add AES/DES higher level support #11
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jelu
pushed a commit
that referenced
this pull request
Feb 10, 2014
Merged
This was referenced Oct 18, 2015
This was referenced Dec 10, 2015
Closed
This was referenced Jul 29, 2016
Closed
Closed
Lekensteyn
added a commit
to Lekensteyn/SoftHSMv2
that referenced
this pull request
Dec 11, 2018
libsofthsm.so does not link to OpenSSL (unlike the OpenSSL builds). This results in failure to load the library in a PKCS opendnssec#11 application. Fix this by adding OpenSSL as dependency for the softhsm_crypto object library and subsequently propagate this to the softhsm library. Remove unused static library files while at it. This requires CMake 3.12, older versions do not allow targets to be linked with object libraries via target_link_libraries. (If this version bump is not desired, a workaround needs to be created for softhsm_objectstore and softhsm_crypto).
Lekensteyn
added a commit
to Lekensteyn/SoftHSMv2
that referenced
this pull request
Dec 11, 2018
The autotools build links libsofthsm.so to OpenSSL, but the CMake one
does not do this. This can be observed with `ldd` and GnuTLS 3.6.5 on
Arch Linux:
$ LD_DEBUG=all p11tool --provider /.../softhsm/libsofthsm2.so
...
25469: /.../softhsm/libsofthsm2.so: error: symbol lookup error: undefined symbol: DSA_set0_key (fatal)
...
pkcs11_add_provider: PKCS opendnssec#11 initialization error.
Fix this by adding OpenSSL as dependency for the softhsm_crypto object
library and subsequently propagate this to the softhsm library. Remove
unused static library files while at it.
This requires CMake 3.12, older versions do not allow targets to be
linked with object libraries via target_link_libraries. (If this version
bump is not desired, a workaround needs to be created for
softhsm_objectstore and softhsm_crypto).
This was referenced Mar 14, 2019
This was referenced Aug 15, 2019
ansasaki
pushed a commit
to ansasaki/SoftHSMv2
that referenced
this pull request
Sep 13, 2019
The autotools build links libsofthsm.so to OpenSSL, but the CMake one
does not do this. This can be observed with `ldd` and GnuTLS 3.6.5 on
Arch Linux:
$ LD_DEBUG=all p11tool --provider /.../softhsm/libsofthsm2.so
...
25469: /.../softhsm/libsofthsm2.so: error: symbol lookup error: undefined symbol: DSA_set0_key (fatal)
...
pkcs11_add_provider: PKCS opendnssec#11 initialization error.
Fix this by adding OpenSSL as dependency for the softhsm_crypto object
library and subsequently propagate this to the softhsm library. Remove
unused static library files while at it.
This requires CMake 3.12, older versions do not allow targets to be
linked with object libraries via target_link_libraries. (If this version
bump is not desired, a workaround needs to be created for
softhsm_objectstore and softhsm_crypto).
halderen
added a commit
that referenced
this pull request
Mar 4, 2020
Adjust EDDSA code to return valid EC_PARAMS according to the final PKCS #11 3.0 specification
This was referenced Mar 18, 2020
This was referenced May 21, 2020
Closed
Closed
Closed
This was referenced Feb 3, 2021
Closed
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Implement C_EncryptInit/C_Encrypt/C_DecryptInit/C_Decrypt and C_GenerateKey for AES (ECB and CBC modes without padding) and DES (DES/DES3 ECB and CBC modes without padding, DES/DES2/DES3 keys) including tests.