ANNOUNCE: p11-kit 0.19.2

Stef Walter stefw at
Thu Jul 25 11:58:08 PDT 2013

On 25.07.2013 14:35, Ludwig Nussel wrote:
> Stef Walter wrote:
>> This is an unstable development release.
>> Of note, is that in this release the default path for user config is
>> changed to fit in line with the XDG basedir spec. By default user
>> config is loaded from ~/.config/pkcs11
>> What's new in 0.19.2
>> --------------------
>>   * Add basic 'trust anchor' command to store a new anchor
>>   * Support for writing out trust token objects
>>   * Port to use CKA_PUBLIC_KEY_INFO and updated trust store spec
> That one (7d4941715b5afc2ef8ea18716990d28965737c70) breaks all the
> exporting and the workaround for the Entrust Root
> ( causes an error
> message to be printed.

Yes. That's right. The attributes involved in stapled certificate
extensions have been in flux (as stated in the file and elsewhere). I've
posted a new revision of the spec regarding this recently. Thus the changes.

But I don't think this is the cause of the pkcs11_list failure you saw.
You can verify this by removing the *.p11-kit files.



More information about the p11-glue mailing list