Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add PKCS#11 + yubihsm-auth integration #401

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

myksyr-tdy
Copy link

Integrate PKCS#11 library with yubihsm-auth authentication. When prompted by PKCS#11 to enter PIN code you need to enter "#$label#$key_id$pin" where

  • $label is the credential label in yubihsm-auth
  • $key_id is the key ID in the YubiHSM, four hex digits
  • $pin is the credential password in yubihsm-auth

Integrate PKCS#11 library with yubihsm-auth authentication.
When prompted by PKCS#11 to enter PIN code you need to enter
"#$label#$key_id$pin" where
 - $label is the credential label in yubihsm-auth
 - $key_id is the key ID in the YubiHSM, four hex digits
 - $pin is the credential password in yubihsm-auth
@myksyr-tdy
Copy link
Author

Is build test failure caused by some pipeline issue (curl)?

Tests pass locally as reported by "make test":
100% tests passed, 0 tests failed out of 31

Total Test time (real) = 233.84 sec

The following tests did not run:
22 - encrypt_aes (Skipped)
25 - aes_encrypt_test (Skipped)

@qpernil
Copy link
Contributor

qpernil commented Apr 8, 2024

AES tests are skipped if the yubihsm doesn't support it (based on the version number). Nice work with the PR, thanks !

@myksyr-tdy
Copy link
Author

@qpernil , is there anything I can do to help integrate this PR?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

2 participants