Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-13 | If a KEK is given to keywrap/unwrap, zero it out of the keywrap core after use. | Paul Selkirk | |
The key-export mechanism unwraps the key with the KEK from Master Key Memory, then re-wraps it with a random KEK. If that random KEK stays in the keywrap core, it will cause problems for all subsequent wrap/unwrap operations. | |||
2019-02-12 | Track Joachim's latest keywrap core - KEK remains in the AES core until it ↵ | Paul Selkirk | |
times out or is explicitly zeroed out. | |||
2018-09-11 | Track Joachim's latest keywrap core - unroll bank-switched memory into a ↵ | Paul Selkirk | |
number of core register blocks. | |||
2018-08-16 | Correct the limit on memory banks in the keywrap core. | Paul Selkirk | |
2018-08-15 | Add support for Joachim's keywrap core. | Paul Selkirk | |
2018-05-20 | Drop <assert.h> now that everything should be using hal_assert() instead. | Rob Austein | |
2018-05-20 | Better hal_core_alloc() semantics, assert() and printf() cleanup. | Rob Austein | |
Various fixes extracted from the abandoned(-for-now?) reuse-cores branch, principally: * Change hal_core_alloc*() to support core reuse and to pick the least-recently-used core of a particular type otherwise; * Replace assert() and printf() calls with hal_assert() and hal_log(), respectively. assert() is particularly useless on the HSM, since it sends its error message into hyperspace then hangs the HSM. | |||
2017-10-23 | Cleanup signed/unsigned mismatches, mostly in loop counters | Paul Selkirk | |
2017-04-17 | Make sure hal_aes_keyunwrap() frees the core in all error cases. | Paul Selkirk | |
2016-07-05 | Attempt to add resource management, for multiple cores of the same type. | Paul Selkirk | |
Find a suitable core, and mark it busy. Don't forget to release it as soon as you're done. This has a knock-on effect of un-const'ing core arguments and struct fields in a lot of places, and it moves some core checks around. | |||
2015-12-23 | RPC interface to TRNG and (incomplete) PIN code. | Rob Austein | |
2015-12-13 | whack copyrights | Paul Selkirk | |
2015-11-13 | Merge branch 'config_core_selector' | Paul Selkirk | |
2015-10-29 | Remove unused includes. | Paul Selkirk | |
2015-10-04 | Whack libhal API to use current configure_core_selector mechanism. | Rob Austein | |
Compiles, not yet tested. | |||
2015-06-21 | libcryptech -> libhal, doh. | Rob Austein | |
2015-06-04 | Disable HMAC-SHA-384 tests as neither my implementation nor PyCrypto | Rob Austein | |
passes them. Add missing copyright notices, other trivial cleanup (whitespace, etc). | |||
2015-05-24 | Typing "!" when one meant "~" has interesting effects when bit masking. | Rob Austein | |
2015-05-23 | Guess it might help to write the config value to the AES core after | Rob Austein | |
constructing it, doh. | |||
2015-05-21 | Add test harness: no useful tests yet, just the framework. | Rob Austein | |
Add human-readable error strings for hal_error_t codes. | |||
2015-05-20 | Add AES Key Wrap using Cryptech AES core. | Rob Austein | |