Closed ebourg closed 1 year ago
Thank you for the report.
This was caused by a bug in the RSA integration in Trussed for which a fix is ready: https://github.com/Nitrokey/trussed/pull/11
The issue was on the contrary that the length was checked, but the error was not handled, which translated to a Rust panic
, aka red LED + the key stops working.
Future releases will actually use a different approach to RSA integration in Trussed that also contains the fix: https://github.com/Nitrokey/opcard-rs/pull/116
This was fixed by #116 which is now included in the 1.4.0 Nitrokey 3 stable firmware.
Using the firmware 1.2.2-alpha.20221130, signing a too large payload crashes the Nitrokey (the LED turns red, the key is unresponsive and must be unplugged). Here is an example with a RSA 2048 key:
I guess the size of the payload should be checked, and an error 0x6700 (Wrong Length) returned if it's too big.