pkinit updates
Kevin Coffman
kwc at citi.umich.edu
Tue Dec 12 15:58:39 EST 2006
On 12/12/06, Kevin Coffman <kwc at citi.umich.edu> wrote:
> On 12/12/06, Douglas E. Engert <deengert at anl.gov> wrote:
> >
> >
> > Jim Rees wrote:
> >
> > > I think the PKCS11 environment variable should still work.
> >
> > Right, I found that. But I would expect the environment variable to
> > be droped in favor of the -X parameters.
>
> Yes, when we finish the real code to handle these things.
>
> > > Our current code allows you to specify the slot like this:
> > >
> > > pkinit -X X509_user_identity=PKCS11:module_name:slotno
> > >
> > > but I don't know if that's in svn or not.
> >
> > No it choked with the :0.
>
> This is a limitation in my initial hack to translate -X options (and
> set the environment variables :-/) It will definitely go away. But I
> will modify the hack to allow the slot number in the -X specification.
I removed the "verification" code and now just set the environment variable.
Again, this was just a hack to allow the use of the -X stuff in the
mean time until the real code is completed.
More information about the krbdev
mailing list