ANNOUNCE: p11-kit 0.19.2
stefw at redhat.com
Thu Jul 25 11:58:08 PDT 2013
On 25.07.2013 14:35, Ludwig Nussel wrote:
> Stef Walter wrote:
>> This is an unstable development release.
>> Of note, is that in this release the default path for user config is
>> changed to fit in line with the XDG basedir spec. By default user
>> config is loaded from ~/.config/pkcs11
>> What's new in 0.19.2
>> * Add basic 'trust anchor' command to store a new anchor
>> * Support for writing out trust token objects
>> * Port to use CKA_PUBLIC_KEY_INFO and updated trust store spec
> That one (7d4941715b5afc2ef8ea18716990d28965737c70) breaks all the
> exporting and the workaround for the Entrust Root
> (https://bugs.freedesktop.org/show_bug.cgi?id=62064#c6) causes an error
> message to be printed.
Yes. That's right. The attributes involved in stapled certificate
extensions have been in flux (as stated in the file and elsewhere). I've
posted a new revision of the spec regarding this recently. Thus the changes.
But I don't think this is the cause of the pkcs11_list failure you saw.
You can verify this by removing the *.p11-kit files.
More information about the p11-glue