Decrpyting using pkcs#11 tool

Question

I'm trying too encrypt and decrypt using pkcs#11-tool

echo 'Hello word !' | openssl pkeyutl -encrypt -pubin \
                                                   -inkey pub.pem \
                                                   -pkeyopt rsa_padding_mode:oaep \
                                                   -pkeyopt rsa_oaep_md:sha512 \
                                                   -pkeyopt rsa_mgf1_md:sha512 \
                                                   -out encrypted.data

This work find but trying to decrypt it fail

pkcs11-tool --module  /usr/local/lib/softhsm/libsofthsm2.so --decrypt \
                                                   --mechanism RSA-PKCS-OAEP \
                                                   --input-file encrypted.data \
                                                   --label keyp \
                                                   --hash-algorithm SHA512 --pin Jojo

I'm having this error :

Using slot 0 with a present token (0x607f2e7f)
Using decrypt algorithm RSA-PKCS-OAEP
OAEP parameters: hashAlg=SHA512, mgf=MGF1-SHA512, source_type=0, source_ptr=(nil), source_len=0
error: PKCS11 function C_DecryptInit failed: rv = CKR_ARGUMENTS_BAD (0x7)
Aborting.

I'm following this tutorial : https://docs.nitrokey.com/nethsm/guides/pkcs11_with_pkcs11-tool and can't what wrong.

Decrpyting using pkcs#11 tool

0 Answers0