Conversation
jcardsim's PersistentSimulatorRuntime cannot persist Signature objects, so make those temporary and not part of the class object. Additionally, allow skipping checks for RSA4096 and for RSA PSS, as even just testing them can prevent applet installation on certain cards (J3H081).
|
The changes to support jcardsim PersistentSimulatorRuntime may not be a good call, I'm not sure - since Signature objects have to be deleted by the card runtime, and if it doesn't support it it will quickly break. |
I am not sure, but I think I agree. Maybe there is another way? If I am not mistaken, the J3H081 is an older card that seems to target JavaCard 3.0.1 classic. Please use the legacy version of IsoApplet as indicated in the readme. |
|
@martinpaljak Do you know by chance know whether RequestObjectDeletion is required when using Signature.GetInstance? It could be that it is only required when using "new .." to create objects, but I am not sure. |
|
Hm, https://trustedconnectivityalliance.org/wp-content/uploads/2024/04/Java-Card-Stepping-Stones_FINAL.pdf |
|
3.0.5 would allow to use OneShot https://docs.oracle.com/en/java/javacard/3.2/jcapi/api_classic/javacard/security/Signature.OneShot.html |
|
Also, have a peek at https://github.com/martinpaljak/JCardEngine (OneShot is not fully implemented, but in the todo list) |
3 participants
jcardsim's PersistentSimulatorRuntime cannot persist Signature objects, so make those temporary and not part of the class object. Additionally, allow skipping checks for RSA4096 and for RSA PSS, as even just testing them can prevent applet installation on certain cards (J3H081).