OpenVpn and PKCS11

This forum is for general conversation and user-user networking.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
yfag
OpenVpn Newbie
Posts: 4
Joined: Tue Nov 02, 2021 2:52 pm

OpenVpn and PKCS11

Post by yfag » Wed Nov 03, 2021 10:04 am

Hi everyone,

My aim is to use OpenVPN on windows but I do not want to use the standard Pkcs11 primitives used by OpenVPN, I want them to be done by something else.

By looking in the openvpn source code, I cannot find where pkcs11 primitives are used and where I can operate to plug them to something else.

1) Where can I find the interface with PKCS11 ?

2) Do I have to recompile a version of openVPN to change the PKCS11 management ?

3) Is it possible with the standard OpenVpn installer and use Engines ?

yfag
OpenVpn Newbie
Posts: 4
Joined: Tue Nov 02, 2021 2:52 pm

Re: OpenVpn and PKCS11

Post by yfag » Mon Nov 08, 2021 1:14 pm

To be more specific I want a smartcard to perform the session key negociation instead of the openVPN mechanism (I guess lib Pkcs11 helper)

How can I do that, above all on OpenVpn side ?

Post Reply