Skip to content

holger-dengler/pkcs11provider

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
m4
m4
 
 
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile.am
Makefile.am
 
 
README.md
README.md
 
 
bootstrap.sh
bootstrap.sh
 
 
cleanup.sh
cleanup.sh
 
 
configure.ac
configure.ac
 
 

Repository files navigation

pkcs11provider

work in progress

build

./bootstrap
./configure
make

test

make check

usage

Configuring the provider in the config file:

openssl_conf = openssl_init

[openssl_init]
providers = providers_sect

[providers_sect]
pkcs11 = pkcs11_sect

[pkcs11_sect]
module = pkcs11.so
pkcs11module = <mymodule.so>
pkcs11slotid = <myslotid>
pkcs11userpin = <myuserpin>

Querying the provider via the CLI:

openssl provider -vvv pkcs11

Loading the provider from the application:

OSSL_PROVIDER *prov = OSSL_PROVIDER_load(NULL, "pkcs11");
if (prov == NULL)
    /* handle error */;
/* [...] */
if (OSSL_PROVIDER_unload(prov) != 1)
    /* handle error */;

The pkcs11 module shared object, slot id resp. user pin can also be specified by setting the PKCS11MODULE, PKCS11SLOTID resp. PKCS11USERPIN environment variable. If the environment variable is set, it will take precedence over the config file setting.

About

OpenSSL PKCS #11 provider

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages