Merge 21 06 #24
Merged
Merge 21 06 #24
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
created pformat_pyc_args function to nicely format pycryptoki arguments for logging/exceptions
Better formatting of funcargs See merge request luna-automation/pycryptoki!5
Template value formatting See merge request luna-automation/pycryptoki!6
added new mechs in default_templates.py See merge request luna-automation/pycryptoki!7
Added new error code in lookup_dicts.py See merge request luna-automation/pycryptoki!8
SH-5588 Clone CPV4 Extract Insert See merge request luna-automation/pycryptoki!9
This change updates definition we have for the PlayReadP160 ECC curve to include "cofactor=1" so that it can contiue to be used by our HSM. This is mainly to support existing test cases and automation as this curve is too small to be considered secure in todays market. And it is no longer allowed in FIPS Mode. The actual cofactor for this curve is unkown and cannot be found from any online source. Re-computing the cofactor is not a trivial task. Given that the curve is a prime curve, there is a very high probability that the cofactor is "1".
LGX-4124 Fix PlayReadP160 ECC curve See merge request luna-automation/pycryptoki!10
Str formatting See merge request luna-automation/pycryptoki!11
Sh 5588 See merge request luna-automation/pycryptoki!12
The prior solution would decode bytes into unicode, which then would get passed to a 'str()' call. In python2, this would attempt to go *back* to bytes, and lead to errors if the value needed to be encoded. This has been fixed by not emitting unicode. Also, updated the default templates to drop the CKA_PUBLIC_EXPONENT attribute. The HSM will choose one for you, and the original default of 3 is not FIPS validated, and shouldn't be used in any case.
Fix unicode issue in logging See merge request luna-automation/pycryptoki!13
Default public exponent to 0 - not absent See merge request luna-automation/pycryptoki!14
SH-5656 CPV4 removal of deleteAfterExtract flag See merge request luna-automation/pycryptoki!15
SH-5571 adding a new mechanism for SHA(x) HMAC_GENERAL See merge request luna-automation/pycryptoki!16
SH-5656 CPv4 Clone Put input See merge request luna-automation/pycryptoki!17
SH-5656 CPV4 Adding sessionOuidLen to Extract and Insert See merge request luna-automation/pycryptoki!18
config_ptk_lib See merge request luna-automation/pycryptoki!20
SH-5656 Adding CPV4 EXTRACT and INSERT Mechanisms See merge request luna-automation/pycryptoki!22
add_new_mech_for_ptk See merge request luna-automation/pycryptoki!21
Generated by running 'h2py.py' (from Python installation) Note this will ONLY get the #defines, it will NOT generate the structs.
Add all PTK defines See merge request luna-automation/pycryptoki!23
Adding CA_MigrateKeys
Cpv4 ca funcs See merge request luna-automation/pycryptoki!24
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Add new error codes, PTK defines, better exception & logging formats.