hkadakia
commented
2 years ago Thank you for trying out the solution. Before you run docker container, can you please make sure you either have a hardware HSM or a softhsm correctly configured with the right labels in the correct slot. Can you also verify that the labels created in the HSMs match the config for crypki. This error usually indicates that the supplied config specifies a value for an invalid attribute, & hence it fails with the error code CKR_ATTRIBUTE_TYPE_INVALID.
Please let us know if we can help you with any further queries.
Hi i trying to run docker container for crypki. After building when i running it i got error:
github.com/theparanoids/crypki/pkcs11.publicRSA(0xc000155640) /home/runner/work/crypki/crypki/pkcs11/rsa.go:41 +0x31d github.com/theparanoids/crypki/pkcs11.(*p11Signer).Public(0x0) /home/runner/work/crypki/crypki/pkcs11/p11signer.go:76 +0x3a github.com/theparanoids/crypki/x509cert.GenCACert(0xc0001e33e8, {0x7fe4c033beb8, 0xc000155640}, {0xc00011b990, 0x9}, {0xc0001b57d0, 0x2, 0x2}, 0x2, 0x3) /home/runner/work/crypki/crypki/x509cert/x509.go:55 +0x407 github.com/theparanoids/crypki/pkcs11.getX509CACert({, }, {{0xc00011b8e8, 0x8}, 0x26693e95, {0x0, 0x0}, {0xc000144750, 0x15}, {0xc00011b8f0, ...}, ...}, ...) /home/runner/work/crypki/crypki/pkcs11/signer.go:382 +0x645 github.com/theparanoids/crypki/pkcs11.NewCertSign({0xa75078, 0xc000154f80}, {0xc000140660, 0xc000203000}, {0xc0001d2d80, 0x4, 0x4}, 0x18, {0xc00011b990, 0x9}, ...) /home/runner/work/crypki/crypki/pkcs11/signer.go:163 +0x4c5 github.com/theparanoids/crypki/server.Main() /home/runner/work/crypki/crypki/server/server.go:171 +0x5e5 main.main() /home/runner/work/crypki/crypki/cmd/crypki/main.go:10 +0x17
In server.log -> pkcs11: 0x12: CKR_ATTRIBUTE_TYPE_INVALID
My question is this is a bug or i missing something configure on project?