[gnutls-dev] GnuTLS PKCS#11 Engine
Simon Josefsson
simon at josefsson.org
Mon May 14 08:26:02 CEST 2007
"Alon Bar-Lev" <alon.barlev at gmail.com> writes:
> An initial version of gnugls-pkcs11 is available for testing.
> It should provide a simple API to access PKCS#11 cryptographic tokens.
Cool! I'm able to authenticate to the test.gnutls.org test server using
my brand new Swedish NIDEL ID card using the OpenSC PKCS#11 provider.
Pkcs11-helper needs the following patch to compile configured with
./configure --without-crypto-engine-openssl --disable-openssl
though.
--- pkcs11h-crypto.c~ 2006-12-23 18:39:16.000000000 +0100
+++ pkcs11h-crypto.c 2007-05-14 07:33:15.000000000 +0200
@@ -688,12 +688,12 @@
_PKCS11H_ASSERT (issuer_blob!=NULL);
_PKCS11H_ASSERT (cert_blob!=NULL);
- if (ok && gnutls_x509_crt_init (&cert_issuer) != GNUTLS_E_SUCCESS) {
+ if (gnutls_x509_crt_init (&cert_issuer) != GNUTLS_E_SUCCESS) {
/* gnutls sets output */
cert_issuer = NULL;
goto cleanup;
}
- if (ok && gnutls_x509_crt_init (&cert_cert) != GNUTLS_E_SUCCESS) {
+ if (gnutls_x509_crt_init (&cert_cert) != GNUTLS_E_SUCCESS) {
/* gnutls sets output */
cert_cert = NULL;
goto cleanup;
/Simon
More information about the Gnutls-devel
mailing list