Skip to content

Add full ECC Support for D-Trust Card 4.1/4.4 #3248

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
xhanulik merged 4 commits into from
Nov 12, 2024
Merged

Add full ECC Support for D-Trust Card 4.1/4.4 #3248

xhanulik merged 4 commits into from
Nov 12, 2024

Conversation

@hamarituc
Copy link
Contributor

@hamarituc hamarituc commented Oct 16, 2024

This PR adds support for ECDSA signatures and ECDH key agreement for D-Trust Signatures Cards 4.1/4.4 issued by the german Bundesdruckerei.

This PR supersedes #3240. But since @frankmorgner already reviewed that PR I wouldn't like to amend it afterwards. Feel free to continue reviewing #3240 and to postpone this one or just to review this PR instead. I am unsure which way do you prefer. Sorry the noise in case you preferred just amending an already reviewed PR.

Tested on:

Checklist
  • New files have a LGPL 2.1 license statement
  • PKCS#11 module is tested
  • Windows minidriver is tested (only for signature, but not for key derivation)
  • macOS tokend is tested (unable to test, help needed)

Jakuje
Jakuje reviewed Oct 18, 2024
View reviewed changes
@hamarituc hamarituc force-pushed the dtrust-ecc-derive branch 2 times, most recently from eb2f754 to 7977123 Compare October 21, 2024 15:00
Jakuje
Jakuje approved these changes Oct 21, 2024
View reviewed changes
Copy link
Member

@Jakuje Jakuje left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you! Looks good to me!

frankmorgner
frankmorgner requested changes Oct 30, 2024
View reviewed changes
@frankmorgner
Copy link
Member

frankmorgner commented Oct 30, 2024

Also, the linter doesn't seem to like the extra empty line:

diff --git a/src/libopensc/iso7816.c b/src/libopensc/iso7816.c
index 30cebb4..e17549c 100644
--- a/src/libopensc/iso7816.c
+++ b/src/libopensc/iso7816.c
@@ -30,7 +30,6 @@
 #include "iso7816.h"
 #include "sm/sm-iso.h"
 
-
 void
 iso7816_fixup_transceive_length(const struct sc_card *card,
 		struct sc_apdu *apdu)

@hamarituc
iso7816.c: make fixup_transceive_length() public
ad197ed 
The code of `fixup_transceive_length()` was duplicated multiple times in
the code. Make this function public and remove duplicated code to improve
maintainability.
@hamarituc
card-cardos-common.c: move common CardOS function to a separate file
3f4f7cd
@xhanulik
Copy link
Member

xhanulik commented Nov 12, 2024

@frankmorgner @Jakuje Is this good to go to 0.26.0 or should we postpone?

@Jakuje
Copy link
Member

Jakuje commented Nov 12, 2024

I think this is good to go for 0.26. It is changing only the dtrust driver. The changes in other files are only refactoring and should not introduce any changes in behavior.

@xhanulik xhanulik merged commit 9eec0dc into OpenSC:master Nov 12, 2024
@hamarituc hamarituc deleted the dtrust-ecc-derive branch November 12, 2024 13:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@frankmorgner frankmorgner frankmorgner approved these changes

@Jakuje Jakuje Jakuje approved these changes

@xhanulik xhanulik xhanulik approved these changes

Assignees

No one assigned

Labels

None yet

Projects

No open projects
OpenSC 0.26.0
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Unable to perform ECDSA signature when field_size extension is not present

4 participants

@hamarituc @frankmorgner @xhanulik @Jakuje