This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "opencryptoki".
The annotated tag, v2.4.3 has been created
at b135048d76cf87cdf80df2ca0a2e4df4e1841986 (tag)
tagging f85fc72295578bdfa05220664ae0d8b1212197a2 (commit)
replaces v2.3.2
tagged by Joy Latten
on Tue Apr 30 14:31:18 2013 -0500
- Log -----------------------------------------------------------------
Version 2.4.3
Andreas Piesk (3):
Patch[1/6] lcv is uninitialized, replaced by slot_id.
Deprecated includes tss/tcpa_* removed, some casts to silence the compiler
Catch EOF in label input.
Ashley Lai (1):
Added Elliptic Curve support
Chris Masone (1):
Make pkcsslotd grab the shared memory it needs, even if it wasnt freed by
a previous instance
Dan Horák (1):
use DESTDIR when creating the locks directory
Diego Elio Pettenò (4):
Make sure to create directories before trying to install anything.
Fix implicit declarations in p11util.c
Cleanup and simply configure.in.
Run autoupdate for update sake.
Fionnuala Gunter (10):
Modified Makefile.am - to include /testcases/common
Added t_error to count number of errors encountered.
Refactored AES tests.
Refactored DES tests.
Refactored DES3 tests.
Refactored Digest tests.
Fixes looping through all the testcases when user pin is not set.
Add common testcase subroutines.
CCA now allows the outputted data len to be capped at 512.
Refactored RSA testcases. RSA testcases now include published
Ingo Tuchscherer (1):
Add CKM_SHAXXX_RSA_PKCS support to ica token.
Joy Latten (49):
strip_pkcs_padding() was missing parenthesis, thus always resulting
SF Bug #3196229 session handle issue
Forgot to add Kent's btree.c file for his session object handle changes.
Add a .gitignore to opencryptoki project for v2.4.
Remove an invalid test in login_test.sh.
pkcs_slot should create missing directories and ensure group
Two additional fixes for session odject handle found
Prior patches allowed sessions to be stored in a btree.
Revert "Soft token: Better public-exponent validation"
Testcases hung when public exponent was omitted.
Fix for SF3196185. template_check_exportability should return
SF3131950: The public exponent needs to be added to the private key
SF3196229 TPM has a custom logout that was being missed.
SF3196229 This fixes an issue in object mgmt rewrite in which
Fixes issue where public exponent passed to software token became
SF1415656 - Update PKCS#11 API version number to 2.20.
Add a gdb command script with helpful commands for debugging
Add gdb command to dump ECC key token generated by CCA
Cleanup logging. Debug messages now go to a debug file that
changed version number in configure.
Revert "dlopen(3) assumes relative path, but..."
Mention new method to do debugging in opencryptoki version 2.4
Add the mode the debug file should be created with.
Pass a pointer rather than copy of test suite to the different
Remove all references to a message catalog in pkcsconf.
Fixes SF #3349099 Wrapping a private key with a secret key fails.
1. pkcs11v2.20 spec says that CKA_VALUE_LEN should not be specified
Remove CKM_RSA_X_509 and CKM_RSA_PKCS_OAEP from tpm mech list since
Cleaned up rsa testcases when wrapping/unwrapping.
Merge branch 'wrapkey'
Accept CKA_VALUE_LEN when unwrapping an aes key since
Remove all the extra lock schemes for global shared memory
Renamed spinlocks are created in /var/lock.
Removed old testcases and restructured testcase subdirectories.
Removed test vectors for PRF-HMAC-SHA-XXX. PRFs defined in
In tpm's SC_OpenSession, removed "sess" variable since declared and not
used.
Spinlock tests segfault on CCA token.
Allow tpm stdll to get SRK passwd from OCK_SRK_SECRET and
Update various information files.
Updated the version number to 2.4.1 to reflect new release.
Add man-page for pkcs_slot.1
Add missing whatis entries to manpages.
lock per token to access shared memory; tpm per user; api and pkcsslotd
Add support for systemd
Fix ock_test.sh.in so that make installcheck will work.
token_specific_sha2_final gets called for a single part digest and it
Add sha2, sha3 and sha5 test vectors.
Dont creat a key object in the testcase.
Bump up to version 2.4.3
Kent Yoder (51):
automate testing
add digest testing script for oc-digest
digest_test.sh changes to run as part of the auotmated tests
update show_error to print file and line numbers for any test errors
add uninstall hooks
correct prototype in test_crypto.c
fix loop variable in test script
driver testcase updates: Makefile.am
driver testcase updates: aes_func.c
driver testcase updates: des3_func.c
driver testcase updates: des_func.c
driver testcase updates: dh_func.c
driver testcase updates: digest_func.c
driver testcase updates: dsa_func.c
driver testcase updates: md5.h
driver testcase updates: misc_func.c
driver testcase updates: obj_mgmt.c
driver testcase updates: rijndael_func.c
driver testcase updates: rsa_func.c
driver testcase updates: sess_mgmt.c
driver testcase updates: sess_perf.c
driver testcase updates: ssl3_func.c
driver testcase updates: regress.h
minor testcase fixes
Test AES 128/192 in ECB and CBC modes
Add tests for SHA2 HMAC
make pkcsconf respect -c when printing slot/token info
configure.in processing of debug cflags
pkcsconf return errors to the command line
pkcsconf updates
run make installcheck tests as an unprivileged user
updates for token data parsing
updates for token data parsing
pkcsconf: Allow backspace, disable echoing stars for PIN
testsuite: Check unextractable and sensitive attributes for Secret keys
remove md2 in rsa_sign_test
Bug 67985 - correctly derivate CKA_MODULUS_BITS in RSA C_ObjectCreate
Add aes ctr to token specific structure for the STDLLs.
Cleanup and remove unsupported mechanisms from the various stdlls.
Allow pkcsconf to print supported mechanisms for a slot.
Remove unnecessary rsa testcases.
CCA AES128 keygen fix.
SF #3301770
Ensure modular bits are valid.
Allow specifying target to opencryptoki to build and install
Add ability to EC to combine both hash and sign.
Need to include terminating null when allocating memory
The constant used to represent CKM_SHA256_RSA_PKCS does not match
Add SHA256 support to the CCA token.
Add footnote to info about configuring new env vars for tpm in ChangeLog.
As reported by David Woodhouse in Redhat bugzilla 830129, there are
Klaus Heinrich Kiwi (48):
Clean-up ock_tests.sh script
Moderate fixes to the key unwrapping mechanisms
Clean-ups and minor fixes to key_mgr_unwrap_key()
Use correct slot in ock_tests.sh script
Start consolidating pkcs#11 utility functions
Use macro to simplify symbol name to string interpretation
Interpret error codes in pkcsconf using p11util funcs
testsuite: Make ock_tests.sh more resilient
testcases: create separate 'benchmarks' bucket
testsuite: Introduce standard pass/fail/skip/error macros
Fix typo preventing ica_s390_stdll build
Fix pkcs11_startup to look for correct cca lib
Testsuite: skip token in case of errors with pkcsconf
Get rid of useless pkcsconf.msg file
pkcsconf: Important fixes and changes
Fix RSA verify with PKCS padding
Bug 67985 - correctly derivate CKA_MODULUS_BITS in RSA C_ObjectCreate
Unextractable keys should not be revealed off the token
Check PKCS padding length before stripping bytes for Symmetric ciphers
Get rid of DEBUGON cflag
init_cca.sh: A simple script to initialize CCA card (for tests)
Disable RSA SignRecover and VerifyRecover for CCA token
AES Unwrap: Fix CKA_VALUE_LEN handling
RSA with PKCS padding: Fix off-by-one error
Revert "AES Unwrap: Fix CKA_VALUE_LEN handling"
p11util.c: Introduce p11_bigint_trim() that can be used across the code
Soft token: Better public-exponent validation
CCA token: Do better public exponent validation
ICA token: More robust validation for public exponent
Soft token: close file descriptor in RNG function
Create general-purpose hex-dump function in p11util.c
testsuite: add a bunch of new macros to regress.h
Testsuite: Completely refactor the rsa_func.c tests
testsuite: Use testcase_notice() instead of _skip() for warnings
Fix rsa_keygen testcase
Properly dlclose() in 64 bit systems
Consolidate around p11_attribute_trim()
Minor changes to some (debugging) log messages
Minor adjustments to inner-functions error condition propagation
Clean-up digest context inside digest_mgr functions
Clean-up digest context inside digest_mgr functions - TPM part
Clean-up digest context inside digest_mgr functions - CCA part
Remove CCA stdll ´Makefile.in´
Add ´-gdwarf2´ to debugging CFLAGS
testsuite: Proper session handling in regress.h macros
testsuite - rsa_func.c: Deal with X.509 Unwrap for AES keys corner case
Minor TPM token build fix
opencryptoki 2.3.3 release
Nathan Williams (1):
Patch out the recursive chmod -R in pkcs_slot
Norikatsu Shigemura (4):
reduce diff other OS
dlopen(3) assumes relative path, but...
Fix any constructor/destructor issue
Add support more signal informations
Petre Rodan (1):
Define 64-bit unsigned integer
Rajiv Andrade (1):
Allow cca token to import rsa keys via createobject.
Richa Marwaha (3):
Added support for AES-Counter Mode
Added decrypt in AES-Counter Mode testcase
Correct aes ctr key wrapping. Also include CBC and ECB key wrapping.
Ross McIlroy (1):
Fix ock_err_msg array.
Tomas Hoger (1):
Make man pages more explicit that pkcs11 users are to be
-----------------------------------------------------------------------
hooks/post-receive
--
opencryptoki
------------------------------------------------------------------------------
Introducing AppDynamics Lite, a free troubleshooting tool for Java/.NET
Get 100% visibility into your production application - at no cost.
Code-level diagnostics for performance bottlenecks with <2% overhead
Download for free and get started troubleshooting in minutes.
http://p.sf.net/sfu/appdyn_d2d_ap1
_______________________________________________
Opencryptoki-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opencryptoki-tech
