Timeline

200 timeline items by user rkeene occurring around 2015-07-24 15:11:35.

2016-02-26
19:06
[6f34302432] ChromeOS: Renamed files to be more obvious (user: rkeene, tags: trunk)
18:44 • Edit [42d0db67a2]: Edit check-in comment. (user: rkeene) [details]
18:44 • Edit [ea7a58ef60]: Edit check-in comment. (user: rkeene) [details]
18:44 • Edit [3783f79015]: Edit check-in comment. (user: rkeene) [details]
18:44 • Edit [c27bb81788]: Edit check-in comment. (user: rkeene) [details]
18:43 • Edit [8668b85846]: Edit check-in comment. (user: rkeene) [details]
18:42
[bf8001bc42] Updated to workaround a bug in Google's PCSC implementation where SCardStatus() requires a reader parameter (user: rkeene, tags: trunk)
18:36
[7272e3d08a] Added additional debugging information for SCardTransmit() being done successfully (user: rkeene, tags: trunk)
18:36
[dc38d00e61] Updated to supply a pioRecvPci parameter to SCardTransmit(), needed by Google's PCSC implementation (user: rkeene, tags: trunk)
18:35
[b512a6df69] Corrected typo in debug message (user: rkeene, tags: trunk)
18:28
[32d54df268] Leaf: Started working on improving slot reset mechanism (user: rkeene, tags: improve-session-and-slot-reset)
18:25
[356ac541c7] Create new branch named "improve-session-and-slot-reset" (user: rkeene, tags: improve-session-and-slot-reset)
18:23
[fa6376b98d] ChromeOS: Renamed output from "cackey.crx" to "cackey.zip", which gets uploaded to the Chrome Web Store (user: rkeene, tags: trunk)
18:22
[fa44d4ac0f] ChromeOS: Include icon in the zip file (user: rkeene, tags: trunk)
18:21
[8668b85846] ChromeOS: Updated to only enable debugging symbols in a debugging build (user: rkeene, tags: trunk)
18:20
[c27bb81788] ChromeOS: Fixed issue with including signed data in the reply (user: rkeene, tags: trunk)
16:35
[3783f79015] ChromeOS: Updated to pass original message back correctly (user: rkeene, tags: trunk)
16:23
[ea7a58ef60] ChromeOS: Updated to support raw PKCS#1 message signing using the interface Chrome provides it (user: rkeene, tags: trunk)
16:23
[42d0db67a2] ChromeOS: Updated to delete the entire retry queue when we are done with it (user: rkeene, tags: trunk)
2016-02-19
17:50
[5acacab000] ChromeOS: Fix a potential free(NULL) in initialization of PCSC-NaCl (user: rkeene, tags: trunk)
17:50
[c4916c27cd] ChromeOS: Slightly better PCSC-NaCl initialization and enabled debugging in all projects (user: rkeene, tags: trunk)
14:29
[a779f950ca] ChromeOS: Ignore debugging binaries (user: rkeene, tags: trunk)
14:27
[d4dfc708fb] ChromeOS: Added support for building a debugging-enabled Chrome extension (user: rkeene, tags: trunk)
14:11
[e5e8b9f32b] ChromeOS: Added the start of a UI (user: rkeene, tags: trunk)
13:30
[e1dc965e9b] ChromeOS: Added package icon (user: rkeene, tags: trunk)
2016-02-16
23:24
[fdd66a54cd] Simplified some slot disconnect logic and updated to store an ID type hint on the slot itself so that if we reinitialize we treat it as the same type of device (user: rkeene, tags: trunk)
17:04
[6218cc54fc] Added workaround for Google's PCSC where we cannot determine the amount of space required to hold the reader list automatically (user: rkeene, tags: trunk)
16:06
[54d3a148ef] Fixed an issue where the mutex released slightly too early (user: rkeene, tags: trunk)
16:06
[9f8b1347d9] Better handling of loss of connection to the PCSC daemon or card resetting (user: rkeene, tags: trunk)
15:25
[3fe401d585] Updated AppFS build script to set the PIN entry program (user: rkeene, tags: trunk)
15:24
[1a5312bdfa] Fixed typo in script that rebuilds built-in certs causing the files to be placed in the wrong directory (user: rkeene, tags: trunk)
2016-02-15
09:00
[036a594834] Added basic AppFS build script (user: rkeene, tags: trunk)
08:44
[37a5c34d9f] Fixed issue with test library not including the appropriate libs (user: rkeene, tags: trunk)
08:36
[3b8c1a6846] Updated to create better Debian package (untested) (user: rkeene, tags: trunk)
08:31
[ecd7178afb] Updated to print an error in debug mode if we run across compressed certificates without zlib support available (user: rkeene, tags: trunk)
08:30
[925edeaa39] ChromeOS: Minor cleanup in the test case (user: rkeene, tags: trunk)
07:49
[43490cab39] Minor cleanup (user: rkeene, tags: trunk)
07:34
[e0d9e2f1fb] ChromeOS: Sanity -- initialize PIN prompt (user: rkeene, tags: trunk)
07:31
[7879121689] ChromeOS: Attempt to sign the correctly prefixed data (user: rkeene, tags: trunk)
07:22
[036113d051] ChromeOS: Try to supply the user PIN to the card (user: rkeene, tags: trunk)
06:45
[4509382d11] ChromeOS: Removed extraneous PIN clearing (user: rkeene, tags: trunk)
06:43
[c53eda4523] ChromeOS: Fixed race with specifying the Google Smartcard Manager App ID (user: rkeene, tags: trunk)
06:39
[16b40cb47e] ChromeOS: Restructured initialization so that the Google PCSC Smartcard Manager App ID can be found at runtime (user: rkeene, tags: trunk)
06:20
[b97c4963e4] ChromeOS: Pass PIN prompt back to the user (unused for now) (user: rkeene, tags: trunk)
06:17
[ae9cfddbd2] ChromeOS: Add new PIN to requests to sign once we gathered a new PIN (user: rkeene, tags: trunk)
06:16
[a90efdf98f] ChromeOS: Start trying to sign data or send it back as needing a PIN or unsignable (user: rkeene, tags: trunk)
05:16
[a655f43d3b] ChromeOS: Converted callback storage from an array to a hash, since we don't care about ordering (user: rkeene, tags: trunk)
2016-02-13
15:43
[16fd3e5408] ChromeOS: More work towards making the PIN entry more useful (user: rkeene, tags: trunk)
10:09
[78f6a43a4e] ChromeOS: Whitespace cleanup (user: rkeene, tags: trunk)
10:08
[233d1929c2] ChromeOS: Made PIN entry failure code slightly cleaner (user: rkeene, tags: trunk)
10:05
[2c6a5fb7dd] ChromeOS: Made PIN entry dialog much more robust (user: rkeene, tags: trunk)
07:19
[32182121df] ChromeOS: Added start of PIN entry dialog (user: rkeene, tags: trunk)
2016-02-12
16:16
[891997b798] ChromeOS: Updated comments in the NaCl-to-JavaScript bridge (user: rkeene, tags: trunk)
05:26
[2900ebd791] ChromeOS: Restructed the JavaScript portion of CACKey (user: rkeene, tags: trunk)
05:11 • Edit [e3aaea539b]: Edit check-in comment. (user: rkeene) [details]
05:10
[b356505dc2] ChromeOS: Started working on providing working callbacks for calls into NaCl (user: rkeene, tags: trunk)
05:10
[e3aaea539b] ChromeOS: Updated to include the command we are replying to in the reply (user: rkeene, tags: trunk)
04:10
[39884d86b4] ChromeOS: Removed extra debugging initialization, should now be centralized (user: rkeene, tags: trunk)
04:06
[75140d9f77] ChromeOS: Started work on supporting signing messages (user: rkeene, tags: trunk)
04:06
[433d53f019] ChromeOS: Removed debugging from PCSC bridge initialization (user: rkeene, tags: trunk)
04:04
[2eba6a47c6] Better invocation of "ar" for static CACKey builds (user: rkeene, tags: trunk)
03:48
[a7af34860d] ChromeOS: More work towards a functioning system (user: rkeene, tags: trunk)
03:47
[8c99b5e102] ChromeOS: Disable DOD certs getting built-in to CACKey since they will never get used anyway (user: rkeene, tags: trunk)
03:47
[bd977f41d5] Renamed our C_Login() function with a mutex arg to be a less annoying name (user: rkeene, tags: trunk)
2016-02-11
18:33 • Edit [b7dc336d0f]: Edit check-in comment. (user: rkeene) [details]
18:33
[b7dc336d0f] ChromeOS: Updated to pass messages to the PCSC-NACL plugin if they do not belong to us (user: rkeene, tags: trunk)
18:32
[35a258e3b8] ChromeOS: Remove USB requirement -- we talk to the Smartcard Manager App for this (user: rkeene, tags: trunk)
18:31
[c18406ef3e] Started working on fixing an issue where if no hardware slots are present the internal slots would not show up (user: rkeene, tags: trunk)
16:07
[5af7507345] ChromeOS: Check to ensure we are running under ChromeOS before initializing, print an error to our console if not (user: rkeene, tags: trunk)
16:04
[2c83f782c6] ChromeOS: Hard-coded ID of smartcard manager app (user: rkeene, tags: trunk)
16:03
[a32e10a9ec] ChromeOS: Updated to create a new thread for every request, since we must not run on the main thread (user: rkeene, tags: trunk)
16:02
[01a8bae109] ChromeOS: Made debugging build optional and non-default, as well as applying to the JavaScript portion of the extension (user: rkeene, tags: trunk)
2016-02-10
23:06
[82721ca5b6] ChromeOS: better cleanup (user: rkeene, tags: trunk)
23:04
[9e8c8d0997] More work towards getting ChromeOS extension going (user: rkeene, tags: trunk)
2016-02-04
22:52
[e9e86eb240] Added more Chrome extension parts (user: rkeene, tags: trunk)
22:51
[433933e8bf] Updated to create a Chrome extension (maybe) (user: rkeene, tags: trunk)
22:51
[7fc78ce33e] More work towards a prototypical CACKey JavaScript file (user: rkeene, tags: trunk)
18:23
[1578fc80e7] Added start of Chrome javascript module (user: rkeene, tags: trunk)
18:07
[b0a1326758] Create a native manifest for CACKey on Chrome and other fixups (user: rkeene, tags: trunk)
17:50
[88d2f36ad4] Refer to correct PC/SC headers and link to zlib in final target (user: rkeene, tags: trunk)
17:36
[7c7e9cf4fc] Better work towards a Chrome plugin (user: rkeene, tags: trunk)
2016-02-03
18:57
[a708a36250] Updated to support building static archives and to check a cache variable regarding PC/SC working (user: rkeene, tags: trunk)
18:50
[df8d7782c8] Updated to cast length variable to the correct type for formatting (user: rkeene, tags: trunk)
17:42
[ce27ad0559] More work towards standardizing NaCl build (user: rkeene, tags: trunk)
08:03
[378c58fb5a] Removed extra debugging symbols no longer needed (user: rkeene, tags: trunk)
08:03
[482f4fa828] Chrome extension cleanups (user: rkeene, tags: trunk)
07:11
[294977292d] Release building updates (user: rkeene, tags: trunk)
07:08
[b4f1d32aff] Add header files for pcsclite (user: rkeene, tags: trunk)
05:26
[fc49ac54cf] Added start of a Google Chrome extension (user: rkeene, tags: trunk)
2015-09-30
20:21 • Changes to wiki page Downloads (user: rkeene) [details]
20:19 • Changes to wiki page Downloads (user: rkeene) [details]
15:19 • Changes to wiki page Downloads (user: rkeene) [details]
15:17 • Edit [bb7be6db49]: Add tag "0.7.5". (user: rkeene) [details]
15:16
[bb7be6db49] CACKey 0.7.5 (user: rkeene, tags: trunk, 0.7.5)
2015-08-30
03:21
[ce2ae07c02] Updated to use older mechanism for activating gzip support in zlib, to support zlib older than zlib 1.2.4 (user: rkeene, tags: trunk)
2015-08-08
20:13 • Changes to wiki page CACKey (user: rkeene) [details]
20:13 • Changes to wiki page Downloads (user: rkeene) [details]
2015-07-27
18:39 • Edit [4092b10f67]: Marked "Closed". (user: rkeene) [details]
15:41
[79322b800c] Simplified test code for AFL and added it to the Makefile (user: rkeene, tags: trunk)
2015-07-24
15:11
[75b2699549] Better cleanup now that we exclude some bytes in debug printing buffer (user: rkeene, tags: trunk)
15:10
[74d7607e3c] Fixed issue with NULL tags found with AFL fuzzing (user: rkeene, tags: trunk)
04:11 • Edit [8299a1c4f7]: Edit check-in comment. (user: rkeene) [details]
04:11
[8299a1c4f7] Further failure to free on error repaired and start of AFL testing code added. (user: rkeene, tags: trunk)
04:07
[846e77f0f5] Added more fixes for memory leaks or use of uninitialized memory (user: rkeene, tags: trunk)
2015-07-23
20:45
[633a24960e] Fixed a couple of issues found setting up test cases for the AFL fuzzer (user: rkeene, tags: trunk)
18:28
[30f9879615] Merged in reader filtering (user: rkeene, tags: trunk)
18:27
[4092b10f67] Closed-Leaf: Merged in trunk (user: rkeene, tags: reader-filtering)
18:25
[b6e428f68c] Updated to reset if signing fails and hope for the best afterwards (user: rkeene, tags: trunk)
18:24
[fed23dc867] Updated KPS certificates (user: rkeene, tags: trunk)
2015-07-17
18:54
[a2a8052958] Added support for reader filtering (user: rkeene, tags: reader-filtering)
02:53
[9723187878] Made 0x6d00 wrong instruction handling handling also work for CACs (user: rkeene, tags: trunk)
2015-07-16
17:04
[526fde7c45] Updated Windows zlib build (user: rkeene, tags: trunk)
16:50
[2cb25c581d] Updated RPM spec file description and email address (user: rkeene, tags: trunk)
16:20 • Edit [1adc8b9d33]: Add tag "0.7.4". (user: rkeene) [details]
16:20
[1adc8b9d33] CACKey 0.7.4 (user: rkeene, tags: trunk, 0.7.4)
16:18
[4e30511f94] Updated to retry login if it fails with a 6D 00 (wrong instruction) (user: rkeene, tags: trunk)
16:06
[52569c3e74] Closed-Leaf: Reset the card and rescan for certificates if we get the ISO 7816 error 6D 00 (Wrong instruction) error from the card when trying to verify. (user: rkeene, tags: piv-reset-on-wronginstruction)
2015-07-15
20:10
[38771da1e8] Leaf: Merged in trunk (user: rkeene, tags: require-login-if-needed)
20:10 • Edit [466549fe92]: Marked "Closed". (user: rkeene) [details]
20:10
[466549fe92] Closed-Leaf: Merged divergent PIV branches (user: rkeene, tags: piv)
20:10 • Edit [6ba1dff55a]: Removed the "Closed" mark. (user: rkeene) [details]
20:08 • Edit [6ba1dff55a]: Marked "Closed". (user: rkeene) [details]
20:08 • Edit [bab332232a]: Marked "Closed". (user: rkeene) [details]
20:08
[bab332232a] Closed-Leaf: Merged in trunk (user: rkeene, tags: protected-auth-path)
20:05
[b5ecb7c2d6] Added support for updating the PIN (user: rkeene, tags: trunk)
18:47
[efe7692225] Updated KPS CA Certs (user: rkeene, tags: trunk)
2015-07-03
01:51
[ee33ccc6af] Updated to optinally generate commercial certs, and removed commercial certs from internal file (user: rkeene, tags: trunk)
2015-05-04
16:02
[6938f7a82c] Merged in trunk (user: rkeene, tags: require-login-if-needed)
2015-03-22
06:25
[133c2dbd45] Updated with latest set of DoD and Federal certs (user: rkeene, tags: trunk)
06:25
[06f7fdb141] Added commericial PKI, but not referenced anywhere in CACKey (user: rkeene, tags: trunk)
06:24
[11c30d03cf] Updated to not update built-in certs file if one of the makes fails (user: rkeene, tags: trunk)
06:23
[832276f583] Fixed issue with federal certificate fetching (user: rkeene, tags: trunk)
2015-03-20
17:33 • Edit [7c43a082a7]: Add tag "0.7.1". (user: rkeene) [details]
17:32
[7c43a082a7] CACKey 0.7.1 (user: rkeene, tags: trunk, 0.7.1)
2015-03-05
17:49
[bc60cf4dca] Updated to set the output size after decompressing a certificate (user: rkeene, tags: trunk)
17:40
[4f5638aabf] Updated to use fewer APDUs when signing/decrypting (user: rkeene, tags: trunk)
16:20
[d36685d176] Updated ignores to ignore downloaded certificates and test driver (user: rkeene, tags: trunk)
16:09
[47251b740c] Removed extraneous code (user: rkeene, tags: trunk)
16:06
[614742ca67] Updated to deal with reading impossibly small TLV buffers sanely (user: rkeene, tags: trunk)
15:48
[e4a2e1c560] Added debugging to ASN.1 X.509 parser, added support for gzip'd certificates, and fixed a possible non-deterministic case with realloc(0) (user: rkeene, tags: trunk)
2014-03-18
04:33
[42891ae8ca] Updated to work with pclose() failures (user: rkeene, tags: trunk)
2014-03-14
14:30
[8ba93699b4] Merged in changes from PIV (user: rkeene, tags: trunk)
14:25
[ad6536ceb0] Updated to reset the card if a retry is required (user: rkeene, tags: protected-auth-path)
2014-01-17
13:42
[b5af3ab373] Merged in trunk (user: rkeene, tags: protected-auth-path)
13:35
[afd6df445d] Work towards fixing listing of slots to not list redundant slots (user: rkeene, tags: trunk)
2013-10-17
20:32 • Edit [d6a874f3b57f2b41]: Add tag "0.7.0". (user: rkeene) [details]
20:32
[d6a874f3b5] CACKey 0.7.0 (user: rkeene, tags: trunk, 0.7.0)
20:30 • Edit [6ba1dff55aa7d7e1]: Marked "Closed". (user: rkeene) [details]
20:30 • Edit [6ba1dff55aa7d7e1]: Removed the "Closed" mark. (user: rkeene) [details]
20:29 • Edit [6ba1dff55aa7d7e1]: Marked "Closed". (user: rkeene) [details]
20:29
[3e5963d5d9] Merged in PIV support (user: rkeene, tags: trunk)
20:29
[6ba1dff55a] Updated to deal with 6E00 and added support for win32 build options (user: rkeene, tags: piv)
2013-09-14
04:11
[5f8f3e59a7] Merged in changes from piv (user: rkeene, tags: protected-auth-path)
02:50
[2e1e0bfc20] Updated to treat a return code of 0x6E00 (wrong instruction class) the same as 0x6982 (security status not satisified) (user: rkeene, tags: piv)
2013-08-19
03:33
[eba8a2346a] Updated to exclude USG certificates slot if compiled without it (user: rkeene, tags: piv)
03:25
[0e841c8724] Fixed order of processing PIN command options (user: rkeene, tags: piv)
03:19
[182c88b988] Fixed memory leak when checking PIV certificates (user: rkeene, tags: piv)
03:14
[d52881feec] Leaf: Improved waiting for slot event to allow C_Finalize to terminate any waiting (user: rkeene, tags: wait-for-slot-event)
2013-08-18
07:02
[0058a3b41b] Added support for CKF_DONT_BLOCK (user: rkeene, tags: wait-for-slot-event)
06:53
[4d4946cc1f] First work towards implementing C_WaitForSlotEvent (user: rkeene, tags: wait-for-slot-event)
2013-08-14
06:29
[27d18fd03a] Updated to not dead-lock when prompting for PIN during a signing operation (user: rkeene, tags: protected-auth-path)
05:53
[14d49a499f] If using Protected Authentication Path, don't set the LOGIN_REQUIRED flag (user: rkeene, tags: protected-auth-path)
05:06 • Edit [5469f9a4d0853fd1]: Removed the "Closed" mark. (user: rkeene) [details]
04:55 • Edit [5469f9a4d0853fd1]: Marked "Closed". (user: rkeene) [details]
04:54
[8a76f09a85] Added support for enabling the PROTECTED_AUTHENTICATION_PATH flag for the token if a command to provide the PIN is configured (user: rkeene, tags: piv)
04:49
[2e12e46ded] Merged trunk (user: rkeene, tags: piv)
04:40
[b6863060d8] Updated to allow compilation excluding DoD certificates (user: rkeene, tags: trunk)
04:22
[5469f9a4d0] Merged in updates (user: rkeene, tags: protected-auth-path)
04:22
[8c73344738] Merged in trunk (user: rkeene, tags: piv)
04:21
[00fbb45437] Added ignores for generated files (user: rkeene, tags: trunk)
04:16
[a68e222d00] Added return value printing for C_Login() and removed requirement that PIN not be provided if using protected authentication path (some tools provide it anyway) (user: rkeene, tags: protected-auth-path)
04:15
[20ddc71853] Added start of script to ask for PIN via X11 (user: rkeene, tags: protected-auth-path)
03:55
[b6ea2dbe0a] Updated to allow the Protected Authentication Path to be set only if an X server display is available (user: rkeene, tags: protected-auth-path)
03:48
[b6a0e30bff] Added support for supplying a command to provide a PIN via standard output (user: rkeene, tags: protected-auth-path)
03:01
[06eb7a2600] Made test driver aware of PKCS#11 protected authentication path flag (user: rkeene, tags: protected-auth-path)
02:26
[93bebaff52] Create new branch named "protected-auth-path" (user: rkeene, tags: protected-auth-path)
2013-08-03
02:20
[0a6ef43f4c] Updated to create a PKCS#7 bundle (user: rkeene, tags: piv)
02:19
[c46c2cd501] Added support for outputting NetScaler cert configuration (user: rkeene, tags: piv)
2013-02-07
23:29
[6a49836224] Added script to generate certificate bundles in heirarchy order (user: rkeene, tags: piv)
2013-01-18
15:11
[0e0490e060] Added support for compiling in a default debug log file (user: rkeene, tags: trunk)
01:18 • Changes to wiki page CACKey (user: rkeene) [details]
2013-01-16
15:21
[def08b9deb] Updated to determine what kind of authentication to perform based on token present (PIV/CAC) (user: rkeene, tags: piv)
2013-01-15
21:12
[e2ba3f7684] Updated to label PIV keys with their types. Removed extraneous debugging output (user: rkeene, tags: piv)
21:00
[b7f98935cd] Added additional debugging output (user: rkeene, tags: piv)
19:15
[69efc196d7] Added "Common Policy" root CA (user: rkeene, tags: piv)
19:03
[acce3f42d5] Removed extraneous CA (user: rkeene, tags: piv)
18:48
[2c8ab6e8d0] Updated built-in certs, and added script to rebuild built-in certs (user: rkeene, tags: piv)
18:44
[1847ef7af2] Updated to build a certificate chain to a root (atleast one) and also not have loops in chains (user: rkeene, tags: piv)
15:59
[ab26dec401] Updated to use BER-TLV decoding to extract responses rather than hard-coded offsets (user: rkeene, tags: piv)
14:20
[33a93aab41] Updated to make "leakcheck" more tolerant of %p formats (user: rkeene, tags: trunk)
14:12
[8f27214611] Merged in trunk (user: rkeene, tags: piv)
14:11
[402217513a] Updated debugging messages to be written in a single fprintf() call in an attempt to avoid having them intermingled when written from multiple threads (user: rkeene, tags: trunk)
05:27
[150cbc7790] Updated to copy type when copying pcsc_identities (user: rkeene, tags: piv)
04:52
[eed54cb794] Minor cleanup (user: rkeene, tags: piv)
04:50
[ea4c430c50] Corrected signature unpacking (user: rkeene, tags: piv)
04:48
[dc6044978a] Updated code so that information on accessing each certificate for different kinds of cards is not shared (user: rkeene, tags: piv)
2013-01-14
17:56
[a02a881547] Updated documentation for cackey_get_data (user: rkeene, tags: piv)
17:53
[de23309dd3] Updated extended modes to use BER encoding and added some basic comments (user: rkeene, tags: piv)
2013-01-10
19:39
[1b3d97f6ef] Added debug messages for newly supported features which may not function. Updated to not use newly supported features, which seem to fail sometimes. (user: rkeene, tags: piv)
05:12 • Edit [3f1484d1ad8a239e]: Edit check-in comment. (user: rkeene) [details]
Older