RSA1_5 decryption with HSM key fails
Issue #201
resolved
with
com.nimbusds.jose.JOSEException: AES/GCM/NoPadding decryption failed: Tag mismatch!
Comments (2)
-
reporter -
reporter - changed status to resolved
Fixed by updating the HSM config:
private static String HSM_CONFIG = "name = NitroKeyHSM\n" + "library = /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so\n" + "slotListIndex = 1\n" + "attributes(*,CKO_PRIVATE_KEY,CKK_RSA) = {\n" + " CKA_SIGN = true\n" + "}\n" + "attributes(*,CKO_PRIVATE_KEY,CKK_RSA) = {\n" + " CKA_DECRYPT = true\n" + "}\n";
- Log in to comment
Nitrokey is having issues: