*p11tool* now supports writing objects by specifying a stored ID
With this update, the *p11tool* GnuTLS PKCS#11 tool supports the new "--id" option to write objects by specifying a stored ID. This allows the written object to be addressable by more applications than *p11tool*.
Description of problem:
Please provide --id option for p11-kit
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Customer's statement -
Without the --id option of p11tool, we can't affect an id value to the certificate we need to write to the HSM.
With the Windows version of GNUTLS, the --id option is present and functionnal
You need to provide the --id option in p11tool, without it, the certificate doesn't have any id and then is not adressable by the software using the HSM for signing documents.
Reassigning to gnutls, since p11tool is part of it.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.