giomba
/
opensc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

pkcs11-tool: fixed RSA-X-509 corner case test 

For testing RSA-X-509, we are generating random bytes for signing. It
may happen that the modulus is smaller than the random number
generated, which triggers an error in the card. With this change, we
are setting the most significant byte to 0x00 to assure the random
number is smaller than the modulus.
This commit is contained in:
Frank Morgner 2017-04-03 13:37:56 +02:00
parent d757db2ca8
commit c2fa66f1fb
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/tools/pkcs11-tool.c
View File

@ -4257,6 +4257,11 @@ static int test_signature(CK_SESSION_HANDLE sess)
pseudo_randomize(data, dataLen);
if (firstMechType == CKM_RSA_X_509) {
/* make sure our data is smaller than the modulus */
data[0] = 0x00;
}
ck_mech.mechanism = firstMechType;
rv = p11->C_SignInit(sess, &ck_mech, privKeyObject);
/* mechanism not implemented, don't test */