Commits · d6d75c726e51c5596143cbe8cc6f6576cb39415c · mirrored_repos / smallstep / Pkcs11 Proxy

This project is mirrored from https://github.com/smallstep/pkcs11-proxy. Pull mirroring updated 17 minutes ago.

Jan 17, 2013
- Add XXX comment about mutexes in init_args. · d6d75c72
  Fredrik Thulin authored 12 years ago
  
  d6d75c72
Jan 15, 2013
- _connect_to_host_port: Add missing break statement. · 229e5171
  Fredrik Thulin authored 12 years ago
  
  229e5171
- Use getaddrinfo(). This adds IPv6 as well as fallback support. · 52c4f332
  Fredrik Thulin authored 12 years ago
  
  52c4f332
- rpc_C_Initialize: remove redundant code. · 58945b97
  Fredrik Thulin authored 12 years ago
  
  58945b97
Jan 09, 2013
- Avoid compiler warnings when passing ints to IN_ULONG_BUFFER. · 50fd6e9f
  Fredrik Thulin authored 12 years ago
  
  50fd6e9f
Jan 08, 2013
- clang reported using attrlen uninitialized when parsing fails · 63bc9fd5
  Fredrik Thulin authored 12 years ago
  
  63bc9fd5
- clang reported setting src = dup twice · b558f5bf
  Fredrik Thulin authored 12 years ago
  
  b558f5bf
Jan 07, 2013

rpc_C_GenerateKeyPair: Remove redundant check. · d4092d33
Fredrik Thulin authored 12 years ago

d4092d33

Remove obsolete input data checks. · 35589e58

Fredrik Thulin authored 12 years ago

Remove a bunch of input data checks now that byte buffers support
NULL data length pointers in order to be as transparent as possible.

35589e58

Check pkcs11_initialized "everywhere". · 3922334c

Fredrik Thulin authored 12 years ago

Since PKCS#11 module initialization is done globally on the server side,
the real PKCS#11 modules check for initialization is made a no-op. The
only place it is possible to check for proper initialization by the
application is here - on the client side.

3922334c

proto_read_byte_buffer: Support undefined buffer size. · 095eff3e

Fredrik Thulin authored 12 years ago

A number of PKCS#11 functions take a pointer to a buffer size as
argument. To be a transparent proxy of PKCS#11 calls, it is necessary to
support invoking these functions with a NULL pointer. pkcs11-proxy used
to send the buffer size as an integer and create a pointer to the integer
on the server side, but this is different to the backend PKCS#11 module
in some cases.

E.g. the C_Encrypt call is specified to have side effectes (finalizing)
when called with a NULL encrypted data length. The softhsm test suite
exposed that these side effects never occured because the NULL data length
pointer was conveyed as a valid pointer to the integer zero.

Since an additional uint8_t was added to "byte buffers", this is an
backwards incompatible change. As such, the version number in the protocol
greeting was increased (GCK_RPC_HANDSHAKE).

095eff3e

Dec 21, 2012

proto_read_byte_array: Don't pass size_t to egg_buffer_get_uint32. · 98eec86c

Fredrik Thulin authored 12 years ago

Passing size_t to _get_uint32 might leave garbage in top 32 bits of size_t
on 64 bits platforms. While initializing the size_t to 0 would probably
work, using a temporary uint32_t and casting that is more explicit IMO.

98eec86c

Dec 20, 2012
- Debug output return values in hex, to match pkcs11.h. · 8c4748ac
  Fredrik Thulin authored 12 years ago
  
  8c4748ac
Dec 19, 2012
- proto_read_attribute_array: allow len == 0 · 49f62ea2
  Fredrik Thulin authored 12 years ago
  
  Since proto_write_attribute_array() happily writes arrays with len == 0, we should probably parse them. Tounge in cheek.
  49f62ea2
- More input validation. · 39f7364c
  Fredrik Thulin authored 12 years ago
  
  39f7364c
Dec 18, 2012
- Check pkcs11_initialized in a number of functions. · 637df799
  Fredrik Thulin authored 12 years ago
  
  This harmonizes with the softhsm test suite.
  637df799
- rpc_C_Finalize: Change order of pReserved-check. · 4bbb8bc2
  Fredrik Thulin authored 12 years ago
  
  This matches the PKCS#11 specification better, and also matches the test cases for softhsm.
  4bbb8bc2
Jun 03, 2012
- Error in SetPIN · ebf0405a
  Andre Grueneberg authored 12 years ago
  
  SetPIN was using incorrect PIN length.
  ebf0405a
Jun 25, 2010
- pkcs11-proxy: exit gracefully when no socket is defined · 76194763
  Corentin Chary authored 15 years ago
  
  76194763
- pkcs11: fix debug traces · 5b6b2989
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  5b6b2989
- pkcs11-proxy: return coherent error codes · e25b74e2
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  e25b74e2
- pkcs11: windows fixes · 9b4c585a
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <cchary@commonit.com>
  9b4c585a
- pkcs11: introduce random application id · 2cdf2969
  Corentin Chary authored 15 years ago
  
  Will be needed to fix the WaitForSlotEvent issue Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  2cdf2969
- pkcs11-proxy: use send/recv instead of write/read for winsock2 compatibility · fadf2eb7
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  fadf2eb7
- pkcs11: premilinary work to fix 32/64 bit issue · 0a74306a
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  0a74306a
- pkcs11: win32 port · f5bc174b
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <cchary@commonit.com>
  f5bc174b
Feb 16, 2010
- Initial import · 93dc073f
  Corentin Chary authored 15 years ago
  
  Signed-off-by: Corentin Chary <corentin.chary@gmail.com>
  93dc073f