1"pkcs11-hmacmd5" is here to check for the presence of a known bug in 2the Thales nCipher PKCS#11 provider library. To test for the bug, use 3pkcs11-hmacmd5 to hash a test vector from RFC 2104, and determine 4whether the resulting digest is is correct. For instance: 5 6 echo -n "Hi There" | \ 7 ./pkcs11-hmacmd5 -p <PIN> -k '0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b' 8 9...must return "9294727a3638bb1c13f48ef8158bfc9d". 10 11If any other value is returned, then the provider library is buggy, 12and the compilation flag PKCS11CRYPTOWITHHMAC must *not* be defined. 13However, if the correct value is returned, then it is safe to turn 14on PKCS11CRYPTOWITHHMAC. (It is off by default.) 15