Bug 209517 - NSS could provide a function to get token specific identifier
Summary: NSS could provide a function to get token specific identifier
Keywords:
Status: CLOSED WORKSFORME
Alias: None
Product: Fedora
Classification: Fedora
Component: nss
Version: rawhide
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Bob Relyea
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2006-10-05 18:52 UTC by Ray Strode [halfline]
Modified: 2021-11-03 16:37 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-11-03 16:37:11 UTC
Type: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Ray Strode [halfline] 2006-10-05 18:52:13 UTC 
As part of the smart card login efforts, we need a way to uniquely identify
tokens.  We currently look at the login token name and say that it's not a
supported configuration to have more than one token with the same name.

Ideally, NSS would provide a GetTokenUUID() function or similiar that is always
unique the token.  Maybe this function could be the concatentation (or hash?) of
the token's serial number and label.

The serial number of the token isn't suffient on it's own, because apparently, a
fair number of tokens on the market don't give unique serial numbers from token
to token.
Comment 1 Kai Engert (:kaie) (inactive account) 2006-10-06 22:20:11 UTC 
Reassigning to Bob, who is working on NSS features.
I wonder if this should rather be tracked in bugzilla.mozilla.org component NSS
as an enhancement request.
Comment 2 Fedora Admin XMLRPC Client 2010-09-07 20:44:09 UTC 
This package has changed ownership in the Fedora Package Database.  Reassigning to the new owner of this component.
Comment 3 Bob Relyea 2021-11-03 16:37:11 UTC 
I believe this is solved with pk11uri support. If there isn't enough information to uniquely identify a token, then we need to go back to OASIS PKCS#11.
Note You need to log in before you can comment on or make changes to this bug.