index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
usr.bin
/
ssh
/
ssh-pkcs11.c
Age
Commit message (
Expand
)
Author
2021-11-18
avoid xmalloc(0) for PKCS#11 keyid for ECDSA keys (we already did this
Damien Miller
2021-08-11
remove a bunch of %p in format strings; leftovers of debuggings
Damien Miller
2021-06-25
fix decoding of X.509 subject name; from Leif Thuresson via bz3327
Damien Miller
2020-11-22
when loading PKCS#11 keys, include the key fingerprints and provider/slot
Damien Miller
2020-10-18
use the new variant log macros instead of prepending __func__ and
Damien Miller
2020-05-29
fix compilation on !HAVE_DLOPEN platforms; stub function was not
Damien Miller
2020-03-13
improve error messages for some common PKCS#11 C_Login failure cases;
Damien Miller
2020-03-06
pkcs11_register_provider: return < 0 on error; ok djm
Markus Friedl
2020-01-25
expose PKCS#11 key labels/X.509 subjects as comments
Damien Miller
2019-10-01
revert unconditional forced login implemented in r1.41 of ssh-pkcs11.c;
Damien Miller
2019-09-05
if a PKCS#11 token returns no keys then try to login and refetch
Damien Miller
2019-09-02
downgrade PKCS#11 "provider returned no slots" warning from log level
Damien Miller
2019-03-08
fix use-after-free in ssh-pkcs11; found by hshoexer w/AFL
Markus Friedl
2019-02-04
fix NULL-deref crash in PKCS#11 code when attempting login to a token
Damien Miller
2019-01-22
Correct some bugs in PKCS#11 token PIN handling at initial login,
Damien Miller
2019-01-22
Support keys that set the CKA_ALWAYS_AUTHENTICATE by requring a
Damien Miller
2019-01-21
always print the caller's error message in ossl_error(), even when there
Damien Miller
2019-01-21
get the ex_data (pkcs11_key object) back from the keys at the
Damien Miller
2019-01-21
use ECDSA_SIG_set0() instead of poking signature values into
Damien Miller
2019-01-20
we use singleton pkcs#11 RSA_METHOD and EC_KEY_METHOD now, so there
Damien Miller
2019-01-20
KNF previous; from markus@
Damien Miller
2019-01-20
use OpenSSL's RSA reference counting hooks to implicitly clean up
Damien Miller
2019-01-20
make the PKCS#11 RSA code more like the new PKCS#11 ECDSA code:
Damien Miller
2019-01-20
fix leak of ECDSA pkcs11_key objects
Damien Miller
2019-01-20
use EVP_PKEY_get0_EC_KEY() instead of direct access of EC_KEY internals
Damien Miller
2019-01-20
cleanup PKCS#11 ECDSA pubkey loading: the returned object should never
Damien Miller
2019-01-20
cleanup unnecessary code in ECDSA pkcs#11 signature support: the
Damien Miller
2019-01-20
add support for ECDSA keys in PKCS#11 tokens
Damien Miller
2018-09-13
hold our collective noses and use the openssl-1.1.x API in OpenSSH;
Damien Miller
2018-02-07
Remove all guards for calls to OpenSSL free functions - all of these
Joel Sing
2017-05-31
Switch to recallocarray() for a few operations. Both growth and shrinkage
Theo de Raadt
2017-05-30
sshkey_new() might return NULL (pkcs#11 code only); ok djm@
Markus Friedl
2016-10-28
Improve pkcs11_add_provider() logging: demote some excessively
Damien Miller
2016-02-12
avoid fatal() for PKCS11 tokens that present empty key IDs
Damien Miller
2015-07-18
don't ignore PKCS#11 hosted keys that return empty CKA_ID;
Damien Miller
2015-07-18
skip uninitialised PKCS#11 slots; patch from Jakub Jelen in bz#2427
Damien Miller
2015-05-27
support PKCS#11 devices with external PIN entry devices
Damien Miller
2015-04-24
rename xrealloc() to xreallocarray() since it follows that form.
Theo de Raadt
2015-02-03
missing ;
Theo de Raadt
2015-02-02
handle PKCS#11 C_Login returning CKR_USER_ALREADY_LOGGED_IN;
Damien Miller
2015-01-15
sync ssh-keysign, ssh-keygen and some dependencies to the new
Damien Miller
2014-06-24
New key API: refactor key-related functions to be more library-like,
Damien Miller
2014-05-02
revert __bounded change; it causes way more problems for portable than
Damien Miller
2014-03-26
use __bounded(...) attribute recently added to sys/cdefs.h instead of
Damien Miller
2013-11-13
add missing braces found by pedro
Markus Friedl
2013-11-06
from portable: s/true/true_val/ to avoid name collisions on dump platforms
Damien Miller
2013-11-02
support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;
Markus Friedl
2013-07-12
fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
Damien Miller
2013-05-17
bye, bye xfree(); ok markus@
Damien Miller
2010-06-08
check length of value returned C_GetAttributValue for != 0
Markus Friedl
[next]