The PKCS#11 v2.40 spec states: | It is intended that the CKA_ID value be identical to the key identifier in | such a certificate extension, although this will not be enforced by Cryptoki. We should populate the CKA_ID in this way.
Created attachment 107606 [details] [review] trust: Certificate CKA_ID is SubjectKeyIdentifier if possible
Comment on attachment 107606 [details] [review] trust: Certificate CKA_ID is SubjectKeyIdentifier if possible Review of attachment 107606 [details] [review]: ----------------------------------------------------------------- That fixes my problem; thanks.
Attachment 107606 [details] pushed as 03d280d - trust: Certificate CKA_ID is SubjectKeyIdentifier if possible
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.