Description of problem: CAC cards can have 1-3 certificates. Coolkey will fail if the CAC card has only 1 certificate. How reproducible: Plug in a CAC card with only 1 cert. Any software using coolkey will not recognize the card.
Created attachment 133103 [details] Allow CAC cards with less than 3 certs
Found during cleanup and not sure if fixed yet. Proposing for 5.1 and PM_ACK as component is already approved.
Fixed in coolkey-1.1.0-2_el5 I verified there was not major functionality change between the rebased coolkey and 1.0.1 with patches. The only differences in the tree where: 1) minor build changes for other platforms (no affect on RHEL). 2) simple change to enable optional syslog login. 3) the fix to this bug. The latter is by far the biggest change between 1.0.1 and 1.1.0 with patches. This is because 1.1.0 is basically a roll-up of the patches we have already made to 1.0.1 bob
marking bug VERIFIED. tested on rhel5-x86_64 with snapshot#4, using a CAC card that had 1 cert.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2007-0631.html