Hi, On Tue, Jan 25, 2022 at 12:02:44PM -0500, Selva Nair wrote: > > In its simplest form, just have > > > > --cert 'pkcs11:id=%01' > > I'm withdrawing this patch as it has no prospects going forward with > engines on their way out in > OpenSSL 3.0 and beyond. Withdrawing is also an honourable way out when no > one seems to care :)
Recorded as such. Thanks for the patch anyway. (And indeed, I have no current usecase for this - though it definitely looked interesting - and too much other stuff that I needed to care for...) > That said, in the spirit of this patch, I think we should consider reusing > "--cert" and, optionally, "--key" options when newer ways of specifying the > certificate are introduced: like "--cert <uri>" instead of a new option > "--cryptoapi-cert <foo>" etc. Let's try to keep this in mind when the next patch suggesting --mysecretkeystore-cert <identifier> comes along :-) gert -- "If was one thing all people took for granted, was conviction that if you feed honest figures into a computer, honest figures come out. Never doubted it myself till I met a computer with a sense of humor." Robert A. Heinlein, The Moon is a Harsh Mistress Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel