Large number of new commits in master

classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

Large number of new commits in master

Andreas Schwier (ML)
Happy new year to all of you.

Seems like the new year brings a lot of new commits.

Have these commit been reviewed in a pull request ? What's the purpose
of these commits ?

Would have been nice to see some additional information, either as an
information in Github or at this list.

Andreas

------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Large number of new commits in master

Viktor Tarasov-3
Hello,

most of these commits concern the minidriver, less important changes are related to pkcs11, and common pkcs15.
None of these commits is changing the current behavior.

minidriver:
- implemented CardChangeAuthenticator, CardUnblockPin, CardGetChallenge. 
  Now User PIN can be changed and unblocked using the Windows SmartCardLogon dialog

- introduced some MD related OpenSC configuration option
-- 'refuse create-container-mecanism':
   when both mechanisms are declared by MD, and when KEY-EXCHANGE key is asked to be generated, this key is not really generated by card, but generated by Windows and imported. This option is to prevent such behavioir
-- ' ignore-pin-length': normally PIN is not verified if supplied value do not conform the create PIN policy. This option is to force PIN verify and as a consequence to decrement the on-card 'tries-left' counter.

- now the common OpenSC framework gives to card's pkcs15 and pkcs15init drivers
  the possibility to use and create the MD related (non pkcs15) on-card files,
  to create and use the card content compatible with the native producer middleware.

pkcs11:
 - configuration option and changes in the common frameworks to accept the non pkcs15-binded cards.
   So that using of C_InitToken is possible to initialize the 'empty' card without a valid PKCS#15 on-card file system. 

build:
 - bootstrap script accepts the arguments.
  It facilitates the build of revisions stamped by commit, branch name, etc.
  Continuous integration is currently use it to build the packages stamped by the date of the last commit.
 
The rest of commits concerns the little bug fixes, code style issues, debug messages, auxiliary procedures that facilitate the data exchange between different OpenSC components (pkcs15, md, pkcs15init, pkcs11), etc...

Kind wishes,
Viktor.



On Wed, Jan 8, 2014 at 9:10 AM, Andreas Schwier <[hidden email]> wrote:
Happy new year to all of you.

Seems like the new year brings a lot of new commits.

Have these commit been reviewed in a pull request ? What's the purpose
of these commits ?

Would have been nice to see some additional information, either as an
information in Github or at this list.

Andreas

------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel


------------------------------------------------------------------------------
CenturyLink Cloud: The Leader in Enterprise Cloud Services.
Learn Why More Businesses Are Choosing CenturyLink Cloud For
Critical Workloads, Development Environments & Everything In Between.
Get a Quote or Start a Free Trial Today.
http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Large number of new commits in master

Andreas Schwier (ML)
Hi Viktor,

thanks for the clarification.

Good work - we rebased our branch and did the full regression testing
for the PKCS#11 without issues. We'll have a look at MD regression
testing next week.

Do you happen to know the release plan for 0.14 ?

Andreas


Am 10.01.2014 17:47, schrieb Viktor Tarasov:

> Hello,
>
> most of these commits concern the minidriver, less important changes are
> related to pkcs11, and common pkcs15.
> None of these commits is changing the current behavior.
>
> minidriver:
> - implemented CardChangeAuthenticator, CardUnblockPin, CardGetChallenge.
>   Now User PIN can be changed and unblocked using the Windows
> SmartCardLogon dialog
>
> - introduced some MD related OpenSC configuration option
> -- 'refuse create-container-mecanism':
>    when both mechanisms are declared by MD, and when KEY-EXCHANGE key is
> asked to be generated, this key is not really generated by card, but
> generated by Windows and imported. This option is to prevent such behavioir
> -- ' ignore-pin-length': normally PIN is not verified if supplied value do
> not conform the create PIN policy. This option is to force PIN verify and
> as a consequence to decrement the on-card 'tries-left' counter.
>
> - now the common OpenSC framework gives to card's pkcs15 and pkcs15init
> drivers
>   the possibility to use and create the MD related (non pkcs15) on-card
> files,
>   to create and use the card content compatible with the native producer
> middleware.
>
> pkcs11:
>  - configuration option and changes in the common frameworks to accept the
> non pkcs15-binded cards.
>    So that using of C_InitToken is possible to initialize the 'empty' card
> without a valid PKCS#15 on-card file system.
>
> build:
>  - bootstrap script accepts the arguments.
>   It facilitates the build of revisions stamped by commit, branch name, etc.
>   Continuous integration is currently use it to build the packages stamped
> by the date of the last commit.
>
> The rest of commits concerns the little bug fixes, code style issues, debug
> messages, auxiliary procedures that facilitate the data exchange between
> different OpenSC components (pkcs15, md, pkcs15init, pkcs11), etc...
>
> Kind wishes,
> Viktor.
>
>
>
> On Wed, Jan 8, 2014 at 9:10 AM, Andreas Schwier <
> [hidden email]> wrote:
>
>> Happy new year to all of you.
>>
>> Seems like the new year brings a lot of new commits.
>>
>> Have these commit been reviewed in a pull request ? What's the purpose
>> of these commits ?
>>
>> Would have been nice to see some additional information, either as an
>> information in Github or at this list.
>>
>> Andreas
>>
>>
>> ------------------------------------------------------------------------------
>> Rapidly troubleshoot problems before they affect your business. Most IT
>> organizations don't have a clear picture of how application performance
>> affects their revenue. With AppDynamics, you get 100% visibility into your
>> Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics
>> Pro!
>> http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
>> _______________________________________________
>> Opensc-devel mailing list
>> [hidden email]
>> https://lists.sourceforge.net/lists/listinfo/opensc-devel
>>
>


--

    ---------    CardContact Software & System Consulting
   |.##> <##.|   Andreas Schwier
   |#       #|   Schülerweg 38
   |#       #|   32429 Minden, Germany
   |'##> <##'|   Phone +49 571 56149
    ---------    http://www.cardcontact.de
                 http://www.tscons.de
                 http://www.openscdp.org


------------------------------------------------------------------------------
CenturyLink Cloud: The Leader in Enterprise Cloud Services.
Learn Why More Businesses Are Choosing CenturyLink Cloud For
Critical Workloads, Development Environments & Everything In Between.
Get a Quote or Start a Free Trial Today.
http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Large number of new commits in master

Viktor Tarasov-3
Hi Andreas,

Le 10/01/2014 18:00, Andreas Schwier (ML) a écrit :
> Do you happen to know the release plan for 0.14 ?

I have promised it for December and have not done, sorry.
Will try to find the time this month.
These massive commits to github are effectively the part of this work - in time shortage the abrupt actions.


Kind regards,
Viktor.


> Andreas
>
>
> Am 10.01.2014 17:47, schrieb Viktor Tarasov:
>> Hello,
>>
>> most of these commits concern the minidriver, less important changes are
>> related to pkcs11, and common pkcs15.
>> None of these commits is changing the current behavior.
>>
>> minidriver:
>> - implemented CardChangeAuthenticator, CardUnblockPin, CardGetChallenge.
>>   Now User PIN can be changed and unblocked using the Windows
>> SmartCardLogon dialog
>>
>> - introduced some MD related OpenSC configuration option
>> -- 'refuse create-container-mecanism':
>>    when both mechanisms are declared by MD, and when KEY-EXCHANGE key is
>> asked to be generated, this key is not really generated by card, but
>> generated by Windows and imported. This option is to prevent such behavioir
>> -- ' ignore-pin-length': normally PIN is not verified if supplied value do
>> not conform the create PIN policy. This option is to force PIN verify and
>> as a consequence to decrement the on-card 'tries-left' counter.
>>
>> - now the common OpenSC framework gives to card's pkcs15 and pkcs15init
>> drivers
>>   the possibility to use and create the MD related (non pkcs15) on-card
>> files,
>>   to create and use the card content compatible with the native producer
>> middleware.
>>
>> pkcs11:
>>  - configuration option and changes in the common frameworks to accept the
>> non pkcs15-binded cards.
>>    So that using of C_InitToken is possible to initialize the 'empty' card
>> without a valid PKCS#15 on-card file system.
>>
>> build:
>>  - bootstrap script accepts the arguments.
>>   It facilitates the build of revisions stamped by commit, branch name, etc.
>>   Continuous integration is currently use it to build the packages stamped
>> by the date of the last commit.
>>
>> The rest of commits concerns the little bug fixes, code style issues, debug
>> messages, auxiliary procedures that facilitate the data exchange between
>> different OpenSC components (pkcs15, md, pkcs15init, pkcs11), etc...
>>
>> Kind wishes,
>> Viktor.
>>
>>
>>
>> On Wed, Jan 8, 2014 at 9:10 AM, Andreas Schwier <
>> [hidden email]> wrote:
>>
>>> Happy new year to all of you.
>>>
>>> Seems like the new year brings a lot of new commits.
>>>
>>> Have these commit been reviewed in a pull request ? What's the purpose
>>> of these commits ?
>>>
>>> Would have been nice to see some additional information, either as an
>>> information in Github or at this list.
>>>
>>> Andreas
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Rapidly troubleshoot problems before they affect your business. Most IT
>>> organizations don't have a clear picture of how application performance
>>> affects their revenue. With AppDynamics, you get 100% visibility into your
>>> Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics
>>> Pro!
>>> http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
>>> _______________________________________________
>>> Opensc-devel mailing list
>>> [hidden email]
>>> https://lists.sourceforge.net/lists/listinfo/opensc-devel
>>>
>


------------------------------------------------------------------------------
CenturyLink Cloud: The Leader in Enterprise Cloud Services.
Learn Why More Businesses Are Choosing CenturyLink Cloud For
Critical Workloads, Development Environments & Everything In Between.
Get a Quote or Start a Free Trial Today.
http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Large number of new commits in master

Douglas E. Engert


On 1/11/2014 2:56 AM, Viktor Tarasov wrote:
> Hi Andreas,
>
> Le 10/01/2014 18:00, Andreas Schwier (ML) a écrit :
>> Do you happen to know the release plan for 0.14 ?
>
> I have promised it for December and have not done, sorry.
> Will try to find the time this month.
> These massive commits to github are effectively the part of this work - in time shortage the abrupt actions.

Before any release, we need lots of testing by all parties...
Last minutes commits hav3e been the source of many ewrrors in the past.

>
>
> Kind regards,
> Viktor.
>
>
>> Andreas
>>
>>
>> Am 10.01.2014 17:47, schrieb Viktor Tarasov:
>>> Hello,
>>>
>>> most of these commits concern the minidriver, less important changes are
>>> related to pkcs11, and common pkcs15.
>>> None of these commits is changing the current behavior.
>>>
>>> minidriver:
>>> - implemented CardChangeAuthenticator, CardUnblockPin, CardGetChallenge.
>>>    Now User PIN can be changed and unblocked using the Windows
>>> SmartCardLogon dialog
>>>
>>> - introduced some MD related OpenSC configuration option
>>> -- 'refuse create-container-mecanism':
>>>     when both mechanisms are declared by MD, and when KEY-EXCHANGE key is
>>> asked to be generated, this key is not really generated by card, but
>>> generated by Windows and imported. This option is to prevent such behavioir
>>> -- ' ignore-pin-length': normally PIN is not verified if supplied value do
>>> not conform the create PIN policy. This option is to force PIN verify and
>>> as a consequence to decrement the on-card 'tries-left' counter.
>>>
>>> - now the common OpenSC framework gives to card's pkcs15 and pkcs15init
>>> drivers
>>>    the possibility to use and create the MD related (non pkcs15) on-card
>>> files,
>>>    to create and use the card content compatible with the native producer
>>> middleware.
>>>
>>> pkcs11:
>>>   - configuration option and changes in the common frameworks to accept the
>>> non pkcs15-binded cards.
>>>     So that using of C_InitToken is possible to initialize the 'empty' card
>>> without a valid PKCS#15 on-card file system.
>>>
>>> build:
>>>   - bootstrap script accepts the arguments.
>>>    It facilitates the build of revisions stamped by commit, branch name, etc.
>>>    Continuous integration is currently use it to build the packages stamped
>>> by the date of the last commit.
>>>
>>> The rest of commits concerns the little bug fixes, code style issues, debug
>>> messages, auxiliary procedures that facilitate the data exchange between
>>> different OpenSC components (pkcs15, md, pkcs15init, pkcs11), etc...
>>>
>>> Kind wishes,
>>> Viktor.
>>>
>>>
>>>
>>> On Wed, Jan 8, 2014 at 9:10 AM, Andreas Schwier <
>>> [hidden email]> wrote:
>>>
>>>> Happy new year to all of you.
>>>>
>>>> Seems like the new year brings a lot of new commits.
>>>>
>>>> Have these commit been reviewed in a pull request ? What's the purpose
>>>> of these commits ?
>>>>
>>>> Would have been nice to see some additional information, either as an
>>>> information in Github or at this list.
>>>>
>>>> Andreas
>>>>
>>>>
>>>> ------------------------------------------------------------------------------
>>>> Rapidly troubleshoot problems before they affect your business. Most IT
>>>> organizations don't have a clear picture of how application performance
>>>> affects their revenue. With AppDynamics, you get 100% visibility into your
>>>> Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics
>>>> Pro!
>>>> http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
>>>> _______________________________________________
>>>> Opensc-devel mailing list
>>>> [hidden email]
>>>> https://lists.sourceforge.net/lists/listinfo/opensc-devel
>>>>
>>
>
>
> ------------------------------------------------------------------------------
> CenturyLink Cloud: The Leader in Enterprise Cloud Services.
> Learn Why More Businesses Are Choosing CenturyLink Cloud For
> Critical Workloads, Development Environments & Everything In Between.
> Get a Quote or Start a Free Trial Today.
> http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
> _______________________________________________
> Opensc-devel mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/opensc-devel
>

--

  Douglas E. Engert  <[hidden email]> <[hidden email]>
  Argonne National Laboratory
  9700 South Cass Avenue
  Argonne, Illinois  60439
  (630) 252-5444

------------------------------------------------------------------------------
CenturyLink Cloud: The Leader in Enterprise Cloud Services.
Learn Why More Businesses Are Choosing CenturyLink Cloud For
Critical Workloads, Development Environments & Everything In Between.
Get a Quote or Start a Free Trial Today.
http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Large number of new commits in master

Martin Paljak-4
In reply to this post by Viktor Tarasov-3
Hello,

On 10/01/14 16:47 , Viktor Tarasov wrote:
> - now the common OpenSC framework gives to card's pkcs15 and
> pkcs15init drivers the possibility to use and create the MD related
> (non pkcs15) on-card files,

For the better or worse, I believe that having windows specific
minidriver code inside pkcs15.c/.h is wrong and bad in the long run.

If the external specifications that are implemented are not nice
enough to warrant clean separation, at least they are something and
define a more or less isolated system. Mixing them just breaks any
kind of logical design.

Is there a *good* reason why it can't be implemented cleanly and
separately?



--
Martin
+372 515 6495

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel