All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- support for building the project - multiplatform builds using docker
- custom mechanisms are printed
- mechanisms parameters are dumped when available
CK_C_INITIALIZE_ARGS.pReserved
value printed. If not null, the first bytes are also printed.CK_C_INITIALIZE_ARGS.pReserved
is printed as a string ifPKCS11SHIM_PRESERVED_IS_A_STRING
environment variable is defined.
- potential buffer overrun fixed when printing hex strings
- A few boolean attributes were incorrectly displayed as generic attributes.
- API counter could occasionally display twice the same value
- OAEP parameters printed out when using
C_Wrap
,C_Unwrap
,C_EncryptInit
orC_DecryptInit
- ASCII printing issue fixed (0x7F is no more printed directly)
- improper handling of mutex and cond variables after a fork, on linux
- support for hiding PIN/passphrase information. Enabled by default, can be switched off with
PKCS11SHIM_REVEALPIN
env variable.
- print
CK_UNAVAILABLE_INFORMATION
when ulValueLen equals to -1
- compilation under MacOS
- the library supports now forking. Log files are reopen and thread maintained over forks.
- the default build is now with OpenSSL disabled.
- clearer layout in log files.
- when specifying
PKCS11SHIM_OUTPUT
, any occurence of%p
will be replaced by the PID - process id added to logs
- library crash when the env variable
PKCS11SHIM_OUTPUT
is not specified (workaround for older versions is to always specify it)
- the library can be compiled without
OpenSSL
(fancy printing of certificate attributes is disabled)
- using relaxed memory model for atomic counter of operations, should be faster on relaxed architecture (ARM)
- using latest PKCS#11 published standard ( v3.01 )
- updated autotools suite (requires now 2.71 )
- initial official release