[Cryptech-Commits] [sw/pkcs11] branch master updated (3108919 -> 2a246c5)

[git at cryptech.is]

This is an automated email from the git hooks/post-receive script.

sra at hactrn.net pushed a change to branch master
in repository sw/pkcs11.

      from  3108919   whack copyrights
      adds  b204d24   Track API changes on sw/libhal rpc branch.
      adds  fcacebf   First pass on converting from direct libhal calls to libhal RPC calls.
      adds  63d3f7f   p11util now uses libhal and doesn't need to touch SQL.
      adds  f5269ae   Remove vestigial KEK code, that's all handled by libhal now.
      adds  f0556bb   Fix RSA key length and CKA_ID lookup.
      adds  441990d   The libhal RPC channel works better when one remembers to initialize it.
      adds  0b38c44   Rework unit_test framework to use argparse and to run RPC server automatically if present.
      adds  3a88ef5   Sort out some disagreements between our command line parsing and unit_test's defaults.
      adds  b99b156   Track (trivial) libhal API change.
      adds  7ce10ab   Add (back) ability to construct public keys from stored attributes.
      adds  b24ea47   Key flag handling, more trailing whitespace cleanup.
      adds  c5e8e6b   Fix broken unit test.
      adds  f0e3e1f   Update hsmbully recipe for libhsm RPC.
      adds  4be4d40   Use key hashes instead of CKA_ID to name objects in libhal keystore.
      adds  dddf744   Identical CKA_ID values no longer constitute a conflict, adjust test.
      adds  b45a4ff   Fix leading zero handling in Py11's BigInteger encoder.
      adds  80e4472   Start error handling cleanup and rewrite.
      adds  00b2ade   Bugfixes to new error handling code, refactor some unreadable nested logic in handle lookup code.
      adds  d77efd2   Refactor object creation code.
      adds  1011308   Add explicit generate/sign/verify unit tests both on and off the token, since we just demonstrated (the hard way) that testing only one is not sufficient.
      adds  dbd082f   Add test case using public key via C_CreateObject() to verify signature created by earlier keypair.
      adds  079d5ff   Track PIN changes on libhal master branch.
       new  0a4d6f6   Update unit tests to match new behavior: we no longer allow private keys to be stored as session objects, so test that doing so fails as expected, and update other tests to specify CKA_TOKEN = True.
       new  5e349fa   Add support for running only a specified subset of the unit tests.
       new  68d2f20   Support split keypairs, where private key is a token object and public key is a session object.  Doesn't actually save us anything, but Jakob tells us that this makes a difference on some HSMs so we people use this kind of setup and we need to support it.
       new  43d3149   A few RSA unit tests inspired by hsmbully.
       new  f266fbc   Support for adding private keys via C_CreateObject().
       new  a7fedbf   Set return value properly in C_CreateObject().
       new  2a246c5   Add test for loading an externally generated keypair via C_CreateObject().

The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Summary of changes:
 GNUmakefile          |   44 +-
 p11util.c            |  220 +++---
 pkcs11.c             | 1838 +++++++++++++++++++++++++++-----------------------
 py11/attributes.py   |    2 +-
 schema.sql           |   60 +-
 scripts/py11-test.py |    6 +-
 sql_common.h         |  259 -------
 unit_tests.py        |  775 ++++++++++++++-------
 8 files changed, 1684 insertions(+), 1520 deletions(-)
 delete mode 100644 sql_common.h