-
Notifications
You must be signed in to change notification settings - Fork 733
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pkcs11-tool: various improvements: extensions, bug fixes, and cleanup #747
Conversation
your code does not compile, see the CI links above |
… (corrections w.r.t. #ifdef ENABLE_OPENSSL)
So far I had thought the partial failures of the automated builds were due to unrelated architecture issues. Yet I just found that the code did not compile in case |
please split your commits into smaller ones with changes that logically belong together and fix your commit message with a summary of those changes. Review and rollback in case of problem is much easier in small chunks! |
there is more, see for example https://travis-ci.org/OpenSC/OpenSC/jobs/127526153#L1263 |
… (workaround for variable scope bug in gcc)
… (correction w.r.t. defined(OPENSSL_NO_EC))
Thanks @frankmorgner for your hint on a point where the compilation went wrong. After two more iterations, where I corrected two further problems with conditional compilation (this time related to the definedness of The Travis Cl build confirms this, while the AppVeyor build still has some trouble related to |
CI is good now, but I fear you'll have to split up the commits... |
@DDvO did you make any progress? without the splitup we can't review your changes |
Thanks for asking. I cannot spend much further time on it, but will try to do soon. BTW, my motivation to contribute to this project dropped a lot after my frustrating #737 experience. |
======================================== rebased by VTA -- commits are forged to one, excluding the following chunk (reason -- if not explicitely indicated, the mechanism has to be found out using the mechanism flags): @@ -1713,8 +1713,9 @@ static int gen_keypair(CK_SLOT_ID slot, CK_SESSION_HANDLE session, int ii; if (!opt_mechanism_used) + opt_mechanism = CKM_EC_KEY_PAIR_GEN; if (!find_mechanism(slot, CKF_GENERATE_KEY_PAIR, mtypes, mtypes_num, &opt_mechanism)) - util_fatal("Generate EC key mechanism not supported\n"); + util_warn("Generate EC key mechanism not listed as supported"); for (ii=0; ec_curve_infos[ii].name; ii++) { if (!strcmp(ec_curve_infos[ii].name, type + 3)) will close PR #747
essential part applied in 4441efa, |
This is a collection of improvements I recently implemented on pkcs11-tool and would like to share for the benefit of other users:
parse_ec_pkey()
test_kpgen_certwrite()
hex_to_bin()
input and outputdo_read_key()
RSA_GET_BN()
macrowrite_object()
I am aware that this sums up to quite a number of items, where some 170 lines have been changed and about 230 lines have been added. Yet it would be pretty time consuming to break this up into many per-topic pull requests, while this overhead would not add anything in terms of productivity.
All changes, and I hope also all additions, should be pretty straightforward to understand
So please have a look and take over whatever you consider useful. I am available for answering any questions and comments.