summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/ssh-pkcs11.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* fix use-after-free in ssh-pkcs11; found by hshoexer w/AFLmarkus2019-03-081-1/+3
|
* fix NULL-deref crash in PKCS#11 code when attempting login to a tokendjm2019-02-041-2/+17
| | | | requiring a PIN; reported by benno@ fix mostly by markus@
* Correct some bugs in PKCS#11 token PIN handling at initial login,djm2019-01-221-12/+22
| | | | | | | the attempt at reading the PIN could be skipped in some cases especially on devices with integrated PIN readers. based on patch from Daniel Kucera in bz#2652; ok markus@
* Support keys that set the CKA_ALWAYS_AUTHENTICATE by requring adjm2019-01-221-26/+95
| | | | | | fresh login after the C_SignInit operation. based on patch from Jakub Jelen in bz#2638; ok markus
* always print the caller's error message in ossl_error(), even when theredjm2019-01-211-2/+3
| | | | are no libcrypto errors to report.
* get the ex_data (pkcs11_key object) back from the keys at thedjm2019-01-211-9/+8
| | | | index at which it was inserted, rather than assuming index 0
* use ECDSA_SIG_set0() instead of poking signature values intodjm2019-01-211-3/+14
| | | | | structure directly; the latter works on LibreSSL but not on OpenSSL. From portable.
* we use singleton pkcs#11 RSA_METHOD and EC_KEY_METHOD now, so theredjm2019-01-201-7/+3
| | | | | | is no need to keep a copy of each in the pkcs11_key object. work by markus@, ok djm@
* KNF previous; from markus@djm2019-01-201-6/+6
|
* use OpenSSL's RSA reference counting hooks to implicitly clean updjm2019-01-201-35/+21
| | | | | | | | pkcs11_key objects when their owning RSA object's reference count drops to zero. Simplifies the cleanup path and makes it more like ECDSA's work by markus@, ok djm@
* make the PKCS#11 RSA code more like the new PKCS#11 ECDSA code:djm2019-01-201-16/+29
| | | | | | | use a single custom RSA_METHOD instead of a method per key suggested by me, but markus@ did all the work. ok djm@
* fix leak of ECDSA pkcs11_key objectsdjm2019-01-201-2/+21
| | | | work by markus, ok djm@
* use EVP_PKEY_get0_EC_KEY() instead of direct access of EC_KEY internalsdjm2019-01-201-4/+3
| | | | | | as that won't work on OpenSSL work by markus@, feedback and ok djm@
* cleanup PKCS#11 ECDSA pubkey loading: the returned object should neverdjm2019-01-201-10/+14
| | | | | | have a DER header work by markus; feedback and ok djm@
* cleanup unnecessary code in ECDSA pkcs#11 signature support: thedjm2019-01-201-25/+16
| | | | | | sign operation does not return DER, but a concatenation of r|s work by markus@, feedback and ok djm@
* add support for ECDSA keys in PKCS#11 tokensdjm2019-01-201-204/+1149
| | | | Work by markus@ and Pedro Martelletto, feedback and ok me@
* hold our collective noses and use the openssl-1.1.x API in OpenSSH;djm2018-09-131-16/+41
| | | | feedback and ok tb@ jsing@ markus@
* Remove all guards for calls to OpenSSL free functions - all of thesejsing2018-02-071-3/+2
| | | | | | | | | functions handle NULL, from at least OpenSSL 1.0.1g onwards. Prompted by dtucker@ asking about guards for RSA_free(), when looking at openssh-portable pr#84 on github. ok deraadt@ dtucker@
* Switch to recallocarray() for a few operations. Both growth and shrinkagederaadt2017-05-311-3/+3
| | | | | | are handled safely, and there also is no need for preallocation dances. Future changes in this area will be less error prone. Review and one bug found by markus
* sshkey_new() might return NULL (pkcs#11 code only); ok djm@markus2017-05-301-2/+3
|
* Improve pkcs11_add_provider() logging: demote some excessivelydjm2016-10-281-15/+26
| | | | | | verbose error()s to debug()s, include PKCS#11 provider name and slot in log messages where possible. bz#2610, based on patch from Jakub Jelen
* avoid fatal() for PKCS11 tokens that present empty key IDsdjm2016-02-121-3/+5
| | | | bz#1773, ok markus@
* don't ignore PKCS#11 hosted keys that return empty CKA_ID;djm2015-07-181-6/+14
| | | | patch by Jakub Jelen via bz#2429; ok markus
* skip uninitialised PKCS#11 slots; patch from Jakub Jelen in bz#2427djm2015-07-181-1/+6
| | | | ok markus@
* support PKCS#11 devices with external PIN entry devicesdjm2015-05-271-12/+20
| | | | | bz#2240, based on patch from Dirk-Willem van Gulik; feedback and ok dtucker@
* rename xrealloc() to xreallocarray() since it follows that form.deraadt2015-04-241-2/+2
| | | | ok djm
* missing ;deraadt2015-02-031-2/+2
| | | | djm and mlarkin really having great interactions recently
* handle PKCS#11 C_Login returning CKR_USER_ALREADY_LOGGED_IN;djm2015-02-021-5/+7
| | | | based on patch from Yuri Samoilenko; ok markus@
* sync ssh-keysign, ssh-keygen and some dependencies to the newdjm2015-01-151-13/+13
| | | | buffer/key API; mostly mechanical, ok markus@
* New key API: refactor key-related functions to be more library-like,djm2014-06-241-2/+2
| | | | | | | | | existing API is offered as a set of wrappers. with and ok markus@ Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew Dempsky and Ron Bowes for a detailed review a few months ago.
* revert __bounded change; it causes way more problems for portable thandjm2014-05-021-2/+2
| | | | it solves; pointed out by dtucker@
* use __bounded(...) attribute recently added to sys/cdefs.h instead ofdjm2014-03-261-2/+2
| | | | | | longform __attribute__(__bounded(...)); for brevity and a warning free compilation with llvm/clan
* add missing braces found by pedromarkus2013-11-131-2/+2
|
* from portable: s/true/true_val/ to avoid name collisions on dump platformsdjm2013-11-061-3/+3
|
* support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;markus2013-11-021-28/+98
| | | | fixes bz#1908; based on patch from Laurent Barbe; ok djm
* fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@djm2013-07-121-6/+6
|
* bye, bye xfree(); ok markus@djm2013-05-171-15/+12
|
* check length of value returned C_GetAttributValue for != 0markus2010-06-081-2/+8
| | | | from mdrtbugzilla@codefive.co.uk; bugzilla #1773; ok dtucker@
* retry lookup for private key if there's no matching key with CKA_SIGNmarkus2010-04-151-11/+34
| | | | | attribute enabled; this fixes fixes MuscleCard support (bugzilla #1736) ok djm@
* Add $OpenBSD$ tags in comments, our portable-syncing scripts use thesedjm2010-02-241-0/+1
|
* dlclose() call should also be #ifdef HAVE_DLOPENderaadt2010-02-211-0/+2
|
* unbreak build for NOPIC systems; noticed, help and ok deraadt@markus2010-02-201-0/+9
|
* replace our obsolete smartcard code with PKCS#11.markus2010-02-081-0/+544
ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11 provider (shared library) while ssh-agent(1) delegates PKCS#11 to a forked a ssh-pkcs11-helper process. PKCS#11 is currently a compile time option. feedback and ok djm@; inspired by patches from Alon Bar-Lev
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.