can ask for a PIN Alessio Di Mauro 2018-05-09 16:34:08 +02:00
  • 3758cecdd9 Remove 384 from the supported lengths for EC key generation in ykcs11 Alessio Di Mauro 2018-05-07 13:35:05 +02:00
  • 7533e7fb56 Ignore CKA_PRIVATE in ykcs11 Alessio Di Mauro 2018-05-03 10:18:36 +02:00
  • 15aef8957d Update key generation in ykcs11 to work with OpenSSL 1.1 Alessio Di Mauro 2018-05-03 10:16:42 +02:00
  • 0bae4b53ce Merge branch 'pr-144' Klas Lindfors 2018-03-25 17:36:12 +02:00
  • 9d8f8f3f2b Fixed slot argument error in attestation verification example. James Alseth 2018-03-23 14:53:27 -07:00
  • a2005eac92 Add check as a dependency to the Vagrant provision script Alessio Di Mauro 2018-03-19 09:08:10 +01:00
  • b4201cb605 Merge pull request #139 from notdpate/master Trevor Bentley 2018-03-06 12:46:46 +00:00
  • 7aa8228985 Release 1.5.2 Bump libtool version Dave Pate 2018-03-05 14:17:47 -08:00
  • 775eaacc9f Merge upstream master commits Dave Pate 2018-03-05 11:32:25 -08:00
  • b98f97ef62 Fixes linux/osx build warnings Clarify logic for configuration file Dave Pate 2018-03-05 11:28:52 -08:00
  • 8b99accf58 Merge pull request #138 from Jakuje/master Trevor Bentley 2018-02-27 15:00:09 +00:00
  • bbd92009fc libcheck 0.9 compatibility for RHEL7 Jakub Jelen 2018-02-27 15:40:22 +01:00
  • dfca8e2e55 Remove unused variables Jakub Jelen 2018-02-10 19:36:07 +01:00
  • b5d9dc86d7 Merge pull request #141 from laomaiweng/openssl-1.1.0-compat Trevor Bentley 2018-02-27 14:21:49 +00:00
  • c8372f27d7 Improve compatibility with OpenSSL 1.1.0 quentin 2018-02-26 02:43:41 +01:00
  • f5c42cef89 Do not build test if HW_TESTS is not enabled (to avoid warnings) Jakub Jelen 2018-02-10 19:35:12 +01:00
  • 0b2dcb0aaf Fix msvc build warning re: return values Dave Pate 2018-02-09 09:14:45 -08:00
  • 9783f9b626 Fix warnings in msvc build Dave Pate 2018-02-09 09:03:10 -08:00
  • 289896ac61 Add syslog/windows event log output Read multistage configuration Update ROCA mitigation check and warnings Dave Pate 2018-02-09 08:28:51 -08:00
  • 38ce95cf1c Merge pull request #137 from Yubico/custom_pcsc Trevor Bentley 2018-01-25 11:23:01 +01:00
  • c9f4d684d1 Support specifying custom PCSC lib Trevor Bentley 2018-01-24 14:48:13 +01:00
  • 74e1a0885c Merge pull request #136 from jmyreen/openssl-1.1-fixes Trevor Bentley 2018-01-02 13:24:53 +01:00
  • 6dc0419a79 Merge pull request #135 from Aloz1/libressl-support Trevor Bentley 2018-01-02 13:07:07 +01:00
  • b0210e0710 Fixed some bugs in the port to Openssl-1.1: Johan Myréen 2017-12-30 22:08:09 +02:00
  • 866b6b1d9d Added checks to allow building against LibreSSL Aloz1 2017-12-29 14:38:37 +11:00
  • 427451c12f Bump version to 1.5.1 unreleased Trevor Bentley 2017-11-29 13:10:53 +01:00
  • ab6f3d668a Merge pull request #133 from Yubico/distclean Trevor Bentley 2017-11-29 10:56:55 +01:00
  • d46db8e181 Build libs before running check. Trevor Bentley 2017-11-29 09:55:20 +00:00