Hi,
I found a bug in the opensc pkcs11 library (pkcs11/framework-pkcs15.c).
There are a few uses of:
case CKA_LABEL:
args.label = (char *) attr->pValue;
break;
to set the input label into the sc_pkcs15init_certargs structure. The
problem is that attr->pValue is not guaranteed to be null terminated,
opensc should read attr->ulValueLen and do a copy of the label.
--
Alessandro Premoli
_______________________________________________
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel
