[PATCH] scd: Improve KDF-DO support
Arnaud Fontaine
arnaud.fontaine at ssi.gouv.fr
Mon Feb 12 10:36:18 CET 2018
Hi,
so you (will) have the same problem with the current implementation
where KDF_ITERSALTED_S2K is systematically applied when the card
supports KDF (bit set in the extended capabilities) and a KDF-DO is
present (whatever its content).
Cheers
--
Arnaud Fontaine
Le 08/02/2018 à 19:50, Achim Pietig a écrit :
> Hi,
>
> the actual V3.3 card returns H81, &H01, &H00, &H9000 to a Get Data with P1P2 = 00F9, that means KDF-DO is present, but not used/personalised.
>
> Reagrds
> Achim
>
>
> Am 08.02.2018 um 19:03 schrieb Arnaud Fontaine:
>> I think adding some examples is a good idea to clarify ambiguous
>> sentences such as the one I have quoted.
>>
>> So no encapsulating tag in the response, only the child ones. Correct ?
>>
>> @Yutaka
>> If this is correct, the following patch is enough to trigger the
>> KDF_ITERSALTED_S2K only when needed.
>>
>> Cheers
>>
More information about the Gnupg-devel
mailing list