Openconnect with PKCS11 on Ubunbtu 12.10
Lee Matthews
lee_matthews at frontiernet.net
Wed Sep 19 15:03:11 EDT 2012
David Woodhouse <dwmw2 <at> infradead.org> writes:
>
> On Wed, 2012-09-19 at 17:45 +0000, Lee Matthews wrote:
> > Good afternoon,
> > I am wrestling with getting this to work.
> > Here is the error I am getting:
> >
> >
> > Error importing PKCS#11 URL
> > The requested data were not available.
> > Loading certificate failed. Aborting.
>
> You didn't show the URL, so I can't opine on its sanity. But basically
> it wasn't correct. The system couldn't find an object matching the URL
> you gave. How did you get the URL that you used, if 'p11tool --list-all'
> didn't work?
>
> > Running p11tool --list-all --login gives
> > me a segmentation fault, not sure of that is related or not.
>
> Potentially. It seems sane to get that crash fixed before we try to do
> anything more useful with GnuTLS and PKCS#11. Although it might be a bug
> in the PKCS#11 library you're using, perhaps?
>
Sorry about not posting the URL,
the lines longer than 80 character thing was killing me...
Here is the URL:
Using PKCS#11 certificate
pkcs11:id=u%deN%e7Oh%0e%c6S%dbA%b0%bc%017%5c%40B%28%c0;
object-type=cert;
pin-source=openconnect%3a0xb8ce0ee8
Using PKCS#11 key
pkcs11:id=u%deN%e7Oh%0e%c6S%dbA%b0%bc%017%5c%40B%28%c0;
object-type=private;
pin-source=openconnect%3a0xb8ce0ee8
Error importing PKCS#11 URL
pkcs11:model=1.0;manufacturer=Gnome%20Keyring;
token=Gnome2%20Key%20Storage;
id=u%deN%e7Oh%0e%c6S%dbA%b0%bc%017%5c%40B%28%c0;
object-type=private;
pin-source=openconnect%3a0xb8ce0ee8:
I ran p11tool --list-all-certs
More information about the openconnect-devel
mailing list