Re: PKCS#11 bugs

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PKCS#11 bugs

From:	Nikos Mavrogiannopoulos
Subject:	Re: PKCS#11 bugs
Date:	Thu, 16 Jun 2011 20:51:40 +0200
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.17) Gecko/20110424 Thunderbird/3.1.10

On 06/16/2011 12:32 PM, Rickard Bellgrim wrote:
> On Wed, Jun 15, 2011 at 9:33 PM, Nikos Mavrogiannopoulos
> <address@hidden> wrote:
>>> 4.
>>> The p11tool has an option to mark a certificate as trusted when
>>> importing it. The problem is that only the Security Officer can set it
>>> to true. I do not have a patch for it. But the program have to login
>>> as a SO and change the attribute of this object. Remember that the SO
>>> can only see public objects. You do not set the CKA_PRIVATE and the
>>> default value is "token-specific". SoftHSM sets the CKA_PRIVATE to
>>> true and thus not visible for the SO since it then is a private
>>> object.
>> I think I've addressed it in the repository.
> The first three items now work. But the CKA_TRUSTED is still set by
> the user and not the SO.

Ooops. Should be fixed now.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

PKCS#11 bugs, Rickard Bellgrim, 2011/06/14
- Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/14
- Re: PKCS#11 bugs, Nikos Mavrogiannopoulos, 2011/06/15
  - Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/16
    - Re: PKCS#11 bugs, Nikos Mavrogiannopoulos, 2011/06/16
  - Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/16
    - Re: PKCS#11 bugs, Nikos Mavrogiannopoulos <=
    - Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/17
    - Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/17
    - Re: PKCS#11 bugs, Rickard Bellgrim, 2011/06/17
    - Re: PKCS#11 bugs, Nikos Mavrogiannopoulos, 2011/06/17

Prev by Date: asn1_der_decoding API misuse
Next by Date: Re: PKCS#11 bugs
Previous by thread: Re: PKCS#11 bugs
Next by thread: Re: PKCS#11 bugs
Index(es):
- Date
- Thread