Update pkcs.h to 3.2.0 version and fix CK_RSA_AES_KEY_WRAP_PARAMS

[bukka]

This updates pkcs11.h header with the latest version from p11-kit.

The CK_RSA_AES_KEY_WRAP_PARAMS were incorrectly added without param defines so this is also fixed and the usage renamed.

Fixes #604

Summary by CodeRabbit

• Refactor
  • Standardized cryptographic parameter handling across RSA-OAEP and AES key-wrap flows for more consistent behavior and clearer APIs.
• Bug Fixes
  • Strengthened validation and length checks in key-wrap and unwrap paths to reduce errors and improve reliability during encryption and decryption.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

Rename PKCS#11 struct fields to match v3.0 names: CK_RSA_AES_KEY_WRAP_PARAMS.aes_key_bits → ulAESKeyBits and CK_RSA_PKCS_OAEP_PARAMS.oaep_params → pOAEPParams. Update all usages in OAEP mechanism construction, AES key-wrap length/validation, and related wrapping/unwrapping code paths in the implementation.

Changes

Cohort / File(s)

Change Summary

PKCS#11 v3.0 struct member renames src/lib/SoftHSM.cpp

Replaced CK_RSA_AES_KEY_WRAP_PARAMS.aes_key_bits with ulAESKeyBits and updated emphKey length derivation, allocation, and AES wrap validation to use ulAESKeyBits. Replaced CK_RSA_PKCS_OAEP_PARAMS.oaep_params with pOAEPParams and updated OAEP parameter reads (mgf, hashAlg, source, pSourceData, ulSourceDataLen), CK_MECHANISM initialization for CKM_RSA_PKCS_OAEP, and propagation through wrapping/unwrapping flows.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

• Single source file with consistent, mechanical field renames.
• Check all member accesses, CK_MECHANISM initializations, and any remaining references to old field names.

Possibly related PRs

• Implement CKM_RSA_AES_KEY_WRAP mechanism for key wrap/unwrap #794 — Modifies RSA-AES key-wrap implementation and CK_RSA_AES_KEY_WRAP_PARAMS usage; directly related to these renames.

Suggested reviewers

• bjosv
• jschlyter

Poem

🐇 I hopped through headers, nibbling names,
ulAESKeyBits now in sunny frames,
pOAEPParams snug in their place,
Wrappers updated, tidy and chaste —
A little hop, a cleaner space.

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 66.67% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main changes: updating pkcs.h to version 3.2.0 and fixing CK_RSA_AES_KEY_WRAP_PARAMS, which aligns with the changeset.
Linked Issues check	✅ Passed	The PR updates pkcs11.h header to version 3.2.0 and fixes CK_RSA_AES_KEY_WRAP_PARAMS, addressing the requirement to upgrade header files for PKCS #11 v3.0 support as specified in issue #604.
Out of Scope Changes check	✅ Passed	All changes in SoftHSM.cpp are directly scoped to the parameter renaming and usage updates resulting from the pkcs11.h header upgrade, with no extraneous modifications.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f36505d and fb5a137.

📒 Files selected for processing (1)

• src/lib/SoftHSM.cpp (4 hunks)

🧰 Additional context used

🧠 Learnings (9)

📓 Common learnings

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 815
File: src/lib/SoftHSM.cpp:6543-6546
Timestamp: 2025-09-11T16:54:00.370Z
Learning: SoftHSM PR #815 (pkcs11.h 3.1.0 update, CK_RSA_AES_KEY_WRAP_PARAMS fix): Maintainer bukka prefers to keep scope minimal (header sync and param rename only); broader OAEP parameter enforcement or backend plumbing is out of scope for this PR and should be handled in a follow-up issue.

Learnt from: JoaoHenrique12
Repo: softhsm/SoftHSMv2 PR: 823
File: src/lib/SoftHSM.cpp:58-58
Timestamp: 2025-11-11T19:42:46.886Z
Learning: SoftHSM include policy: Algorithm key/parameter headers (e.g., SLHParameters, SLH*Key) are included unconditionally in SoftHSM.cpp/SoftHSM.h; feature gating is handled in mechanism tables and CryptoFactory (WITH_*). Avoid wrapping such includes in WITH_* guards.

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:3238-3266
Timestamp: 2025-10-13T09:42:31.270Z
Learning: In src/lib/SoftHSM.cpp, SoftHSM::AsymDecryptInit should use MechParamCheckRSAPKCSOAEP for CKM_RSA_PKCS_OAEP to keep OAEP parameter validation identical to AsymEncryptInit, and avoid redundant manual checks for pMechanism->pParameter and MGF allowlists.

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:5550-5596
Timestamp: 2025-10-27T16:44:57.865Z
Learning: SoftHSM ML‑DSA additional context: avoid transient malloc in SoftHSM::{AsymSignInit, AsymVerifyInit}; let Session::setParameters deep‑copy SIGN_ADDITIONAL_CONTEXT by allocating one buffer for struct + context bytes and fixing the stored pointer; Session::resetOp frees m_pParameters so both struct and context are released.

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:13265-13282
Timestamp: 2025-10-13T09:43:45.885Z
Learning: SoftHSM OAEP policy: In SoftHSM::MechParamCheckRSAPKCSOAEP (src/lib/SoftHSM.cpp), enforce that the MGF1 variant must correspond to the selected hashAlg (e.g., SHA-256 -> CKG_MGF1_SHA256). Mismatches should return CKR_ARGUMENTS_BAD with "Hash and MGF don't match". This mirrors the existing PSS enforcement.

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/crypto/MLDSAParameters.h:42-44
Timestamp: 2025-08-18T17:59:30.693Z
Learning: In MLDSAParameters.h, the author prefers to keep PKCS#11 constant references (CKP_ML_DSA_*) rather than explicit numeric values for better code clarity and maintainability.

📚 Learning: 2025-09-11T16:54:00.370Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 815
File: src/lib/SoftHSM.cpp:6543-6546
Timestamp: 2025-09-11T16:54:00.370Z
Learning: SoftHSM PR #815 (pkcs11.h 3.1.0 update, CK_RSA_AES_KEY_WRAP_PARAMS fix): Maintainer bukka prefers to keep scope minimal (header sync and param rename only); broader OAEP parameter enforcement or backend plumbing is out of scope for this PR and should be handled in a follow-up issue.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-13T09:42:31.270Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:3238-3266
Timestamp: 2025-10-13T09:42:31.270Z
Learning: In src/lib/SoftHSM.cpp, SoftHSM::AsymDecryptInit should use MechParamCheckRSAPKCSOAEP for CKM_RSA_PKCS_OAEP to keep OAEP parameter validation identical to AsymEncryptInit, and avoid redundant manual checks for pMechanism->pParameter and MGF allowlists.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-11-11T19:42:46.886Z

Learnt from: JoaoHenrique12
Repo: softhsm/SoftHSMv2 PR: 823
File: src/lib/SoftHSM.cpp:58-58
Timestamp: 2025-11-11T19:42:46.886Z
Learning: SoftHSM include policy: Algorithm key/parameter headers (e.g., SLHParameters, SLH*Key) are included unconditionally in SoftHSM.cpp/SoftHSM.h; feature gating is handled in mechanism tables and CryptoFactory (WITH_*). Avoid wrapping such includes in WITH_* guards.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-13T09:43:45.885Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:13265-13282
Timestamp: 2025-10-13T09:43:45.885Z
Learning: SoftHSM OAEP policy: In SoftHSM::MechParamCheckRSAPKCSOAEP (src/lib/SoftHSM.cpp), enforce that the MGF1 variant must correspond to the selected hashAlg (e.g., SHA-256 -> CKG_MGF1_SHA256). Mismatches should return CKR_ARGUMENTS_BAD with "Hash and MGF don't match". This mirrors the existing PSS enforcement.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-27T16:44:57.865Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:5550-5596
Timestamp: 2025-10-27T16:44:57.865Z
Learning: SoftHSM ML‑DSA additional context: avoid transient malloc in SoftHSM::{AsymSignInit, AsymVerifyInit}; let Session::setParameters deep‑copy SIGN_ADDITIONAL_CONTEXT by allocating one buffer for struct + context bytes and fixing the stored pointer; Session::resetOp frees m_pParameters so both struct and context are released.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-18T19:46:46.659Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:10044-10055
Timestamp: 2025-08-18T19:46:46.659Z
Learning: In SoftHSM::generateMLDSA (src/lib/SoftHSM.cpp), the project prefers using CKP_ML_DSA_* constants for parameter set checks and logs "Unsupported parameter set: %lu". The code currently returns CKR_PARAMETER_SET_NOT_SUPPORTED for unsupported sets.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-19T09:23:25.434Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:4193-4196
Timestamp: 2025-08-19T09:23:25.434Z
Learning: MLDSA parameter set inference: In src/lib/crypto/MLDSAPrivateKey.{h,cpp} and MLDSAPublicKey.{h,cpp}, getParameterSet() maps key material length to CKP_ML_DSA_44/65/87, and there is no setParameterSet(). Runtime MLDSA keys used by SoftHSM (e.g., in C_SignInit/C_VerifyInit via MLDSAUtil) rely on this inference; no explicit parameter-set assignment is required.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-18T17:59:30.693Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/crypto/MLDSAParameters.h:42-44
Timestamp: 2025-08-18T17:59:30.693Z
Learning: In MLDSAParameters.h, the author prefers to keep PKCS#11 constant references (CKP_ML_DSA_*) rather than explicit numeric values for better code clarity and maintainability.

Applied to files:

• src/lib/SoftHSM.cpp

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (8)

• GitHub Check: Windows (x64, botan)
• GitHub Check: Windows (x86, openssl)
• GitHub Check: Windows (x64, openssl)
• GitHub Check: Linux with OpenSSL 1.1.1
• GitHub Check: macOS (botan)
• GitHub Check: macOS (openssl)
• GitHub Check: Linux with Botan
• GitHub Check: Linux with OpenSSL 3.0

🔇 Additional comments (1)

src/lib/SoftHSM.cpp (1)

6540-6606: RSA‑AES wrap: ulAESKeyBits / pOAEPParams usage looks correct

emphKeyLen = params->ulAESKeyBits / 8 plus the CKA_VALUE_LEN template matches the PKCS#11 definition of ulAESKeyBits as a bit length (128/192/256) and keeps generateAES semantics unchanged. The OAEP mechanism now correctly uses params->pOAEPParams and sizeof(CK_RSA_PKCS_OAEP_PARAMS), which aligns with the updated CK_RSA_AES_KEY_WRAP_PARAMS layout. No functional issues spotted here.

If you want extra assurance that all call sites are consistent with the new header, you can grep for CK_RSA_AES_KEY_WRAP_PARAMS and aes_key_bits/oaep_params to confirm nothing stale remains. Based on learnings, scope staying at header sync + usage rename is aligned with prior maintainer guidance.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

src/lib/SoftHSM.cpp (1)

13221-13252: RSAAES param checks correctly updated to ulAESKeyBits / pOAEPParams (optional nit on error text)

• The validation of ulAESKeyBits against {128,192,256} and the subsequent byte‑length usage elsewhere is correct and prevents bad sizes.
• The new checks on pOAEPParams (non‑NULL, MGF in [1,5], source == CKZ_DATA_SPECIFIED, empty label) preserve the previous OAEP policy while adapting to the pointer field.

Only minor nit: the log message "oaep_params must be of type CK_RSA_PKCS_OAEP_PARAMS" still refers to the old field name; if you touch this code again, consider renaming it to mention pOAEPParams or just “OAEP parameters” for clarity.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 70c7d0f and bd7e77b.

📒 Files selected for processing (1)

• src/lib/SoftHSM.cpp (4 hunks)

🧰 Additional context used

🧠 Learnings (9)

📓 Common learnings

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 815
File: src/lib/SoftHSM.cpp:6543-6546
Timestamp: 2025-09-11T16:54:00.370Z
Learning: SoftHSM PR #815 (pkcs11.h 3.1.0 update, CK_RSA_AES_KEY_WRAP_PARAMS fix): Maintainer bukka prefers to keep scope minimal (header sync and param rename only); broader OAEP parameter enforcement or backend plumbing is out of scope for this PR and should be handled in a follow-up issue.

Learnt from: JoaoHenrique12
Repo: softhsm/SoftHSMv2 PR: 823
File: src/lib/SoftHSM.cpp:58-58
Timestamp: 2025-11-11T19:42:46.886Z
Learning: SoftHSM include policy: Algorithm key/parameter headers (e.g., SLHParameters, SLH*Key) are included unconditionally in SoftHSM.cpp/SoftHSM.h; feature gating is handled in mechanism tables and CryptoFactory (WITH_*). Avoid wrapping such includes in WITH_* guards.

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:3238-3266
Timestamp: 2025-10-13T09:42:31.270Z
Learning: In src/lib/SoftHSM.cpp, SoftHSM::AsymDecryptInit should use MechParamCheckRSAPKCSOAEP for CKM_RSA_PKCS_OAEP to keep OAEP parameter validation identical to AsymEncryptInit, and avoid redundant manual checks for pMechanism->pParameter and MGF allowlists.

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:5550-5596
Timestamp: 2025-10-27T16:44:57.865Z
Learning: SoftHSM ML‑DSA additional context: avoid transient malloc in SoftHSM::{AsymSignInit, AsymVerifyInit}; let Session::setParameters deep‑copy SIGN_ADDITIONAL_CONTEXT by allocating one buffer for struct + context bytes and fixing the stored pointer; Session::resetOp frees m_pParameters so both struct and context are released.

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:13265-13282
Timestamp: 2025-10-13T09:43:45.885Z
Learning: SoftHSM OAEP policy: In SoftHSM::MechParamCheckRSAPKCSOAEP (src/lib/SoftHSM.cpp), enforce that the MGF1 variant must correspond to the selected hashAlg (e.g., SHA-256 -> CKG_MGF1_SHA256). Mismatches should return CKR_ARGUMENTS_BAD with "Hash and MGF don't match". This mirrors the existing PSS enforcement.

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/crypto/MLDSAParameters.h:42-44
Timestamp: 2025-08-18T17:59:30.693Z
Learning: In MLDSAParameters.h, the author prefers to keep PKCS#11 constant references (CKP_ML_DSA_*) rather than explicit numeric values for better code clarity and maintainability.

📚 Learning: 2025-09-11T16:54:00.370Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 815
File: src/lib/SoftHSM.cpp:6543-6546
Timestamp: 2025-09-11T16:54:00.370Z
Learning: SoftHSM PR #815 (pkcs11.h 3.1.0 update, CK_RSA_AES_KEY_WRAP_PARAMS fix): Maintainer bukka prefers to keep scope minimal (header sync and param rename only); broader OAEP parameter enforcement or backend plumbing is out of scope for this PR and should be handled in a follow-up issue.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-13T09:42:31.270Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:3238-3266
Timestamp: 2025-10-13T09:42:31.270Z
Learning: In src/lib/SoftHSM.cpp, SoftHSM::AsymDecryptInit should use MechParamCheckRSAPKCSOAEP for CKM_RSA_PKCS_OAEP to keep OAEP parameter validation identical to AsymEncryptInit, and avoid redundant manual checks for pMechanism->pParameter and MGF allowlists.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-13T09:43:45.885Z

Learnt from: bukka
Repo: softhsm/SoftHSMv2 PR: 818
File: src/lib/SoftHSM.cpp:13265-13282
Timestamp: 2025-10-13T09:43:45.885Z
Learning: SoftHSM OAEP policy: In SoftHSM::MechParamCheckRSAPKCSOAEP (src/lib/SoftHSM.cpp), enforce that the MGF1 variant must correspond to the selected hashAlg (e.g., SHA-256 -> CKG_MGF1_SHA256). Mismatches should return CKR_ARGUMENTS_BAD with "Hash and MGF don't match". This mirrors the existing PSS enforcement.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-11-11T19:42:46.886Z

Learnt from: JoaoHenrique12
Repo: softhsm/SoftHSMv2 PR: 823
File: src/lib/SoftHSM.cpp:58-58
Timestamp: 2025-11-11T19:42:46.886Z
Learning: SoftHSM include policy: Algorithm key/parameter headers (e.g., SLHParameters, SLH*Key) are included unconditionally in SoftHSM.cpp/SoftHSM.h; feature gating is handled in mechanism tables and CryptoFactory (WITH_*). Avoid wrapping such includes in WITH_* guards.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-10-27T16:44:57.865Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:5550-5596
Timestamp: 2025-10-27T16:44:57.865Z
Learning: SoftHSM ML‑DSA additional context: avoid transient malloc in SoftHSM::{AsymSignInit, AsymVerifyInit}; let Session::setParameters deep‑copy SIGN_ADDITIONAL_CONTEXT by allocating one buffer for struct + context bytes and fixing the stored pointer; Session::resetOp frees m_pParameters so both struct and context are released.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-18T19:46:46.659Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:10044-10055
Timestamp: 2025-08-18T19:46:46.659Z
Learning: In SoftHSM::generateMLDSA (src/lib/SoftHSM.cpp), the project prefers using CKP_ML_DSA_* constants for parameter set checks and logs "Unsupported parameter set: %lu". The code currently returns CKR_PARAMETER_SET_NOT_SUPPORTED for unsupported sets.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-18T17:59:30.693Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/crypto/MLDSAParameters.h:42-44
Timestamp: 2025-08-18T17:59:30.693Z
Learning: In MLDSAParameters.h, the author prefers to keep PKCS#11 constant references (CKP_ML_DSA_*) rather than explicit numeric values for better code clarity and maintainability.

Applied to files:

• src/lib/SoftHSM.cpp

📚 Learning: 2025-08-19T09:23:25.434Z

Learnt from: antoinelochet
Repo: softhsm/SoftHSMv2 PR: 809
File: src/lib/SoftHSM.cpp:4193-4196
Timestamp: 2025-08-19T09:23:25.434Z
Learning: MLDSA parameter set inference: In src/lib/crypto/MLDSAPrivateKey.{h,cpp} and MLDSAPublicKey.{h,cpp}, getParameterSet() maps key material length to CKP_ML_DSA_44/65/87, and there is no setParameterSet(). Runtime MLDSA keys used by SoftHSM (e.g., in C_SignInit/C_VerifyInit via MLDSAUtil) rely on this inference; no explicit parameter-set assignment is required.

Applied to files:

• src/lib/SoftHSM.cpp

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (8)

• GitHub Check: Windows (x86, openssl)
• GitHub Check: Windows (x64, botan)
• GitHub Check: Windows (x64, openssl)
• GitHub Check: macOS (botan)
• GitHub Check: macOS (openssl)
• GitHub Check: Linux with OpenSSL 3.0
• GitHub Check: Linux with Botan
• GitHub Check: Linux with OpenSSL 1.1.1

🔇 Additional comments (2)

src/lib/SoftHSM.cpp (2)

6541-6555: RSA-AES wrap: ulAESKeyBits / pOAEPParams usage looks correct and spec‑aligned

Using params->ulAESKeyBits / 8 for emphKeyLen matches the PKCS#11 definition of CK_RSA_AES_KEY_WRAP_PARAMS and, combined with the new range check in MechParamCheckRSAAESKEYWRAP, guarantees only 128/192/256‑bit AES keys are generated. Passing params->pOAEPParams and sizeof(CK_RSA_PKCS_OAEP_PARAMS) into oaepMech is also consistent with the updated header and keeps the temporary OAEP mechanism wiring minimal and correct.

Also applies to: 6603-6606

---

7119-7123: RSA-AES unwrap: OAEP parameter pointer wiring matches the updated struct

The OAEP CK_MECHANISM for unwrapping now correctly uses params->pOAEPParams and sizeof(CK_RSA_PKCS_OAEP_PARAMS), matching the new CK_RSA_AES_KEY_WRAP_PARAMS layout. This keeps wrap/unwrap symmetric and consistent with the v3.x header.

[antoinelochet]

Quite strange that this fixes Windows builds.
Could it be because of the renamed parameters of the wrap params ?

[bukka]

@antoinelochet thanks for the review - this one actually fixed the windows build: 29c4b03 . I just rebased it then...