PKCS#11 bugs
Rickard Bellgrim
rickard at opendnssec.org
Thu Jun 16 08:15:18 CEST 2011
> I've applied fixes for those:
> http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=shortlog;h=refs/heads/gnutls_2_12_x
Thanks
>> 3.
>> The CKA_SUBJECT must be specified for a certificate.
>
> Why is this? I don't see anywhere in PKCS #11 such a requirement.
Table 24, Page 75 in
ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf.
CKA_SUBJECT [1] - Byte array - DER-encoding of the certificate subject name
[1] Must be specified when the object is created.
// Rickard
More information about the Gnutls-devel
mailing list