<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<table border="0" cellpadding="0" cellspacing="0" style="width: 100%; border-collapse: separate; border-spacing: 0; margin: 0 auto;">

<tbody>

<tr>

<td style="font-family: 'Helvetica Neue',Helvetica,Arial,sans-serif; overflow: hidden;" align="left" bgcolor="#ffffff">

<table border="0" cellpadding="0" cellspacing="0" style="width: 100%; border-collapse: separate; border-spacing: 0;">

<tbody>

<tr>

<td style="color: #333333; border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid; font-size: 15px; font-weight: bold; line-height: 1.4; padding: 20px 0;">

Merge request

<a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1200">!1200</a>

was reviewed by

<a href="https://gitlab.com/jjelen">Jakub Jelen</a>

</td>

</tr>

<tr>

<td style="overflow: hidden; font-size: 14px; line-height: 1.4; display: grid;">

<p style="color: #777777;">

<a href="https://gitlab.com/jjelen">Jakub Jelen</a>

commented on a

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1200#note_301564436">lib/pkcs11_write.c</a>:

</p>

<table>

<tr class="line_holder old" id="">

<td class="diff-line-num old old_line" data-linenumber="378" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #fac5cd; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#f9d7dc">

378

</td>

<td class="diff-line-num new_line old" data-linenumber="388" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #fac5cd; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#f9d7dc">

</td>

<td class="line_content old" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#fbe9eb">

<pre style="margin: 0;">-<span id="LC378" class="line" lang="c">            <span class="n" style="color: #333;">a</span><span class="p">[</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">a_val</span><span class="p">].</span><span class="n" style="color: #333;">value_len</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;"><span class="idiff left">pubkey</span></span><span class="o" style="font-weight: 600;"><span class="idiff">-></span></span><span class="n" style="color: #333;"><span class="idiff">params</span></span><span class="p"><span class="idiff">.</span></span><span class="n" style="color: #333;"><span class="idiff right">raw_pub</span></span><span class="p">.</span><span class="n" style="color: #333;">size</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="diff-line-num new old_line" data-linenumber="379" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="diff-line-num new new_line" data-linenumber="388" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

388

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC388" class="line" lang="c">            <span class="n" style="color: #333;">a</span><span class="p">[</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">a_val</span><span class="p">].</span><span class="n" style="color: #333;">value</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;"><span class="idiff left right">ecpoint</span></span><span class="p">.</span><span class="n" style="color: #333;">data</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="diff-line-num new old_line" data-linenumber="379" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="diff-line-num new new_line" data-linenumber="389" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

389

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC389" class="line" lang="c">            <span class="n" style="color: #333;">a</span><span class="p">[</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">a_val</span><span class="p">].</span><span class="n" style="color: #333;">value_len</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;"><span class="idiff left right">ecpoint</span></span><span class="p">.</span><span class="n" style="color: #333;">size</span><span class="p">;</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">The change is intentional, but after reading the specifications, not sure if completely correct. The current implementation is most probably wrong as it uses only the raw bytes of public key. The octet string is what is used in ECDSA keys in PKCS#11 and what is used in SoftHSM at this moment. The RFC 8410 on the other hand refers to public key as BIT STRING.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/jjelen">Jakub Jelen</a>

commented on a

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1200#note_301564438">lib/pkcs11_write.c</a>:

</p>

<table>

<tr class="line_holder" id="">

<td class="diff-line-num old_line" data-linenumber="362" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #f0f0f0; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#fafafa">

362

</td>

<td class="diff-line-num new_line" data-linenumber="362" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #f0f0f0; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#fafafa">

362

</td>

<td class="line_content" style="padding-left: 0.5em; padding-right: 0.5em;">

<pre style="margin: 0;"> <span id="LC362" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="diff-line-num new old_line" data-linenumber="363" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="diff-line-num new new_line" data-linenumber="363" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

363

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC363" class="line" lang="c">            <span class="cm" style="color: #998; font-style: italic;">/* XXX This is wrong -- we need encode the curve name</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="diff-line-num new old_line" data-linenumber="363" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="diff-line-num new new_line" data-linenumber="364" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

364

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC364" class="line" lang="c"><span class="cm" style="color: #998; font-style: italic;">                 * not OID according to the last PKCS #11 3.0 draft */</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">My reading is that RFC 8410 defines <code>id-Ed25519</code>, which should be referenced by OID, while RFC 8032 defines what we call edwards25519 keys (and few others), but I might be reading this wrong and we could use the OIDs too.</p>

<p dir="auto">The softhsm now supports both named curves and OIDs:</p>

<p dir="auto"><a href="https://github.com/opendnssec/SoftHSMv2/pull/526" rel="nofollow noreferrer noopener" target="_blank">https://github.com/opendnssec/SoftHSMv2/pull/526</a></p>

</div>

</td>

</tr>

</tbody>

</table>

</td>

</tr>

</tbody>

</table>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777;">

—

<br>

Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1200">view it on GitLab</a>.

<br>

You're receiving this email because of your account on gitlab.com.

If you'd like to receive fewer emails, you can

<a href="https://gitlab.com/sent_notifications/0990d8f6f261d07e77eb2bca73845431/unsubscribe">unsubscribe</a>

from this thread or

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Merge request","url":"https://gitlab.com/gnutls/gnutls/-/merge_requests/1200"}}</script>

</p>

</div>

</body>

</html>