search

eclipse / mosquitto

Eclipse Mosquitto - An open source MQTT broker
https://mosquitto.org
Other
8.93k stars 2.37k forks source link

is there any support on integrating an SoftHSM? #2088

Open keshavck opened 3 years ago

keshavck commented 3 years ago

is there any softHSM integration with the mosquitto broker for the security.

ralight commented 3 years ago

There is support for openssl engines, so if softHSM can be accessed through an openssl engine then yes, it should be possible.

The options to look at are:

# A valid openssl engine id. These can be listed with openssl engine command.
tls_engine engine

# SHA1 of the private key password when using an TLS engine. Some TLS engines
# such as the TPM engine may require the use of a password in order to be
# accessed. This option allows a hex encoded SHA1 hash of the password to the
# engine directly, instead of the user being prompted for the password.
tls_engine_kpass_sha1 engine_kpass_sha1

tls_keyform engine
marco99asr commented 1 year ago

can someone help me? https://github.com/eclipse/mosquitto/issues/2646