-
Please update System.Security.Cryptography.Pkcs to mitigate vulnerability in System.Formats.Asn1 - https://nvd.nist.gov/vuln/detail/CVE-2024-38095
-
I am receiving the following error when trying to load an identity loaded onto a YubiKey via PKCS#11 in ziti-edge-tunnel v1.1.3:
```
[ 0.000] WARN ziti-edge-tunnel:instance.c:40 find_tun…
-
### Version
5.7.2
### Description
It is discouraged to call the raw RSA mechanims on a token `CKM_RSA_X_509` which is used by wolfCrypt PKCS#11.
This mechanism is not supported by Thales LUNA.
…
-
Until now, we didn't care because we already knew the size of the padding: the packets have a size and we just round to the nearest block size...
This was not a problem with [python-cryptography](htt…
-
Hi !
I noticed some problems around password for generated p12 and JKS file.
### short description:
For JKS you can alway open it with a no password and the password you setup in the bundle
…
-
We use this library to sign Nuget packages with certificates stored in Azure Key Vault. However, we'd prefer to not directly talk to Azure Key Vault, but instead use a PKCS#11 library to request signa…
-
The waltid issuer & wallet should be able to integrate with any HSM that offers a PKCS#11 interface. For instance https://www.opendnssec.org/softhsm/
The implementation should follow a similar pat…
-
Cosign supports a number of cryptographic signers that witness currently does not. Some examples include Azure Key Vault, PKCS#11, and some hardware tokens. Instead of trying to keep in sync with ever…
-
Checksum is supported, but the signing with PKCS#7 would require some work. Should be relatively straightforward to support with https://learn.microsoft.com/en-us/dotnet/api/system.security.cryptograp…
-
Platform is QEMUv7. OP-TEE and TAs are built with Clang 18.1.7. The PKCS#11 TA crashes upon first call to `__ta_entry()` with a stack check error. No issue observed with GCC or Clang 12.0.0 (downloade…