You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When there is an issue with creating a PKCS11 provider Parsec doesn't provide enough information about what went wrong even with the "trace" log level. It would be nice to include additional details if possible.
For example,
when an incorrect slot is set in Parsec config for an USB HSM module we only see:
[INFO parsec] Parsec started. Configuring the service...
[INFO parsec_service::utils::service_builder] Creating a PKCS 11 Provider.
[INFO parsec_service::providers::pkcs11] Building a PKCS 11 provider with library '/usr/lib/opensc-pkcs11.so'
[TRACE parsec_service::providers::pkcs11] Initialize command
[ERROR parsec_service::utils::service_builder] Provider with ID PKCS #11 provider cannot be created; Error: PKCS11 initialization failed
Error: failed to create provider
When a Software HSM is used and correct permissions are not set to allow parsec account to access /var/lib/softhsm/tokens/* we only see:
[INFO parsec_service::utils::service_builder] Creating a PKCS 11 Provider.
[INFO parsec_service::providers::pkcs11] Building a PKCS 11 provider with library '/usr/lib/softhsm/libsofthsm2.so'
[TRACE parsec_service::providers::pkcs11] Initialize command
[ERROR parsec_service::providers::pkcs11::utils] Error converted to PsaErrorCommunicationFailure;
[ERROR parsec_service::utils::service_builder] Provider with ID PKCS #11 provider cannot be created;
Error: failed to create provider
The text was updated successfully, but these errors were encountered:
When there is an issue with creating a PKCS11 provider Parsec doesn't provide enough information about what went wrong even with the "trace" log level. It would be nice to include additional details if possible.
For example,
/var/lib/softhsm/tokens/*we only see:The text was updated successfully, but these errors were encountered: