[Help-gnutls] Re: Gnutls Smartcard support?

Simon Josefsson simon at josefsson.org
Thu Mar 5 20:01:48 CET 2009

"Jonathan Manktelow" <jonathan at dyalog.com> writes:

> Hi, Is there any support for using certificates on smartcards with Gnutls?

You can set a callback used for signing using the API below.  There is a
branch in git, origin/gnutls_1_7_14_with_pkcs11, which uses the
interface to talk to a PKCS#11 library.  I tried it using Scute and my
Swedish eID identity card some time ago, and it seemed to work.


  typedef int (*gnutls_sign_func) (gnutls_session_t session,
				   void *userdata,
				   gnutls_certificate_type_t cert_type,
				   const gnutls_datum_t * cert,
				   const gnutls_datum_t * hash,
				   gnutls_datum_t * signature);

  void gnutls_sign_callback_set (gnutls_session_t session,
				 gnutls_sign_func sign_func,
				 void *userdata);

More information about the Gnutls-help mailing list