swissbit-csteuer
commented
1 year ago I tested RSA PSS today with OpenSC. OpenSC does two things that are kind of incompatible with the RSA PSS implementation in the IsoApplet:
- OpenSC prefixes the pre-computed hash with PKCS#1 digest info. The IsoApplet requires the raw hash. I changed the IsoApplet card driver in OpenSC to remove the prefix.
- When a card driver sets the
SC_ALGORITHM_RSA_PAD_PSSflag, OpenSC assumes that all hash algorithms (SHA1 + SHA2) are supported unless one constrains the available hash algorithms. E.g. we could set theSC_ALGORITHM_RSA_HASH_SHA256if we only support RSA with SHA256. However, that constrains the hash algorithms that are available to RSA PKCS#1.5 as well. Therefore, I changed the IsoApplet to only signal RSA PSS support if all signature schemes are supported.
I hope its ok that I increased the scope of this PR by adding those changes.
philipWendland
When testing the isoapplet-v1 changes with real hardware instead of the simulator, I found that the size of the APDU buffer is not large enough to hold all data, e.g. when sending the public EC key, even if extended APDUs are used.
I found in the JavaCard API docs that the guaranteed length of the APDU buffer is only 133 bytes (the buffer size of the smart card that I use for testing is 261 byte).
Therefore, I revived the ram buffer from the v0 version. I have already tested EC and RSA Keygen, ECDSA and RSA-PKCS1 signature creation and EC/RSA key import. RSA-PSS signatures and RSA decryption have not been tested yet.