iqlusioninc/tmkms

tmkms vs yubihsm2 sdk version dependency

Closed this issue · 3 comments

vchong commented

Is there a way to find out which versions of tmkms support which versions of yubihsm2 sdk (https://developers.yubico.com/YubiHSM2/Releases/)? E.g. if running tmkms v0.12.2, which version of the yubihsm2 sdk should/can be downloaded/run?

tony-iqlusion commented

TMKMS doesn't require the YubiHSM SDK

vchong commented

But in order to run tmkms with the yubihsm2 device, we have to download the sdk to install yubihsm-connector.

[UPD]
static link from comment below:

tmkms/tmkms.toml.example

Line 53 in 9659b70

#connector_server = { laddr = "tcp://127.0.0.1:12345", cli = { auth_key = 2 } } # run yubihsm-connector compatible server

tony-iqlusion commented

TMKMS supports directly communicating to the YubiHSM2 via USB, without the need for yubihsm-connector.

You're free to use whatever version you'd like if you prefer to use yubihsm-connector. Also note that TMKMS has built-in support for presenting a yubihsm-connector-compatible service if it talks directly via USB:

https://github.com/iqlusioninc/tmkms/blob/main/tmkms.toml.example#L53

  • 👍1