[gnutls-devel] GnuTLS | multiple remote PKCS#11 modules not working (#961)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Apr 1 21:36:50 CEST 2020




Nikos Mavrogiannopoulos commented:


> For (1), I think we can simply skip the check, because that is user's intention obviously. For (2), I would 
> suggest adding a flag, say `GNUTLS_PKCS11_FLAG_ALLOW_DUPLICATE`, to explicitly skip the check. Then we 
> could expose it from `p11tool`.

> How does this sound?

This would address the problem with p11tool, but other applications will not be able to use that URI unless modified. We can disable that check completely (anyway that was making it better on a very rare case). Is there something that the remoting server can do as it is now (without code changes)?

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/961#note_315823922
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200401/54a3299d/attachment-0001.html>


More information about the Gnutls-devel mailing list