[pkg-opensc-commit] [opensc] branch master updated (6c26d4d -> 0330bfa)
Eric Dorland
eric at moszumanska.debian.org
Sat May 16 23:42:41 UTC 2015
This is an automated email from the git hooks/post-receive script.
eric pushed a change to branch master
in repository opensc.
from 6c26d4d debian/patches/0001-belpic_Support_2k_cards.patch: Add patch for new belpic card.
new 1d505e0 debian/copyright: Update to DEP5 format.
new f045a9a debian/control: Switch maintainer to pkg-opensc-maint at lists.alioth.debian.org and mark myself as uploader.
new 2aa8f2e debian/control: Standards-Version to 3.9.6.
new 2882bd3 debian/control, debian/copyright, debian/opensc-pkcs11.install, debian/opensc.docs, debian/opensc.install: Run wrap-and-sort.
new c75a9cf debian/gbp.conf: Use pristine-tar.
new 3d1958a New repository initialized by cvs2svn.
new 2656921 initial commit
new a6a988e some structural changes; might not even compile
new f3bf3dc Implemented dummy functions for PKCS#15 module with functionality to read card reader names.
new ce82fc7 Major additions and fixes to core API
new b5d584e modified to use latest SC API
new 9476add lots and lots of changes.
new 4636ef6 fixed a weird escaping bug in sc_read_binary(). this could affect other functions too. needs more research.
new 86bbeff Added basic session management. Implemented login, logout and change pin functions. Improved card management.
new 07671ad fixed tokenInfo parsing
new 0af1a51 Basic skeleton for object manipulation. Some testing stuff.
new 3088f65 Minor bug fixes. Implemented the object finding properly.
new 202c8e5 - given ASN.1 decoding routines a facelift - implemented certificate enumeration
new 7313124 - implemented certificate reading - started to implement private key enumeration
new 08fba4d sc_pkcs15_read_certificate now dynamically allocates output buffer
new 9ea1e4b fixed PIN info reading
new 5414ed9 - added struct sc_path - implemented private key enumeration
new 68eedb4 small bug-fix in sc_enum_certificates()
new bff3bf8 Updates.
new 4d8a79c - implemented decrypt support - split PIN related functions to a separate file
new 5df5aa7 - added ability to compute digital signatures - split functions to different files
new 0ba739b - quick and dirty fix applied
new a1af155 dirty fix
new 2f086f5 Implementid basic signing functionality.
new 32d6315 added COPYING file
new e52d097 latest version
new 2a981ac removed hard-coded PIN code... =)
new f43f230 added: - certificate parsing - support for reading RSA public key modulus on the fly - support for ASN.1 object id decoding and printing - fixed a lot of u8 * --> const u8 *
new 2ffefc3 - updated README.decrypt - fixed a few compiler warnings
new aea833a Added copyright notes.
new c57e2e2 - moved libsc to its own directory - added non-working MIME plugin for "text/x-text-to-sign" - added pseudo-random number generator support - split hst-test.c into smaller files
new 3f727ca - added a 'return 0' statement
new 58fd72f - added support for base64 encoding - added certtest tool
new 16c6db4 assorted small fixes
new 27cc0a0 - fixed base64 encoding function - added file listing test to hst-test.c
new 18bab37 - changed license to LGPL - moved ASN.1 function definitions from sc.h to sc-asn1.h
new 725a717 Updated license to LGPL. Added short description.
new fac50be - fixed sc_get_random() - added ATR to struct sc_card
new 187d8a0 - moved sc_list_files() to sc.c
new e883b6f - committed a patch from Antti Tapaninen <aet at cc.hut.fi>
new eb4d366 - added a PAM module playground directory
new 584f5e5 - PAM module is semi-working now - added sc_asn1_put_tag() and sc_restore_security_env() functions - preliminary support for CREATE FILE and DELETE FILE commands
new 1194017 - added defaults; full PKCS#15 parsing is no-longer required at startup
new e53cfa4 - added README for PAM module - added a few error messages - fixed certificate caching (which is still kludgy)
new f2f3a30 - added sc-tool - removed certtest.c
new e5cf39b - small bug fixed
new ea594e3 - added very partial SSH support - rearranged some functions - added several new functions - fixed handling of SW's
new 2ac6b81 - added install target to libsc Makefile - added a few functions - added a patch against OpenSSH 3.0.1p1 to enable libsc support
new e0d6e06 - small fix in sc-tool.c
new a96d313 - converted C_Sign() to use the new API
new 674cbb1 - added sc-crypt program
new 939146f - changed project name to OpenSC
new c75812b - changed project name to OpenSC - removed obsolete rsa_libsc.c
new 5c4c947 - changed "sc.h" to "opensc.h"
new a1349a6 - added defaults for FINEID S4-2 (organization) cards - fixed a few typos - renamed _sc_sw_to_errorcode() to sc_sw_to_errorcode() - PAM module now uses RSA_sign instead of RSA_public_encrypt
new e5d40ca - started to migrate to GNU Autotools
new d277cf5 - fixed a few bugs in Autotools support
new 5be3bd3 - a few fixes for libopensc 0.3.2 support
new 0217815 - small changes in README
new 61ca346 - added PIN changing support - started to work on nsplugin
new bc946d6 - added support for Base64 decoding
new 06fc456 - fixed sc_pkcs15_change_pin()
new 0fbe06b - first working version of signer plugin
new 684623a - begun to implement PIN dialog
new 683f561 - removed config directory - fixed compiling with C++ - added error SC_ERROR_CARD_RESET
new e5a0f35 - added depcomp to AUX_DIST
new 86bef9c - improved certificate caching
new 9fccf2c - added "learn-card" command to opensc-tool
new c46ac85 - improved logging facilities - removed a few compiler warnings
new bd9396d - updated tools to support latest version of the library
new 96be2f8 - added include files from Netscape plugin SDK - removed hardcoded PIN - added PIN dialog through assuan
new ac3b36e - removed unnecessary assuan cruft
new d52bd93 - fixed changed "include" to "npinclude" - added a note about assuan to README
new 89c1f18 - moved npunix.c
new b1a85aa - fixed distribution tarball generation
new 166b369 - meddled with command abbreviations
new 0191d6c - paving way for version 0.3.5
new 5930ce8 - updated OpenSSH support
new 9423884 - latest breaking news
new 5e00917 - bumped version number up to 0.4.0 - improved ASN.1 decoding _lots_
new 83dd7be - added a small fix. Swedish Posten eID cards are now supported.
new ef3defb - applied a patch by Antti Tapaninen that fixes a memory leak
new 9989c11 - remembered ChangeLog - moved some functions from sc.c to sc-iso7816-4.c - added fancy colors to log output =) - removed global sc_debug variable, moved it to sc_context - fixed new ASN.1 code (possibly still unstable)
new 503cbd4 - added base64 conversion tool - updated to work with latest version of OpenSC library
new ff560ba - added basic logging to sc-pkcs15-sec.c
new 4141643 - paving way for dynamic card modules - fixed a few memory leaks
new c17ff3e - continued improving ASN.1 decoding - improved debug levels - added some PC/SC Lite workarounds
new 0bba170 - LINT fixes
new c344e28 - added card abstraction layer support - pretty much finished migrating to new ASN.1 code - changed call semantics for sc_select_file() - moved functions around
new 36965ca - updated to work with latest library version
new 4fdbb11 Add .cvsignore skeleton
new baeae16 Add opensc-ssh, pam_pkcs15-test, bas64, hst-test, lottery, p15dump, pintest, prngtest, opensc-crypt and opensc-tool binary to .cvsignore.
new 9fffd5c Add directory aclocal for m4 macros.
new 3775b18 Autotools update. Add bunch of stuff to configure.in to make building of libopensc more portable to various operating systems.
new 468a7e3 Fix LIBPCSCLITE Rename COMPILE_PAM conditional to HAVE_PAM Remove lex check from configure.ac
new e9682de - added authors Anssi Tapaninen and Timo Ter�s
new 25da9e0 - added some filenames to .cvsignore
new 8ea4c89 Disable --force for automake
new 8e5c50f 'make dist' fixes
new 9905a8d - changed call convention of sc_select_file() - begun to add support for Multiflex cards
new b6d0249 Add HAVE_SSL_AND_SSL conditional because automake isn't flexible enough Minor fixes for libpcsclite probe
new 9cab4ae - updated NEWS and README
new 21960bd - updated to support latest version of OpenSC
new 5d5738f - added "-avoid-version" to LDFLAGS
new 1d220cc - added plugin description strings
new 2b99f2d - added default driver for unidentified cards - added select_file operation in Multiflex driver - added 'list-drivers' command to opensc-tool - moved stuff from opensc.h to sc-internal.h - improved locking behaviour
new 695ad01 - added preliminary EMV support - made a few bug fixes relating to select_file operation
new db0740d - fixed some compile warnings - updated TODO
new c37418d - sc_pkcs15_change_pin() prototype changed
new 4586a88 Move hex_dump() to generic.c Convert all C++-style comments to C-style Fix compiler warnings for various platforms
new ad2e34c - added preliminary support for EMV cards - changed a few function prototypes - implemented access control lists to files - added sc_read_record() function - updated the NEWS file
new daf877f - fixed resplen values in sc_decipher and sc_compute_signature
new f099336 - added missing files
new 4f5a311 Use -Werror if compiling with gcc Add check for getopt.h
new 13b1325 - fixed a portability problem
new 5201a83 - another portability fix - renamed sc-emv.c to sc-card-emv.c
new da88fb7 - renamed LIBPCSCLITE to LIBPCSC
new 3e96a89 - ported certificate reading to new ASN.1 code
new 607271d Merges with SCIDI to help integrating build process with it Remove some gcc specific flags from Makefile.am Rename some header defines size_t vs. int fixups opensc.h: Define inline as null for other compilers than gcc, for now Port pam_pkcs15 to compile for Solaris and HP-UX, untested Fix compiler warnings
new 8368c13 sc- -> opensc-
new 74f568b - a small bugfix
new 6adf61a Remove unneeded install-exec-local
new a769be2 Use -avoid-version, as we do with pam module.
new 5cdd262 - some fixes to the PKCS #11 module
new 68928ae - changed \\e back to \e in sc_log.c - changed function prototypes in sc-asn1.c (int --> size_t)
new a95ed6f Use \33 instead of \e.
new fb4321c More size_t fixes
new 9bd6c8f Add getopt/getopt_long sources from GNU C Library.
new 0c20868 Slight fixes for getopt_long hack, so it will work for systems without getopt.h at all.
new 891c3db AIX cc fix
new ee712b8 Warning fixes
new 5898cc7 - blank padding added to some string values - changed a few hardcoded values
new 0a77426 - added new versions of PKCS #11 header files - fixed a typo in generic.c
new a327209 SCardGetStatusChange/rgReaderStates changes for compatibility with older and/or modified pcsc-lite releases.
new 3bcb086 Fix typo
new 6dbf1ae Add .cvsignore
new 39c503e Syncing with OpenSC's source tree
new b9da215 Add CFLAGS_PCSC, CFLAGS_OPENSC and LIBOPENSC, use them instead of hardcoding paths into ../libopensc.la, -I../libopensc, etc.
new 259efb3 Add CFLAGS_PCSC, CFLAGS_OPENSC, CFLAGS_ASSUAN, LIBOPENSC Add PIN_ENTRY instead of hardcoding it to "/usr/local/bin/gpinentry"
new 59a7654 Add CFLAGS_PCSC, CFLAGS_OPENSC, LIBOPENSC
new 859511f Sync with opensc-signer's configure.ac
new f92775f Fix few compiler warnings on Tru64
new 6848272 #include fixup
new 9ca5849 Fix another compiler warning
new d35a8b3 Add npinclude to SUBDIRS
new 4d2599a Oops, accidently removed all pc/sc related stuff while merging changes to opensc-signer/configure.ac, fixed.
new 9197bab - renamed sc_asn1_parse to sc_asn1_decode - added capabilities and flags fields to struct sc_card - added a mutex to sc_context for future use
new 1a3e530 - finished removing sc- prefix from the .c files
new 7ff4c45 - added preliminary CryptoFlex 16k support - added short names to card drivers - moved various ISO 7816-9 functions to their correct places - added write binary support - renamed opensc-crypt to pkcs15-crypt - split a part opensc-tool to pkcs15-tool
new 6778d0b Add missing executables to .cvsignore
new 269df3a - created opensc-explorer tool - increased support for CryptoFlex cards
new e71e449 Add opensc-explorer
new c718344 libsc -> opensc
new 26906e7 Oops, fixed --with-pcsclite multiple directory probing to actually work.
new 9dc7054 - added preliminary ASN.1 encoding support - modified ASN.1 decoding to make it easier to port decoder structures to the encoder - fixed a recently introduced bug in card driver handling - opensc-explorer will now allow only DF's to be cd'd into
new b75b88a Fix compiler warnings
new 5c993e1 - added PIN verification, file creation and file deletion to opensc-explorer - documented the core API a bit using doxygen
new 921bbce - added doxygen.conf
new 452b9d4 - pretty much finished the DER encoder - added delete and create file support for 'flex cards - PKCS #15 DF's are now stored more flexibly; this makes adding new types of DF's (such as PuKDF's) easier - added 'get' and 'put' commands to opensc-explorer
new fec2138 Fix compiler warnings
new 4e2192b - better ISO 7816-8 compatibility with various cards
new 7a7d7ee Preparing to commit new implementation of pkcs#11 module.
new 6e6d717 Rewritten implementation of pkcs#11 module. Semiworking.
new 3cd20d7 RSA header files.
new 2d95b18 Changed pkcs11 header directory to rsaref.
new 20adb4b - continued to improve PKCS #15 generation - fixed a few problems in sc_set_security_env - started to implement Better (tm) object handling for PKCS #15 objects
new ffdc3c9 - fixed a goof in last commit
new ee55164 Add missing .cvsignore
new 54e5d23 - improved PKCS #15 generation
new e95f8ae - small bugfix
new a8a3177 int error -> int sc_error, since it conflicts with error() and results to compiler error with various compilers.
new 7fbc97e Remove gcc-specific options
new a55a073 README cleanups Fix compiler warnings
new e7c65bf - PKCS #15 generation is now in a semi-working state - started coding crypto support for Cryptoflexes
new 5c8759a README updates after not so recent filename changes sc-log.h cleanup for hst-test
new d979224 - fixed a bug with file permissions in flex_create_file() - added RSA signature generation with Cryptoflex cards - improved security environment handling - implemented cryptoflex-tool
new f158200 - improved file selection on Cryptoflex cards - fixed an incompatability in PKCS #11 module
new 45a37df Add *.u and cryptoflex-tool to .cvsignore
new 6d533a1 Compiler warning fixups for various compilers
new 552d4b2 Add *.u
new a016a59 - added PKCS #15 structure generation to cryptoflex-tool
new fee6328 - added KEY verification to Cryptoflex driver
new 623e5ad - changed PIN1 path in PKCS #15 structure
new 82a2d72 Many bugfixes including segfault in card detection and C_GetSlotInfo now detects the cards too.
new b9c1651 * many bugfixes in pkcs11 module * memory corruption fix in pkcs15 framework * pool node deletion fixed in misc.c * now detects smartcards in C_GetSlotInfo too
new c8313fb Fix compiler warnings, for digital cc this time
new cfa366d - fixed a few typos
new 9180ae8 Fix pthread.h checking for recent releases of Tru64
new ec83c72 Silence debug messages by default for upcoming release README update
new c1cac5f - bumped up version number in preparation of the new release - unified PKCS #15 DF decoding - added PKCS #15 file caching
new fd9c25e - added README.Cryptoflex - modified ChangeLog - _really_ bumped up the version number this time
new e6ccf51 - many bug fixes in pkcs #11 module - pkcs #11 module now creates public key objects too
new 17332ea - last minute changes before the new release
new d36e9ba Fix compiler warnings
new 55641e5 - added opensc-config script - added ATR string for Cryptoflex 8k
new a2d2403 Add opensc-config
new 14ae4fc Change OpenSC web site url to http://www.opensc.org/
new 1e90978 Testing version. Use if you dare.
new 1fb23e7 - added support for T=1 protocol
new 888b378 Add install-exec-local and remove opensc-signer.{la,a}, any better way to do this?
new e798ffb Tru64: Fix for PTHREAD_CREATE_JOINABLE $ok
new ca4d5e5 Add install-exec-local and remove opensc-pkcs11.{la,a}, like we do with opensc-signer
new bfc15fa small #define HAVE_OPENSSL fixes
new b406330 - added partial support for GPK 4000 - made line parsing in opensc-explorer saner - moved change_reference_data and reset_retry_counter to iso7816.c, where they belong - added partial libreadline support to opensc-explorer
new b26554a - added a license notice to card-gpk.c
new d8c9a43 Portability fixes
new 6db645e AIX cc fixes
new 709727d - added partial support for TCOS 2.0 cards - default card driver now tries to do a GET RESPONSE instead of SELECT FILE to detect the correct CLA byte - moved security attribute parsing from iso7816.c to card-setec.c - added some more sanity checking to sc_check_apdu - added 'debug' command line option to opensc-explorer
new 262e5c2 - added error reporting for several new SWs - added check_sw function to sc_card_operations
new 092e879 Bugfix for sc_destroy_context, pcsc_ctx was never released
new 61fc1f9 - all instances struct sc_file should now be dynamically allocated with sc_file_new() and released with sc_file_free() - improved ACL's - moved struct sc_card_error to opensc.h - moved EF(DIR) parsing and encoding to dir.c (encoding is not working yet) - removed hst-test.c and filetest.c
new 3adef37 Fix memory leak for sc_establish_context
new e78dc96 - added ATR for RSA SecurID 3100 - exported pkcs15_encode_* functions - minor modification to sc_file_add_acl_entry() - boosted up opensc-explorer - added error(), warn() and fatal() - implemented a generic PKCS #15 structure generation tool
new d2a36c8 - added sc_update_binary(), sc_append_binary() and sc_write_binary() with their corresponding ISO 7816-4 reference functions
new b573609 - added some missing files from last commits, whoops
new f605dc6 - a small fix
new 2adde8d - implemented RSA and DSA key downloading to GPK cards
new 1f4e5c4 Minor changes to get rid of compiler warnings for various OS's
new 3fa1b27 - implemented reader abstraction layer; now it's easier to add support for e.g. CT-API - renamed ops_data field to drv_data in struct sc_card - copied coding style document from Linux kernel
new 412292e Add missing SC_STATUS_TIMEOUT that was removed from sc-internal.h
new e605e6f Fix segfault for pcsc_finish
new 24c6f41 winscard.h / CFLAGS_PCSC cleanups Merge OpenSSL configure changes with SCIDI Build process changes for future CT-API support
new 69b1e1b Get rid of PC/SC specific flags (thank god)
new 8d222ef HAVE_SSL cleanups
new 9c59400 Add pkcs15-init
new b098c09 Upgrade to current OpenSC API Compiles, so far untested
new c2cbf21 Obsolete
new 9879318 Add missing help text for --passphrase
new 325cd80 - small bug fixed in encode_bit_string; patch by Olaf Kirch
new d8de0c6 Minor fix for HAVE_PCSCLITE conditional
new 4aa18a9 Added support for checking libreadline and use it for opensc-explorer if one is found.
new 97a7957 Minor fixes to libreadline checking
new 680b992 - avoid integer underflow for outlen < 11
new 4a448f4 - first stab at signatures
new ede029e - cleanup and misc minor fixes
new d08c34c - test commit
new 570af2b - fixed sc_card_driver initalization
new 04dfc47 - added a driver for MioCOS cards by Miotec - implemented EF(DIR) updating
new 4fa7283 - added some missing files - renamed card-setec.c to card-setcos.c
new c58b72f - implemented change/unblock pin
new f0cba18 - we may have readline.h but may still not be able to link the lib
new 78d9c20 - some platforms need -ltermcap to go with -lreadline
new 321e993 - Fixed typo on _CTL_PREFIX - Added SC_CARDCTL_GET_PK_ALGORITHMS
new 44fbfd7 - Implemented GET_PK_ALGORITHMS card_ctl
new 4ac49d6 - intermediary checkin
new e256d97 - if required, read pin from stdin (fixed key download)
new 6b07ff6 - Reworked PKCS #15 structure a bit (MANY THINGS WILL BREAK) - Added support for public key DFs (not tested yet)
new 51c572a - Fixed PKCS #11 module to use the new PKCS #15 API
new 34bcc5c - Fixed buffer overflow in C_FindObjectsInit (patch from Olaf Kirch <okir at caldera.de>)
new 86df1c5 - adapted to juha's latest changes
new cbd7275 - Added default access_flags for private key objects
new 12e6874 - Fixes for Juha's rewrite of sc_pkcs15_object and friends - changes some names - allow profile to set private key access flags
new 25f15f0 - Added support for Juha's latest API changes
new ffe5629 - started to work on PuKDF stuff
new 9f43b3b - small typo
new 9fec8c4 - make sure HAVE_LIBPCSCLITE is defined when using --with-pcsclite
new fd9e7ef - make sure HAVE_OPENSSL is defined even when reading openssldir from config.cache
new 88553f6 - now works with the new API
new f39f224 - SECURITY: Fixed buffer overflow
new 8c47813 - Added {read,write,update}_binary handlers that shift the offset
new 17316de - another buffer overflow
new 4f0ce42 - in sc_select_file, remember the file path in the returned struct sc_file
new 2fda14e - Rewrote large parts of pkcs15-init for greater flexibility, and with an eye towards separating some of the stuff into a library that can be used by pkcs11.
new 9419b35 - Patch from Olaf Kirch to implement of RSA exponent and modulus retrievel in pkcs11 code
new 23678d0 - fixed memory corruption problem
new 6827556 - fixed error code handling
new 3643282 - sc_pkcs15_parse_df now understands PuKDFs
new 30a5233 - fixed pintest to work with p15 API changes
new 6cd852b - moved object printing stuff to separate file
new cdd735e - moved object printing stuff to separate file - dump public key info if present
new 7477cb3 - fixed attributes etc of PuKDF entry
new 3416461 - Added X.509 algorithm id decoding and encoding to asn1.c - Implemented a generic ATR matching helper function - Made signing much smarter (should even work now) - Added info about supported crypto algorithms to struct sc_card
new 346be7d Fixed opensc-ssh to work with recent p15 API changes
new 7803649 SC_PKCS15_HASH_SHA1 -> SC_ALGORITHM_RSA_HASH_SHA1
new 6264f03 'make dist' fixes Minor cleanups
new 4fcf38e - specify sc_algorithm_info
new c94fb9a - added sc_pkcs15_read_pubkey to retrieve public key from a public key file
new 7d2171c - Improved support for MioCOS cards - Removed PKCS #15 creation from cryptoflex-tool - Added PIN pad character option to profile.c
new 427801c Add flex.profile to EXTRA_DIST Rename miocos-rw.profile to miocos.profile
new f0d4252 Standardize the first header comment a bit between various profiles
new 2a4afb8 Include stdlib.h where needed Warning fixes for various OS's mcheck.h is not portable, so remove it
new ae306cf - GPK now reports it's PK abilities correctly
new 3dd0c64 - Implemented Parent/FileID stuff according to Juha's proposal
new 4fb78b7 - forgot to add DFs to the profile's file list
new 52dac16 *** empty log message ***
new b5bc6d7 - When storing a private key, always store the public portion as well
new f84f5e5 - we cache just the DF portion of the currently selected file path, excluding the EF's FID - when sending the hash to the card (as part of compute_signature), revert the sequence of hashed bytes
new cf795aa - exporting sc_update_dir to applications
new f7ce196 - now creating EF(DIR)
new 2c7a0ac - Implemented download of public keys and X509 certificates
new 23e956c - Fixed PKCS #15 structure generation on Cryptoflex cards and implemented a default profile - Cryptoflex now reports its supported PK algorithms correctly - Various pkcs15-init fixes
new c287088 - Make sure profiles get installed in $(pkgdatadir), and propagate this directory name to profile.c (icky automake stuff)
new 5df7c9b - keep track of the number of sessions per slot, and do a C_Logout when the last session is closed.
new 66b00e0 - keep track of number of sessions
new 252323e - add support for PuKDF objects. - lock the card in C_Login, and unlock it in C_Logout.
new b635539 - Make the default size for DF files 128 bytes (FIXME: we need to be able to set this on a per card basis in $cardname.profile
new 83686af - added pkcs12 support
new ef4c142 - Fixed signature generation - Assuan API is now compatible with newer versions
new 31e78a3 - reverted a change in pkcs15_prkey_sign
new e280d2f - some autodetection magic in pkcs15_prkey_sign()
new 8efe366 *** empty log message ***
new 19e2a47 - Preparation for release 0.6.0 - Removed obsolete README.Cryptoflex
new b3e7235 - fixed a small core-dumping bug
new c418eb9 - Ahem, decrease the version number a bit - assuan_transact is now API compatible with the latest version of Assuan (newpg/assuan)
new 47b1df1 - added a bunch of manpages
new 2135862 - added Makefile.am for manpages
new 8448298 - added docs subdirectory so that manpages get installed
new 308bffc - removed README.Cryptoflex from EXTRA_DIST
new c17b3eb - added docs/Makefile to AC_OUTPUT
new b1a3e6c Add missing files
new 55dd227 - fixed certificate download
new ca2f725 - make sure SC_APDU_CHOP_SIZE is a multiple of 4 (otherwise, update binary et al of large files will fail on the GPK)
new f3b7c99 - if the offset shift is 2 in update binary et al, make sure the application provided offset is a multiple of 4.
new 04e929d Fix minor compiler warnings
new bf5f0f6 - fixed a typo that caused bad auth_id's
new 3161964 Add missing static for parse_tokeninfo();
new a42a47e - list and extract public keys
new 879690f - add option --md5
new c6a9091 - fixed PEM public key header
new 6ca0cb1 - moved sc_decipher implementation to iso7816.c
new ccb6bb1 - implemented decipher() operation - removed SC_CARDCTL_GET_PK_ALGORITHMS card_ctl - minor signing fixes
new 7ec8498 - removed SC_CARDCTL_GET_PK_ALGORITHMS card_ctl
new 41cd4c4 - implemented sc_pkcs15_free_pubkey
new 3838af2 - now uses sc_pkcs15_free_pubkey
new 67ffdfa - Added support for big serial numbers in certificates
new c5e5342 *** empty log message ***
new 6d4988f - set debug log file and libopensc debug level via environment vars
new 563515d - email signing now works from navigator
new a3b521a - started adding support for DSA private keys
new 7d6cf8f - extract certificate issuer and store it in sc_pkcs15_cert
new 6953286 - first stab at C_Unwrap
new 51ccfe7 - made email decryption work in netscape
new f82c470 - do not enable the RSA flag n netscape
new 21911eb - by default, the token is marked write_protected - fixed debug output when creating a slot with no PIN
new e630a05 - make it compile with readline versions that declare readline(char *);
new 3fa7a05 - Fixed a couple of memory leaks - Fixed a bug in decoding EF(TokenInfo)
new 8f07d67 - now extracting issuer from certificate
new 853d414 - implemented CKA_SUBJECT
new 7952f81 - implemented C_ChangePIN
new ac3c33d - Fixed debug output in pkcs15_create_slot()
new 7b6371d - Added Olaf's ASN.1 wrapping magic
new 34af339 #include cleanups to get rid of compiler warnings
new ea57d9a - Bumped up version number to 0.6.1 - Wrote a NEWS entry
new 0f95c1c Start merging various sources from project SCIDI - smart card identification infrastructure by Helsinki University of Technology.
new 5006b0d - added some #include string.h statements for RH 7.2
new b50a0c7 Build fixes
new 2012131 Oops, indent fixes
new beb361f Add preliminary version of SIA module for Tru64
new dc50994 Build fixes
new 504b0ae Merge configure.ac stuff from SCIDI, needs some cleanups Add missing functions Replace log_message{x}() calls with fprintf, for now
new 0cfbcb8 Cleanups for PAM and SIA build process
new 8628df1 Move get_login() to pam_support.c
new dfb2e43 Fix a typo Add missing conditional
new 6b4a2fd Merge bits of information from pam_pkcs15's README for opensc-pkcs15-eid
new 6e3a09f Remove bogus "len = len;" statement from pkcs15-cert Other minor cleanups
new 50e2665 Fix memory leaks Indent lines
new 94feddd Disable a debugging message that got activated because of log_messagex -> fprintf renames.
new a7c5e4e Test if Makefile exists before doing make distclean Remove --gnu from autoreconf
new 77c94c2 'make dist' fixes
new fc4025e Strip off "opensc-" prefix from the p15 module names
new 69393c9 Restructuring and merges with scidi
new 7400bb9 Make sure everything compiles even if we don't have an LDAP implementation and/or OpenSSL library.
new e9ee0ff - Fix compiler warnings for Solaris - Use of PAM_MODULE_UNKNOWN broke pam_opensc for Sun based PAM implementations, fixed.
new ffe0282 - fixed a typo in one ATR string
new f21926a - Started to add configuration file support to libopensc - Added typedefs for some basic structs (e.g. struct sc_card --> sc_card_t) - Added a second argument to sc_establish_context() to identify the calling application - Renamed sc_destroy_context() to sc_release_context()
new 22dd703 - second version of the default config file
new 0cad904 Move opensc/src/scldap/etc to opensc/etc SCLDAP_CONFIG -> SCLDAP_CONF_PATH Upgrade the rest of the programs to use new core API
new 21aae9c - Fix a potential segfault for the new sc_establish_context - Keep the variable names in opensc.conf the same as they are in code structs.
new 7d27225 Oops, scconf_parse was called twice. Fixed.
new 8cc8ea1 Fix syntax errors
new 2142557 Allow user to specify input/output filenames
new 441bbb5 Add missing AC_MSG_RESULT texts to libreadline check
new ec6f896 Don't hardcode initial debugging level and error/debug_file pointers to the code, get the values from opensc.conf instead.
new cd4e365 - Moved functions from sc.c to ctx.c - Card and reader drivers are now configurable
new c730a4d - fixed some memory leaks in sc_establish_context
new 0356c03 - updated TODO
new 262b1d7 - pick up -lresolv on systems with glibc 2.2.4 (needed by openldap 2.x)
new bfe2df2 Still changes for libreadline checks output Clear environment before calling ldap_init, as suggested by Olaf
new fc17019 Add support for config.h Remove old, obsolete and dead code
new aa5ec6b Add sanity checks and more comments Add new parameter for scconf_find_blocks
new c69d1b5 Always allocate scconf_list for block structure
new b2d2bc7 Rename scconf_find_value to scconf_find_list Rename scconf_find_value_first to scconf_get_str Add functions scconf_get_int and scconf_get_bool
new 59d4e9b - Added support for CT-API - Improved config file loading - Implemented ATR parsing
new 4502555 - fix signing of raw md5/sha1 hash w/o pkcs1 gunk prefix
new 19f7f10 Rename scconf_init to scconf_new Rename scconf_deinit to scconf_free Add initial comments to scldap.h
new 2d017e7 Add missing character
new 86a47ef Reduce the scidi specific code to bare minimum
new 8f6ffee - Minor cleanups to build process - Add header check for dlfcn.h - Add internal functions sc_module_{open,close,get_address} - Use environ instead __environ for scldap_search, should be more portable. - Fix compiler warnings noticed by Tru64 / AIX cc
new e589a94 Add missing @LIBDL@ to libopensc linking
new 88530c8 - Added sanity check for sc_establish_context. If no readers are found, fail and return SC_ERROR_NO_READERS_FOUND.
new 7ddcb3d - sec_attr and prop_attr are now dynamically allocated in struct sc_file
new eb7b050 Add functions scconf_list_add and scconf_parse_entries, getting the values in user code is now pretty much the same as it is in ASN.1 decoder.
new d9f44ec Upgrade test-conf to use scconf_parse_entries();
new b308cab - Upgrade scldap to use scconf_parse_entries(); - Fix compiler warnings for ct-api driver, untested.
new 7030682 Include header stdio.h
new 2fbf01e Remove #include "config.h", sc-internal.h already does that
new b2a10c1 Remove flag SCCONF_OPTIONAL, add SCCONF_MANDATORY
new 5a824f3 Add maintainer-clean patch by Andreas Jellinghaus <aj at dungeon.inka.de>
new 98c612f - indentation fix
new 7a87a5c - added SC_AC_SYMBOLIC for pkcs15init support
new 4c48335 - sc_pkcs15_get_objects() now lets you search for generic types (e.g. SC_PKCS15_TYPE_PRKEY) too.
new b6bf368 - rewrite of the pkcs15-init stuff
new c1f2403 - rewrote pkcs15-init; much of the init stuff moved to separate library
new c90dfd1 - moved most of the pkcs15init stuff to libpkcs15init
new 517f19c - added new subdir pkcs15init
new d5100f0 Generate src/pkcs15init/Makefile
new 3e65255 Add .cvsignore
new efa136e - added sc_pkcs15init_present_pin for juha
new f4ff4f4 pkcs15-gpk.c
new 776fa90 - support for SO pin during app initialization
new edfb4dd Minor compiler warning fixes
new 369889a - fixed a small bug regarding prop_attr in the SetCOS driver
new 0683b34 - added two new error codes for pkcs15init
new 3b16e35 - rewrote parser to use Antti's scconf
new ae8e390 - rewrote config files to match new parser
new 5d687de - fixed exit code
new 9669038 - updated TODO list
new 803124d - moved gpk specific MF ACL to the gpk profile, where it belongs
new b90104b - renamed PKCS15-DIR to DIR per juha's request
new fef2ac3 Minor warning fix
new 5cba842 - shouldn't set key_reference
new 28fc4bc - fixed a typo
new 0fe85e6 - Added typedefs for the most common structs
new d232bf2 - ctapi_release() now calls CT_close(), as it should
new 5c3c163 Merge opensc-signer to opensc/src/signer, part #1
new 9ba3237 OpenSC-Signer merge complete.
new 7d055a1 Update TODO and Changelog 'make dist' fixes Add missing README for OpenSC-Signer
new 6f197a0 Fix minor compiler warnings
new 9e31eb6 Checkpoint commit for SIA support, doesn't work yet
new 218b784 - added internal-ef for juha
new 1ef47d2 Workaround for a compiler problem (Sun WorkShop 6 update 2 C 5.3 Patch 111679-05 2002/02/07)
new 984b5b2 Minor warning fix
new 0598138 - the previous fix broke do_verify_pin
new 1446fc1 - Made clearer the error message resulting from an incorrect PIN code entry
new 2b49129 - DER decoder now treats 0xFF tags the same way as 0x00 tags
new e172e66 - Cleaned up MioCOS driver and added PIN code creation - Added an error message in case ODF parsing fails
new e5496e9 - Partial support for PKCS #15 generation on MioCOS cards - Some other small fixes to the pkcs15init code
new fb2532c - Small typos corrected
new dc444cd - Cryptoflex now works with the new pkcs15init stuff
new 33890a1 - file type is now also a struct map
new 1b11361 - miniscule API changes so that applications don't need to include profile.h anymore
new 10e95ba - don't include profile.h anymore
new fbf86e6 Install headers to ${prefix}/include/opensc
new 97faef3 Obsolete.
new d81d10b Upgrade sources to use new headers, part #1
new 076a26b Rework the header structure
new 3938287 Add missing directory
new 41b1848 - Fixed a bug in sc_pkcs15init_bind() - Added PIN code padding in do_verify_pin()
new a23faf7 Symlink all necessary headers
new 22636c2 - Added SC_ERROR_FILE_ALREADY_EXISTS - Changed call convention for reader finish() - CT-API driver now frees its resources correctly - Added year 2002 to some of the copyright statements - sc_pkcs15_decipher() and sc_pkcs15_compute_signature() now select only the parent DF of the private key file
new 93ee58e - during add_app, just complain about SO PINs but don't error out
new 65d8241 - try to free all memory we allocated
new c1a8dc8 - implemented sc_pkcs15init_get_{serial,amnufacturer}, fixed bug
new 8494389 - add CKF_TOKEN_INITIALIZED flag
new d28bb60 - Added C_Initialize - Minor bugfix in C_Finalize
new 829e7f6 - added initialize() function to card ops vector
new d4ee9df - added new pkcs15init framework that implements C_InitToken
new 23ff14f - added erase command
new 0875849 - Started to split opensc.h into smaller parts
new ddb4906 Minor warning fixes
new 11c9379 Change calling convention for sc_module_close()
new 7e5af94 - C_InitToken: after creating the application DF, switch to the normal pkcs15 framework on the fly and mark all tokens as initialized.
new 26d2f25 - include/opensc fix
new 6efa887 Add errors.h and types.h
new f781a14 Fix some typos
new 6e0b7de - Divided errors into different groups, added new ones and renamed some - Moved sc_strerror() to errors.c - Added a 'sensitive' flag to struct sc_apdu
new 3e9d147 - Added PCKS #15 ASN.1 module
new 1b344d3 - Added certificate templates
new 74d0b3d - Added user PIN finding to sc_pkcs15init_store_certificate()
new 5259182 - Changed CLA byte to 0xA0 in miocos_delete_file()
new 2936e46 Warning fixes
new 60fc381 - Added support for user-defined serial numbers in pkcs15-init and PIN flags in profiles
new 23fa9ae Started to rewrite parts of scam: - Combine lib{pam,sia}scam into libscam - Get rid of the need for handles, printmsg and logmsg in the scam_framework_ops structure.
new be9518e - Upgrade all modules to store method specific internal data to scam_context->method_data
new 517395b - pin flags were not encoded correctly
new 6e3a42f - add pin descriptions
new c572723 - enable SO PIN
new 24a45e2 - implemented SO PIN handling
new 1f8790e - textual pin flags; defer pin file lookup until sc_profile_finish
new 13ab0f5 - store SO PIN entry in AODF
new b504fa0 Remove scam_framework_ops->atrs
new 01e506e - When the application selected the EF, then the container DF, all PIN info would be lost.
new 2d47103 - implemented sc_pkcs15_find_so_pin
new 59cd95a - SO PIN path was not propagated to the caller
new 3e11f90 - added sc_pkcs15init_unbind
new 01d4f00 - SO PIN is now optionally: if you want to use it, pass a PIN to sc_pkcs15init_add_app. If you don't, don't. - sc_pkcs15init_erase_card checks whether the erase_card funcion ptr is NULL - check SO pin len in sc_pkcs15init_add_app - In sc_pkcs15init_store_pin, if the caller didn't specify the auth_id, select one automatically - added sc_pkcs15init_unbind
new ec35a92 - free some more memory in sc_profile_free
new 72856a7 - cleanup
new 53a112e - implemented C_InitPIN (based on pkcs15init) - C_Login now understands the SO PIN.
new 45e882f - Added a missing include file
new 9b2a5fe Free yy_current_buffer since lex doesn't do it
new 644f4b0 - Revert previous patch since it leads to a sigsegv if we parse file multiple times. Damn it, so lex allocates a 16kB buffer that it won't free any time. At least this could be solved some other time by rewriting a separate line parser without lex.
new 91609ed Free memory
new e09a184 sc-ssh -> opensc-ssh
new 321c815 - Update ChangeLog - Update src/openssh/README - Removed obsolete patch for openssh-3.0.2p1
new 0ab6d49 Minor cleanups
new 52c433a - Added support for Aladdin eToken PRO; patch by Andreas Jellinghaus <aj at dungeon.inka.de>
new 87e27b0 - Changed an error code as per Andreas' suggestion
new 3ec97d9 - Added a missing file from a previous commit
new cfe585e Remove openssh-3.0.2p1-patch.diff
new 34a3912 - in set_security_env, select the PK file prior to read_record
new b6119fc - avoid unchecked memcpy
new 55a14b0 - all sc_pkcs15init_store_foobar functions now take an additional struct sc_pkcs15_object ** argument
new 881de42 - changed to reflext pkcs15init_store_foobar update
new 2b8b355 - implemented C_CreateObject for public and private key objects
new f5dc78b - minor fix
new 9f7fbf2 - C_CreateObject now understands X509 certs (untested)
new 43ecd78 - Fixed ACL handling in MioCOS driver
new 1ec7a85 libsc -> opensc
new 596220e - pkcs15-init does not require openssl anymore
new 7c9e5d6 Add stdlib.h
new 789d88f Minor Solaris fixes
new f49cb6b - implemented encoding of OBJECT IDENTIFIER - enhanced support for encoding/decoding of CHOICE - moved encoding/decoding of AlgorithmIdentifier to separate file, and added encoding/decoding of algorithm parameters
new 77a2db5 - Moved ASN.1 handling of AlgorithmIdentifier to separate file
new 5eb1921 - new error code SC_ERROR_PASSPHRASE_REQUIRED
new b4d224b - added SC_ALGORITHM_{MD5,SHA1,PBKDF2,PBES2} and corresponding AlgorithmIdentifier parameter structs - added params pointer to struct sc_algorithm_id
new b63cfcf - renamed sc_pkcs15_parse_pubkey_rsa -> sc_pkcs15_decode_pubkey_rsa
new d248263 - initial support for non-native keys - implemented generic functions sc_pkcs15_{encode,decode,read}_prkey
new 996f5b7 - renamed sc_pkcs15_parse_pubkey_rsa -> sc_pkcs15_decode_pubkey_rsa - added sc_pkcs15_decode_pubkey_dsa - sc_pkcs15_read_pubkey now uses sc_pkcs15_read_file
new 29c7639 - new generic function sc_pkcs15_read_file
new af26252 - new generic function sc_pkcs15_read_file - structs and functions for data wrap/unwrap
new 0a458d6 - new file path type SC_PATH_TYPE_PATH_PROT
new 56191b8 - functions for file content protection
new 8ef6b71 - added new files
new 19132be - new error code SC_ERROR_EXTRACTABLE_KEY
new b05cc1e - error out for non-native keys
new 1424c83 - minor bugfix
new 228b664 - correctly encode AlgorithmIdentifier w/o params as OID+NULL
new a5dd0db - support NULL tag for encoding/decoding
new 5fb2db7 - --read-public-key will work for non-rsa keys too
new 0e24215 Minor warning fixes
new f87bbce - some fixes to the ASN.1 we generate
new 5d8b100 - eToken patches from Markus Friedl
new 95a7faf - use SC_ASN1_ALGORITHM_ID when decoding x509 certs - handle certificates with non-RSA keys as well
new fcbbb6c - eliminated RSA specific code to support generic pubkeys instead
new 9c5754e - handle non-RSA keys as well
new b7a22e2 - new error code SC_ERROR_INCOMPATIBLE_KEY
new 79d0902 - fix for decoding CHOICE
new 736d250 - fixes for PrKDF encoding/decoding for indirect-protected
new 9c50288 - correctly initialize PKCDF2 params
new f23480d - return objects when searching for a generic type (e.g. all PRKEY objects)
new 2b65c73 - missing prototypes for {de,en}code_prkey
new 0877a5d - display non-RSA keys
new 2a3e6e2 - starting to support extractable keys
new 2b9ae36 - fix algorithm_id decoding
new 6d8fe46 - properly encode/decode DSA public keys
new 94cb1e0 - encryptedContent didn't have proper ASN.1
new b08c5ef - bug in check_key_compatibility()
new 176e825 - fix for storing DSA public keys
new 842ac8d - don't print modulus length for DSA keys
new 939efa4 - small fix for reading the private key file - added sc_pkcs15_{erase,free}_prkey
new c9aba0d - fixed bug with DSA pubkey de/encoding
new 3cdde95 - sc_pkcs15_find_pubkey_by_id
new 7cd061c - added a bunch of prototypes
new f6c8cb4 - DSA signature support
new aac9e6f Minor warning fixes
new b4af9ab - Added a missing SC_ASN1_CTX flag to DSA key ASN.1 entries
new 9a6b345 - sc_pkcs15_find_prkey_by_id and sc_pkcs15_find_cert_by_id now return all private keys and certificates instead of only RSA keys and X.509 certificates - Removed some obsolete PKCS #15 initialization code
new 546f920 - PKCS #15 objects and DFs are now stored with linked lists in struct sc_pkcs15_card; this way we can have 'floating' objects that don't belong in any DF, for e.g. generating public key objects from certificates - Removed some unused function prototypes
new 6b08ebf - fixed DF handling
new 3dccd63 - C++ support. Compiles with gcc/g++ for Linux, otherwise completely untested.
new 9251d13 - Added support for extractable keys on the Cryptoflex
new 7289284 - Some fixes to the MioCOS driver
new 68e6292 - Update TODO
new 79bf099 - Small update to MioCOS pkcs15init driver
new 9c39ca7 - Added 'force_card_driver' option
new f7fcaee Extract certificate crlDistributionPoints and store it in sc_pkcs15_cert
new c66dcb5 - changed do_select_parent per request from Juha. Hope this doesn't break anything... :)
new b9b0a1f - fixed pkcs1 padding for rsa-md5 signatures
new 74b7e39 - allow setting the cert_info authority flag
new f618b75 - Applied a patch to card-etoken.c that gives ACL support; patch by Markus Frield
new 7f6453d - sc_pkcs15_decipher now takes a flags argument, so we know when to strip off any pkcs#1 padding.
new 5c7c275 - added two regression test scripts
new af8511e API upgrade
new c85d42a Fix SSL/TLS support for OpenLDAP
new 0bdac40 Disable a sanity check that was needed at least with OpenLDAP 1.2.x, it seems to block certificate CRL fetches with more recent versions of OpenLDAP (2.x)
new 7b22339 - work around brain damage in automake 1.6.1 (shouldn't they change the name to autobreak?)
new af83cde - make it compile on SuSE 8.0
new e1b6a03 - another linux-gnu* => linux* fix
new de9cc2e Reworked scrandom ugliness, no longer builds a shared library nor seeds OpenSSL internally, if available.
new 3c63878 Add comments for previous fix
new bbf3a8f Removed opensc-ssh Updated README
new 33b5cf6 Minor ${prefix} -> ${exec_prefix} changes
new 0820a4c pkcs15-profile.5 $(pkgdatadir) fix
new f7ffdbd Add pkcs15-profile.5
new f5c2f1a More cleanups
new 03d58e7 - Applied a patch by Matthias Bruestle <m at mbsks.franken.de>: - Changed the case of GET RESPONSE in card-default.c to 2 short - Added ATRs to Flex, GPK and TCOS drivers - Changed value of maximum Lc in card.c to be 255
new d9a7883 - Applied a patch by Werner Koch that brings the TCOS driver up-to-speed
new e681dc4 Warning fixes
new 822e96a Add comments
new e0993d2 check readline.h fix
new 798915a AIX gcc fix
new 25cf975 Minor GCC warning fixes
new 20da3e2 scidi merge
new c181dab - Fixed parsing of AUT keys in pkcs15init (patch by Jochen Friedrich <jochen at scram.de>)
new 7c94d7d - Several patches to fix behaviour on 64-bit architectures (by Jochen Friedrich) - Fixed one bug in sc_copy_asn1_entry(), one in sc_pkcs15init_add_object() and one in pkcs15-crypt (patches also by Jochen)
new 2b43394 Build fix for previous commit
new 836b1ad Minor build fixes
new ff1ce13 Disable pkcs15-ldap until it's working.
new f9d33b1 Upgrade for the OpenSSH 3.2.x release
new f49e681 - do our own chunking in read/write binary
new 82d7cf3 - Preparation for version 0.7.0
new 28b4a1b - iso7816_set_security_env now has correct values for P1 - Improved detection of SetCOS cards - Changed the default CLA byte in card-setcos.c to 0x80
new 2846d6c Preliminary MacOS X build support, untested so far.
new 5fba18d Fix for previous commit
new f973a3d - fixed some minor glitches (potential buffer overflow in read_dir; missing SW check) - added card_ctl for put_data_fci - added some debug output
new 03559c4 - added eToken specific cardctls
new 0c07f24 - added some eToken code (not functional yet)
new 7828d82 LDAP detection fix, require ldap.h.
new c6a5018 - pin verification works now
new 3eeaa8f - fixed bad return value in do_init_app
new f74e8bb - first stage of pkcs15 initialization sort of functional
new 0a9fdb6 - setting an SO pin works now
new d9932c6 - whoops, forgot to check this in
new 47794df - p15 PIN entries should now have a valid path
new 7d0614f - implemented setting of user pins; minor pin code cleanup
new cc92443 - set ERASE=$SOPIN for AODF
new a2d21ba - implemented --erase for etoken through a recursive remove
new f1f3d46 - install etoken profile, too
new cdeff04 - fix a few error messages
new 8535127 - started to implement eToken key generation
new 1b79b01 - started to implement on-token key gen support
new 7977f48 - Protected OpenSSL includes with #ifdef HAVE_OPENSSL
new c967dd8 - do not try to check PIN if key isn't pin-protected at all
new 04499dd - properly identify supported algorithms
new 954cfb9 - first steps toward eToken key download
new e877f1e - experimental: support for cards such as eToken that store keys in "objects" below the DF
new 6f611fd - added support for PUT_SECI
new 1a5c6d7 - support for security environment create/restore/set - support for signature computation (non functional yet)
new 621ac8c - more code towards signing
new 4f7b81f - added switch to force software key generation
new 041b46f - corrected info output for Linear variable TLV EFs
new 85aeed2 - changed APDU base from 3 to 4 on sign/decipher
new 657bfa7 - added comment/question
new ed19095 - Preliminary fix for Case 4 APDU sending on Win32
new a94d1b2 - Fix for last commit. It now compiles, at least.
new fd7f340 - Added template for PC/SC 'apdu_fix'
new 0694da5 - Reverted Olaf's patch in sc_compute_signature(). It breaks government issued (e.g. FINEID) cards.
new 523b680 - Fix apdu->le in sc_compute_signature()
new 7635468 - Initial support for win32
new 32ec197 - sc_pkcs15_compute_signature() and sc_pkcs15_decipher() now select the whole path specified in a private key object
new 5d70c90 - Renamed sc_transceive_t0 to sc_transceive to avoid confusion =)
new 10c5a04 - RSA padding header for sha1 was still broken
new aad6a7f - more eToken fixes
new 5b40de4 - various changes for on-board key generation - key download and key generation for eToken works now
new 86a97c7 - allow output of signature to stdout
new fc8f55f - more tests
new d266374 - added cardctl SC_CARDCTL_GPK_VARIANT
new 4b79f4e - fixed pkcs15init for GPK 8000
new 0573ae7 - fixed compute_signature for gpk8000
new eeac475 - error message fixup
new 3c44cb8 - implemented erase_card
new 638a5b3 - implemented generic erase_card functionality
new c656d83 - Added missing getpass.c for win32 compatibility
new e4540f8 - Win32 build fixes. Should work now.
new e2af6a1 - Ported pkcs11 module to win32.
new 2c6e11f - PKCS#11 module definitions; not PKCS#11 application. Removes compiler and linker warnings.
new e0aa31a - Added ATR for GPK16000
new b18d893 - certificate version is optional (v1)
new 2fc2357 - Fixed functionality when pkcs15init is not compiled
new 1556f98 - put the definition of USE_PKCS15_INIT into a place where it can actually work
new 97119f7 - GPK16K: wildcard RSA exponent is 0 not -1
new fa04f5e - Accessed file->type after freeing file (S. Henson)
new a14aaed - Merged GPK patches from Steve Henson (signing fixes) and Joe Phillips (GPK16K ATR matching code).
new 21a82c1 - Renamed read_tag to sc_asn1_read_tag and made it a non-static function
new 82fabce - Added some new error codes to sc_iso7816_check_sw()
new 8bbcb93 - Added driver for MICARDO 2 cards
new df4b962 - Added card-mcrd.c
new 0810ccf - Removed error list
new 00a2a0d - Brown paper-bag fix
new 25931fe - Set bit 8 in key reference, if PIN_FLAG_LOCAL is set
new 4c36cb9 - Used cert->key instead of key in parse_x509_cert()
new d38851b - Fixed prototype for sc_pkcs15_card_new()
new 2569daf - Removed the last goof I made
new f0d7378 - Also removed the ref variable
new 8db1dcf - when entering new PINs on stdin, make the user re-type the PIN to avoid typos
new 3eab911 - during card initialization, allow to enter SO PIN interactively
new fe27ed6 - fixed deciphering (apdu.le was not set)
new b2379d4 - allow to generate/store decryption keys
new 3ffcfcf - added --reader, --key-usage command line args
new 172d86b - fixed typos in help output
new 1d2c9e4 Cleanups for initial win32 port, untested.
new 148f405 Various build fixes
new 4811eec Another build fix
new b1881be - added getopt option parsing (-r reader -c driver -dddd) What's a test app when you can't enable debugging?!
new 7d3c613 - fixed segfault in mkdir/create - minor cosmetic change in do_verify
new ac43fed - GemSafe cards have a directory 0200 with an AIDF file in it, and will return a 0x6F file info block when selecting this DF. Try to parse it, as far as we understand it.
new b385270 - make sc_get_driver static
new dd740e9 added
new 45892e6 - detect when a GPK card is already personalized
new a10fe08 - set SC_ALGORITHM_NEED_USAGE flag in algo info
new 8ee38b9 - handle SC_ALGORITHM_NEED_USAGE flag
new 78d2160 - added SC_ALGORITHM_NEED_USAGE
new 3837299 Updated win32 port for recent updates. Noticed by Stef Hoeben.
new d9cd213 Checkpoint commit. Added new functions:
new da615f3 Oops
new 8a9bd12 Added new functions: scconf_put_{str,int,bool} scconf_write_entries
new d03d551 Add @GETOPTSRC@
new de9e491 add HAVE_GETOPT_H
new 705b498 Free yy_current_buffer since lex doesn't do it, take 2.
new 0ca5922 Merge with dvbsak.sf.net
new df6dd39 Add usage of __FILE__, __LINE__ and __FUNCTION__ macros for non-GCC compilers too, where available.
new 9c4844e Build PKCS#11 module for win32 port.
new 4e61af2 Duh, revert previous patch.
new 828819a - get_mechanism_list now reports correct number of mechanisms
new 6f4587f - Return correct error codes in GetAttributeValue in case of ATTRIBUTE_TYPE_INVALID and ATTRIBUTE_SENSITIVE
new c3b479f - in case of an invalid session/object handle, return OBJECT_HANDLE_INVALID or SESSION_HANDLE_INVALID instead of FUNCTION_DAILED
new 34ba5b2 - --card-driver was mapped to -D, but should have been -c.
new 51d8983 - Fix from Stef Hoeben to get the eid-cache stuff working on win32
new 718aa6e - Fix from Stef Hoeben for win32
new 09faf83 - Fix from Joe Phillips: option mismatch in --help message
new b00579d - Fix from Joe Phillips: fix help message
new 96c2914 - lots of new manpages from Joe Phillips
new 8a01ceb - fixed typo
new 38280e4 - use @libdir@ instead of ${exec_prefix}/lib - some platforms (such as s390x and ppc64) put libraries into /usr/lib64
new d4ac1aa - do not crash if the application tries to log into a token w/o PIN
new fcfbeb1 - When decoding Path, decode "length" value as well (if present) - a few int -> size_t changes to suppress gcc3 warnings.
new d3c6bfd sc_pkcs15_read{,_cached}_file now honor the index/length parameters from Path
new 3f16e04 - sc_pkcs15_read_certificate now uses sc_pkcs15_read_file
new 021ea9c - added length value to sc_path
new 08f4d67 - Avoid segfaults: if we cannot parse the certificate, do not create a cert object.
new f442470 - added Cryptoflex 32k e-gate
new 5e8a76d - disabled default AAK for now
new d635d53 - support ATR maps in /etc/opensc.conf, e.g. card_driver flex { atr = 11:22:33:44; atr = 55:66:77:88; }
new 98e0f2d - "document" new card_driver.atr feature
new 6df8dbb - fixed asn1_encode_path - include length value if given
new 3168c8e - added new cardctl SC_CARDCTL_GET_DEFAULT_KEY to get default transport keys
new 555f612 - implemented SC_CARDCTL_GET_DEFAULT_KEY for the flex driver; will return the default AAKs for Cryptoflex and Cyberflex Access. Hope I got them right.
new eaebdec - Change the way we handle default transport keys, attempt to reduce the risk of users entering the wrong keys and locking their cards. Here's how we do it: - ask the card driver (via cardctl GET_DEFAULT_KEY) for default key - invoke the front-end's get_key callback. If the card driver gave us a default key, pass it as default value - front end is free to use default key as-is, or prompt user
new 946824d - implement get_key callback
new 8ba7b37 - got rid of default transport keys
new 92adeef - fixed ATR for Cryptoflex 32K e-gate
new 2c280fe - updated pkcs15init error codes
new d8a3189 - Added sc_pkcs15init_get_secret so that the GPK driver can get the MF secure messaging key.
new 27c2369 - make sure we don't assign the same ID more than once
new c55b8d8 - Fixed CKM_SHA1_RSA_PKCS: if OpenSSL is available, use it to hash the supplied data. If OpenSSL is unavailable, CKM_SHA1_RSA_PKCS is not advertised to the user.
new 22fd834 - added comment on pkcs12 files
new e9c8806 - properly set the TokenInfo label from user input
new 96ba7bf - pass the --label argument as the token label when creating the pkcs15 app
new c83fa88 - Parsing pkcs11 IDs and paths with an odd number of bytes would scan past the end of the string. Made sc_hex_to_bin more robust and change various place to use it rather than doing it on their own with scanf(%02x)
new 4f35b0a - we expect an RSA key, so better make sure it _is_ RSA
new 59ca2a4 - sc_parse_atr: initialize slot->atr_info.hist_bytes even if the ATR is bad
new 868d1d7 - added sc_bin_to_hex
new 6217b4a - changed pcsc_detect_card_presence to call refresh_slot_attributes. This eliminates duplicate code, and that we also pick up the new ATR if another card was inserted in the meanwhil.
new 5a568ee - translate SC_ERROR_WRONG_LENGTH to CKR_DATA_RANGE
new 3bced8a - Changed sc_bin_to_hex() prototype a bit and removed the ':' characters
new 79b5672 - Keep the DER encoding of each PKCS #15 object in memory
new 0b8853a - Small bugfix
new 9b6074b - Added openscd and Assuan
new 717cb0c - Modified base64 test so it actually tests base64 stuff
new dc06b5f - When exporting the public key, fall back to the certificate object if there's no public key with the given ID.
new 3acb572 - rm -rf autom4te.cache - it's a directory
new 9a8c3b2 - Added support for separator characters in sc_bin_to_hex()
new 2e6af76 - Added support for CKM_RSA_X_509 (Stef Hoeben)
new 23158d7 - win32 patch from Stef Hoeben
new f984a3f - win32 patch from Stef Hoeben
new 87fc481 - do not segfault when we fail to parse a pkcs15 DF
new d997440 - more Makefile.mak fixes from Stef
new 317a066 - New utility library libpkcs11 - supposed to provide easy loading and unloading of modules, and possibly a few other features in the future. Needed by pkcs11-tool
new a01b8d0 - New mechanism framework - New libpkcs11 utility library
new 21dfabe - New mechanism framework
new ffd4773 - New application: pkcs11-tool
new d584e80 - build pkcs11 before tools, as pkcs11-tool needs libpkcs11
new 96c953c - generate header symlinks for libpkcs11
new 29dd06b - more win32 fixes from Stef
new 3f584db - Added SC_ALGORITHM_RSA_HASH_RIPEMD160
new 5ef34fc - Added support for SC_ALGORITHM_RSA_HASH_RIPEMD160 in sc_pkcs15_compute_signature - rewrote add_padding
new 0c16b3d - Added shorthand rsa-ripemd160
new 647d4bc - Register only those mechanisms the card actually supports
new 7bc0d11 Update
new 2e4f640 - More win32 fixes from Stef
new aef2a27 Update
new ca82169 - removed some dead code
new b86d2e9 - First shot at pkcs15 data objects from Danny De Cock
new 337674d - Added helpful comment about --use-default-transport-keys
new 0f57fdf Update
new d37c1ff - fixed pkcs1-ripemd160 signature header
new fc26b49 - Values of CKA_SIGN and similar attributes now based on the pkcs15 usage flags rather than on some hardwired defaults.
new 1dab7bb Compile fix from Serge Koganovitsch
new 9a472d4 - fixed rsa-ripemd160 signatures - Added new option --module
new d22d1b1 - Another fix to mechanism handling: ripemd160 signatures should work now - Got rid of get_mechanism_{list,info} in framework_ops, as they're not needed anymore.
new a167726 Update
new 6d32471 - add missing help message for --module
new a7615ab - attempt to fix DODF encoding/decoding
new 0980825 - get rid of warnings when calling load_card_driver_options
new 882c5b9 - implemented unblock command
new 34d45b2 - minor signedness issue
new 4c28f0d - prevent buffer overflow
new 3b7ebc7 - clarified use of conf_blocks in process_config_file
new 0babb91 - Allow the admin to configure how many slots are used per card (opensc.conf; pkcs11.num_slots)
new d1fa35e - slightly changed previous patch; new flag hide_empty_slots
new 1ddde4e - Add access, mkdir and getpass wrappers into winconfig.h
new 8c7bfd1 - define enough reader slots
new 079821b - Added --hash/-h to hash data (Stef Hoeben) - Added function to translate CKR_* error codes to strings.
new 4419574 - NUL-terminate strings returned by getattr(CKA_LABEL)
new 604e9cd - the AC CHANGE condition of the PIN objects we created referenced the PUK, rather than the PIN. This caused the standard sc_change_reference_data operation to fail.
new 9acca0e - Implemented new PIN verify/change/unblock framework. All PIN operations are routed through sc_pin_cmd(), which builds the APDU and either passes it to the card directly, or to the card reader along with a request to read the PIN(s) from the reader's keypad.
new c010358 Update
new 8abb5fa - Getattr(CKA_MODULUS_BITS) would fail for keys w/o certificate
new 93c0cab - win32 fixes from stef
new 8e6dc96 - Added run-time option pkcs11.lock_login
new 3693066 - Added run-time option pkcs11.cache_pins, default false
new 0ffa466 - sc_pkcs11_slot_t typedef added
new 1c22c55 - Try to fix pkcs11.hide_empty_slots
new 3dc7127 - added support for parsing a static configuration string
new 939d78a - allow hard-coded config options
new 675ef65 - default apdu_fix=1 on win32
new bd96ae9 - C_Sign* and C_Digest* now return the proper codes when the output buffer is too small, or when the caller is doing and output buffer size query
new e015548 - Patch from Stef: add support for --pin and --test
new 8d7fd40 - new error code (wait_for_event timeout)
new 21fe5ef - Patch from Stef to implement sc_wait_for_event, slightly enhanced by yours truly.
new 65ead88 - New function connect_card() - this does all the work of connecting to the card, optionally waiting for card insertion using sc_wait_for_event
new d1064f4 - instead of calling sc_connect_card, use new function connect_card from util.c This function will take care of the fine print and optionally wait for card insertion too.
new 2699670 - instead of calling sc_connect_card, use new function connect_card from util.c This function will take care of the fine print and optionally wait for card insertion too.
new ad7fb4e - fixed help messages broken by previous patch
new 8603902 canelled -> cancelled
new 04c00ef - fixed problem with infinite tiemout in sc_wait_for_event
new bb77083 - fixed comment before sc_wait_for_event
new 9b330f3 - vertain platforms need time.h to understand time_t
new e9f97a9 Add .cvsignore
new 8b659eb Minor cleanups
new 608debf - Tools did not work unless -w switch was given
new 4384423 Add missing case 'w' to handle_option
new 8229351 - DEF_APDU_FIX wasn't used unless you install a config file.
new 9c5782e - pin pad changes from Stef
new 92651f0 - sc_pkcs15_change_pin: small pin pad change from Stef
new 144bb23 - fixed minor pin pad bug
new 67608fe - Win32 fixes in case openssl is not present (Stef)
new 2e417f3 Update from Stef
new 12bfb8b Cleanups and logging improvements for non-GCC compilers
new 037dbdf Fix compiler warnings
new d13155a Add pkcs11-tool
new 4749a40 - prevent segfault in opensc-explorer create command
new e13804a - fixed message in --learn-card
new 0b1b8b1 - use "wb" rather than "w" in fopen (Stef)
new e60c9d7 - fix the help message for --very-long-options
new 4a14b41 - reordered options for help message
new 7be0774 - learn_card: the cache directory is now created by libopensc
new d2d83a4 - when caching pkcs15 files, transparently create the cache dir if not there
new 1aa5e61 - PATH_MAX fix for win32 (Stef)
new 373de3e - actually honor the use_cache config option
new 41ee6a6 - fix to previous patch: if use_cache is given in both the default and the application conf block, use the latter
new 0af2a35 - Another go at the empty slot/empty token issue
new baf8393 - merged mutex patches from Serge Koganovitsch (Zetes) - created new file portability.c and moved the whole mutex stuff there (so we don't pollute public header files with #ifdef HAVE_XXX anymore)
new 6346fd0 A small warning / compile fix
new 6532461 - win32 fixes for mutex change
new f2f6c24 - added ATR for Cryptoflex 32k v4
new a89e65b - mask out additional flags in the card type byte when asked for the AAK
new b1eff66 C++ warning fixes (assuan excluded)
new e695179 - added SC_CARD_CAP_RNG
new 98e9561 - added command "random"
new a7551e1 - Patches from Stef implementing PKCS11 RNG related functions
new 5b1eb43 - add some support for card removal in pkcs11
new 69f8588 - added card_detect_all
new 4867251 - fix sc_pkcs11_signature_size to return modulus size in bytes, not bits (Stef)
new 693c5e6 - do not encode zero length sequences
new a5492a3 - slightly more verbose error messages when ASN.1 parsing fails
new c83a646 - fixed typo in previous patch
new 7c6896a - link against libscrandom.a, no libscrandom.la
new 1a994ef - a few minor changes from Stef
new 501cdbd - Get opensc.conf from %windir% rather than hard-coded C:\\WINNT (Stef)
new c5f5557 - sc_pkcs15_read_file: gracefully deal with short reads
new 7eef2f8 - new ATR for eToken PRO 32k reported by Kevin Stefanik
new 733f6d1 - fixed previous %windir% change
new b9c3ec2 - fixed two minor issues in p11 test code
new 3a83fca - cflex 32k v4 supports keygen
new 039363b - Remove openscd for now
new 7d68373 Fixes for Windows, who's PC/SC has more events that interfere with insert/removal events
new a383ed9 added return value + fix (needed if hide_empty_slots = true
new d8871d9 some fixes + added cert viewing for -O option
new dfc01ab typo fix
new 20ad65a made buf[1024] dynamic (malloc)
new 5c1b8d9 selection between SHA-1 and RIPEMD160 sigs when 35 bytes supplied
new 16dfb55 the slot's slotDescription is now the reader name
new 7dab6ba file size fix + removed unnecessary code from previous commit
new f6a3437 added: opensc SC_ERROR_KEYPAD_CANCELLED -> pkcs11 CKR_FUNCTION_CANCELED
new e8e738a added signature test for all keys
new 0b84c49 now also caching if file->size differs from what sc_read_binary() returns
new 542e12d - pubkey asn.1 encoding fix
new 76e7ce9 - fixed compiled warning
new 5276bbb - merged Stef's WaitForSlotEvent patches
new f71e2b0 - Added test for WaitForSlotEvent - fixed a bunch of compiler warnings
new 4ff3821 - suppress bogus insertion events
new 0e691fb added support for pin pad readers + change pin
new af6cfb5 - Support Belgian eID - be less pedantic about the AID listed in EF(DIR)
new d1a122c - fixed typo in previous patch
new 8160bf6 - fixed typo in previous patch
new a2b9838 added locking to sc_pkcs15_decipher and sc_pkcs15_compute_signature
new 1c66025 - Each reader now gets a fixed range of slots - Each slot now shows the reader name in the description field
new 23d6865 - fixed minor compile warning
new 7dcf350 added p11 error CKR_PIN_LOCKED
new 0b9c441 get the right error code on card removal
new d944d91 added the CKR_DEVICE_REMOVED return code
new 58985e5 reset first_free_slot during C_Initialize
new e1f4108 added error code CKR_USER_NOT_LOGGED_IN
new 4ffba35 - fixed change/unblock pin for GPK
new 5265456 some cleared messages
new cf60373 - Introduce locks around all pkcs11 operations, in case the caller is multithreaded and wants to access us from different threads.
new 870d9d9 - made card_detect() available to everyone - C_GetSlotInfo now always does card detection, but only for the reader which which the slot is associated
new c05cef9 correct behaviour of C_GetSlotInfo at empty slots
new 5795468 added error: unresponsive card
new 9586581 added check for NULL pointers and uninitialized pkcs11 lib
new b75ea0a more parameter checks + fix in previous checks
new 9631ef3 removed const in sc_card_driver (caused win32 crash)
new 213941a little fix of the previous commit
new 4d4920b Let C_FindObjectsInit return correctly
new a69a309 NULL_PTR check added
new a7a5701 added support for max pin length
new 66f7de9 removed unnecessary debugging
new 252cbd5 login should return CKR_ARGUMENTS_BAD if wrong pin length
new b0a8b1a extra check in C_Logout
new 33133a8 - prevent compiler warning
new d9e99b0 little fix in C_GetInfo
new 0529d27 buf fix in sc_connect_card
new 9173c99 - new pkcs15 object creation stuff
new 49760f9 fixed some thread dead-lock bugs
new 5c1ae16 fixed wrong return value in C_Finalize
new 9fe5baa added error code CKR_PIN_INVALID
new e13720e - renamed connect() to open_reader_and_card()
new 0036545 fix in C_GetSlotInfo that previously cleared the slotDescription and didnt clear the CKF_TOKEN_PRESENT flag
new a2ff6d6 take the last 8 bytes of the card as the pkcs11 serialNumber
new 32f532a fix: clear the CK_SLOT_INFO flags in slot_token_removed
new 66a8076 - more robust handling of concurrent WaitForSlotEvent vs Finalize
new c097704 added error msg SC_ERROR_KEYPAD_TIMEOUT
new f5ac3cd - fixed ATR
new faa73e5 bug fix in sc_connect_card: only the first ATR in a config file was accepted
new bca885f Compile with /MD (multithreaded) instead of /ML
new 4dd322f Corrections/additions for compiling with OpenSSL on Windows
new ca6a27e remove/insert fix: restore the slot->reader in slot_token_removed
new faf95af - makefile cleanups
new d5d1fb3 - bump SC_MAX_READERS to 16
new aab6ebd - minor cosmetic change
new 6717b42 - dont install rsaref/{unix.h,win32.h}
new ec6c865 - abort on errors
new 496b30d - Updated PCSC test code; allow building --without-pcsc
new 489401a - changed HAVE_LIBPCSCLITE -> HAVE_PCSCLITE
new 4690cc5 - libdir -> pcsc_libdir to avoid name clashes
new c816a1f - use OPENSSL_cleanse instead of memset to zap DES key (Nils Larsch)
new 4aef091 card remove/insert dection for Win32
new 556c216 - make sure all APDU fields are zero when processing -s option
new 944a553 - Merged Andreas' usbtoken code
new dd8f504 - properly set max pin length attr
new bdb9163 - added
new 86d486c - top_srcdir/top_builddir fixes (aj)
new 995bcfa - added missing win32.h
new da172fd - added reader driver for usbtoken
new d21d3bf - added usbtoken docs
new 4ca1db0 - autoconf fixes from Andreas J
new a279abd - usbtoken.html was listed twice
new 3d38b2a - add usbtoken.html to dist files
new 0abafd0 Fix: root certs could be shown more then once
new e0a8057 - Remove workaround for t=1 bug in etoken driver.
new 909b917 - opensc-tool -f should handle files > 2K gracefully
new 9d3b5a3 Added sc_current_time
new ac4b6dc Fix: card detection in C_GetSlotInfo is done at most once a second
new a7962ee - stubs for "synthetic" pkcs15 tokens
new 00d2d7c - minor printf fix
new 0ea0ce2 - opensc-tool -f: don't crash on large or record structured files
new 35a5cdd - changed description
new 9ae2b2f - usbtoken fixes from Andreas
new fa2e617 - added sc_reader_t
new 34b5c87 - wrote a bunch of manual pages
new 97ed6f3 - added *.3 manpages
new fabb271 - fix sc_transmit_apdu to properly deal with le=00
new ae700e3 Fix: assertion failed (lock_count>=0) in sc_pkcs15_bind()
new af89c9b Dont include DllMain in the exports
new b00a91c better fix then the previous for the assertion failed bug
new 340aad0 - fixes for le=00/lc=00 problems
new c07de51 - added SC_PKCS15_PIN_TYPE_* defines for weirdo encodings
new 4f60d84 - fix for 2048 bit keys on cflex
new f29ce04 - Don't set PIN defaults until after we've parsed _all_ cardinfo blocks
new 89edb55 - Textual representation of PIN encoding instead of "Type: 1"
new 632dc7d - fix for newer flex versions
new 1e1eec0 - getopt cleanup from aj
new 9437f10 - Added OpenCT reader support
new a89ab64 - added --enable-usbtoken - added --with-openct
new 87a0cc5 - build fixes from Andreas
new 5ca228f - usbtoken fixes from Andreas
new 0eecac1 - support for lifecycle cardctl; cardos lifecycle support
new 56e2e70 - new tool cardos-info from Andreas
new 04b52ed - added
new f801d14 Removed some errors that occured with unsupported cards
new e052e69 - added hotplug errors
new f4b866c - include config.h
new 99dc52d - try to deal more gracefully with hotplug events
new dc269ce - reverted previous patch
new 91deef3 Added cardos-info.exe
new a9a766f - more fixes from Andreas
new d2b5c08 - fixed unblock command when puk given in hex notation
new 91b7b3c - suppress "not supported" error messages from sc_card_ctl
new 0b33312 - explicitly mention we do raw RSA
new 2b4ee79 - changed version to CVS
new bdb71c7 Update
new 3b36593 - added pkcs15 unblock functionality
new 46ddaa9 - fix pkcs11 signatures with etoken
new 92c5e24 Have allways a label in CK_TOKEN_INFO
new 4545fc2 include for MacOSX added
new 088a346 First thing written in the debug log will be ==========
new e04b90f - a few more changes from Andreas
new 0c17345 - dont return error in detect_card_presence if there is no reader
new 44995d3 - don't complain about read/write/update binary with a length of 0
new 90598ef - new error code SC_ERROR_CANNOT_LOAD_KEY
new aa6e626 - import all certs from a pkcs12 file
new 7cb9901 Correction of the previous patch for MacOSX
new be09dc9 - when getting certs from a p12 file, put the subject name into the cert labels
new c53043a - in getattr(CKA_LABEL), do not include trailing NUL
new 1714b31 - improved debugging output of CK_ATTRIBUTE data
new 138346a - backed out AM_LDFLAGS change
new ac1c926 - Added starcos driver
new f81929e - moved the lifecycle stuff to libpkcs15init
new 095db2b - getting CKA_LABEL would not 0-terminate the string
new f8a7fec - get rid of warning
new 5abf1b8 - added SC_SEC_OPERATION_AUTHENTICATE for starcos driver
new 7dd987d - fixed some compiler warnings
new f1aaa62 - integrate starcos driver
new fcd5ddf - removed SCIDI stuff
new 192e140 - merged SSL ENGINE patch from Kevin Stefanik
new 005590a Added card-starcos
new 897e4a8 Added debug.obj
new 98907b6 - fixed endianness problem with encoding/deconding of bit fields
new f08a12f - when no specific reader is required, just select the first one that holds a card - when computing RSA signatures, don't assume the card supports raw RSA - the it the challenge is a sha1 digest instead.
new 93edc07 - Allow command line --key-usage to be more restrictive than the usage given by the certificate (pkcs12)
new 6faee57 - fixed compiler warning
new d2075b2 - implemented split-key support for CardOS
new f169b5c - only build sslengine if OpenSSL supports it
new 9fae999 - fix for the previous change
new c94d72f - fixed signing and hopefully unwrap for split keys
new e384675 - fixed test clause
new aa4c60c - another fix to the engine test
new b531527 More robust detection of removal/insertion events
new 41a2217 - bugfix for unwrap - support getattr(CKA_VALUE) for public key objects
new 0f4c706 - added tests for key unwrap
new a85d6d7 Added code for MacOSX
new b05aadc Have a sec delay in C_GetSlotInfo() per reader instead of a global delay
new 01896a8 Added some files to ignore, also for Windows
new fb41777 Allow non-repudation as a signature usage
new 4ae13b6 - fixed CHV changing with a CryptoFlex
new ae19782 - NEWS entry for 0.8.0
new ed0ffac - fixed add_padding() in the case where padding is request, but input isn't a hash.
new 9ddbeaa - Do not install openscd for now
new 1c4370d - fixed a typo
new 9c555ef - trimmed bootstrap script a bit as suggested by Andreas
new 686a78e - fixed Olaf's e-mail address in AUTHORS =)
new 0aea6fc - applied build fixes from Andreas
new 3e46905 - added missing win32/Makefile.am - added usbtoken.html to docs/.cvsignore
new a02b233 Correction of the previous insert-remove fix
new 0523e1d Fixed an OpenSSL issue with MacOSX
new 2de518d Moved win32/readme.txt to README.Win32, and updated this file
new 131719b - add robert to Authors as contributor of bug fixes - configure code finally working. engine is detected and path to libcrypto.a is also set. - roberts fix for reader-usbtoken.c - card-gpk.c migraton to DES_ routines with #define for 0.9.6 openssl. - man pages: do not ship pkcs15-profile.5 (.in is in the tarfile) - assuan: replace "strcpy(stpcpy(.., ..), ..)" with "strcat(strcpy(.., ..), ..)" which looks good, but nobody uses assuan I guess ? - declar [...]
new c0ea6e9 remove references to SCIDI sanitize pkcs11 include header references (now they are installed in rsaref/ subdir, and pkcs11.h is *not* overwritten).
new 189a692 Fix in case no OpenSSL is present
new 870efbf Added SC_PKCS15_PRKEY_USAGE_NONREPUDIATION as a valid signature usage
new a9692c9 Disabled OS thread locking on OSes with PTHREAD due to closing problems with Mozilla
new 54aaf36 Changed Roberts email address as requested.
new d8ef405 Extended caching for single-user Windows OSes (Win98)
new 2698dc6 Have a compile option to enable PTHREAD locking at the pkcs11 level
new fecf9f5 Allow empty key file paths in compute_signature and decipher
new 07668a3 Nils Larsch:
new 1c121b1 Only look at first byte for end of data detection. That way not only 0,0 and ff,ff is recognized and 0,ff,ff,ff... will not cause trouble.
new c6efa1e create card->chopsize, init it with SC_APDU_CHOP_SIZE, allow cards to change that value, and add code to starcos_init to set chopsize to 80.
new f417883 Avoid an Assertion Failed (ctx!=NULL) in log.c if sc_establish_context() fails in C_Initialize()
new f5bed52 Comment fixed by Nils: should be 0x80 or 128, but not "80 bytes".
new a6e7fa3 Nils fixed asn1 code to detect two byte "file name" versus longer real paths.
new b0d4f06 - Renamed card->chopsize to max_le, which is more descriptive - Changed a few checks to asserts
new 9213f6c Removed some compiler warnings
new dcf4a94 Build libscrandom in both .a and .so versions (by R. Bihlmeyer)
new a70954d - Yet another test commit
new e437a38 Dont give errors with -t option if the private key doesnt support key unwrap
new 683b946 Patch by Robert Bihlmeyer: - remove liscrandom - use scrandom.c directly (list as part of the SOURCES)
new 67dd35f Added info about the pkcs11 lib
new dc6e5f8 Little update on how to add OpenSSL support
new 782f5d3 Fix for Win32 where there's no OPENSSL_cleanse()
new a58e5e5 improved "get" function: - path is now by default like 3F00_5015_5031 instead of "3F00" - the final message shows not only number of bytes but also the filename.
new dd81cea - indent (maybe not such a good idea?) - improved some error messages
new 6753057 - added a "nofork" parameter - changed the initialization order to fix a race condition where the first usbtoken uses the id 1 and not 0 - fixed a bug where all tokens always used id 0. now several tokens work at the same time. - fixed a bug: pid files were empty.
new 99d3289 this should fix the libscrandom issue: the obvious solution is to create libscrandom.la (not .a) and link with ../scrandom/libscrandom.la (not -lscrandom).
new c4e4948 oops, didn't remove reference to sslrandom.c. fixed.
new c79e42d Added support for Mac bundles
new e9e7db8 Fix of the previous Win32 patch related to the assumed absence of OPENSSL_cleanse(): this function does is present on OpenSSL 0.9.7 but not on the beta4 version
new 55e8c31 Fixed: support for X.509 V1 certs
new 20fa07c Added decryption functionality
new b1e4c88 Add sslengines.
new 496232d new sslengines implementation with pkcs11 and opensc backend.
new 167dea4 libpkcs11.h was missing from EXTRA_DIST
new 2fae230 Make sc_pkcs15_read_file() work if the pkcs15 files contain only FIDs instead of file paths (Nils Larsch)
new 7cbe523 At least the rainbow ikey 3000 need bigger labels. Label size should be 255, as per pkcs15.
new d416f2f added #include <string.h> killing warnings.
new 1bfe075 OpenSC header files are included as #include <opensc/opensc.h> Thus it has to be -I/path/to/opensc/include and not -I/path/to/opensc/include/opensc
new 41a9e6f - sc_pkcs15_compute_signature(RSA_RAW): zero pad input if shorter than modulus length
new 9c198d7 Some typos fixed and fixed the algos for use in OpenSSH (Nils Larsch)
new 3ed0c2f - do not mess with Case 4 APDUs unless we're doing T=0
new 877423b - restrict max read/write size to 128
new 6aeb544 Ported to Win32
new 209681d - some tests for pkcs15-init
new 77b22f1 - minor usability updates
new 8a3992a - bumped buffer sizes for EF(TokenInfo) labels
new 4be5cbd - show output of pkcs15-init commands
new 059d377 - dont say all tests were successful when we failed
new 053b10e If signing/decryption fails because the card lost its security status, try to log in again and then do another attempt to sign/decrypt
new 27e1055 - added sc_pkcs15_find_pin_by_reference
new a3d81aa - etoken_erase don't assume PIN 0 is always the SO PIN
new 7b34c2e - get_pin callback now takes additional label argument - call get_pin for ALL pins, not just those listed in the profile - add split key support to sc_pkcs15init_generate_key
new 992fb07 - get_pin_callback takes an additional label argument - add split key support to key generation
new cf5c0fb - added --slot-label option to find slot by label
new 8fddbdb - improved test cases slightly
new 99c1bf0 - keygen: when --split-key is given, try hardware keygen if usage permits
new e85ebc6 - fixed card_ctl error message
new b68cb1e - added sc_free_apps to undo sc_enum_apps
new 8c7e571 - erase card fixes: forget cached secrets, and use sc_free_apps
new 383f1b1 - added --no-prompt
new 4356c7d - increase size of PrKDF, so that we have room for 2x2 split keys
new 0f29e75 - allow full access to keys not protected by a PIN
new 2e673ae - Do not try to C_Login if the token doesn't require a login
new fa123c4 - Allow "pkcs1-init --erase" without further options
new e396ff5 - more tests
new 30c0943 - it seems the upper limit for r/w binary is 244
new d34eb0e - test set didnt abort if p15_validate failed
new d5713d2 - updated test scripts
new 684ceef - added pkcs15-init pkcs12 test case
new 3bc3b4f - bump the CDF size, as we now put the subject name in the label
new f41586b - added some color
new 67747f4 - select file: do not interpret INVALIDATE/REHAB AC bits for DFs
new aeb84da - make sure CREATE/DELETE are protected
new 4104cb1 - minor fix
new 54f1227 - display LIST_FILES and CRYPTO ACs as well
new f75ffc5 egate cryptoflex 32 card can generate key. updated the flags.
new 0d3948e - in test_signature: check CKA_SIGN before doing any signature tests
new 35a12ea - print_usage_and_die: skip hidden options
new da8dfa9 - fix for previous change
new 0070307 - redid option handling (you can now call it with -ECPa 01 -G rsa/1024 - except there's a little bug that prevents this from working properly) - implemented --assert-pristine
new 705103d fix include paths. include files are supposed to be in opensc/ and opensc/rsaref/.
new a496e8e - added sc_pkcs15init_set_secret
new 31c9577 - Disable colors for now - use --assert-pristine to ensure card is pristine
new 43931de Added --pin option to pkcs15-tool
new 4bfc94c always create and use a pin. removed --split-key, cardOS users have to specify it. three new tests.
new 5a91780 replaced it with a newer version.
new 3e30e87 - do_get_any_verify_pin: try to look up p15 pin info from card
new a6d6a1f - added option --secret
new fc31b65 added sc_logout() functionality
new 4873e12 libtool.m4 is not required, and a version too old causes problems anyway.
new 296a9cc - fixed the hang with logout()
new f4d1147 - change debug level for sc_lock/unlock
new e6864b5 - less verbose debug messages
new 795915e - added cryptoflex RSA key generation (not yet functional)
new 24107c2 - fixed cryptoflex keygen
new 484fca5 - in pin_cmd, dont assume the caller has properly initialized max_length and encoding
new cce7ef1 - fixed pin handling in generate key
new 890e8a7 - erase card using --secret
new 9da55fc configure now accepts a path with --with-openct, and that directory is searched, and variables OPENCT_CFLAGS, LIBS, LDFLAGS are set (and used in src/libopensc/Makefile).
new cf718b6 move autoconf helper files to tools/ subdirectory.
new 9d6227e - return value of pkcs15_login was ignored
new 2f421d2 moved main() function into it's own file, killed duplicate compiling, made older autoconf/make/libtool happy.
new afe01d7 - added
new e76a0dd - fixed crypt* tests to work with cryptoflex
new 7b5e8d2 - allow specifying the list of tests to be run on the command line
new 59b07de - better handling of failures
new 580b9c4 - specify user pin when erasing card
new 3791a68 - added
new 48a61e9 - added card name to struct sc_card to allow upper level apps to identify card type more precisely
new 5b5e98e - added function skip_if_card to allow tests to be skipped for certain cards
new 81f2b7f - added --name option
new 2abc504 - remove signedness warnings printed by new gcc
new c602717 Compiler warning (result of malloc not casted)
new 7fe0ba8 - fixed typodef in sc_pkcs15_*_info_t (spotted by Nils)
new c8c2cf7 First implementation of C_GenerateKeyPair()
new e3262c5 added a check for CKA_CERTIFICATE_TYPE to attr_extract()
new fe3cb3d some fixes to pkcs15_create_object() and pkcs15_gen_keypair()
new 20053af A first implementation of write_object(), mostly for testing purposes
new 5716f10 Fixed a type in previous patch
new c85913c Fix in pkcs15_gen_keypair(): labels didnt work
new 2871cd8 Add support for a new cryptoflex profile in which the SO (CHV1) is in charge of the pkcs15 DF
new 6575a4a - iso7816_logout should call driver specific select_file function, not the iso7816 generic version
new 51100d1 - prevent excessive calls to logout
new df9d7a6 makefile fix by Robert Bihlmeyer: include usbtoken.html in distribution tarball.
new da8a495 added flex_so.profile, moved list of all profiles to PROFILE
new 20ac705 - dont fail if we dont have xsltproc
new 0c4e6ef - another fix for --without-openct
new 0cfd631 - New public function sc_add_padding
new d86e7fb - starcos fixes from Nils
new de20691 Added some info
new aecd987 Add support for non-optional ASN.1 object that are empty
new 694a649 Add the AuthID when writing pkcs15 data objects
new 0d2a15c Added support for a new cryptoflex profile, where the user (CHV1) is in charge of the pkcs15 DF
new bd3eab8 Added #include <openssl/rsa.h>, this is needed for openssl 0.9.8 and higher where openssl/evp.h wont include the algorithms anymore (Nils)
new c0b8b08 Also compile the sslengines dir under Windows
new 0b85e18 Add AuthID for pkcs15 data objects
new 9fd1cee - added --without docbook
new d7640a4 - put HAVE_DOCBOOK conditional around %.html rule
new afe999d A small fix in OpenCT detection. Bumped the version number up to 0.8.0-rc2.
new 7021fcb - iso7816_logout now invalidates the path cache
new bf527eb Doesn't work, but added current openssh patch anyway.
new f2aaa70 makefile fixes, so the tarball will contain all files.
new b511ae2 current patch for openssh. does not work.
new 98d12f1 added makefile so regression files will be included in tarball.
new 6cc4820 - when loading a profile, check all variations of <profile>.conf before <profile> itself
new 70b17b3 The code now asks for the passphrase.
new 79a5456 Changed strcat to strncat
new 97da0b6 Now you can specify your card profile for pkcs15init, both on the command line if you use the pkcs15init tool and in the opensc.conf file. Not specifying gives the default one, like before.
new bb4bdd5 Let sc_profile_locate() behave about the same way under Win32 than under Linux
new 3c50c4d Some improvements to gen_keypair() and write_object()
new 127f94a - added pinpad support for OpenCT
new 24b517c Added support for selecting keys by slot and by key ID; and added newlines to some error messages
new 4fb623d Some fixes/improvements, e.g. an ID now has to be entered in the same way as in pkcs15-init
new a8724be In slot_initialize(): Bugfix in a memset and added a pool_initialize()
new 1166033 Added a safer locking mechanism, based on sc_lock/sc_unlock (Olaf)
new 09650d2 Changed SC_PKCS15_MAX_PINS to MAX_OBJECTS in pkcs15_create_tokens()
new 2141d58 removed pkcs15-init.sh reference (oops, when did that creep in? shouldn't be.)
new e7fcb2b make live easier for other developers: html file is now also in the repository, and I will update always both at the same time. So not even developers will need docbook dtd + xsl + xsltproc.
new 59da343 PATH_MAX is defined via limits.h (I hope that exists on all systems). MAX_PATH is a typo. int r was never used.
new 4dc226d Added a little extra logging to C_GenerateKeyPair()
new c1261a6 xml/html based documentation. This can replace:
new bfaacaf ssl engine update (key format), pkcs11.txt integrated. both done by stef, I'm only commiting (and updateing the html file).
new 7775154 run tidy on html files (ignore if it is not available). tidy html files, so they are readable.
new 0b15d0a Use a better notation for the -key option
new 5ed3d17 Added sc_pkcs15init_change_attrib() that can change the label and ID of a pkcs15 key or cert
new ffadf47 Implemented C_SetAttributeValue() that can change the CKA_VALUE and CKA_ID
new 033e032 Added test code for C_SetAttributeValue()
new 4fdecc3 Fix: register CKF_GENERATE_KEY_PAIR in a correct way
new 0cb9a18 Some Windows fixes
new 82c00d8 Placing #include <windows.h> in wincofig.h causes compiler problems, better put it in each file that uses _MAX_PATH
new b7d92d3 Removed the CKF_WRITE_PROTECTED tokeninfo flag
new 7b7f210 Implemented the C_VerifyXXX() functions
new 4f979cf attached is patch for card-starcos.c This patch generalizes the handling of the driver internal extra data (for example this will be usefull to supply the card driver with the necessary information to create MF/DF/EF). I also added a workaround for certain profiles which require that the pin is only verified once (i.e. the state doesn't change after a signature verification). And finally I changed the order of some starcos function (at first the init/free function an [...]
new 3669fa8 Increased the pkcs15 ID size from 16 to 255
new 694715e Xander Soldaat <lists at b-yes-d.net> reported this ATR, the card works for him "like a charm."
new 44dbbff disable usbtoken by default. put usbtokens readers behind openct readers.
new 17cec0c usbtoken is now obsoleted by openct. Update the documentation.
new 0ee983f Some of additional documentation.
new aee7119 updated configure to newer init calls. set automake strictnes to foreign.
new d94de46 remove old text files. new documentation is in opensc/docs/opensc.html (and .xml)
new 1b988af Fix makefiles.
new 4737789 Implemented the get_response card operation, is now explicitely called by sc_transmit_apdu()
new 473a701 Forgot to init slot[0].flags to SC_CARD_PRESENT
new df89427 Bug fix: let sc_transmit_apdu() returns a negative number or 0 (no positive number)
new 1b3239c Fix: use strncasecmp() instead of strnicmp()
new dbefbad Changed libpkcs11.a to libpkcs11.la (by Ville Skytta)
new c4d2611 - Various build fixes for various operating systems and compilers - Add missing .cvsignore files - Remove tools/ and make configure to work again
new cde2543 Forgot this one
new c83c887 Cleanups, fix --with-common-dir work with OpenSSL engine detection
new b093146 If C_SetAttributeValue() wants to change the CKA_SUBJECT, simply return OK. This is OK as we don't save the CKA_SUBJECT of a public key anyway, and it's needed for doing keypair gen + cert writing with Mozilla
new 512fb44 - Fixed OpenSSL detection (at least with Debian)
new cd20622 remove files in "make distclean" instead of "make maintainer-clean" to match the distribution tar file.
new 901a2d9 Added 'Global Platform' PIN encoding
new c2e4021 - try to deal with RSA_SIG keys (first try RSA_PURE_SIG, then RSA_SIG)
new 82c3efb - added missing error messages
new 29add3c - added SC_ERROR_WRONG_PADDING
new 864f261 Fix: if there was a public key and cert with the same ID, you'd see the public key twice in pkcs11: once the 'real' one and once the one derived from the cert
new e8cf96a Fix of the previous patch: if there are a public key and cert with the same ID, show the public key derived from the cert
new 0a05d83 Have process_fci() as a card operation instead of being called internally by iso7816_select_file(). This way card drivers can implement a select_file() and process_fci() independently
new 95e2d8b - Change padding functions
new 34fbb42 Fix of the previous patch: show only 1 public key if both public key and cert exist
new f563ee6 Moved padding from pkcs15-sec.c to padding.c
new 665ee52 rm -f depcomp and friends so that we don't have to use -f flag for autoreconf. Fixed an issue noticed after upgrading to autoconf 2.52 -> 2.57, automake 1.5 -> 1.7 and libtool 1.4.2 -> 1.5.
new 64c62eb - patch for synthetic p15 cards by Nils Larsch
new 83d1798 The CVS HEAD should always have a version "CVS". For stable releases we should create a branch I guess.
new 049246f real cleanup via MAINTAINERCLEANFILES. include depcomp in distribution.
new 118c7a4 Resync .cvsignore files
new beebb1b Remove C++-style // comments. Yes, I know that they are ok in C99 spec, but who says that all compilers are already C99 compatible.
new d79ed53 Remove the use of AC_FUNC_MALLOC and AC_FUNC_MEMCMP as they don't work correctly with autoconf 2.57, we don't really need them for anything anyway.
new 6ff35cb For crying out loud, hands off. There is a fucking reason for these files to be removed manually.
new 9dd994f Little fix for Windows
new 1c1db18 Use $LIBDL instead of hardcoding to -ldl
new 3181919 Don't leave -lpcsclite to LIBS, use LIBPCSC instead. We really don't want to directly link -lpcsclite to every single library and program.
new f8c5da9 Fix: if a pkcs11 operation fails, it should be ended
new 47489c5 Added some debugging info
new 01a36a8 Added some debugging info
new d9d050b - fixed typo
new 98f56be - added sc_pkcs15_compute_signature.3 draft
new cb58148 Read/write the file's contents as binary
new c2d09ff Read the file's contents as binary
new 993abdd set automake option.
new 99c2b88 add id's to all chapter and section tags. add documentation on Eutron CryptoIdendity IT-SEC.
new 23ee080 Added test code for the new Verify functions
new 5f0e9c9 somewhat improved profile search.
new c4b6992 clean *.m4 files.
new c34eb2b find the keys by usage (patch by Nils Lars)
new 06d4311 Made the construct_fci() a card operaton, just like it has been done with process_fci() before
new d87ec12 Remove the rest of old, obsolete SCIDI related crap.
new 0da7aaa Resync with p15_eid changes. No, it still won't work.
new b458deb updated patch. changes: - add Nils fix for split keys. - changed "ask for pin" code. The later is ugly and needs to be changed. however it is open how we can do that. Maybe it will require changes in openssh, so lets keep it till those issues are solved.
new 98ffae1 Add Nils and J��rn to Authors.
new 849d480 Nils fixes to starcos.
new 6ff35ee Little fix in test_verify()
new 8b091d6 Add missing 'n' for getopt_long
new 3a61c4f - Remove src/assuan, what's the point of having --with-assuan if we're including our own version? Besides, opensc-signer and openscd both are incomplete versions, I don't know if they work at all. - Minor cleanups to openscd.
new 4cbd578 Added test code for Mozilla-like keypair generation and the writing of a certificate
new 4de1bef - Build fixes
new 18ebc83 Fix: don't give an error if the hash algo is SC_ALGORITHM_RSA_HASH_NONE
new 5b1e463 Build fix
new 7fb4472 Add a big fat warning not to use usbtoken.
new abc1e8b Fix: allways set pag_flags = SC_ALGORITHM_RSA_HASH_NONE if sc_pkcs15_compute_signature() is called with this flag
new bc7d9bd Renamed test_engine.s to test_engine.sh
new 40f9959 Add support for MacOS X with PC/SC framework using autoconfigure. Tested using Panther (WWDC build) + fink. Should work without fink, too.
new 3ed1b9d Fix the pam_opensc-test linking problem for AIX5.1+ and MacOS X
new a327d19 Minor cleanups
new 10a9d6f Upgrade the version number.
new 0b1a65c Added struct sc_card to process_fci(), just like it's done with the orhter card operations
new 886de97 More consistent indentation for multi-line variables
new 26b2ebb Remove old references to OpenSSL
new 2836ff0 Fix for the MacOS X pam module installation
new ccc9aca Fix OpenSSL engine detection for cases using --with-ssl-dir.
new a9f05d1 Remove CFLAGS_OPENSC, cleanups to INCLUDES handling.
new 53b5c2b - fixed VERIFY handling
new 0f97eb1 Add support for probing the correct extra magic needed for linking sslengines. Probably not perfect, but it's a start.
new af50810 Fix: if a pkcs11 attribute is requested that valid for that type of object, but that we don't have, then we should return length = 0 instead of returning CKR_ATTRIBUTE_TYPE_INVALID
new 77432ee - indentation fix
new c23ff8f Removed a call for a (not yet) existing driver, which I accidentally added along with another change
new 7fc4ad2 - fixed error message
new 3a68ba6 - warn if EF is too small for the amount of data we want to write
new 1091548 seperator is written to an u8, so it should be a char or u8 anyway.
new d447194 Add support for native MacOS X pam header location
new ef1826c Renamed pam_opensc-test to test-pam
new 222387d Added info about SC_ALGORITHM_RSA_HASH_NONE, to comply with the 0.8.0 release
new 1287ed1 - doubled file size of PrKDF, PuKDF, CDF etc - provided old profile as pkcs15-small.profile for e.g. GPK4K
new ce2ed80 Under Windows, flex generates lex_parse_win32.c, because the default lex_parse.c that is in the snapshots and in the releases won't compile on Windows
new 67d6167 - accept option -T
new d1d502e - accept option -T - added function skip_unless_card
new 3e1dd82 Remove some compiler warnings
new ce51dac Fixed the verification, so that it corresponds completely with the signature functions (more specifically: the special cases are provided for SHA-1 and MD5 signatures with the RSA_PKCS1_PADDING mechanism)
new 6e29c9f Fixed a typo
new c42a3bf - Fixed a mac specific compiler warning - Fixed libdl-specific code to work with Fink's dlcompat package
new 55d05ae Removed some unnecessary output
new 8dd292f Blah, unify the string handling a bit
new 085ec59 correct makefile so that the depending libopensc is updated when a new scconf.lib exist (Ivo Pieck)
new d0b18fb Status update
new 83f81f2 Fix: use of uninitalised variable
new b33b74c - cleaned up formatting
new 3589b0e "-lcrypt" is always wrong for CRYPTOA, and we always need a path to find libcrypto.a. So default to /usr.
new c74ba58 - when asked to sign data, also consider SIGNRECOVER and NONREPUDIATION keys - properly interpret return value of get_key
new 3b6b9ee - Added announcement
new 5ff735c stupid bug, set those variables if empty...
new 954325b - print user_consent field
new 9f065e8 - suppress stupid debug messages for sc_lock/sc_unlock for debug level < 7
new 11e38e8 - first stab at user_consent handling
new c62171e Rewrite parts of the OpenSSL detection
new 7089ef5 More cleanups
new 2a0da5c improve configure code for openssl.
new 062fceb - More cleanups - Add '-no-cpp-precomp' check for MacOS X - Rename --with-ssl-dir to --with-openssl
new c3c68e8 Global Platform PIN Encoding: 1. Fix for pin changes: use the real length instead of the max length -- 2. Check for valid pin chars
new 0aaed9f - Minor cleanups - Add preliminary support for MacOS X bundle installation
new 890d6ee Cleanups
new bfc584e - Allow MacOS X build to be able to support simultaneously loading of .dylibs, .bundles (native MacOS X) and bundle objects (.so) created by GNU libtool, if dlcompat is found. Otherwise just support .dylibs and .bundles.
new 5d2ba90 Updates for the upcoming release.
new cbffe9c Let's not advertise buggy code. Usbtoken is only a fall back solution, openct is working far better.
new bf5b6e8 - Updated gnupg statement
new 4f797b3 Add macos
new 844a25c Add ANNOUNCE to distribution tarball
new 1a4c157 fix for compiling openscd, thanks for help to werner koch.
new 7160d11 Fix OpenSSL engine linking for MacOS X.
new 90cd91c Fix for --without-ldap-ssl
new 40b747a Minor cleanups
new e6258f8 - Install OpenSSL engines as bundles as well - Don't bother "renaming" opensc-pkcs11.so when installing as bundle. - More irrelevant cleanups
new 8cf5945 Add common versioning to all libraries
new 2b3db94 - Rename sysdep_timestamp_t to sc_timestamp_t - Add missing function prototype for sc_current_time
new 093adc8 Fix: don't DER-en/decode the data in a pkcs15 object
new 3c88da0 - Do not barf on empty SEQUENCEs if all elements inside are OPTIONAL
new 7468169 Merge with recent OpenCT changes
new 252e44b Allow MacOS X users to disable the use of PC/SC using --with-pcsclite=no.
new 835db85 CRLF->LF
new aefab51 Add fix by Olaf to handle CRLF style text files as well
new f9f8b1f Remove old cruft, minor reorganizing changes
new 763fc16 Rename libopensc specific error/debug to sc_error/sc_debug
new 24b3c22 Merge with OpenCT
new 3f7599c Documentation fixes by Ville Skytt��.
new 70c3d91 - added missing intialization of apdu struct
new 2fd5b30 - added missing newline to error msg
new d59a103 - Cleanups to Makefile.am if / endif mess - Don't bother checking OpenSSL engine LDFLAGS if no engine detected
new ef42ba2 - path cache wasn't cleared on error in flex_select_file - slightly better debugging output
new 8fcab21 - slightly improved debugging output
new dc42cd3 - added sc_print_path
new 5835e75 Cleanups
new bd54ea7 - Move all dynamic loading related code to src/common/scdl.c, probably needs some more work.
new bac2b60 Move scdl to it's own subdirectory, although it's merely for internal purposes only.
new 2c54905 EUSER: Cut'n'paste error
new 087b9c1 Generate minimal Info.plist and PkgInfo for bundles
new 5616dba - Stop using unflexible automake conditionals when building PC/SC, OpenCT or USBToken support, use ifdef's directly in source. - Because of above, add HAVE_PCSCLITE for winconfig.h - Remove unnecessary includes for log.h, opensc.h and errors.h in libopensc sources, they're already taken care by internal.h.
new 86475ea - Remove sslengines/libpkcs11.h, it's almost identical to libpkcs11's pkcs11.h. - Move default PKCS#11 library defines to pkcs11.h, so they can be used by 3rdparty applications as well. - Minor cleanups
new 3a2a446 Add PKCS#11 spy sources by Mathias Brossard <mathias dot brossard AT idealx dot com>
new c0c3c33 SC -> OPENSC, old legacy from the libsc days
new d63e83d - Linking cleanups for libpkcs11 / opensc-pkcs11 - Build fixes for PKCS#11 spy module by Mathias, so far untested. TODO: C_UnloadModule?
new 597877e Move #include <windows.h> to winconfig.h in order to minimize win32 specific code sections.
new de2d058 Typo fix
new 3d7e8a9 - Properly detect CarDOS lifecycle MANUFACTURING and report it as "OTHER"
new 03de5ba error -> sc_error
new 3bd77d0 Fix make distcheck to work again, weird that it stopped working only after the opensc-spy patching.
new 915ddc9 PKCS#11 spy fixes by Mathias Brossard
new e66bb1e Remove gcc specific code from usbtoken/openct drivers, untested.
new 5bd87ee Warning fix
new 842b5cd Fix: let this card driver do the unblocking itself, don't send it to the iso7816 code (Victor Tarasov)
new 97f78bc Fix: handle the 3rd argument of the Change PIN and Unblock PIN commands correctly
new 1941bc7 Build the pkcs11 spy on Win32
new 1decd28 Typo fix
new 4f58059 Fix: don't print the contents of a NULL pointer
new ba1a685 Don't bother exposing sc_pkcs11_module_t and scdl_context_t to public headers, use void instead.
new a02ef5e Bunch of generic compiler warning and C++ fixes before indenting the sources, apparently OpenSSL engines are not under a heavy development anymore.
new bbc64d0 Indent sources
new eb1dd0f Preliminary update for the upcoming release
new 0c37fe2 Warning fix
new e6f3f9b Increase log buffer size, so that 255 hex bytes still can be logged
new 09f2d37 Remove old cruft, enable p15-ldap support (PAM option auth_method=pkcs15-ldap)
new 1ea97fb Add very preliminary and quick port of an old scam code that implements ldap-authentication support, needs to be rewritten for more specific OpenSC usage some other day.
new b3907c5 Add cert_support.c for pkcs15-ldap support, old legacy code that needs to be removed at some point. Implemented against OpenSSL 0.9.6, not much tested against 0.9.7.
new 3ee103e Replace overly complex and old configure magic for connect() and friends, just check for socket() in libsocket.
new 2c173c4 Accidently changed the version number, fixed.
new f257511 Remove extra semicolons
new b4ea04d Build fix for MacOS X.
new 68c885e Added version info to the Win32 binaries, and set the version number to 0.8.0.0 (4 numbers seems to be needed)
new c69ef43 C++ warning fixes
new 1a36f46 First include <stdio.h>, otherwise the #include <windows.h> turns wchar_t into an (unsigned) short (Unicode)
new 05a5696 Removed compiler errors under Win32
new c5eea38 Fix: C_GenerateKeyPair(), C_CreateObject() returned CKR_USER_NOT_LOGGED_IN if lock_login is set to false in the config file, because then the pkcs15_init functions do a logoff internally
new 508b20a The previous libsocket/libresolv configure cleanup broke LDAP support for at least Solaris. Therefore assume, that if we have to use libsocket, probe for libresolv as well although OpenSC's internals don't use it.
new 6857ffa Update PKCS#11 library version to 0.8.
new 4e31110 Fix bootstrap issues with Debian/automake-1.4
new cdc2f67 Bugfix: return SC_ERROR_OUT_OF_MEMORY if malloc() fails (Kevin Stefanik)
new ad70497 Use <version> instead of hardcoded version number.
new 886409a Updates for the 0.8.1 release.
new c221e36 Disable pkcs15-ldap from the 0.8.1 release.
new 99cb33d Set version as 0.8.1.
new 88ab752 Back out previous change, wrong branch.
new 38c5f50 Remove old patches for OpenSSH 3.6.1p2, anyone interested is probably already using version 3.7.1p1.
new 4717ef2 TODO update
new dc83f04 Remove old ChangeLog, add URL to the new location.
new 6870076 Oops, remove hardcoded bundle creator / type
new 0077a08 Fix various C compiler warnings and C++ errors / name conflicts
new 2aea814 Fix OpenCT probe issues
new 345914e Rename HAVE_PCSCLITE to HAVE_PCSC, which is more correct.
new fe9eac7 Rename HAVE_PCSCLITE to HAVE_PCSC, which is more correct.
new 0cbe51b Rename HAVE_PCSCLITE to HAVE_PCSC, which is more correct.
new 671adbe Rename HAVE_PCSCLITE to HAVE_PCSC, which is more correct.
new b5984fc Some changes for the spy: (1) renamed opens-spy to pkcs11-spy, (2) exported all pkcs11 functions, (3) start the log with the name of the module-to-be-loaded, (4) first look in the opensc.conf file for the module and log names
new 186be72 - Fix a typo - Rename init block into spy instead
new d208a04 Cleanups to scconf handling
new 1055045 Fixed a bug in the mechanism listing and made it more general
new d9fbbc6 Fix: the hash-based RSA algo's can only do sign/verify, no wrap, encrypt, ...)
new 7bd2723 Some fixes that accidentially crept in
new 29fc182 Add OpenSC 0.8.1 release date.
new 2fa013e Fix: don't link by default with openssl
new 70b0427 Add Makefile.mak and version.rc to the distribution tarball.
new 7730dc1 Fix: read data as a binary file, not as ASCII
new ebca5c6 Added C_DecryptInit() and C_Decrypt() for RSA keys
new fac4bd6 Tweak out some compiler warnings
new 509119a Correctly add the label to a pkcs15 data object
new 4abcfbd Allow the pkcs15 data to be fetched by label instead of ID, as pkcs15 data objects don't have an ID (Danny De Cock)
new 2457faa Fix: when doing a sc_pkcs15init_generate_key(), the auth_id for the public key wasn't put into the PuKDF
new e87ba3c Fix: add room for a 'last-flag' object (Ivo Pieck)
new 09290bd Remove hardcoded VERSION define, you'll need need to update versions from winconfig.h and also version.rc.
new 171c4c6 Fix: wrong option name
new a61c95e Minor cleanup
new f003949 Fix: added scdl.lib to the link list, and added all required OpenSSL libs to the link dependencies (Ivo)
new f003360 Fix: added all required OpenSC libs to the link dependencies (Ivo)
new 0cf455a Fix: don't free() a static buffer (Ivo)
new 106351e - some commands used the wrong APDU case
new c5bd03a - Add missing error->sc_error conversions and other Assuan specific build fixes
new 7761dff Security fix: the flex_onepin profile doesn't allow the AUT1 key to change the PIN anymore. Also: it's possible now to add the SO pin to the flex_onepin profile
new 4b205da - Remove unused variable
new bdfffb2 - allow all pins/puks to be specified on the command line for testing
new bf7e801 - new path functions: sc_append_file_id, sc_compare_path
new efb19ca - slightly enhanced debugging output
new ecc469d - added some more errors
new 45e820c - added sc_pkcs15_find_prkey_by_reference
new 3d283fd - fixed a bug in the previous patch
new 23c1e81 - pkcs15 rewrite
new a420448 - updated/added tests
new b66e24b Small changes to make it work on non-C99 compilers
new 1bdcd21 - Revert previous patch, an alternative patch to work around non-C99 and/or gcc issues coming up soon.
new 936ad78 - Some build/portability fixes for the pkcs15init rewrite - Add sc_pkcs15_get_<drv>_ops(), yet untested
new 9f52b9e - Don't limit the number of times the --send-apdu option may be given
new aad8831 - removed some dead code inside #if 0/#endif
new 12a4ef7 - replace sc_pkcs15init_set_pin_data -> sc_keycache_put_key
new c323d0a - the previous patch was bad; fixed it
new 5da3b6f - removed unused variable
new 734bceb - Error logging changes: replace ctx->log_errors with ctx->suppress_errors, so that we can nest error suppression using suppress_errors++/suppress_errors--
new f552395 - Error logging changes: replace ctx->log_errors with ctx->suppress_errors - remove error/debug callbacks; always use sc_error/sc_debug
new fffe5b7 - Error logging changes: replace ctx->log_errors with ctx->suppress_errors
new 7d7e079 - removed obsolete profiles
new e968abd - dont barf on empty directories
new eaf1f7a - Remove old callback error/debug functions
new cfcc191 Change setlinebuf() to setbuf(), which is also availabel for MSVS
new 603ccec - Fixed nightly snapshot generation - Link keycache.h to src/include/opensc - Move mutex function declarations to opensc.h
new 14b49cc - Forgot to commit
new a80928e - removed debugging print
new 09cd605 - one suppress_errors-- too many
new c41c9b1 - pin protection for keys was broken
new 574d6f3 - added debian packaging files from Joe Phillips
new 81e6d67 - On-board generation of non-repudiation keys did not work - Minor cleanup
new afcf39c - some more cleanup
new e1df398 - Merge with recent OpenCT changes
new 2a12ed3 - Prepare for userConsent support: changed ops->create_pin to take a sc_pkcs15_object_t instead of sc_pkcs15_pin_info_t argument.
new 937e6c7 - fix for cryptoflex key download
new 927ae34 - fix cflex key generation
new 6ff1ecb - honor --pin argument for pin pad readers, too
new af0bd61 pkcs11/framework-pkcs15.c
new 1eacefc - previous patch was bogus/incomplete
new 9d78ea1 - data files had ERASE=NEVER; which is obviously bad
new 8740ced - dont pin protect pubkey
new c9de474 - Do not overflow signature test for 2K bit keys (fix by Chaskiel Grundman)
new aae679b - tcos_card_ctl shoudlnt complain about unknown cardctls
new c20fcf5 - bump max number of apps per card to 8
new e7f0dbb - support UPDATE ACLs when creating a DF
new 8368731 - disallow UPDATE on the Application DF
new 70597d4 - fixed change/unblock pin with implicit test
new 9e70efb - sc_pkcs15_find_pin_by_reference now searches by reference and path
new ae2cfe8 - sc_pkcs15_find_pin_by_reference now searches by reference _and_path_ - profile->p15_card renamed to p15_spec, as it reflects what _should_ be on the card - added profile->p15_data, which is what _is_ on the card - make do_get_pin_and_verify use the sc_pkcs15_find_pin_by_reference properly.
new 72788e3 - added SC_ERROR_CANNOT_LOAD_MODULE
new a644d83 - added message for SC_ERROR_CANNOT_LOAD_MODULE - changed the wording of some SC_ERROR_KEYPAD_* messages
new f730572 - install ui.h
new 5791395 - Added new user interface code (not used yet)
new f046d50 - Add gcc option -fno-strict-aliasing
new 7d34d6b - Sort filenames
new 4615d5e - Add necessary automake conditionals to install-exec-local rule, as it seems to be executed even though lib_LTLIBRARIES is empty in some cases.
new 879bd50 - call sc_pkcs15init_set_p15card
new 8a5f130 - do an sc_select_file inside do_get_pin_and_verify in case we called a pkcs15 function that enumerated the AODF
new 931a1dd - added error/debug message support to ui.c - sc_error/sc_debug now use the new ui code - added language support
new 2b6516b - allow to call scripts with --soft and -d
new c57ac69 Fix: spurious error message (Chaskiel & Kevin)
new fc4cd7c 'Export' keychache.h
new 23d1ca5 Let the new UI code compile under Windows
new 28fcfde - Replace WIN32 with HAVE_UNISTD_H instead
new e62eea5 - Minor cleanups and a warning fix - sc_release_context: free ctx->preferred_language if set
new c693c47 - Merging between Makefile.am<>Makefile.mak - Add ui.h to main distribution tarball, snapshots have been broken for a few days
new 5a27b4e - Changed ui API to offer more knobs and dials
new ead350c - now uses new sc_ui_get_pin function
new c29e7d8 - don't call sc_module_get_address when we dont have a dll handle
new 60892cd - added recommendation about 2 cert/key pairs
new a9d9aa2 - When storing a p12 bag, check if the CA cert is already present and skip it if so.
new 6e9412c - When encountering the end of a SEQUENCE, while there should be more items, we used to return SC_ERROR_ASN1_END_OF_CONTENTS. That error code is reserved for the real end of content markers though. Changed the return code to SC_ERROR_ASN1_OBJECT_NOT_FOUND
new d3d7664 - Changed the internal object search machinery quite a bit so it can search for more than one type of object at the same time. - When enumerating a DF as part of the search, no longer ignore all errors. - When parsing a DF, SC_ERROR_ASN1_END_OF_CONTENTS really means we've just reached the end of data in the file, so return 0 instead
new 728a6a4 - Another broken commit message :-/ What the previous commit was all about: If we store a pkcs12 files on the card, it stores a key @45, and a CA certs @46. When storing another p12 file, we must make sure we don't grab the next free key ID (46), because the corresponding CERT ID is already taken. We must skip all IDs for which a key or cert exists.
new 7ea930a - return error if cflex_create_dummy_chvs fails
new 323240f - small fix in mcrd_finish
new ef4f132 - added SC_ERROR_DATA_OBJECT_NOT_FOUND
new c072c5e - added sc_get_data/sc_put_data
new 99e999d - added sc_get_data/sc_put_data - added openpgp card driver
new 0f32616 - added initial support for openpgp card driver
new ee68df9 - added some support for OpenPGP cards
new 78949a9 Make the PIN for the 'onepin' option look like a user PIN instead of an SO PIN
new d91ecdc - Moved sc_pkcs15_bind_synthetic to a separate file - Moved sc_pkcs15_print_card to ../tests/print.c - added dll_handle and preferred_language fields to p15card
new 16ec507 - Rewrote sc_pkcs15_bind_synthetic a little - Started work on pkcs15 emulation for OpenPGP card
new fd1272c - moved p15 print_card to tests/print.c
new cb5e179 - Moved p15 print_card function here - print preferred_language, if given - don't print pin path if there is none - print tries_left if present
new 13a1108 - initialize tries_left field to -1 when parsing AODF
new bb97c0d - Add new files
new 36f170c - OpenPGP card now supports a fake file hierarchy (basically all objects and constructed objects reprented as DFs and EFs)
new b3b3b02 - Updated, now registers key objects as well (untested)
new 839dab0 - use sc_test_print_card instead of sc_pkcs15_print_card
new 7ff9fe2 - dont print prkey path if empty
new f9eac7a - fixed put_key(SC_AC_SYMBOLIC)
new 64aaf18 - Undid some of the previous changes. We now have a pseudo file system on the openpgp card
new f5f5f7f Fix: link the simbolic PIN to the real name
new 3d0e266 - prevent problem with get/get_do ambiguity
new 8e14430 - merged apdu_masq patch from Chaskiel Grundman
new c85357b - remain backward compatible - apdu_masq patch shouldn't break existing config files that use apdu_fix
new 8f72813 - security: prevent format string attacks
new 45d81af - do not test unblocking pins
new 2e89894 - ifdef RTLD_NOW
new dfba889 Fix: allow keypair generation of keys other then the default length (Victor Tarasov)
new 43c4fe5 Fix: correctly set the labels of the public and private key during keypairgeneration (Remo Inverardi)
new 3b746f0 Add room for SW1-SW2 in case of maximum reply size (256 bytes)
new c6f9029 - Test commit
new d6bb9ed Applied changes by Stef, updated html file.
new 692aa31 fixed "version>" to "version<" in xml file (html file was already fixed by tidy, no change necessary).
new 0efe465 - snapshot build fix
new 12386d6 - When encoding a path, either encode _neither_ index/count, or both. - Added new functions sc_der_copy, sc_der_clear to handle DER blobs - Somewhat improved debug output
new ed5d128 - Read and write CDF entries with directly encoded certificates
new 519c1e8 - The changed code in asn1.c requires that the PrKDF subClassAttributes for private{RSA,DSA}Key be marked OPTIONAL (our handling of CHOICE is still somewhat limited)
new 1780e10 - Somewhat improved debugging output - sc_pkcs15_print_id changed to sprintf to a buffer rather than printing to stdout.
new 9ee5c76 - Support direct encoding of certs in the CDF - Added prototypes for sc_der_{copy,clear} - Changed sc_pkcs15_print_id to return const char *
new 1359d9e - sc_pkcs15_print_id now prints to a buffer instead of stdout - Now pretty printing Common Object Flags
new 961e116 - Support direct encoding of certificates - Allow more than one profile option (e.g. pkcs15+small+direct-cert) - While creating the basic pcks15 structure, store profile options in a special file on the card (3F002F01). All susequent operations (adding PINs etc) will use this information instead of what's given on the command line.
new 0b7b3df Support comparison of large object attributes
new c13a417 - Add scconf_list_toarray() by Jamie Honan
new ce07681 - Add new hand written replacement for the lex parser by Jamie Honan, not much tested yet.
new 3fbdc4f - Link the spy against libopensc (Patch by Mathias Brossard)
new 1648a1c - SW 6A88 (referenced data not found) is now translated to SC_ERROR_DATA_OBJECT_NOT_FOUND
new 28a5eb0 - if ctx->suppress_errors is non-zero, log suppressed error messages at least to the debug log
new a91824e - increase SC_MAX_PIN_SIZE to 256 (OpenPGP cards have 254 max)
new 624e345 - in sc_format_path, initialize path->count = -1
new 59c38ee - Append newline to error/debug messages if not supplied by caller
new 43da7aa - Improved OpenPGP handling; we're now able to sign things
new a632956 - Deal with cards that require authentication before you can extract the public key
new cf733ac - opensc-explorer.c ceased to accept verify data in hex notation, fix by Martin Buechler
new f9c572c - allow stuff such as blabla= foofaah{} to work
new 17b5985 - Fixed CRLF parsing
new 183fef3 - Replace the patched file with a new upstream version
new 0cddfba - Warning fix
new eeca8db - Replace the default lex based parser with Jamie's version. Please notify if you run into any problems with the new parser.
new 1435c8f - Back out Olaf's change, as it seems to break existing behaviour while parsing pkcs15 profile files. Although officially any list value with an equal sign or braces should be enclosured with quotation marks, but anyway.
new 30fba61 Added an error code
new a843fd1 Little fix in test_signature()
new af462ab Removed the exceptional (and incorrect) handling of the signature inputs of 16 and 20 bytes with pkcs11's CKM_RSA_PKCS11 signaturemechanism; and made sc_pkcs15_compute_signature() a bit more powerfull: if a digestinfo+hash input is given but the card only accepts hashes, the digestinfo is removed
new 22312db - set ACLs on the profile info file
new b6796d0 - fixed suppress_error handling in sc_pkcs15init_write_info
new d12b21f - Remove all references to usbtoken, use OpenCT instead
new addb6fd - Add missing .SH NAME for some man pages (Ludovic Rousseau)
new 5b1d6dd - Support raw RSA on decryption (Martin Buechler)
new 3c89fc8 - improved support for CHOICE
new a2c9afe - fixed problem with pubkey encoding/decoding
new 8ff09b7 - another fix to verify pin
new 5993b3d - fixed test for onepin option
new 8ee8d07 - Fixed an embarrassing typo from the ChangeLog URL
new c46b58f Moved the cardinfo file to the pkcs15 DF, changed it's FID to 4946, and protected it against unauthorized changes
new 61d242d - Fixed a few glaring errors. Marginally better, but not really great yet.
new e18283d - Fixed a typo
new 4b82b04 - Add check for functions vsyslog, setlocale - Add check for header locale.h
new 1258ba5 - Updated comments to reflect new apdu_masquerade parameter
new b10c4ed - Add AM_MAINTAINER_MODE
new dcce086 - Fix the "get_info failed" error; based on a patch by Ludovic Rousseau.
new 8684aff - Fixed a return value for new scconf_lex_parse
new ff9a455 - scconf_parse and scconf_parse_string now return an error message if something went wrong
new 4f30699 - Avoid breaking source compatibility, add char *errmsg to scconf_context
new 720b281 Little fix: forgotten to log an input param
new 4d68e1a Fix: allow a C_GetAttributeValue(privkey, CKA_MODULUS) after a C_GenerateKeyPair() -- M. Buechler
new a239629 Added a check for NSS-like keypair generation
new babc626 - use full OPENSC_INFO_FILEPATH when reading info file
new 85fa4ed - Matched Cyberflex patch from Martin Buechler. Created a new driver named cyberflex which shares a lot of code with the original flex driver. This is a lot cleaner than having to create if/else monsters.
new b15bd6c - Added support for Cyberflex Access 16K, based on a patch by Martin Buechler
new cfdd62b - When generating a key in pkcs15init, allow the caller to specify a public key label (Remo Inverardi)
new 0d41e05 - turned key-domain printf into sc_debug call
new cec660f - More cyberflex fixes from Martin Buechler
new ab9d7bb - removed some dead debugging code
new 4203227 - Fix for the previous commit
new 2771b0a - Probe for -lpthread before -pthread, as we did in the previous version.
new d6713af - Minor naming convention harmonisation for pc/sc and ct-api related things
new 5d0095e - Another typo fix
new 13030f5 - Minor bundle handling fixes
new d9f8c7d - error/debug -> sc_error/sc_debug
new 83a5cb1 - Ach, forget the previous commit. Just use DBG(printf()); for debugging purposes
new 6b66973 Prevent running off the end of the buffer if the asn.1 is invalid (Chaskiel G.)
new 8ed95ba - Updated previous patch
new 0996f39 - added ATR for Italian eID card
new b207474 - reduced sc_lock/unlock debug messages even more
new bca2a9f - added GPK on-board keygen (based on code by Chaskiel)
new a569ef5 - Display better pin prompts
new 4d378d1 - properly set key usage
new c2083ba - Add HAVE_UNISTD_H
new af37c4e - do not access file afterdeleting it (S Bakkal)
new 5dda541 - made apdu_masquerade functionality available to all readers, not just pcsc - added new parameters max_send_size and max_recv_size, roughly corresponding to the old max_le (SC_APDU_CHOP_SIZE) parameter. You can now set this chop limit per driver class (pcsc, openct, ctapi), which sets driver->max_{send,recv}_size. This value is copied to card->max_{send,recv}_size in sc_connect_card, and can be overridden by the card driver.
new b706b29 - Revert parts of the previous patch, use void *func instead of struct sc_reader_driver *(*func(void); as _sc_driver_entry is used for both, reader and card driver lists.
new f5aeedf - Obsolete
new 7d3fc55 - Minor build and C++ warning fixes - pkcs15init: Use u8 for pin variable declarations like libopensc does
new 5bbe78a sleep(sec) = Sleep(1000 * ms) on Windows
new ae5dcea - created new function profile->ops->init_card for card-specific initialization at the pkcs15 creation stage - Added cryptoflex init_card from Stef. This function reads the card's serial number from 3F000002 and puts it into the pkcs15 serial number
new 78febf3 - in pin_cmd, don't overwrite max_length if set by caller
new e18b711 - Warning fix
new 3dbb26a - Linking changes, don't link libpam to pam_opensc etc.
new f017da5 Fix: no copying done from in to out in case of SC_ALGORITHM_RSA_PAD_NONE padding (by Chaskiel)
new 6952fb4 Made a seperate function for the login functionality, and split test_kpgen_certwrite() into 2 parts, with a logout - unload lib - load lib - login between them
new 5db7585 - Minor bug fix in new_pin(), patch by Victor Tarasov
new 4e48b77 new manpages for cardos-info and pkcs11-tool, both written my Joe Phillips.
new 8a4a5f0 - Added support for JCOP/BlueZ cards, contributed by Chaskiel M Grundman
new 620b62e - minor fixes to the new manpages
new e03cc71 - When testing signatures, don't bail out of C_SignInit returns CKR_MECHANISM_INVALID (Chaskiel Grundman)
new beb86f3 - util.c:connect_card() now locks the card; removed sc_lock calls from calling applications (based on a bug report by Chaskiel)
new b552bcc - signature tests would fail on cards with several keys of different size (fix by Chaskiel)
new 20a7070 - Install unix.h and win32.h as well
new 292e13b Add the JCOP card code
new f761d15 - small jcop driver fix from Chaskiel
new 8a97a69 - C_CloseAllSessions would block on some Win32 versions because it tried to acquire the global pkcs11 mutex twice.
new f6aa07d - Another fix from Remo wrt keygen_args.pubkey_label
new ec52d80 - properly handle pubkey_label in key generation
new 759ed8d - pam_opensc rewrite checkpoint commit - rename some functions
new 09b2730 - implement sc_delete_record (Victor Tarasov)
new 13bf881 - in sc_pkcs15_read_file, properly destroy objects in case of error (Victor Tarasov)
new 30e04ce - Implemented keep-public-key and sc_pkcs15init_remove_object as suggested by Victor Tarasov.
new 0d78f07 - improved C_Decrypt testing
new 23aec10 Fixed some comments and added an NULL pointer test
new 9abadbc Increased the maximum number of PINs and removed some unused #defines
new f37cb0f - When zapping the contents of a DF, write the whole file (data + padding) in one go. Otherwise the GPK driver may barf if the file offset in sc_update_binary isn't word aligned.
new 7bb64d0 - fixed GPK16K key gen, as suggested by Chaskiel
new 7daafeb Update to the new keycache functions for caching the user and SO PINs
new 844ec9b If the maximum allowed number of virtual slots per card is reached, then silently discard all objects that haven't been added yet instead of returning an error
new 4f6a792 - fixed test case
new 6ef9257 - fixed placement of "function atexit" wrt shell exit trap handler
new b9b1dbf cleanup a generated file.
new 115bd35 config.h is not used in pkcs11.h or any file included by it. but pkcs11.h is a public header file, so it shouldn't do so anyway.
new f2803e1 commented out everything. now you can install those files to your etc, it will not hurt you.
new e5322b0 changes caused by new docbook stylesheet.
new 0e7fa43 big rewrite on debian/ files, originaly based on Joe Phillips debianisation, reworked by Andreas Jellinghaus, and with many changes and suggestions by Ludovic Rousseau
new 5c3fbbd - Revert previous patch
new 8603cb4 - Revert previous patch. Instead of providing a configuration file with all lines commented away, provide a sane configuration that works for most people out-of-the-box without user interaction.
new 2a26621 - There is no --with-pcsc, replace it with --with-pcsclite which supposedly works the same way as no argument at all. :)
new 6473d2d - Unify with pkcs11.h
new d98096d I had removed the wrong file while cleaning up. fixed
new 9779f07 Fix: no keycaching if USE_PKCS15_INIT is not #defined
new 85d6bc7 - Warning fixes
new d345621 Unneeded files, debhelper does everything we need automaticaly.
new 8a2d331 - Move the variable substitution of exec_prefix and sysincludedir to make-level (Lars T. Mikkelsen)
new 4d915b9 - Add versioning
new a717fca - Fixed a typo in the previous commit
new 6aa364b From: Ludovic Rousseau <ludovic.rousseau at free.fr> > You still have some unecessary files in CVS debian/ ...
new 9f8da82 several debian fixes, new version.
new a9c914a make these libraries not standalone (pkcs15init, scam, scconf, scldap).
new 2b4b085 - Revert previous patch
new 9d49aa0 - fix crash with pkcs11 module and token disconnect
new 9f6ffdb - Added a short introduction to scconf as an API and a file format (Jamie Honan)
new 7a15956 - Allow lists to end as ,;
new 8ff6c99 new debian packages: added pkcs11-spy, undid library merge.
new cbaec36 - documented max_{send,recv}_size paramaters
new 5d6af9a Added --cert-label option, usefull to specify the user cert label if you do a --store-private-key
new ec0d4db - Allocate the right amount of memory when base64 encoding for PEM
new a75058e - apdu wasn't completely initialized (Renzo Tomaselli)
new 20e2b1b memset is defined in string.h
new 393de85 - Don't crash if card->serial_number is NULL
new db7d3ba - Properly handle max-length in PIN statements; added new stored-length: PIN blah { max-length = 8; stored-length = 4; } Bug spotted by Victor Tarasov
new 28461ad - properly identify Italian eID card
new 21b43fc added cardos M4.01a atr. thanks to Laurian Gridinoc for reporting.
new 9333f53 remove CARDOS_TYPE_ETOKEN_PRO, the name does not fit. annotate atr with version number 4.0 / 4.01 / 4.01a.
new 9326f5f Allow file_app in struct sc_pkcs15_card to be NULL (may be the case for pkcs15-emulated cards)
new 345d30a Moved the sc_pkcs15emu_xxx() functions to pkcs15_syn.c
new 6460502 add "rm" alias for "delete" and "exit" alias for "quit".
new 73d0922 len is the number of character, we need to alloc len+1 for the \0 terminator. Bug found by Victor Tarasov.
new 0b8ff3c it is legal to read all bytes of the file (e.g. offset 0, len 10, fil->len 10). Bug found by Antonio Iacono.
new 37a957c cryptoflex 32k e-gate v4 also has on board key generation. thanks for reporting to Pierre JUHEN.
new 6e15c24 check parameters in strcpy_bp
new 02314bd while we don't have code to extract a key, tread extractable keys like non extractable ones.
new ac5fea0 update starcos spk 2.3 support (add create file + key gen)
new 6f1d885 ensure that init_func is not NULL (even if the config file is not correct)
new 846a148 initial pkcs15-init support for starcos spk 2.3 cards/tokens
new 564d07e bind the new starcos spk 2.3 support to the pkcs15init code
new b057f40 add support for "finalize" to pkcs15-init to activate the ACs for starcos
new 5e080b8 add support for split keys in engine_opensc.c (backported from the opensc stuff in openssh) Thanks to Neil Dunbar
new fc6b605 adds three options PIN, QUIET, VERBOSE to theengine allowing respectively to set the PIN code, reduce output, augmentoutput. First one is obvious, the 2 others need the second patch to beuseful. Patch by Mathias Brossard <mathias.brossard at idealx.com>
new cc91de4 Converts all printf(...) tofprintf(stderr, ...) and condition output on all non-error calls to the'quiet' (pre-existing) variable. Patch by Mathias Brossard <mathias.brossard at idealx.com>
new 2daf4c8 Adds message digest and DER encoding if necessary. Patch by Mathias Brossard <mathias.brossard at idealx.com>
new effbc2a remove pointer to freed secret object Patch supplied by Victor Tarasov
new 9fb7334 Open file with O_BINARY on windows.
new 9e7b7c6 Add pkcs15-starcos to windows makefile.
new b62825d fix memory leak Discovered by Victor Tarasov (thanks)
new f044157 fix incorrect use of realloc (x = realloc(x, y) doesn't free the x in case of a failure)
new 8cb6a3f "--assert-pristine" workaround for Starcos cards (see comment in the patch)
new 4b4c201 better checking for null values. found and fixed reported by Victor Tarasov <vtarasov at idealx.com>
new 338a7c4 oops. O_BINARY is for windows, not linux.
new f2bd9af use pin_cmd for sc_pkcs15_change_pin and sc_pkcs15_unblock_pin as well
new 475a29d proper checking of the SCardListReaders return values
new 02cbe02 include common object attributes in the sc_pkcs15emu_add_* api
new d5697cf add pkcs15-syn support for infocamere card
new c35e006 add pkcs15-syn support for infocamere cards
new 8147c22 call sc_select_file only if pin->path is actually set Thanks to Andrej Komelj <akomelj at email.si>
new 0ea8a53 only set the key_reference if present Thanks to Andrej Komelj <akomelj at email.si>
new 47de5b0 fix usage flag Thanks to Peter Koch <pk.opensc at naev.de>
new 3560f1a don't omit the first extension Thanks to Gregor Kroesen <kroesen at rembrandtstr.de>
new 7a88ff4 fix module name handling patch supplied by Michael Bell <michael.bell at cms.hu-berlin.de>
new 395a128 replace X509_NAME_oneline with X509_NAME_print_ex Patch supplied by Gregor Kroesen and Nils Larsch
new 209dad0 fixed a small bug (!= instead of ==) and made the code hopefully more readable.
new 4aa731e oops, forgot the select.
new 9b7cdbf cleanup debug/quiet/verbose handling. now all tools accept "-v" for verbose operation, and you can specify -v several times to get more verbose i.e. debugging output.
new 52c1b2d Very basic and untested oberthur driver. Could possibly work, as only non-essential parts stripped (or at least that was the plan).
new 856cbde fix short options as well.
new 23d92b8 Also add oberthur files to Makefile.mak. oops, sorry for forgetting. Reported by novakv and fixed by Nils Larsch.
new b467a52 One more italian eID card, this time from gemplus. reported by Antonio Iacono.
new 6281259 fix usage of asn1 flags
new b1859fc the older generation of oberthur card is not supported by the current driver. better not detect them at all.
new a9b00f0 use the padding character from the pkcs15 objects
new 504fe28 clean up access rights for updating pin/puk
new 7446d43 add (partial) pkcs15 emu support for StarCert V2.2 cards
new 446bf75 patch supplied by Victor Tarasov <vtarasov at idealx.com>
new a7e042f Add two new commands: update_binary and update_record. update_binary can be used to write arbitrary data data (entered as hex values) to transparent files and update_record can be used to do the same to record files. Patch supplied by Victor Tarasov <vtarasov at idealx.com> and Nils Larsch
new 9fb99e7 use opt_passphrase, if present, before asking the user patch supplied by Michael Bell <michael.bell at cms.hu-berlin.de>
new 8363504 add support for Telesec NetKey cards (still experimental)
new eeeebc4 small makefile improvement by Ville Skytt�
new 9fc8b43 openssl 0.9.7d and later require and support linking engines with -lcrypto. for older versions we need to link with libcrypto.a or skip the engines alltogether.
new 84f08c9 fix TCOS decipher operation
new 07ff3af Add current patch for openssh so it can ask for the pin.
new 1e371c9 a small patch to make openssh ask for a pin. and a README. this patch is a hack, not production quality, and will not be accepted by openssh. But a clean solution requires changes in openssh, and that will not be easy.
new cdee73a Fix: don't free anything in the connect() function because it can be called multiple times
new 1c51a8f Fix: if a card couldnt be read (e.g. inverted upside down), allow to retry it later when asked
new d607d51 Add missing scripts init0012 pin0001 pin0002 to distribution.
new 8f2f699 add README and ask-for-pin.diff to the distribution.
new 8ac3be8 As far as I know we did some incompatible changes since 0.8.1
new 71e5f63 fix/cleanup passphrase input Michael Bell <michael.bell at cms.hu-berlin.de> and Nils Larsch
new 82ec09e check return value
new 78d3281 fix off-by-one bug, pointed out by Michael Bell
new 268a302 Add support for Estonian ID card. Written by Martin Paljak.
new fe3914b kill two warnings about unused variables.
new f8369b0 support OpenSSL version < 0.9.7 in card-oberthur.c
new 8634515 fix compiler warning
new 960ffce int -> size_t
new 8d9ace2 experimental support for card serial numbers (at first only for starcos spk 2.3 and cardos m4)
new aeb9c47 try to get the card serialnr via sc_card_ctl (unless it has been explicitly specified by the user)
new 16fc784 try pkg-config, fall back to conventional code.
new c9dfe96 Deal with new pcsc-lite code changes.
new d651642 Add some text documentation.
new fa651f1 Add a quick start file, a simple text document.
new d2ba289 fix a typo.
new c245987 pkcs11-tool and pkcs15-crypt use libcrypto, so they need to link with it. Found by Dirk Gouders.
new 23ebb42 Typo found by Stef Hoeben.
new ef89694 Bug found by Stef Hoeben.
new c526488 There is a problem with decipher() of the oberthur card driver. Manifested when caller allocates more then needed memory for the result. Thanks to the regression tests, Viktor.
new 0464df9 fix ASN1 NULL handling and avoid malloc(0)
new d0a64b6 one more ATR for Oberthur 64K card patch supplied by Victor Tarasov <vtarasov at idealx.com>
new 395c614 fix default values for OIDs patch supplied by Victor Tarasov <vtarasov at idealx.com>
new 939d3a7 Permission checks and support for several certificates in the authorized_certificates file. Code written by Fritz Elfert.
new 3534e4e small configure improvements, documentation updates.
new 1e13a2e properly split LDFLAGS into LDADD and LDFLAGS to make parallel build work. Thanks to Ville Skytt�.
new bfd5b49 pkcs15-init etc. support for pkcs15 data objects patch supplied by Victor Tarasov <vtarasov at idealx.com>
new 8e30418 improve output for pkcs15 data objects
new 2ba6ad3 set padding flags accordingly (for the decipher operation)
new 5044b0e minor docu update thanks to Ville Skytt�
new f90f8bc fix openssl detection, patch supplied by Victor Tarasov
new 73c9fcf improved error detection
new 0062708 set ui_method if and only if it's not NULL patch supplied by Michael Bell
new bfe73f3 improve pkcs15-init + pkcs15-tool support for data objects
new e618b1f move the emv driver to the end of list
new 49b5366 add additional atr patch supplied by Martin Paljak <martin at paljak.pri.ee>
new d6c98f7 add support to force pcsc to use a certain protocol patch supplied by Martin Paljak <martin at paljak.pri.ee>
new f8c603f update starcos spk 2.3 pkcs15-init support change summary: - some bug fixes - support for global so-pins - use so-pin (if present) to protect key creation etc.
new 652759a two small fixes to let pkcs15-init work with starcos spk 2.3
new c222271 bugfix
new fa0b71a add "--raw" option patch supplied by Jari Eskelinen <jari.eskelinen at iki.fi>
new 9bdd1f6 bugfix: fix segfaults when using a pin-pad for pin verification thanks to Joachim Bauch <jojo at struktur.de>
new 3ffc201 fix tab indentation and adds the tries left field to the --list-pins output patch supplied by Martin Paljak <martin at paljak.pri.ee>
new 2df8086 fix definition of SCARD_PROTOCOL_ANY patch supplied by Ludovic Rousseau <ludovic.rousseau at free.fr>
new 5ebccf1 rename "StarCOS" -> "STARCOS SPK 2.3"
new 60eeadb add support for sc_card_ctl(*, SC_CARDCTL_GET_SERIALNR, *) for TCOS cards (and use it in the netkey support)
new 3f5dc67 print 'tries_left' only if the value is >= 0
new 31c1c53 correct tries_left entries
new 9953d0b fix some compiler warnings
new e15cc12 improved card detection + cleanup
new 61301ca Don't use 0 as input to test signature-verification
new 1249c9c fix starcos spk 2.3 "onepin" profile support
new 34e3a42 If you do pkcs15-init -C with the onepin option, you can now specify --pin and --puk instead of --so-pin and --so-puk (also allowed for backward compatibility)
new 8ff9191 forget pin if it was wrong.
new 0d4ca34 don't search the LD_LIBARY_PATH in case of a absolute path
new 5a328e3 update pkcs15 emulation stuff
new b78fbd0 u_char -> unsigned char
new 4011650 bugfix from Hubert Sokolowski <hubert.sokolowski at biatel.pl>
new d5c1436 Added RSA decryption (Robert Pragai)
new 6136006 Added info for EF data files
new 05fb0f4 initialize pointer to NULL
new 3d64764 fix int vs. size_t mismatch
new 23e7da6 update opensc.conf for the new pkcs15 emulation stuff
new fd5555b fix compiler warning
new c994105 suppress annoying (but unimportant) error message
new f318fec sc_module_* -> scdl_*
new 2c07813 fix signed vs. unsigned mismatch
new 5b4730d flags should be stored in a 'unsigned int' (at least this seems to be the convention in libopensc) => change tokenInfo flags from 'unsigned long' to 'unsigned int'
new 912ddbd fix compiler warnings
new 5985415 some cleanup: 'int' -> 'unsigned int' for flags, 'int' -> 'size_t' for length + remove some compiler warnings
new 548cf72 fix compiler warnings
new 3dacb2c implement dynamic card/reader support from Juan Antonio Martinez (with some input from me)
new d0de685 sc_module_*() -> scdl_*()
new ef8df66 sc_module_*() -> scdl_*()
new e583473 two patches from Marin Paljak <martin.paljak at gmail.com> : - remove unnecessary function from the reader ops - add a field for pinpad support - cleanup + fix indent in card-mcrd.c
new 897ca8e fix memory leak
new ace9520 fix memory leak
new ba23f82 support for dynamic pkcs15init drivers
new 17fa73f scdl.lib needed for for the link step due to the recent changes in dynamic loading
new a373383 remove obsolete module support in libopensc (scdl should now be used)
new 2b29b3b fix last commit
new 4bb760d cleanup
new 44c55ae clarify micardo situtation.
new d1da400 fix select_file in mcrd. by Martin Paljak
new 7c00545 update for the Infocamere support, supplied by Antonio Iacono
new c613908 check only for attributes which can be present
new ca939d1 bugfix from Antonio Iacono
new b0649c1 build fixes by Vile Skytt�.
new 1869b95 Add spanish manual by Jonsy (teleline) <jonsito at teleline.es>
new 5a618d8 add more *.pc files for all other libraries as well.
new 9e3827a add spanish translation.
new fe89863 bugfix from Antonio Iacono
new 0370a53 try to avoid conflicts with file ids of different file types
new 5a4fc80 Don't check if the token is initialised
new 9dc98ed try to avoid conflicts with file ids of different file types
new 2d2a6d8 add pkcs15 emulation support for the Italian postecert card
new eb619d1 bugfix
new 6ff0afc new pin handling to make opensc engine work with wpa-supplicant.
new 0d7c932 suppress error message when testing signature alg
new d2442fe make functions static, so the names don't conflict.
new e8e1fad the big openssl fix. hope everything still works.
new 711150f fix memory leak
new 895289c bugfix: don't try to get the CKA_MODULUS_BITS attribute from a private key
new 75b9f0b fix (potential) memory leak
new 56a37d6 use object specific release method (if existing)
new 5feb1f1 close files when the context is destroyed
new 71441cd fix memory leak
new f2157e9 don't close stdout/stderr
new 7a0738e local functions should be static
new 8e05d3e do a memcpy only if source and dest are different
new 57cc65e cleanup
new e7a0b8f cleanup: declare local functions as static, renamed shadowed variables etc.
new e5baf6d - Convert C++ comments into C to avoid compiler errors on some platforms
new 55e170e - Build / warning fixes
new 8f2b138 - Preparations for the next release
new a3ad3b0 - Cleanup
new bd45a8a - Update version for win32 build
new ed0d949 cleanup ...
new a430c8c - Build fixes
new 2ce41ae - Cleanups
new 6694ab8 - Big bunch of OpenSSL and some other fixes
new 786878c implement serial number support for gpk 16k cards
new e3dc91d serial number support for opensc-tool
new 8673508 fix memory leak, cleanup: use object specific release method
new efe5366 dump serial number only if we have one
new 01f549d fix public key reference
new 609fb32 fix help message (supplied by Philipp Marek)
new 3d75aee force_protocol cleanup from Martin Paljak <martin at paljak.pri.ee>
new bea5746 remove superfluous code, Martin Paljak <martin at paljak.pri.ee>
new 8446dc7 fix compiler warnings
new f0224d3 disable unused functions
new 048a7c3 char * -> const char *
new 2db63b1 signed vs. unsigned
new 92ce484 cleanup: declare structures as const
new 78b0091 more const
new 39e8ddf more const ...
new 4ddfe86 cleanup: signed vs. unsigned and some const
new 5847b64 cleanup: -index shadows a variable in /usr/include/string.h -some signed vs. unsigned issues -and some const cleanup
new 08826ac flags/types are unsigned int, the exponent shouldn't be negative and more const
new 3931ee7 cleanup ...
new 372c5c9 - Revert the previous patch, as it broke the snapshot generation and has been broken since.. July? No new automatic snapshots until some hardware issues have been solved.
new ebf6c8e fix type, found by T.Fujita <fujita at ouk.jp>
new d89c7a7 implement serial number support for cryptoflex cards
new bd02c1a add data field for subject Common{Private|Public}KeyAttributes
new b1d4e36 cleanup
new c5df70d bugfix, pointed out by David Mattes <david.mattes at boeing.com>
new 4bb21d0 check calloc return value
new a82a40e some cleanup + improved error checking
new f509f00 some cleanup + improved error checking
new 4c391a2 dump version info in the log
new fb0889a - fixed a typo, pointed out by Bernhard Froehlich <ted at convey.de>
new 5e5c61c types are unsigned int
new 2f15c03 evaluate pkcs15 pin type
new 9ac3502 remove misleading comment
new 5e552bd starcos: use iso decipher, iso7816: set le to 256 == 0x00
new d73ed35 change auth_id -> id, show pin type, update pkcs15-init manpage
new 8f4f732 in case of SC_AC_UNKNOWN it doesn't make much sense to verify something + add missing suppress_errors--
new 722e650 - Spell checks
new 82712c4 - Add dynamic loading support for win32, Bernhard Froehlich <ted at convey.de>
new 08c3cc9 Simplified the procedure to link with openssl on Windows: now you only need to slightly change Make.rules.mak instead of hacking in several Makefile.mak files
new bfee7bb of course we should not do it
new 95440fb cleanup pin handling (set and use sc_pin_cmd_pin->pad_length + use pkcs15 puk object if existing)
new 6598618 fix indent, patch supplied by Martin Paljak
new 7ed9a18 don't print key length in case of a private key (as private key doesn't have the CKA_MODULUS_BITS attribute)
new 8a0fc5b fix indent, patch supplied by Martin Paljak
new cb5d576 some indent fixes from Martin Paljak plus some additional changes from me
new 14ff6bd fix indent again
new ced7764 fix debug message + remove empty lines, patch supplied by Martin Paljak
new 485cc32 even more indent issues
new d644979 print the atr in standard opensc hex format, patch supplied by Martin Paljak
new 2e1ae46 fix memory leak: use object specific release method
new 517da66 fix memory leaks
new ea59c97 fix memory leak
new d605ba7 fix more memory leaks
new 56487f8 more indent fixes from Martin Paljak
new 02ff1ad - Add pkg.m4 for pkg-config depencies
new f66913c just issue a warning in case of a missing attribute, patch supplied by Philipp Marek (with some changes from me)
new 3158fa3 merge Martin Paljak's ccid pinpad changes from the OPENSC_0_9 branch to the cvs head
new 69cd0db make it configurable whether or not allow logging of sensitive apdu command data at all (to please the Belgian EID guys ;-)
new b726ff6 add two more options: one for Martin's pinpad stuff and one for enable/disable logging of sensitive apdu data
new 8182177 - Early ccid pinpad cleanups, more to follow
new d4f2e23 - Cleanup
new 32e5d3f fix lock/unlock mismatch
new 5a5c6d1 - Add use_ccid_pin_cmd boolean to opensc.conf, for now.
new 622607a - Build fix
new 90e967d Fix: stop parsing at the end of the file, not when finding padding bytes
new d67a4ea fix last commit
new 7ea47a2 Windows fix: SCARD_CTL_CODE is already #defined in a Windows header
new b8d92a3 Added pinpad-ccid.obj
new 14d1f7f yet another fix
new ef6e581 - Require automake 1.5 or later
new 41dced3 Update
new 986724c - Build fix
new 16b1b6e - Add experimental multi-slot support for CT-API and CT-BCS 1.0 enhancements. (Bernhard Froehlich <ted at convey.de>) - Enable CT-API for win32
new 5459ba2 - Show package version when configure is finished
new c8d8921 src/libopensc/card-belpic.c
new a6ba20a Added belpic card driver
new efe1a36 - Cleanups
new 5e0453f - Indent source
new b59fb45 Have the option add a delay before resending an APDU (after a 6CXX response). Is needed for most current belpic cards on fast readers
new 8857ff5 Work-around for cards that don't return FCI info
new 4179fbe Work-around for the lack of FCI info, so the card can be used with opensc-explorer
new c95726c bugfix: reselect application directory when lock_login=false is set (at the moment only for pkcs15_prkey_sign and pkcs15_prkey_decrypt), see: http://www.opensc.org/pipermail/opensc-devel/2005-January/005345.html
new 6e05b6b add debugging output
new bd356f6 fix indent
new c1b0626 - Cleanup, typo fix
new 5c2f9f7 first part of a pkcs15 emulation driver cleanup/rework: use new api the create pkcs15 objects (note: the part enclosed in '#ifndef OPENSC_NO_DEPRECATED' statement will be removed in someday). At first only for pkcs15-esteid.c and pkcs15-starcert.c but the others will follow soon (including some documentation)
new a0aa5dd make win compilers happy (include config.h)
new 54f8794 indent fixes and cleanup by Martin Paljak
new f9645fa use strncpy instead of snprintf + update of pkcs15-netkey.c
new 42d3d50 - Add internal.h, that's where the config.h and other general stuff comes from.
new 10e9bd4 - Cleanup ATR dumping code
new cbe2904 - Introduce _sc_match_atr_hex / struct sc_atr_table_hex.
new 26f9fa0 - Revert previous patch, it's unnecessary after recent changes
new 1d9bb86 - Indent cleanups
new 0b43659 fix some compiler warnings
new bd0f86f - Unify all card drivers ATR matching code to use _sc_match_atr_hex, untested as of yet.
new f2cf81b cleanup
new e0c1b6e remove unreachable code, make some functions static and fix parameter type
new 235abe1 declare some functions static plus some type fixes
new 7d6b393 cleanup
new 026f7ae even more cleanup
new dea81df - Warning fix, build fix
new d1dd355 - Cleanup
new 99fc1f6 - Give up, just use CoreFoundation framework instead of -lobjc
new 176323a - Warning fix
new c30494a declare some functions static + some type fixes
new 69d2e90 - Optimize a few cpu cycles from _sc_match_atr_hex - Replace struct sc_atr_table / _sc_match_atr with recently introduced _hex variants - Rewrote _add_atr - Introduce int type variable to sc_card_t, so that every other card driver won't have to glue around with this - Card driver cleanups, optimize the number of sc_match_atr called per card driver. Also always try direct match with _sc_match_atr first, before relying on eg. historical bytes information [...]
new bd0cb30 - Ahm, fixed a typo in the previous commit
new 8a9646c as every card structure has an own copy of the card ops struc, allocating a new one shouldn't be necessary
new edbfa95 const fixes etc.
new bc2b038 fix type flag
new 4692b2c update, note: this totally untested
new 8f7a8bd no need to include internal.h and asn1.h
new 14cbf7c fix usage of sc_pkcs15_pin_info_t::max_length etc.
new 71b29ca remove outdated comment
new 0b773d6 - Cleanup
new 8648256 - Fixed typos
new 10569f1 workaround for broken cashmouse driver
new a854de4 - Warning fix
new e679eb1 remove unused define
new cdd2403 remove unused profile entry
new ece96af - Add atrmask to sc_atr_table
new 91fb274 - Checkpoint commit, add support for the next generation FinEID cards with ISO/IEC 7816-15 layout.
new bb7e663 - Add comments
new 42ecafa - Cleanup
new 3d9b324 - _sc_match_atr: add support for atrmask field in sc_atr_table
new 8d24aa7 - Fix for the previous commit
new 73aa989 - Unify a bit the output of commands like opensc-tool -D
new e914216 - Cleanup
new 539232f - Cleanup
new 0eb3906 - Remove outdated comment, part of the information wasn't even correct.
new 1e3623f - Add cards.h
new 956430e - Remove card-oberthur.h
new 32b417c - First stab towards standardized card types
new 6c6e47a - Add cards.h
new 91d16e0 - Change sc_atr_table->id to type, so the name is synced between sc_atr_table and sc_card structures.
new b5528b5 - Add ATR for a CryptoFlex card from Mario Strasser, that I forgot to add over six months ago.
new b4a91b5 - Remove entries from TODO list (Martin Paljak)
new 4373272 - Add cards.h
new 86974c8 - A patch for belpic and other global platform pin cards (Martin Paljak)
new 4dae83f - A fix for ISO 7816-15 cards I'm playing with. No feedback received about the patch, let's move on. The patch shouldn't affect any current behaviour.
new df12bfb - make use of AC_HELP_STRING in configure.in (Martin Paljak)
new df5e357 - Whitespace cleanup from me and Martin Paljak
new bd76230 - Merge between opensc / openct
new 9f4029b - Update the atr example output
new 36c507e - Fix a pin issue with pinpad readers (Bernhard Froehlich, Martin Paljak) - UI_add_input_string enhancements (Martin Paljak) - printf cleanups
new f2663f5 - Fixed a typo (Bernhard Froehlich)
new 1158914 Typo fix
new fcc93f0 - Correct some information for Italian eid cards, I suppose.
new 7268799 - Fix a long-standing issue for user configured atrs in the configuration file; free allocated memory from the card_driver structures.
new 377afe0 - Typo
new 118c1f9 test label
new b80890d - Increase SC_MAX_READER_DRIVERS / SC_MAX_CARD_DRIVERS - Some cleanups before future commits
new 8a8f2cd - Introduce a new powerful card_atr mechanism to opensc configuration file to handle any configuring related to certain card / cards using atrmask. - Rewrite Martin's force_protocol to _sc_check_forced_protocol() to make it possible to share the code with other reader driver implementations than pcsc. - Implement _sc_match_atr_block() to help out with force protocol and pkcs15 emulation layers, to find information that's not stored directly to sc_atr_table.
new 9d80614 bugfix
new 2644227 Initial checkin of new docs
new 5beab31 - Case cleanup
new 359e039 - Preliminary update for the next release
new 033a058 - For completeness sake, add SC_CARD_FLAG_VENDOR_MASK
new e53ab92 - Don't loop forever
new 200697f Added application functions from dir.c Added app list to sc_card_t docs
new 3a118fb - Some fine-tuning to get previous, current and future FinEID cards working.
new 1febdee If the PKCS#11 token can itself authenticate the user, we let it do it and ask nothing. First because many applications that might link to the openssl library would never-ever implement it and anyway it is the task of the pkcs11 module to take care of the authentication however the module/token feels feasible.
new 6f1f3f6 Validation fixes
new d8eff12 Docbook validation fixes
new 5a12e5f Added sc_app_info_t, sc_asn1_entry and sc_strerror()
new a1d4fe3 'pinpad-enable' pkcs15-crypt: if it's a pinpad and you press enter when being asked for a PIN, you can enter the PIN on the reader
new 5499fcb Typo fix (thx Andreas, sorry Juha
new 7aef081 * openpgp card, not opengpg * add atr_len field to sc_card_t
new dca5f97 New doc build system
new d01442c cvsignore
new 1c59e53 header file cleanup + manual title
new 9283453 header file cleanup
new 2cf4572 Added manual title
new ca8e74e Added sc_wait_for_event()
new ba8e159 Moved sc_wait_for_event() to card ops
new 923b4b5 fix typo's
new d8729db clean up headers + add manual title
new 1208720 cleanup headers + add manual title
new 07a9f51 removed sc_wait_for_event()
new 3c5fc23 Add proper XML header
new 5163787 Add proper XML header
new 792ed02 Work around simplelist bug
new 11526e3 Add XML header + manual title
new e336488 Correctly check for reading out of file bounds, thx to Sirio Capizi
new 8baf433 eidenv - small utility for Estonian ID card *nix only)
new a702bdb Removed openscd from automake/distribution as it should be dead code.
new 49f622e - Disable openscd
new 47721be - Minor fixes, convert crlf -> lf
new cae3929 - eidenv cleanup
new 1463b32 consistent naming and trimmed lines
new 6ca6681 whitespace cleanups
new 8c9895c - Add support for getting location of the configuration file from Windows registry (HKCU/HKLM) - Handle OPENSC_CONF environment variable on unix - Add configuration option "profile_dir" to bypass build time setting for pkcs15 initialization profiles directory
new 2d97002 API fixup: use defined type instead of struct for exposed structs
new eb4717e API fixup: use defined type instead of struct for exposed structs (part 2)
new a1ffc6b Space cleanups
new 3eec019 copypaste ****s. Introduce a common internal function that removes several copypastes
new b6f9aa5 A single flag for all pkcs15 layer applications to detect a) if pinpad is present b) and if we should make use of it. Also remove the CCID specific option for pinpad detection - if detected, the flag will anyway always be set as it reflects the capabilities of the actual reader. Also, the detection mechanism is changed to be crossplatform.
new c6c6769 Minor additions
new 295fe61 Introduce TeleTrust Class 2 spec compliant pinpad functionality and incorporate the pinpad functions directly to reader-pcsc.c. Mainly because the code requires access to internal pcsc-only structures and splitting some definitions to an extra header would not be very nice. Also, the API is pcsc based and usable with other ifdhandlers too, not just CCID.
new 95225b7 common pin validity check, supprot (still disabled) for pinpads in modify and unblock
new 2cd6d42 fix free argument, pointed out by Giuseppe Sacco <giuseppe at eppesuigoccas.homedns.org>
new 6c92db8 remove debian/ as it is obsolete and was not maintained at all. this was eric can commit the current debian/ used by the official debian packages.
new 8d27151 remove .cvsignore files.
new 035fa1e import news from 0.9 branch / releases.
new b695871 library was changed in an incompatible way since 0.8, so we need to go from 0 to 1.
new 7133146 put new version in pkcs11-global.c, too.
new 769792e fix egate token with cryptoflex on windows.
new 54ac27b remove winreg.h as global include (not needed in 99.9% of all files), remove obsolete config file / profile dir definitions.
new 52d3262 apply improved profile handling code.
new cda5dcd generate config file code with the configure'd profile dir in opensc.conf.
new 89b4f23 fill in profile_dir in config file.
new 42a06f2 use tab, not spaces.
new f5b2845 silence a few warnings.
new 1139181 * fix an return code from ctbcs spec * make sure pins and puk are correctly associated in esteid emu
new 72f20a7 Parentheses too..
new 8b94043 Removed pinpad-ccid
new 9029170 No unistd.h on Windows
new 6102459 Allow an empty path in iso7816_delete_file(), to indicate that the current DF should be deleted.
new e992e1d Prevent doubles in the ACL entries
new 9221f1b Added opensc-to-pks11 error mapping
new de62a53 Moved init-card() till after the pin-initialisation, this allows init-card() to do operation with a pin without doing the pin stuff again. Shouldn't break anything -- if it does, we'll undo this.
new 9e7ca27 Add solaris/ subdir and files to make using opensc on solaris easier.
new f2526df fix for solaris; patch supplied by Douglas E. Engert <deengert at anl.gov>
new d67389d bools are int; pointed out by William Wanders <william at wanders.org>
new a6f8354 Added another life cycle state
new abf3bf9 If the SC_CARD_CAP_USE_FCI_AC flag is set, sc_pkcs15init_authenticate() will check the file's ACs on the card instead of relying on the ones in the profile file
new 3439f9c Added initial support for SetCOS 4.4 cards
new ac4dfc0 cleanup
new 80f3d42 update trunk: include solaris/* files in tar file, update NEWS with 0.9.6 changes, add profile_dir to solaris/openscc.conf-dist
new 1b95a90 files were renamed - adjust QUICKSTART file.
new 489518b Small fixes in the teletrust spec support code and related NEWS item
new af8bf9d add support cert loading, patch supplied by Douglas E. Engert <deengert at anl.gov>
new ab52f80 fix compiler warnings
new ce140b6 disabled auth key/pin as the IDs are wrong
new 66da039 remove broken code, add skeleton for a new function
new 99190b4 make it work again (at least for me)
new e175537 set the version to "WIP" (work in progress) for the snapshot script.
new 0838631 scrandom interface is not used by starcos
new bf089a8 cleanup
new 315b961 add support for gpk16k gemsafe cards, Douglas E. Engert et al
new 34e7133 added yet another atr to card-flex, supplied by: Giuseppe Raspanti <graspanti at crytron.com>
new 88cea8e add yet another atr to card-etoken.c
new 730dcb6 check for zlib
new 20059c9 add support for yet another infocamere card, submitted by Sirio Capizzi <graaf at virgilio.it>
new 9ad11a6 fix problem with unsigned int; pointe out by Douglas E. Engert <deengert at anl.gov>
new d9e2a44 try file id if selection via df name doesn't work; Douglas E. Engert <deengert at anl.gov>
new 45879d3 add callback_data parameter to get_pin; supplied by Douglas E. Engert <deengert at anl.gov>
new d953492 bugfix; supplied by Marc Bevand <marc.bevand at smartjog.com>
new 0372069 changes from Antonino Iacono
new 1d8357e Ludovic Rousseau: rxvt can also do color so here is a patch.
new 9d4be8f changes from Antonino Iacono
new 32fd6e0 Oops, didn't update news file yesterday before the release. So at least document it now.
new 577ccf1 create a key that does signing and decryption.
new 0f3cfb0 free pin when ending a pkcs11 session; patch supplied by Douglas E. Engert <deengert at anl.gov>
new d19e2fb Typo fix -- causes compile error on MS VS
new 77af320 Removed unnessary #includes from previous path
new 38b9c7e atr table reallocation fix by William Wanders
new 5b90384 Removed double line -- thx Nils
new 246a31b Announce the capabilities of the terminal 'press enter for pinpad'-enable the pintest utility
new 14e0340 Have pkcs15init as a DLL instead of as a static lib file
new f6712b8 Fixed handling of pkcs15 types and added support for storing pkcs15 data objects
new 08d94ba Fix: re-link the SO-PIN to the pkcs15 DF, otherwise the AC's in sc_pkcs15init_add_app() are ignored resulting in a.o. an unprotected pkcs15 DF
new 8631af2 add initialization support for token/pin; supplied by Marc Bevand <marc.bevand at smartjog.com>
new e78d245 add support for Actalis card; patch supplied by Andrea Frigido
new ad86ded If an object is added to a pkcs15_card, don't call sc_pkcs15_free_object() on it
new 9a7146c add certs only when we have zlib support
new 4a8c465 Better choices for the sizes/FIDs + typo fix
new fa33354 Don't used cashed PINs for a UserConsent key!
new f162536 update from Peter Koch
new a248911 cleanup, patch supplied by Marc Bevand
new 0d5d3eb enhance object writting support, patch supplied by Marc Bevand <bevand_m at epita.fr>
new ca0416a microsoft's vs 6.0 doesn't like initialization during declaration. let's use memset instead
new fdb5238 Add support for pinpad PIN verification.
new 030d58d It is plain wrong to call again pcsc layer locking methods as card.c:sc_lock() already does it when somebody goes to the card the very first time and thus begins a transaction. iso7816.c methods should lock the card in iso7816_pin_cmd() on card level if anything.
new a6db025 add netkey-tool from Peter Koch
new 4568015 move libraries from lib/pkcs11 to lib/, rename the engine dir to engine, and make it "openssl" so openssl can load the engines automaticaly.
new f5b1018 add options for displaying openssh keys.
new a4aecd7 update to current version of pkg.m4 from pkg-config.
new 0265f42 "smart card" not smartcard or SmartCards.
new bf6808e "smart card" not "smartcard" or "SmartCard".
new b0e6b11 make it compile without openssl.
new aee678b small makefile fix.
new e725239 Fix: if a card is inserted, the SC_SLOT_CARD_CHANGED flag must be set
new 9964148 add comment about usb crypto tokens.
new 57ca997 Windows: no _uu32 in MS VS
new 3eb0a0a Log in hex format of course...
new 93707f4 remove broken file.
new 1d58adf add working file.
new 505d2a5 No asm/types.h on MacOSX either
new 5f2a3a5 Adjust function name to reflect documented functionality
new 3d0f17b Annoying typo
new 8e0d600 openscd code hasn't been used by anyone in years.
new 336c856 rediffed against openssh 4.1p1
new e5ee45a Use uint32_t on Mac
new d3ab255 use uint32_t, it is a c++ stdtype and should work on all plattforms.
new 2c123d5 oops, missed a #endif.
new 2819d87 Make the names fit in pkcs11 limits
new 3bbc9db GIVE RANDOM is for sm, so remove it from the etoken key generation code
new dc1a5b6 remove unused variable
new cbb32e0 add initial support for atrust acos cards; patch supplied by Franz Brandl <f.brandl at a-trust.at>
new b521725 remove duplicate entry
new 052575e remove unnecessary include
new de60c98 Macro cleanup, patch received some time ago but appearently not committed
new 4b574b7 SetCOS 4.4.1 supports keypair generation, keysizes of 512, 768 and 1024 are fine
new c9f652d Typo fix
new 2c856aa Increased sizes in rsakey_info struct
new 2585106 Print an error if sc_pkcs15init_bind() fails
new df232cf Don't ignore the profile_option -- remark from Victor Tarasov
new 2731db8 No uint32_t type in MS VS
new 467b0e6 Oops, shouldn't have changed the serial number size in x509cert_info to 256
new 9c011b0 fix check of the return value in C_GetAttributeValue; supplied by Marc Bevand <bevand_m at epita.fr>
new 65eec98 enhance attribute support; patch supplied by supplied by Marc Bevand <bevand_m at epita.fr>
new 4818083 move p11_* into a new library.
new 2445a52 do not install libpkcs11 as shared library.
new 7427606 add Makefiles for libp11
new 9f308a1 move and rename pkcs11-internal.h to libp11.h
new 30b9957 enable libp11.pc pkg-config file.
new b3b3e76 use new name in include syntax.
new 085c3ce use new libp11.h header from libp11.
new 5ffcd1f fix compiling and distribution package.
new d0259f0 remove reference to no longer existing file pkcs11-internal.h
new eddd1e3 fix file descriptor byte and ef_structure type; patch supplied by richard.musil at bigfoot.com
new b9cf818 in case of T0 the Le value is omitted for case 4 APDUs; patch supplied by richard.musil at bigfoot.com
new d88f377 interpret rec_nr == 0 as a request to create a new record, fix for bug report #21
new 217c4fc Increased the ID length
new cbada7c install header file, fix linking.
new 2368582 split libp11.h in an internal and a public part. add p11_ops.c and other code by kevin stefanik.
new 5038b57 add new internal header file.
new dc27ebf commit latest code, improve include file split, first steps towards eleminating libpkcs11.
new 124b046 first step to eleminate libpkcs11.
new 19419bb make the sign/encrypt/decrypt opterations public.
new 16a89ae Unload twice causes segfault.
new f21115d cert to key is even more interesting than key to cert.
new be65c38 Cast correctly
new 7939f0b If we want to test signing, first see if the key can do this
new 85ab01a fail() returned NULL, windows need return 0;
new 1b8ddaf move man pages to man/ directory.
new ed08122 move docs/ to do/. mark it "old" (plan is to use the wiki).
new 49a3563 Add wiki snapshot.
new ab19a6c additionl cleanup from doc / docs merge. New include api documentation (xml files at least). Not yet installed.
new 8416948 add Makefile for man/ directory.
new 7de8272 pam module obsoleted by pam_pkcs11 and pam_p11.
new 3449847 remove pam/ldap/sia specific code from configure.in
new 944904f remove scrandom code. We will implement proper code to get random data from the card itself.
new e428f7e remove random/prng related code from configure.in
new dd08853 remove code dealing with random numbers for now.
new 0495aef remove ldap/random related makefile commands.
new 4c9cb46 remove scldap.conf, and pkg-config files for libscldap and libscam.
new 86888a0 fix two small makefile gliches.
new 69c25e3 oops, ldap/scam is no more.
new 27ef63f fix scconf linking.
new f7bbc8e add functions to access smart card as random number generator.
new 817e26a starcos has a GET CHALLENGE command ... useless flag
new ada4504 open a session if there is none.
new 205d23f No strncasecmp() on Windows
new 9ac748f Install libp11.h + small fixes
new 3ba3552 No strncasecmp() on Windows
new b9a7cd4 Changes in .obj and .lib files now we have the new libp11
new 4377e77 Get include files also from include\opensc, this is a temporary fix so the compiler finds the rsaref/ dir when reaching '#include <rsaref/pkcs11.h>' in libp11-int.h
new e3b11a0 Don't build libp11 if we don't have OpenSSL support
new a1e2ac5 Added #ifdef HAVE_OPENSSL for read_ssh_key()
new e09bdac don't use software prng
new a126136 only copy resp if the operation was successful
new 65ab52d add new atr.
new 70d50ab #ifndef strncasecmp doesn't work because strncasecmp is no macro (thx Nils)
new b99c52c free error strings on when destroying context
new 66b080f sorry, not compatible :(
new 9894a10 Initial import.
new a355f9c added docbook XML source for tools manpages
new ee352f2 oops, how did I create that...
new c2751a6 fix use of x509v3 key usage extension value
new e164858 fix memory leak; patch supplied by Imanishi Masayuki <Masayuki.Imanishi at jp.sony.com>
new c26dde1 fix compiling without openssl.
new f59a513 apply Stef's patch which puts all public objects in first slot if only one pin is present (and hide_empty_tokens is true)
new a5dca97 Fixed a warning (comparison between signed and unsigned).
new f5b5867 Now compiles on Win32
new 90de623 Add eidenv.exe tool
new 90003b3 Added support for the Belgian EID card (shows the contents of the ID and Address files)
new 0a8401a check malloc return value
new 080887c Typo fix
new 94d8999 cleanup
new d0f2674 Added function sc_compare_oid()
new 37cd955 Allow to seach a data object by it's application OID
new 41889b2 Export function parse_x509_cert()
new d443d37 More typo fixes, from JP Zikora
new 4dd3c3f cleanup
new eab657f change sc_bin_to_hex separator parameter from char to int as character constants are integers in c
new b12711e Reverse the export of function parse_x509_cert()
new 23802d8 properly initialize sc_asn1_entry elements + some cleanup
new ed3ba02 improve generalizedTime support + more cleanup
new b399239 more cleanup
new 44384ec - Initial support for TokenUpdate;;lastUpdate field. Change pkcs15 caching code to use the card serial number and lastUpdate field (if present) to specify the cache file. - consistently use unsigned data types to specify object types - make sc_pkcs15emu_get_df a local function (it's not used outside pkcs15-syn.c and honestly I see no reason to export it). - start of a new ChangeLog file (with some intial entries)
new 69ffd49 the apdu error codes are unsigned => change sc_check_sw and the card ops check_sw
new 148b790 Add support for the lastUpdate field to pkcs15init. Add flag to indicate whether some data has been changed to the profile structure and set the flag in the functions which change the card contents.
new 45a9d05 cleanup, mostly signed/unsigned issues
new 2b6a2cb One of the memset()s appears to write too much zeros on some systems -> put all the data in a struct and memset() this instead of each field separately. Thx to JP Szikora for notifying.
new a3ae7da oberthur updates from Tarasov Viktor <vtarasov at idealx.com>
new d1311aa pkcs11_strdup(): use "return NULL;" instead of just "NULL;"
new 9ea0db1 PKCS11_login(), PKCS11_init_token(), PKCS11_init_pin(): use "const char *" instead of "char *" for pin arguments
new 3da0e1b allow up to 64 byte long pins
new 86ad1a7 check for stdint.h and remove checks for pam stuff
new 6dc3304 include sys/types.h if stdint.h doesn't exist + fix typo
new 39373c1 initialize the oid object, patch supplied by Tarasov Viktor <vtarasov at idealx.com>
new 25950cb use inttypes.h instead of stdint.h; disable read_ssh_key when no uint32_t is available
new f8d6634 set obj to NULL to avoid double free in case of an error
new 4d48735 initialize sc_pkcs15init_operations at compile time
new a20f0d5 two small fixes from Tarasov Viktor <vtarasov at idealx.com>
new fc3048f Remove the (stupid) use_pinpad option from pkcs15 structures
new 0f0f281 * Remove PAM_README as it is not valid any more * Remove dead files from Solaris package script
new 99c3efb Add a check for reader.h
new 59e1f37 * Clean up some whitespace * class2->part10 * Make pinpad detection a configurable option
new 5adbeff fix typo
new d6e5fac make old compilers happy
new 305b68f summary: - do not use key enumeration as a test of login status, as this will not work for all PKCS#11 libraries
new decb929 add PKCS11_change_pin() function
new 9a49854 use ERR_LIB_USER instead of 42
new b143ac5 add support for signature generation with a decryption key; patch supplied by Peter Koch <pk_opensc at web.de>
new df86e3f PKCS11_CTX_unload(): do not call ERR_free_strings() and ERR_remove_state() since OpenSSL strings may be used by the application and we can't know
new 25d3148 use _LIB11_H instead of _LIB11_INT_H
new f43d524 The lengths of the ASN.1 entries are used outside the if blocks -> declare them outside the blocks
new 6c20b6a Undo-ing accidential commit of card-belpic.c and pkcs15-sec.c
new edb11bd Fix: object type contains not only the class
new 7ff54c7 use calloc instead of malloc + memset
new f317e29 sc_file_dup(): copy attributes as well, use explicit assignement and check return values
new f855074 check result of sc_file_dup + some cleanup
new 08b415a use non-repudiation flag only for the signature key
new 2fb54dd use compile time initialization for the iso_ops structure
new 924a118 Don't cache pins that protect a userconsent slot.
new 7ffd68a Make the pcsc pinpad option work.
new 0d7b025 add missing variable
new b9efe84 add support for serial number in card-oberthur.c; supplied by Tarasov Viktor <vtarasov at idealx.com>
new b5e2a2a Added support for deleting pkcs15 objects, each card driver should implement its delete_object() operation in order to support it
new 8ba443d fix parameter type
new 26108b0 Added support for deleting pkcs15 objects (if the pkcs15init card driver for that card supports it)
new a28aa1f avoid warning
new 1d05f32 mark card/profile as dirty when an object has been deleted
new 858ea38 Add support for SetCOS 4.4.1 card. Add support for deleting pkcs15 objects.
new 8e3dee0 Added set_userpin_ref() to link a PIN value to a PIN ref for an existing user PIN
new 260723d cleanup
new eec0e22 de-/encode printable strings as well
new bd76165 Have the option not to update the ODF (the lastUpdate field), this is usefull for cards that don't have an ODF that is un-writable or too small
new 850cea4 move PKCS11_open_session() from libp11-int.h to libp11.h
new 9cbac71 decode preferredLanguage field if present
new 3b6a900 add missing include, removed unused variable and initialize variable
new ed9e925 Improved ACs
new 89dacc6 fix compiler warning
new bb2506c Return the real pinref
new bae2b51 Fix in new_file(): if there's already a key with such ID, take next one
new 96519c6 stop building libp11 and the ssl engines.
new 891ed0f Added Netscape/Mozilla specific types etc.
new d8639b1 The lastUpdate field is in the EF(TokenInfo), not in the ODF (thx Nils)
new 9c12242 big documentation update. remove html from svn.
new 7770e89 remove trac.css from svn. add script to generate documentation (old one).
new ff62b88 big configure update. use pkg-config for openct, openssl, pcsc. do not compilke libp11. do not compile sslengines. remove scdl. use libltdl instead. use libassuan.m4 macro for m4 detection.
new bde5582 proper documentation cleanup.
new 25cb1a3 fix compiling with openssl installed in a non-standard location.
new f1dc04f dist-hook: is too late, need to generate the documentation before automake "make dist" copied files around.
new 9ad77a8 "doc" does not work well, it is the subdirectory name.
new ff14d0d one more change to "make dist" style documentation generation.
new 9ca1bc2 remove unused internal function
new 61f894a yet another atr + cleanup
new c835668 make export-wiki.sh executable
new d744a6e Include reader.h if found.
new ffb7928 we need lt_dlinit()
new 0d2e17b add additional m4 macro packages used by opensc.
new 047cb62 add macro packages used by opensc.
new 5b9ac59 fix openct detection. fix assuan detection. improve libltdl detection code.
new a59faf3 fix compiling with ltdl.
new cdc553b man page fixes from the debian diff.
new 08a640c users of libpcs11.c also need @LIBLTDL@ libraries.
new 13a3e69 adjust key usage bits
new f6c9579 let src/libopensc/ compile with -Wall -W -Wno-unused-parameter -Werror
new cfc64a4 let src/libopensc/ compile with -Wall -W -Wno-unused-parameter -Werror
new 559e51e fix openssl configure message
new f9db170 we need libltdl
new d37315e cleanup key usage handling, cleanup
new 9f26a4a fix warning
new 7a2fec9 remove dependence on libopensc, instead use scconf directly. Note: this code is still experimental !
new 8596348 * Get rid of reset card error that comes from pcsc only and deal with reset situations with SCardReconnect * Add some options to control pcsc behavior.
new 596bbcd proper use of CFLAGS push/pop. fix overwriting CFLAGS.
new d00aaaa aclocal -I aclocal/ (as suggested by Ralf Wildenhues)
new 6c4e5c1 fix AC_MSG_ERROR usage. thanks to Ralf Wildenhues.
new ce14d27 AC_SUBSTed variables are better used with $(..). Thanks to Ralf Wildenhues.
new c9e80e9 we use libtool for linking, so it can calucalte the dependencies using LTLIBLTDL better. Thanks to Ralf Wildenhues.
new 418e87f select file even if no acl for writting is set; patch supplied by Tarasov Viktor <vtarasov at idealx.com>
new 6dcb5fb RIP, scam
new 6035a9c No ENGINE_MSG in configure.in
new 1a3968b oops, ugly bug in configure script. set those variables, if the user did *NOT* supply any of them himself.
new 138a1d7 add autoconf voodoo to circumvent the caching.
new 21e3b71 use ltdl not scdl.
new 02cc450 update tcos pkcs15 emulation drivers; patch supplied by Peter Koch <pk_opensc at web.de>
new 68a4936 pkcs15-netkey.c -> pkcs15-tcos.c
new 917749d AUTHORS: now in the wiki. README: now in the wiki. people will find the "doc/" directory, I'm sure. remove ANNONCE, as it is always outdated.
new e242d34 "NEWS" is the file for manual editing, and doc/ChangeLog will be auto generated from the svn repository / log.
new fd115bb set assuan status for the summary at the end.
new fd86e44 Typo fix
new d0f1b08 fix function pointers
new 5117908 more pointer madness to make the compiler happy
new ba179c1 remove superfluous comma
new b137131 tcos not netkey
new 8edccc6 add gemsafe as well
new 94d0b7c move old manpages to old/.
new 84c7df3 don't touch pkcs15-profile.5.in.
new 74dbb38 remove one unneeded sublevel.
new 173d8a1 remove doc/src, add replacement script to render these files.
new 05c2f9e simplified make.
new df30dd0 rename *.xml.in to *.xml.
new 3aa186e remove man files on "make maintainer-clean".
new 87c3d44 remove html files on "make maintainer-clean".
new a358f65 more makefile fixes for man page stuff. add ChangeLog generation using svn2cl.
new 59cae41 fix compiler warnings
new f4dd1dc disable network connections by xsltproc.
new 595e143 Added setcos.profile (thx JP Szikora)
new 426eafd generate and ship ChangeLog and HTML.
new 4f2ac87 fix ChangeLog generation.
new fdaf2c8 use -nv instead of --non-verbose since wget 1.10 now uses --no-verbose instead. Grr!
new ca3be84 Fix warning on Windows compiler
new e15c54e Win32: we now need the external libtool package
new 00be34c Added certificate update functionality
new aec4a81 add pkcs15 emulation support for a cardos based id card issued by tc trustcenter
new 5123be2 add two new functions sc_reader_t *sc_ctx_get_reader(sc_context_t *ctx, unsigned int i); unsigned int sc_ctx_get_reader_count(sc_context_t *ctx); to access the reader_count and the sc_reader objects (to avoid accessing the sc_context members directly). Use these functions in src/pkcs11 + error checking to avoid accessing invalid sc_reader objects.
new 55418c5 log dlerror message when dlopen failed
new d00d795 fix warning
new 142d183 don't use static buffer in iso7816_build_pin_apdu
new f609965 remove useless memset
new 47d2baf use calloc instead of malloc + memset
new 6abeaf1 add a new function void sc_mem_clear(void *ptr, size_t len); to clear a memory buffer. If OpenSSL is used this function is a wrapper for OPENSSL_cleanse, otherwise memset is currenlty used.
new 881c80d pkcs11-spy no longer uses a config file.
new 6c1d35e make openct readers configureable.
new 92789b9 undo change 2397 as it breaks openct and you can use apd_masquerade = case4as3 instead.
new 81b47ab use_color(): add "rxvt-unicode" to the list of terminals supporting colors
new 052a493 remove unused variable
new 49ff7ff adding libtool.m4 was a bad idea and causes problems. undo.
new 75d8f04 fix TPDU if T0 is used
new c9147cf don't know what it was for but it's not needed now.
new 73294da It actually helps to have make clean on windows too
new 3c47bb0 Fix makefiles
new fe64862 Added Peter Koch's netkey-tool manpage
new d05e28d do not install bundles on mac os X. no reason to.
new 7d5d0ec scconf no longer needed for pkcs#11 spy.
new 8ca0cd1 Also remove the bundle stuff from configure
new d9bd913 No SC_AC_OP_DELETE for EFs
new 1d251cf Document cryptoki header files.
new 7d2ebb1 scdl is replaced by ltdl, libp11 and sslengines are not standalone.
new 090329c add init perso guide by Nils.
new 6b72db9 list all current macro packages.
new 0715996 proper reference to src dir.
new 7bf15d3 replace gpl'ed and old version with new lgpl'ed version from glibc.
new 06e1239 new tcos atr provided by Gerald Richter.
new 4be1f40 add option to specify the key length
new 10fa4a6 Fix: deleting a cert chain with 1 or more intermediate CA's crashed
new 90d0046 "Unsupported" might be easier to understand.
new 6effc69 Removed the bundle on Mac
new 9d4d8ec reomve unneeded ifdefs.
new 8f230f5 Do an sc_lock() before an sc_pkcs15init_bind(). Reason: in sc_pkcs15init_bind() an sc_lock() and sc_unlock() is done; and when the lock_login config option is set to false, the sc_unlock() will call logout() which for some cards means a SELECT(3F00) -> unwanted change of the current EF/DF causing errors
new 40ad6b0 replace GNU/glibc getopt (LGPL) with my_getopt (BSD).
new 163176f __APPLE__ does not need special handly. Only the broken pcsc-lite shipped in mac os X does, so use define set by configure on mac os X, if the default pcsc is used, but not if a self compiled is used.
new 8fb4d9f Better name, as suggested by Ludovic.
new 450e412 Fix the #define in pcsc probing, move pkg-config code before the darwin-specific code so that if a pkg-config enabled pcsc is installed you can simply use PKG_CONFIG_PATH to detect it.
new 19ad0e3 enable masquerading by default for pcsc.
new d1cbf05 add --dump option, thanks to antonio
new 43d3408 add a few details about the card, also by Antonio Iacono.
new b15a794 define HAVE_PCSC on darwin with native pcsc
new cee5f2a print lastUpdate field as well
new 191f2af set the ca certificate only if it's really present
new c7a8e84 suppress errors in pkcs15 card detection if we don't know whether we really have a pkcs15 card
new 6eeedc7 fix typo
new d858b4f fix build with openssl 0.9.8: move "#include <openssl/crypto.h> up and remove unnecessary include for asn1.h
new bae9b56 fix typo.
new d631b55 masquerading is no longer needed on windows or mac os X and never was on linux.
new ba30323 fix compiling on solaris9. Thanks to Douglas E. Engert
new e81d74b use *.[1-7] instead of *.1 *.3 *.5 *.7 to avoid the (harmless) error "ls: *.7: No such file or directory"
new ff795fb bugfix for a potential segfault in card-setcos.c when the acl "pointer" is one of the special values 1,2,3
new 58943d5 Compiler warning fix: use 'char * argv[]' in main() because getopt_long() does so too
new ac8571d Comment config file lines that have default values.
new e046547 update by Peter Koch. still one problem left in pkcs11-tool, but lots of improvements.
new 46021ac remove QUICKSTART (outdated and replaced by wiki documentation "QuickStart") and add README pointing people to our wiki / html documentation.
new 8b65da7 prepare 0.10.0 release.
new 0ad2a07 fix typo
new cd802fa not compatible with 0.9.*. increse library major revision.
new d59e1b2 More comments on default config options
new b898154 fix man page installation.
new 90d1b0c add support for the Italian Incrypto34 smartcard; patch supplied by Giuseppe AMATO <giuseppe.amato at st.com>
new 9d549e6 remove outdated files, improve documentation slightly.
new 242edbe add another cardos ATR, supplied by graaf at virgilio.it
new e8f1c45 This works better.
new 1f58981 update from Sirio Capizzi <graaf at virgilio.it>
new 89cfac8 Update pcsc pinpad code to latest pcsc-lite code, limit to pcsc-lite only.
new fa65fbf summary: - add new function sc_format_oid to libopensc - cleanup libopensc api
new 47ee84e add functions void sc_ctx_suppress_errors_on(sc_context_t *ctx); void sc_ctx_suppress_errors_off(sc_context_t *ctx); to turn on/off error suppression (to avoid accessing sc_context_t directly) and use it.
new 95200e0 add pkcs15 emu function for data objects
new 43f0118 summary: - improve support for extended APDUs - add experimental support for command chaining - simplify get_response prototype
new 54046c6 fix warning
new b325af7 remove deprecated pkcs15 emulation api. Add temporary wrappers for the new functions in some pkcs15 emulation drivers.
new ad647c6 use sc_ctx_get_reader
new f74eaee fix GET RESPONSE handling
new a3e1bc8 Let --assert-pristine work for Setcos 4.4 cards
new b6c44d8 use 1024 bit keys for testing to avoid problems with starcos tokens
new f91e233 add more cardos versions.
new ca4eba5 fix ac for file deletion
new 3a803df remove disabled code, request FCI only if a file object has been specified
new 3ac1f94 use unsigned int instead of uint16_t
new 0a23e30 remove senseless and inconsistent checks + cleanup
new 7247db8 use sc_print_path
new 9b71766 use sc_print_path
new 4de18a2 fix for the combination of cryptoflex, 2048bit keys and some smart card readers by Jean-Pierre Szikora
new bb63ca1 fix pkcs15 initialization + fix DIRECTORY command; patch supplied by Giuseppe AMATO <giuseppe.amato at st.com>
new 346486e fix problem with uninitialized pointer; this patch resolves opensc ticket #61
new 05587ca add a few sanity checks.
new 2357ff6 does not work, will segfault. also no need to assign foo_item all the time, scconf_item_add returns the item parameter, so it does not change.
new 93dae31 #if out the dead code. remove some dead code in the hexdump code.
new 3651965 check publickey variable before de-referencing. change newpin to NULL so it can't get free'd twice. allocate buf from heap, not stack (quite large).
new cdc3044 proper cleanup: close files if something goes wrong.
new 131842c make code easier by removing match variable. check if cert was returned != NULL. free cert if there is some error. set variables to NULL after being freed, to avoid potential double free bugs.
new 4863fb7 free buf if pin was entered incorrectly. check if file is not NULL (out of memory). free file, if something goes wrong. free pin/puk once no longer needed.
new bc23ab4 free allocated variable in error path. set rec=NULL after freeing it to prevent double free'ing.
new 5ef6ed5 add paranoia: check all arguments before dereferencing them to prevent segfaults.
new 7e15333 add paranoia: what if scconf_find_bloicks returns NULL?
new 2a1c6cb check if scconf_find_blocks returns NULL;
new 138dfad simply code / remove dead code.
new d7b6aba add proper free to error path.
new 6862973 check if scconf_find_blocks returned NULL.
new 4801c7e check if scconf_find_blocks returned NULL
new 5e03972 check if scconf_find_blocks returned NULL
new e0d645b remove unneeded if(1) block. free temp in error paths.
new 2f8b813 sizeof(int[7]) is 28. I think bCommands_pin should have 7 elements, too.
new 2f20090 check file parameter. set file=NULL after freeing it to avoid potential double free. check key_file parameter before dereferencing it. check card first, then derefence it.
new 252fa4b check scconf_find_blocks returning NULL add a free(obj) to the error path.
new e49f78a fix typo on *paramp test. check alg_info always, not only in some case.
new 51b7226 even select_file can fail (if card was removed etc.) so better check the error and return the problem, right?
new 4bac663 for example if the card was removed, select file on the main folder will fail. so I think it is best to return the error.
new ad844b0 also check that priv->p15card is not NULL.
new 40c6703 no code change, only easier to parse :)
new dc790e9 check p15card != NULL before accessing it. in the error path free file if it was allocated.
new e5ffc57 free profilke and pin_obj in the error path. check res_obj and keybits/keyargs before dereferencing.
new 71c9142 check prkf != NULL.
new a533dc1 free pub_buff in error path. removed unused pubfile variable and dead code. check prvfile != NULL.
new 1475978 remove unused variable item in scconf_put_str. remove unused variable ret in scconf_put_int. from the readme: "if parm not NULL, then ... parm points to ..." so we need to get the value of the location where it points to.
new dce7d00 oops, parm points to the first char, not to a pointer to the string.
new fc763ba etcos_create_file_44(): use sizeof(pins)/sizeof(pins[0]) instead of a constant (7)
new 912946b Fix for ticket #45: Firefox 1.5 and new Mozilla's crash when they are closed because there's a blocking C_WaitForSlotEvent() called from another thread then the 'main' thread that calls C_Finalize(); and this cause C_WaitForSlotEvent() to log to a NULL context -> assertion failure.
new 1376a07 fix APDU case
new b2400d0 pkcs15-tool needs openssl_libs also, if it is available. only older gcc versions found this problem, it seems.
new 9ce3f13 add cardos m4.2 and print the startkey version in hex
new 9df2cde Add support for reading and writing from/to an EF(UnusedSpace) file; this functionality can be used for deleting and creating pkcs15 objects (that reside in a file)
new 103979e fix key usage flags and ensure that we are in the correct lifecycle
new ced2df6 remove unused variables
new df6657e Belongs to the rev. 2769 patch for adding EF(UnusedSpace) support
new 573ce9c suppress errors when EF(unusedSpace) is missing
new e56c7a9 use correct apdu case and set Le value
new 551bcc8 Referted the 'Fireofox 1.5' fix in log.c and replaced it by letting a blocking C_WaitForSlotEvent() return CKR_FUNCTION_NOT_SUPPORTED. This isn't a solution for the multihread problems (things hang or try to log to a released context) but at least it solves the Ff 1.5 problems
new d1eec6a Added default debug/log file locations for Windows
new 86c4e23 tcos update by peter koch, adds interoperability with th darmstadt cards.
new 07fc5e4 use svn revision based version numbers.
new bd64676 hav commented configuration lines have the opposite values of hardcoded defaults.
new 0548ceb If SCardControl fails there's nothing bad going on - just there's no support for this feature.
new e1d7384 If there's less data ina file/record than requested do not fail but return as much data as was available. This behaviour is similar to read(2).
new f5902e4 add support for cardos m4.2 (still experimental)
new 5861f98 remove unused variable
new fe3e93b summary: -complete rewrite of the APDU/transmission handling code (should now support extended APDUs and is hopefully better documented. Note: support for the T0 ENVELOPE command is still missing due to a lack of test cards). -add new APDU case constants SC_APDU_CASE_2 etc. which let OpenSC decides, based on the card capabilities, whether to use short or extended APDUs. -add new c [...]
new 35052fc git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@2796 c6295689-39f2-0310-b995-f0e70906c6a9
new 6a5c6b2 fix warnings
new 1a5a5c9 "cat xxxx" is not supposed to create errors (on record structured files). so silence it.
new e5d0ec2 Typo fixes
new f18b38f summary: -add more general path concatenation function sc_concatenate_path() and let sc_append_path use it. -add function sc_compare_path_prefix to check whether a path starts with a certain sub-path (prefix). -add some doxygen docu to some path handling functions
new ddd6964 Forgotten to add in r2773
new f674204 Add possibility to change pkcs15 attributes (currently only the label)
new fcb7b65 increase buffer size for the serial number to 9 as we need 8 bytes for serial number plus 1 byte for the terminating 0 character
new 9f943aa don't segfault if no config file could be found (win); thanks to Nicolas Justin <nicolas.justin at idealx.com>
new dc2410a the current code requires a pointer to a integer, note: it's actually not a bug when foo_item is NULL as the necessary scconf_item object is created by scconf_item_add_internal
new 363d9be Get rid of handwritten sc_read_record calls
new de4b5c2 - implement thread-safe path printing function sc_path_print() and use it src/libopensc/ and src/pkcs15init/ - use size_t for the certlen parameter of sc_pkcs15init_update_certificate()
new 8fac2ea remove old documentation (replaced by wiki).
new b1322ec remove old man pages (replaced by new man pages in xml format).
new 059c1ff doc/old is gone.
new e8c05ca use more opensc specific names for ASN.1 tags to avoid name conflicts with other ASN.1 libraries
new 41ee07a increase size for bigger keys
new 5f94c5f moved to opensc-project till opensc.org dns is back. fix openct references to opensc.
new b07df40 change more opensc.org references to opensc-project.org till dns is back.
new 723888d Negative r has a meaning in the cached file logic, so be sure to reset it to -1 after sc_print_path has returned a value.
new 9e410e5 Some cleanup/fixes in micardo/esteid code related to new apdu.c Now it works again ;)
new 0e9037d If, for some reasons, card can not be initialized (broken) then we must make sure that we release all resources (disconnect the card).
new 823bbff rename card-etoken.c to card-cardos.c
new aa2d502 rename everything namend "etoken" to "cardos" :)
new d501480 move renames.
new f0c9f04 big rename etoken -> cardos, part II.
new 2cc82fe rename lower level function, fix typo.
new 525613a add atr and os identification for cardos 4.3 (plain, not b, not likely to be ever seen, but 100% compatible to 4.3b as far as I know - only slower).
new 670c0ee Rename: _get_conf_block -> sc_get_conf_block and put it into opensc.h
new 5c3aed1 - remove dependence on a specific threading library - add two new structures: sc_thread_context_t which let the user specify the mutex functions to use and sc_context_param_t to specify parameters for the sc_context_t creation (including mutex functions) using sc_create_context() - add new function sc_context_create() - remove timestamp code from libopensc
new 85aaa44 fix typo
new ca2a5e1 - move APDU encoding to the reader layer - remove APDU masquerading code, it shouldn't be necessary anymore
new 8e77e87 sc_mutex_destroy should have a return value
new 25e5c95 use sc_context_create instead of sc_establish_context
new cd64e11 apdu_masquerade is gone
new bce076d pkcs15 emulation changes for the TCOS cards, patch supplied by Peter Koch
new 55631ed support private certificates; patch supplied by Douglas E. Engert <deengert at anl.gov>
new a2194b9 fix memory leak
new 1c1a0a1 don't bind the pkcs15 card twice
new 8494d9c add support for two byte tags in sc_asn1_find_tag() + normalize return value
new 8c92645 add support for two byte tags in sc_asn1_find_tag() + normalize return value
new d02aaf3 fix warning
new b051b08 add initial PIV card support; patch supplied by Douglas E. Engert <deengert at anl.gov>
new a00caa5 undo commit in pkcs15-tcos.c
new 1f65fbe a unblocking pin could be used for authentication as well
new 7dbbade fix warning
new 5c6f8d0 fix warnings
new a092e86 fix some warnings + cleanup
new 9c42d1d use sc_ctx_get_reader() etc. instead of of accessing the structure members directly
new 99a28c3 add support a TCOS card used at the uni Giessen; this is still experimental
new aa5d081 * Also delete .pdb files on windows when doing a clean * Call directly internal pcsc transmit method for pcsc pinpad calls.
new 8410084 fix warnings
new 149b5cf use sc_format_oid()
new b2d4d6a NIST 800-73-1 certs aren't protected by a pin anymore; patch supplied by Douglas E. Engert <deengert at anl.gov>
new c3e8510 Add a section for tokend
new 9213a29 Small fixes for windows compilation (Visual Studio Express 2005)
new 530dc09 Add an example config entry for PIV cards and remove a card matching black hole
new 0a99122 Fix for a segfaul. Patch provided by Albert Solana Berengu
new 126595b fix some warnings
new 5b0119c change name + fix warning
new b93d6b1 use absolute paths when caching files
new e1ef4ec Remove the disconnect action from internal reader api
new 0bc5cb4 mark second parameter of sc_disconnect_card() as unused
new 984d652 __sc_ui_read_pin(): use %lu instead of %u to avoid a warning: format '%u' expects type 'unsigned int', but argument 3 has t ype 'size_t'
new d1c9ee9 sc_pkcs15emu_actalis_init(): define 3 variables only #ifdef HAVE_ZLIB_H since they are used in this case only
new 3b25ca2 remove useless code
new d893720 add note
new beb9d34 add some doxygen comments
new 383602b - move logging to the reader driver - log APDUs only if DEBUG is defined (sensitive APDUs should never be logged and we cannot know whether a APDU is sensitive or not => enable APDU logging only in a non-production debug build) - remove OPENSC_DONT_LOG_SENSITIVE configure option as it's needed anymore
new 5e617f9 document --unblock-pin / -u option.
new 34098ec small fix - \& was left from cut&paste from a man page.
new 6737a4d __sc_ui_read_pin(): use "%lu" and (unsigned long) cast to print a (size_t) value (size_t is 32 or 64 bits depending on the platform)
new 2b8a2f4 sc_pkcs15_parse_tokeninfo() and sc_pkcs15_encode_tokeninfo() now use a (sc_pkcs15_tokeninfo_t *) instead of struct (sc_pkcs15_card *)
new 8e170f6 initial support for the Swedish NIDEL card
new 158fce9 simply the revision, drop the m4 code. it didn't turn out the way I wanted it (does not contain the _repository_/_branch_ revision).
new 40e6c49 fix ACs; patch supplied by njustin at idealx.com
new 8be396f add function sc_reset() to reset a card; patch supplied by Josep Monés Teixidor <jmt at c3po.es>
new 1180345 Threading: Reader locking can fail as well
new b791b1d check the private flag of public key objects; patch supplied by Albert Solana <asb at c3po.es>
new 41d3502 install signer in libdir like everything else.
new 83c7dc9 return an error if offset is too large
new 95163a2 protect certs by default
new 9409c27 Set the user pin reference when writing a cert. If not, there's a problem with the onepin profile option: the CDF (and certs) will be created with NONE ACs instead of ACs that refer to the user PIN
new 435d8ac There doesn't seem to be a need to leave the certs (and CDF) unprotected. In case there do are problems, please revert this change
new 0222683 Douglas E. Engert wrote: The attached change to card-piv.c is need to recognize a valid PIV card applet. All of the previous test cards would return in response to a SELECT the full AID where as they should have returned the the PIX portion of the AID. The newest test cards are now doing this correctly.
new 5adad64 Lindent so the result is easier to read / diff.
new 807b4c7 improve regression tests: cleanup failed/ and out/ folder. specify path to opensc-pkcs11.so module.
new 347c5b0 remove a function that is no longer used at all.
new 1810d4d tcos updates by Peter Koch.
new 96cb7fa fix off by one bug.
new 8fa4891 no idea how to fix, at least document it.
new beb55b8 not sure it is a good idea to ignore the return value.
new 3066830 close memory leaks.
new 7ffd0f1 remove dead code.
new 8df47f6 fix memory leak.
new 5dcaecc fix double free and segfault.
new 156e3a5 maybe it would be good to check he return value?
new 878f9c3 maybe it would be good to check the return value?
new 2327835 fix a memory leak. don't access buffer beyond length.
new 03f5827 make sure buffer is 0 terminated.
new 41ff15e fix signed and size_t warnings.
new 4c7c045 trunk will contain work done after 0.11.0 release
new 2b4e6a5 fix a memory leak that occurs when the APDU exchange fails
new 60d9e4b TCOS-Emulation, support for Uni-Giessen card
new 181fb6f Document changes since 0.10.0-rc2
new ab0066b fix printf size_t problem with "%lu" and (unsigned long) cast.
new 7c6baba revert bogus patch.
new 6258b95 bogus change, no segfault here.
new 8fe04d5 revert bogus change.
new b507ee6 add support for d-trust cards.
new 56082ee initialize with NULL, so the later check for NULL will work.
new 5cb1c13 if exec() fails, exit with return code 1.
new 449a184 free(data) (allocated by sc_pkcs15_read_data_object, no reference kept anywhere).
new 45742fc check df before dereferencing it.
new 6cfbd9d at least partialy close memory leak.
new 65a2cab make sure result is null-terminated.
new a48fe86 close some memory leaks.
new 21c8211 close memory leaks.
new 9e5ed96 use correct ef attribute in switch statement; thanks to Chaskiel M Grundman <cg2v at andrew.cmu.edu>
new d78f5ad piv fixes by Douglas E. Engert. This patch will allow a flag in the opensc.conf file to be set to only expose the PIV authentication certificate and matching keys.
new 9b52eeb bugfix: Le must be <= buffer size
new dd44fd8 if the card doesn't support a logout functionality it's not an error
new 0c39b21 set the default for lock_login to false (as documented in opensc.conf)
new f7110c5 oops, we forgot to update the version. fix that for opensc 0.11.1.
new b28f8ed improve buffer length check
new 0cab685 trunk is now used for changed past 0.11.1.
new 7f5595a document changes so far.
new 45007b3 compile fixes for win32.
new 77ce30f Douglas E. Engert: removes the private bit on the pubkey. Without this change the openssl req with engine can not be used to generate a certificate request, as it will not be able to find the public key that should have been saved by the piv-tool when the private key was generated on the card.
new bfe05f3 check for existing public key before creating one from the certificate; patch supplied by Albert Solana <asb at c3po.es>
new 1c56f74 pcsc_connect(): use an explicit debug message if the reader supports PIN verification/modification but that feature is not enabled in opensc.conf (enable_pinpad = true)
new c7a5ce3 revert prior change as it breaks the regression tests.
new 0f64e9d make objects on piv card public.
new d42495b try to fix windows compile (include netkey-tool and cryptoflex-tool).
new 5d1f80d fix compiling netkey-tool on win32.
new f9dd89e sprintf bad. maybe even potential exploitable? bug found by ville skytta using pscan.
new cd9e42a commit NEWS update.
new e225efc add new card reported to work by Christian Koegler. Thanks Christian!
new 50490ac Added support for MuscleCard applet. Thanks to Thomas Harning, David Corcoran of Identity Alliance
new 746dc39 Fix makefile: add muscle files.
new 5691420 fix warning
new 88bae5c remove iso logout function, remove dummy logout functions and remove logout call from sc_unlock()
new 409fe3a fix warnings
new 6d96437 The applet returns unexpected values when entering a wrong PIN; this is a work-around by Thomas Harning
new 5c9c6aa fix docu
new f1d9cda the cryptoflex manual states the last two bytes of the atr are some software version so we can ignore them. use the atr mask to do that.
new 6df2a05 bring implementation in accordance with the docu in opensc.conf
new fae6f3f fix apdu types and response buffer length
new ec38927 check for environment variable first on windows, too.
new bf23c03 Endian-independent way to convert numbers to a byte array + vice versa
new ee37240 Added doxygen comments
new 607e85a add new atr reported by Sven Loeschner as Cryptoflex 32k Card.
new 7dd7df4 Tomasz Lemiech wrote: I found that struct c_asn1_odf[] in pkcs15.c does not define secretKeys object (as specified in PKCS#15 v. 1.1 standard, par. 6.2). I consider this to be an omission. My Setec card contains objects of this type and all PKCS#15 operations fail with "Unable to parse ODF". Attached patch fixes this issue.
new 6287cf4 replace static buffer with dynamically allocated buffer. patch by Tomasz Lemiech to fix a problem with setec cards.
new a29a926 changes for cardos 4.3b
new c044be5 fix typo
new fdd0baa bugfix: return error if OID is invalid
new 39a4d12 use LIBASSUAN_* instead of ASSUAN_* so the assuan library is correctly found and we avoid "undefined symbol: assuan_strerror (.libs/opensc-signer.so)", etc
new 1eb33bc rename README in README.my_getopt
new 2495268 - remove src/common/getopt.h since it collide with /usr/include/getopt.h
new 9ce3d4c add strlcpy.{c,h} from ftp://ftp.openbsd.org/pub/OpenBSD/src/lib/libc/string/
new 5e922b5 add -I$(top_srcdir)/src/common so that strlcpy.h is found
new 382a7d6 add $(top_srcdir)/src/common/strlcpy.c to libscconf_la_SOURCES since src/scconf/parse.c now uses strlcpy().
new 126593a - use strlcpy() instead of strncpy() to always have a terminating NUL-byte
new 9a5bf36 initialize pointer
new d502887 bugfixes ...
new 940c67b cardos v4.3
new ae5866b don't accept invalid OIDs
new 886e63c cardos v4.3b support
new 5efe5b3 bugfix: copy the first n characters (if possible)
new aaa71dd spelling fixes by ville.skytta at iki.fi
new 0037ceb check the value of the pin type before accessing the array; patch supplied by Henryk Plötz <henryk at ploetzli.ch>
new 81fd37e fix sc_compare_path_prefix(); patch supplied by Henryk Plötz <henryk at ploetzli.ch>
new 42ad6be win build fixes; patch supplied by Douglas E. Engert <deengert at anl.gov>
new b5dbdd9 fix warnings
new aec987d build fixes for win; patch supplied by Douglas E. Engert <deengert at anl.gov>
new 4608716 Douglas E. Engert: Change PKCS11-Spy so it looks in HKEY_LOCAL_MACHINE, before HKEY_LOCAL_USER.
new adc082b * Fix endianness for PCSCv2 part 10 IOCTLs * Add support for start/finish style IOCTLs * Add support for the same pinpad functionality on windows
new d555218 fix typo
new 198b68a shorten string, fixing #98.
new 3fab062 Update for [2836] chganges.
new b1a87b6 Make sure every new opensc instance sees the card from the sight starting point.
new 3e2e82d C_GetInfo(): use "OpenSC (www.opensc-project.org)" instead of "OpenSC Project (www.opensc-project.org)" for the manufacturerID to avoid a truncation at 32 characters
new 35d3d51 explicit that --module is to load a "PKCS#11 module (or library)" not just a module
new f474277 using --pin with set --login
new b4f8b14 use <option></option> for command arguments
new 1104e92 remove check for T0 as it seems to work for T1 as well
new a127dd9 add option to write data objects; patch supplied by Cornelius Kölbel <cornelius.koelbel at lsexperts.de> et. al.
new a39e382 don't forget part10.h (only used on windows I think).
new d2e004d ntohl is in ws2_32.lib / dll.
new 91912ba scconf needs strlcpy too.
new eb3b277 bugfix
new bf38949 add starcos spk 2.4 ATR
new 8d38746 keep index and count parameters
new f087a93 implement workaround for the Taiwanese id card
new 5a0e184 Make do { ... } while (...); into while (...) { ... };. Fixes behaviour with empty files.
new 325b948 opensc-siemens.diff Adds support for record-oriented files in linear variable, simple-tlv format. TODO: Add support for all the other file formats, too.
new 12c6b11 Fix handling for SIMPLE-TLV records with a three-byte length
new b45617c Make absolute paths from all paths read from the PKCS#15 directories by prepending the DF(PKCS#15) path if necessary. Fixes compatibility with Siemens HiPath SIcurity formatted cards which use relative paths.
new 636f694 check if the ef type is in range; thanks to Thomas Irlet
new 11779dc fix apdu
new 45fc350 iso7816_process_fci(): dump the filename in Hex + ASCII instead of just ASCII in the debug log
new 1ac9b2a sc_pkcs15_make_absolute_path(): a 0 length path stays a 0 length pat
new a946dc9 set CKF_USER_PIN_INITIALIZED only if we really have a pin object
new 7c823d8 fix warning
new aeae39f fix warnings
new 45e22aa add the possibility to read the pin from stdin
new b8e96bb update doc
new 4a29630 c_asn1_ddo[]: the oid field of the DDO is not mandatory in ISO 7816-15 See http://www.opensc-project.org/pipermail/opensc-devel/2006-October/009022.html
new e2dea71 restore backward compatibility: try READ BINARY in case of a unknown file type
new 65658db make the decision which locking functions to use more explicit; patch supplied by Martin
new 07b7abd c_asn1_toki[]: the serialNumber field is not mandatory in ISO 7816-15 see http://www.opensc-project.org/pipermail/opensc-devel/2006-October/009025.html
new 821a009 New EstEID v1.5 card ATR
new bd753c4 use the OPENSC_DEBUG environment variable to overwite the configuration variable debug in opensc.conf
new e1cba3e Remove invalid documentation, addresses #95
new 01f7293 add support to parse the seInfo TokenInfo entry, improve aid support in opensc-explorer
new 1c78d9e Netkey E4 emulation
new ef012c9 Thomas Harning: sc_list_files doesn't return the length of the applicable buffer, but instead the # of files. Fixed.
new 71aab07 When forgetting PIN set to 'null' the corresponding named_pin's entry
new 7da8984 set path type; patch supplied by Thomas Irlet <iksiloev at gmail.com>
new 2d4bd46 Use do {...} while(0) construction for SC_TEST_RET, SC_FUNC_RETURN and SC_FUNC_CALLED defines
new 1a32d02 Fixes #17
new 4e401b6 fix typo
new ed2c784 update; patch supploed by Douglas E. Engert <deengert at anl.gov>
new c208794 check types before concatenating paths
new 651d2c5 remove useless code
new 4f1bdbe fix typo
new 28c6c1e git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3057 c6295689-39f2-0310-b995-f0e70906c6a9
new 9abf0cc size_t is 64bit on 64bit plattforms, thus use %ld and convert to unsigned long.
new 4744121 Support for DATEV smartcard classic
new 9be468b try to read at most max_recv_size bytes in GET RESPONSE
new 6b40cf4 remove unused variable, cleanup
new 7164006 enable APDU logging again
new 66f3d64 Remove unused headers
new ff5f554 Have equal number of sc_lock and sc_unlock loglines to aid debugging locking.
new f7dc1aa remove now useless (see revision 3062) --enable-debug option
new b9daff9 replace rsa pkcs#11 header files with rewrite.
new b3822c3 update the MuscleCard driver for OpenSC to use an msc_id struct rather than int/bytes and messing around with byte-swapping for that. (by Thomas Harning)
new 5610edf Thomas Harning: patch to fix the MuscleCard driver to work in the case of forced drivers. drv_data is used as a flag so that muscle_init knows if the applet has been selected during initialization.
new 31f4fad define these constants where used to kill warnings.
new 462cd0d Initial support for SetCOSXpresso (GemXpresso R4 with EID 2.x applet)
new 44d54b6 pkcs11.h with updates from Alon.
new 4857be5 Alon Bar-Lev: enables disabling the linkage of pcsc-lite and openct, even if they are installed on system. It adds --disable-openct and --disable-pcsc-lite options. Also a minor correction for pkg-config (adds PKG_PROG_PKG_CONFIG).
new 9aa18ea update to latest pkcs11.h from Marcus.
new f23ddbd make it work with my compiler, add missing parenthesis
new d537651 update to latest pkcs11.h version.
new 0199dfa use net size if available
new c3fbf28 remove comment
new 5977ce4 pad only if necessary
new a157eeb apcos driver is not yet commited.
new 38720ba update to latest muscle code.
new 11064cf convert to unix style line ending.
new 86a90a2 convert to ascii.
new d8544a1 convert to utf-8
new b3ad2f9 convert to utf-8.
new ad79822 convert to utf-8.
new 5db8792 convert to utf-8.
new 61c4acc convert to utf-8.
new 9287da5 convert to utf-8.
new f76ec85 replace with an ascii test string.
new db0a552 convert to utf-8.
new 1a9d529 kill warnings.
new d08c834 encode max pin length as well
new dad82e1 only the first apdu (command) tells us how many bytes we need to get. we need to keep this value and call get_response as often as needed to get them part by part.
new 0d0048e introduce SC_PATH_TYPE_FROM_CURRENT and SC_PATH_TYPE_PARENT path types
new 0221588 prepare Oberthur card support for secure messaging
new 58b1931 prepare Oberthur card support for secure messaging
new 210bb4a change encoding
new 779326b Match EstEID based on ATR contents rather than the full ATR itself.
new 9f1d63a Allow to specify at compile time that a card will work only via pkcs15 emulation. This way no matter what is configured in the config file (try_emulation_first option) the card is usable via pkcs15 tools.
new f747fc0 * Add a few debug lines * Remove the locked status from the reader no matter what SCardEndTransaction thinks - either the card was removed or broken pcsc allowed to reset the card while in a transaction (pcsc-lite before Oct. 2006)
new 83862fc Properly set the defaults for pcsc reader options even if no configuration file is found/available
new 2e1c80f use EVP api
new 30d0066 Stop MS visual studio 2005 complaints.
new 1bee8bf off by 1
new 3db0036 use EVP api for DES encryption
new 1d1b877 use EVP API for DES encryption
new 0592929 remove unnecessary assertion
new 6e32cb6 improve atr masking code - also mask atr to match. and add more debugging messages.
new 0ccd6da improve get_response logic: try to read at least as much bytes as indicated in the 0x61xx response.
new 49fe6b5 undo last change: converting a binary file to utf-8 isn't really a good idea ;-)
new 4c72646 increase pointer
new 139ff4c check key size, set so-pin ref
new 8cdd081 conditionally check 2048 bit rsa key ops
new 1b4472c use const, add yet another ACL
new a2f622a implement support for SHA2 (still experimental)
new 71bef70 use SCARD_SCOPE_USER instead of the pcsc-lite specific SCARD_SCOPE_GLOBAL
new d7a55bb correct 3 warning: unused variable 'entry'
new 45f5fce comment out static and unused functions (sc_pkcs15init_read_unusedspace, sc_pkcs15init_update_unusedspace, merge_paths, sc_pkcs15init_add_unusedspace and sc_pkcs15init_remove_unusedspace)
new 1a26ba3 Include files from [3113]
new 282000f update Giuseppe Amato email at his request (he is no more working for ST Incard srl)
new 7ce5aa3 change inappropriate oberthur profile
new 9e33d45 some ACLs was forgotten; i compute_signature() le should not be more then 256
new d7758e6 after Douglas Engert's remarks on the coding style
new 7d00cf3 don't set max send/recv size per defaults. document how to find out if there is an issue.
new c6954a9 full piv update by Thomas harning Jr. and David E. Engert, adding compression etc. Also enables opensc to be compiled with and without zlib support.
new eab8ade changes by Douglas E. Engert: change the do_decompress* to sc_decompress* and the initialize_* to sc_pkcs15emu_initialize_* in the new code.
new 39b5c42 test new chop size (256 bytes by default).
new 97f2569 Add acos5 driver by Ian Young.
new 1ca622b Patch by Douglas E. Engert: use c style comments and different header files (for mac os X?).
new 25f8509 Douglas E. Engert: piv-tool needs openssl, so compile only if it is present.
new 74610a8 Ian Young: use proper card type for acos5.
new 38b9a80 add missing header file to noinst_HEADERS.
new e7c0443 remove <link linkend="foo">Foo</link> that can't be solved and generates Error: no ID for constraint linkend: foo
new d530108 document changes in this release.
new b9b9d81 changes to trunk won#t go into 0.11.2.
new e7d8816 fix --serial option.
new 62d2d6c Simplify esteid detection
new 5dba203 Make sure the right thing is always selected on the card by bypassing cache
new fa272fa Missing file
new 60b4570 * Add support for SCARD_E_NO_READERS_AVAILABLE to describe errors like: {{{ sc.c:201:sc_detect_card_presence: returning with: Unknown error SCardGetStatusChange failed: 8010002e }}} * When doing a reset with pcsc_reconnect do a cold reset instead a warm one to allow next change * Change the protocol force feature to change the protocol with a hard reset only when needed to prevent: {{{ SCardConnect failed: 8010000f card.c:228:sc_connect_card: returning with: Unkno [...]
new d0a0103 Build a pkcs11 module with only one pin exposed to overcome issues described in #132. Closes #132
new ef7d8ff bugfix: don't use the size of a void pointer, thanks to Carl Przybylek <crprzyby at gmail.com>
new c3fcd9f Steve Jacobs: fix muscle driver.
new 9110912 request at most for 256 bytes
new 4199969 authenticate if data object is protected
new 1645684 increase size of pin buffer
new c3438ef use 255/256 bytes as max_send/recv_size by default.
new e393507 enable pin caching by default.
new d08da29 update NEWS with latest changes.
new 36d0cf2 probe for readline+ncurses too.
new 60195aa add date for 0.11.2
new b5df816 fix wiki html export.
new 8135be4 bugfix: avoid recursion
new 37157f3 bugfix: try to read at most 248 bytes
new dee4fae fix warning
new a8908b8 252 bytes work as well
new f065546 The framework-pkcs15 will filed the modulus in a certificate and copy it to a pubkey or from apubkey to a privkey object. But it does not copy the modulus_len.
new 6c32404 If a PKCS11 get attrribute failes for some reason, pkcs11-tool may return garbage along with the error message. The attached patch to pkcs11-tool.c initializes the type to 0 so the attribute will be 0 in case of an error. by Douglas E. Engert
new 20985fc Added the application name to logging to allow for easier debugging. Since a lot of testing needed multiple applications to be running, it became important to know what application was making each log entry. This was reported by Russell Larner <rlarner at rsasecurity.com> on 5/17/2007
new 9946e23 Douglas E. Engert: Major improvments in the PIV card modules: * OpenSC-0.11.2 only supported RSA 1K keys, the patch supports RSA 2K and 3K keys. * The FASC-N in the CHUID object is used as the card serial number. * A PIV card may have additional objects. These can now be read by pkcs11-tool and pkcs15-tool. * The p15card-helper.c module is no longer used. The code to call the sc_pkcs15emu_* routines has been moved back into pkcs15-piv.c and uses existing Open [...]
new a4cd33e Douglas E. Engert: Looking at framework-pkcs11.c, it looks like there is a bug in the handling of auth_count, if there is more then one pin, and one of the pins is a SC_PKCS15_PIN_FLAG_SO_PIN.
new 4cc1a50 Alessandro Premoli: add support for reading, writing and deleting private (require cache_pins) and public data objects in PKCS11. updated the pkcs11-tool and fixed a few bugs in the code. Tested on an aladdin etoken.
new 4acfe6b fix compiler/sparse warnings.
new 047ee1d fix more warnings found by gcc/sparse.
new 9c35397 revert change - is needed by pkcs15-syn.c
new 4f0329c silence more gcc/sparse warnings.
new de0ca91 make sc_pkcs11_print_attrs non static.
new c66889d fix broken changes.
new 0c604cb silence more warnings.
new 2f66c5b correct a typo
new 41004ac initialize objs to NULL to avoid: pintest.c:83: attention : ‘objs’ may be used uninitialized in this function
new 209ee45 eidenv.c:55: attention : ‘option_help’ defined but not used
new b0bc6df fix more warnings.
new be30933 do not use global variables app_name, options and option_help so they can be static
new 4ca4eba silence more warnings by gcc/sparse.
new 1069b4e Douglas E. Engert: fix more compiler warnings.
new fa12a3d implement more flexible cardos detection func
new cea32a8 make app_name, options and option_help static.
new db60091 fix duplicate static.
new 8c222a0 remove unused definition.
new 16c5ab4 Error when output allocation length is not equal to the signature length. 'Compute_signature' now returns the answer's length
new dea6f8b update pkcs11.h header file from scute.
new be022c1 fix version numbers preparing for next release.
new 4fcabec PIN unblock error. Internal pin reference procedure updated.
new 7c5fe33 re-add cardos m4.01a ATR
new 8770859 add support for asepcos
new a7f102f update NEWS with list of all changes (that I remember).
new 69a5c1a do not use AC_LIB_LINKFLAGS() since this macro is provided by gettext and we do not use gettext. Use AC_CHECK_LIB() instead
new 70c7bb4 libassuan.m4 is provided by libassuan-dev pkg.m4 is provided by pkg-config lib-link.m4, lib-prefix.m4 and lib-ld.m4 are provided by gettext but should not be needed after revision 3202
new d15326c update the list of distributed .m4 files
new 2012f64 add image files to release tar.gz
new 174802a Enables the second PIN (one-time PIN) defined for the same application DF
new 703edfb improve atr matching for cardos m4.01[a]
new ae627ca Revert last change, breaks building opensc: ../../src/libopensc/.libs/libopensc.so: undefined reference to `lt_dlopen' ...
new d7bde1e inline is something the compiler can decide on his own. static is a good hint to the compiler for that - the function isn't used outside of this file. "static inline" is not valid, visual studio doesn't compile that.
new c6a5457 use static without inline - the compiler can optimize the function as inline or not, whatever it prefers. "static inline" is not supported by the visual studio c compiler.
new 8222427 typo, manifested when explicitely using 'reader_drivers = internal;' in opensc.conf
new 80c7055 document latest changes and update wiki export script.
new 0d4ee51 stop using p15dump, switch to pkcs15-tool --dump.
new e9b29d1 add test for decrypting binary data of key size.
new c224b0c allow regression test suite to work installed as well.
new 486db2f put openssl rsautl in raw signatures mode.
new d5600d2 more updates.
new a974aba trunk is now post 0.11.3 release.
new fc20ade Douglas E. Engert: The IdAlly CSP calls C_FindObjectsInit looking for CK_PRIVATE_KEY before C_Login with a pin. If it does not find any, it fails. The pkcs15-piv.c in 0.11.3 and 0.11.3-pre3 set the pubkey and prvkey objects as private. This patch removes the SC_PKCS15_CO_FLAG_PRIVATE so IdAlly will work with the PIV cards.
new 60e3e1e add akis support by Gürer Özen.
new 14bc32d Sign by using the decrypt function.
new b757ff1 Gürer Özen send another akis update: * create_file implemented * EF(DIR) hack removed, it is easier to put a real EF(DIR) * SC_CARDCTL_GET_SERIALNR implemented
new d59917c asn1_decode_entry() allocates (objlen - 1) bytes for SC_ASN1_UTF8STRING types with SC_ASN1_ALLOC flag, then calls the sc_asn1_decode_utf8string() function which then fails with BUFFER TOO SMALL cause it wants to end the string with an extra NULL.
new a577a25 silence a warning we get with siemens cards.
new c1130f7 oops, define tmplen at start of block.
new 8875fe0 add explicit option to enable/disable the ns plugin. patch by Alon Bar-Lev.
new 94c62b0 create plugin directory if it does not exist.
new 25e85b4 Gürer Özen: * akis_get_data() implemented * akis_delete_file() implemented * akis_set_security_env() implemented, pkcs15 signing works now * life cycle set/get via cardctl implemented * card_ops commented, so it is clear whether a function is supported via iso7816 implementation or not * mark pin apdu as sensitive in akis_pin_cmd
new e1002b9 fix a compiler warning.
new 8e37bfd cryptoflex-tool.c:505: warning: array subscript is above array bounds gcc 4.3 warning, reported and fixed by novell: Problem found by David Binderman Patch created by Michal Vaner closes our trac bug #153 and novell bug 238660
new 7ea1d00 pkcs11-tool crashes while printing its usage message. fixed by Ville Skyttä.
new c67c5fa revert revision 3403 + 3404, seems to break mac os X.
new f0cbecf AM_LDFLAGS is not used in libpkcs15init_la_LDFLAGS so explicitly use it
new f7636ab Add same hack for Prime cards.
new a7912a2 add information about cardos 4.2b - latest cardos update.
new f1e1cea propset svn:ignore to ignore unversioned files
new e23612f do not use AC_LIB_LINKFLAGS() since this macro is provided by gettext and we do not use gettext. Use AC_CHECK_LIB() instead
new 93b8784 libassuan.m4 is an external dependency provided by libassuan-dev (or similar) package
new 4b34601 pkg.m4 is an external dependency provided by pkg-config (or similar) package
new aeef9ba lib-link.m4, lib-prefix.m4 and lib-ld.m4 are provided by gettext but is no more needed after revision 3239
new 345ce22 use LTLIB_CFLAGS and LTLIB_LIBS instead of the global LIBS to find and use libltdl
new 0cebca4 the commands line tools do not call lt_dlopen() so do not need to link with libltdl
new 9a10cde add cflags for ltdl.h where needed.
new d68964c keep libassuan as most users will not have this.
new 3264588 restores ability to change opensc-explorer debug level at runtime, using "debug" command from opensc prompt. by Jakub Bogusz
new 832e325 fix typo.
new 5504092 update libassuan m4 macro package to current version.
new 68dd0e1 Update news file.
new d27c1c1 trunk now after 0.11.4 release.
new 26e2e54 update version info for windows.
new f9b30e4 fix typos, patch by Gürer Özen
new 11ec3ad mark supported padding and a comment - by Gürer Özen
new 177ff40 fix typo, found by Gürer Özen.
new 43b7391 fix typo, found by Gürer Özen.
new c25e4f7 akis update by Gürer Özen: implement logout code.
new c2ee37e bugfix: select DF before setting sec. attributes
new 4d1871d properly check return value
new 6882b13 fix typo found by Gürer Özen.
new af9199b Appy patch by magog to build a static opensc_a.lib on windows. Also removes *.lib on "make clean".
new 61769bf Release 0.11.4 without changes.
new 833fae2 Add code to check version information in several files. done by Peter Stuge.
new 09be225 cleanup *.tmp as well.
new 3b47022 * instead of using a custom PIN VERIFY command, pin_reference is reported back, and used for verifying.
new eada3a7 On a second thought, it is better to stay compatible with released 0.11.4 code, and still use ISO7814 pin_cmd.
new 780b4af On a third thought, it is better to not introduce any confusion at all :)
new 4dd4d52 AKIS can handle bigger data blocks, but that causes GET_RESPONSE calls. So for a 300 byte file, this saves one transaction (244 + 56) instead of (244 + 11 + 45).
new 3a0626f cosmetic patch piv-tool and netkey-tool added to the svn:ignore
new ab94915 two new debugging commands.
new 5cdd939 the so-puk is optional
new 57f7f6e ignore paths with a AID in it
new f947614 This should be limited too.
new caf4207 setcos_match_card(): replace sc_error() by sc_debug() since some cards are not SetCOS bug respond to the APDU: 00 CA DF 30 05
new ca92ec6 patch from Douglas E. Engert for bug #165
new 88ee398 rename gemsafe in gemsafeGPK so we can also have gemsafeV1, gemsafeV2, etc.
new f3a3fd6 rename pkcs15-gemsafe.c in pkcs15-gemsafeGPK.c
new 1eb6fba rename sc_pkcs15emu_gemsafe_init_ex() in sc_pkcs15emu_gemsafeGPK_init_ex() and sc_pkcs15emu_gemsafe_init() in sc_pkcs15emu_gemsafeGPK_init()
new 07e6b23 add initial support of Gemsafe applet V1 cards
new acda677 sc_pkcs15emu_add_pin(): do not devide pin length by 2 in BCD case since it is already done in sec.c line 262
new 83cef7b remove spaces and tabs at end of lines
new 82253cd sc_pkcs15emu_gemsafeV1_init(): remove addition of SC_ALGORITHM_RSA_PAD_PKCS1 algorithm since it is already done in card-gemsafeV1.c:gemsafe_init()
new 4bf320b add support of /usr/lib/pkcs11/ directory. See http://wiki.cacert.org/wiki/Pkcs11TaskForce
new 44b2d51 gemsafe_flags2algref(): return 0x12 instead of 0x13 for SC_ALGORITHM_RSA_PAD_PKCS1
new d2bec29 gemsafe_init(): the applet supports also SC_ALGORITHM_RSA_HASH_NONE
new 4d098d9 do not add a signature prefix for D-Trust cards
new 0ecc294 add support of ruToken
new bb7bdc2 redefine trace macro to avoid compiler warnings when _DEBUG is not defined
new 27257f2 support for Siemens CardOS V4.2C
new 743ecfe Remove copy of Estonian eID ATR
new 1667798 Remove unused code.
new 513a3dd support for TCOS3
new bf9d6be new patch for ruToken support
new a9ff903 update comment to reflect the fact that lock_login is now false by default
new 156f368 add two missing files for ruToken support
new e9135ff print_binary(): everything except printable characters (including space) are displayed in hex
new 91288d4 remove $(pkcs11dir)/opensc-pkcs11.so so that creating the symbolink link does not fail if the file already exists.
new a4bad44 Add support for the Austrian A-Trust ACOS card
new 8db7c8c * Fix protocol forcing. Whenever connecting, use whatever protocol is available / currently set on card and only force the protocol with a cold reset when different This fixes pcsc_lock->pcsc_reconnect->protocol mismatch error escaping from reader-pcsc.c if some other application has set the card to a different protocol. * pcsc_reconnect uses PC/SC return values, pcsc_reset uses OpenSC; 0 -> SC_SUCCESS * CCID driver with OmniKey 1021 returns SCARD_W_UNPOWERED_CA [...]
new 69742ed circumvent the 'padded with zeros' ATR bug on Mac OS X <=10.5.2
new c46c366 check tpin before trying to delete application
new 5a04a10 do not use memory quota
new 04942bb * Correctly return CKR_PIN_INCORRECT if PIN is out of range. * By Alon Bar-Lev from svn diff -r 3397:3398 https://www.opensc-project.org/svn/opensc/branches/alonbl/pkcs11-login-rv
new 9740726 sc_asn1_decode_integer/asn1_encode_integer: correctly manage negative numbers and some positive numbers like 128
new 1875a25 PKCS#11 "Application and processes" instructs the sequence that should be taken after fork(). Applications should call C_Initialize() immediately after fork() to reinitialize the provider.
new 741330b Allow specifying application name for data objects at pkcs15-init.
new 56a4322 Convert constant SC_PKCS11_MAX_VIRTUAL_SLOTS to configuration option.
new 0a809dd Complete rewrite of OpenSC build system.
new 800e5b0 We don't need version constraint
new c9af12d Add some missing AC_PROG
new 440ea33 Windows DLL suffix is actually delta
new 679a4c0 export-wiki.xsl now works with new trac
new 72449f0 Make export-wiki.sh static across projects
new 5e4abcc Some build cleanups
new 8ac87f1 Remove useless comments
new b0ad686 automake&co define mkdir_p, not MKDIR_P.
new 7ec2b32 Remove emptyline
new 2761549 use new MKDIR_P macro, but depend on automake >= 1.10.
new c7d2788 Support >=autoconf-2.60
new 3e78a50 Minor cleanups
new 1635782 Fixup autoconf help
new f49f765 Fix libtool versioning issues
new 5e5a053 Fixup autoconf detection
new 97a3455 Fix typo
new 760b89f Don't distribute opensc.conf
new 5217ebc Fix opensc.conf dist again
new a055644 add ATR for the GemSafeXpresso 16k R3.2
new 875d99e use sc_debug/sc_error instead of fprintf(stderr, ...)
new 2800607 rename index -> index_local to avoid a compiler warning pkcs15-gemsafeV1.c:126: warning: declaration of 'index' shadows a global declaration /usr/include/string.h:304: warning: shadowed declaration is here
new 4f53d06 change type from int to unsigned int to avoid 2 compiler warnings: pkcs15-gemsafeV1.c:150: warning: comparison between signed and unsigned pkcs15-gemsafeV1.c:331: warning: comparison between signed and unsigned
new 8436f08 pkcs15-gemsafeV1.c:478: warning: 'sc_pkcs15emu_add_pubkey' defined but not used
new a88a543 Fixup compile under cygwin
new 314f2a5 Cygwin should load .dll version of PKCS#11
new 622e342 Need AC_LIBTOOL_DLOPEN for PKCS#11 module
new 500b36a Revert last
new d0e0dd2 Cleanup conventions to meet other OpenSC projects
new 80a16f6 ruToken cleanups
new 2f997da Install PKCS#11 providers at bin for Windows This will place file in more expected location, and reduce runtime dependencies as dependency DLL will be located at the same directory.
new 9d20a07 Trivial
new 77fac97 #include <opensc/pkcs15.h> to avoid a compilation warning
new 9ffe2e1 use "pkcs15.h" instead of <opensc/pkcs15.h> (and similar)
new 7e30721 use $(srcdir) when needed to be able to build in separate build directories using: cd foobar ; ../configure srcdir=..
new 69dd0ba use $(srcdir) for dist_noinst_DATA
new 1387851 do not use api/*/*.xml but explicitely expand the first * to avoid catching api/xsl-stylesheets/catalog.xml
new 503b028 More separate srcdir fixups
new 39abe22 More separate srcdir fixups
new 87db3c9 More separate srcdir fixups
new c9b1913 More separate srcdir fixups, make distcheck work
new 3f7aa03 Add --with-pcsc-module to configure
new 47c7cf2 Readd -svn version suffix, removed at revision 3446
new 65a427e Ignore -svn component so distcheck will pass for svn versions
new 0e2c664 Rename PC/SC library into PC/SC provider. Sync symbols between configuration and source. Put default provider in opensc.conf, opensc-tool.
new 94d8849 Fix default PC/SC provider for darwin, thanks to Martin Paljak
new 317ad76 Solve some Windows conflicts
new ac0c291 Fixup WINAPI location
new e4eeba2 Fix MSVC compiler error
new 6f22611 Fix some duplicate symbols with Windows header files. Thanks to Douglas E. Engert.
new 376139d Fix future issue with distcheck
new 6e65efb Some more build cleanups
new 66d819a ruToken C fixups
new 54c1c73 Attached are the latest mode to OpenSC svn 3462 to use the Makefile.mak files to build on Windows.
new f934711 Support OPENSC_FEATURES for MSC build
new 5f567f7 More MSVC build additions
new 9dff29a Typeo
new d840777 Distribute autoconf generated files for MSVC build
new f503c34 No need for Makefile.mak in win32 anymore
new c50280c afxres.h is not needed
new 865f6e9 More fixups to maintainer-clean
new 606052c Add --get-conf-entry, --set-conf-entry to opensc-tool
new d1f6df8 Add simple Windows installer script for OpenSC
new 715a794 Add PKCS11-Spy to installer
new 5d21800 Fix last reference to VERSION and not PACKAGE_VERSION
new a160f0e common/main.c is part of getopt package
new e19d6a9 Make sure we generate opensc.conf every time
new 8d7bce4 ruToken fixups
new 886d6ac Add --force to autoreconf
new 8110595 Add PATH comment for Windows users
new 104ff0e rutoken: Some MSVC fixups, by Aktiv Co. Aleksey Samsonov
new 597bcd7 Cleanup some Windows issues with open
new 514d471 Use O_BINARY at rutoken
new ab99cc5 convert C++ comment in C comment (ISO C90)
new c1311c8 card.c:756: warning: unused variable 'j'
new 040ac68 completely initialize the struct fmap fields
new 0b23948 completely initialize the sc_pkcs11_framework_ops structure (using NULL for undefined callbacks)
new 63b55ea rutoken_new_file(): initialize sec_attr
new 7201fc7 convert a C++ comment in C comment
new 932cc41 convert C++ comment in C comment
new e928d55 convert C++ in C comment
new 6c740b9 More MSVC fixups by Douglas E. Engert
new c862f88 SIGSEGV print_tags_recursive - fix
new e237574 Plug&Play support
new 96b0f4a Verify PIN support Plug&Play
new 8624796 use type size_t instead of int since the 3rd argument of sc_format_asn1_entry() is void * using int will fail on a 64-bits platform
new 91177e5 Use size_t instead of int when needed, plus some other minor changes
new a40cf03 Fix sc_pkcs15_verify_pin() to handle OpenCT hotplug correctly
new e14cf57 Better handle openct reader replug, revert last change in pkcs11-pin
new d7bb718 C_Finalize(): do not unload the module since the application may try to make PKCS#11 calls again
new 0d71a75 Fixup configure help strings
new 232a26b C_Initialize(): log the value of the pInitArgs argument
new 28c0c62 print_ptr_in(): change log format
new fb7c59e use #ifdef instead of #if
new f2b1035 add a prototype for compat_dummy()
new ca2da1b Avoid variable name space collision
new 99a16c6 remove two unused variables
new 82314ea do not use system as a variable name. system() is also a function
new bdaf49b add missing prototype for sc_pkcs15emu_tcos_init_ex()
new 96064e1 add missing prototype for sc_pkcs15emu_rutoken_init_ex()
new 4d1218b completely initialize pkcs11_secret_key_ops structure with NULL pointers
new 4fd85ce print_generic() & print_print(): size is a CK_ULONG (unsigned) so compare using "!= (CK_LONG)(-1)" instead of "> 0"
new 47013af opensc-explorer double free and cleanups
new df27108 No point to maintain static list of available drivers in configuration file, user can always use opensc-tool to see available drivers
new 7d6cf6b Prepare for libtool-2
new a9db36f Rename aclocal->m4 to be more standard
new 555dcd9 Revert autoconf version prereq
new 38f3ae2 upgrade from http://autoconf-archive.cryp.to/acx_pthread.html
new c18dbe5 More aclocal->m4
new 7534621 Revert pic changeset
new a379627 Detect libtool-1 or libtool-2 at runtime
new 4fc6c49 Make PC/SC work on Windows again
new 2599fa7 Do not delete .exports files on make clean
new 64fd479 Chaskiel Grundman: Nowhere in pkcs15init/pkcs15-cardos.c is the user pin ever requested or presented to the card. Since the update acl for the key object uses the user pin, the GENERATE KEY operation fails when it isn't logged in.
new 758adbc Chaskiel Grundman: I found the following patch to opensc-explorer handy when cleaning up after some failed keygens (but not all, since you can't delete private key objects). It switches the card to the admin lifecycle at startup:
new 625d14c Don't free uninitialized memory if pem_encode fails.
new 973bf9a export a GET DATA operation for cardos so opensc-explorer's do_get works
new 59dc6f5 update configure and NEWS file.
new f4e8c61 Update NEWS
new 29d78fd move checks to pkcs15_bind, where we can look at the config.
new e243e7f make the sign_with_decrypt hack configureable.
new 262a630 document this change.
new c528205 and update the date.
new 1b1ae30 update export script.
new 0724759 Apply security fix.
new 56ea99d print_mech_info(): replace printf by fprintf to correctly redirect the log
new 5ef6b5f remove check for label - if you set one with "pkcs15-init -C -l your-label" this check doesn't work correctly.
new 27d00f9 Add new entersafe driver for ePass 3000 tokens.
new 9468d98 Douglas E. Engert: The pkcs15-gemsafeV1.c code assumes that the key_ref is always 3. But that is not always the case. In our case it is 4. The patch tries to determine the key_ref by looking at what appears to be a table of allocated keys, and picking the first allocated key.
new 5ce2fcd Document recent changes.
new 29ee5e1 Update trunk for new release.
new c89d27f Don't removed generated external files during distclean
new ff4d6dd Fix for two apparent C code bugs
new 19a6ecd the "-" for make must be in the first line of a multi column command, not somewhere in the middle. this code makes shell look for "-rm" command which does not exist. fixing.
new 021dfac rename files only.
new 5c29dcd commit changes: cardos-info is now cardos-tool. and it knows to format, at least some cards/tokens with cardos.
new cbf0c28 fix a few missing \n
new aee10c8 Fix a comment and allow cardos 4.3B too. Thanks to JP for testing.
new e0d1bb5 fixing typo
new 5246723 CardOS 4.2C is working too after changing Default StartKey to 16 * 0xFF
new 8136c8b fix some bad crash on Mac
new 042d9d0 An erased CardOS with a StartKey version 0xFF can now be directly formatted. Verbose output contains now some useful data.
new a767600 fix apdu length check: 0..3 is wrong (too short). 4 is ok. 5 is not (length byte for data, but no data?). 6 or more is ok (length byte and data). checking for "5" is not important.
new 3508110 Fixup cardos-info scripts
new 2659c00 Make src/tools/cardos-info.bat DOS format
new acb0632 Make src/tools/cardos-info.bat DOS format
new df74ebc Handle spaces correctly
new f640522 cardos-info is now cardos-tool
new ac8bb83 remove html.out and man.out before filling them to avoid problems when/if they already contain a html.tmp or man.tmp file (on the 3rd execution of make)
new e2b329e make the * targets depend on only one dependency to avoid problems on concurrent make (-j)
new 6eb3ecd card_initialize(): correctly associate a reader to each virtual slot.
new 001f03f card_removed(): warning: comparison between signed and unsigned
new 6b89748 slot_get_token(): return CKR_TOKEN_NOT_PRESENT if CKF_TOKEN_PRESENT is not set.
new 1e5cd24 Add documentation: # (max_virtual_slots/num_slots) limits the number of readers # that can be used on the system. Default is then 8/4=2 readers.
new b4c5c8d use SCARD_S_SUCCESS instead of 0
new 4a1e119 display PC/SC error codes as 0x08%lx instead of %lx to make it explicit they are hex values
new d2f4285 use 0x%08lx instead of 0x08%lx
new d771870 Resolve some conflict with win64
new 4ad85b3 Add some more debug information to pcsc
new d7941bf Re-add pcsc-lite compile-time dependency
new bb6f6f7 mingw32->mingw*
new 04b30cd Add --list-token-slots / -T to pkcs11-tool to list only slots with tokens.
new 7b93c51 Missing SHAs
new 36112bf typos
new 1e41d4d * Fix issues with pkcs11-tool testing of C_GenerateRandom/C_SeedRandom and OpenSC PKCS#11 implementation of those functions. Thanks goes to Rickard Bondesson who noticed the issues.
new 6f3012d add CKM_SHA256* and CKM_SHA384* logs
new a796725 DWIM: If you don't specify a reader on the command line and you have more than one reader (for example, OpenCT virtual readers and one existing PC/SC reader) the tools will skip to the first reader that has a card in it.
new 94d0f8d Remove ancient unused code
new f4c85e7 Cosmetic fix for [3595]
new de89aa4 Fixes #109
new 5617c9d Fix bug #86, thanks to ville.skytta
new 5b5a7d3 Upgrade to safe and sane values of late 2008
new 6e56f83 #include <wintypes.h> on __APPLE__ to define DWORD, LONG, etc. Windows types
new a89b146 Enable lock_login by default for security. Disable soft_keygen by default for security. Make defaults code more readable.
new 8a6bc59 Create new type "privdata" in all profiles with different ACL settings, and check C_CreateObject parameter CKA_PRIVATE aka pkcs15_create_data args.auth_id variable, aka sc_pkcs15init_new_object object->flags & SC_PKCS15_CO_FLAG_PRIVATE to decide if "data" or "privdata" profile needs to be used.
new 8c364fd Typeo
new 8456a32 Add PKCS#11 specification limitation note
new 8828fae Allow delete data objects by specifying application-name and label
new 1809d50 Fix doc build issues 1. VPATH issue. 2. Parallel build issue, suggested by Ludovic Rousseau.
new c64fd88 Mac OS X 10.5.6 fixes the ATR padding bug.
new 86fe58e Provide default system PCSC_CFLAGS on Mac OS X
new 6f72e22 Get rid of configure warnings: {{{ configure: WARNING: winscard.h: accepted by the compiler, rejected by the preprocessor! configure: WARNING: winscard.h: proceeding with the compiler's result }}}
new 7e7b94d Fix PKCS#15 emulation handling: * Work as expected without a configuration file * "Normalize" the configuration file: show the used default and give examples with opposite values. * DWIM: * If there is no config file: try all builtin drivers * If there is a configuration file, allow to turn emulation off * If there is a configuration file, allow to filter the list of internal drivers * Introduce a PKCS#15 layer card flag for emulated cards
new 2e2a998 Remove some unused/prehistoric defines.
new 315c0ed PC/SC readers have always only one slot per reader.
new 6ffec42 Linux compatible PKCS#11-friendly changes to EstEID PKCS#15 emulation driver to display the name of the cardholder in token label field.
new 300dfeb link with iconv on Mac OS X, to support [3616]
new c6f753d Limit virtual OpenCT readers to a sane default of 2 readers/tokens by default.
new 0876222 Make PKCS#11 module default slot configuration more sensible: * Increase default slot count to 16, which equals 4 concurrent readers by default * 2 OpenCT + 2 PC/SC on Linux for example * Rename num_slots to slots_per_card * Rename internal PKCS#11 variables, remove unneeded defines.
new 51824ac Revert r3612, the autoconf warning is correct and be the default in future
new c9c6f9f Correct iconv support
new 96d387b Fix external iconv override
new cdbd4c1 More iconv build fixes
new 2b41afb Set hardcoded default for profile_dir
new 5a7515c Recognize SCARD_E_NO_SERIVCE: {{{ $ /Library/OpenSC/bin/opensc-tool -a [opensc-tool] reader-pcsc.c:881:pcsc_detect_readers: SCardEstablishContext failed: 0x8010001d [opensc-tool] reader-pcsc.c:990:pcsc_detect_readers: returning with: Unknown error No smart card readers found. }}}
new 4d5c61d Correct PC/SC -> OpenSC error code translation.
new c58bcfa Configurable for PKCS#11 v2.20 related changes. - Correctly report Cryptoki version if v2.20 is used. - Consistently report no version for hardware/software we know no version information about.
new 584e0a1 Expose version components into config.h
new 78ac13a Add PACKAGE_SUFFIX
new ce5c5f3 Add SCARD_E_NO_SERVICE to internal-winscard.h
new fbd51c7 Revert 3630
new 304f227 Add SCARD_E_NO_SERVICE to internal-winscard.h
new 74f6d41 Add sc_get_iso7816_driver as it is required for external drivers
new a5f32a9 Move all private factories into private headers, the iso7816 factory is the only one which is actually exposed
new ef38618 Remove unused OPENSC_ETC_PATH
new 98841d1 Finally remove eval stuff from autoconf
new 17cf43e Rename PKCS#11 v2_20_mode option to plug_and_play
new e1d4919 Typo
new 09a849c Set default of hide_empty_tokens to true
new 34a75de Rutoken updates
new aadf4ad Fix pinpads on OS X
new 93998e9 Optionally load SCardControl132 on apple
new 830ba34 Fix native windows build, add iconv support
new 24d69c6 hide_empty_tokens should not affect emulated cards (always on)
new 1bf7e9c typo fix
new fe195e9 trunk code is now working towards 0.11.8
new abe9112 update NEWS file from 0.11.7 branch.
new dc3f8f6 Default PCSC CFLAGS from pkg-config
new 4987d22 attr_extract(): use sizeof(CK_ULONG) instead of sizeof(CKA_CERTIFICATE_TYPE)
new 042d47a iattr_extract(): use sizeof(CK_CERTIFICATE_TYPE) for a CKA_CERTIFICATE_TYPE
new 2752c33 removed unused variable
new 33d5e39 created final release.
new 9dd1407 change base id so it does not overlap with the next one.
new aadf09d resolve an "undefined code" situation. the old code was undefined, but ok (variables where never used again in the "goto error" case). but the new code should be clearer on this.
new 3347ede Improve this function even more.
new 54a35a2 fix typo.
new 50f9ef8 check if len or p is 0/NULL and return.
new cd6adb4 Fix Windows PINPAD mingw issue
new 9ef196c store the generated public key on the token.
new 464a4f6 Fix Global Platform PINs with CCID pinpads.
new 3b0faec * Display the default CCID message for PIN verification if the reader has a display * Part 10 -> PC/SC v2
new 9668f0a Add support for LCD detection on pinpad devices. * Update IOCTL definitions to PC/SC part 10 v2.02.05 * Return SC_SUCCESS instead of 0 if returning SC_ codes. * Detect the presence of a display with FEATURE_IFD_PIN_PROPERTIES
new 9862d43 Fix typo
new 89b2ac7 msc_get_challenge(): use 0x62 instead of 0x72 for GET CHALLENGE as it is the value used by the Muscle applet (INS_GET_CHALLENGE)
new 7b07db6 msc_get_challenge(): return SC_SUCCESS instead of dataLength in case of success
new e0f3545 Change MSC_MAX_APDU to make some buffers larger to support extended APDUs. The change was only from 256 to 512 bytes since it is more than enough for 2048 bit keys;
new 04a5c99 Detect the eToken 72K and activate RSA 2048 and extended APDU for it.
new 7f0476a pcsc_internal_transmit(): do not limit the size of the reception buffer to 258. This check is no more needed now that pcsc-lite can handle extended APDU.
new 117d790 Do not use msc_crypt_process (OP_PROCESS). This operation is used to do multipart encryption when, for example, the data is too big to fit in one APDU. It basically calls the Cipher.update() method until all data has been processed. However, the Java Card API documentation advises against using update():
new 4670238 Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix)
new 0f050d9 Document latest change.
new ef4b1e1 reader-pcsc - minor cleanups in reader features
new bfc6934 Actually print SCardControl result, thanks to martin
new 16baddc Engine API is not used.
new 6041595 * Correctly set offsets for PINs for PIN modification operations with pinpads. Thanks to Robert Konklewski. * Only set messages if the reader has display capabilities. * Detect rejected pinpad commands * Whitespace fixes
new b2f8eff Update news file too.
new 86b4d65 Export sc_check_sw, required by external drivers and utilities. Thanks to Marc Rios Vallès.
new 07fce14 Move sc_check_sw to opensc.h
new 09a442a Fix SCardDisconnect reset parameter.
new 23e247c Fix GNU libiconv detection
new 33a1313 Fix --disable-man install from svn checkout, by Ludovic Rousseau
new f0e03ec Fix --disable-man install from svn checkout, by Ludovic Rousseau
new dd9a40a avoid a compilation failure with --disable-openssl
new 3fa5747 Fix security issue.
new 0db85da prep next release.
new bb900ff do not cast calloc() return value
new dab3723 sc_pkcs15emu_add_object(): fix a memory leak. thanks to cppcheck(1)
new 8b4a1f6 cardos_sm4h(): fix memory leaks. Thanks to cppckeck(1)
new 490d1b8 print_file(): inverse "write" and "erase"
new 7931ded Add new rutoken_ecp driver by Aktiv Co. / Aleksey Samsonov
new b3e9ce3 add a NEWS entry too.
new c44b7cb iso7816_set_security_env(): correctly set P1 parameter in case of SC_SEC_OPERATION_DECIPHER
new be526c8 Move emv driver to the end.
new 265eb59 Aktiv Co. / Aleksey Samsonov: fix case depending on length. also no need to null resplen or le (done by sc_format_apdu).
new 7d282a9 Aktiv Co. / Aleksey Samsonov: Fix for the case when "apdu.resplen < 2" and checked buffer length.
new 25ab286 Aktiv Co. / Aleksey Samsonov: Check buffer length (*outlen)
new 2a0b63e Aktiv Co. / Aleksey Samsonov: Add assert() calls to check constant buffer size.
new 3cf4707 Aktiv Co. / Aleksey Samsonov: Remove dead code.
new a2032f5 Aktiv Co. / Aleksey Samsonov: use generic set_security_env code, remove duplicate code.
new a3b0d6a Aktiv Co. / Aleksey Samsonov: use generic code instead of identical funciton (now that the generic code was fixed).
new e8b1f54 Kalev Lember: fix onepin-opensc-pkcs11.dll manifest embedding with Microsoft compilers.
new 8529b7b Add support for JCOP31 v2.4.1 with the modified muscle applet[1]. This add support for 2048bit key and extended APDU.
new d9cd831 Douglas E. Engert: The pkcs15-gemsafeV1.c does not detect of the card present is in fact a gemsafeV1 card, and thus it can end up issuing commands to the wrong cards.
new 16f045b Douglas E. Engert: major update for the PIV smartcard.
new 0c2fe83 Aktiv Co./Aleksey Samsonov: fix a bug in rutoken driver.
new 61b8f0a Latest version from scute svn with this change: Stef Walter: Make all constants UL that should be.
new 5f185e3 Weitao Sun: no one can create more than 15 files under 5015 df. I increase it from 15 to 48, and all are OK.
new a495162 Prepare for new release
new 886fa89 trunk is now post release.
new e31d2ff New westcos driver by François Leblanc.
new 3dbc0a7 More Westcos cleanups by Aleksey Samsonov
new 2a6c41b Fix "serial->len is used uninitialized", By Aleksey Samsonov
new 2763c08 Add myeid driver by Aventra.
new 4439f4d fix pkcs11 access with multiple PINs
new 8874c50 remove spaces at end of line
new 10547c9 card-entersafe.c:496: warning: ‘r’ may be used uninitialized in this function card-entersafe.c:496: note: ‘r’ was declared here
new d2d59cf card-entersafe.c:226: warning: ‘tmp_rounded’ may be used uninitialized in this function card-entersafe.c:226: note: ‘tmp_rounded’ was declared here
new 2e1b4db remove unused variables
new bceeb38 comment out 2 unused static functions
new 45e12e6 Move the declaration of sbuff[] to avoid a compiler warning
new 97a8f73 add GOST R 34.10-2001 algorithm (only PKCS#11) by Aktiv Co.
new 8402c62 New GemsafeV2 Emulation code by Georges Bart
new 46b55bb Allow building westcos without openssl. (François Leblanc)
new b7de638 westcos: use generic select_file function (Aleksey Samsonov).
new 1719567 Add more NEWS entries.
new 80f16d4 remove gemsafeV2 code - not working properly, not maintained.
new ff9951d kill lots of warnings (unused variables, unsigned/signed comparison etc.)
new 616c7fe correct options "small" and "default" in rutoken.profile
new dd045ff remove dead code
new c36bd19 fix: key id for automatic selection of the predefined directory (for rutoken-tool)
new d9c52b8 fix OpenSC PKCS#11 object grouping
new b7845de framework-pkcs15.c:683: warning: comparison of distinct pointer types lacks a cast
new 82ab3bf rollback: "fix pkcs11 access with multiple PINs" http://www.opensc-project.org/pipermail/opensc-devel/2009-October/012607.html
new 02ea9d7 Fix windows/nmake build
new 7fa1978 fix misprint
new 03bc256 Create new release 0.11.10
new 2446c46 next release could be 0.11.11, trunk is "-svn" preview.
new b2df781 Fix warnings in muscle code - by João Poupino.
new 59c9a8e remove the variable not initialized error for "tag", and to fix another error when loading a 3des key when the string passed to sc_hex_to_bin is not terminated. By Douglas E. Engert
new e2848c7 Make opensc / westcos driver compile with openssl 0.9.7: It tests the version of openssl and uses the old RSA_gererate_key if older the 0.9.8. By Douglas E. Engert.
new 8746d02 rewrite code to support openssl 0.9.7 so rsa variable is properly set.
new 268755c latest changes.
new 5926c08 Cleanup westcos driver to remove warnings - by François Leblanc.
new 6cd345d Default PCSC provider is libpcsclite.so.1 instead of libpcsclite.so
new 12213de Improved myeid driver (by Aventra)
new 425c0cc Prepare release candidate.
new 1ecd64e fix: compile with openssl-1.0 beta3 http://www.opensc-project.org/pipermail/opensc-devel/2009-October/012702.html Thanks to Kalev Lember
new a8d8262 we created a -rc2 for openssl 1.0.0 support too.
new 83b7a97 trunk is now post release
new 3a5db68 fix memory leak
new f8c6e28 fix memory leak and read after free
new 2885691 fix potential memory leak
new 4101b6c Do not use an absolute path for the default PCSC provider. Just use "libpcsclite.so.1" instead so the library can be either in /lib (Ubuntu) or /usr/lib (Debian) for example.
new 704f59a Enable PCSC by default. Use --disable-pcsc if you do not want it.
new 275c7f9 remove useless code
new 51e15b8 For the Oberthur IdOne AuthentIC card: make possible to initialize the card with the PIN unblocking style of the Oberthur's native middleware.
new 76f3cfd invalid e-mail address
new 004f23f Oberthur card driver: new style for PIN commands; allow verifying of the PIN status; when verifying SOPIN, try firstly the local one.
new 8681d96 Oberthur pkcs15init: update Oberthur's 'token info' file when initializing token or creating user PIN
new 435862e suppress errors when verifying PIN status
new a0acb90 Oberthur card driver: useless assignments
new e06b054 add support for uaToken S
new ed93bfa corrected option_help according to options
new 16d9d8f pkcs15-tool.c:71: warning: comma at end of enumerator list pkcs15-tool.c: In function 'print_pin_info': pkcs15-tool.c:911: warning: comparison of unsigned expression >= 0 is always true pkcs15-tool.c: In function 'test_update': pkcs15-tool.c:1254: warning: comparison between signed and unsigned
new 9c9e21e add support for GOSTR3410 keys
new 3603a22 fix: probable endless loop
new 81cc9d6 free card applications when erasing card
new 4dc8845 Intrinsic ID for the cryptographic objects: with the new pkcs15 profile option 'pkcs15-id-style' the method to calculate the unique object ID for the cryptographic objects 'private key', 'public key' and 'certificate x509' can be choosen from the followings: - actually existing one byte ID: 0x45 + 'number of existing object of given type'; - 'Mozilla style': SHA1(rsa.modulus) or SHA(dsa.pub); - 'rfc2459': 'Subject Key Identifier'.
new 15b1ba0 Fix two bugs, noticed by Mats Andersson
new 1df1bbb Intrinsic ID: after Aleksey Samsonov's code revision: - memory leaks after 'memory allocation' and other errors; - coding style; - simplify code.
new a06c8ef set default ID style to 'native'
new babc99b To enable keygeneration in Firefox and opensc-pksc11.so when using smartcards that require different keybobjects for signing and encryption (CardOS)
new 4f316b2 patch to improve wesctos pkcs15init, submitted by Francois Leblanc
new 5dc6a35 mix tab/space character [3822]
new 2fe567e add support for GOSTR3410 keys
new 6415269 remove dead code
new 89e18e5 Branch for next major release changes.
new d320151 r3717:3719 from trunk
new d672fde Remove sc_error and sc_ctx_suppress_errors_* in favor of sc_debug/fprintf
new 6a48771 Implement CKA_ALWAYS_AUTHENTICATE
new 17593af Fix iconv handle leak
new 847e0ad PKCS#11: translate SC_ERROR_CARD_UNRESPONSIVE
new 446fe0f PKCS#11: Spec does not allow CKR_DEVICE_ERROR from C_Initialize
new cd5aff8 PC/SC: More return codes are handled.
new 1aed8cd PKCS#15-emu: remove dead code
new 7df1c60 Remove empty files: emv.c, emv.h
new a64cdc1 sc_error removal missing bits
new f6d4da7 PC/SC: Improve core and pinpad code * Make opensc-tool -l display pinpad capabilities, if available * Detect reader capabilities when a reader is found, not when a connection to a card is opened * Fix unpadded PIN block parameters to not be rejected by the latest free CCID driver * When locking the card and it has been reset by some other application (or re-attached), clear cache and lock again * Enable pinpad detection by default
new a614dff PKCS#11: Implement more token flags that describe available PIN retries.
new 831d1a5 PKCS#11: Fix a crash in C_GetMechanismList if pulCount is NULL
new 6155ae3 Add back needed debug level check. Thanks to Aleksey Samsonov
new 0f4092f Fix "log.h:64:4: warning: backslash and newline separated by space"
new b6f9345 Improve EMV and default driver
new 46a4b5b EstEID: Fix compiler warnings, add support for PIN retries related PKCS#11 token flags, add a version number for debugging.
new e350239 Fix debug file closing.
new 75cee4f PC/SC: Fix display detection and clean up
new 6fd2220 Bump the version number
new 9a95a40 Implement pinpad support as used by Portugal eID, by João Poupino
new 9da39d8 Merged r3719:3749 from trunk
new 64f9578 apdu.sensitive is not in use since [2868]
new ab2ed07 Fix APDU sanity check. By Emanuele Pucciarelli, http://itacns.corp.it/hg/itacns/file/adc0b2ceec86/patches/010-apdu.patch
new 99e84ae Fix spelling
new a8dc97e Cardos security env patch for Italian CNI card. By Emanuele Pucciarelli, http://itacns.corp.it/hg/itacns/file/adc0b2ceec86/patches/115-cardos-secenv.patch
new 9c7eb81 Add support for Portugese eID on IAS and Gemsafe cards, by João Poupino.
new 64916e0 Accidental sc_error removed.
new 91815f3 PC/SC: better separation between OpenSC and PC/SC types.
new ea37069 Merged r3749:3758 from trunk
new 615b181 Revert [3752]
new 4196e9f PC/SC: Log enabled options.
new 95a5ab0 Re-implement PIN cache on PKCS#15 layer; remove it from PKCS#11. Re-name and log PKCS#15 options to better reflect the purpose.
new 56fb576 Merge [3758:3783/trunk]
new 30ab506 Merged [3783:3794/trunk]
new 450e1fc Merge [3794:3803/trunk]
new 36f26b6 Do not duplicate reader name in private structure.
new 3ea5bb7 Merge [3804:3822/trunk]
new 684e9b2 Convert newlines to unix style, remove compiler warnings.
new 1a6f8b7 Remove unused variables
new 17b7e1b Remove unused variables
new a869431 Remove unused variables
new 3a3c0b3 Remove unused variables
new bb9423c Remove unusued variables
new 48924f3 Remove unused variables
new e5b644c Remove unused variables
new b34a1a6 Remove unused variables & fix line endings.
new bc1d4c4 Fix compiler warnings and a typo
new e95b066 Fix compiler warning
new 2dfbf4f Fix compiler warnings
new 84de388 Fix a compiler warning
new 38ba3ad Remove card->finish() functions that do nothing
new ca0976b Remove signer and related configure elements
new 0eac0fb1 Fix #58: properly document "pkcs15-init -T"
new 533a335 * Update opensc-tool and opensc-explorer man pages * Remove not implemented pksign/pkdecrypt commands from opensc-explorer. Use pkcs15-crypt instead.
new df20fe7 merge [3823:3844/trunk]
new 2005bc2 Move branches/martin/0.12 to trunk
new a8dc5bd opensc-explorer::do_apdu() number of bytes in printed message 'Sending'
new c398f55 Allow to turn off CT-API support
new c5d2618 Estonian eID: fix charset
new ff8912c Remove plugindir as plugin was removed
new e931fdf Fix C coding style
new 1444f8d Fix windows build
new 11e9cab Fix C coding style to please visual studio. By João Poupino.
new b41fcbe logs: time stamp; dump_hex() with the static output buffer - time stamp in the log messages: for Windows 1msec resolution, otherwise 1sec; - one more dump hex function, to be easily inserted into the formatted message.
new 4f52e7b reader-pcsc::pcsc_transmit() add log message with the reader's name
new 5ba09f0 logs: time stamp with 1msec resolution in unix. Thanks to Ludovic Rousseau.
new 5320ca6 Corrected GOSTR3410 public key structure
new 0527753 remove dead code (in compliance with http://www.opensc-project.org/opensc/changeset/3839#file8)
new 7cbe5e5 use generic iso7816_select_file code, remove duplicate code
new 05b96a1 CKR_USER_ALREADY_LOGGED_IN: It indicates that the specified user cannot be logged into the session, because it is already logged into the session. CKR_USER_ANOTHER_ALREADY_LOGGED_IN: It indicates that the specified user cannot be logged into the session, because another user is already logged into the session.
new b372290 correct SEC_ATTR_SIZE name (add prefix)
new 505406c Oberthur: verify PIN with pinpad
new 56dd3ec Modification Rutoken S binary interfaces by Aktiv Co. (OpenSC+Rutoken S driver for Windows works now)
new 0756990 Patch by João Poupino for Portugese eID card.
new f2d6ec2 Always print the slot description (reader name in case of OpenSC)
new d201a1d add get CKA_GOSTR3410_PARAMS attribute for GOST private key
new e4780e8 add to pkcs11-tool: GOST mechanisms and GOSTR3410 key to show objects on token
new b9935bf cardos-tool: invalid parsing of the 'common system keys' info
new 5b21dd6 basic command to change startkey, so far untested.
new 29407cf fixed and tested by Viktor TARASOV. Thanks!
new 724c348 remove dead code for now - easy to recreate later.
new 06aaa71 Describe now option for --help.
new b2c5ab3 Thomas Uhle: Add information about sun compiler to opensc-tool.
new 073c9da Thomas Uhle: modify Makefile so configure finds the include files of PC/SC lite.
new 93a2b39 Updated westcos driver by François Leblanc
new df4bdaf Update westcos emulation by François Leblanc.
new 490e02b after Martin's suggestion: for pcsc do not use '0' protocol when detecting readers
new 6ff96b8 pinpad support of PIN changing and unlocking Oberthur and opensc-explorer
new 4730e98 Thomas Uhle: Just this morning I realised that there is a minor mistake in my patch for opensc_info(). For the Sun Studio 12.1 compiler (__SUNPRO_C == 0x5100) and later versions also, it must be (__SUNPRO_C >> 4) & 0xFF to split the micro and mask the major version number.
new 44e94c8 opensc-explorer: remove debug messages
new 193ca76 pkcs15-tool: change PIN with pinpad
new 5bf000d pkcs15-tool: unblock PIN with pinpad
new 5881b46 PKCS#11: Spec does not allow CKR_OBJECT_HANDLE_INVALID from C_EncryptInit, C_DecryptInit, C_DigestKey, C_SignInit, C_SignRecoverInit, C_VerifyInit, C_VerifyRecoverInit, C_WrapKey, C_DeriveKey, C_UnwrapKey
new 22a950c Fix: return CKR_SESSION_READ_ONLY from C_InitPIN, C_SetPIN, C_CreateObject, C_CopyObject, C_DestroyObject, C_SetAttributeValue, C_GenerateKey, C_GenerateKeyPair, C_UnwrapKey, C_DeriveKey if session is read-only.
new 425ec51 fix: CK_MECHANISM gostMech = { CKM_GOSTR3410_KEY_PAIR_GEN, NULL, 0 }; ... C_GenerateKeyPair(hSession, &gostMech, NULL_PTR, 0, NULL_PTR, 0, &hPubKey, &hPrvKey); -> CKR_OK and Generate RSA Key Pair
new 781c3c0 add to changeset 3887
new 9dff2de fix: return CKR_USER_NOT_LOGGED_IN (now CKR_GENERAL_ERROR) from C_GenerateKeyPair for the case where there was no call C_Login
new 1ec5a6b fix: return CKR_ARGUMENTS_BAD from C_Login, C_InitPIN, C_SetPIN, if pPin == NULL_PTR and PinLen > 0 PKCS#11: "To log into a token with a protected authentication path, the pPin parameter to C_Login should be NULL_PTR." "To initialize the normal user?s PIN on a token with such a protected authentication path, the pPin parameter to C_InitPIN should be NULL_PTR." "To modify the current user?s PIN on a token with such a protected authentication path, the pOldPin and pNew [...]
new 7cf8760 Fix: any of these calls C_CreateObject(hSession, NULL_PTR, 1, NULL_PTR); C_GetAttributeValue(hSession, hObject, NULL_PTR, 1); C_SetAttributeValue(hSession, hObject, NULL_PTR, 1); C_FindObjectsInit(hSession, NULL_PTR, 1); C_FindObjects(hSession, NULL_PTR, 0, NULL_PTR); C_FindObjects(hSession, NULL_PTR, 1, NULL_PTR); C_FindObjects(hSession, NULL_PTR, 1, pulObjectCount); C_DigestInit(hSession, NULL_PTR); C_SignInit(hSession, NULL_PTR, hKey); C_SignRecoverInit(hSession, [...]
new f048496 merge changes 0.11.11 -> 0.11.12
new 39ca6b1 pkcs15-init tool: delete both key parts when deleting splitted key
new e2dae6b Unlock User PIN with PKCS#11: One of the three unblock methods can be activated from the 'opensc-pkcs11' section of opensc.conf: - C_SetPin() in the unlogged sesssion; - C_SetPin() in the CKU_SPECIFIC_CONTEXT session; - C_InitPin() in CKU_SO session (inspired by Pierre Ossman). -- This last one works, for a while, only for the pkcs15 cards without SOPIN auth object. For the pkcs15 cards with SOPIN, this method will be useful for the cards that do not have then [...]
new ece2a6a regression tests: pkcs11-tool API has been changed
new 7ce6c1d PC/SC: Add SCardCancel to please mingw
new 0518ed5 no more 'reuse pkcs15 object'
new d43ea3f Remove strange characters.
new 4942760 Xiaoshuo Wu: removes the assert line and some unused code, solves a problem with ePass3000.
new c6a0e54 oberthur: accept token 'OCS ID-One Cosmo Card'; ignore warning status 'end of file reached ...'
new e595042 pkcs11-tool: Call C_Finalize when a fatal error happens. (Otherwise OSX pcsc locks up)
new cc5c031 pkcs11-tool: Check for CKA_ALWAYS_AUTHENTICATE and CKU_CONTEXT_SPECIFIC login for --test operations.
new c5effc3 pkcs11-tool: test hotplugging and events (C_GetSlotList/C_WaitForSlotEvent) before others tests and only if --hotplug is given
new 875fe4a pkcs11-tool: test hotplug partial commit fix + make a slot ID mandatory and parse it as an unsigned long, not int.
new 29d93a0 Add comments about unused errors and add an error for locked readers.
new bb5b8d0 oberthur: increase sizes of xDF files; source tabified
new 1a7793c pkcs15init: possible error of 'find_object_by_id' should not be ignored
new 45b9558 profile sanity check: in template check for minimal difference between file-ids
new f205d48 pkcs15init: dissociate object file-id and object ID; ;use macros SC_CALLED, SC_RETURN and SC_TEST_RET; ;change debug level in debug macros;
new 54ee99d pkcs15init: use pinpad
new d5200b3 Add GemSafeXpresso 32K ATR. The card is available from http://www.smartcardfocus.com/shop/ilp/id~246/p/index.shtml
new 6fc954c pkcs15init: new profile type BSO at the profile level the difference between EF and BSO is: - BSO path is always the path of the host DF and do not indexated when template is instanciated; - EF path is always ending with file-id that is always indexated when template is instanciated.
new 39a7034 pkcs15init profile: 'private key' as BSO is differenciated from the one as EF
new a6dd95c update on NEWS
new 7d935df Fix #193: cryptoflex driver did not set minimum PIN length.
new f2bc83b fix:
new 5615077 tools: cardos-tool uses OpenSSL, link against it.
new f48ec95 OpenSSL 1.0.0-beta series crash when assembler implementations underflow with 0 byte length call to OPENSSL_cleanse() and overwrite memory. Avoid it by nut trying to eraze zero memory.
new 612d666 Introduce SC_ERROR_NOT_ENOUGH_MEMORY <=> CKR_DEVICE_MEMORY.
new cd9e666 SC_ERROR_MEMORY_FAILURE signals EEPROM failures on card. Failures to allocate memory on host result in SC_ERROR_OUT_OF_MEMORY.
new cbfa2dd Missing piece from r3912
new 101df10 Add simclist, also used by pcsc-lite, for list operations.
new 0c7d658 Use a constant buffer instead of malloc.
new d006b18 libopensc: - Remove slot abstraction from internal API and all reader drivers. CT-API (from where it all comes from) readers with multiple slots (if still found) can be presented as separate readers, OpenCT should remove the slot abstraction, PC/SC never knew about it. None of the tools knew how to use slots. - Add sc_cancel (translates to SCardCancel) - Re-implement sc_wait_for_event; support a blocking call. - Replace the "int reader" API with "* sc_reader_t" s [...]
new e191142 pkcs15init: remove slots, according to r3931
new 5a0cc50 tools: remove slots; implement change in sc_disconnect_card(); convert util_connect_card()/--wait to support the changes in r3931
new 0595eb7 tests: remove slots and sc_disconnect_card API as in r3931
new 0244baa pkcs11: - slots, sessions and objects are kept as lists. - change the way slots, cards and readers are managed. - re-implement C_WaitForSlotEvent(/C_Finalize) as written in PCKS#11 v2.20, canceling pending blocking calls. - implement a "virtual hotplug slot" with a floating slot id to keep NSS working with C_WaitForSlotEvent with a new reader. NSS does not call C_GetSlotList(NULL) to re-fetch the list of available slots if C_WaitForSlotEvent returns an ev [...]
new 6e9c7e5 pkcs15-init tool: when importing bunch of certificate, break after the first errorsrc/tools/pkcs15-init.c
new 97d5b3e sorry, commit by error; reverting back to r3935
new 4662812 pkcs15-init tool: when importing bunch of certificates, break after the first error
new 986309d libopensc: new operations for access control
new bc14012 pkcs15init: in select_object_path() look for the template also outside the 'key-domain'.
new 2ec8932 fix: reader-openct.c: In function 'openct_reader_connect': reader-openct.c:204: error: 'reder' undeclared (first use in this function)
new 5cd5728 libopensc: search pkcs15 objects: accept NULL value for the output argument
new 66f9cca fix SIGSEGV: $ pkcs11-tool --slot 5 --login --pin "12345678" --label 1 --type data --private --write-object tmp.txt Generated Data Object: Data object 0 ... $ pkcs11-tool --slot 5 -O --login --pin "12345678" Data object 135436368 label: '1' application: '1' app_id: -1 flags: modifiable private ... (gdb) run Starting program: /usr/local/bin/pkcs11-tool --slot 5 --login --pin "12345678" --label 1 --type data --delete-object
new 723bcc4 fix: use of uninitialised value - return parameter (phObject) from C_CreateObject and C_GenerateKeyPair (In function 'pkcs15_add_object': warning: unused parameter 'pHandle')
new 33228c7 cleanup and correct style
new 7f0abe8 libopensc pkcs15: path is optional for PinAttributes of PinObject
new 42ad65e sorry, fix
new 8aa2128 pkcs15-init tool: don't ask for PUK value when creating PIN with 'unblock-disabled' in flags
new 38e1144 pkcs15init: pkcs15 PinObject for PUK
new f2d3618 oberthur: finalize migration to the NEW API
new 660fdea profile: for PIN flags use rather 'define' macro
new ae046cc pkcs11: do not create slot for PUK
new 031bfc7 pkcs11: parametrize disabling of the slot for PUK
new 67b1ba0 opensc.conf: in pkcs11 section a new option to disable slot for User PUK
new 55f7f02 remove debug message
new 630eb21 miocos: migration to New API
new 9eebe0e pkcs11: by default do not create slot for the User PUK (thanks to Andreas)
new c23f077 Add more event type defines, add declaration of sc_ctx_get_reader_by_id().
new 32f7a4e fix text a bit.
new 90ba3c7 pkcs15init: card specific pkcs15init has to be ready for pin_reference = -1
new 5e805ec libopensc: in iso7816 process_fci() decode Life Cycle Status byte (ISO 7816-4 2005, 5.3.3, tag '8A')
new 2bcd535 pkcs15init: fix
new 742b0ea pkcs15init: one more fix
new 19e9aaf pkcs15init: fix putting xPINs in cache
new b83ed7e sertcos: both PINs are globals
new 72d5ebb make erase incompatible with all other actions. thus we don't need to worry about if the pin/so-pin was passed for the old structures (before erase) or the new ones (if used with create).
new 7f52a02 pkcs15init cardos: fix update keys
new 167aed7 pkcs15init: migrate setcos to the New API
new 0ce0b37 pkcs15init miocos: remove obsolete code
new 9c7624c pkcs15init: sc_verify() has been deprecated (thanks to Martin)
new 4b2fe63 build only one shared library instead of many.
new e9b3c59 remove no longer used export files.
new ac9f672 update windows makefiles: only create one dll.
new 976c214 pkcs15init: unused variables
new 840053f pkcs15init: migrate MyEID to the New API
new bf471ea pkcs15init: migrate MyEID to the New API
new 92debb4 PC/SC: Do not try to watch 0 readers on OS X
new ff4c2c6 Include simclist.h to opensc includes to be able to build OpenSC.tokend
new 596b8c3 oberthur: clean 'global' PIN reference flag when getting byte from ACL
new a6f9f02 [WINDOWS] Remove tool specific file description support resource file
new b065c70 pkcs15init: abandon Old API
new 8026eab pkcs15init: remove profile option 'keep-public-key' that was used only by oberthur
new 97ab185 pkcs15init: remove the old commented-out code
new b94d989 pkcs15init: little fix
new 6afab17 pkcs15init: remove commented-out code
new 4c34f5b pkcs15init: useless if/else construction
new 36992b4 [PC/SC] detect other events besides card insertion/removal * remove whitespace. * don't use SC_MAX_READERS and allocate memory dynamically.
new b3428a6 [tools] If started with --wait, also wait for a reader if necessary.
new b9f844c [PKCS#11] use combined constants for events
new b4a24af rutoken (S and ECP): both PINs are globals (and addition to changeset 3960, 3946)
new 314a31f [PC/SC / MacOSX] Try to connect to the card twice.
new b113b90 remove ui code from library.
new 91da321 remove log output coloring.
new de05af6 fold ui.c/h into pkcs15-init.
new 0a4c42b rutoken (S and ECP): never unblock SO PIN
new 85613b4 rutoken (ECP): add 4 DF (reserved for internal use)
new 119c775 Improved chaining for large APDU commands, by Mats Andersson and Douglas E. Engert.
new 9406ce2 Updated piv driver by Douglas E. Engert: the PIV driver no longer need to set the card max_*_size parameters to get around emulating read_binary and write_binary. It can now handle partial reads and writes.
new f1471e4 Fix bebytes2ushort function, reported by Roland Schwarz.
new dc6bc0d fix pthread include for win32/mingw compilation.
new 0e03c6d add cardmod a minidrivers for windows
new a19a966 Files generated by automake & friends are not placed in svn.
new f636cc1 cardmod - build fixups and mingw stuff
new 4d56ce2 Add a catch-all for (possibly) blank JavaCards. This way known blank JavaCards without a supported applet get recognized by opensc-tool -n.
new 3073306 Add a comment to keep javacard driver 2nd last.
new 935b074 libopensc: remove not used function
new 909953d libopensc: separate 'remove' and 'free' pkcs15 object
new b28add8 libopensc: in sc_pkcs15_object introduce the 'content' member
new b8009be libopensc: error message for success
new da83260 patch from debian bug report 470637 by Philippe Teuwen: update_binary() was not foreseen by the middleware creators of BELPIC so I added it, which allows to write some data in the MF/ID/EF(Preferences) of the card.
new f621238 AFAIK the default format is PEM, not DER.
new 485d455 Debian bug report 505396: -P is not --store-public-key, but --store-pin. I simply remove the short form "-P" for now (didn't find a good place to add it).
new 53d2993 remove useless symbol from libopensc.exports
new 0330993 pkcs15-init tool: simplify 'pristine' test - it's ok if MF, DIR or PKCS15-AppDF is not selectable
new 8161c72 libopensc: in
new 2ab30d8 libopensc: 'javacard' driver has to be the last one before 'default' -- thanks to Andreas
new 5991dfb Remove the dummy EMV driver.
new 91da9ab fix memory leak
new 22f9b29 fix memory leaks
new 42d7d22 pkcs15init profile: accept the minimal file-ids difference from GPK profile
new c4509d3 fix SIGABRT (r4028)
new 462f7ac automake gets packge name and version from AC_INIT. the old AM_INIT_AUTOMAKE syntax is deprecated now, switch to the new one.
new 3d23ea7 cardmod updates: - Add comment to opensc.conf - Use opensc log in cardmod - Minor corrections on cardmod pcsc driver
new 7098697 fix: mis-usage of 'type' (PIN encoding style) Thanks to Viktor TARASOV http://www.opensc-project.org/pipermail/opensc-devel/2010-February/013454.html
new 4395d5b MyEID: fix
new d89e637 MyEID: 'read until the end' not supported -- set maximal receiving size to 255
new 9c45262 MyEID: fix 'Activate Applet' apdu case
new 6380feb Use cardmod if explicitly request on config only
new 9bf12ba entersafe: unify cards behavior - don't throw error when erasing empty card
new ba3299b entersafe: sorry, fix
new 26f1750 entersafe: don't mix hexadecimal and decimal in code and comments
new 30924e4 PKCS15: set the PRNG flag on PKCS#15 card object even if it was not set in TokenFlags if RNG capability is reported by the low level card driver.
new d7dfa21 entersafe: fix import key RSA 2048 bits
new ac5307d pkcs15init: when updating 'OpenSC Info' file, cleanup its non-used tail part -- thanks to Xiaoshuo
new 9c964e3 pincache: implement pincache as the content of the AUTH pkcs15 object
new 128e066 pkcs11: no pincache concept at the pkcs11 level -- it's implemented at the pkcs15 one
new ef919e9 pkcs15init: 'protect-certificates' profile option not used
new e5233e7 cyberflex: no more 'protect-certificates' profile option
new 9d603a6 manpages: Clarify pkcs15-init --erase-card usage. Fix XML structure from [4012]
new ba4b02e pkcs15-init: don't suggest using --erase-card with --create-pkcs15 in help message.
new b8e921b manpages: don't install sc_* API documentation.
new edcf323 libopensc: only one pkgconfig file is required.
new e888394 Missing piece from [4055]
new 4dd6abf pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one
new 535131a pkcs15init: instead of static keycache use the pincache as a content of the pkcs15 AUTH object
new a8c4f57 Fix exports file: {{{ Undefined symbols: "_sc_pkcs15init_fixup_acls", referenced from: -exported_symbols_list command line option "_sc_pkcs15init_set_pin_data", referenced from: -exported_symbols_list command line option "_sc_pkcs15init_set_secret", referenced from: -exported_symbols_list command line option }}}
new 7b6d252 pincache: correct message for user consent PINs (it is a matter of policy not software support)
new 23b7c26 pincache: pkcs15-pin.c:515: warning: unused variable ‘i’
new 9485f16 pkcs15init: 'defined bu not used'
new 975d703 libopensc: remove unused variables
new 9a11b30 set default auth_method SC_AC_CHV for emulated cards thanks to Martin Paljak patch
new 839644b add check params; fix: pkcs15-rutoken.c:208: warning: unused parameter 'puk'
new 9e64de7 Remove openssh/ directory and our patch for openssh, as they removed the opensc code in favor or new pkcs#11 code. This new code works out of the box with opensc-pkcs11.so, so we don't need the patch any more.
new 258a867 libopensc: re-design 'sc_pkcs15_allocate_object_content' for the case when the 'new' and 'old' data pointers are the same
new adf4035 fix mistake in r4065
new 1ef975f #148: clear PIN cache in sc_pkcs15_unbind()
new 6f887e5 #185: drop opensc-config. If required, pkg-config and libopensc.pc can be used instead.
new cf4ec4a #47: C_SignRecover is not implemented at the moment, don't give any promises with C_SignRecoverInit either.
new 7a48d4a add support for westcos card with crypto component and minor renames to westcos-tool
new bb6ccdb pkcs15init oberthur: no extractable key; for generated key set reference from the key's path
new abd3a43 include: do not create link to the non-existing ui.h
new dbd315c profile: 'cbs' member of 'struct sc_profile' is not used
new 70ee7c1 pkcs15init: in sc_pkcs15init_add_object() if DF update fails, remove object from the list before return
new de6649f pkcs15init asepcos: fixup initialisation with protected profile
new 02c35be asepcos: 'trasport PIN' (global PIN with reference '0') is presented as 'AUT' key
new 0bb56af pkcs15init: no more need for static keycache
new 1bd07ba pkcs15init profile: syntax error can provoke segmentation fault
new d22a248 Header file cleanup.
new 5d08b13 pkcs15init asepcos: unused variables
new 21acf3e pkcs15init profile: fix indexed instantiation of pin/key domain; more of debug messages
new de3e6ae pkcs15init: prepare instantiation of the pin-domain templates
new 0e8e1a1 pkcs15init cflex: fix protected initialisation
new 3a424cf pkcs15init: dummy object is not needed for the sc_pkcs15_find_XX() procedures; coding style issues
new 26dc34c libopensc: add structure name to the 'typedef structure' definitions
new aff7b55 pkcs15init: homegenize pin reference type in a different structures; remove unused parameters in the internal procedures;
new bd93c92 win32/Makefile.am:1: whitespace following trailing backslash
new c837196 libopensc: homogenize name of 'struct sc_pkcs15_card' parameters and variables
new 995dda7 internal.h must be before winreg.h include, and change path for include log.h in cardmod.c
new 8e8ee64 add windows.h include to ctx.c to satisfy dependencies and move internal.h include at end of includes
new 93210ea pkcs15-tool: add 'verify-pin' option" src/tools/pkcs15-tool.c
new 54d2b20 pkcs11 framework: change prototype of the 'login' method
new e47baea pkcs11: configuration option to report as zero the CKA_ID of CA certificates
new 3a2f041 libopensc emu: postponed object loading
new 6cb0c93 pkcs11: configuration option to report as zero the CKA_ID of CA certificates
new 0027a21 libopensc emu: sorry, fix
new b6cd025 pkcs11 framework-pkc15: at user login try to do the postponed private keys load
new ffab538 oberthur: pkcs15 emulator for the native cards
new 9961fa2 libopensc: add oberthur pkcs15 emulator to Makefile.mak
new 91230bd there is no ui.h any more.
new 052881c libopensc: in pkcs15 PIN commands 'pin_info' parameter replaced by 'pin_object'
new af1bf44 framework-pkcs15: fix
new c3de15d westcos card small fix
new 72a9d8e pkcs15-init: sign key usage shortcut does not expand to non-repudiation.
new f9b27b1 pkcs15-tool: 'pkcs15_pin_info' parameter replaced by 'pkcs15_object'
new 172d710 oberthur emu: create pkcs15 object for SOPIN; accept non-initialized token; use 'define' macros for the native file paths
new 22f0678 libopensc emu: more general implementation of the postponed DF parsing
new 8b15f0f pkcs15init: sc_pkcs15_add_df() has no more 'handler' parameter
new c1bb3ae compile tools with PTHREAD so we can debug them in GDB.
new 5bc11ac Redirect output to file given by "--output" / "-o" option. Closes bug #200.
new 02768fb remove "split-key" option and emulat sign for sign,decrypt keys with padding and decrypt() for cardos.
new e5300b1 fix #199: to authenticate 'update' in sc_pkcs15init_update_file() use the file instantiated from profile, rather then selected one
new 6b1a842 clean libopensc.exports (2 functions removed)
new da9aa43 fix second part of #199: pkcs15init: when freeing pkcs15 object remove it from list
new 0fdb447 On blank, but otherwise perfectly supported card, we get an error here (with "Unsupported card"). This needs to be improved.
new 6545b42 cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug.
new c74016b fix #202: pkcs15-tool: print message when there is PIN verify error
new 921a2cc Start documenting changes and increse libary version (we are no longer compatible with 0.11.* line).
new 5972022 Add code to write pubkey objects to pkcs11-tool. By: Jaroslav Benkovský <jaroslav.benkovsky at nic.cz>
new 84934ad don't complain about missing "--slot" parameter, when you don't need it (if you only "--list-slots").
new fb45d89 pkcs15init: simplify internal API
new 5bba49e oberthur: in card profile set 'do-last-update' to 'false'
new 69a2fb1 oberthur: in profile do not use 'combined' pins in ACLs
new e0f39c5 pkcs15-init tool: make possible pin verification immidiately after card was binded
new a17e519 pkcs15-tool: 'verify-pin' is not an action
new e214ba2 pkcs15init: emulation API
new 5eba20e pkcs15init emulation: use emu_update_tokeninfo() if available
new 965ecbf pkcs15init: pkcs15 card flags
new 8419f95 pkcs15init: in pkcs15-init.h, for the function prototypes, homogenize using 'struct *' vs. '*_t'; do not use paramters name
new ecbe32f pkcs15init: fix pkcs15-init.h
new 7d6739f pkcs15init: in pkcs15-init.h don't use parameters name in the function declarations
new ef8e169 pkcs15init: use encoded public key as the 'content' of private and public key pkcs15 objects
new 0c9b9f2 pkcs15init: free cert object if 'link object' failed
new 42b90f8 pkcs11-tool: to be compiled without OpenSSL
new 0f82c7c oberthur: pkcs15init emulator
new 9b72b24 oberthur: forgotten header file
new 0608713 oberthur pkcs15init: use macro for debug level
new 07a0f74 man: in pkcs15-tool man page add 'list-data', 'read-data' actions and update 'list' private objects
new ed8e498 doc: in pkcs15-init.xml add usage case for '--verify-pin' option
new f75f539 libopensc: export 'sc_asn1_encode_object_id'
new 7106674 oberthur pkcs15init: support for creation of the 'public' DATA objects
new c63225c oberthur pkcs15init: non-install header; join pkcs15-oberthur-awp.obj to object list for win32
new c891886 oberthur pkcs15init: sorry, fix
new 9b73e45 Fix westcos-tool.c:322: warning: no previous prototype for ‘usage’
new 8dd1590 Fix p15emu-westcos.c:248: warning: no previous prototype for ‘sc_pkcs15emu_westcos_init_ex’
new 815baad Fix pkcs15-esinit.c:77: warning: no previous prototype for ‘sc_pkcs15emu_entersafe_init_ex’
new 385c5da Fix pkcs15-pubkey.c:445: warning: no previous prototype for ‘sc_pkcs15_decode_pubkey_gostr3410’ pkcs15-pubkey.c:462: warning: no previous prototype for ‘sc_pkcs15_encode_pubkey_gostr3410’
new 1eb944e Fix pkcs15-oberthur-awp.c:1246: warning: no previous prototype for ‘awp_set_data_info’
new 6973403 Fix pkcs15-oberthur-awp.c:729: warning: no previous prototype for ‘awp_update_object_list’
new 5914be4 Fix pkcs15-lib.c:799: warning: no previous prototype for ‘sc_pkcs15init_store_puk’ pkcs15-lib.c:2814: warning: no previous prototype for ‘get_pin_ident_name’
new 10bcef9 Fix simclist.c: In function ‘list_meter_int8_t’: simclist.c:1337: warning: unused parameter ‘el’ simclist.c: In function ‘list_meter_int16_t’: simclist.c:1338: warning: unused parameter ‘el’ simclist.c: In function ‘list_meter_int32_t’: simclist.c:1339: warning: unused parameter ‘el’ simclist.c: In function ‘list_meter_int64_t’: simclist.c:1340: warning: unused parameter ‘el’ simclist.c: In function ‘list_meter_uint8_t’: simclist.c:1342: warning: unused parameter ‘el [...]
new 05dd36d Fix test-conf.c: In function ‘ldap_cb’: test-conf.c:32: warning: unused parameter ‘depth’ test-conf.c: In function ‘card_cb’: test-conf.c:60: warning: unused parameter ‘entry’ test-conf.c:60: warning: unused parameter ‘depth’ test-conf.c: In function ‘write_cb’: test-conf.c:81: warning: unused parameter ‘depth’
new 5ae0d01 Fix parse.c: In function ‘scconf_item_find’: parse.c:80: warning: unused parameter ‘key’
new ecae106 Fix warning: missing initializer
new 30b7888 Remove unused variables. Fix warning: unused variable
new f66a1cc Fix pkcs15-westcos.c:41: warning: redundant redeclaration of ‘sc_check_sw’ ../../src/libopensc/opensc.h:674: warning: previous declaration of ‘sc_check_sw’ was here
new 10bf1fc Fix pkcs15-oberthur.c:61: warning: redundant redeclaration of ‘cosm_delete_file’ pkcs15-oberthur.h:93: warning: previous declaration of ‘cosm_delete_file’ was here
new 35036bc Fix pkcs15-oberthur.c: In function ‘cosm_write_tokeninfo’: pkcs15-oberthur.c:94: warning: format not a string literal and no format arguments pkcs15-oberthur.c:96: warning: format not a string literal and no format arguments
new 2e4610e Use a "const char *" to store a const C-string ptr. Fix pkcs15-oberthur-awp.c:97: warning: assignment discards qualifiers from pointer target type pkcs15-oberthur-awp.c:98: warning: assignment discards qualifiers from pointer target type pkcs15-oberthur-awp.c:99: warning: assignment discards qualifiers from pointer target type [etc...]
new 425efc9 Use a "const char *" to store a const C-string ptr. Fix card-piv.c: In function ‘piv_get_data’: card-piv.c:612: warning: assignment discards qualifiers from pointer target type card-piv.c:615: warning: assignment discards qualifiers from pointer target type card-piv.c:618: warning: assignment discards qualifiers from pointer target type card-piv.c:621: warning: assignment discards qualifiers from pointer target type
new 652ef32 revert changes 4154 and 4155 as suggested by Martin Paljak
new df96df3 Remove useless key argument from scconf_item_find()
new 24b2d23 westcos_pkcs15_create_pin(): use a temporary variable to not lose negative values (errors)
new 2b57fea Use a temporary variable to not lose negative values (errors)
new cd89cb3 Use a "const char *" to store a const C-string ptr.
new 0c60be8 Use a "const char *" to store a const C-string ptr.
new bdd4477 Fix sc-pkcs11.h:328: warning: function declaration isn’t a prototype
new 227cb82 Fix slot.c:234: warning: function declaration isn’t a prototype
new bcba5c9 Fix slot.c:151: warning: ‘p11card’ may be used uninitialized in this function
new 66fc414 Fix framework-pkcs15init.c:175: warning: initialization from incompatible pointer type
new 5be62d9 Use a "const char *" to store a const C-string ptr.
new 6add573 Do not cast to a possibly different type size. Would fail on PowerPC in 64-bits for example.
new cb5dd59 Use a "const char *" to store a const C-string ptr. Fix a lot (162) of warning: initialization discards qualifiers from pointer target type
new 3f30d90 Use a "const char *" to store a const C-string ptr. Fix a lot (31) of warning: initialization discards qualifiers from pointer target type
new 6946e51 Fix piv-tool.c:216: warning: suggest parentheses around comparison in operand of |
new d24de6a Fix piv-tool.c: In function ‘load_object’: piv-tool.c:130: warning: implicit declaration of function ‘sc_asn1_find_tag’ piv-tool.c:130: warning: nested extern declaration of ‘sc_asn1_find_tag’ piv-tool.c:130: warning: cast from function call of type ‘int’ to non-matching type ‘u8 *’ piv-tool.c:130: warning: cast to pointer from integer of different size
new cf8a7f8 use a (const char *) for the reader_id and fix 2 warnings
new 4ce1e8c Rename parameter wait in do_wait
new ad648c4 Use the correct type (const_DES_cblock *) instead of (const_DES_cblock) for DES_ecb_encrypt() input and output parameters.
new 7d782f6 Link libpkcs11 to $(LTLIB_LIBS) since the lib uses ld_dlopen(), etc.
new 502db6b Do not cast a pointer to a type of possibly different size. Would fail on PowerPC in 64-bits for example.
new cb5a21c Use a temporary pointer to avoid a pointer cast.
new 30d4341 Add missing (optional) initializer
new d67f3f9 Use the correct integer type.
new e61f596 Fix r4182, LIBS must never go into LDFLAGS
new 4eaba6b muscle profile: keep default ACLs for the 'DIR' file
new 8323182 Remove leftover from r4113, allow easy side-by-side comparison
new 629aef2 Use an argument to cardos_format()
new a61f619 Fix logic in pkcs15-tool/pkcs15-init -v
new cd83821 Don't use sc_debug in src/tools/*, use fprintf(stderr) instead.
new d1d47d4 Fix #198: set correct access flags to private keys
new 5957c7a Fix a line ordering error.
new ad1ddda use explict field names in the static initialisation to make it more robust to code change
new 8876457 use (const char *) as return type to avoid compilation warnings:
new 0f32e86 declare a variable (const char *) to fix compiler warnings
new a3aa685 Use explict field names in the static initialisation to make it more robust to code change
new de2b498 setcos_generate_key(): use size_t instead of int to fix a compiler warning
new 4c6b6f9 Fix pkcs15-entersafe.c:200: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:201: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:202: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:203: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:204: warning: initialization discards qualifiers from pointer target type pk [...]
new 28a2ed6 Fix pkcs15-myeid.c: In function ‘myeid_new_file’: pkcs15-myeid.c:321: warning: assignment discards qualifiers from pointer target type pkcs15-myeid.c:323: warning: assignment discards qualifiers from pointer target type pkcs15-myeid.c:325: warning: assignment discards qualifiers from pointer target type pkcs15-myeid.c:327: warning: assignment discards qualifiers from pointer target type
new 8822668 Use size_t instead of int to fix a compiler warning
new 8f6317b Use size_t instead of int to fix a compiler warning
new d4b1438 Rename variable rand in rand_buf
new 2820f78 Fix pkcs15-oberthur-awp.c: In function ‘awp_encode_data_info’: pkcs15-oberthur-awp.c:1211: warning: implicit declaration of function ‘sc_asn1_encode_object_id’
new 379519e Revert r4191 "Fix logic in pkcs15-tool/pkcs15-init -v"
new 0c77a52 Remove 2 ugly casts and fix warnings
new e0bf75f Do not cast a pointer to a type of possibly different size. Would fail on PowerPC in 64-bits for example.
new 0500ef6 Do not cast a pointer to a type of possibly different size. Would fail on PowerPC in 64-bits for example.
new a2ff157 Rename variables and parameters
new 70b649e Use (const char *) for static C-strings
new f8fa636 Do not use a type of possibly different size. Would fail on PowerPC in 64-bits for example.
new a3177b7 Use explict field names in the static initialisation to make it more robust to code change
new 741d8fc pkcs11-tool: #75: key for signature can be selected by object_id
new f9eb1b3 pkcs15init: for the newly generated key object set public key as it's content
new 1c7aefe pkcs15init: corrent debug messages
new d3652eb pkcs15init: no more 'keycache' sources
new 523d529 pkcs15init: no more 'keycache' sources
new d3068f5 libopensc in win32: no more ui.h
new a31be95 libopensc in win32: no more ui.h
new 64d05bb compile for win32: fix
new 5b40b0e pkcs15-tool: Remove a redundant sc_lock/sc_unlock pair
new 7720f37 eidenv: remove a redundant sc_lock call, already done in util.c
new 9361c95 pkcs15-crypt: remove useless #if 1
new 119546e cryptoflex-tool: use the code in util.c to connect to the card.
new c73aaf9 pkcs15-tool: fix help text, reader must no be a number
new f161552 netkey-tool: The tool is included in OpenSC, no need to have a compilation tip in the file header.
new 57c38d9 cryptoflex-tool: remove dead code.
new f63e2ee cryptoflex-tool: remove dead code from 2002
new 349b31e westcos-tool: fix header, the file is .c not .exe
new 847f162 docs: the correct name is cardos-tool
new 75df8e9 piv-tool: remove dead code.
new a20fa13 pkcs15-init: remove dead code
new be43ca7 Remove cardos-info (renamed to cardos-tool in 2008)
new dac2157 card-incrypto34: Remove dead code
new 7ec26d7 JCOP/BlueZ: remove unused code
new 3d6eaca pkcs11 for win32: add source for display functions
new 801fdce pkcs11, libopensc, pkkcs15init: not use C99 designated initializers
new f3e3dc9 common for win32: add simclist
new 2e5b3c5 common for win32: to be compiled
new 9396297 libopensc for win32: to be compiled
new ad02078 libopensc for win32: get working logging when compiled with Visual Studio
new 2fdfe25 pkcs11: Christian Hohnstaedt's patch: convert CKA_LABEL to the null-terminated pkcs15 label
new d10effd libopensc: fix #209
new 7a0578c set_cka_label(): remove a possibly invalid memory access
new 7813ba7 doc: update 'opensc-explorer' documentation
new ce485e4 pkcs11-tool: fix #124; thanks to Thomas Harnings: for the signature tests cannot be used private key without corresponding public key or certificate
new f757587 pkcs11-tool: useless assignment
new d0618ba tools: #120: 'getpass' sensible to Ctrl-C, thanks to Andreas
new 238ebeb fixed incorrect IDs of SigG-PINs from 6,7 to 5,6
new a10bf0e pkcs11-tool: #120: use 'getpass' sensible to Ctrl-C, thanks to Andreas
new 3c813ce pkcs15-init tool: use Ctrl-C sensible 'getpass'
new 0004461 oberthur: add in emulator and create in pkcs15init the private data object
new 07c98da pkcs15-init: #101: use PIN object's label in the PIN prompt
new be36706 emulator fix #125: thanks to Thomas Harning: emulator specific 'clear' handler
new a38e931 doc: little fix of opensc-explorer.xml
new 83ca335 cflex pkcs15init: use temporary PINs that satisfy default pin policy
new b7d492f pkcs15-init tool: with the new option 'use-default-debug-settings' the debug settings from opensc.conf are used
new 1966822 fix 201: thanks to Christian Hohnstaedt: delete objects in pkcs11
new 3484166 fix #118: thanks to Andreas: list algorithms in opensc-tool
new 8f4ee1b pkcs15init: fix #96: more details for the load profiles error
new 0400a2d pkcs11: make possible context dependent 'sc' to 'cryptoki' error conversion
new ba04831 sc_to_cryptoki_error(): check for the validity of ctx outside of the for loop to make the code more natural
new aa4d951 Support for CardOS 4.4
new 06f5b0b pkcs15init: when updating certificate and when there are no ACLs in FCI of selected file use default ACLs from the card profile
new 122d357 tools: thanks to Ludovic; check for getline() in configure.ac and use 'HAVE_GETLINE' macro in get password procedure.
new 25fa645 pkcd15-tool: use local 'getpass' procedure
new 7d5b34d tools: thanks to Andreas; for win32 'get password' procedure uses _getch() instead of getchar()
new 71598ad r4208 breaks key unwrap. pkcs11-tool -tl gives an error and mail can not be anymore decrypted (tested with Thunderbird).
new b6fb4ff Change in r4269 is not correct since sc_pkcs1_strip_02_padding() returns an int and not a size_t The new code is also simpler
new d5f201b pkcs15init: in sc_pkcs15init_update_file() take care about file selection errors
new f17ca0f tools: in local 'getpass' procedure getline() is not used any more
new f505d4f pkcs15-init tool: remove blank line after PIN was prompted
new ac41eba win32: merge the branches/vtarasov/opensc-sm.trunk
new 140f3d0 liopensc: fix debug message
new 9e74991 Add cardmod pcsc protocol detection
new 0ad7704 westcos pkcs15 emulate certificat or public key not both
new 922d7cd add TODO comments
new e63d12b replace spaces by tab
new a4df57e --wait option don't need argument
new 5ae92eb clean some code and use more opensc standard
new ed26525 update westcos-tools documentation with new options
new 6f1683d wetcos-tools: add util.c to compile.
new 39642a5 in feitian profile set 'local' flag for the User PIN
new ed61051 plcs11: set default value for 'lock_login' to 'true' as it' stated by the commets in opensc.con.in
new 46def8b fix: loading openssl engine with GOST algorithms
new bfa340b MuscleApplet: remove useless card detection flagging, don't call the default driver init operation.
new 290d1cb Muscle: use MuscleApplet as the name of the card as well as driver
new 98037b7 MuscleApplet: Detect MuscleApplet specific SW-s; re-organize the source a little.
new ffc9f8e pkcs11: by default do not lock login
new 99c51c6 libopensc: do not invalidate card cache in sc_unlock()
new e237561 pkcs15init: when verifying PIN, if no value supplied, try to use pin pad
new d9b0d64 libopensc: in sc_pkcs15_verify_pin() if no PIN provided try to use pin pad
new 73c516a pkcs11: resolve 'endless polling' in C_WaitForSlotEvent()
new 2d37223 fix: Rutoken S: no need to reserve 5000 bytes for AppDF (pkcs15.profile: size = 5000)
new fec213a pkcs11: DER encoded value for CKA_SERIAL_NUMBER
new fff1963 pkcs15init: do not reuse existing file when storing object data or updating certificate
new 78d6bc4 pkcs15init: fix undeclared variable
new c5c649e fix: memory leak
new a91e771 fix: memory leak - next object missed out to release
new 0f74f69 fix: memory leak (but see FIXME)
new 15d5147 fix: SIGSEGV
new a4e3273 Rutoken S: add 'aid' to profile (for '-init --create-pkcs15 --so-pin 87654321 --so-puk -p rutoken+small')
new 68f12c8 Fix a segfault leftover from r4118
new 6f52711 CT-API: Fix the mess left from broken [3931] and some pieces from [4118].
new 073ad7a Fix #223: implement ctbcs_build_modify_verification_apdu.
new 7f3f6de fix: 'openssl: double free or corruption' (load gost engine before loading engine_pkcs11 (which loading gost engine))
new 06028a7 fix: openssl (lock_dbg_cb): already locked (mode=9, type=30) at eng_list.c:360 openssl (lock_dbg_cb): not locked (mode=10, type=30) at eng_table.c:186\
new 127136c tools: Mac OS X 10.5 uses OpenSSL 0.9.7 which does not include SHA256 support. Fix building for 10.5.
new f9daf30 cardos-tool.c can be now compiled with OpenSSL 0.9.7 (SHA256 checksum verification is replaced by SHA1)
new ce0645d Fix compilation without OpenSSL
new 8737ace Entersafe: the default profile should have local PIN-s
new 14d82f9 Documentation: there is no external API, remove the manpage generation.
new a1c77b9 Entersafe: cache the presented PIN on personalization, simplify the code a bit.
new 268e627 MuscleApplet: Don't set the file ID as the name of the file. It is redundant and does not look nice.
new 3d511b8 MuscleApplet: Check for protocol version to be forward-compatible. Remove some whitespace. Remove support for <1024b keys.
new 3cfc64e style: // -> /* */
new 0d01cb1 Rename p15emu-westcos.c to pkcs15-westcos.c
new eab7ade pkcs11-global.c: In function ‘C_WaitForSlotEvent’: pkcs11-global.c:624: warning: unused variable ‘ii’
new e6803d9 Use CK_RV (defined as unsigned long) instead of int for the type the return code of C_* functions
new 4861568 style: // -> /* */
new 02f4507 pkcs11: Patch from Andre Zepezauer to remove max_virtual_slots allocation.
new bfe5b4a style: space -> tab
new ea7a0ac pkcs11: move the slot list size check to slot creation.
new df64d39 westcos-tool: remove compiler warnings
new d61e7b5 OSX: For Tokend, set the debug file by default to /tmp/opensc-debug.log
new d40da98 Revert "pkcs15-init tool: with the new option 'use-default-debug-settings' the debug settings from opensc.conf are used"
new bcc4500 pkcs15-init: only override --verbose to ctx->debug if it was set on command line.
new bd5c186 pkcs15/pkcs11: encoding of certificate's attribute 'serialNumber'
new e267832 Assuan is not used.
new 765ea98 tools opensc-explorer: for 'apdu' command accept space separated hexadecimal data
new 2883c17 pkcs15init: homogenize argument order of pkcs15init operations
new ae14336 pkcs15init: create frame to implement card specific 'sanity check' procedure
new 1d82e8a re-distribute 'define' macros between types.h and opensc.h
new f18ba7d pkcs15: decode 'supportedAlgorithms' in 'TokenInfo'
new f85b625 pkcs15: correct the comments
new b78d763 pkcs15: encode/decode 'subjectName' in 'CommonPrivateKeyAttributes'
new 1090d19 #60: pkcs11-tool: print key sizes from CK_MECHANISM_INFO
new b7e25bb Fix MuscleApplet version detection
new 3a3c41a pkcs15: encode/decode 'AccessControlRules' in 'CommonObjectAttributes'
new 3ea6b28 #229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags'
new 006c30c #245: pkcs15 asn1: 'subjectName' in 'commonPrivateKeyAttributes' is optional
new 764c1d9 minors log message corrections to build successfully.
new 13a42de pkcs11 tool: fix messages
new 578bbd2 man: use --auth-id instead of bogus --pin-id in pkcs15-tool man page. [Ludolf Holzheid]
new 002843c pkcs15-init: fix help text ordering (Ludolf Holzheid)
new 11dc9ba cardos-tool: fix handing of --help/--verbose/--debug
new 5c2c12b Trac #244: Fix structure packing on Apple and SUN. Fix display detection by updating structure definitions.
new a8c438f configure: Add possible docbook paths on OS X (Fink, MacPorts)
new c7a99c2 Use || instead of | in a #if check
new 7ac66ae Correctly use pin2 when needed. Patch from OpenSUSE.
new 9f639f4 Add back MAX_ATR_SIZE which was erroneously removed in r4611. Fixes mingw32 build.
new 409284e opensc-tool: Fix ACL reporting for EF-s. Patch by Emanuele Pucciarelli.
new a938d3b Implement simple reader ignoring, to exclude readers from OpenSC PKCS#11 module.
new fde87a8 pkcs11: remove outdated config entry parsing.
new 947c329 Use SCARD_READERSTATE instead of SCARD_READERSTATE_A
new 71cdef0 New card driver: Italian CNS/CIE (eID)
new 484d484 PC/SC: Fix building on OS X and mingw32 after r4626
new bb8b2d5 itacns: add itacns.h to distribution targzip, fix card driver ordering.
new b1ff1ab Fix and change ignored readers feature introducsed in r4626 for Windows. strcasestr is GNU specific extension.
new 31d1a55 Use (SCARD_READERSTATE *) instead of LPSCARD_READERSTATE since LPSCARD_READERSTATE is not define in old pcsc-lite (< 1.6.3) nor Mac OS X
new acd062e Avert potential buffer overflows in pkcs15-itacns.c
new 96df880 Prevent card-incrypto34.c from catching the Italian CNS card's ATR
new b279287 strlcat(3) implementation
new d37dd91 Use strlcpy(3), strlcat(3) in pkcs15-itacns.c
new f47416d Do not cast the return value of malloc(3) and calloc(3)
new 4e726bd Fix and document opensc-explorer's new -m, --mf option
new fd396a0 Refactored the "select the file referenced by current_path; die on error" idiom in opensc-explorer.
new 5990d26 If a FCI features tag 84h, then the file is a DF
new cba47b3 Only free current_file if it is set
new 6474853 Support reading record files by SFI
new c235f93 EstEID: sc_format_path sets SC_PATH_TYPE_PATH by default
new 2b1a8b5 build: don't check for unused functions and headers.
new 98255b1 libopensc: Fix SC_ERROR defines and messages: remove unused error defines, fix the internal value of some PKCS#15 related errors.
new 1f73d32 libopensc: Remove unused internal SC_ERROR_EXTRACTABLE_KEY and correct relevant comments (native != extractable)
new 9a63e03 pkcs11/pkcs15-init: remove automagic software key generation. Remove software based secret key handling from PKCS#11.
new 4f03502 pkcs11: check PKCS#11 function parameters for obvious errors and return CKR_ARGUMENTS_BAD early without locking the module.
new a3d02dd CT-API, PC/SC: truncating atr_len makes no sense.
new 5f518a9 Update OpenSC.tokend related default config file entries.
new 4cbe694 Add build script for Mac OS X. Uses github copies of SVN for source.
new 543f2fa Update NEWS for 0.12.0
new cd01ad0 pkcs15init: On Windows, get the profile directory from registry instead of configuration file.
new c5d1863 build: add installer files and a small script to build a win32 installer from build project binaries.
new ed589fe add ATR for Rutoken ECP (DS)
new a7191a9 Revert CardOS change from Italian CNS patch [4627].
new b4f9ac4 pkcs15-init: fix leftover from [4646]
new 1bd7e5d MacInstaller: Add .bundle generation capability from SCA. Thanks to Jean-Pierre Szikora for the reminder.
new 0285264 #73: pkcs15-tool: when changing PIN, print message if no PIN value supplied
new 8d3a1bc libopensc: remove the "etoken" alias for "cardos" cards.
new fc4dff1 Debian #451155: Document pkcs15-init --update-certificate/-U in man page.
new 12a1e9d pkcs15: don't override TokenInfo PRNG flag. pkcs11: announce CKF_RNG if the card driver supports it, bypassing PKCS#15.
new 8c9666d pkcs11: C_SeedRandom is not implemented by OpenSC nor most smart cards, nor does it fit well into PKCS#15 concept.
new 15b6f29 Whitespace fix
new 5e3f7b1 Whitespace fix
new befff1b libopensc: PIN usage counter is decreased every time it is sent to the card, no matter what the card replies (should probably reply with success)
new b04a1ef EstEID: small fixes for working with a modified max_send/recv_size
new 27ed902 Add a FIXME for keys>2048b
new 07ab2a2 Ticket #226: Initial changes as noted by reporter
new 59a3897 opensc.conf: Better comment for max_send/recv_size meaning and default values.
new 241d3b5 libopensc: improve max_send/recv_size related code comments.
new 9acc8c4 pkcs11: #250: update slot PIN flags when verifying slot's auth object
new 4697cc3 libpkcs11: Print error messages from PKCS#11 module loading
new 2d32947 Style: // -> /**/
new b99d420 manpages: #102: --change-pin also works for a PUK code.
new 4957794 Fixup for #102: also in command help.
new f5ef30b Pass SFI as an appropriately-sized number
new fbf1d62 Remove unused give_random operation
new 8697b4c Fix signedness warnings in card-itacns.c
new f70d4ac Squelch warning about unused se_num argument in itacns_set_security_env(), as the driver is computing the right argument from the security environment data.
new 31e6602 Remove unused variables and constants from pkcs15-itacns.c
new 223d5e1 Fix signedness issues in pkcs15-itacns.c
new 0fe106e libopensc: in a supplement to r4668
new 2db473a libopensc: export 'sc_card_find_rsa_alg'
new 741b8c3 libopensc: supplement to the previous commit
new 602d170 libopensc: pkcs15: more of debug messages
new ec6bb98 MyEID: For Aventra card applied Toni's patch, enriched by Andre's proposal
new 2f440e6 pkcs11: Remove the comment about max_tries==1 and CKF_USER_PIN_FINAL_TRY Assuming the driver has correctly set max_tries to 1 then PKCS#11 is very clear about it: """ True if supplying an incorrect user PIN will it to become locked. """
new f085a9b libopensc: add SC_PIN_CMD_GET_INFO and related fields to sc_pin_cmd_pin
new 54c67f1 EstEID: style: use sizeof()
new 362a907 Micardo: Add SC_PIN_CMD_GET_INFO support, currently only for EstEID cards.
new 7a66f4e pkcs11-tool: recognize user PIN related token flags
new 93da225 pkcs11: #250: refresh PIN counters and associated token flags on every call to C_GetTokenInfo
new 3d988ee MyEID: make working change/unblock PIN
new 6c156e2 MyEID: remove no-op ISO7816 wrappers and not implemented stubs.
new 3ab9245 card-jcop: remove dummy stubs.
new d994bb8 Micardo: remove redundant mcrd_decipher. Handled by ISO7816
new f9026bc EstEID: Fix #250. Force a SELECT FILE by cheating on the internal micardo path cache.
new 5dc3ffe On MacOSX, we need to delete the receipts too, after deleting the application files.
new 525bf73 MyEID: use ISO7816 pin_cmd. Fix card_state logic.
new 10fe6e4 MyEID: force PIN padding properties (already set by sc_pkcs15* but not present with opensc-explorer)
new be6d4d0 Fix small log issue
new ffdad69 Avoid mixed declarations and code in ItaCNS files, per C90
new 8bb0ab6 MacOSX 10.5: Install libltdl.3.dylib if needed
new cb92f7b MacInstaller: Simplify file detection
new ac0a8db remove software RSA support for Rutoken S
new a5ca648 Revert r4668. Change the way limitations on max send and receive sizes are set.
new 01c3bde Belpic: remove BELPIC_SET_LANG and related code, as it is not used in OpenSC
new 0858a5c libopensc: remove SC_MAX_READERS which is not used.
new 72d961b Fix #216: initial go with multiple reader subsystem removal. * One sc_context has only a single reader driver. * remove dynamic reader driver loading capabilities * remove opensc-tool -R command * change the internal API, we don't need to pass around a "driver data" pointer as it can be found directly from the context. * check in ./configure for only a single enabled reader driver
new 8c1bcea libopensc: remove unused SC_MAX_READER_DRIVERS
new 0f78912 libopensc: fix "ctx.c:389: warning: unused parameter ‘opts’"
new 89d5bcf whitespace fix
new 36705f8 Add missing piece from r4706.
new cae16b6 By default the reader driver does not have receive/send limitations.
new 19df2c8 MyEID: to be compiled with Visual Studio
new 8aa2a64 opensc tools: to be compiled with Visual Studio
new ec2befb build: add --disable-assert (enabled by default)
new 36ef464 MacInstaller: simplify ./configure calling, disable assert-s
new 767e5dd MacInstaller: fix syntax error
new fc5b3e5 EstEID: buffer is 2 bytes bigger than max Le.
new 39311cb libopensc: check for unset max_recv/send_size in all places.
new 4a547b6 libopensc: Don't touch TokenInfo.flags->loginRequired
new 63dafb8 Remove the traces of C99: declare variables before any code.
new 53c3c48 MacInstaller: statically link libltdl for 10.5, as 10.5 PPC comes without the necessary .dylib (i386 has it)
new 215b3fc pkcs15-tool: pretty-print common object flags.
new 09fb446 pkcs15-tool: only print Auth ID if present
new a404370 pkcs15-tool: harmonize and align the output of --dump
new 43ee9f6 build but do not install compat_getopt_main
new 9bdbaf4 include compat_getopt.h instead of getopt.h
new 4630f1c VERSION is already defined ni config.h included by compat_getopt.h Redefine our own version of VERSION
new 96a2568 Remove an ugly cast and fix a compiler warning
new 2085126 Use "const char *" instead of "char *" where needed.
new 2dff969 pkcs11-tool: better separation between opaqe slot IDs and slot list indexes.
new 50952cd pkcs11-tool: cleanup whitespace and remove unused OpenSSL ERR_* calls.
new 294a8bc pkcs11-tool: pkcs11-tool --verbose does not affect OpenSC debugging. Document a workaround
new 528b7ae pkcs11: move around CKR_ARGUMENTS_BAD check
new 01931d6 pkcs11-tool: do --test even without a slot, at least hotplug. print a proper error name for C_GetSlotInfo
new 3202355 pkcs11-tool: print the token before asking for a PIN code; shorten CKU_CONTEXT_SPECIFIC prompt
new 659db6f Fix: default count of attempt (use profile) for new version firmware
new 92b87a3 Update NEWS. Remove references to local wiki dumps and an outdated online page.
new 652a180 opensc-explorer: to use AID of maximal allowed length in 'cd' command
new 6ff0f85 build: remove ancient and unsupported platform checks, added in [94]
new 2a3fcf3 MacInstaller: simplify configure arguments
new 239de7b libopensc: remove 'max_xx_size' from debug message
new dd6c900 build: darwin specific customizations not needed, need_dash_r for solaris not used.
new dc3b1d0 pkcs15init: homogenise line ending of debug messages
new 573a1de Allow c_FindObjectsInit to find unlimited objects - #258
new 10a5d1b Fix #257 Reading partial objects differs for T=0 vs T=1
new 1a5b898 Another max_recv_size fix
new 3bb5c9f allow pkcs15-itacns.c compile without OpenSSL
new 7ef766b Fix issue in log message in cardmod with i386-mingw-gcc v 3.4.5
new f339f9b pkcs11-tool: only do hotplug testing before other activities.
new 391ec96 Remove max_recv_size checks
new e9d1f10 PIV support for NIST 800-73-3 objects, PIV driver client can build and run without OpenSSL, (admin functions and piv-tool still need OpenSSL) define PIV specific ctrl codes and structures.
new 10a99dc myeid: remove windows line ending
new 58c1c88 libopensc: homogenise line ending in the debug messages
new 6ebd493 Don't dump wiki content into distribution package.
new 517878d myeid: applied patch for MyEID card profile
new af6a246 MacInstaller: allow building a x86 only version for 10.5
new 0050a4b MacInstaller: prefer http over git.
new a71b64f Fix erros with freeing algorithm parameters and last entry of the algorithm_table.
new 283ac67 pkcs11-spy: log matching objects in hex. Patch from Andre Zepezauer
new b060049 opensc-tool: don't print reader driver (only one is enabled by default), instead print the presence of a card.
new ebdc924 PC/SC: move reader feature detection to a separate function. Don't detect features of a reader that is in exclusive mode.
new 75a1019 PC/SC: simplify reader state detection.
new c511568 libopensc: remove meaningless sc_card_valid()
new 192de41 libopensc: remove unused SC_CTX_MAGIC define
new 14752f0 Remove now unused variables.
new 50f99a2 libopensc: move TokenInfo fields from sc_pkcs15_card_t to a separate structure.
new f5a21e4 pkcs15: don't play with TokenInfo.version. 0 means PKCS#15 v1.1. The flag is not used by OpenSC.
new 36f1fbb Add new ATR for the Portuguese eID card.
new 8a19033 Simplify build system, remove the generated distributed files.
new ace8d25 Update svn:ignore
new 19da5d8 WindowsInstaller: Fix Mingw32 Windows build
new dcd0772 WindowsInstaller: simplify the installer creation process
new dfe8a01 Fix leftover from r4646
new 61572d5 WindowsInstaller: be flexible with make dist result name.
new 4a79acd Prepare for OpenSC 0.12.0-rc1
new 6410da5 PC/SC: better detection of card changing events.
new 233ea02 doc: Remove wiki links from README
new 0d96b3c oberthur: from the common part remove the Oberthur specific tokenInfo flags
new fad0116 pkcs11-tool: if no slot is specified on the command line, try to locate a slot with a token.
new 364ba48 pkcs11-tool: handle non-recognized tokens gracefully.
new 6b4cb93 Fix #253 - Allow caller to read a partial object by returning all that was read. Related to #257 which fixed a different path in apdu.c
new 0f2a44b sc_pkcs15_pubkey_from_cert now uses parse_x509_cert without OpenSSL. sc_pkcs15_cert now has pointer to sc_pkcs15_pubkey, allowing it to be removed and used separatly. sc_pkcs15_pubkey now has pointer to sc_algorithm_id to faclitate addition of other key algorithms and their parameters. Various code changes to free these structures and references to the structures have been changed.
new f194c87 Fix 253 third fix for same problem. The first fix r4761 added a test in the wrong place. Second fix r4804 added the test in the correct place. This fix removes one of the tests added by r4761
new a569bf9 Fix test code so will work with card with real history object.
new 3076fe2 Fix patch [4709] for cardmod until build in one static dll
new 23b64f8 fix sc_pkcs15_card_t struct change in cardmod.c and issue in reader_pcsc.c for cardmod part too
new 08c111a Update documentation about about wiki and package content.
new 2d6e3bd EstonianEid: remove the iconv dependency and use the common name from the certificate as the card label.
new 6a750e6 tools: -v sets ctx->debug only if set more than once. -vv also makes the debug go to stderr.
new f7000a9 EstEID: add workarond for a buggy card.
new fa0e236 Missed these from r4818
new df2d7d1 EstEID: remove incorrect ATR matching. A reset is required as there is no way simpler way to identify a broken card.
new 8ebde20 bug#262 - force xsl-stylesheets when using man/doc
new ed81328 detect man by xslstylesheetsdir too
new 50f4ba5 build: detect xsl-stylesheet location for latest opensuse.
new 6648255 EstonianEid: add a broken EstEID ATR to the Micardo driver. Don't force a protocol for EstEID cards
new 150d26d fix: opensc-tool: invalid output of access control for EF (add to r4509)
new bd93b97 Additianl changes to r4805 which made cert->pubkey a pointer to sc_pkcs15_pubkey_t Thanks to Andre Zepezauer for pointing out most of these.
new 31b0a05 EstonianEid: document more ATR-s in opensc.conf
new 8156095 FIXME: Don't issue SCardCancel unless the environment is known not to hang (part 1)
new df639ef EstonianEid: revert to old behavior and have the T=0 forcing.
new 8af1b60 PC/SC: temporarily disable blocking C_WaitForSlotEvent until a checked version for pcsc-lite 1.5.3-1.6.4 exists.
new 641ea4e Fix compile warning message.
new 93f5e24 sc_pkcs15init_read_info(): do not call sc_pkcs15init_parse_info() if sc_select_file() failed.
new 70ead49 sc_pkcs15init_read_info(): do not use affectation and test in the same line of code but use two different lines so the code is easier to read.
new 6f5f29e Revert revision 4853 because of a regression when initialing cards
new 98fdeaa C_LoadModule(): Fix compiler warning libpkcs11.c:58: warning: format ‘%lx’ expects type ‘long unsigned int’, but argument 3 has type ‘int’
new 3aea304 sc_do_log_va(): fix compiler warning log.c:87: warning: format ‘%03ld’ expects type ‘long int’, but argument 8 has type ‘int’
new f841b88 opensc-explorer.c:89: warning: function declaration isn’t a prototype
new 3ac5bb4 Declare internal functions as static and fix compiler warnings
new 512be83 ctx.c: In function ‘sc_ctx_detect_readers’: ctx.c:548: warning: ‘r’ may be used uninitialized in this function
new 2a4cdd4 pkcs15-pteid.c: In function ‘sc_pkcs15emu_pteid_init’: pkcs15-pteid.c:56: warning: ‘buf’ may be used uninitialized in this function
new 9c433a9 pkcs11-object.c: In function ‘C_DigestInit’: pkcs11-object.c:455: warning: label ‘out’ defined but not used
new 3c12d20 piv-tool.c: In function ‘gen_key’: piv-tool.c:292: warning: declaration of ‘newkey’ shadows a global declaration piv-tool.c:97: warning: shadowed declaration is here piv-tool.c: At top level: piv-tool.c:97: warning: ‘newkey’ defined but not used
new 8dd3b98 pkcs15-tool.c:150: warning: initialization discards qualifiers from pointer target type pkcs15-tool.c:151: warning: initialization discards qualifiers from pointer target type pkcs15-tool.c:152: warning: initialization discards qualifiers from pointer target type pkcs15-tool.c:153: warning: initialization discards qualifiers from pointer target type pkcs15-tool.c:154: warning: initialization discards qualifiers from pointer target type pkcs15-tool.c:155: warning: ini [...]
new 07ccc39 pkcs15-tool.c: In function ‘verify_pin’: pkcs15-tool.c:976: warning: declaration of ‘r’ shadows a previous local pkcs15-tool.c:972: warning: shadowed declaration is here
new c64cb12 pkcs15-tcos.c: In function ‘insert_pin’: pkcs15-tcos.c:216: warning: declaration of ‘r’ shadows a previous local pkcs15-tcos.c:194: warning: shadowed declaration is here
new 96deb9d Use 'const char *' instead of 'char *' for static strings and avoids a lot of "discards qualifiers from pointer target type" warnings
new 2e9c72e Use 'const char *' instead of 'char *' for static strings and avoids a lot of "discards qualifiers from pointer target type" warnings
new ab6511c Trac #264: fix mingw32 build with mingw32-runtime versions <= 3.13
new 5e909df Amend r4871: prevent mingw32 from including an incompatible getopt version.
new c6eb9d3 PC/SC: move protocol (T=0/T=1) selection to reader-pcsc.c, where it is used.
new d1aa716 Move decoding of subjectPubkeyInfo from pkcs15-cert.c to pkcs15-pubkey.c and call the new sc_pkcs15_pubkey_from_spki. Add sc_pkcs15_pubkey_from_spki_filename to allow a file to contain the subjectPubkeyInfo, which will be used the the PIV driver when EC is implemented. The format of the file, is the same as an X509 certificate subjectPublicKeyInfo and what OpenSSL calls an EVP_PKEY, which includes the algorithm, any parameters and the public key.
new bcef13c In login() the flag CKF_LOGIN_REQUIRED is now ignored. This makes the behaviour of login() more predictable. If parameter --login is specified on the command line, then C_Login() is always called.fixes #220
new 0ad6771 {{{more verbose messages for debug in:__sc_pkcs15_search_objectssc_pkcs15_parse_dfsc_pkcs15_read_file}}}
new 5a183a8 framework-pkcs15.c: new logic to discover objects that were hidden before PIN verification pkcs15.c: object search continues with normal processing, even if enumeration of some files failed pkcs15.h: obsolete prototype removed pkcs15-syn.c: now obsolete function sc_pkcs15emu_postponed_load removed
new 821f4fe card.c: Fixes the overriding of max_x_size limitations. In the result, the limitations of cards are adjusted to fit the limitations imposed by the configured reader.
new c9ad140 sc_pkcs15emu_postponed_load is no more defined
new 09131a4 Fix support for CKU_ALWAYS_AUTHENTICATE and CKU_CONTEXT_SPECIFIC spy segfaulted if CKU_CONTEXT_SPECIFIC was used, pkcs11-session was reseting the userType before calling framework. Framework will now see CKU_CONTEXT_SPECIFIC and use slot->login_user to determine which PIN was used to create the original session, and will send the PIN to the card. It does not treats CKU_CONTEXT_SPECIFIC as a full login, only a reassertion of the PIN.
new 0eb404b pkcs11-display.c: more detailed less verbose output of CK_ATTRIBUTE lists
new cf92133 Update from SimCList version 1.5 http://mij.oltrelinux.com/devel/simclist/
new b63a601 pkcs11-tool: Use attributes MODULUS and PUBLIC_EXPONENT instead of VALUE to retrieve RSA-Public-Key. The first two attributes are valid whereas the latter is not.
new 146041f pkcs11-tool: Correcting the behaviour in the case where C_SignUpdate fails. Quotation from PKCS#11:
new fd11c90 pkcs11-tool: Completing the output of "Mechanism Information Flags".
new 636b0c1 framework-pkcs15: Do not populate the unwrap capability, because the corresponding function C_UnwrapKey isn't implemented.
new c4a9ab6 WindowsInstaller: overwrite files with same version to allow nightly builds; replace and delete blocked files on a reboot.
new acb54b9 typo: remove double semicolon which prevents compilation with Visual Studio.
new 6fc7e62 conf: correct comments about OpenSC.tokend score meaning and default value.
new 77c8cfc pcsc: a change in ATR will not always mean a changed card, rely on PC/SC layer for card change information.
new c1c3aa1 PC/SC: make (dis)connect actions configurable, SCardDisconnect, SCardEndTransaction and SCardReconnect actions can now be configured via opensc.conf in better detail.
new 5c32c15 Revert a protocol forcing change from [4873] which was a mistake.
new 113dfda EstEID: add support for v 3.0 cards with 2048b keys * Detect different cards based on ATR-s and on card objects * Set the card name from the ATR table * Conditionally add support for 2048b keys * Add workarounds for broken MULTOS and JavaCard cards.
new b33a44f pkcs11: clean up mechanism registration * check for out of memory conditions * register SHA256 as well * key generation depends on onboard key generation capabilities, not OpenSSL
new 5d9c02b ISO 7816: if decrypting with 2048 keys, non-extended APDU cards require command chaining (Lc would be 257, which is 2 bytes over 255 limit)
new 7ab591a libopensc: make sc_reset() take an additional parameter "do_cold_reset" which will unpower the card.
new 424ef32 libopensc: fix building new simclist with mingw
new 185d46f simclist: Visual studio does not have unistd.h
new c16179f EstonianEid: Don't leak 1024bit key to 2048b card properties
new e642436 SPY does not process CKA_ALWAYS_AUTHENTICATE
new 137a728 Allow emulation routine to setup an emulated object to be used instead of trying to read a file. This will be used with the ECC code.
new c34caeb Support for ECC keys (part 1) header files and support routines. Add definitions for EC keys, parameters and extensions to structures. Add the sc_card_find_ec_alg, sc_pkcs15_decode_pubkey_ec, sc_pkcs15_encode_pubkey_ec, sc_pkcs15emu_add_ec_prkey, sc_pkcs15emu_add_ec_pubkey routines. Only EC named curves are currently supported.
new e2bd16e Additional EC routines _sc_card_add_ec_alg and sc_card_find_ec_alg
new c2fe460 Modifications to support EC and ECDSA for emulated cards. True PKCS#15 cards with EC will need additional changes.
new 471e43c simclist: build with mingw32, Visual Studio and gcc on Linux. By default dumprestore is OFF.
new b7f4537 Test for OPENSSL_NO_EC as some systems build OPENSSL without EC.
new 3cfcb5c Minor corrections to r4906
new 0bf12aa card-piv: avoid warning 'differs in levels of indirection from' ... when compiling with VS
new 31a33d0 win32: _PATH_MAX not defined when compiling with VS ...
new 5a736c0 entersafe_init(): add support of RSA exponent 35
new cd99624 EstonianEid: correctly free the used OpenSSL structures.
new 3794400 libopensc: move MIN/MAX macros from muscle.c to internal.h
new 9fe86d1 libopensc: protect for possible buffer overflows from rogue cards.
new a92f3a8 EstonianEid: limit authentication key usage bits.
new eb58716 entersafe: don't list supported exponents in the dirver.
new 98d2d6d PIV: amend [4908], Apple has /usr/include/malloc/malloc.h
new 4c2cbee card-piv: remove unused variables.
new b5f329b tools: EC(DSA) requires OpenSSL >= 0.9.8.
new e353c1b win32: 'netkey' and 'westcos' tools are OpenSSL dependents
new 04c5cb9 win32: control from Make.rules.mak the including of 'cardmod'
new d775407 win32: when cleaning delete also manifest files
new 5486309 pkcs11-tool: replaced OPENSSL_NO_EDSA with OPENSSL_NO_ECDSA
new 3b270b8 pkcs15.c: use int instead of bool as type of configuration option pin_cache_counter
new ea4ddf8 pkcs15-pin: If the usage counter of a cached PIN is expired, then free that cached PIN instead of freeing the objects content that is protected by the PIN.
new f5e21e0 Complete change, SIMCLIST_DUMPRESTORE is by default off.
new de6021d compat_strlcat: Avoid compiler warning 'no newline at end of file'
new 5b69b39 sc_pkcs15_pincache_revalidate: Avoid compiler warning 'discards qualifiers from pointer target type'
new 559e4f3 framework-pkcs15 [pkcs15_logout]: Better propagation of errors
new 5f1b3a2 Fix [4911]
new 0dba036 add to r4904: fix calculating of signature size for CKK_GOSTR3410
new d66b3c7 fix: implicit depending on the RSA algo_info for GOSTR3410 algo
new ad60428 win32: build MSI
new 2aa034d libopensc: avoid warning 'not all control paths return a value'
new aed53df win32: test 'BUILD_MSI' condition and build MSI
new e259021 win32: change path to OpenSC windows registers
new af8e8dc win32: path to OpenSC registry keys have been changed
new 35fd3c1 pkcs15.c: Use size_t as type of vector-index.
new b1287e3 log.c: Fixes format string to match actual type.
new 5cc8814 EstonianEid: Add SC_ALGORITHM_RSA_RAW to not make sc_pkcs15_compute_signature remove the DigestInfo header.
new 795dbf0 win32: change path to the OpenSC registry keys
new 26df6ab win32: default install dir 'Program Files\OpenSC Project\OpenSC'
new c8c291e win32: build of MSI on checkouted trunk ...
new f1293c3 pkcs11-display: Fixing some type mismatches that the compiler complains about.
new 05137b7 MacInstaller: add the build date to the DMG label.
new 2eca706 iso7816.c: Fixes #301.
new 1b030f5 pkcs11-pubkey.c: Minor corrections related to r4874 and r4902.
new eeee3f9 opensc.conf: Lower the level of emphasise on the max_x_size options. Users with USB devices really shouldn't care about them.
new 3cfe542 Textual output of SC_ERROR_* return codes in debug messages.
new 8defdf9 pkcs15-algo.c: Just making the compiler happy.
new 83f393f opensc.conf: Better wording of comments on max_x_size.
new f9acbf9 pkcs15.h: Fixing type of parameter to avoid compiler warning: 'comparison between signed and unsigned'
new 5c6afb6 Add missing initializers. Left over from r4508.
new 6b10272 framework-pkcs15.c: More specific log messages. Enables better tracking of errors.
new 5056714 Rename of SC_NO_ERROR to SC_SUCCESS.
new 7f32e7a Build 0.12.0-rc2
new 8282440 framework-pkcs15init.c: Add missing initializers.
new bf28607 More ENABLE_OPENSSL changes so sc_pkcs11_register_sign_and_hash_mechanism will not fail.
new 1a5c0ae framework-pkcs15.c: Avoid some warnings if the macro USE_PKCS15_INIT is undefined. That is always the case if build without OpenSSL.
new b58592d mechanism.c: Removal of unused variables.
new 30bf0f1 pkcs11-object.c: Add missing initializers.
new b7fad04 pkcs11-tool.c: Simplifies interface to show_key() and avoids more compiler warnings.
new 02c4f1e pkcs11-tool.c: Avoid compiler warning 'may be used uninitialized in this function'.
new c14831e Modified patch for Actalis smart cards. Closes #235.
new ab40e70 Wrong structure size calculation in pkcs15-itacns.c; thanks to Matteo Nastasi for the heads-up.
new 791cbd7 Fix r4977: C89 style to support MS Visual Studio
new 72c0474 Prepare for 0.12.0
new c514da4 Move towards 0.12.1
new 33a67ca pkcs15.c: Fixes a bug that occurs in the situation where a PKCS15 EF contains partially invalid data. I.e. the last object in the EF is broken and thus can't be decoded successfully. In that case the whole EF becomes never flagged as enumerated. This in turn results in endless processing of that EF. Thereby the first valid objects became attached to the internal obj_list over and over again.
new abcdb86 Fix #302: in C_Logout silently ignore missing card specific logout hooks.
new f694bbf libopensc: correctly use HAVE_MALLOC_H to include malloc.h
new 5a9e4b1 pkcs15-tool: minor change of the private key info layout
new 891f983 pkcs15init: new 'emulation-store-data' operation ...
new 92c3e59 libopensc: Now 'cache-valid' flag is a member of 'sc_card_cache' ...
new 2804395 libopensc: revert erroneous commit
new ee907b7 libopensc: add new authentication methods, add ACLs to PIN info, ...
new 8b27020 libopensc: API for the 'erase-binary' card operation
new 1a58c42 'AuthentIC': basic support of Oberthur's 'COSMO.v7/AuthentIC.v3.2' ...
new d644441 AuthentIC: add profile
new 3dce2e0 WindowsInstaller: generate OpenSC.iss with autotools
new 5481e61 cardos-tool.c: According to ANSI C the type of size_t is always an unsigned type.
new 7743f69 opensc-explorer.c: Fixes usage of size_t variables. According to ANSI C the type of size_t is always an unsigned type.
new 682c464 AuthentIC: "now there is no way to build without OpenSSL" (Andre Zepezauer)
new 6aaf1a7 AuthentIC: cleanup dead code
new 8345363 libopensc: remove '\n' from the debug message ...
new d1d64f9 AktivRutokenECP: make opensc-tool -n show the actual token name, based on ATR
new c911c2f PC/SC: add additional flags to indicate readers which are in use and readers which are in exclusive mode.
new 16726a5 tools: allow to specify an ATR in the --reader option.
new f10d290 opensc-tool: combined with --verbose, --list-readers will show tha ATR and name of the card, together with extra reader flags
new 3e18e08 Fix compiler warning
new a7c7518 pkcs15-init: no more 'SPLIT-KEY' flag ...
new 6cc1134 pkcs15-init: 'PSO-*' ACL names in profile
new aec6e17 AuthentIC: read/write/update binary card handles can use the 'WAITING-AREA' reader facility ...
new 4b5bc99 libopensc: asn1: allow empty path
new d45fb4c libopensc: set 'enumerated' flag for xDF if corresponding EF file was successfully read ...
new 971d643 libopensc: encode/decode 'direct' public key value
new ae9854d pkcs15-init: profile: instantiate 'BSO' file
new c7422df opensc-tool: make --list-algorithms know about GOST keys
new 0b618ab pkcs15-init: AuthentIC: user PIN reference in card profile
new 898b62b libopensc: more of debug messages, code layout
new 0056eeb AuthentIC: memory allocation errors, thanks to Martin
new f8f38e7 Reject creating files bigger than 64K.
new 89d4769 AuthentIC: remove unused macros, code layout
new 4fbe008 pkcs15init: more of debug messages in profile.c
new df92ba1 pkcs15init: when deleting file by path, try to get 'DELETE' authentication of the file itself ...
new 84b93e4 Oberthur: replace 'SC_ERROR_MEMORY_FAILURE' return code by the 'SC_ERROR_OUT_OF_MEMORY'
new be3e50a framework-pkcs15.c: Fixes two warnings:
new 1b75854 openssl.c: Fixes comparsion between signed and unsigned
new cf7c9fd libopensc: log: short form to insert 'normal' debug message
new 392e6ef AuthentIC: use short form to insert 'normal' debug messages
new 3a2e88c AuthentIC: remove unused members of the SDO structure
new 103af72 liopensc: log: use 'normal' as default debug level ...
new f292467 pkcs15: add 'aid' parameter to the prototype of the 'bind' functions ...
new 4914b02 pkcs15-tool: new 'bind-to-aid' argument ...
new 7a14e97 cardmon: 'bind' prototype has been changed
new ffcc58b pkcs15init: debug messages
new 121260b pkcs15: some changes to the discovery on-card applications code ...
new 4d81ffc pkcs15-tool: new 'bind-to-aid' argument ...
new 0611b62 libopensc: add 'sc_aid' member to 'sc_path' ...
new 0761a61 libopensc: use 'struct sc_aid' instead of 'u8 *aid, size_t aid_len'
new f2dc077 pkcs15init: use short debug message call
new b9e2537 tools: use 'aid' as the name of option to specify the on-card PKCS#15 application
new 2092248 libopensc: introduce TLV and LV data type, use it to store DDO data
new 2f0b83e pkcs15-tool: new action 'list-applications'
new bbcc780 pkcs15-tool: in help message move 'list-applications' action to the head of the actions group
new 6af2bc0 PC/SC: don't try to use SCARD_SHARE_DIRECT if there is a card in the reader. This can confuse some card/reader combos.
new e600a1e opensc-explorer: in 'asn1' command print raw content of the ASN1_APPLICATION data
new 82adc93 pkcs15: in sc_pkcs15_card include the pointer to the application that the card was binded to
new cb5b141 pkcs15: remove unused variables
new 65cd456 opensc-explorer: print raw content of 'CONTEXT' tag
new bf4aa79 libopensc: parse content of the EF(ATR) file
new eb4f283 pkcs15: do not call sc_parse_ef_atr() ...
new a576582 libioensc: use 'struct sc_atr' instead of 'u8 *atr, size_t atr_len'
new ca382fd iso7816: accept 'FCP' tag when processing FCI
new 42fbe85 libopensc: use 'calloc' to allocate application info ...
new 5a7f8a2 libopensc: initialize 'sc_path' type variables ...
new 8f2c968 libopensc: do not return 'SUCCESS' if EF.ATR do not exist ...
new f304fed libopensc: add 'crts' array to 'struct sc_acl_entry' ...
new b2d885f libopensc: extend serial number to the ISO/IEC 7812 PAN definition
new 8ee55a3 libopensc: extend DDO data type with the parsed 'aid', 'oid' and 'iid' members
new 2244d0c libopensc: procedure to log the card's cache
new 2b47d90 libopensc: to be compiled with Visual Studio
new 2d5c76d iso7816: Don't translate a returned FCP template from SELECT FILE to "unknown data received"
new 75c1254 Initial modifications to support OpenPGP v2.0 (CryptoStick) * Correct naming: openpgp not opengpg * Set the card name from ATR table * Add card type enums * Currently OpenPGP is read-only.
new 4ab8018 iso7816: use already defined local variable 'ctx' instead of 'card->ctx'
new 0fefb0b pkcs15-tool: do not print non-relevant to the 'list-applications' context information
new a808379 libopensc: when printing 'path', print also the value of 'aid' if available.
new aaa92ee libopensc: adapt 'make_absolute_path' to the path with valid 'aid' member ...
new 40cb9c9 asn1: decode 'extendedPath'
new fa9ed3a asn1: invalid detection of AID presence in ASN1 path data
new 8f5f0b6 libopensc: remove non-ISO7816 members from the EF.ATR data, thanks to Andre Zepezauer
new a1c3191 libopensc: parse EF.DIR: no need to check the presence of mandatory AID after success of ASN1 decoding
new e98dee0 pkcs15: asn1: local PIN should have a path defined ...
new 56c05c6 pkcs15: asn1: extend DDO with 'ddoAID' and 'ddoIIN' ...
new 772ab4c libopensc: parse EF.ATR: redefine 'STATUS' macros ...
new 76b0a73 tools: reserve more place for the print path and AID buffer ...
new a798b2d pkcd15init: get PIN reference from SE number when verifying 'SE' secret type ...
new 4c57c89 pkcs15init: add 'aid' argument to prototype of sc_pkcs15init_erase_card() ...
new 7f5ea5b libopensc: export sc_find_app(), remove debug message, ...
new 66412d6 asn1: accept long tag ...
new 2a8fc56 pkcs15: add array with supported algos references to the key info data type ...
new 71bfc87 asn1: spelling of the debug messages
new 5e13c7d remove unset sc_pkcs15init_finalize_profile function from libopensc.exports
new fd670f2 pkcs15: initialize 'supported algorithms' in SE data by the ones from tokenInfo
new 3fdb9f9 pkcs15: when getting public key data, return 'direct' object value if available
new 2c6d3ee pkcs15: comments and debug messages
new 41731ce pkcs15init: profile: parse new AC operation types ...
new 35a54b5 pkcs15init: profile: sc_profile_finish() accept additional parameter 'application info' ...
new 1519cb3 pkcs15init: profile: handles for 'profile-extention' and 'exclusive-aid' ...
new c65bc90 pkcs15init: profile: new function 'get_parent' ...
new 51ab68d pkcs15init: profile: redesign 'sc_profile_find_file_by_path()' ...
new 4c183b2 pkcs15init: function to finalize profile when binding to the application of the multi-application PKCS#15 card.
new 2adfa05 pkcs15init: profile: use short form of the log message call
new d1f7e7b pkcs15init: profile: little fix of the previous commit
new 3efe35d libopensc: avoid the using of not completely initialized 'sc_path' variables
new 752af86 pkcs15-pin.c: fixes segmentation fault in the case where p15card->app == NULL
new 5405d74 opensc.conf.in: clean up white spaces
new 5ab90b9 libopensc: avoid using of the not completely initialized 'sc_path' variables
new b560561 pkcs15init: when deleting object ignore the object data file selection error 'FILE_NOT_FOUND' ...
new 41c0090 pkcs15: redesign sc_pkcs15_make_absolute_path() ...
new 04f9c46 pkcs15-tool: do not print empty path, print path also when it only has 'aid' member
new 47f9979 pkcs15: simplify PIN's path assignement
new e779050 pkcs15: when setting object data's path, use, if available, the AID from 'DiscretionaryDataObject'
new bc5ddb7 EstonianEid: add new 2011 card ATR (18.01.2011+)
new 2fff7a1 pkcs15init: profile: unused variables
new 6ce28a6 libopensc: initialize 'sc_ef_atr' type variable
new 8e81e39 MyEID: pkcs15init: create all xDF files at the stage of the card initialisation ...
new c44ad2c MiniDriver: Create cardmod DLL with nmake as well.
new 8c51f42 MiniDriver: embed the manifest into minidriver DLL
new 0c263bd MiniDriver: change cardmod.h include style to help building with compilers which don't have cardmod.h registered in the search path.
new dac7b9f MiniDriver: MS Visual Studio is identified by _MSC_VER not VISUAL_STUDIO
new 2b04b0c libopensc: calling sc_context_create without parameters is not allowed
new e033245 MacInstaller: track Tokend branch in Git based on OpenSC release.
new 1ed93af Amend and update register of IC manufacturers for itacns
new 9afbc55 pkcs15-tool: check for remaining PIN tries before changing a PIN.
new 03be594 core: Fix PIN caching for PIN codes protecting user consent keys, broken in r4048
new 13dd004 pkcs15.c: Check info->label for NULL before calling strdup(). Avoids segmentation fault in the case where info->label == NULL. Fixes #318.
new d573951 EstonianEid: better detection and workaround for the double tag bug with v3.0 cards
new 1adcc61 Add _sc_delete_reader to allow for a single reader to be deleted from the ctx->readers list. This will be used by cardmod and for consistence by sc_release_context.
new 689ac16 Fix compiler warning
new 65b65e5 Use & for logical and
new c17eb11 Fix compiler warning
new e2bd5b1 Fix compiler warning
new 9811426 Fix compiled warnings
new 4459b3d Fix compiler warnings
new 6ccb540 Fix compiler warning
new b3aee43 Fix a bug. read(2) returns a signed value. read(2) errors were not detected in the previous code.
new 1b19215 Fix compiler warning
new 63c293e Fix a compiler warning
new a8da1aa Fix compiler warning
new 19343c7 Remove dead code
new fb9e21d Fix a memory leak The initializations are already done a few lines below
new b8a9abe Remove dead code
new 9df8712 Remode dead code
new 18c1446 Remove dead code
new 98dd13f Remove dead code
new 80ed46d Remove dead code
new b4bdb72 Remove dead code
new d3a5a13 Remove dead code
new 041a144 Remove dead code
new 12a0613 Remove dead code
new 28bf3bf Remove dead code
new b6ea61f Remove dead code
new c8f5ab4 Fix analyzer warnings. The code looked good.
new f4af774 Remove dead code
new 49f19fe Remove dead code
new 9906e5a Remove dead code
new 46946f2 Remove dead code
new f76600b Remove dead code
new 3da2a84 Remove dead code
new ab589d7 Remove dead code
new 67d0a41 Remove dead code
new a4e314e Add missing check code for NULL before dereferencing
new 451121f Remove dead code
new e46c4cc Remove dead code
new 81581ff Remove dead code
new 9d490bc Remove dead code
new 28b6b60 Remove dead code
new dd55567 Remove dead code
new 870a00c Remove a useless test
new 8a1431a Remove dead code
new 8f68f44 Remove dead code
new d8cc0e4 Add a missing check for NULL before dereferencing
new 6473a88 Remove dead code
new 75ef203 Remove dead code
new 4d8fdd1 Remove dead code
new 52251f9 Remove dead code
new 034cdb1 Add missing checks for NULL before dereferencing
new 7c81ad9 Fix typo in error message
new f8fc900 Remove dead code
new 7789948 Remove dead code
new 9c03435 Remove dead code
new fc40ad7 Remove dead code
new fe31597 Remove dead code
new 9afa56f card-piv.c:564: warning: unused variable ‘buf_len’
new 2f186be Remove unused variables
new 8b76cee Revert r5137, because size_t is defined as unsigned integer type (without further qualification).
new 1008062 Adjust SC_MAX_APDU_BUFFER_SIZE to maximum size of Short APDU.
new c209e3a Allow hex-strings to be separated by space characters:
new 98aa4cb Fix uninitialized variables and warning messages.
new 025da6d Fix #325 add SC_PKCS15_PRKEY_USAGE_ENCRYPT and SC_PKCS15_PRKEY_USAGE_DECRYPT to PIV KEY Management keys and certificates, includeing the Retired keys. This applies to 0.12.0 and needs to be in 0.12.1
new d3b3faa Add sc_ctx_use_reader as a reader driver operation. It is used by cardmod to pass in pointers to the PC/SC handles provided by the caller of cardmod. Other drivers will return an error if this routine called.
new 0180a96 Remove dependency on sc_establish_context, and provide appname via sc_ctx_create_context and ctx_param.
new 0a9d507 Fixes to cardmod: The registry in no longer used to pass the handles provided by BaseCSP. sc_ctx_use_reader is used instead. (uses r5190)
new f73eb87 MacInstaller: use the pre-built libopensc.dylib for building OpenSC.tokend
new 43be49b libopensc: correct ASN.1 parsing of EF(TokenInfo).
new d953d4a card-piv: 'ssize_t' is not defined when compiling with Visual Studio
new ce116f4 pkcs15init: for MyEID card set tokenInfo flags ...
new 57b7a81 IAS/ECC: add IAS/ECC card specific files ...
new 69b7f20 IAS/ECC: include support of the IAS/ECC v1.0.1 cards ...
new e02becc IAS/ECC: for the IAS/ECC cards include into the OpenSC configuration the 'card_atr' sections
new 53dd2ce IAS/ECC: remove dead code and '//' coments, resolve some warnings ...
new ffb46d2 core: reanimate the sc_dlopen API for dynamic loading * shift libpkcs11 from src/pkcs11 to src/common as it is not used to implement the OpenSC PKCS#11 module * invent a "libscdl" mini library that implements either libltdl based dynamic loading or uses native interfaces * drop hard requirement for libltl to build OpenSC * native Windows build does not need libltdl any more * specify CNGSDK include dir to find cardmod.h. CNGSDK only registers with a handful of c [...]
new c6eb3a3 Allow use of seperate build and source dir when building common/libpkcs11
new 2ea78bf Amend r5201: also move libltdl build properties to the right Makefile and other leftovers.
new 6dd928b libopensc: fix name of 'LTDL' macro
new 16ca4b0 opensc.conf: by default comment out all IAS/ECC specific configuration lines ...
new 4f266b6 libopensc: include 'scdl' library when linking with Visual Studio ...
new 6ef7366 void issues with ssize_t See r5135 and r5195
new 7ca921f ias/ecc: use extended path in the 'include' macros
new 47b1c9a opensc-msi: do not install libltdl
new 8f4dfe2 Amend r5201: put libscdl.h/libpkcs11.h to distribution package and link against libltdl where needed.
new 432a89c Fix malloc warning by using stdlib.h
new c5b2b02 opensc-cardmod.dll can now by built as "static" using the VS. The dll will contain all of OpenSC, OpenSSL and zlib in a single dll, and thus can reside anywere. Without this, winlogin would require it to reside in system32.
new c55a581 cardmod: fix log printing into the 'debug_file' ...
new dc7cde4 ias/ecc: do not throw an error when there is SM or Auth.Ext protection
new d4bcba5 Allow a key to be used to sign a certificate request even if the normal usage does not allow sign. This is need when initializing a card when called by OpenSSL req -engine
new d591977 EstonianEid: Force T=0 for the newest ATR as well.
new 711cbda PC/SC: Add "PIN length not in range" interpretation to PC/SC pinpad code.
new 8ff3d5d Fixing misuse of SC_CARD_FLAG_RNG. From opensc.h :
new 763c0bc pkcs15init: #327: unique ID for the private key objects. Thanks a Diego (NdK) ...
new 33f44f8 pkcs15: pin references are always positive integers ...
new 39db526 pkcs15-piv: Remove unused functionality.
new 3442649 pkcs15-pin: Fixing the method of obtaining objects protected by a particular PIN. Now it's in accordance with PKCS15. See [http://www.opensc-project.org/pipermail/opensc-devel/2011-January/015818.html discussion].
new 12df79c pkcs15.c: Avoid compiler warning:
new 10e5a18 pkcs15-tool.c: Avoid compiler warnings:
new d7c0ad7 ruToken: in non-extended APDUs the 'Le' value cannot be more then 256 bytes ...
new dda747f msi: include 'cardmod.dll' and 'rutoken' PKCS#15 profiles into MSI
new d174edf msi: fix component ID of the rutoken profiles
new a067bf3 pkcs15: more of the debug messages
new 42aee0f pkcs15-tool: use dedicated function to free the object memory
new 27f493e libopensc: fix debug message
new b1a1dc2 pkcs15: accept more then one xDF file of the same type ...
new a076397 pkcs15: without AID specified return the first available PKCS#15 application ...
new 39f3c2b rtecp: in non-extended APDUs the 'Le' value cannot be more then 256 bytes ...
new 1a19093 Make openct compile again
new b8fcfa8 openct: Wrong size
new 3c5d617 pkcs15init: EnterSafe: increase size of the xDF files
new a55f2f0 iso7816: try to read full amount of the requested data ...
new 7ab9b7f Fix a typo reported by lintian
new 7406d84 Fix a typo reported by lintian
new 719bc29 Fix a typo reported by lintian
new db66f69 Fix a typo reported by lintian
new 4dde047 Fix some of the spelling errors in westcos-tool man page and utility, triggered by lintian
new 8ef19c4 typo: dont -> don't
new b0b5da2 Fix building CT-API after r5061, noticed by Jenkins autobuild
new 5fd2ef4 Fix compiler warning
new c1bd559 Fix compiler warning
new e2c1756 Fix compiler warning
new a88972b Fix compiler warning
new 18ca8b9 Fix compiler warning
new 99bbc06 Fix compiler warning
new f88bbe1 Remove typedef file_info to complete the change/cleanup in revision 5250
new de196fa Fix compiler warning
new c824662 Fix compiler warning
new 6fe27b2 Fix compiler warning
new 88a07de Fix compiler warning
new 842550a Fix compiler warning
new f7f6213 Fix compiler warning
new f1170e0 Fix compiler warning
new 1f2c821 Fix compiler warnings
new 902e4b1 Fix compiler warning by commenting dead code
new 4410ae0 Fix compiler warning
new 577499f Fix compiler warning
new 11ae160 Fix compiler warning by commenting dead code
new 161678d Fix compiler warning
new 0e6b87b Fix compiler warning
new 8c0dbf4 Fix compiler warning
new b435f60 Fix compiler warning
new 0415450 Fix compiler warning
new fe630c8 Fix a real bug (and a compiler warning)
new 0d9b40f cardmod: adopt classic form for container's GUID ...
new eae6805 cardmod: when getting serial number use GET_SERIAL ctl call ...
new 4393f72 eidenv: update copyright and correct used license to match the rest of OpenSC.
new cd3012f Fix #340: ignore pinpad properties of readers known to be broken.
new 6701d06 Add a piv-tool.xml for man page. See #338
new d77f157 Add piv-tool.xml to list of man pages to be built
new d26d23c man pages: fix piv-tool XML syntax
new f63c85d opensc-explorer: support writing to stdout in 'get'
new 7939d8b opensc-explorer: re-factor print_file()
new 71daf09 opensc-explorer: re-factor do_cat()
new 19aff30 opensc-explorer: use relative addressing in do_cat
new f2fac5b WindowsInstaller: Build MSI by default on native Windows build.
new f6ac8b6 WindowsInstaller: fix .ico path. Everything related to building on/for Windows is in win32/
new b6c606a WindowsInstaller: opensc.conf is (incorrectly) generated with make. This is not run on Windows. Use opensc.conf.in as the template for the *example* config file on Windows.
new 223a8b9 WindowsInstaller: tune for default build * remove opensc-msi folder, everything related to building on/for Windows is in /win32 * OpenSC shall be built in static mode * set default paths for OpenSSL Win32 installer locations * build with OpenSSL by default
new 5ab9919 WindowsInstaller: link against crypt32.lib
new ea7eb69 WindowsInstaller: build for x64 with nmake -f Makefile.mak BUILD_TYPE=WIN64
new d0639e0 WindowsInstaller: Separate makefile changes for building for x64 and building on x64.
new ccee81d WindowsInstaller: create an internet shortcut to start menu. Wix invocation change.
new 282f6dc Enable all warnings on MSVC
new 2c55835 WindowsInstaller: Using /Wall was a bad idea, use /W4 instead.
new 5162ec0 WindowsInstaller: re-work WiX installer file for OpenSC. Add meaningful components.
new 1f55343 WindowsInstaller: display the LGPL license in the installer.
new db3ebb1 WindowsInstaller: set the product version programmatically for MSI
new dbaad0a WindowsInstaller: Simplify the wix script even further. Thanks to Kalev Lember.
new 25c2d49 WindowsInstaller: reduce the warning level, parsing error output on level 4 takes Jenkins warnings plugin 25 minutes.
new 0961818 WindowsInstaller: remove variable, added too early.
new d3215b6 asn1.c: Avoid warnings:
new 93deff0 dir.c: Avoid warnings:
new ac3a48d pkcs15.h: Fixes type inconsistency, because in [http://www.opensc-project.org/opensc/browser/trunk/src/libopensc/opensc.h?rev=5190#L148 opensc.h] algo_ref is defined as unsigned int.
new 213fa68 card-setcos.c: Fixes misuse of SC_CARD_FLAG_ONBOARD_KEY_GEN. From [http://www.opensc-project.org/opensc/browser/trunk/src/libopensc/opensc.h?rev=5299#L411 opensc.h]:
new 89b9750 opensc.h: Removes unused flag SC_CARD_CAP_EMV.
new f8ba3ea libopensc: general routines to get serialized GUID
new 17fea1f pkcs15-tool: include GUID to the printed certificate info
new be46a66 libopensc: export names of the 'get GUID' routines
new 74208f1 minidriver: resolve 'unreferenced variable' and 'comparaison signed with unsigned' warnings
new 6c1862e minidriver: use common routines to get serialized GUID
new 4ec415f msi: no need backslash after [INSTALLDIR]
new b21eeb4 libopensc: Removes unused flag SC_CARD_CAP_RSA_2048.
new b8b4c74 pkcs15-tool: print key reference in a decimal and hexadecimal formats
new a5d1058 pkcs15-tool: print GUID for private key
new cfffb7f piv-tool: 'admin' and 'genkey' options need an argument ...
new 69c846f libopensc: Re-defines SC_CARD_FLAG_ONBOARD_KEY_GEN to be local to the file card-flex.c, because that flag is used nowhere else. In principle, this patch only reverts some changes made by r2192.
new be2c17c pkcs11: Fixes leftover from r4646.
new 004c08b card-piv: invalid arguments for SC_TEST_RET macro
new 86af8ee card-pin: make working 'external authenticate' ...
new 3169f14 libopensc: Removes useless attribute 'file' in 'struct sc_pkcs15_df'
new 5102e4d card-piv: 'emulate' MF selection by selection of the PIV applet ...
new b614444 libopensc: use short debug macros in pkcs15.c
new 848180a libopensc: use short debug macros in card.c
new f1dec64 piv-tool: in 'send-apdu' command increase size of response buffer ...
new 383d6e8 ctx.c: Replaces magic integer -1 with defined constant value.
new 54fb422 pkcs15: include EC private/public key types into the pkcs#15 object search procedures
new eb7bc55 piv: no 'usepin' authentication mode in PIV tools
new b85e1a7 piv-tool: new action to print the key slots properties
new e8f6a3e pkcs11-tool: now it's possible to show only the objects of a given type ...
new 771aeb3 pkcs15-tool: print EC key label
new 639ca65 WindowsInstaller: Correct support for x64 builds
new 577ccdb Fix #337 rutoken-tool is obsolete and can be removed, thus no manpage is needed.
new 44cf3d0 MiniDriver: rename cardmod to minidriver in source. Also change some grammar, whitespace (reported by git) and wording (Opensc->OpenSC) issues. Add some comments here and there.
new 7c17247 WindowsInstaller: enable zlib by default.
new cdf88a8 WindowsInstaller: amend r5329, object name is not the target name.
new 2fecaa7 pkcs15init: introduce EC key generation parameters
new 6705e25 pkcs15init: remove useless function, use OpenSC standard convention for return value
new d611dcc piv-tool: add containers discovery
new 622570a pkcs15-init tool: in keygen parameters use 'curve' name without leading separators
new 7b6cf42 pkcs15init: when deleting object, do not try to select object file without valid path
new 49da421 pkcs15init: prepare pkcs15-lib for the EC key type ...
new 9ca350f Use check target for tests
new 461721c PIV piv_get_uid to derive a better guid from the FASCN or the GUID so that most of the uniquness is maintained.
new 99fac26 piv-tool: increase receive buffer for the 'send-apdu' command
new fb97d8b pkcs15-tool: print title and size of the EC public keys
new 3aae1d3 framework-pkcs15: minor coding style issues
new 614e9fa pkcs15init: sipmlify the 'delete-object' callaback prototype ...
new d673e5f pkcs15init myEID: in profile increase size of xDF files, also ...
new af09860 WindowsInstaller: set Win64 flag for binaries when building for win64 and use the right program files folder.
new 3e20fab Add back removed product name
new e2aac20 WindowsInstaller: amend r5345, Win64 is a property of a Component, not File
new 28ccae7 card-piv: store serial number into the 'serialnr' member of sc_card structure ...
new 2202614 pkcs15init setcos: no need of card specific 'delete-object' callback ...
new 82258b0 WindowsInstaller: fix typo, causing the x86 installer to claim to be x64
new 5ccfedd WindowsInstaller: Add win64 flag even to platform-independent files. * Install to "System64Folder" on x64
new 15d6ecd WindowsInstaller: One more fix for x64 installer: opensc.conf
new b0c200c WindowsInstaller: Always use a canonical name for OpenSC related registry entries.
new 4072b2b WindowsInstaller: fix x86 build after r5351
new caf3789 asn1: in encode-object-id procedure do not stop on zero -- it's a valid value
new ef1726e pkcs11: process the EC key generation type
new 8de6b57 pkcs15init: different possible kinds of EC generate key parameters ...
new 1c244f8 WindowsInstaller: fix "parallel installs"
new 007d27f Introduce sc_ctx_log_to_file to set the debug file of libopensc.
new c0c0882 WindowsInstaller: split the UpgradeCode for x86 and x64, so that both versions could be installed in parallel on x64
new 90ffef6 asn1.c: Check boundaries __before__ accessing memory.
new 261d526 pkcs15-init.h: Avoid warning:
new 6409755 pkcs11-tool.c: Avoid warning:
new 404d84a WindowsInstaller: Fix Wix warning:
new 4f768fc WindowsInstaller: Fix warning CNDL1069 about deprecated attribute
new e5a133d Fix a crash on Windows, where pkcs15-tool -E would always crash in sc_pkcs15_free_card()
new be5456d opensc-tool: make list_algorithms() table driven
new 9dc2331 opensc-tool: convert print_file() to using tables
new 1932ce8 opensc-{explorer,tool}: allow sending extended APDUs
new 8f0ba37 Add reminders to bytes2apdu style code blocks.
new f8665b4 manpages: add a rudimentary manual page for eidenv command. Fixes #339
new fa8fd16 types.h: Avoid warning:
new ff7bb8f profile.c: Avoid warning:
new 9026ea6 pkcs11-tool.c: Avoid warning:
new 094eb86 opensc-tool.c: Fixes literal names in 'const id2str_t alg_type_names[]'.
new a7934b3 MacInstaller: use autoconf to write the correct version to ReadMe files of installers. * Better version tagging of generated files * Bundle files necessary for OS X installer generation to the distribution targzip
new 9b4f136 MacInstaller: fix 10.5 build script, broken with previous change.
new df7d560 WindowsInstaller: Use OpenSC version information in Windows file version resource. * Fix license information in file info (GPL->LGPL)
new 669a105 asn1: now sc_der_copy() returns int value
new 38103c6 pkcs15: new function to encode an OID in DER format
new c2a87ae pkcs11-tool: prepare 'gen_keypair' procedure to generate also the EC keys ...
new 9758bb2 pkcs11: copy&past issue in r5356
new e430fe9 pkcs11-tool: add test procedure for EC keys ...
new 7db9532 pkcs11 framework-pkcs15: add EC key generation mechanism
new 3e9b88d pkcs15init iasecc: old syntax in the profile of the Oberthur's generic application
new 78d90c4 EC support: introduce data type dedicated to EC parameters ...
new 9376b73 EC support: new exported function to fill up the EC parameters data ...
new 4fa9679 pkcs15init: use dedicated function to fix the EC parameters ...
new 6b04ab7 pkcs15init: in 'change-attribute' procedure use card specific 'update DF' handler ...
new 54f3e8c pkcs15init: little correction of r5386
new a14bbe7 opensc-explorer: DF_NAME type path value should not be appended by the file ID ...
new 27cd406 iasecc: Oberthur's card strictly follows specification in 'IO buffer size' ...
new 7d5ba61 maintainer-clean cleanup, thanks to JONSITO
new 1cdb3fa APDU parsing: switch to Frank Morgner's implementation
new 5e6d310 iasecc: pkcs15init profiles: add 'CREATE' acl for the Oberthur's application DF ...
new 3b9f5b9 iasecc: encode data for the SDO creation, ...
new 346490b iasecc: 'CREATE SDO' card ctl ...
new c9bf9bc iasecc: 'DELETE SDO' card ctl ...
new 81e1676 iasecc pkcs15init: create/delete SDO private/public RSA key
new 06347f3 iasecc pkcs15init: when creating key slot, there is no needs to write zero value components
new 6c3b43f iasecc: when signing short data sequence with PSO_DST ...
new ad478eb iasecc: write 'compulsorily use' data for the new key slot ...
new 670942a iasecc: when preparing data to update PRIVATE KEY SDO use index to enumerate the SDO components
new 5471aea libopensc: new error code macros -- 'corrupted data' and 'file end reached'
new 8098e82 libopensc: in 'READ BINARY' ignore the 'FILE_END_REACHED' error ...
new 49fb08f pkcs15init: use macro for the maximal number of linked ACL for one operation ...
new e93dd59 doc: describe the 'verify-pin' option in pkcs15-tool documentation ...
new e477d66 NightlyBuilds: prepare for OpenSC 0.12.1-rc1 PreReleases
new 23bbe9e PreReleases: update NEWS file for 0.12.1-rc1
new 3637d60 manpages: unify the look and feel of "See also" sections, removing references to missing manual pages.
new c70e0ae iasecc: use atr mask to accept the Gemalto's IAS/ECC card without MF
new 08c9328 piv-tool: remove the Oberthur's specific features of the PIV card
new 5e50a14 libopensc: introduce 'key-params' data type that contains pointer, size and 'free' handler ...
new 1e59a09 pkcs15init: for the EC key put the EC specific data into the 'params' member of 'key-info' data ...
new ab225db pkcs15init: more of debug messages
new 59e3e65 opensc-explorer: more room for commands in 'help'
new 1f2acc5 opensc-explorer: use relative addressing in do_asn1
new 2aa4673 iasecc: obsolete syntax of the 'Adele Common' card profile
new 0783ffd iasecc: pkcs15init: when deleting SDO, do not try to overwrite 'non-updateable' SDO attribut
new 822fdc7 pkcs15init: pkcs15init emulator for PIV card will not be commited
new dc55351 pkcs11: hide empty slots ...
new fc07974 iasecc: pkcs15init: test for the wrong error code was used ...
new 1b7a320 doc: pkcs11-tool: precise the usage of 'write-object' argument
new 03b4891 pkcs15-pubkey.c:975: warning: missing initializer
new 85b40a5 pkcs11-tool.c:54: warning: missing initializer
new 79db564 piv-tool.c: Leftover from r5412.
new e4711a4 WindowsInstaller: don't link against winscard.lib, winscard.dll is loaded on runtime. Link minidriver against correct opensc.lib
new 3430252 MiniDriver: add two exports used by MiniDriver. PKCS#1 related functions could be exported, internal logging should be eventually fixed in MiniDriver instead.
new 8e75d97 asn1: when encoding the OID, make sure that unused part of input data is properly initialized
new 1176c59 libopensc: export the wrapper for the internal log function dedicated to minidriver
new 81dd8b7 libopensc: export 'sc_do_log_noframe' instead of internal 'sc_do_log_va'
new 1f892af pkcs15init: non-unique ID is forbidden for the public key objects
new 1e025a0 iasecc: support the digital signature with RSA scheme PKCS#1 SHA-256 ...
new 16abe7f pkcs11: Ticket #353: in pkcs15init framework allocate only one slot with uninitialized token ...
new cbecf23 iasecc: when getting data for qualified signature, take the last SHAxx block from the input data ...
new 07e0af5 minidriver: in CardAuthenticatePin() the PIN to verify is selected by ROLE_USER, thanks to HOURY William
new 292d561 libopensc: move declaration of 'serial number' related data types from 'opensc.h' to 'types.h'...
new 4fbb37a libopensc: 'remote data' related procedures: init, allocate, free
new e6a3d92 libopensc: SM related errors
new c7ed3da libopensc: authentIC: use macros; use common CPLC data type
new d04dd5c configure: add configuration option for support of 'Secure Messaging', desabled by default
new c3294c9 suspend commit of SM support until the nearest release
new 65e10c2 libopensc: add description for the 'remote data' data types
new a44ec38 iasecc: no support for SHA256 in the OpenSSL previous to v0.9.8
new 38473e1 pkcs15-tool: for PIN object print 'Auth ID'
new ce79a61 tools: print value of 'BOOLEAN' asn1 type
new 18baf42 pkcs11-tool: move --module to the first position in help text and make it mandatory.
new 6277099 pkcs11-tool: correct typos about --login-type option, change id -> ID in help texts.
new b47263d NEWS: add pkcs11-tool change to NEWS file
new a449ab4 Release r5449 as OpenSC 0.12.1
new 0dcab4a NightlyBuilds: trunk shall be 0.12.2
new 5deeef6 MacInstaller: fix distribution style, which accidentially got changed in r5376.
new 30eb1e9 ruToken-ECP: in compute-signature procedure limit Le to 256 bytes ...
new d2cc8f1 ruToken-ECP: error in revert 'compute-signature' result procedure ...
new 7e9f5b2 pkcs15: in 'compute-signature', when doing 'zero-padding', set properly the new input data length
new cb39b2d pkcs11-tool: when doing signature try at first the procedure for the short input data ...
new 0dfe633 Fix compiler warning
new 96ff2bb Fix compiler warning
new 38e420b Fix compiler warning
new 7124273 Fix a bug and a compiler warning
new c9fae6f Fix typo in comment
new 8183732 Fix compiler warning and potential bug
new dd30eb1 pkcs11-tool: import GOST key; key to import in DER or PEM format
new a7596cc Fix compiler warning
new d139c22 pkcs15init: move the key type specific code to the dedicated procedure
new 223f704 OpenPGP: fix top-level DOs according to spec
new e5bee33 OpenPGP: add indication of 2048 RSA agorithm for OpenPGP 2.0 cards
new 61bbb0f OpenPGP: try to match flags with specification
new 03381a2 OpenPGP: re-factor pgp_enumerate_blob()
new d248026 OpenPGP: implement function to free the fake file system
new ea64ba2 OpenPGP: NULL-ify free()'d pointer
new 4892af3 OpenPGP: re-factor pgp_set_blob()
new 75a89e7 OpenPGP: add some comments
new 6b7906f OpenPGP: use symbolic names for errors/success
new 1bb69cb OpenPGP: catch calloc() errors in pgp_new_blob()
new 1911db7 OpenPGP: update card capabilities from historical bytes
new f32a8ff OpenPGP: use card "extended Lc/Le" capabilities
new 56f6718 OpenPGP: allow extended APDUs in all functions
new 6e04d7f OpenPGP: free memory when selecting the application fails
new 9765eda OpenPGP: implement card_ctl() command SC_CARDCTL_GET_SERIALNR
new 70fa982 OpenPGP: remove unused element from structure
new 9c26b8f OpenPGP: briefly document each function
new ec1f1bd OpenPGP: sprinkle with LOG_... macros
new 9aa7342 OpenPGP: re-factor pgp_finish()
new 101cf28 OpenPGP: clean up with pgp_finish()
new 4a3df98 OpenPGP: comment use of "current"
new cf3a34c OpenPGP: re-factor pgp_select_file()
new 88e88d9 OpenPGP: read BCD version from card
new 19142ee OpenPGP: deal with DOs depending on card version
new ee446ad OpenPGP: check for get_fn != NULL in pgp_read_blob()
new 1342648 OpenPGP: new function to get card's features
new c46152d OpenPGP: extend pgp_get_card_features()
new 782b4ef OpenPGP: get flags & algorithms in pgp_get_card_features()
new e422a57 OpenPGP: re-factor pgp_get_blob()
new fa259c6 OpenPGP: re-factor pgp_list_files()
new 15cdf53 rewrite bebyte conversion functions: NULL check, return buffer
new 4899f70 OpenPGP: use updated ushort2bebytes() in pgp_get_pubkey()
new 3655d1a pkcs15-tool: align access flags with the rest of output.
new 1bb6c70 pkcs15-crypt: remove extractable key support. Only native keys (operations on the card) are supported.
new dffe79d SetCOS/FinEID: add support for cards issued after 01.03.2011
new 2facf39 NightlyBuilds: add NEWS file entries for r5502 and r5468 to r5499
new bbcb867 card-openpgp.c: In function ‘pgp_enumerate_blob’: card-openpgp.c:584: warning: comparison between signed and unsigned card-openpgp.c: In function ‘pgp_card_ctl’: card-openpgp.c:1036: warning: unused variable ‘priv’ card-openpgp.c: In function ‘pgp_init’: card-openpgp.c:272: warning: ‘child’ may be used uninitialized in this function
new 4a2dfa6 pkcs11-tool.c: In function ‘sign_data’: pkcs11-tool.c:1253: warning: comparison between signed and unsigned pkcs11-tool.c: In function ‘write_object’: pkcs11-tool.c:1777: warning: unused variable ‘type’
new 487a7ab sc-test.c: In function ‘sc_test_init’: sc-test.c:80: warning: comparison between signed and unsigned sc-test.c:94: warning: comparison between signed and unsigned
new 661cc0d libopensc: Remove the somewhat mysterious flag SC_CARD_CAP_NO_FCI.
new c97fc2e support for TCOS3 IdKey cards and fix for bug #256
new 7179778 authentic: avoid warning C4018: signed/unsigned mismatch
new 215c133 libopensc: remove more traces of software token/non-native private key related code.
new 2d43c60 Remove unused code: sc_pkcs15init_get_label()
new ee4f346 pkcs15init oberthur: avoid warnings 'signed/unsigned mismatch'
new 319cb6f minidriver: when reading 'cardid' file return the content of 'cardid' file ...
new a045543 minidriver: unused variable
new 4f9924e added news about TOCS-driver to NEWS-file
new dce63c8 libopensc: new exported function to reverse memory buffer
new 71b1f55 pkcs15-init: use general function to reverse memory buffer
new 4d24283 pkcs11-tool: CKA_VALUE of imported GOST key has to be presented in the little endian order
new 1dd7d1f pkcs11: debug title for GOSTRPARAMS
new a9e9aae gost: GOST key parameters data type, encode gost parameters procedure
new e81c17437 pkcs15-tool: encode GOST public key with the key parameters ...
new a41a9c3 pkcs11: pkcs15 framework support for the import of the GOST key
new bf830d6 gost: when decoding public key, add explicit key params
new b21e04f libopensc: avoid warning "missing braces around initializer"
new 2e8df6d libopensc: eliminate repetetive debug messages
new 40cf9a5 libopensc: reverse data to sign when signing with the GOST key
new 8931231 pkcs11-tool: show CKA_VALUE of the GOST public key object
new 185e3f8 pkcs11-tool: replace 'slot-label' argument with the two new ones -- 'slot-description' and 'token-label'...
new 7dff44a framework-pkcs15.c: In function ‘set_gost_params’: framework-pkcs15.c:1892: warning: comparison between signed and unsigned framework-pkcs15.c:1902: warning: comparison between signed and unsigned
new dfbb557 pkcs15.c: In function ‘__sc_pkcs15_search_objects’: pkcs15.c:981: warning: unused variable ‘ctx’
new e966cc1 dir.c: In function ‘update_single_record’: dir.c:318: warning: unused parameter ‘file’
new 9ac5587 pkcs15init: oberthur: cleanup compiler warnings
new 31a56bb pkcs11-tool.c: Remove useless parameter 'slot' from a lot of function prototypes.
new f026db6 compile warnings: resolve 'comparison between signed and unsigned' compiler warnings
new d5679f5 warning: resolve 'suggest parentheses around operand' compiler warning
new 3095f54 pkcs11-tool: resolve compiler warning '"OPENSSL_VERSION_NUMBER" is not defined', thanks to Ludovic
new b3cbf54 pkcs11: resolve problem 'change 5421 breaks MIT Kerberos login', thanks to Douglas.
new 36a85ff iso7816: resolve problem 'r5237 breaks support for Belgian eID', thanks to Jean-Pierre.
new 35bd07e pkcs11: with 'init-pin-in-SO-session' PIN unblock style, try to set PIN when PUK value is not available
new d43e692 pkcs11: implement changing of SoPIN
new da0a77b authentic: spelling of message
new 438cf4b RuToken-ECP: profile option to allow the reset of User PIN with SoPIN
new a479c36 pkcs11-tool: allow non-interactive change of User/SO PIN
new f53b952 doc: pkcs11-tool: precise description of the options to select a slot
new c74d33d coding style: tiny indent style issue
new a9eba2b libopensc: Remove unused parameter 'file_out' in function 'sc_pkcs15_read_file'.
new f9b1a1e pkcs15: in 'TokenInfo' data the 'serialNumber' attribut is optional
new f45f22c westcos: resolve signed/unsigned comparison warning
new 32d035a AuthentIC: when returning PIN info set the 'tries-left' data to the 'non-initialized' value
new d888b3f pkcs15: use general 'AuthenticationObject' instead of 'PinObject'
new efc5760 win32: build also static version the pkcs11 module
new 226bfaa pkcs15: add few attributes to the biometric authentication data type ...
new d5b8a6c RuToken: 'use uninitialized variable' warning
new f0ab932 minidriver: 'PinObject-info' data type is changed for the 'AuthenticatioObject-info' data type
new 947cdad pkcs15.c: In function ‘compare_obj_flags’: pkcs15.c:1115: warning: unused variable ‘data’
new ffdcad4 NEWS: add details to existing lines
new 9027279 Fix compiler warning
new f2da113 MacInstaller: r5550/[d888b3fd55053894dcc751b21301d53669e966ba] changed ABI, bump OpenSC.tokend branch revision.
new b422872 For CardOS 4.3B and 4.4, the Verify Retry Counter Package can be loaded at ADMINISTRATION life cycle phase to change the behavior of the VERIFY command in regard to return codes. When that package is loaded, the PIN can be created with this "verifyRC" flag in cardos.profile if the return code must be ISO7816-4 compliant (63Cx with x being the value of the remaining retry counter when required verification has failed).
new 3920417 Merge remote branch 'upstream/master'
new 203eb87 MacInstaller: when building the engine on 10.6, extent the pkg-config search path with freshly built libp11 location instead of replacing the path.
new 7cc559e MacInstaller: when building OpenSC.tokend, refresh remote branches before trying to switch.
new a28bacf libopensc: Reveal another Belpic hack introduced in r2117.
new c5c2366 Revert 5558
new 8a5961e pkcs11-tool.c: At least CKS_RO_PUBLIC_SESSION is needed.
new 93baf13 libopensc: Fix for drivers returning an error if a challenge of length zero was requested. Actually nothing is done when obtaining such a challenge, thus nothing could fail.
new 00d9a5d Merge remote branch 'upstream/master'
new 9ef95c7 Merge branch 'master' of https://github.com/LudovicRousseau/OpenSC
new 8936901 Correctly wait for card event
new 93cc9be For CardOS 4.3B and 4.4, the Verify Retry Counter Package can be loaded at ADMINISTRATION life cycle phase to change the behavior of the VERIFY command in regard to return codes. When that package is loaded, the return code of the VERIFY will be ISO7816-4 compliant (63Cx with x being the value of the remaining retry counter when required verification has failed).
new a7607b8 pkcs11: framework-pkcs15: when storing private key, set the key usage from the object attributes
new 9863072 pkcs11: framework-pkcs15: OpenSC specific 'non-repudiation' cryptoki attribute ...
new ba64c55 pkcs11: framework-pkcs15: invalid function name
new a6b7743 pkcs15: add comments for the authentication object data type
new 40cb1c9 Merge remote branch 'upstream/master'
new ce2d3c0 Check the lib is initialized before logging
new d3c13fd Fix compiler warning
new b9c43b9 Remove a useless cast in sc_dlopen()
new 1f6a85f only C_GetFunctionList needs to be exported
new b7c2836 C_Digest(): check context validity before logging
new a59ded7 Fix compiler warnings
new 0125444 Silent build rules by default
new 01e6342 OpenPGP: fix algorithms & key lengths calculation
new e3fca4a OpenPGP: remove DO info entry for DO FF
new b6ee0e3 OpenPGP: immediately quit on allocation errors in init
new 2e74069 OpenPGP: re-factor gpg_new_blob()
new 961a27c OpenPGP: update pgp_list_files()
new 4ddec5d OpenPGP: add DO info entries for MF
new da5a223 OpenPGP: use pgp_new_blob() to setup MF blob
new 4939432 OpenPGP: unlink blob from blob tree in pgp_free_blob()
new a3a8ae3 Merge remote-tracking branch 'peter/OpenPGP-20110611' into proposed
new 7883881 opensc-explorer: convert do_info() to using tables
new 9abb398 opensc-tool: update EF structure names
new 8780ddb opensc-tool: no unnecessary spaces around "DF"
new 9c9317d opensc-explorer: centralize usage
new 081bf9f opensc-explorer: consolidate string/hexdata parsing
new aa7a5ae opensc-explorer: fix argc checks in do_update_*()
new c3ba355 opensc-explorer: consolidate string parsing in do_update_record()
new 4cc1ab4 opensc-explorer: detect AID conversion errors in arg_to_path()
new 291ec6b opensc-explorer: remove hex2binary()
new 61855eb opensc-explorer: remove unnecessary var's in do_update_*()
new 1c437c0 opensc-explorer: simplify arg parsing in do_change() & do_unblock()
new 81aa02d opensc-explorer: convert all mapping tables to id2str_t
new 52b601e opensc-explorer: re-factor do_apdu()
new 12fce0f opensc-explorer: replace if..else with ?:
new c03eedd opensc-explorer: use util_hex_dump() in do_info()
new 2faad42 opensc-explorer: consolidate filename generation
new 6690975 Merge remote-tracking branch 'peter/tools-20110611' into proposed
new 3b63bf3 Add PCSCv2_PART10_PROPERTY_* values
new 75524a5 Fix PIN min and max sizes for pinpads
new f4c39e2 Merge remote-tracking branch 'ludovic/PCSCv2_PART10_PROPERTY_bMaxPINSize' into proposed
new 5a23069 pkcs11: only C_GetFunctionList needs to be exported, calling applicatinos must locate function pointers though it after dlopen()
new 0ae9962 Merge branch 'pkcs11' into proposed
new d4e90c1 Changes to build scripts requires for Git transition
new 6e70c09 Merge branch 'github-transition' into proposed
new 6c24bd5 opensc-explorer: silence compiler warnings
new 2757253 FinnishEid: fix the symbolic names for FINeID v2 cards with 2048 keys and restore compatibility with v2 cards with 1024 keys.
new f4a45da Merge branch 'proposed' of github.com:martinpaljak/OpenSC into proposed
new 1f870b0 pcsc: initialize variables
new 46e0c49 pcsc: correctly handle timeout situation when refreshing reader state.
new bc307ae compiler warning: muscle.c:588:12: warning: unused variable ‘buffer_size’
new 17c295a Fix compiler warnings:
new dcf9a8e setcos: remove useless #if 1
new 6bddab7 win32: 'Minimal Size' code optimization
new b9f0513 win32: build only static version of the PKCS#11 module
new a7ea231 win32: build only static version of the OpenSC minidriver
new c2abd9f win32: build static version of the onepin PKCS#11 module
new 2ffa346 OpenSC.msi: install opensc.dll into the 'tools' directory
new 78adc76 Merge remote-tracking branch 'viktor/master' into proposed
new ea4eee5 Merge remote-tracking branch 'ludovic/master' into proposed
new f717b67 Update NEWS and version information for the RC.
new 2680a55 Amend previous commit, configure.ac was unpublished.
new e8b22f6 Silent build rules by default
new 11a7a9e Update NEWS about silent builds
new 4294f3c MacInstaller: Mac OS X 10.6.8 was released on 23.06.2011. Require it by default
new 0918c0e Merge remote branch 'upstream/staging'
new 17bc2c8 FINeID: fix for broken organisation cards.
new 358c682 NEWS: add note about 17bc2c8
new a8df0b3 PreReleases: publish 0.12.2 RC2, the final RC.
new d505a55 Release OpenSC 0.12.2
new 10ae35f Add LGPL header with a generic copyright to util.c
new 5fc31b7 MacInstaller: more explicitly support 10.7
new a4b0daf Merge branch 'macosx' into staging
new e0748e2 Staging builds must include the new version for PreReleases.
new 4f334b8 MacInstaller: remove cardos-tool on uninstall
new 5180460 pkcs15-tool: also print the PIN reference in hex.
new c6fcd68 Fix for ticket #400
new ed7f0b8 Merge "Fix for ticket #400" into staging
new 6f8dcc9 Make the Mac OS X package builder script more resilient.
new 51630a8 Cleanup PKCS15 PIV Card PIN flags
new e2b5603 Merge pull request #11 from dengert/staging
new d824eb6 pkcs15-profile.xml: remove empty SYNOPSIS section
new bb9ffa1 piv-tool.xml: fix typo
new d25b30b doc/tools/*.xml: use <refsynopsisdiv> sections
new b628f14 doc/tools/*.xml: harmonize & complete <refmeta> sections
new 4a3e977 doc/tools/*.xml: use <citerefentry> in "See also" sections
new 46389f5 doc/tools/*.xml: add <refmiscinfo> class attributes
new 0c7d1bd doc/Makefile.am: get rid of "api.work" kludge
new aa5974b doc/tools/*.xml: include manpage sections in file names
new dbc5f75 doc/tools/Makefile.am: new Makefile template for autotools
new d3b865e doc/tools/Makefile.am: substitute @pkgdatadir@
new a9c320f doc/tools/*.xml: more consistent formatting
new 353067d tools.xml: use 2 reference sections: tools & file formats
new 1bff1c1 opensc-explorer.1.xml: fix typos, more harmonization
new 77d051f piv-tool.1.xml: more harmonization, slight re-wording
new d6a9cda pkcs15-crypt.1.xml: sort options alphabetically
new 9f09113 opensc-explorer.1.xml: sort options & commands alphabetically
new ca0343d westcos-tool.1.xml: slight rewording
new ea18c4a cardos-tool.1.xml: sort options alphabetically
new 6227e07 cryptoflex-tool.1.xml: sort options alphabetically
new 55699b9 eidenv.1.xml: sort options alphabetically
new 1df0340 netkey-tool.1.xml: sort options & commands alphabetically
new bd85c8f opensc-tool.1.xml: sort options alphabetically
new 6a6898a pkcs11-tool.1.xml: sort options alphabetically
new 6b989ae pkcs15-init.1.xml: sort options alphabetically, slight rewording
new 56a1ab6 pkcs15-tool.1.xml: sort options alphabetically
new 3b6c985 westcos-tool.1.xml: sort options alphabetically
new 3f7db42 Merge pull request #5 from marschap/doc-for-staging
new 9252eec Fix compiler warning and real problem
new a3a1bf5 Merge branch 'master' of github.com:LudovicRousseau/OpenSC
new 6a02adc Merge pull request #15 from LudovicRousseau/master
new 48f8f98 Display the ASCII equivalent of a hex dump
new 28956b5 Merge pull request #18 from LudovicRousseau/spy
new 6ed52a0 libopensc: Don't fail to allocate memory when mlock fails
new 00e0235 libopensc: Add 'paranoid-memory' setting for behavior when mlock() fails
new 0c9717a Reformat: remove extra spaces and tabs
new ec70ee5 Merge pull request #20 from LudovicRousseau/staging
new 8f9bbbe pkcs11: win32 compilation error
new c0072d1 pkcs11: coding style
new e485e3a Merge pull request #21 from viktorTarasov/staging
new c20cd12 Fix lookup_enum_spec() prototype
new 1141ae5 Add support for PACE-enabled readers
new 97e6ac6 Merge pull request #22 from frankmorgner/1141ae520201c91b9859b0cd6cbb59f4ebfbd577
new 7a9b9f8 Merge remote branch 'upstream/staging'
new af9dada Fix compilation error on Windows
new 27c6652 Remove extra spaces and tabs at end of lines
new 1049bca Merge pull request #23 from LudovicRousseau/staging
new 006a97b Use the short form sc_log() instead of sc_debug()
new 318408e Merge pull request #24 from LudovicRousseau/staging
new 3248a6b Adding default accessflags to the do_store_private_key function in the same way do_generate_key has those accessflags This seems the right thing to do, when you look at the initial commit which added the flags in do_generate_key and the ticket http://www.opensc-project.org/opensc/ticket/198
new bc8e320 Merge pull request #16 from mjrider/for-opensc-accessflags-fix
new 93816b3 iso7816.c: slightly clean up iso7816_delete_file()
new 931e913 iso7816.c: clean up iso7816_restore_security_env()
new 63eb4a4 Merge pull request #4 from marschap/iso7816-for-staging
new c4a200a Merge pull request #14 from LudovicRousseau/master
new d97f239 Setting usage flags for the public key when storing a private key
new 61ea633 Changing default usage from sign to verify, because verify is the public key opposite of sign for the private key
new e6c501f Merge pull request #13 from mjrider/master
new 2b63213 pkcs15-init tool: fix for pin auth_type comparison
new fa6c1a1 Merge pull request #25 from viktorTarasov/master
new af559fb Merge branch 'master' into staging
new 594427e Merge pull request #26 from viktorTarasov/staging
new df87158 Remove libltdl: Remove ltld references
new e57d443 pkcd15init: remove trailing whitespaces
new cb13633 remove trailing whitespaces
new 66aa2b3 pkcs15: throw an error when trying to read from DF
new 5d1feb3 pkcs15: throw an error if there is no valid public key data
new 20bf3f5 pkcs11: use short form of log messages
new 7b63096 opensc-explorer: `find [<start fid> [<end fid>]]`
new 59b214e opensc-explorer: implemented `pace`
new 4d9ea43 iso driver: select with p2=0x0c when le is missing
new fb1aa8e Merge pull request #32 from frankmorgner/4d9ea43ab24a2e36fc36d1be81b3414cc003786f
new 750d2e9 cherry-picked from Frank Morgner OpenSC.git and rebased
new 63b0878 OpenPGP: do not hardcode key sizes to 1024 but fetch actual values from the card.
new fb772cc OpenPGP: use actual references in PKCS#15 emulation code for PIN codes. Only v1.1 has 3 PIN codes.
new 5f84400 OpenPGP: more support for CryptoStick/OpenPGP v2.0
new 7535f30 OpenPGP: add the v1.0 spec URL as well to source code comments.
new 4c09e29 OpenPGP: make logic more data driven
new 076a4ed OpenPGP: slight cleanup
new 671ac54 OpenPGP: more data driven logic
new 0283a6f OpenPGP: only add keys with legal algorithm identifier
new bc09491 OpenPGP: format paths more nicely
new 7b45327 OpenPGP: set version for PKCS#15
new 07d51be OpenPGP: get PKCS#15 token info from preparsed card data
new 3c324b8 build: fix parallel install by creating directory in the rule
new e88c08d build: allow cross-compilation build by reordering libraries' order.
new 4b745f5 openpgp: 'ushort' type not defined for WIN32
new d1cf657 pkcs11: no more 'hacked' mode and 'onepin' module version
new 14049fb pkcs11: prepare internal API for multi-application mode
new 80266ff pkcs15: new procedure to get application by it's symbolic name
new 343fa20 pkcs11: create tokens and slots for multiple on-card applications
new bf752f3 pkcs15: new procedure to find an Auth PKCS#15 object (PIN) by flags
new 10e1ad0 pkcs15init: change sc_pkcs15init_bind() prototype
new b432e97 pkcs15init: add 'minidriver-style' profile option
new 363e374 pkcs15init: syntax changed for the ias(ecc) profiles
new c6cae25 Merge pull request #41 from viktorTarasov/pull-request--multi-applications-mixed-slots
new 69e9861 OpenPGP: first go at openpgp-tool
new f8f02db opensc-explorer: allow acting as script interpreter
new 1f70902 opensc-explorer: add 'echo' command
new 38be3c1 opensc-explorer: better names for some functions
new 388d68f Merge pull request #37 from marschap/staging
new 76b8ad8 pkcs11-spy: timestamp, environment strings in paths
new 9c5dbea pkcs11: ECHD and secret keys support from Douglas
new 230b782 pkcs15: add 'sc_pkcs15_derive' missing for ECDH support
new 9c882ff AuthentIC: add SM related procedures
new 9d5404b libopensc: some usefull macros, crc32 calculation procedure
new 954d0b9 pkcs15: DIR EF can have EF_LINEAR structure
new be81263 log: config option to reopen debug file at every debug log ...
new 6337149 pkcs15: decode 'seInfo', 'profileIndication', 'lastUpdate'
new 177af40 md: prototype of sc_pkcs15_get_guid() has been changed
new 6d4d1b4 win32: do not export 'sc_pkcs15_remove_df' procedure
new 26aac71 OpenPGP: correct PIN type to UTF-8
new 4585177 OpenPGP: fix access conditions for DOs
new 2efc9b7 opensc-explorer: document new command line parameter SCRIPT
new 2276c7e opensc-explorer: do not use hard-coded string length
new cd2cdf7 opensc-explorer: explicitly mention key types
new 965d44e opensc-explorer: use case-insensitive pin types in PACE
new c58e948 opensc-explorer: update documentation
new 8238239 OpenPGP: extend openpgp-tool
new 61ca69c OpenPGP: documentation for openpgp-tool
new 367ebd9 tools: allow arguments to be printed in usage message
new 93cb770 tools: re-factor usage message function
new 67136b1 OpenPGP: revert 7b4532736e0c7923b972aa22344d156760b40adf
new d38d615 OpenPGP: parse more (extended) capabilities on init
new 742186f OpenPGP: remove unnecessary call to sc_get_data
new f04a1c5 OpenPGP: stricter validity checks in PKCS15 init
new aca314b opensc-explorer: remove outdated usage text for verify
new fe80ffd pkcs11-spy: invalid ExpandEnvironmentStrings() call parameter
new f7b5a6b PIV: pickup card driver from the SM branch
new 4be79f3 pkcs15-prkey: 'algReference' from 'CommonKeyAttributes'
new 666e08f pkcs15-pubkey: add 'subjectName' to 'CommonPubKeyAttributes'
new 1d2661c pkcs15-pin: 'PIN' as particular choice of 'AuthenticationType'
new 6c2fa7b pkcs15-skey: support for 'SecretKey' object type
new 7819e5a minidriver: 'write' mode
new 635be92 pkcs15init: call sc_profile_finish() with 'app-info' data ...
new d7022d3 ias-ecc: add tool with IAS/ECC specific query operations
new fbc9bb3 opensc-explorer: when printing file content read entire file
new 525f61a pkcs15-init: 'erase-application', 'update-lastUpdate', ...
new c7258a6 pkcs15-tool: list secret keys objects ...
new 53330f9 tools: avoid possible matching of zero length ATR
new 2cff47d pkcs11-tool: support for secret-key objects
new 02a2b3d Display the flags argument of C_Initialize()
new d7e09b4 Merge pull request #54 from LudovicRousseau/spy
new 7e24102 OpenPGP: Make DO 7F21 treated as simple DO
new d8d6902 OpenPGP: implement pgp_seek_blob()
new a1ed22b OpenPGP: implement pgp_do_iswritable()
new 3ac834e OpenPGP: implement pgp_put_data()
new f7785ad OpenPGP: correct use of pin_reference
new 72088b6 OpenPGP: implement pgp_strip_path()
new 5673d13 OpenPGP: implement pgp_delete_file()
new f3955e2 opensc-explorer: implement put_data
new 387da4c opensc-explorer: document 'echo' command
new c891544 OpenPGP: Use command chaining to send large data if extended APDU is not supported.
new 935a750 OpenPGP: Add Access Control List for emulated files.
new f188a5d OpenPGP: Implement pgp_update_binary() to update file content.
new fefe8bf OpenPGP: Check data size in pgp_put_data.
new 9dd5a64 OpenPGP: Support another variant of PUT DATA to write to Extended Header list.
new e269907 OpenPGP: support key generation in driver.
new df39590 OpenPGP: Correct adding read access to ACL.
new f515ed5 OpenPGP: Change the criteria to use ext APDU for put data.
new 89c1dd3 OpenPGP PKCS#15: Add declaration of certificate object. Allow to read certificate via PKCS#11 (not writing yet).
new f5dc252 OpenPGP: set pin references to 0x01 - 0x03
new 9e04ae4 OpenPGP: implement pgp_find_blob()
new 2078654 OpenPGP: to be compiled on windows
new cfd5aab SM: initial implementation of secure messaging framework
new ea5a19e iasecc: SM add related procedures
new 00b069a epass2003: support for ePass2003 card in read/write modes
new 2249cfd sm: loadable 'local' secure-messaging module
new 92e0c94 bootstrap: script argument to define the PACKAGE_SUFFIX
new 78fe166 pkcs15init: iasecc: create objects for minidriver support
new 0410a0c build: 'auto-config' parameters
new 6679490 coverity scan: warning use non-initialized data
new da89450 minidriver: build dependence on opensc_a.lib and pkcs15init.lib
new 7c05e8c win32: build debug version, updates to MSI
new 73f3240 config: ignore non 'auto-configurated' values
new 67136be pkcs15-tool: print content of DATA object ...
new 56affa6 pkcs15-tool: help text clean-up
new a56bebd opensc-explorer: clean-up help text
new 825c857 tools: fix typo/thinko in util_print_usage_and_die()
new 73387d4 OpenPGP: Correct ACL key_ref
new 0010fcb OpenPGP: make pgp_set_blob() a bit more resilient
new c8e802e OpenPGP: simplify & clean up pgp_put_data()
new d7f58f7 OpenPGP: cleanup & fix pgp_update_binary()
new 2aa4cf5 OpenPGP: simplify pgp_update_binary() even more
new a09f304 OpenPGP: clean up & fix pgp_delete_file()
new a305f4a build: increase minor version number
new a63c924 Merge remote-tracking branch 'upstream/staging' into staging
new 9466891 openpgp: coverity scan warning MISSING_RETURN
new 629c0e8 libopensc: resource leak coverity scan warning
new 62eb0d0 jcop: coverity scan warning RETURN_LOCAL
new c6f4e09 pkcs15-tool: coverity scan warning RESOURCE-LEAK
new 12dcf13 pkcs15-init: coverity scan warning RESOURCE-LEAK
new aa46a21 iasecc: coverity scan warning OVERRUN-STATIC
new ce23bba gemsafeV1: coverity scan warning OVERRUN-STATIC
new 61254f8 muscle: coverity scan warning OVERRUN-STATIC
new d3dbe44 pkcs15-init: coverity scan warning NEGATIVE-RETURNS
new c64a5f3 pkcs15init: application path selection in bind procedure
new 5e295ba OpenPGP: Remove unused constants.
new 735883d PKCS15 - OpenPGP: Change way to check certificate object.
new db06b04 PKCS15 - OpenPGP: re-factor certificate object init
new 0b0aae8 openpgp-tool: remove unnecessary commas in man page
new ccb1067 OpenPGP: Correct the APDU preparation step for key generation.
new 8db8f76 OpenPGP: Change whitespace.
new 34541e9 OpenPGP: add LOG_FUNC_CALLED() for "symmetric" logging
new f9a1317 AuthentIC: when using SM decrease max-send-size value
new 68e217c pkcs15: free NULL key is not error
new 0914b1e libopensc: SM: not all the APDUs need to be wrapped
new 3fc4547 Add CKM_GOSTR3410_KEY_PAIR_GEN if card supports onboard generation
new bfbef6f Support key type inference for CKM_GOSTR3410_KEY_PAIR_GEN
new e423bac Move case block so that fall-through works as intended
new 1d6fae2 build: use autoconf's MKDIR_P not automake's (deprecated) mkdir_p.
new 31bdbd6 use error code if no SM was applied
new cf6b5e7 pkcs15init: Add more debug log.
new 8583197 opensc-explorer docs: various improvements
new 4b9ca80 tools docu: correct typo, improve style
new 0b469ed OpenPGP: Add an explanation when building APDU.
new 4e5ef8f PKCS15 - OpenPGP: Add more comments.
new 124d6e3 esteid: Do not set CKA_ALWAYS_AUTHENTICATE for the "Allkirjastamine" key
new 58a4821 piv-tool -s not sending APDU - missing code
new ed0e2be Add pkcs15init-binding for OpenPGP
new 8261490 PKCS15-OpenPGP: Change the way emu_init return in error case.
new 50e37aa OpenPGP: Correct the way to set output after generating key.
new 69e30ea openpgp-tool: Key generation support.
new 42ad3c1 OpenPGP: Add support for key import at driver level.
new 0518ced asn1: export 'asn1-write-element' function
new 70b7b4a pkcs15init-OpenPGP: Add store_data functions.
new affb383 pkcs15-init tool: Change the order of action.
new 7123638 OpenPGP: Correct access condition for some pubkey blobs.
new b67063d pkcs15init-openpgp: Support for private key import in pkcs15init.
new 30e61d9 OpenPGP: Handle access on dummy files, which is assumed to exist by pkcs15init.
new 241bfde OpenPGP-pkcs15init: Support generating key via pkcs15-init tool.
new e34866f OpenPGP: Accept authentication key for S/MIME decrypting.
new 49e7f52 sm: misplaced check of the 'get-sm-apdus' return code
new 7301715 sm: link 'local' SM module with OpenSSL's crypto library
new c7827e5 sm: change SM data types, thanks to Frank Morgner for revision
new c5dd9de release 0.13.0: update NEWS file
new 12b545f Merge remote-tracking branch 'upstream/staging' into staging
new 6849c90 Fix typo
new 9bfe3fe More typo fixed
new 72c4060 Fix compilation error on Mac OS X
new 5f47903 Merge pull request #80 from LudovicRousseau/staging
new 81695df opensc-explorer: use standard usage() everywhere
new 322e3cf opensc-explorer: convert CHANGE & UNBLOCK to sc_pin_cmd
new ea8a64d opensc-explorer: allow entering the PIN interactively
new 95cbfbb opensc-explorer: increase allowed bytes in RANDOM
new 7f22ede opensc-explorer: show text message for APDU result
new 71ec763 opensc-explorer: warnings when compiling with Windows VC
new 4035245 opensc-explorer: allow longer PINs in CHANGE & UNBLOCK
new 4e44cab Only 9C key needs "Pin Always" i.e. user_consent
new a3b516a Add pin_cache_ignore_user_consent parameter to opensc.conf
new 1adbb3f OpenPGP: Set write access more restrictive for pubkey blobs.
new 25f7bc5 pkcs11-tool: implement 'find mechanism from the given list'
new 16b4cb6 MyEID: always select in mode 'return FCI template'
new dfbc399 pkcs11: #439: 'SEQUENCE' of 'SET' issue when comparing cert attributes
new 7e42c6d pkcs11-tool: #407: on Windows use O_BINARY open file mode
new 12ec13d libopensc: Make OPENSC_DEBUG environment variable without conf file
new c6065fc doc: #377: no optional parameters for sc_context_create()
new 5a0cd41 libopensc: #311: possible memory corruption
new 080010d pkcs15: #268: Wrong ASN1 tagging of GOSTR3401Key
new cb54ebf pkcs11: #371: Public key create template should not include CKA_MODULUS_BITS
new ca08e97 pkcs11: #162,#370,#115,#413: reselect application DF issue
new 2f3ace0 doc: #329: explicit usage of --id for a new keys is deprecated
new feb2b96 opensc-explorer: allow filename-pattern as argument to 'ls'
new 1a7ca32 Added support for SmartCard-HSM and ECC keys
new 4ff917b Added obj files to Makefile.mak for windows build Fixed WIN32 compiler errors Adjusted log message calls to short form
new f678b68 Activated ECDSA for SmartCard-HSM Fixed issues in pkcs11-tool/test_signature is card has RSA and ECDSA keys Fixed bug in sc_pkcs11_signature_size that returns the wrong ECDSA signature size
new e0f9edb sc-hsm: fixed to be compiled with Microsoft VC
new 03632f3 sc-hsm: Added support for ECDH
new dc927fb sc-hsm: Undo the change to mechanism.c in commit f24bcd346340d80b552c0859942a49fd5e8feeff sc-hsm: Change ECDSA signature format from DER to r/s format
new 8e8acf1 pkcs11-tool: implement 'find mechanism from the given list'
new efb4673 Revert change to pkcs11-tool because of upstream changes in RSA signature tests Fixed a typo that went undetected
new 0fa6e7f pkcs11-tool: Added CKM_SHA256_RSA_PKCS to tests in test_signatures
new 46efb61 sc-hsm: Fixed field size constants for 320 bit curve
new 2e0ef7a sc-hsm: Improved usablity in opensc-explorer
new f8cdb08 asn1: 'asn1_prkey' members order
new d180fc3 sc-hsm: Added basic cvc support to read device identity. Used for token serial number and GUID generation
new cb46192 minidriver: Added support for ASCII encoded serial numbers
new 30e6504 sc-hsm: Add registry key to enable SmartCard-HSM for use with minidriver
new deeb1cd sc-hsm: Added registry key file to makefile.am
new cdfc22b sc-hsm: Removed dead code and memory leak if serial number is set more than once
new 68c87fd pkcs15-tool: Fix display error for fieldLength of ECC private keys
new b90a557 Fix SC_PKCS15_TYPE_PRKEY_EC case
new ed95900 Fix a potential memory leak
new 9ca47cd Fix a memory leak
new 7c39aee Fix potential NULL pointer dereference
new 41861e4 no 'pace' in common part
new 8c342ec tools: t404: redesign treatment of 'reader' option
new ed18b78 win32: add windows version of opensc.conf.in
new ee94020 pkcs15-init: Fixed bugs and improved isolation between framework and emulation layer
new d5ee8a8 sc-hsm: Added fallback for readers that do not support extended length. Without extended length, RSA 2048 bit operations will not work.
new 58b4304 libopensc: 'init', 'format', 'compare', 'is-valid' OID procedures
new 961059a build: include to 'dist' the files used by Windows build
new 2a88453 build: Illegal char '-' in: 'Version: 0.13.0-pre1'
new 760cd1c pkcs15-tool: non-initialised OID
new d525ca9 libopensc: OID with only zeros in array do not valid
new ceef4c0 iasecc: remove ostentatious TODO messages
new 628ead7 pkcs11-tool: suppress warnings about the missing attributes
new 3656b47 Use AX_PTHREAD instead of ACX_PTHREAD
new ea40e7f Use AM_CPPFLAGS instead of INCLUDES
new df9a4d0 pkcs15: for 'sc_pkcs15_cer's data use the 'der' object type
new 249b769 pkcs11: unlink 'pubkey' FW object when deleting related certificate
new 02fe6d4 pkcs11-tool: Fixed issue with ID increment failing on constant data
new 7b943b9 pkcs15: Fixed typo
new f508b21 pkcs15: Add support to encode EC private key description
new db3f5f5 framework-pkcs15: Fixed issued with uninitialized variable keysize
new 1619a42 ecc: Adding more curves
new a9393aa framework-pkcs15: Fixed a SIGV when key generation returned ERROR_NOT_SUPPORTED
new 72786ab sc-hsm: Added write support for RSA and ECC keys, certificates and data objects
new 4b9e82d MSI: illegal caracters in component ID
new c91f0e8 entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function
new 40ff0e4 pkcs11: Fixed SIGV when deleting public key objects via PKCS#11
new 6b7d8af build: release candidate 0.13.0 RC1
new fba298c pksc11: Added ability to indicate hardware and firmware version information at PKCS#11 interface
new aaedef7 sc-hsm: Added ability to initialize SmartCard-HSM using C_Initialize and C_InitPIN on PKCS#11 interface
new 4cf3a3b move CK_VERSION data from 'pkcs15' to 'sc-card'
new e35febe pkcs15: use whe available the pkcs15 object content
new 0166321 libopensc: increase maximum number of card drivers
new 62fd67f gemsafeV1: set 'auth-method' for the emulated PIN PKCS#15 object
new 6819b32 pkcs15-tool: for public key show the presence of 'direct' value
new 7fbca94 opensc: new card operation 'read-public-key'
new 1d1abe4 pkcs15-crypt tool: set HASH_NONE crypto flags when the hash do not asked
new 8d35b2c build MSI: add openpgp.profile
new ffb20e5 sc-hsm: Added sc-hsm-tool with DKEK support and key wrap / unwrap
new 33da14c sc-hsm: Added code to prevent CV certificates being listed as X.509 certificates
new 7c71486 sc-hsm: Fixed bug decoding CVCs without domain parameter
new a4ac33f build sc-hsm-tool: link with OpenSSL libs
new da5934a libopensc iso7816: retry SELECT with FCI if SELECT without FCI fails
new f7771c9 libopensc: check data returned by 'read-public-key'
new 68ee0e7 t447: return value from init() in reader driver not checked
new bd86063 t455: check validity of RSA/DSA public key components
new 6c051f8 pkcs11: check arguments in get_bignum_bits() procedure
new bbbfae4 sc-hsm: Now saving the internal CSR in place of the certificate and decoding the public key at initialization (RSA only)
new 0adec1b sc-hsm: Fixed bug with memory released to early
new fb8e0cc sc-hsm: Improved checking in sc-hsm-tool
new f63135a tools: check return value after each call.
new 27c6771 pcks11: trivial: fix debug output for CKA_PRIME_1 and CKA_PRIME_2
new 81bbddf card-gemsafeV1: Add a GemSafe V1 ATR
new 60b7e52 pkcs15: mandatory 'publicKeyCoefficients' in encode/decode public key procedures
new 9e9b3d0 tool: in 'do_apdu' increase size of send/receive buffers
new 4574265 MyEID ECDSA support
new 8b07b9c compile on Windows, minor codding style issues
new 98ca66b release 0.13.0
new f7c1257 pkcs15-tool: initialize 'opt_auth_id' consistently.
new d5c2401 pkcs15-gemsafeV1.c: Multiple key containers and ATR-specific PIN policies
new 1d75427 cardOS: Use information from AlgorithmInfo
new 3aaf95c cardOS: compile on Windows
new cc5a171 pkcs15: regression in e35febe: compute cert length
new 250364c pkcs15init: fix spurious gcc overflow warning,
new 3f30e14 sm: move SM common crypto procedures to the dedicated library
new 4c1c39f opensc-tool: add 'call-SM-handler' command
new 8d7c773 SM: move SM APDU procedures to dedicated source file
new 6a4de6d libopensc: APDU 'allocate & copy'and 'free' procedures
new d30cd83 SM: common SM 'increase-sequence-counter' procedure
new 1d08ac7 Update wiki URL
new 58679a5 Fixed file-id in myeid.profile
new f55bb01 Update src/tools/pkcs11-tool.c
new 6d51b32 sc-hsm-tool: Added better error handling for non-SmartCard-HSM cards
new 99af6cd sc-hsm: Fixed a bug that prevents a newly generated 2048 key to show up at the PKCS#11 interface
new 0577f7d sc-hsm-tool: Added support for DKEK password sharing scheme
new 20824e2 sc-hsm-tool: Added threshold scheme parameters to manpage
new b34d916 sc-hsm: Fixed problem deleting CA certificates sc-hsm: Fixed public key format returned when generating ECC keys
new ee48ea1 Fix to allow exponents other than 65537 for Feitian ePass 2003
new 3fc2dbc Upgrade the MacOSX package build script to current state of affairs.
new 8741185 MacOSX: remove obsolete EXTRA_DISTs from Makefile.am
new 578cf06 Fixup: somehow a double "make make" slipped through.
new 5140c4a libopensc: use short form of the debug message calls
new 326232d libopensc: introduce 'encoded-content' to the sc_file data
new 4b30292 more macros for the values from ISO specification
new 3c804ff libopensc: more comments about FCP data
new 16ee818 Update domain name. paljak.pri.ee is gone since 2011.
new 025d8c8 macosx: move the binary build components from martinpaljak.net to opensc-project.org
new 53ac914 Update gitignore to include files generated on OSX.
new 7a57fa8 win32: build and include to MSI package 'openpgp-tool.exe'
new 83dc469 epass2003: list_files implemented
new b1a4775 epass2003: properly disable padding
new 717a38b Merge pull request #136 from zhalas/epass2003_fix_padding
new 8fc679b libopensc: invalid usage of SC_ERROR_MEMORY_FAILURE
new 8e95abf macosx: make the opensc-uninstall script better at removing all files.
new a24ecd0 pkcs11-tool: ignore CRYPTOKI_ALREADY_INITIALIZED error
new 743ca1c pkcs15: new 'data' member in 'sc_pkcs15_data_info'
new c1b6575 pkcs15init tool: throw error when invalid appliaction-id supplied
new 3b0ac5f pkcs15init: copy DATA object value to 'pkcs15-data-info'
new 6f1ae23 pkcs11: segfault if 'application-file' not defined
new 9901682 Normalize SC_ERROR_* API and clean up ISO7816-4 errors.
new c2b6a0d pkcs11: report the library version based on plug-n-play feature.
new 3b4f7b9 pkcs11: Don't touch readers or inserted cards in C_Initialize in 2.20 mode
new 32ed309 pkcs11: use calloc instead of malloc; remove obsolete malloc.h references.
new 11ff813 build: check for dlopen() in a BSD-friendly way.
new 10718b1 build: remove useless svnignore file
new ea71ae7 build: svnignore went away in previous commit
new 98db499 pkcs15: 'issuer' and 'subject' have to be DER encoded sequence
new d887083 macosx: add new tool and SDK paths for OS X 10.8
new c662780 tools: missing names for ACL methods
new e8eb4cd pkcs11-framework: do not wrap subject in a second ASN1 sequence
new 338fc3e pteid: do not call the iso7816 driver get_response operation
new 4c1cafe epass2003: key generation allows stricter privkey/pubkey ACLs
new b230605 Allow for the pin to be entered on the keypad during issuing. For compliance reasons.
new 4a674b4 Improving logging of certificate handling.
new 7cbd42a build: 'declaration-after-statement' is an error
new 112092f Fix eidenv manual page: -n is actually -p
new 9f57dd3 Simplify the compute signature operation and add warning
new 4ecbfab Fix for PTEID's PKCS#15 emulation breakage
new aec1cd9 Remove redudant check
new 1b26569 Merge pull request #156 from poupas/master
new f6b0e89 card-ias: fix code style to be MS C89 compliant.
new 62dbdff Fixed gen_key to expect the proper PIV Key references.
new 584e47a Merge pull request #158 from cbancroft/fix-piv-tool-gen_key
new e1da77e md: fix length of stripped data in RSADecrypt
new ae1b96e sc-hsm-tool: Fixed a crash on Windows when --wrap-key frees memory allocated in opensc.dll
new 962cba9 sc-hsm: Fixed bug when changing SO-PIN with opensc-explorer sc-hsm-tool: Fixed some warnings
new 9a05414 let OpenSC compile without OpenSSL and without SM
new 1a65ed1 use _setmode instead of _set_fmode in windows
new 140ec71 Formatting with spaces and returns in hex dump.
new c02f30a Fix a bug when writing public key
new 6707f92 fixed PACE reader capability flag
new ff637bd initialize sm_ctx with 0s for iso7816 driver
new eb281b1 reader-pcsc.c: fixed pin checking when implicitly given
new 3567660 reader-pcsc.c: fixed implicit pin modification
new f053070 libopensc: assertion fails on calling fclose() on a NULL filehandle
new c4c189f make: change make order of SM components
new 407ffa3 libopensc: for hex dump in debug messages ...
new 32c4704 use enough memory for pin verification/modification structure
new a7564d6 Use C99 flexible array member
new f597a7e enable compiler warnings by default
new e3649fb fixed even more compiler warnings
new de4dd05 Onepin profile stopped to work after commit 10e1ad001d
new 1a97292 By default 'default' card driver is disabled ...
new 9ad8cd9 CardOS V5.0 is recognized now. Some useful infos are given with cardostool -i, but the card is still not supported by other tools.
new f6b1b0c ATR status in GET DATA is 0x80 with a custom ATR
new 4ebfd1f CardOS V5.0 is recognized now. Some useful infos are given with cardostool -i, but the card is still not supported by other tools.
new 3106cf7 ATR status in GET DATA is 0x80 with a custom ATR
new f4e80fe Merge branch 'cardos5' of github.com:szikora/OpenSC into cardos5
new ac96e73 Merge remote branch 'upstream/master' into cardos5
new ad91449 Gives the "Current Maximum Data Field Length" for CardOS card in cardos-tool -i.
new 3f8f6fa Merge branch 'master' of https://github.com/OpenSC/OpenSC
new b1a2c26 Onepin profile stopped to work after commit 10e1ad001d
new 2c01948 Merge branch 'master' of github.com:szikora/OpenSC
new 0781832 made sc_apdu_t.data 'const' (which it used to be)
new d218303 fixed a ton of compiler warnings
new daa7905 CardOS: more debug messages in 'pin-cmd' handler
new bdd2649 pkcs15: add 'context' parameter to the strip padding procedures
new f581459 packaging: debian packaging templates
new 12e0ac1 minidriver: add registers file for feitian cards
new 865900e Updated load_cert to use the proper key identifier
new 63ce563 Adding support for DNIe.
new 02727a1 Merge pull request #168 from germanblanco/opendnie
new 3afe644 Fix integration problem with DNIe
new b731dac Reset return code to success if pubkey read from cert.
new c023d20 removed unused reference to sm_iasecc_rsa_generate
new 3d0064e don't expect the card to specify the file length in generic tools
new 6e728a8 verifying the pin is a valid action
new cd1116a Use reader pin pad if available and allowed
new 2741f23 Set output buffer len variable if padding removed.
new d5e8675 added getpass implementation for non windows
new 7a87d94 don't require ushort to be present
new a635d44 fixed initialization of structure
new 2dee7ba Extract public key from cert if no object on card
new f641ebd fixed errors reported by cppcheck: part 1
new 80788df fix LGPL version
new 5979e2f Add documentation for --list-token-slots, -T
new 2b45194 Add EstEID 3.5 card support
new 6e255a9 osx: target 10.9 (a free upgrade to anyone using 10.6+) from now on.
new a18a7d8 Fix typo
new 03c196e ECC ecpointQ Fixes
new bec6d14 ECC ecpointQ Fixes
new 86d5941 Merge branch 'ecpointQ' of https://github.com/dengert/OpenSC into ecpointQ
new 5dd5994 Merge pull request #194 from dengert/ecpointQ
new 9ff8bd1 EC parameters not copied correctly
new f09dae4 Merge pull request #196 from dengert/master
new 1acb4ad Check for NULL before dereferencing.
new 4604dac sc-hsm: Fixed memory checking and removed warning
new 633c98e sc-hsm: Removed compiler warning
new 3a6e7ba pkcs15: Changed encoding for EC public keys in PuKDF to SPKI rather than ECPoint, preserving domain parameter
new 09e5a9f pkcs11: Fixed typo
new d4be8ec sc_pkcs15_encode_pubkey_as_spki replaces sc_pkcs15_encode_pubkey_with_param. The name implies what the format of the returned value, a SPKI.
new dff2519 Merge pull request #197 from CardContact/master
new cfe0e73 macosx: silence the deprecation warnings about OpenSSL
new d4a3eda macosx: update package building to modern tools
new 91e3988 macosx: fix typo in distribution descriptor
new cb6955c pkcs15init: keep certificate's blob in cert. info data
new 6a389f3 pkcs15init: reselect file to delete
new 04fbf6a pkcs15init: externalize and change name of select_intrinsic_id()
new db9e4c9 build: suppress warning 'unused-parameter'
new 00faad3 pkcs15: in 'pkcs15_object' data: new attr. 'md_flags'
new 7948a5c pkcs15: remove unused macros "SC_PKCS15_KEY_USAGE_*"
new e855ac8 pkcs15: introduce 'cmap-record' data into the private key info
new 411cbfb md: use if available the GUID from the prkey info ...
new 4057014 pkcs15: include MD data into sc_pkcs15 data type
new 3140c6c md: use, if available, internal cardcf data
new 1fe9ba1 opensc-explorer: if available, print DF name
new 7a03f18 libopensc: create and export 'sc_match_atr_block'
new efdab89 pkcs15init: NULL pointer dereference error
new 9fdd9ec pkcs11: PIN-NOT-INITIALIZED error concerns only User PIN
new f43a9fa pkcs11: fix translation of SC error to PKCS11
new 95b6b4c pkcs11: changes in framework API
new d728584 pkcs11 framework: more debug logs in 'login' handler
new 98325ab pkcs15: export 'sc_pkcs15_serialize_guid' ...
new 0dc39c1 pkcs15: use value/length pair to hold the object's GUID
new 7853d67 pkcs15init: no const values in private key create/generate data
new 9251d35 pkcs15init: set key_info->guid value before calling card specific handlers
new 692791e md: set length of container GUID
new f71e241 md: config option 'GUID as ID'
new f7a9ac9 md: config option 'use GUID as crypto object's label'
new aaa4489 md: configuration options to refuse create-container mechanism
new 075ff22 md: generic procedure to get bool config option
new 024cd3b pkcs15init: more of the debug messages and macros
new 51262f0 pkcs15init: in profile more AC operations are parsed, ...
new 13d1b8e pkcs15init: file 'content' and 'prop-attrs' in the card profile
new 4d5b80f libopensc: general usage method to allocate generalized time
new 01ed00d pkcs15init: warning unused variable
new 98333e5 pkcs11: excessif check of return value
new 161c83f pkcs11: allow bind of non-recognized cards
new 77bed45 pkcs11: implement generic 'init-token' procedure
new 687fdf2 pkcs11-tool: more token flags to display
new 784f0b8 pkcs15init: refactoring -- do not use temporary variable
new b1a5ebf pkcs15init: introduce 'max-unblocks' PIN init parameter
new 0761a5e pkcs11: use 'ignore-pin-length' config option
new 15f694f pkcs11: introduce 'ignore-pin-length' config option
new 89523a9 md: use "ignore PIN length" configuration option
new 5564b99 md: when PIN blocked ensure that 0 returned as "tries left"
new 1dc5a26 md: implement CardGetChallenge
new f72c6fe md: implement CardUnblockPin
new 1d45eea md: implement 'CardChangeAuthenticator'
new b928e81 build: bootstrap can be used with options
new 53ed5dc win32: build: 'version-info' resource for each target
new aec6f99 win32: build: add 'VarFileInfo' block to version-info
new b3baf9e build: delete 'configure.ac', bootstrap creates it from 'configure.ac.in'
new 0fa475e build: define in configure.ac.in the common fields of version-info
new 3ab84b3 log: no format for the short arrays in 'hex-dump'
new 034cff9 pkcs15: unify error codes of 'internal' and 'syntetic' binds
new ab81438 Adds support for a Swedish eID card
new 4c31128 macosx: add "graphical uninstaller" to distribution DMG.
new 4ebc506 macosx: Ignore the configure-changed distribution.xml file in git.
new c6d3b3b reader-pcsc: fix verify/modify pinpad commands
new abb48c8 reader-pcsc: fix compiler warning
new d1ba616 sc-hsm: Added support for token label to be set via C_InitToken or sc-hsm-tool
new 9e54756 sc-hsm: Added support to unblock PIN using C_InitPIN()
new 67dc60f sc-hsm: Added support for persistent EC public keys generated from certificate signing requests
new 3dba847 Merge pull request #204 from CardContact/master
new 3d3592a pkcs15-tool: remove unused 'pubkey_pem_encode()'
new 5437f87 pkcs15: encode public key algorithm (issue 202)
new 9f90cfa macosx: inlude all files needed to build the installer from distribution.
new 085f971 pkcs15init: iasecc: fix uncomplete merge
new 0efe1ec coding style: remove trailing spaces
new 3f023d3 pkcs15: PIN value not validated in pkcs15-verify
new 46c86fc coding style: use short form of debug macros
new c5c49e3 sc_pkcs15_encode_pubkey_as_spki depends on DER encoded RAW key
new 032a3ec pkcs15init: ignore if no TokenInfo file to update
new 72bf7a8 pkcs15init: NULL 'store-key' hahdle
new 46303a6 build: new 'disable-optimization' configure option
new 1775198 pkcs11-tool: format object info output
new 2f8fc49 sc-hsm: emu: initialize EC key params
new efa6e85 myeid: support of EC key is broken,
new 122c58d pkcs15init: do not use 'der-data' of pubkey data
new 343a627 pkcs15init: set EC pubkey key params using init arguments
new dd5115b pkcs15: use 'direct' public key value
new 8000564 pkcs15: fix encoding of 'SubjectPublicKeyInfo'
new 12d362f PIV: fix segfault and valgrind issue
new 345d4b9 PIV: encode SPKI public key data
new 53eae61 pkcs15: remove not used internal procedures
new 8871e61 pkcs15: change names of internal SPKI procedures
new a399905 Merge pull request #211 from viktorTarasov/fix-206
new 3acb3d8 Default driver: do not send possibly arbitrary APDU-s to an unknown card.
new 8b4125e Merge pull request #213 from martinpaljak/default-driver
new cdc379f pkcs11-tool: check for buffer overflows
new e7cda85 Fix memory leak, sc_pkcs15_cert_t *cert is never freed
new 7796d2c Mention that create_slots_for_pins can be used to get opensc-onepin behavior.
new 332ced5 Remove the bogus javacard "driver".
new fc5714a Set missing default create_slots_flags.
new 218d198 Call dlclose() only when having a valid handle.
new 46b0bed fixed PUK handling
new ba66459 When setting pointers to a template, ensure they do not get out of scope prior of being used.
new 8d00077 EstEID: match card only based on presence of application.
new 883d42b libopensc: export 'iasecc_sdo_encode_update_field'
new a64326e fixed compiler warnings (partially submitted)
new 3b50ccc fixed incompatible function usage
new b483d1d westcos: fixed initialization of driver data
new 511c8e6 dnie: dont ignore error on sm free operation
new e1fd9d2 cardos,incrypto34: restored semantics of select_pin_reference
new 5f45739 fixed one more warning
new 4bed397 build: return to standard use of 'autoconf'
new d4195e2 build: bootstrap script has expected content
new 7b1e2e5 build: uninstall-hook for opensc.conf
new 24fa9d8 build: by default enable SM support
new 7dcb435 build: put PACKAGE_VERSION_REVISION into version.m4
new b6ad7a9 pkcs11: more of debug messages
new 808fff2 pkcs11: take pubkey CKA_VALUE from pub_data
new e41d94c md: fix return code in 'CardGetContainerInfo'
new 1df8570 Add fence against using EVP_sha256 mech.
new de6d614 Dont use sha256 if openssl is older than 0.9.8.
new 3418e9c OpenSC 0.13.1 rc1
new 612c7fe git: ignore version.m4.ci
new cfc9461 Update NEWS for opensc-0.13.1
new f87a364 release: candidate for the next stable version
new 8e13acf Restore pkcs11 onepin module for Firefox usage
new ccf6da2 Add windows onepin makefile
new 77c71be Don't depend configuration default value
new ee0566a pkcs11: pr-239: PKCS15 pubkey release fix
new 3f13f57 openpgp-tool: issue-220: read and display OpenPGP data
new 2f6b517 Support "D-TRUST card 2.4 2ce".
new 77d8fa3 base64 decoding: Do not assume that char is signed.
new b1b5a39 Use sc_pkcs15_find_pin_by_auth_id() in asepcos_create_key() to correctly set the newly created key up for use with the configured PIN.
new 072dfeb sc-hsm-tool: Fixed SEGV if no or invalid card in reader
new 55bb8e9 New generation card-s don't have issues with T1 and 3.5 card with same ATR has issues with T0 (recursive GET BINARY/GET DATA)
new 359660c dnie: removed dead and untested SM wrapping code
new 35b74f3 fixed warning unused variable
new 852a471 release: OpenSC-0.14.0 RTM
new cd7fbe3 MacOSX: Build fat binaries i386...
new 440289a sc-hsm: reduce indicated maximum PIN length to 15
new db60f8d release 0.14.0
new 5279bfa sc-hsm: Prevent double-free crash if key generation fails
new 2de38a1 pkcs11-tool sets CKA_DECRYPT=true rather then CKA_DERIVE=true when generating EC keys (#277)
new 295c523 Add AES support for PIV General Authenticate
new 3260ca3 Merge pull request #270 from shootingatshadow/aes-support
new b84a1c9 Merge branch 'master' of github.com:OpenSC/OpenSC
new df959ef md: install minidriver by default
new 5d6c4b3 Merge pull request #253 from github-frankmorgner/remove-deadcode
new ed73851 fixed pkcs15 version check
new f80759b Target minimum OSX version to 10.7
new e6505b3 pkcs11: Fixed wrong reference to PIN object in C_SetPIN() for SO-PIN
new bb160bf pkcs15-tool: fixed file reading
new 139333f Fix error when signing with Swedish BankID card
new 1fc0a7e Merge pull request #274 from github-asmw/private-do-3
new 08f07ad sc-hsm: Improve error detection and reporting in sc-hsm-tool
new f9b8b2c sc-hsm: Added error if private key import tried
new 7db9950 sc-hsm: Fix certificate delete bug
new be200ab Merge pull request #282 from CardContact/fix-deleted-related-public-key
new 9928179 Fix secure messaging library name on Mac OS X
new 3a0ca5a Remove hardcodes from Mutual Authenticate
new cb89a87 Merge pull request #280 from shootingatshadow/aes-support
new ea712bf Fix compiler warning
new 4e73d0e Merge PR#280 from dirkx/master: --no-prompt flag
new 955a339 Merge PR#288 from philipWendland:upstream-ecc-fix
new c8545ba pkcs15-dnie: fix compilation when OpenSSL is not used
new fb7bbf1 build: disable Secure Messaging if OpenSSL is not used
new 09c2847 Fix compiler warning
new 34587ea Fix compiler warning
new 9a82a95 Merge branch 'master' of github.com:OpenSC/OpenSC
new 0dfb45b Merge pull request #279 from dengert/master
new 189e998 PKCS#11 hashes for cards without RAW (see #241)
new 73a1503 Merge pull request #298 from dengert/pkcs11Hashes
new d72324d generate bash completion scripts from XML doc files
new 8ed4db7 Merge pull request #238 from eighthave/master
new b2dcae3 Fix Lc byte in VERIFY PIN block for PC/SC PIN PAD reader
new 0154ee0 Merge pull request #317 from CardContact/fix-Lc-in-PINblock
new fd22098 Public certs and pubkeys with an auth_id are treated as private (See #291)
new 7a5f9b2 Merge pull request #315 from dengert/privateObjects
new d3c8fbc fixed type of pkcs15init_initialize
new 8672291 Merge pull request #312 from frankmorgner/fix-p15
new 3d9118a changed sc_apdu_t.data back to const unsigned char *
new ef94c6b Merge pull request #311 from frankmorgner/const-data
new bb92019 iso7816: allow extended length APDUs
new 87d430f iso7816: propagate the length of the computed signature
new cb7f40a Merge pull request #260 from frankmorgner/iso-ext
new a0ceaee Add AzeDIT 3.5 card support
new ea55c19 Merge pull request #195 from rainermetsvahi/master
new d135496 openpgp-tool: Return EXIT_SUCCESS if no error occurs
new d00d7b3 Merge pull request #276 from asmw/fix_return
new 4dbfba3 Use correct bit when writing PIV certificate object with gzipped certificate
new 57cd22e Merge pull request #324 from dengert/piv-gzip-cert
new 1145bed macosx: locate the best newest SDK present on the computer.
new 82624a9 macosx: locate and target the latest SDK to build against.
new 5448901 macosx: update the minimal building instructions.
new 67fcda1 Merge pull request #308 from martinpaljak/yosemite
new 0c0b214 Translate French to English.
new 8aadbbd Merge pull request #332 from Ecordonnier-theobroma/westcos-tool
new cd01a73 C_Digest does not check if buffer too small before update. Issue #327
new 3f442c5 adjust send/receive size accoriding to card capabilities
new 8188b8a Merge pull request #322 from frankmorgner/iso-ext
new e63f40c tools: Add util_get_pin helper function
new 4459e14 use util_get_pin in tools
new aa45685 fixed documentation of dnie-tool
new b18c86e Merge pull request #320 from frankmorgner/tools-pin
new d014056 sc-hsm: Add support for Koblitz curves secp192k1 and secp256k1 (Bitcoin)
new a2ba4d3 Merge pull request #319 from CardContact/add-sec-k-curves
new ccd87e7 Added ATR for ItalianCNS - Prov. BZ
new fce847b Merge pull request #318 from sschutte/master
new 1408e25 Removal of cache, fixing a compiler warning and removing recursive functions.
new 9cbec38 Fix bug in verbose flag handling.
new ec2eb86 don't reimplement output of status words
new 238b9e3 Revert "Added ATR for ItalianCNS - Prov. BZ"
new c2d33fd Merge pull request #339 from OpenSC/revert-318-master
new 4d5997d fixed selection of muscle applet for some JCREs
new 99e42df Merge pull request #341 from frankmorgner/muscle
new 69b2717 use path only if it is actually present
new e1fbdc0 iso7816: make select agnosting to sc_path_t's aid
new e137396 workaround for compiler warnings
new 73715e3 fixed compiler warnings
new 45fe965 added support for sc_path_t with only aid set
new a7bf05e Merge pull request #337 from frankmorgner/7816
new 0e06427 Implementation of card_ctl function with SC_CARDCTL_GET_SERIALNR
new 255c033 Indenting fix and stronger limit on serial number length.
new f83f8d2 itacns_get_serialnr(): relaxed checking on sc_select_file returned length, added debug log.
new 56684d8 itacns_get_serialnr(): check sc_read_binary() returned data length.
new 7fea6eb itacns_get_serialnr(): check sc_read_binary() returned data length.
new 867176b itacns_get_serialnr(): check sc_read_binary() returned data length (only).
new 4167455 Merge pull request #321 from resoli/master
new d6bb845 C_Digest does not check if buffer too small before update. Issue #327
new 1197fbe Merge pull request #330 from dengert/pkcs11-buf-too-small-simple
new aa7886f pkcs15-init: fix memory corruption
new 2a96673 Merge pull request #345 from philipWendland/upstr-pkcs15-init
new facaf59 Improve PKCS#11 compliance. Issue #335
new 3961275 Allow user to overwrite SO-PIN when using PIN-PAD reader
new 7e7a44a sc_asn1_put_tag - support larger tags
new 32d8173 IAS-ECC: Improve detection Gemalto cards(Issue #343)
new bbedd4e IAS-ECC: improve PKCS#11 compliance Issue #336
new 4915eaa Improve PKCS#11 compliance. Issue #335
new d727acb PKCS#11: Remove inconsistent attributes
new ed87ea3 PKCS#11: Fetch real value of CKA_LOCAL for pubkey
new 91ddcfb PKCS15: remove redundant code for access_flags.
new 79f1539 Merge pull request #352 from tc-anssi/better-compliance
new 291e9da use OpenSC as default PKCS#11 provider
new 28ea6bc added DEFAULT_PKCS11_PROVIDER to winconfig.h.in
new f143d7b Merge pull request #346 from frankmorgner/pkcs11provider
new c3a0bbc Update email and year
new 17c1cff Fix typo on CKF_EC_UNCOMPRESS
new 3dadd3f Add some missing PKCS#11 values
new 7a455f6 Support of additional type, mechanisms and attributes
new 762d466 Add display of Elliptic Curve flags
new b13bb3c Merge pull request #360 from mbrossard/pullrequest
new c921316 coverity-scan: connect to GitHub
new 02214dc coverity-scan: test build
new 8e9a236 pkcs15-tool: print length of EC public key
new 3047fe2 log: implement 'dump OID'
new 7a34c20 fixed dereference before null check
new 1b53b59 fixed potential use after free
new 8df9896 pass big parameter by reference
new fca3a37 fixed truncated stdio return value
new 9a4b588 fixed Printf arg type mismatch
new 3f64d3a fixed bad memory allocation
new 6641cbf fixed potential string overflow
new 00330b2 fixed resource leak
new b6a935a fixed memory leak
new fdd38f6 fixed copy into fixed size buffer
new 77752f4 fixed unused value
new 7c497b3 fixed not null terminated buffer
new 027e4a0 fixed out of bounds read
new b1b99ce fixed integer underflow
new 68d8664 fixed use after free
new 87b2403 fixed out of bounds access/write
new 08fcfcc fixed wrong sizeof argument
new b9f1fb3 fixed bad output data length
new ac0424e fixed pkcs11spy's version number
new 7fb495a fixed self assignment
new 92ad6eb fixed determining ef type
new 3a557ad fixed parsing pace output data
new 734cb67 fixed algo ref
new b94c163 card-asepcos: fixed puk handling
new bd3cfcf fixed copy/paste error
new 2e04fa9 fixed pointless array comparisons
new 6759c04 don't ignore errors
new 2f3eaa1 Merge pull request #366 from frankmorgner/coverity
new ea40322 added travis-ci configuration
new db0cb75 Merge pull request #363 from frankmorgner/travis-ci
new 2a7db13 Merge branch 'master' into coverity_scan
new 6a7875c use general travis-ci badge
new 44ed1a3 readme.md: fix url of status icon
new 9cb4a09 readme.md: add jenkins build status
new 53e1992 use strerror for failure of gettimeofday
new ac4da89 use memmove for overlapping memory
new 5e3d541 removed useless check for non-null array
new 47df45f set le instead of p2 twice
new ed95724 check return values
new 5cafbe0 fixed undefined shift behaviour
new 761e175 fixed sc_driver_version check
new a4c8d67 fixed improper use of negative value
new 8d902d1 fixed out of bounds read/write/access
new a3fc62f fixed NULL dereference (or warning thereof)
new 11881a6 removed/fixed dead code
new 3a92bf7 fixed resource leaks
new 08eb700 revert or partially revert some of recent commits
new faaa11e Prefer serial number from EF(TokenInfo) and cached serials over CARDCTL
new 9148f21 pkcs15-pubkey: possible NULL dereference, logs
new e374f88 pkcs15-pubkey: add EC params in SPKI encoding
new 96265e6 pkcs15init: superpluous 'ec-params' in init data
new 22fb49b PKCS#11: Improve compliance for public keys.
new d162143 Updating to fix failure of ePass2003 USB smart card due to failure to re-authenticate secure messaging when card is reset due to multiple applications using PKCS11 sessions
new 3c1d8ad accept no output for 'SELECT' MF and 'SELECT' DF_NAME
new 14ed749 Create CONTRIBUTING.md
new 981a0fb Fix-up changes caused by Coverity scan
new 572218c Fall through comment before break
new e37690a Merge pull request #376 from dengert/piv-reverts
new d7475c8 Add brackets in card-piv.c
new 45a4def Merge pull request #382 from dengert/piv-fix1
new fa92383 introduce EC curve OID into algorithm info data
new 80c4966 helper functions to change format of ECDSA signature
new b08671f pkcs15-crypt: option for output format of ECDSA signature
new ced77ae cardos: overwrite content of deleted private key
new da07e22 use memmove for overlapping memory
new 236e68b fixed NULL dereference
new 16ea926 fixed indentation
new bff0ea4 fixed compiler warning
new 9f3dbaa honour warnings
new 0ffad3f Fix for bad caching behavior of PIV PKCS15 emulator.
new 58d1f1d Merge pull request #385 from darconeous/patch-2
new 8cf99a9 asn1: fix error in EC signature encode helper
new 1123768 libopensc: invalid 'free' and 'assign NULL' order
new 31124ac pkcs15init: allocate EC parameters
new 6f6286d pkcs11: generate EC key: use allocated EC params
new 1739300 pkcs15: fix name of EC curve, add new ones
new 2abe135 asn1: re-fix error in EC signature encode helper
new 48bd6b0 Add support for the IsoApplet (Java Card applet)
new 6f9e894 IsoApplet: set lock when doing command chaining
new e3cc851 IsoApplet: EC key-gen rework and refactorings
new c463f1a IsoApplet: Do not set RSA hashes
new 09acfd7 IsoApplet: ECDSA signatures - only strip excess zeroes
new 6cdf6c0 IsoApplet: use AID directly when selecting applet
new e791948 IsoApplet: Simplify the private key import
new 73b3917 IsoApplet: Don't set ECC field length of 512
new 0473dec IsoApplet: clear memory after prkey import.
new 43fa99c IsoApplet: Move the key gen debug info to the right places
new 5628a06 IsoApplet: Align comments with spaces instead of tabs
new 44d724b IsoApplet: fix more (comment) alignment issues with tabstop=8
new da05fa2 IsoApplet: try to fix EC parameters when importing private keys from file
new 3312c1e IsoApplet: install isoApplet.profile on windows
new a9d43af IsoApplet: use a buffer large enough when generating EC keys larger than 320 bit
new 59eeacb IsoApplet: react to removal of sc_pkcs15_ec_parameters in fa923831f8e8073f0b57ea492c9e2e93f661a373
new 1aeebda IsoApplet: react to changes of _sc_card_add_ec_alg() in fa923831f8e8073f0b57ea492c9e2e93f661a373
new 85d16fb IsoApplet: use helper function sc_asn1_sig_value_sequence_to_rs() introduced in #381
new 74aeb8c IsoApplet: register supported EC curve *per curve*
new 595be37 Merge pull request #305 from philipWendland/master
new 877fa86 isoApplet: prototype of asn1_sig_value_sequence_to_rs() has changed
new 1becc45 Updated dnie-tool.1.xml for consistency
new b8c0df7 Merge pull request #390 from lbakman/master
new 2fffbce myeid: update EC support for MyEID-v4 card
new c0c8a89 mcrd: move driver to the end of detection list
new 435291f iasecc: initial support for Morpho IAS Agent Card
new c019a62 pkcs11: parameter checking for 'get_mechanism_list'
new 5149dd3 belpic: Support 2K cards
new b1bdfae sc-hsm: revert broken a4c8d671
new f3573ed fixed requesting PACE features
new 4b51b99 pkcs11-tool: harmonize supported ECC curves
new 090aed2 ec: fix length of allocated mem for EC signature
new bba6e17 isoApplet: Fix indentation of isoApplet.profile
new ab5ca33 IsoApplet: Obtain applet version and card capabilities *after* match_card()
new e258cec IsoApplet: Add nistp224, secp192k1 and secp256k1 curves
new 76facf0 IsoApplet: add support for GET CHALLENGE
new 9078856 IsoApplet: register ECC mechanisms only when ECC is supported by card
new c8d206e IsoApplet: Increase indicated version to 00.06
new 3b873ad win32: allows UNICODE built.
new 5007e9f md: fix build without OPENSSL_VERSION_NUMBER
new 548c278 Add support for ACOS5-64 cards.
new 117f3a7 iasecc: Fix key usage when provisioning card
new 4a4d750 iasecc: Fix log output is always displayed
new a05e7ca ignore errors on `apt-get update`
new 0790969 recognize short EF identifier
new 88ec461 tool: RFC4716 compliant key output
new 30b24e7 fixed memory corruption in encode_file_structure
new a251b93 use xcodebuild with `-target OpenSC`
new 311958e Travis-ci: build dmg on OS X
new 88fa362 nobody likes being pedantic
new 00b0425 Merge pull request #420 from frankmorgner/osx
new e07c4bc added sc_sm_stop
new c0fac2a stop SM in case of SM errors
new 95ad11a iasecc: special case for 'Gemalto GemPC Pinpad'
new f93835a Allow log functions to be called with ctx==NULL
new fa045d4 pkcs11-tool: Let the user choose the ECDSA signature format
new db860c0 export sc_sm_stop
new 8ea328f Minor code quality improvements.
new 4000e6d Add missed option debug info Fix misspelled key in --help output (thanks Philip Wendland).
new ce962c1 fix #425: guid computation issue
new 49598b6 libopensc: invalid OID comparison for EC keys
new 5757d82 libopensc: stored-length member in PIN CMD data
new 3e2d51e iasecc: use PIN PAD with variable PIN length
new d7ab0df export sc_pkcs15_bind_internal
new 643080b honour key capabilities for decryption/verification
new 6e84ee0 pkcs11-tool: honour unsupported signature mechs
new 6caa85f Issue 395. Avoiding a couple of memory leaks.
new 96556de fix #433: EC privateD octetstring may need leading zeros
new a7a903f check ATRs even for forced card driver
new 23ca1f1 pkcs11-tool: Add support for creating EC privkey
new 17eb40e doc: add 'signature-format' option for pkcs15-crypt
new bcb5fc1 honour HAVE_CONFIG_H
new de5c224 silence some shell commands in Makefile
new 3b545b5 Merge pull request #446 from frankmorgner/protocol
new ee23d28 EC field_length changes for non-multiple of 8 bits curves
new 0a754b6 pkcs11-tool: pass key usage flags to created objs
new c45c90a sc_pkcs11_close_all_sessions: close all sessions even if closing one fails
new 54f285d correctly handle readers that have been removed
new c8a7c8b fixed typo
new cbc43ee fixed compiler warning
new e359b2a handle unexpected meltdown of PC/SC service
new 02f3997 added error handling to print_ssh_key
new 9f318b8 remove slots of removed readers
new c754e3f Merge pull request #444 from frankmorgner/pkcs11-error-handling
new 0dba2d4 sc-hsm: fix signed char for ARM platforms
new f0189e8 pkcs11-tool: option to 'decrypt some data'
new ed588d2 pkcs11: fixed broken C_Decrypt
new 1586f24 iso7816.c: fix SC_PIN_CMD_IMPLICIT_CHANGE with pinpad
new 976db5c card-masktech: initial commit
new 689ece2 card-masktech.c: code improvements
new 6523f3f added LOG_TEST_GOTO_ERR and SC_TEST_GOTO_ERR
new 1f69a0d fixed indenting
new c7afbb4 pkcs15-algo: fixed resource leak
new 9263da4 pkcs15: fixed resource leak
new 3a6c4a0 pkcs15-cache: fixed resource leak
new 18e9629 pkcs15-data: fix memory leakage
new 841d89d pkcs15-pubkey: fixed resource leak
new 3cfb44d pkcs15-syn: fixed resource leak
new e215b7b sm-common: fixed resource leak
new 4af4308 authentic: fixed resource leak
new d4fd135 pkcs15-cflex: fixed resource leak
new 68becc8 pkcs15-gpk: fixed resource leak
new 475ce71 iasecc: fixed resource leak
new ac84d28 myeid: fixed resource leak
new d636338 pkcs15-oberthur: fix memory leakage
new 44253c6 pkcs15-rtecp: fixed resource leak
new 6cb99be pkcs15-setcos: fixed resource leak
new 01e573b profile: fixed resource leak
new efbd406 sm-cwa14890: fixed resource leak
new b0a708b pintest: fixed resource leak
new c65caed openpgp-tool: fixed resource leak
new a83da8a pkcs15-crypt: fixed resource leak
new 1f16f24 pkcs15-init: fixed resource leak
new d96f25c pkcs15-tool: fixed resource leak
new bbb803f sc-hsm-tool: fixed resource leak
new 8838388 pkcs15-infocamere: fixed resource leak
new ecc9b9d openssl: fixed resource leak
new 2c32575 pkcs11-tool: fixed resource leak
new e84951a fix resource leaks in while registering PKCS#11 mechanisms
new e338b7c framework-pkcs15: fixed memory leak when encoding pubkey
new ef4edb7 fixed invalid free
new fd3d07a Issue #451: Newer DNIe not working with OpenSC.
new 37b6f0b IsoApplet: fix EC mechanism ext_flag
new 78e434d register EC mechanisms with flags independent of RSA flags
new 4142456 PIV, sc-hsm, myeid: register ECDH card capabilites
new 254320e myeid: seperate ECC from RSA flags
new 3e0356b register CKM_ECDSA and CKM_ECDSA_SHA1 depending on card capabilities
new f154cdc pkcs15-pin: sc_pkcs15_unblock_pin: avoid to ask the PUK twice
new 3cf56d8 pkcs15init: fix non-unique-ID control
new e0aec37 pkcs15init: 'store-or-update' certificate option
new 6a2e9aa Merge branch 'upstream/master'
new 2667394 better parameter checks for CardGetProperty and CardSetProperty Added value for secure key injection (to reject it properly because it is not implemented)
new b7f000d add parameter checking for CardSignData
new 6aaf9d4 fix a problem: CardDeauthenticate(ex) do nothing, but the base CSP think that the user is deauthenticate from the card. The user is still authenticated !
new 54f4623 Fix CardSignData "invalid signature" bug when called from CryptSignHash(CRYPT_NOHASHOID)
new 9544844 CardSignData: better error message if the card do not support the signing operation with the algorithm (replace the return code from internal error to unsupported)
new c5efcae CardRSADecrypt: better parameter checking
new cb38657 CardSignData: add support for missing hash algorithm
new 8036388 minidriver PINPAD: fix a regression issue (the parameter - message - can be set to null) Improve the error code when the user cancel the operation ("The operation was canceled by the user" instead of "invalid parameter")
new 9601041 win32 setup: * change the default wix background image (aka brand the setup) * add the missing ARPCONTACT property
new 1e78e16 fix memory leak in minidriver: the virtual filesystem is never freed and in some case when an error occurs
new a5593af minidriver: better parameter checking with CardQueryKeySizes and CardGetContainerProperty
new f331b35 minidriver: make the parameter check be aware of pinpad capabilities
new 8062eac minidriver: fix CardQueryCapabilities and CardGetProperty fKeyGen flag. A read only card cannot generate keys
new ad47d4d minidriver: * factorize the code from CardAuthenticatePIN into CardAuthenticateEx * allows authentication with the PINPAD without a UI
new d96e53b minidriver: better error code if CARD_PIN_SILENT_CONTEXT is set
new f3c9525 fix attempt remaining regression if the card is blocked
new 659da4f minidriver: CardSignData - better parameter checking
new a671cf8 CardAuthenticateEx: test for remaining attempts before ...
new 6b58b1d minidriver: merge CardUnblockPin and CardChangeAuthenticator into CardChangeAuthenticatorEx
new 7d225e2 minidriver: add support for the special msroot file which contains the root certificates stored on the card.
new 6127fe6 minidriver: change the UI (remplace a messagebox by a nice dialog) ; add a translation function for errors
new 33cf161 minidriver: pinpad authentication is now working for smart card logon !!! (still needs 5 pinpad entries)
new 017d98f trying to fix image path when compiling
new 5a1ca44 custom action skeleton (without actions) - help welcome ...
new 9e07a75 detect the wix components installed on the build machine
new 0b68347 win32 setup: add basic minidriver card registration and unregistration via a custom action
new 2f6d1b5 avoid the failure: "Failed to get file version of custom action dll"
new aede9b1 minidriver: fix compilation warnings on x64 (size_t <> DWORD)
new ac82a96 minidriver: add my name in the author list setup: change the url to match the new one
new 8ec000e minidriver: change the icon of the pinpad dialog
new 7784d24 win32/customactions.cpp: add the MaskTech card minidriver registration data
new 72b5d8f md: use 'store-or-update' store certificate mode
new c7af08c PIV - read just length of object to get size
new 8b62221 muscle: add ATR of Tyfone mSD card
new 492ffe0 iso7816.c: allow file length stored in more than 2 bytes
new 6a6ef61 some more error checks in minidriver in regards to card ejects
new a09ca24 libopensc: initialize value returned by sc_select_file
new 5be35fb muscle: change TyfoneAT historical bytes to 'Tyfone 242R2'
new 6349836 Include onepin-opensc-pkcs11.dll in installer
new 01b395e card-masktech.c: add 2 more ATR
new 8c94662 Add --test-fork option to pkcs11-tool
new 31cb40d revision: 0.15.0
new 582d96c Merge the original 'upstream' branch with upstream's new master branch
new 992df91 Imported Upstream version 0.15.0
new 6f9ec55 Merge tag 'upstream/0.15.0'
new d9897d5 New upstream release.
new 055c15c debian/patches/0001-belpic_Support_2k_cards.patch: Remove upstreamed patch.
new 0330bfa debian/gbp.conf: Use upstream-vcs-tag.
The 5835 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
.gitignore | 17 +
.travis.yml | 69 +
CONTRIBUTING.md | 3 +
MacOSX/build-package.in | 30 +-
NEWS | 64 +
README.md | 14 +
configure.ac | 71 +-
debian/changelog | 16 +
debian/control | 29 +-
debian/copyright | 540 +++++++-
debian/gbp.conf | 3 +
debian/opensc-pkcs11.install | 4 +-
debian/opensc.docs | 2 +-
debian/opensc.install | 14 +-
debian/patches/0001-belpic_Support_2k_cards.patch | 143 --
debian/patches/series | 1 -
doc/tools/Makefile.am | 21 +-
doc/tools/completion-template | 45 +
doc/tools/{dnie-tool.xml => dnie-tool.1.xml} | 83 +-
doc/tools/openpgp-tool.1.xml | 5 +-
doc/tools/pkcs11-tool.1.xml | 24 +-
doc/tools/pkcs15-crypt.1.xml | 13 +-
doc/tools/pkcs15-init.1.xml | 16 +-
doc/tools/pkcs15-tool.1.xml | 16 +-
doc/tools/sc-hsm-tool.1.xml | 16 +-
doc/tools/westcos-tool.1.xml | 10 +-
etc/Makefile.am | 2 +-
etc/opensc.conf.in | 8 +
src/common/compat_getopt.c | 2 +
src/common/compat_getopt_main.c | 2 +-
src/common/compat_getpass.c | 2 +
src/common/compat_strlcat.c | 2 +
src/common/compat_strlcpy.c | 2 +
src/common/libpkcs11.c | 2 +
src/common/libscdl.c | 6 +-
src/libopensc/Makefile.am | 1 +
src/libopensc/Makefile.mak | 3 +-
src/libopensc/apdu.c | 6 +-
src/libopensc/asn1.c | 166 ++-
src/libopensc/asn1.h | 17 +-
src/libopensc/base64.c | 2 +
src/libopensc/card-acos5.c | 4 +
src/libopensc/card-akis.c | 2 +
src/libopensc/card-asepcos.c | 81 +-
src/libopensc/card-atrust-acos.c | 2 +
src/libopensc/card-authentic.c | 100 +-
src/libopensc/card-belpic.c | 177 ++-
src/libopensc/card-cardos.c | 2 +
src/libopensc/card-default.c | 2 +
src/libopensc/card-dnie.c | 329 ++---
src/libopensc/card-entersafe.c | 4 +-
src/libopensc/card-epass2003.c | 42 +-
src/libopensc/card-flex.c | 29 +-
src/libopensc/card-gemsafeV1.c | 4 +-
src/libopensc/card-gpk.c | 77 +-
src/libopensc/card-ias.c | 4 +-
src/libopensc/card-iasecc.c | 188 ++-
src/libopensc/card-incrypto34.c | 4 +-
src/libopensc/card-isoApplet.c | 1291 ++++++++++++++++++
src/libopensc/card-itacns.c | 60 +
src/libopensc/card-jcop.c | 2 +
src/libopensc/card-masktech.c | 375 +++++
src/libopensc/card-mcrd.c | 29 +-
src/libopensc/card-miocos.c | 2 +
src/libopensc/card-muscle.c | 81 +-
src/libopensc/card-myeid.c | 577 +++++---
src/libopensc/card-oberthur.c | 41 +-
src/libopensc/card-openpgp.c | 21 +-
src/libopensc/card-piv.c | 569 ++++++--
src/libopensc/card-rtecp.c | 2 +
src/libopensc/card-rutoken.c | 2 +
src/libopensc/card-sc-hsm.c | 24 +-
src/libopensc/card-setcos.c | 13 +-
src/libopensc/card-starcos.c | 2 +
src/libopensc/card-tcos.c | 4 +-
src/libopensc/card-westcos.c | 19 +-
src/libopensc/card.c | 126 +-
src/libopensc/cardctl.h | 69 +-
src/libopensc/cards.h | 14 +-
src/libopensc/compression.c | 2 +
src/libopensc/ctbcs.c | 49 +-
src/libopensc/ctx.c | 16 +-
src/libopensc/cwa-dnie.c | 10 +-
src/libopensc/cwa14890.c | 101 +-
src/libopensc/cwa14890.h | 17 -
src/libopensc/dir.c | 7 +-
src/libopensc/errors.c | 2 +
src/libopensc/iasecc-sdo.c | 14 +-
src/libopensc/iasecc-sm.c | 12 +-
src/libopensc/internal-winscard.h | 7 +
src/libopensc/internal.h | 4 +-
src/libopensc/iso7816.c | 212 ++-
src/libopensc/libopensc.exports | 6 +
src/libopensc/log.c | 24 +-
src/libopensc/log.h | 12 +-
src/libopensc/muscle-filesystem.c | 4 +
src/libopensc/muscle.c | 62 +-
src/libopensc/opensc.h | 138 +-
src/libopensc/p15card-helper.c | 4 +-
src/libopensc/padding.c | 2 +
src/libopensc/pkcs15-actalis.c | 6 +-
src/libopensc/pkcs15-algo.c | 126 +-
src/libopensc/pkcs15-atrust-acos.c | 23 +-
src/libopensc/pkcs15-cache.c | 13 +-
src/libopensc/pkcs15-cert.c | 2 +
src/libopensc/pkcs15-data.c | 9 +-
src/libopensc/pkcs15-dnie.c | 29 +-
src/libopensc/pkcs15-esinit.c | 2 +
src/libopensc/pkcs15-esteid.c | 2 +
src/libopensc/pkcs15-gemsafeGPK.c | 2 +
src/libopensc/pkcs15-gemsafeV1.c | 92 +-
src/libopensc/pkcs15-infocamere.c | 11 +-
src/libopensc/pkcs15-itacns.c | 7 +-
src/libopensc/pkcs15-oberthur.c | 4 -
src/libopensc/pkcs15-openpgp.c | 2 +
src/libopensc/pkcs15-pin.c | 13 +-
src/libopensc/pkcs15-piv.c | 14 +-
src/libopensc/pkcs15-postecert.c | 8 +-
src/libopensc/pkcs15-prkey.c | 37 +-
src/libopensc/pkcs15-pteid.c | 2 +
src/libopensc/pkcs15-pubkey.c | 247 +++-
src/libopensc/pkcs15-sc-hsm.c | 62 +-
src/libopensc/pkcs15-sec.c | 10 +-
src/libopensc/pkcs15-skey.c | 55 -
src/libopensc/pkcs15-starcert.c | 2 +
src/libopensc/pkcs15-syn.c | 31 +-
src/libopensc/pkcs15-tccardos.c | 2 +
src/libopensc/pkcs15-tcos.c | 8 +-
src/libopensc/pkcs15-westcos.c | 4 +-
src/libopensc/pkcs15.c | 64 +-
src/libopensc/pkcs15.h | 22 +-
src/libopensc/reader-ctapi.c | 22 +-
src/libopensc/reader-openct.c | 2 +
src/libopensc/reader-pcsc.c | 59 +-
src/libopensc/sc.c | 75 +-
src/libopensc/sec.c | 2 +
src/libopensc/sm.c | 39 +-
src/libopensc/sm.h | 14 +-
src/libopensc/types.h | 5 +-
src/libopensc/user-interface.c | 4 +
src/libsm/sm-common.c | 4 +-
src/minidriver/minidriver.c | 1426 +++++++++++++++-----
src/minidriver/versioninfo-minidriver.rc.in | 18 +
src/pkcs11/framework-pkcs15.c | 488 ++++---
src/pkcs11/framework-pkcs15init.c | 3 +-
src/pkcs11/mechanism.c | 47 +-
src/pkcs11/misc.c | 24 +
src/pkcs11/openssl.c | 47 +-
src/pkcs11/pkcs11-display.c | 44 +-
src/pkcs11/pkcs11-display.h | 2 +-
src/pkcs11/pkcs11-global.c | 2 +-
src/pkcs11/pkcs11-object.c | 94 +-
src/pkcs11/pkcs11-session.c | 8 +-
src/pkcs11/pkcs11-spy.c | 4 +-
src/pkcs11/pkcs11.h | 21 +-
src/pkcs11/sc-pkcs11.h | 7 +-
src/pkcs11/slot.c | 42 +-
src/pkcs15init/Makefile.am | 6 +-
src/pkcs15init/Makefile.mak | 3 +-
src/pkcs15init/isoApplet.profile | 158 +++
src/pkcs15init/pkcs15-asepcos.c | 30 +-
src/pkcs15init/pkcs15-authentic.c | 19 +-
src/pkcs15init/pkcs15-cardos.c | 62 +-
src/pkcs15init/pkcs15-cflex.c | 3 +-
src/pkcs15init/pkcs15-entersafe.c | 7 +-
src/pkcs15init/pkcs15-epass2003.c | 7 +-
src/pkcs15init/pkcs15-gpk.c | 6 +-
src/pkcs15init/pkcs15-iasecc.c | 71 +-
src/pkcs15init/pkcs15-init.h | 4 +-
src/pkcs15init/pkcs15-isoApplet.c | 796 +++++++++++
src/pkcs15init/pkcs15-jcop.c | 29 +-
src/pkcs15init/pkcs15-lib.c | 149 +-
src/pkcs15init/pkcs15-muscle.c | 6 -
src/pkcs15init/pkcs15-myeid.c | 80 +-
src/pkcs15init/pkcs15-oberthur-awp.c | 123 +-
src/pkcs15init/pkcs15-oberthur.c | 23 +-
src/pkcs15init/pkcs15-openpgp.c | 6 +-
src/pkcs15init/pkcs15-rtecp.c | 4 +-
src/pkcs15init/pkcs15-sc-hsm.c | 33 +-
src/pkcs15init/pkcs15-setcos.c | 7 +-
src/pkcs15init/pkcs15-westcos.c | 5 +-
src/pkcs15init/profile.c | 13 +-
src/scconf/parse.c | 46 +-
src/scconf/sclex.c | 9 +-
src/smm/sm-card-authentic.c | 171 ---
src/smm/sm-card-iasecc.c | 123 +-
src/smm/sm-cwa14890.c | 19 +-
src/smm/sm-global-platform.c | 74 -
src/tests/base64.c | 3 +-
src/tests/lottery.c | 12 +-
src/tests/p15dump.c | 18 +-
src/tests/pintest.c | 28 +-
src/tests/sc-test.c | 8 -
src/tools/cardos-tool.c | 226 +---
src/tools/cryptoflex-tool.c | 9 +-
src/tools/dnie-tool.c | 6 +-
src/tools/openpgp-tool.c | 66 +-
src/tools/opensc-explorer.c | 6 +-
src/tools/opensc-tool.c | 4 +-
src/tools/piv-tool.c | 22 +-
src/tools/pkcs11-tool.c | 449 ++++--
src/tools/pkcs15-crypt.c | 47 +-
src/tools/pkcs15-init.c | 117 +-
src/tools/pkcs15-tool.c | 234 ++--
src/tools/sc-hsm-tool.c | 277 ++--
src/tools/util.c | 34 +-
src/tools/util.h | 6 +
src/tools/westcos-tool.c | 38 +-
win32/Make.rules.mak | 21 +-
win32/Makefile.am | 26 +-
win32/Makefile.mak | 12 +-
win32/OpenSC.wxs.in | 59 +-
win32/bannrbmp.bmp | Bin 0 -> 85894 bytes
win32/customactions.cpp | 264 ++++
win32/customactions.exports | 2 +
win32/dlgbmp.bmp | Bin 0 -> 461814 bytes
.../versioninfo-customactions.rc.in | 3 +-
win32/winconfig.h.in | 4 +
218 files changed, 9900 insertions(+), 4178 deletions(-)
create mode 100644 .travis.yml
create mode 100644 CONTRIBUTING.md
create mode 100644 README.md
create mode 100644 debian/gbp.conf
delete mode 100644 debian/patches/0001-belpic_Support_2k_cards.patch
delete mode 100644 debian/patches/series
create mode 100644 doc/tools/completion-template
rename doc/tools/{dnie-tool.xml => dnie-tool.1.xml} (52%)
mode change 100755 => 100644
create mode 100644 src/libopensc/card-isoApplet.c
create mode 100644 src/libopensc/card-masktech.c
create mode 100644 src/pkcs15init/isoApplet.profile
create mode 100644 src/pkcs15init/pkcs15-isoApplet.c
create mode 100644 win32/bannrbmp.bmp
create mode 100644 win32/customactions.cpp
create mode 100644 win32/customactions.exports
create mode 100644 win32/dlgbmp.bmp
copy src/minidriver/versioninfo-minidriver.rc.in => win32/versioninfo-customactions.rc.in (95%)
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-opensc/opensc.git
More information about the pkg-opensc-commit
mailing list