Uploaded image for project: 'SoftHSM'
  1. SoftHSM
  2. SOFTHSM-112

CKM_AES_KEY_WRAP* conflict in pkcs11.h

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0b2
    • Fix Version/s: 2.0.0b3
    • Component/s: PKCS#11 Interface
    • Labels:
      None

      Description

      SoftHSM's pkcs11.h has conflicting values for BLOWFISH and AES_KEY_WRAP algorithms:
      823 #define CKM_AES_KEY_WRAP (0x1090)
      824 #define CKM_BLOWFISH_KEY_GEN (0x1090)
      825 #define CKM_AES_KEY_WRAP_PAD (0x1091)
      826 #define CKM_BLOWFISH_CBC (0x1091)

      This is apparently a heritage from PKCS#11 2.30.

      Current PKCS#11 v2.40 solved this problem by re-numbering AES_KEY_WRAP algorithms:
      http://docs.oasis-open.org/pkcs11/pkcs11-curr/v2.40/cs01/pkcs11-curr-v2.40-cs01.pdf

      #define CKM_BLOWFISH_KEY_GEN 0x00001090
      #define CKM_BLOWFISH_CBC 0x00001091
      #define CKM_AES_KEY_WRAP 0x00002109
      #define CKM_AES_KEY_WRAP_PAD 0x0000210A

      Would it be possible to migrate SoftHSM v2 to PKCS#11 v2.40 and thus solve the conflict by the same renumbering?

        Attachments

          Activity

            People

            Assignee:
            rickard Rickard Bellgrim
            Reporter:
            pspacek Petr Špaček
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: