Uploaded image for project: 'Support'
  1. Support
  2. SUPPORT-152

softhsm2 library generates invalid ECC secp256r1 parameters

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Cannot Reproduce
    • Affects Version/s: SoftHSM 2.0.0a2
    • Fix Version/s: None
    • Component/s: PKCS#11 Interface
    • Labels:
      None

      Description

      When I generate ECC parameters with SECP384r1 using opensc's pkcs11-tool (or p11tool), I get uninitialized values warnings in valgrind. This does occur for 2048-bit rsa as well, but NOT for secp256r1.

      One would have expected the bytes of the generated keys to be properly initialized.

      I use softhsm-2.0.0b1-3.fc21.x86_64, compiled with openssl, and I get the conditional jumps with both pkcs11-tool and gnutls' p11tool.

      How to reproduce:
      $ valgrind pkcs11-tool --module /usr/lib64/pkcs11/libsofthsm2.so --keypairgen --key-type EC:secp384r1 --pin 12345678 --login --label test15

      The output is attached.

        Attachments

          Activity

            People

            Assignee:
            rickard Rickard Bellgrim
            Reporter:
            nmav Nikos Mavrogiannopoulos
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: