Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Step:15-SP2
pkcs11-helper
pkcs11-helper_support-RSA_NO_PADDING-padding.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File pkcs11-helper_support-RSA_NO_PADDING-padding.patch of Package pkcs11-helper
From c192bb48e9170d636e305d03a87c82580101a1a9 Mon Sep 17 00:00:00 2001 From: Selva Nair <selva.nair@gmail.com> Date: Wed, 17 Apr 2019 11:26:40 -0400 Subject: [PATCH] openssl: support RSA_NO_PADDING padding When PSS padding is in use, OpenSSL pre-pads the data and requests signature with padding=RSA_NO_PADDING. Handle this using CKM_RSA_X_509 as the mechanism. Signed-off-by: Selva Nair <selva.nair@gmail.com> --- ChangeLog | 1 + [removed by jsikes] lib/pkcs11h-openssl.c | 19 +++++++++++++++---- 2 files changed, 16 insertions(+), 4 deletions(-) diff --git a/lib/pkcs11h-openssl.c b/lib/pkcs11h-openssl.c index 4ebc211c..9c9b2cda 100644 --- a/lib/pkcs11h-openssl.c +++ b/lib/pkcs11h-openssl.c @@ -478,6 +478,9 @@ __pkcs11h_openssl_rsa_dec ( rv = CKR_MECHANISM_INVALID; break; case RSA_NO_PADDING: + mech = CKM_RSA_X_509; + break; + default: rv = CKR_MECHANISM_INVALID; break; } @@ -552,6 +555,7 @@ __pkcs11h_openssl_rsa_enc ( PKCS11H_BOOL session_locked = FALSE; CK_RV rv = CKR_FUNCTION_FAILED; size_t tlen; + CK_MECHANISM_TYPE mech = CKM_RSA_PKCS; _PKCS11H_ASSERT (from!=NULL); _PKCS11H_ASSERT (to!=NULL); @@ -567,9 +571,16 @@ __pkcs11h_openssl_rsa_enc ( padding ); - if (padding != RSA_PKCS1_PADDING) { - rv = CKR_MECHANISM_INVALID; - goto cleanup; + switch (padding) { + case RSA_PKCS1_PADDING: + mech = CKM_RSA_PKCS; + break; + case RSA_NO_PADDING: + mech = CKM_RSA_X_509; + break; + default: + rv = CKR_MECHANISM_INVALID; + goto cleanup; } tlen = (size_t)RSA_size(rsa); @@ -587,7 +598,7 @@ __pkcs11h_openssl_rsa_enc ( if ( (rv = pkcs11h_certificate_signAny ( certificate, - CKM_RSA_PKCS, + mech, from, flen, to,
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor