pkcs11-tool: add pure EdDSA support to sign/verify #2979

dlegaultbbry · 2024-01-11T16:23:38Z

Adding Pure EdDSA using ed25519 and ed448 keys to pkcs11-tool.

I used @dengert changes here to wire ed448 keys to be able to generate them using my custom soft hsm: dengert@1b0d7c9#diff-fcf954433b996121efbb3028d15e969537c35c7fd4bcd8b2a31bba29c4af18f7R160

Related #2952

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --keypairgen --key-type EC:edwards25519 --usage-sign --label ed25519key --id 1
Using slot 0 with a present token (0x0)
Key pair generated:
Private Key Object; EC_EDWARDS
  label:      ed25519key
  ID:         01
  Usage:      sign
  Access:     sensitive, always sensitive, never extractable, local
Public Key Object; EC_EDWARDS  EC_POINT 255 bits
  EC_POINT:   fed9e24a03a7d163bc3e6b0275aba8bff92f13ad125c676faa4dfd7e131a5294
  EC_PARAMS:  130c656477617264733235353139 (OID 2.21.100.119.97.114.100.115.50.53.53.49.57)
  label:      ed25519key
  ID:         01
  Usage:      verify
  Access:     local

# echo -n "000102030405060708090a0b0c0d0e0f" > /data/sign.bin

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --sign --mechanism EDDSA --label ed25519key --input-file /data/sign.bin --output-file /data/sig.bin
Using slot 0 with a present token (0x0)
Using signature algorithm EDDSA

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --verify --mechanism EDDSA --label ed25519key --input-file /data/sign.bin --signature-file /data/sig.bin
Using slot 0 with a present token (0x0)
Using signature algorithm EDDSA
Signature is valid

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --keypairgen --key-type EC:Ed448 --usage-sign --label ed448key --id 2
Using slot 0 with a present token (0x0)
Key pair generated:
Private Key Object; EC_EDWARDS
  label:      ed448key
  ID:         02
  Usage:      sign
  Access:     sensitive, always sensitive, never extractable, local
Public Key Object; EC_EDWARDS  EC_POINT 255 bits
  EC_POINT:   38dd2151d0a622417779b533524108442b537b6525cd11f6950a962b78267c4cdb17aab3df8561855c39bc4d33ecf20c2ba448482c50389100
  EC_PARAMS:  06032b6571 (OID 1.3.101.113)
  label:      ed448key
  ID:         02
  Usage:      verify
  Access:     local

# echo -n "000102030405060708090a0b0c0d0e0f" > /data/sign.bin

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --sign --mechanism EDDSA --label ed448key --input-file /data/sign.bin --output-file /data/sig.bin
Using slot 0 with a present token (0x0)
Using signature algorithm EDDSA

# pkcs11-tool --module=/system/lib/dll/pkcs11-qkeystore.so --verify --mechanism EDDSA --label ed448key --input-file /data/sign.bin --signature-file /data/sig.bin
Using slot 0 with a present token (0x0)
Using signature algorithm EDDSA
Signature is valid

Checklist

[X ] PKCS#11 module is tested (custom softhsm)

src/tools/pkcs11-tool.c

dengert · 2024-01-12T03:06:18Z

In first example you use EC:edwards25519 which is using the non-standard OID, and it is a printable name. Then this shows up as
130c656477617264733235353139 (OID 2.21.100.119.97.114.100.115.50.53.53.49.57) which is all wrong.

Are you good with matching the EC_PARAMS using the ec_curve_info and then checking the size field which would be either 255 or 448 depending on key type?

Actually the Ed25519 and ED448 have different OIDs which implies the bits. Look at the sc_pkcs15_fix_ec_parameters and it table, that will convert the printable string into the OID.

The code I am working on now is the pkcs15init/pkcs15-openpgp.c and card-openpgp.c so they pass the provided OID, and only in card-openpgp.c does the choid of old or new OID is written to the card.

src/tools/pkcs11-tool.c

Jakuje · 2024-01-12T09:14:58Z

In first example you use EC:edwards25519 which is using the non-standard OID, and it is a printable name. Then this shows up as 130c656477617264733235353139 (OID 2.21.100.119.97.114.100.115.50.53.53.49.57) which is all wrong.

As already mentioned, I think this is already fixed in master with 5493770 I think @dlegaultbbry just runs the older opensc version.

dlegaultbbry · 2024-01-12T12:16:15Z

Yes, for the OID string printing, I don't have the latest and greatest version running which has the fix for that (running on a base 0.24.0 build right now).

Jakuje · 2024-01-15T12:05:13Z

I think detection by the length is good enough, but the best would be to compare probably by the name.

In any case, you will need also to pull the ed448 definitions into the ec_curve_infos. As for now, there are not ed448 definitions in the ec_curve_infos that would have the size 448 so the code as it is is a dead code.

dlegaultbbry · 2024-01-15T12:23:16Z

This can wait for @dengert to merge his upcoming curve changes.

dengert · 2024-01-22T13:16:40Z

@dlegaultbbry I have for pushed changes to https://github.com/dengert/OpenSC/tree/X25519-improvements-2 last night.

All the pkcs11-tool changes are in first 7 commits: master...dengert:OpenSC:X25519-improvements-2

Please have a look, and if looks OK I will submit as PR.

Notable changes in all commits are:

RFC 8410 says for ASN.1 for Edwards and Montgomery public keys are in Bit Strings.
The RFC 8410 curve names are uses were possible.
OpenSC openpgp code will accept either RFC 8410 names or names used used in older RFC or in GnuPG and card-openpgp.c will map these to the older non standard OIDs that are written to Yubico and GNUK cards. This opens the way for other cards (which we do not have) to use just the RFC 8410 names.
pkcs15-tool can accept any of the known names when creating one of these keys. See the doc/tools/pkcs15-init.1.xml file.
I have not looked at importing keys, only creating keys using pkcs15.
pkcs1-tool -O now shows the bit string, size and OIDs in RFC 8410 see below.
I don't have any card that supports 448 bit keys, but the code is ready for them.

Things still to be done include:

Are these pubic key exported for use with OpenSSH correctly.
Will there be any problems with using older OpenSC code with the newer code. As OpenSSL uses only the RFC 8410 names, that should not be a problem. as ECDH between OpenSC and OpenSSL created keys derive the same values and OpenSSL can verify a EDDSA signature created bi OpenPGP card.

$ ./pkcs11-tool -O
Using slot 0 with a present token (0x0)
Public Key Object; RSA 2048 bits
  label:      Authentication key
  ID:         03
  Usage:      encrypt, verify, wrap
  Access:     none
Public Key Object; EC_MONTGOMERY  EC_POINT 256 bits
  EC_POINT:   032100d315256abfd74ccbef4f0322d41c5216224b2b6a97c6690ccc4bbcd8cc8cea13
  EC_PARAMS:  06032b656e (OID 1.3.101.110)
  label:      Encryption key
  ID:         02
  Usage:      derive
  Access:     none
Profile object 1028322784
  profile_id:          CKP_PUBLIC_CERTIFICATES_TOKEN (4)


$ ./pkcs11-tool --slot 1 -O
Public Key Object; EC_EDWARDS  EC_POINT 256 bits
  EC_POINT:   032100c077beadbae5871b77f952e342772a1126539f88a4af9c43e70c6720ce043d99
  EC_PARAMS:  06032b6570 (OID 1.3.101.112)
  label:      Signature key
  ID:         01
  Usage:      verify, verifyRecover
  Access:     none
Profile object 733237664
  profile_id:          CKP_PUBLIC_CERTIFICATES_TOKEN (4)

The 0x03 is BIT STRING, length is 0x21 the 0x00 says no padding needed as string is multiple of 8 bits. The rest is the actually public key. (EC use -x04 OCTET STRING and uncompressed 04||x||y)

Interesting note: OpenSSL x509 has option: -force_pubkey infile Place the given key in new certificate which can be used to create a certificate for a Montgomery key and signed by a CA.

dlegaultbbry · 2024-01-22T13:52:41Z

@dlegaultbbry I have for pushed changes to https://github.com/dengert/OpenSC/tree/X25519-improvements-2 last night.

All the pkcs11-tool changes are in first 7 commits: master...dengert:OpenSC:X25519-improvements-2

Please have a look, and if looks OK I will submit as PR.

Notable changes in all commits are:

* RFC 8410 says for ASN.1 for  Edwards and Montgomery public keys are in Bit Strings.

* The RFC 8410 curve names are uses were possible.

* OpenSC openpgp  code will accept either RFC 8410 names or names used used in older RFC or in GnuPG and `card-openpgp.c` will map these to the older non standard OIDs that are written to Yubico and GNUK cards. This opens the way for other cards (which we do not have) to use just the RFC 8410 names.

* pkcs15-tool can accept any of the known names when creating one of these keys. See the   doc/tools/pkcs15-init.1.xml file.

* I have not looked at importing keys, only creating keys using pkcs15.

* pkcs1-tool -O now shows the bit string, size and OIDs in RFC 8410 see below.

* I don't have any card that supports 448 bit keys, but the code is ready for them.

Things still to be done include:

* Are these pubic key exported for use with OpenSSH correctly.

* Will there be any problems with using older OpenSC code with the newer code. As OpenSSL uses only the RFC 8410 names, that should not be a problem. as ECDH between OpenSC and OpenSSL created keys derive the same values and OpenSSL can verify a EDDSA signature created bi OpenPGP card.

$ ./pkcs11-tool -O
Using slot 0 with a present token (0x0)
Public Key Object; RSA 2048 bits
  label:      Authentication key
  ID:         03
  Usage:      encrypt, verify, wrap
  Access:     none
Public Key Object; EC_MONTGOMERY  EC_POINT 256 bits
  EC_POINT:   032100d315256abfd74ccbef4f0322d41c5216224b2b6a97c6690ccc4bbcd8cc8cea13
  EC_PARAMS:  06032b656e (OID 1.3.101.110)
  label:      Encryption key
  ID:         02
  Usage:      derive
  Access:     none
Profile object 1028322784
  profile_id:          CKP_PUBLIC_CERTIFICATES_TOKEN (4)


$ ./pkcs11-tool --slot 1 -O
Public Key Object; EC_EDWARDS  EC_POINT 256 bits
  EC_POINT:   032100c077beadbae5871b77f952e342772a1126539f88a4af9c43e70c6720ce043d99
  EC_PARAMS:  06032b6570 (OID 1.3.101.112)
  label:      Signature key
  ID:         01
  Usage:      verify, verifyRecover
  Access:     none
Profile object 733237664
  profile_id:          CKP_PUBLIC_CERTIFICATES_TOKEN (4)

The 0x03 is BIT STRING, length is 0x21 the 0x00 says no padding needed as string is multiple of 8 bits. The rest is the actually public key. (EC use -x04 OCTET STRING and uncompressed 04||x||y)

Interesting note: OpenSSL x509 has option: -force_pubkey infile Place the given key in new certificate which can be used to create a certificate for a Montgomery key and signed by a CA.

Changes look good to me for pkcs11-tool except this: dengert@ae43814

From what I understand getEC_POINT returns the size in bytes since the value uses CK_BYTE (would be 32 for both 25519 or 56/57 for X448/Ed448). It seems to mix bits and bytes in the calculation. The previous calculation looked more accurate in regards to this. I'm not even sure I understand this one 100%: dengert@5493770

Supporting information for EC and 25519/448

The public key EC point {x, y} can be compressed to just one of the coordinates + 1 bit (parity). For the secp256k1 curve, the private key is 256-bit integer (32 bytes) and the compressed public key is 257-bit integer (~ 33 bytes).

https://www.cryptosys.net/pki/manpki/pki_eccsafecurves.html

dengert · 2024-01-22T16:09:08Z

Changes look good to me for pkcs11-tool except this: dengert@ae43814

The code is in the show key section which is only used to list out objects from pkcs11-tool -O like
"Public Key Object; EC_MONTGOMERY EC_POINT 256 bits" or "Public Key Object; EC_EDWARDS EC_POINT 256 bits" . It was copied from 5493770 already in master used for EC keys.

Both the pieces of code are decoding the ASN1 of the EC_POINT, in EC case it is OCTET STRING, and in
EC_EDWARDS/EC_MONTGOMERY it is BIT STRING. The "Do simple size calculation based on DER encoding" is is looking at total length to figure size of the actual key bytes.

The messages are a little misleading, listing bits. They do list the RFC 8410 OIDs and the EC_POINT in hex format. Note: https://www.cryptosys.net/pki/manpki/pki_eccsafecurves.html does not mention PKCS11 accept for referencing RFC 8410 which gives an example of encoding a pubkey as a pem file.

dlegaultbbry · 2024-02-20T18:25:28Z

@Jakuje Any hope to get this included in 0.25.0 too?

Jakuje · 2024-02-20T18:37:53Z

as I mentioned in #2979 (comment) for now it does not provide much new functionality, as this PR is missing the ed448 definitions in https://github.com/OpenSC/OpenSC/blob/master/src/tools/pkcs11-tool.c#L115

I think if they are included, we can get it in. Without them, I do not see much point as it mostly adds unreachable code.

Looking at it again, isn't something similar needed also for the verification operation?

dengert · 2024-02-20T18:55:38Z

The X25519-improvments-2 includes X448

…

On Tue, Feb 20, 2024, 12:38 PM Jakub Jelen ***@***.***> wrote: as I mentioned in #2979 (comment) <#2979 (comment)> for now it does not provide much new functionality, as this PR is missing the ed448 definitions in https://github.com/OpenSC/OpenSC/blob/master/src/tools/pkcs11-tool.c#L115 I think if they are included, we can get it in. Without them, I do not see much point as it mostly adds unreachable code. Looking at it again, isn't something similar needed also for the verification operation? — Reply to this email directly, view it on GitHub <#2979 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAGTIMPNBWPGO7H2IFY2ZTLYUTUQZAVCNFSM6AAAAABBWYTK3SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSNJUHAZTMNZSGY> . You are receiving this because you were mentioned.Message ID: ***@***.***>

Jakuje · 2024-02-20T19:38:30Z

The X25519-improvments-2 includes X448

I know, but it will likely not make it to 0.25.0 as it is quite many changes and we have rc0 out now.

dengert · 2024-02-20T21:39:00Z

I know, but it will likely not make it to 0.25.0 as it is quite many changes and we have rc0 out now.

I was not expecting it to be in 0.25.0, as it has "quite many changes" and I have some questions too.

Jakuje · 2024-08-05T16:05:57Z

@dlegaultbbry this was stale for some time. Can you rebase the PR so we can get this in?

Jakuje · 2024-08-27T11:32:54Z

Thank you for updating the PR! When the CI will pass, please squash the fixup commits.

Also please, pull the ed2448 definitions from the #3090 (ideally as separate commit with the right attribution if it will be possible) so this change wont add just a dead code. I see the #3090 is in progress, but not yet in the stage to merge so I would like to avoid delaying this for one more release as we are getting closer to 0.26.0.

dlegaultbbry · 2024-08-27T12:18:21Z

Would you rather not want @dengert to submit that tidbit from his work as a separate item? I can do it in a separate PR if he agrees.

- add matching of ec_curve_info using ec_params value - distinguish between ed25519 and edd448 using curve size Related OpenSC#2952

dengert · 2024-08-27T13:56:53Z

I would like to see some combination of the pkcs11-tool changes in #3090 and your PR 2979 submitted before completion of #3090.

I have pushed some changes this morning that make the default for EC_POINT to be in OCTET STRING, (which is what OpenSC 0.25.1 uses) rather then BIT STRING. There is some ambiguity in the use of "public key", between PKCS15 (which defines RAW and SPKI encoding of public keys), and the fact PKCS11 CKO_PUBLIC does not define a CKA_VALUE, and what pkcs11-tool is trying to do. So #3090 tries to accept a EC_POINT in pkcs11-tool as either an OCTET STRING or a BIT STRING.

PKCS11 V3 does define CKA_PUBLIC_KEY_INFO as SPKI which if used removes the ambiguity, and maybe should be used if possible.

#3090 is mostly addresses the differences between RFC 8410 and the experiment RFCs which were implemented is several cards, especially for OpenPGP.

So Please have a look at #3090 pkcs11 changes from today for pkcs11-tool.

- Add the information for the various RFC versions of the Edwards (Ed25519/Ed448) curves - Add the information for the various RFC versions of the Montgomery (X25519/X448) curves This was pulled as a separate change from Doug Engert's X25519 improvements changeset so that EdDSA support in pkcs11-tool had proper curve support. Related OpenSC#2952

xhanulik

Otherwise LGTM

src/tools/pkcs11-tool.c

frankmorgner · 2024-09-10T23:05:41Z

@dengert , if I understand your comment above correctly, then you would like to have a review of #3090 , but for now you are happy with this PR #2979 , correct?

dengert · 2024-09-12T20:21:27Z

@dengert , if I understand your comment above correctly, then you would like to have a review of #3090 , but for now you are happy with this PR #2979 , correct?

Yes. This looks reasonable for 0.26.0 The changes I have in #3090. have something similar, and could be reworked.

New in 0.26.1; 2025-01-14 General improvements Align allocations of sc_mem_secure_alloc (OpenSC/OpenSC#3281) Fix -O3 gcc optimization failure on amd64 and ppc64el (OpenSC/OpenSC#3299) pkcs11-spy Avoid crash while spying C_GetInterface() (OpenSC/OpenSC#3275) TCOS Fix reading certificate (OpenSC/OpenSC#3296) New in 0.26.0; 2024-11-13 Security CVE-2024-45615: Usage of uninitialized values in libopensc and pkcs15init (OpenSC/OpenSC#3225) CVE-2024-45616: Uninitialized values after incorrect check or usage of APDU response values in libopensc (OpenSC/OpenSC#3225) CVE-2024-45617: Uninitialized values after incorrect or missing checking return values of functions in libopensc (OpenSC/OpenSC#3225) CVE-2024-45618: Uninitialized values after incorrect or missing checking return values of functions in pkcs15init (OpenSC/OpenSC#3225) CVE-2024-45619: Incorrect handling length of buffers or files in libopensc (OpenSC/OpenSC#3225) CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init (OpenSC/OpenSC#3225) CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating key (OpenSC/OpenSC#3219) General improvements Fix reselection of DF after error in PKCSOpenSC/OpenSC#15 layer (OpenSC/OpenSC#3067) Unify OpenSSL logging throughout code (OpenSC/OpenSC#2922) Extend the p11test to support kryoptic (OpenSC/OpenSC#3141) Fix for error in PCSC reconnection (OpenSC/OpenSC#3150) Fixed various issues reported by OSS-Fuzz and Coverity in drivers, PKCS#11 and PKCS#15 layer PKCS#15 Documentation for PKCS#15 profile files (OpenSC/OpenSC#3132) minidriver Support PinCacheAlwaysPrompt usable for PIV cards (OpenSC/OpenSC#3167) pkcs11-tool Show URI when listing token information (OpenSC/OpenSC#3125) and objects (OpenSC/OpenSC#3130) Do not limit size of objects to 5000 bytes (OpenSC/OpenSC#3174) Add support for AES CMAC (OpenSC/OpenSC#3184) Add support for AES GCM encryption (OpenSC/OpenSC#3195) Add support for RSA OAEP encryption (OpenSC/OpenSC#3175) Add support for HKDF (OpenSC/OpenSC#3193) Implement better support for wrapping and unwrapping (OpenSC/OpenSC#3198) Add support for EdDSA sign and verify (OpenSC/OpenSC#2979) pkcs15-crypt Fix PKCS#1 encoding function to correctly detect padding type (OpenSC/OpenSC#3075) piv-tool Fix RSA key generation (OpenSC/OpenSC#3158) Avoid possible state change when matching unknown card (OpenSC/OpenSC#3112) sc-hsm-tool Cleanse buffer with plaintext key share (OpenSC/OpenSC#3226) pkcs11-register Fix pkcs11-register defaults on macOS and Windows (OpenSC/OpenSC#3053) IDPrime Fix identification of IDPrime 840 cards (OpenSC/OpenSC#3146) Fix container mapping for IDPrime 940 cards (OpenSC/OpenSC#3220) Reorder ATRs for matching cards (OpenSC/OpenSC#3154) OpenPGP Fix state tracking after erasing card (OpenSC/OpenSC#3024) Belpic Disable Applet V1.8 (OpenSC/OpenSC#3109) MICARDO Deactivate driver (OpenSC/OpenSC#3152) SmartCard-HSM Fix signing with secp521r1 signature (OpenSC/OpenSC#3157) eOI Set model via sc_card_ctl function (OpenSC/OpenSC#3189) Rutoken increase the minimum PIN size to support Rutoken ECP BIO (OpenSC/OpenSC#3208) JPKI Adjust parameters for public key in PKCS#15 emulator (OpenSC/OpenSC#3182) D-Trust Add support for ECDSA signatures and ECDH key agreement for D-Trust Signatures Cards 4.1/4.4 (OpenSC/OpenSC#3240, OpenSC/OpenSC#openwrt#3248) Signed-off-by: Daniel Golle <[email protected]>

New in 0.26.1; 2025-01-14 General improvements Align allocations of sc_mem_secure_alloc (OpenSC/OpenSC#3281) Fix -O3 gcc optimization failure on amd64 and ppc64el (OpenSC/OpenSC#3299) pkcs11-spy Avoid crash while spying C_GetInterface() (OpenSC/OpenSC#3275) TCOS Fix reading certificate (OpenSC/OpenSC#3296) New in 0.26.0; 2024-11-13 Security CVE-2024-45615: Usage of uninitialized values in libopensc and pkcs15init (OpenSC/OpenSC#3225) CVE-2024-45616: Uninitialized values after incorrect check or usage of APDU response values in libopensc (OpenSC/OpenSC#3225) CVE-2024-45617: Uninitialized values after incorrect or missing checking return values of functions in libopensc (OpenSC/OpenSC#3225) CVE-2024-45618: Uninitialized values after incorrect or missing checking return values of functions in pkcs15init (OpenSC/OpenSC#3225) CVE-2024-45619: Incorrect handling length of buffers or files in libopensc (OpenSC/OpenSC#3225) CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init (OpenSC/OpenSC#3225) CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating key (OpenSC/OpenSC#3219) General improvements Fix reselection of DF after error in PKCSOpenSC/OpenSC#15 layer (OpenSC/OpenSC#3067) Unify OpenSSL logging throughout code (OpenSC/OpenSC#2922) Extend the p11test to support kryoptic (OpenSC/OpenSC#3141) Fix for error in PCSC reconnection (OpenSC/OpenSC#3150) Fixed various issues reported by OSS-Fuzz and Coverity in drivers, PKCS#11 and PKCS#15 layer PKCS#15 Documentation for PKCS#15 profile files (OpenSC/OpenSC#3132) minidriver Support PinCacheAlwaysPrompt usable for PIV cards (OpenSC/OpenSC#3167) pkcs11-tool Show URI when listing token information (OpenSC/OpenSC#3125) and objects (OpenSC/OpenSC#3130) Do not limit size of objects to 5000 bytes (OpenSC/OpenSC#3174) Add support for AES CMAC (OpenSC/OpenSC#3184) Add support for AES GCM encryption (OpenSC/OpenSC#3195) Add support for RSA OAEP encryption (OpenSC/OpenSC#3175) Add support for HKDF (OpenSC/OpenSC#3193) Implement better support for wrapping and unwrapping (OpenSC/OpenSC#3198) Add support for EdDSA sign and verify (OpenSC/OpenSC#2979) pkcs15-crypt Fix PKCS#1 encoding function to correctly detect padding type (OpenSC/OpenSC#3075) piv-tool Fix RSA key generation (OpenSC/OpenSC#3158) Avoid possible state change when matching unknown card (OpenSC/OpenSC#3112) sc-hsm-tool Cleanse buffer with plaintext key share (OpenSC/OpenSC#3226) pkcs11-register Fix pkcs11-register defaults on macOS and Windows (OpenSC/OpenSC#3053) IDPrime Fix identification of IDPrime 840 cards (OpenSC/OpenSC#3146) Fix container mapping for IDPrime 940 cards (OpenSC/OpenSC#3220) Reorder ATRs for matching cards (OpenSC/OpenSC#3154) OpenPGP Fix state tracking after erasing card (OpenSC/OpenSC#3024) Belpic Disable Applet V1.8 (OpenSC/OpenSC#3109) MICARDO Deactivate driver (OpenSC/OpenSC#3152) SmartCard-HSM Fix signing with secp521r1 signature (OpenSC/OpenSC#3157) eOI Set model via sc_card_ctl function (OpenSC/OpenSC#3189) Rutoken increase the minimum PIN size to support Rutoken ECP BIO (OpenSC/OpenSC#3208) JPKI Adjust parameters for public key in PKCS#15 emulator (OpenSC/OpenSC#3182) D-Trust Add support for ECDSA signatures and ECDH key agreement for D-Trust Signatures Cards 4.1/4.4 (OpenSC/OpenSC#3240, OpenSC/OpenSC##3248) Signed-off-by: Daniel Golle <[email protected]>

Jakuje reviewed Jan 11, 2024

View reviewed changes

src/tools/pkcs11-tool.c Outdated Show resolved Hide resolved

src/tools/pkcs11-tool.c Outdated Show resolved Hide resolved

dlegaultbbry force-pushed the pkcs11_tool_eddsa branch from 16c3e1a to acca970 Compare January 11, 2024 21:15

Jakuje reviewed Jan 12, 2024

View reviewed changes

src/tools/pkcs11-tool.c Outdated Show resolved Hide resolved

dlegaultbbry force-pushed the pkcs11_tool_eddsa branch from 9922aa8 to 7cce929 Compare February 20, 2024 18:25

dlegaultbbry force-pushed the pkcs11_tool_eddsa branch from 7cce929 to d7a61ad Compare August 27, 2024 11:15

pkcs11-tool: add pure EdDSA support to sign/verify

85e675f

- add matching of ec_curve_info using ec_params value - distinguish between ed25519 and edd448 using curve size Related OpenSC#2952

dlegaultbbry force-pushed the pkcs11_tool_eddsa branch from 80689e4 to 85e675f Compare August 27, 2024 12:18

Jakuje approved these changes Sep 4, 2024

View reviewed changes

xhanulik approved these changes Sep 4, 2024

View reviewed changes

src/tools/pkcs11-tool.c Outdated Show resolved Hide resolved

frankmorgner reviewed Sep 10, 2024

View reviewed changes

src/tools/pkcs11-tool.c Outdated Show resolved Hide resolved

Removed unused newline

a84236b

frankmorgner approved these changes Sep 10, 2024

View reviewed changes

xhanulik merged commit f15a760 into OpenSC:master Sep 11, 2024

xhanulik mentioned this pull request Sep 11, 2024

Towards new release 0.26.0 #3223

Closed

pkcs11-tool: add pure EdDSA support to sign/verify #2979

pkcs11-tool: add pure EdDSA support to sign/verify #2979

Uh oh!

Conversation

dlegaultbbry commented Jan 11, 2024

Checklist

Uh oh!

Uh oh!

Uh oh!

dengert commented Jan 12, 2024

Uh oh!

Uh oh!

Jakuje commented Jan 12, 2024

Uh oh!

dlegaultbbry commented Jan 12, 2024

Uh oh!

Jakuje commented Jan 15, 2024

Uh oh!

dlegaultbbry commented Jan 15, 2024

Uh oh!

dengert commented Jan 22, 2024

Uh oh!

dlegaultbbry commented Jan 22, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

dengert commented Jan 22, 2024

Uh oh!

dlegaultbbry commented Feb 20, 2024

Uh oh!

Jakuje commented Feb 20, 2024

Uh oh!

dengert commented Feb 20, 2024 via email

Uh oh!

Jakuje commented Feb 20, 2024

Uh oh!

dengert commented Feb 20, 2024

Uh oh!

Jakuje commented Aug 5, 2024

Uh oh!

Jakuje commented Aug 27, 2024

Uh oh!

dlegaultbbry commented Aug 27, 2024

Uh oh!

dengert commented Aug 27, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

xhanulik left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

frankmorgner commented Sep 10, 2024

Uh oh!

dengert commented Sep 12, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

dlegaultbbry commented Jan 22, 2024 •

edited

Loading

dengert commented Aug 27, 2024 •

edited

Loading