forked from pool/gnutls
b90a9251ea
- use pkcs11 interface to fetch the system's CA certificates (fate#314991). Add patch gnutls-3.2.1-pkcs11.diff to fix doing that, obsoletes gnutls-implement-trust-store-dir.diff. (forwarded request 182303 from lnussel) OBS-URL: https://build.opensuse.org/request/show/182304 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gnutls?expand=0&rev=59
29 lines
892 B
Diff
29 lines
892 B
Diff
From 9008620a9c452fb33942f0f8ee03a44fdf277475 Mon Sep 17 00:00:00 2001
|
|
From: Stef Walter <stefw@redhat.com>
|
|
Date: Thu, 4 Jul 2013 16:15:03 +0200
|
|
Subject: [PATCH] pkcs11: Use the correct attribute length for CKA_TRUSTED
|
|
|
|
CKA_TRUSTED is a CK_BBOOL value in PKCS#11. Since object searches
|
|
are done with the attribute byte values, we need to get the length
|
|
exactly right.
|
|
---
|
|
lib/pkcs11.c | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/lib/pkcs11.c b/lib/pkcs11.c
|
|
index 27ea3f4..3da3b92 100644
|
|
--- a/lib/pkcs11.c
|
|
+++ b/lib/pkcs11.c
|
|
@@ -2201,7 +2201,7 @@ find_objs (struct pkcs11_session_info* sinfo,
|
|
struct ck_attribute *attr;
|
|
ck_object_class_t class = (ck_object_class_t)-1;
|
|
ck_certificate_type_t type = (ck_certificate_type_t)-1;
|
|
- unsigned int trusted;
|
|
+ unsigned char trusted;
|
|
unsigned long category;
|
|
ck_rv_t rv;
|
|
ck_object_handle_t obj;
|
|
--
|
|
1.8.3.1
|
|
|