-
In your example, you show how two snaps are connected through the proxy mechanism of p11-kit. Would it also be possible to use this mechanism to connect the the PKCS#11 module running inside a snap wi…
-
Example:
```
openssl genpkey -algorithm rsa-pss -pkeyopt rsa_keygen_bits:2048 | openssl asn1parse
0:d=0 hl=4 l=1211 cons: SEQUENCE
4:d=1 hl=2 l= 1 prim: INTEGER :…
-
This issue was migrated from [Pagure Issue #2733](https://pagure.io/dogtagpki/issue/2733). Originally filed by **[mharmsen](https://pagure.io/user/mharmsen) (@mharmsen)** on *2017-06-08 19:08:20*:
- …
-
I'm building a tool that calls the WrapKey/UnwrapKey. I'm able to perform Wrapping/Unwrapping against:
1. An AES key with RSA Keypair.
2. An RSA Private Key with AES Key.
But I'm unable to perfor…
-
Hi,
I took an interest in SoftHSM v2.6.1 and have identified a security issue.
Through a source code analysis (SecureDataManager::login function), I have identified that an attacker could bruteforc…
-
Requests to the signer should not block indefinitely / for a long time as in the case of a remote KMIP HSM the TCP connection could fail or be delayed in interesting ways, or in case of any signer oth…
-
Using SoftHSM I can wrap an AES key using an RSA key using https://github.com/Mastercard/pkcs11-tools e.g:
p11wrap -a pkcs1 -i "5555_AES" -w WrappingOnly
Using pkcs11js (despite iterating over all…
-
I was running the self test code:
# python3 -m Crypto.SelfTest
/usr/local/lib/python3.8/dist-packages/Crypto/SelfTest/Cipher/test_DES3.py:60: UserWarning: Warning: skipping extended tests for TDES…
-
At RFC 8017 (PKCS#1 v2.2) chapter 9.1. "EMSA-PSS" the "Figure 2" diagram shows that input "M" is hashed producing "mHash", then it is padded and salted, and again run through the same hash algorithm a…
-
refer to :
https://jamielinux.com/docs/openssl-certificate-authority/introduction.html