On Thu, Jun 10, 2021 at 12:08 AM Emmanuel Bourg <ebo...@apache.org> wrote:
> Le 2021-06-09 21:09, Rémy Maucherat a écrit : > > > Caused by: sun.security.pkcs11.wrapper.PKCS11Exception: > > CKR_FUNCTION_FAILED > > at > > > jdk.crypto.cryptoki/sun.security.pkcs11.wrapper.PKCS11.C_SignFinal(Native > > Method) > > at > > > jdk.crypto.cryptoki/sun.security.pkcs11.P11Signature.engineSign(P11Signature.java:635) > > ... 12 more > > Try `java -jar jsign.jar --help' for more information. > > > > The cfg file is: > > name=DigiCertONE > > library="/home/remm/.digicertone/smpkcs11.so" > > slotListIndex=0 > > > > The .so is there (otherwise it would complain earlier). Also the smctl > > tool > > shows the key. I tried other algorithms but no success so far. > > > You can try adding -Djava.security.debug=sunpkcs11, it should provide > more info. > https://pastebin.com/nqNUix6j So I think it shows the security provider [why was this hacked in as a fake token card ??] works on init, but I didn't get any extra details on the error. Now I will try again with a clean environment instead of my bleeding edge Fedora stuff. Rémy > > Emmanuel Bourg > > --------------------------------------------------------------------- > To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org > For additional commands, e-mail: dev-h...@tomcat.apache.org > >