Scute: feature request: Support CKA_TRUSTED attribute on X.509 certs

[Simon Josefsson]

Werner Koch <wk at gnupg.org> writes:

> On Sun, 22 Apr 2007 13:45, simon at josefsson.org said:
>
>> My intention is to use the CKA_TRUSTED, or possibly the
>> CKA_CERTIFICATE_CATEGORY, attributes to decide whether to treat a
>> certificate as a trusted certificate by GnuTLS.  Is that a bad idea,
>> or would implementing those attributes in Scute be a good idea?
>
> A good one.  Marcus, can you please look after it?

Thanks.  Btw, do you know what the best way to find out which
certificate correspond to a private key?  Using the key id seems
somewhat fragile, but it is what I'll use unless I learn of a better
way.

/Simon