gnutls-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [gnutls-dev] GnuTLS PKCS#11 Engine

From: Simon Josefsson
Subject: Re: [gnutls-dev] GnuTLS PKCS#11 Engine
Date: Mon, 14 May 2007 08:26:02 +0200
User-agent: Gnus/5.110007 (No Gnus v0.7) Emacs/22.0.95 (gnu/linux) 
"Alon Bar-Lev" <address@hidden> writes:

> An initial version of gnugls-pkcs11 is available for testing.
> It should provide a simple API to access PKCS#11 cryptographic tokens.

Cool!  I'm able to authenticate to the test.gnutls.org test server using
my brand new Swedish NIDEL ID card using the OpenSC PKCS#11 provider.

Pkcs11-helper needs the following patch to compile configured with

./configure --without-crypto-engine-openssl --disable-openssl

though.

--- pkcs11h-crypto.c~   2006-12-23 18:39:16.000000000 +0100
+++ pkcs11h-crypto.c    2007-05-14 07:33:15.000000000 +0200
@@ -688,12 +688,12 @@
        _PKCS11H_ASSERT (issuer_blob!=NULL);
        _PKCS11H_ASSERT (cert_blob!=NULL);
 
-       if (ok && gnutls_x509_crt_init (&cert_issuer) != GNUTLS_E_SUCCESS) {
+       if (gnutls_x509_crt_init (&cert_issuer) != GNUTLS_E_SUCCESS) {
                /* gnutls sets output */
                cert_issuer = NULL;
                goto cleanup;
        }
-       if (ok && gnutls_x509_crt_init (&cert_cert) != GNUTLS_E_SUCCESS) {
+       if (gnutls_x509_crt_init (&cert_cert) != GNUTLS_E_SUCCESS) {
                /* gnutls sets output */
                cert_cert = NULL;
                goto cleanup;

/Simon
reply via email to
[Prev in Thread] Current Thread [Next in Thread]