A set of tools to manage objects on PKCS#11 cryptographic tokens. Compatible with many PKCS#11 library, including major HSM brands, NSS and softoken.
automake
<1.14 is used, use an older, compatible commit for gnulib
gnulib
in now built from a stable branch, stable-202307
p11wrap
, p11rewrap
and p11keygen
were incorrect. The documentation has also been adjusted (issue #30)p11more
, p11req
, p11mkcert
and p11cat
could not deal with Edwards curve if the curve parameter was specified as a named curve (issue #32)p11kcv
the ability to specify a buffer length, when performing HMAC key check values (default is 0).This minor release adds the following features:
p11kcv
will compute a Key Check Value on CK_GENERIC_SECRET
keys as well. These are mapped to HMAC-SHA256
.p11slotinfo
now prints library information