We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
(Copied over from Discord here )
We're trying to switch from Chrysalis to Shimmer (for our identity management product) and we're having an issue:
We would like to store our keys not in Stronghold but in a PKCS#11 compatible HSM. However, currently, all relevant APIs in iota_client require an instance of the SecretManager (https://github.com/iotaledger/iota-sdk/blob/develop/sdk/src/client/secret/mod.rs#L102) enum. None of the enums variants seem to fit our current usecase.
SecretManager
Only allowing Stronghold or Ledger Nano as key storages doesn't really work for industry^^
From our perspective, it would make sense to
T: SecretManage
SecretManage
Any help/input would be much appreciated 🙂
Maybe?
The text was updated successfully, but these errors were encountered:
Extend SecretManager enum
f174a90
This is a temporary workaround until iotaledger#462 lands and iotaledger#407 is fully solved.
DaughterOfMars
Successfully merging a pull request may close this issue.
Description
(Copied over from Discord here )
We're trying to switch from Chrysalis to Shimmer (for our identity management product) and we're having an issue:
We would like to store our keys not in Stronghold but in a PKCS#11 compatible HSM. However, currently, all relevant APIs in iota_client require an instance of the
SecretManager
(https://github.com/iotaledger/iota-sdk/blob/develop/sdk/src/client/secret/mod.rs#L102) enum. None of the enums variants seem to fit our current usecase.Motivation
Only allowing Stronghold or Ledger Nano as key storages doesn't really work for industry^^
Requirements
From our perspective, it would make sense to
SecretManager
that contains aT: SecretManage
(aka a type that implementsSecretManage
(https://github.com/iotaledger/iota-sdk/blob/develop/sdk/src/client/secret/mod.rs#L59);SecretManager
instead requireSecretManage
(which is implemented bySecretManager
currently anyways (https://github.com/iotaledger/iota-sdk/blob/develop/sdk/src/client/secret/mod.rs#L227))( - Or implement the PKCS#11 interface as an enum variant, but while this is probably the quickest fix, it really is also an ugly workaround and wouldn't really solve our issue since we're forking cryptoki anyways since they're missing EDDSA (Add MechanismType::CKM_EDDSA & Mechanism::Eddsa parallaxsecond/rust-cryptoki#113))
Open questions (optional)
Any help/input would be much appreciated 🙂
Are you planning to do it yourself in a pull request?
Maybe?
The text was updated successfully, but these errors were encountered: