Skip to content

Releases: Mastercard/pkcs11-tools

v2.6.0

12 Jul 14:18
@keldonin keldonin
v2.6.0
6a3ed25
Compare
Choose a tag to compare
v2.6.0 Latest
Latest

added

  • support for AWS Cloud HSM. Check documentation for limitations.

fixed

  • with recent versions of GCC, compilation issue with lexx and yacc produced source code (PR #38)
  • when automake<1.14 is used, use an older, compatible commit for gnulib

updated

  • gnulib in now built from a stable branch, stable-202307
Assets 6
Loading

v2.5.1

09 May 15:49
@keldonin keldonin
v2.5.1
651ea3b
Compare
Choose a tag to compare
v2.5.1

added

  • adding -S option flag for p11keygen, for enabling key generation when logged in as Security Officer (PR #33)

fixed

  • fixed a few memory management issues, preventing to import EC public keys when using p11keygen, p11unwrap and p11importpubk.
Assets 3
Loading

v2.5.0

05 Oct 21:05
@keldonin keldonin
v2.5.0
fb33afa
Compare
Choose a tag to compare
v2.5.0

Added

  • CKA_ALLOWED_MECHANISMS support for all key management utilities (p11keygen, p11wrap, p11unwrap, p11rewrap, p11ls, p11od)

Fixed

  • p11wrap: fixed memory leaks
Assets 3
Loading

v2.4.2

24 Sep 06:38
@keldonin keldonin
v2.4.2
c6ce5af
Compare
Choose a tag to compare
v2.4.2

Fixed

  • p11ls: removed duplicate CKA_CHECK_VALUE attribute from C_GetAttributeValue() call on secret keys (may cause issues on some PKCS#11 tokens)
Assets 3
Loading

v2.4.1

08 Aug 03:36
@keldonin keldonin
v2.4.1
733359f
Compare
Choose a tag to compare
v2.4.1

Fixed

  • template content is no more wrapped/displayed if length is not a multiple of CK_ATTRIBUTE structure, to ignore templates incorrectly reported by some tokens
Assets 3
Loading

v2.4.0

22 Jul 15:12
@keldonin keldonin
v2.4.0
d0bf6bc
Compare
Choose a tag to compare
v2.4.0
  • support for template attributes on most commands
Assets 3
Loading

v2.3.1

05 Jul 06:54
@keldonin keldonin
v2.3.1
7fb6322
Compare
Choose a tag to compare
v2.3.1
  • some of the mgf argument values for p11wrap, p11rewrap and p11keygen were incorrect. The documentation has also been adjusted (issue #30)
  • p11more, p11req, p11mkcert and p11cat could not deal with Edwards curve if the curve parameter was specified as a named curve (issue #32)
Assets 3
Loading

v2.3.0

12 Apr 14:02
@keldonin keldonin
v2.3.0
5771893
Compare
Choose a tag to compare
v2.3.0
  • added p11kcv the ability to specify a buffer length, when performing HMAC key check values (default is 0).
Assets 3
Loading

v2.2.0

04 Apr 02:13
@keldonin keldonin
v2.2.0
8117c33
Compare
Choose a tag to compare
v2.2.0

This minor release adds the following features:

  • p11kcv will compute a Key Check Value on CK_GENERIC_SECRET keys as well. These are mapped to HMAC-SHA256.
  • p11slotinfo now prints library information
  • support for FreeBSD ports and packaging
  • for Edwards curve based keys, allow providing curve name instead of OID when generating a key
Assets 3
Loading

v2.1.3

26 Mar 08:14
@keldonin keldonin
v2.1.3
1e97ae5
Compare
Choose a tag to compare
v2.1.3

Fixes

  • ensure that OpenSSL 1.1.1e or above is used, detected during configure now, issue #27
  • ensure that threading library is referenced, to allow building with static OpenSSL library without having to specify additional library with LIBS
Assets 2
Loading