Skip to content

holger-dengler/pkcs11provider

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits

m4

m4

 
 

src

src

 
 

test

test

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

Makefile.am

Makefile.am

 
 

README.md

README.md

 
 

bootstrap.sh

bootstrap.sh

 
 

cleanup.sh

cleanup.sh

 
 

configure.ac

configure.ac

 
 

Repository files navigation

pkcs11provider

work in progress

build

./bootstrap
./configure
make

test

make check

usage

Configuring the provider in the config file:

openssl_conf = openssl_init

[openssl_init]
providers = providers_sect

[providers_sect]
pkcs11 = pkcs11_sect

[pkcs11_sect]
module = pkcs11.so
pkcs11module = <mymodule.so>
pkcs11slotid = <myslotid>
pkcs11userpin = <myuserpin>

Querying the provider via the CLI:

openssl provider -vvv pkcs11

Loading the provider from the application:

OSSL_PROVIDER *prov = OSSL_PROVIDER_load(NULL, "pkcs11");
if (prov == NULL)
    /* handle error */;
/* [...] */
if (OSSL_PROVIDER_unload(prov) != 1)
    /* handle error */;

The pkcs11 module shared object, slot id resp. user pin can also be specified by setting the PKCS11MODULE, PKCS11SLOTID resp. PKCS11USERPIN environment variable. If the environment variable is set, it will take precedence over the config file setting.

About

OpenSSL PKCS #11 provider

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages