[pkg-opensc-commit] [opensc] 225/295: pkcs11-tool: fixed RSA-X-509 corner case test

[Eric Dorland]

This is an automated email from the git hooks/post-receive script.

eric pushed a commit to branch master
in repository opensc.

commit c2fa66f1fbdc5c5fec98028a75f4550b6ec55033
Author: Frank Morgner <frankmorgner at gmail.com>
Date:   Mon Apr 3 13:37:56 2017 +0200

    pkcs11-tool: fixed RSA-X-509 corner case test
    
    For testing RSA-X-509, we are generating random bytes for signing. It
    may happen that the modulus is smaller than the random number
    generated, which triggers an error in the card. With this change, we
    are setting the most significant byte to 0x00 to assure the random
    number is smaller than the modulus.
---
 src/tools/pkcs11-tool.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/tools/pkcs11-tool.c b/src/tools/pkcs11-tool.c
index c500af6..ef5d2a6 100644
--- a/src/tools/pkcs11-tool.c
+++ b/src/tools/pkcs11-tool.c
@@ -4257,6 +4257,11 @@ static int test_signature(CK_SESSION_HANDLE sess)
 
 	pseudo_randomize(data, dataLen);
 
+	if (firstMechType == CKM_RSA_X_509) {
+		/* make sure our data is smaller than the modulus */
+		data[0] = 0x00;
+	}
+
 	ck_mech.mechanism = firstMechType;
 	rv = p11->C_SignInit(sess, &ck_mech, privKeyObject);
 	/* mechanism not implemented, don't test */

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-opensc/opensc.git