From 18597b93f7b43f63173f373fbd8548f2d08e25bb Mon Sep 17 00:00:00 2001 From: james Date: Wed, 5 Apr 2006 07:17:02 +0000 Subject: I've recently worked on a better version of pkcs11-helper. I've also merged it into QCA (Qt Cryptographic Architecture), so that KDE 4 will finally be able to use smartcards. The changes allows the following features: 1. Thread safe, is activated if USE_PTHREAD. 2. Slot event - Will allow us in the future to disconnect VPN when smartcard is removed. In order to support this OpenVPN must support threading... At least SIGUSR1 from a different thread. Threading should be supported in both Windows and Linux. -- currently disabled. When I talk about threading support it is just support in configuration script and that the method that SIGUSR1 self can be called from a different thread. I already handle the monitor threads. 3. Certificate enumeration - Will allow us to finally have one configuration file for all users! When you add the plugin GUI stuff you talked about, we will be able to display a list of available certificates for the user to select. -- currently disabled. 4. Data object manipulation - Will allow us to store tls-auth on the smartcard as well. -- currently disabled. 5. Many other minor improvements. Alon Bar-Lev git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@990 e7ae566f-a301-0410-adde-c780ea21d3b5 --- init.c | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) (limited to 'init.c') diff --git a/init.c b/init.c index 589cd03..de0a40b 100644 --- a/init.c +++ b/init.c @@ -140,9 +140,10 @@ context_init_1 (struct context *c) #if defined(ENABLE_PKCS11) if (c->first_time) { int i; - pkcs11_initialize (c->options.pkcs11_pin_cache_period); + pkcs11_initialize (true, c->options.pkcs11_pin_cache_period); for (i=0;ioptions.pkcs11_providers[i] != NULL;i++) - pkcs11_addProvider (c->options.pkcs11_providers[i], c->options.pkcs11_sign_mode[i]); + pkcs11_addProvider (c->options.pkcs11_providers[i], c->options.pkcs11_protected_authentication[i], + c->options.pkcs11_sign_mode[i], c->options.pkcs11_cert_private[i]); } #endif -- cgit