[gnutls-devel] GnuTLS | deleting stale objects having no ID or LABEL (#1000)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri May 22 12:12:53 CEST 2020 


cek created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1000



There should be a way to delete them. Right now, when I'm specifying the URL in "Object 4 URL:" string, it tries to delete them all. There's no way to select one and get rid of it.
As per [softhsm](https://github.com/opendnssec/SoftHSMv2/issues/555) suggestion, I'm logging a bugreport here.

```
# p11tool --delete --label  ''  'pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;type=cert'
Object 0:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;id=%1A;object=THECA;type=cert
        Type: X.509 Certificate (RSA-4096)
        Expires: Tue Sep 16 15:18:33 2036
        Label: THECA
        Flags: CKA_CERTIFICATE_CATEGORY=CA; CKA_TRUSTED; 
        ID: 1a

Object 1:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;id=%1A;object=EC%20Test;type=cert
        Type: X.509 Certificate (EC/ECDSA-SECP384R1)
        Expires: Tue May 10 14:25:17 2022
        Label: EC Test
        ID: 1a

Object 2:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;type=cert
        Type: X.509 Certificate
        Label: 
        ID: 

Object 3:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;type=cert
        Type: X.509 Certificate
        Label: 
        ID: 

Object 4:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;type=cert
        Type: X.509 Certificate
        Label: 
        ID: 

Object 5:
        URL: pkcs11:library-description=Implementation%20of%20PKCS11;library-manufacturer=SoftHSM;model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=058d033952c28e72;token=SW%20token%201;type=cert
        Type: X.509 Certificate
        Label: 
        ID: 

Are you sure you want to delete those objects? (y/N): 
```

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1000
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200522/dfcc9a6c/attachment.html>

More information about the Gnutls-devel mailing list