Closed Jakuje closed 4 months ago
Uhm the spec only sasy this:
Array of CK_BYTE containing the value of the encoding parameter. If the parameter is empty, pSourceData must be NULL and ulSourceDataLen must be zero.
Which is awfully underspecified, but clearly we should never crash.
My reading of the PKCS#11 specs is that the RSA-OAEP parameters source needs to be
CKZ_DATA_SPECIFIED
regardless if the lablel is specified or not. Currently, the combination ofsource=CKZ_DATA_SPECIFIED
and NULL source data andulSourceDataLen=0
is crashing now.