[Pki-devel] [pki-devel][PATCH] 0015-First-cut-of-enrollment-feature.patch
John Magne
jmagne at redhat.com
Fri Jul 18 18:26:59 UTC 2014
First cut of enrollment feature.
The following features implemented for enrollment.
1. Standard enrollment of a list of RSA certificates.
2. Certificates are only done with token side keygen.
3. Minimual enrollment based pin reset functionality implemented to create
a pin for the enrolled token.
4. Much work done to the PKCS11 object code, which allows us to write the
compressed object blob to the token, allowing coolkey to access it and use
the certs and keys on the token.
5. Tested with Bob Relyea's "smartcard" utility to prove that signing and encryption
operations worked as expected.
6. Some work done to get authentication working with esc.
7. Created of stub of standalone Pin Reset Processor. Now it returns an error from
esc but the pin reset command is accepted.
To Do.
1. We need to support server side keygen.
2. Symmetric Key Changeover in another ticket.
3. Finish up the stand alone Pin Reset Processor in another ticket.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0015-First-cut-of-enrollment-feature.patch
Type: text/x-patch
Size: 78125 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20140718/db957af7/attachment.bin>
More information about the Pki-devel
mailing list