softhsm
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 3 additions & 3 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎src/lib/SoftHSM.cpp‎
Lines changed: 84 additions & 1 deletion b/‎src/lib/SoftHSM.cpp‎
Lines changed: 84 additions & 1 deletion
diff --git a/‎src/lib/crypto/AsymmetricAlgorithm.h‎
Lines changed: 34 additions & 0 deletions b/‎src/lib/crypto/AsymmetricAlgorithm.h‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎src/lib/crypto/MLDSAPrivateKey.cpp‎
Lines changed: 1 addition & 1 deletion b/‎src/lib/crypto/MLDSAPrivateKey.cpp‎
Lines changed: 1 addition & 1 deletion
@@ -77,13 +77,13 @@ jobs:
           make check || (find . -name test-suite.log -exec cat {} \; && false)
 
   linux_ossl_35:
-    name: Linux with OpenSSL 3.5.2
+    name: Linux with OpenSSL 3.5.4
     runs-on: ubuntu-24.04
     steps:
       - uses: actions/checkout@v4
       - name: Prepare
         env:
-          OPENSSL_VERSION: 3.5.2
+          OPENSSL_VERSION: 3.5.4
           OPENSSL_INSTALL_DIR: /usr/local/openssl-3.5
           LDFLAGS: "-Wl,-rpath,/usr/local/openssl-3.5/lib64 -L/usr/local/openssl-3.5/lib64"
           PKG_CONFIG_PATH: "/usr/local/openssl-3.5/lib64/pkgconfig"
@@ -98,7 +98,7 @@ jobs:
           make -j$(nproc) > build.log
           sudo make install > install.log
           cd ${{ env.OPENSSL_INSTALL_DIR }}
-          sudo ln -s lib64 lib
+          sudo ln -sf lib64 lib
       - name: Build
         env:
           # Once all OpenSSL deprecations fixed, uncomment this
 
@@ -4204,6 +4204,7 @@ CK_RV SoftHSM::AsymSignInit(CK_SESSION_HANDLE hSession, CK_MECHANISM_PTR pMechan
 #endif
 #ifdef WITH_ML_DSA
 	bool isMLDSA = false;
+	SIGN_ADDITIONAL_CONTEXT additionalContext;
 #endif
 	switch(pMechanism->mechanism) {
 		case CKM_RSA_PKCS:
@@ -4476,6 +4477,48 @@ CK_RV SoftHSM::AsymSignInit(CK_SESSION_HANDLE hSession, CK_MECHANISM_PTR pMechan
 			mechanism = AsymMech::MLDSA;
 			bAllowMultiPartOp = false;
 			isMLDSA = true;
+			if (pMechanism->pParameter != NULL_PTR) {
+				if(pMechanism->ulParameterLen != sizeof(CK_SIGN_ADDITIONAL_CONTEXT))
+				{
+					ERROR_MSG("Invalid parameters");
+					return CKR_ARGUMENTS_BAD;
+				}
+				else
+				{
+					const CK_SIGN_ADDITIONAL_CONTEXT* ckSignAdditionalContext = (const CK_SIGN_ADDITIONAL_CONTEXT*) pMechanism->pParameter;
+					if (ckSignAdditionalContext->ulContextLen > 255)
+					{
+						ERROR_MSG("ML-DSA: Invalid parameters, context length > 255");
+						return CKR_ARGUMENTS_BAD;
+					}
+					
+					if (ckSignAdditionalContext->ulContextLen > 0)
+					{
+						if (ckSignAdditionalContext->pContext == NULL)
+						{
+							ERROR_MSG("ML-DSA: Invalid parameters, pContext is NULL");
+							return CKR_ARGUMENTS_BAD;
+						}
+						additionalContext.contextAsChar = (unsigned char*) ckSignAdditionalContext->pContext;
+        				additionalContext.contextLength = ckSignAdditionalContext->ulContextLen;
+					}
+					switch (ckSignAdditionalContext->hedgeVariant) {
+						case CKH_HEDGE_REQUIRED:
+							additionalContext.hedgeType = Hedge::HEDGE_REQUIRED;
+							break;
+						case CKH_DETERMINISTIC_REQUIRED:
+							additionalContext.hedgeType = Hedge::DETERMINISTIC_REQUIRED;
+							break;
+						case CKH_HEDGE_PREFERRED:
+						// Per PKCS11v3.2 section 6.67.5
+						// "If no parameter is supplied the hedgeVariant will be CKH_HEDGE_PREFERRED"
+						default:
+							additionalContext.hedgeType = Hedge::HEDGE_PREFERRED;
+					}
+					param = &additionalContext;
+					paramLen = sizeof(SIGN_ADDITIONAL_CONTEXT);
+				}
+			}
 			break;
 #endif
 		default:
@@ -5238,6 +5281,7 @@ CK_RV SoftHSM::AsymVerifyInit(CK_SESSION_HANDLE hSession, CK_MECHANISM_PTR pMech
 #endif
 #ifdef WITH_ML_DSA
 	bool isMLDSA = false;
+	SIGN_ADDITIONAL_CONTEXT additionalContext;
 #endif
 	switch(pMechanism->mechanism) {
 		case CKM_RSA_PKCS:
@@ -5508,6 +5552,46 @@ CK_RV SoftHSM::AsymVerifyInit(CK_SESSION_HANDLE hSession, CK_MECHANISM_PTR pMech
 			mechanism = AsymMech::MLDSA;
 			bAllowMultiPartOp = false;
 			isMLDSA = true;
+			if (pMechanism->pParameter != NULL_PTR) {
+				if(pMechanism->ulParameterLen != sizeof(CK_SIGN_ADDITIONAL_CONTEXT))
+				{
+					ERROR_MSG("Invalid parameters");
+					return CKR_ARGUMENTS_BAD;
+				}
+				else
+				{
+					const CK_SIGN_ADDITIONAL_CONTEXT* ckSignAdditionalContext = (const CK_SIGN_ADDITIONAL_CONTEXT*) pMechanism->pParameter;
+					if (ckSignAdditionalContext->ulContextLen > 255) {
+						ERROR_MSG("ML-DSA: Invalid parameters, context length > 255");
+						return CKR_ARGUMENTS_BAD;
+					}
+					
+					if (ckSignAdditionalContext->ulContextLen > 0) {
+						if (ckSignAdditionalContext->pContext == NULL)
+						{
+							ERROR_MSG("ML-DSA: Invalid parameters, pContext is NULL");
+							return CKR_ARGUMENTS_BAD;
+						}
+						additionalContext.contextAsChar = (unsigned char*) ckSignAdditionalContext->pContext;
+						additionalContext.contextLength = ckSignAdditionalContext->ulContextLen;
+					}
+					switch (ckSignAdditionalContext->hedgeVariant) {
+						case CKH_HEDGE_REQUIRED:
+							additionalContext.hedgeType = Hedge::HEDGE_REQUIRED;
+							break;
+						case CKH_DETERMINISTIC_REQUIRED:
+							additionalContext.hedgeType = Hedge::DETERMINISTIC_REQUIRED;
+							break;
+						// Per PKCS11v3.2 section 6.67.5
+						// "If no parameter is supplied the hedgeVariant will be CKH_HEDGE_PREFERRED"
+						case CKH_HEDGE_PREFERRED:
+						default:
+							additionalContext.hedgeType = Hedge::HEDGE_PREFERRED;
+					}
+					param = &additionalContext;
+					paramLen = sizeof(SIGN_ADDITIONAL_CONTEXT);
+				}
+			}
 			break;
 #endif
 		default:
@@ -10283,7 +10367,6 @@ CK_RV SoftHSM::generateMLDSA
 				bOK = bOK && osobject->setAttribute(CKA_NEVER_EXTRACTABLE, bNeverExtractable);
 
 				// MLDSA Private Key Attributes
-				ByteString parameterSet;
 				ByteString value;
 				ByteString seed;
 				if (isPrivateKeyPrivate)
 
@@ -118,6 +118,40 @@ struct RSA_PKCS_PSS_PARAMS
 	size_t sLen;
 };
 
+struct Hedge
+{
+	enum Type
+	{
+		HEDGE_PREFERRED,
+		HEDGE_REQUIRED,
+		DETERMINISTIC_REQUIRED
+	};
+};
+
+struct SIGN_ADDITIONAL_CONTEXT
+{
+	Hedge::Type hedgeType;
+	const unsigned char* contextAsChar;
+	size_t contextLength;
+
+	// Prevent shallow copies (Session::setParameters handles deep-copy)
+	SIGN_ADDITIONAL_CONTEXT(const SIGN_ADDITIONAL_CONTEXT&) = delete;
+	SIGN_ADDITIONAL_CONTEXT& operator=(const SIGN_ADDITIONAL_CONTEXT&) = delete;
+
+	SIGN_ADDITIONAL_CONTEXT(): 
+		hedgeType(Hedge::Type::HEDGE_PREFERRED),
+		contextAsChar(NULL),
+		contextLength(0){}
+	SIGN_ADDITIONAL_CONTEXT(Hedge::Type hedgeType): 
+		hedgeType(hedgeType),
+		contextAsChar(NULL),
+		contextLength(0){}
+	SIGN_ADDITIONAL_CONTEXT(Hedge::Type hedgeType, const unsigned char* contextAsChar, size_t contextLength): 
+		hedgeType(hedgeType),
+		contextAsChar(contextAsChar),
+		contextLength(contextLength){}
+};
+
 class AsymmetricAlgorithm
 {
 public:
 
@@ -24,7 +24,7 @@ unsigned long MLDSAPrivateKey::getBitLength() const
 	return getValue().bits();
 }
 
-// Get the bit length
+// Get the parameter set
 unsigned long MLDSAPrivateKey::getParameterSet() const
 {
 	switch(value.size()) {
Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,7 @@ unsigned long MLDSAPrivateKey::getBitLength() const`
`24`	`24`	`return getValue().bits();`
`25`	`25`	`}`
`26`	`26`
`27`		`-// Get the bit length`
	`27`	`+// Get the parameter set`
`28`	`28`	`unsigned long MLDSAPrivateKey::getParameterSet() const`
`29`	`29`	`{`
`30`	`30`	`switch(value.size()) {`