Choosing a signature mechanism #568
-
|
Hello! I want to establish a TLS connection using a client certificate stored in a token. Please tell me what I need to do to use the CKM_RSA_PKCS signature mechanism during the handshake? Thanks! Provider version 1.0 |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
If you want CKM_RSA_PKCS specifically it may mean your token is not able to deal with the hashing part in the pkcs11 driver directly. |
Beta Was this translation helpful? Give feedback.
-
|
Ok, thank you. |
Beta Was this translation helpful? Give feedback.
If you want CKM_RSA_PKCS specifically it may mean your token is not able to deal with the hashing part in the pkcs11 driver directly.
In that case the token won't be directly usable until #552 is resolved.
Otherwise simply referencing the key via pkcs#11 URI in the client should have it working.