Skip to content
This repository was archived by the owner on Jul 21, 2024. It is now read-only.
/ pkcs11wrapper Public archive
forked from mikma/pkcs11wrapper

PKCS#11 Wrapper for Java. Deprecated. Please use xipki/ipkcs11wrapper (preferred) or xipki/jpkcs11wrapper instead.

License

View license
35 stars 27 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

xipki/pkcs11wrapper

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

225 Commits
dev
dev
 
 
docs
docs
 
 
examples
examples
 
 
src/java
src/java
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
IAIK.Readme.txt
IAIK.Readme.txt
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

GitHub release Github forks Github stars

Original Readme.txt

This project is deprecated, please use xipki/ipkcs11wrapper(preferred) or xipki/jpkcs11wrapper instead.

Prerequisite

  • JRE / JDK 8 (build 162+) or above

Use xipki/pkcs11wrapper in your project

  • Maven 
    <dependency>
    <groupId>org.xipki.iaik</groupId>
    <artifactId>sunpkcs11-wrapper</artifactId>
    <version>1.4.10</version>
</dependency>
  • Or copy the following jar file to your classpath:

JDK17 or above

To use pkcs11wrapper in JDK 17 or above, please add the following java option:

--add-exports=jdk.crypto.cryptoki/sun.security.pkcs11.wrapper=ALL-UNNAMED

JUnit tests

  • Configure the library and PIN of your HSM module in the file example/data/pkcs11.properties.
  • mvn test
    • To activate the speed tests use -PspeedTests
    • By default the speed test will run with 2 threads, you can change the value via the Java property speed.threads, e.g. -Dspeed.threads=5 to use 5 threads.
    • By default the speed test will take 3 seconds, you can change the value via the Java property speed.duration, e.g. -Dspeed.duration=10s for 10 seconds.

Changes compared to mikma/pkcs11wrapper

  • No external library is required
  • Require OpenJDK or Oracle Java Runtime 1.8 or higher
  • Support PKCS#11 version 2.40
  • Support EdDSA Ed25519 (Signature and Keypair generation)
  • Port from mikma/pkcs11wrapper to this project
    • For *SecretKey, please use the constructor ValuedSecretKey(long keyType) instead, e.g. use new ValuedSecretKey(PKCS11Constants.CKK_AES) for AES SecretKey.
    • For ECDSAPrivateKey and ECDSAPublicKey, please use ECPrivateKey and ECPublicKey instead.
    • iaik.pkcs.pkcs11.objects.Object is renamed to iaik.pkcs.pkcs11.objects.PKCS11Object.
    • Token.closeAllSession() cannot be supported, since it is not supported in the underlying JNI (JDK's SunPKCS11 provider). Please manage your session by yourself. You can close a single session by Session.closeSession().
    • Unlike the original PKCS#11 wrapper, we only call Module.initialize() once per native .so/.dll. Once Module.finalize(Object) has been called, the module cannot be initialized anymore.

About

PKCS#11 Wrapper for Java. Deprecated. Please use xipki/ipkcs11wrapper (preferred) or xipki/jpkcs11wrapper instead.

Resources

Readme

License

View license
Activity

Stars

35 stars

Watchers

2 watching

Forks

13 forks
Report repository

Releases 12

v1.4.10 Latest
Aug 23, 2022
+ 11 releases

Packages

No packages published

Languages

  • Java 91.6%
  • C 8.4%