[security-dev 01747]: Re: '\0' in alias name of a pkcs11 keystore
Michael StJohns
mstjohns at comcast.net
Tue Mar 30 19:40:03 UTC 2010
At 03:05 AM 3/26/2010, Tomas Gustavsson wrote:
>You can set an alias by providing it using pkcs11 attributes through the provider, but that alias is provider global (for all generated key pairs) which is not very usable.
The work around for this is to open up the provider different times with different arguments. Build the config file as a string, open the string as a stream and then provide it to sun.security.pkcs11.SunPKCS11 (InputStream). A bit clumsy, but it does work.
Mike
More information about the security-dev
mailing list