Fixing NSS and p11-kit in Fedora (and beyond)

David Woodhouse dwmw2 at
Mon Dec 15 05:59:20 PST 2014

On Fri, 2014-12-12 at 09:22 +0100, Stef Walter wrote:
> On 11.12.2014 10:12, David Woodhouse wrote:
> > I'd love to have a Fedora Feature in F22 for PKCS#11, where keys+certs
> > from installed PKCS#11 modules are expected to Just Work™ in all
> > applications that can use certificates. Using consistent PKCS#11 URIs
> > where appropriate. Even if we aren't ready for a Feature, I'd love to
> > make some more progress in that direction. Obviously none of this is
> > really Fedora-specific, but if we can get it right in Fedora (as we did
> > for the trust stuff), other distributions can follow.
> I believe there's an open process for proposing Fedora Features and I
> think it's going on right now. But I agree that doing all of this in a
> few months is a bit much to bite off, even for someone as tireless as
> you :D
> But progress in that direction is great.

I've also filed a request to update the packaging guidelines:

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5745 bytes
Desc: not available
URL: <>

More information about the p11-glue mailing list