Closed outrunthewolf closed 4 months ago
Did you get this key working with signtool?
I guess https://github.com/OpenSC/libp11/ may be a better place to report this.
https://stackoverflow.com/questions/75625385/google-ksm-does-not-sign-rsa-pkcs-v1-5-through-openssl-pkcs11-with-mechanism seems to address a related issue.
Thank you for the response. I'm closing this as user error, I generated a different key and it worked fine.
Hi I'm trying to sign a windows exe file using the pkcs11 module and a key in googles KMS.
Everything seems to work nicely, and I get the correct key, but I end up with "Mechanism not permitted".
My guess is it's trying to encrypt with an asymmetric signing key. My assumption was a signing wouldn't require encryption. Have I made a terrible mistake?
Here is a version dump of osslsigncode:
Many thanks