-
This will enable various hardware backed private key tokens: Yubikey, Smartcards, TPM
-
As far as I glimsed into the PKCS11 PR, PKCS11 should be supported by now.
However I'm unable to actually use it. Currently I'm using PuttyCAC with a Smartcard, so the actual CAPI setup seems to work…
-
Thanks for creating this necessary project! I have a YubiKey 5C, and I am able to sign using the YubiKey. These are my settings in _/etc/ssl/openssl.cnf_:
~~~cnf
[provider_sect]
default = default…
-
I'm trying to make a self signed CA cert for a private key held on a ATECC608C-TNGTLS chip via PKCS11. ATECC608* chips only support secp256r1 ECC keys.
This chip has a factory burned master key I w…
-
### Cant install RPM build v1.1.0.02755 on TMOS 17.1.x.
RPM installation fails with error:
```
# rpm -ivh mhsm-pkcs11-1.1.0.02755-1.cm2.x86_64.rpm
warning: mhsm-pkcs11-1.1.0.02755-1.cm2.x86_64…
-
**Describe the bug**
When using client authentication with a smart card, ZAP currently only sends the client certificate to the server. So a server, which needs the whole certificate chain, cannot ve…
bauxi updated
2 years ago
-
Thanks a lot for publishing your interesting project.
While looking into a aarch64 cross-compilation issue with the `libloading` nested dependency, I noticed that rust-pkcs11 is flagged as deprecated…
-
Please add the option "--modifiable" in the pkcs11-tool.
-
### Problem Description
Also see: https://github.com/OpenSC/OpenSC/pull/2943#issuecomment-1944736265
Using the latest master commit ...
OpenSC-, rev: ccdb3ccc, commit-time: 2024-02-13 14:05:22 +0…
-
**Describe the feature**
The SSH KDF is almost like the SP 800 108 Feedback mode, but does not contain the 0x00 separator byte, see
https://datatracker.ietf.org/doc/html/rfc4253#section-7.2
My …