aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-05-12Fix RSA key length and CKA_ID lookup.Rob Austein
libhal RPC API takes RSA key lengths in bits, not bytes. Insisting on receiving matching CKA_ID in both public and private templates on key generation is probably unwise, so back down using CKA_ID from private template if provided, otherwise from the public template, and only raise incompete template error if both are missing.
2016-05-12Remove vestigial KEK code, that's all handled by libhal now.Rob Austein
2016-05-12p11util now uses libhal and doesn't need to touch SQL.Rob Austein
"p11util" is now something of a misnomer, since there's no longer anything about it that's specific to PKCS #11. Probably should become a libhal utility program, eventually.
2016-05-12First pass on converting from direct libhal calls to libhal RPC calls.Rob Austein
This version isn't really expected to work properly, but it's far enough along to be worth archiving before starting runtime testing.
2016-05-06Track API changes on sw/libhal rpc branch.Rob Austein
So far this is just dumb little things like changed names for old data types and functions. Changes to use new API features will come later.
2015-12-13whack copyrightsPaul Selkirk
2015-10-04Minimal conversion to config_core_selector libhal API. Not doingRob Austein
anything particularly clever with the new capabilities (yet).
2015-09-22Update README.md.Rob Austein
2015-09-22Makefile cleanup.Rob Austein
2015-09-22Clean up Python APIs to C_FindObject*() and C_GetSlotList().Rob Austein
2015-09-21Better test for keypair object class.Rob Austein
2015-09-21More key unit tests.Rob Austein
2015-09-21More test cases.Rob Austein
2015-09-21Add keyword arguments to C_GenerateKeyPair() in an attempt to presentRob Austein
a saner API to the user. This requires the library to know more than it really should about which attributes go into the public and private templates; if doing it this way proves infeasible, we may have to parse more details out of attributes.yaml to support this feature.
2015-09-21Unit tests for init, session, and login functions.Rob Austein
2015-09-21First step towards unit tests.Rob Austein
2015-09-20Minimal documentation for py11.Rob Austein
2015-09-20Debug mutex implementation.Rob Austein
2015-09-20Implement mutexes in py11 library using threading.Lock objects.Rob Austein
2015-09-18MUTEX callbacks via ctypes. Beware of Garbage Collector.Rob Austein
2015-09-17Enable locking in py11.Rob Austein
2015-09-16Call correct underlying methods from wrappers.Rob Austein
2015-09-16Add C_SignUpdate(), C_SignFinal(), C_VerifyUpdate(), C_VerifyFinal().Rob Austein
2015-09-15Checkpoint of py11-test.py.Rob Austein
2015-09-15py11 support for C_CreateObject().Rob Austein
2015-09-15Add C_CreateObject(), which required refactoring some of the ↵Rob Austein
template-checking code.
2015-09-14Debug PKCS #11 ECDSA signature and verification.Rob Austein
2015-09-12Move YAML parsing to external script so py11 doesn't have to worryRob Austein
about finding attributes.yaml at runtime.
2015-09-12Add attribute database based on attributes.yaml.Rob Austein
Simplify prototype definitions and move them to separate module.
2015-09-11Remove CKA_NAME_HASH_ALGORITHM for now. It appears in theRob Austein
specification but not in the header file, so we don't know its numeric value in any case. Re-add if and when it shows up in the header file.
2015-09-11Fix size_t vs CK_ULONG type mismatch (platform dependent).Rob Austein
2015-09-11Python ctypes arrays and pointers really do work just as in C, onceRob Austein
one wraps one's brain around the syntactic differences.
2015-09-11Add C_FindObject*() to py11.Rob Austein
2015-09-11First cut at Python interface to PKCS #11 using ctypes API.Rob Austein
2015-09-11verify_rsa_pkcs() should be static.Rob Austein
2015-09-09Add ECDSA signature and verification. Compiles, not tested.Rob Austein
2015-09-09Refactor C_Sign() and C_Verify() to move algorithm-dependent code toRob Austein
helper functions. As a happy side effect, this also simplifies locking slightly and gives us a straightforward path towards the *Update() and *Final() incremental-hashing functions. Compiles, not yet tested.
2015-09-08Merge branch 'master' into ecdsaRob Austein
2015-09-07Checkpoint of partial support for ECDSA. Compiles, not yet tested,Rob Austein
probably doesn't work. Probably should merge state_access branch before going much further with this.
2015-09-02Track changes to hal_rsa_key_t and hal_hash_state_t.Rob Austein
2015-07-23First pass at adding incremental digest support. C_Digest*() only soRob Austein
far. Compiles, not yet tested.
2015-07-17Add C_GetSessionInfo().Rob Austein
2015-07-17Don't insist that both keys in a pair must be token objects if eitherRob Austein
one is. Apparently making the public key be a session object is a standard hack for conserving space on the token.
2015-07-09Might help to spell function name correctly.Rob Austein
2015-07-09Add hashes to C_GetMechanismInfo().Rob Austein
2015-07-07Track move of third party libraries to /sw/thirdparty/.Rob Austein
2015-07-05Turn PKCS #11 debugging verbosity down a notch.Rob Austein
2015-07-03Tweaks to support cross-compilation.Rob Austein
2015-07-03Add p11util .gitignore.Rob Austein
2015-07-01Clean up raw SQL silliness in GNUmakefile "bully" target. Add --help.Rob Austein
Clean up trailing whitespace in multiple files. Add missing copyright.