From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Thu, 13 Apr 2023 09:24:51 +0200 Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1pmrK5-001xe4-U7 for lore@lore.pengutronix.de; Thu, 13 Apr 2023 09:24:50 +0200 Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de) by metis.ext.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1pmrK6-00014c-7U; Thu, 13 Apr 2023 09:24:50 +0200 Received: from smtp16.bhosted.nl ([2a02:9e0:8000::27]) by metis.ext.pengutronix.de with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pmrJO-00014R-5l for ptxdist@pengutronix.de; Thu, 13 Apr 2023 09:24:07 +0200 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonic.nl; s=202111; h=in-reply-to:from:references:to:subject:mime-version:date:message-id: content-type:from; bh=/J8gC6CBhFbDb/MirJPaOJfyAa2dSx6WMz/+MeY3uTk=; b=hOVNrZ5elrVOCqlUd0mBCfVxOb93u3xjEiXmuj8agvKuAzOXFJi4NP1BzouPsZ4hB3UYWOtRyrl+n I4wZ4jRzgUhc31VyEnqCJhi6qdXGwKfL6bEk9k9u8TolKnINeMqsysqllDlnApGEK2eV9xiuShgTnh pkUxhOKyK/PAw2/ES/fyauwNq6rt0Cf3s0tPcgX8bGcyiVB6V2+pnEyE7B9gF3l0CZbm9RKd8d6VwV SbF/3CfEdDfGkXOvv4mUNrb0U1UQmteitAXsdsP0bMmk+eUZQ/kNYtR72nxVggHHCW/D+LFUz0EtDw wOLkPqJ5XhBkt6nvPjpkmwpcI5HgQ8g== X-MSG-ID: 2b3daa57-d9cc-11ed-829c-0050569d2c73 Content-Type: multipart/mixed; boundary="------------usSAxJ99SoKL0qcDKKBY2fTl" Message-ID: Date: Thu, 13 Apr 2023 09:25:54 +0200 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.9.0 Content-Language: nl To: ptxdist@pengutronix.de References: <20230406145016.3074015-1-robin@protonic.nl> From: Robin van der Gracht In-Reply-To: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on metis.ext.pengutronix.de X-Spam-Level: X-Spam-Status: No, score=-3.1 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,SPF_HELO_PASS, SPF_PASS,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.2 Subject: Re: [ptxdist] [PATCH 1/3] rules: opensc: Version bumb to 0.23.0 X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false This is a multi-part message in MIME format. --------------usSAxJ99SoKL0qcDKKBY2fTl Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Hi Michael, On 12-04-2023 08:28, Michael Olbrich wrote: > On Thu, Apr 06, 2023 at 04:50:14PM +0200, Robin van der Gracht wrote: >> Signed-off-by: Robin van der Gracht > > With this update pkcs11-tool (from host-opensc) does not work correctly any > more. I'm getting "error: OpenSSL error during RSA private key parsing" and > then a segfault. For example with the host-ptx-code-signing-dev package. > I'm not sure what's wrong here. I'm not seeing this error with our setup but we're on 2023.02.0 with openssl 1.1.1t. I did notice a fix for RSA key imports in the opensc repository shortly after version 0.23.0 was released. I've created a ptxdist patch that includes that patch. It's attached to this email. Can you verify if this fixes the error? Kind regards, Robin --------------usSAxJ99SoKL0qcDKKBY2fTl Content-Type: text/x-patch; charset=UTF-8; name="0001-opensc-Add-patch-that-fixes-RSA-private-key-imports.patch" Content-Disposition: attachment; filename*0="0001-opensc-Add-patch-that-fixes-RSA-private-key-imports.pat"; filename*1="ch" Content-Transfer-Encoding: base64 RnJvbSA3Yzg1ZGQyYzM2NTAzMWJjNzkzY2FjN2JhMjlhYzY3ZTUxMDVlMTQ0IE1vbiBTZXAg MTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBSb2JpbiB2YW4gZGVyIEdyYWNodCA8cm9iaW5AcHJv dG9uaWMubmw+CkRhdGU6IFRodSwgMTMgQXByIDIwMjMgMDk6MTg6MDAgKzAyMDAKU3ViamVj dDogW1BBVENIXSBvcGVuc2M6IEFkZCBwYXRjaCB0aGF0IGZpeGVzIFJTQSBwcml2YXRlIGtl eSBpbXBvcnRzCgpTaWduZWQtb2ZmLWJ5OiBSb2JpbiB2YW4gZGVyIEdyYWNodCA8cm9iaW5A cHJvdG9uaWMubmw+Ci0tLQogLi4uMS1wa2NzMTEtdG9vbC1GaXgtcHJpdmF0ZS1rZXktaW1w b3J0LnBhdGNoIHwgMzIgKysrKysrKysrKysrKysrKysrKwogcGF0Y2hlcy9PcGVuU0MtMC4y My4wL3NlcmllcyAgICAgICAgICAgICAgICAgIHwgIDEgKwogMiBmaWxlcyBjaGFuZ2VkLCAz MyBpbnNlcnRpb25zKCspCiBjcmVhdGUgbW9kZSAxMDA2NDQgcGF0Y2hlcy9PcGVuU0MtMC4y My4wLzAwMDEtcGtjczExLXRvb2wtRml4LXByaXZhdGUta2V5LWltcG9ydC5wYXRjaAogY3Jl YXRlIG1vZGUgMTAwNjQ0IHBhdGNoZXMvT3BlblNDLTAuMjMuMC9zZXJpZXMKCmRpZmYgLS1n aXQgYS9wYXRjaGVzL09wZW5TQy0wLjIzLjAvMDAwMS1wa2NzMTEtdG9vbC1GaXgtcHJpdmF0 ZS1rZXktaW1wb3J0LnBhdGNoIGIvcGF0Y2hlcy9PcGVuU0MtMC4yMy4wLzAwMDEtcGtjczEx LXRvb2wtRml4LXByaXZhdGUta2V5LWltcG9ydC5wYXRjaApuZXcgZmlsZSBtb2RlIDEwMDY0 NAppbmRleCAwMDAwMDAwMDAuLmE1OGZjNjlhNAotLS0gL2Rldi9udWxsCisrKyBiL3BhdGNo ZXMvT3BlblNDLTAuMjMuMC8wMDAxLXBrY3MxMS10b29sLUZpeC1wcml2YXRlLWtleS1pbXBv cnQucGF0Y2gKQEAgLTAsMCArMSwzMiBAQAorRnJvbSA5Mjk0MTgzZTA3ZmY0OTQ0ZTNmNWU1 OTBmMzQzZjU3Mjc2MzY3NjdlIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQorRnJvbTogSmFr dWIgSmVsZW4gPGpqZWxlbkByZWRoYXQuY29tPgorRGF0ZTogVGh1LCAxIERlYyAyMDIyIDIw OjA4OjUzICswMTAwCitTdWJqZWN0OiBbUEFUQ0hdIHBrY3MxMS10b29sOiBGaXggcHJpdmF0 ZSBrZXkgaW1wb3J0CisKKy0tLQorIHNyYy90b29scy9wa2NzMTEtdG9vbC5jIHwgNCArKy0t CisgMSBmaWxlIGNoYW5nZWQsIDIgaW5zZXJ0aW9ucygrKSwgMiBkZWxldGlvbnMoLSkKKwor ZGlmZiAtLWdpdCBhL3NyYy90b29scy9wa2NzMTEtdG9vbC5jIGIvc3JjL3Rvb2xzL3BrY3Mx MS10b29sLmMKK2luZGV4IGFhZTIwNWZlLi5jZmVlODUyNiAxMDA2NDQKKy0tLSBhL3NyYy90 b29scy9wa2NzMTEtdG9vbC5jCisrKysgYi9zcmMvdG9vbHMvcGtjczExLXRvb2wuYworQEAg LTM2NjksMTMgKzM2NjksMTMgQEAgcGFyc2VfcnNhX3BrZXkoRVZQX1BLRVkgKnBrZXksIGlu dCBwcml2YXRlLCBzdHJ1Y3QgcnNha2V5X2luZm8gKnJzYSkKKyAJCVJTQV9nZXQwX2ZhY3Rv cnMociwgJnJfcCwgJnJfcSk7CisgCQlSU0FfZ2V0MF9jcnRfcGFyYW1zKHIsICZyX2RtcDEs ICZyX2RtcTEsICZyX2lxbXApOworICNlbHNlCistCQlpZiAoRVZQX1BLRVlfZ2V0X2JuX3Bh cmFtKHBrZXksIE9TU0xfUEtFWV9QQVJBTV9SU0FfRkFDVE9SMSwgJnJfZCkgIT0gMSB8fAor KwkJaWYgKEVWUF9QS0VZX2dldF9ibl9wYXJhbShwa2V5LCBPU1NMX1BLRVlfUEFSQU1fUlNB X0QsICZyX2QpICE9IDEgfHwKKyAJCQlFVlBfUEtFWV9nZXRfYm5fcGFyYW0ocGtleSwgT1NT TF9QS0VZX1BBUkFNX1JTQV9GQUNUT1IxLCAmcl9wKSAhPSAxIHx8CisgCQkJRVZQX1BLRVlf Z2V0X2JuX3BhcmFtKHBrZXksIE9TU0xfUEtFWV9QQVJBTV9SU0FfRkFDVE9SMiwgJnJfcSkg IT0gMSB8fAorIAkJCUVWUF9QS0VZX2dldF9ibl9wYXJhbShwa2V5LCBPU1NMX1BLRVlfUEFS QU1fUlNBX0VYUE9ORU5UMSwgJnJfZG1wMSkgIT0gMSB8fAorIAkJCUVWUF9QS0VZX2dldF9i bl9wYXJhbShwa2V5LCBPU1NMX1BLRVlfUEFSQU1fUlNBX0VYUE9ORU5UMiwgJnJfZG1xMSkg IT0gMSB8fAorLQkJCUVWUF9QS0VZX2dldF9ibl9wYXJhbShwa2V5LCBPU1NMX1BLRVlfUEFS QU1fUlNBX0VYUE9ORU5UMywgJnJfaXFtcCkgIT0gMSkgeworIAkJCXV0aWxfZmF0YWwoIk9w ZW5TU0wgZXJyb3IgZHVyaW5nIFJTQSBwcml2YXRlIGtleSBwYXJzaW5nIik7CisrCQkJRVZQ X1BLRVlfZ2V0X2JuX3BhcmFtKHBrZXksIE9TU0xfUEtFWV9QQVJBTV9SU0FfQ09FRkZJQ0lF TlQxLCAmcl9pcW1wKSAhPSAxKSB7CisgCQl9CisgI2VuZGlmCisgCQlSU0FfR0VUX0JOKHJz YSwgcHJpdmF0ZV9leHBvbmVudCwgcl9kKTsKKy0tIAorMi4zNy4yCisKZGlmZiAtLWdpdCBh L3BhdGNoZXMvT3BlblNDLTAuMjMuMC9zZXJpZXMgYi9wYXRjaGVzL09wZW5TQy0wLjIzLjAv c2VyaWVzCm5ldyBmaWxlIG1vZGUgMTAwNjQ0CmluZGV4IDAwMDAwMDAwMC4uZWJlZmUzY2Qx Ci0tLSAvZGV2L251bGwKKysrIGIvcGF0Y2hlcy9PcGVuU0MtMC4yMy4wL3NlcmllcwpAQCAt MCwwICsxIEBACiswMDAxLXBrY3MxMS10b29sLUZpeC1wcml2YXRlLWtleS1pbXBvcnQucGF0 Y2gKLS0gCjIuMzcuMgoK --------------usSAxJ99SoKL0qcDKKBY2fTl--