it used to, scanning all PKCS11 tokens and creating a linked list of
available tokens. During this process, the engine will now keep a
per-token list of implemented NIDs (mechanisms) instead of one global
list of all NIDs implemented. Once the engine receives the SLOT_ID
command identifying the PKCS11 slot to use, a global pointer to a
specific _token structure is created that identifies the token the
engine will use. Leaving out a SLOT_ID command from the engine's config
will now produce errors.
Signed-off-by: Kent Yoder <key@linux.vnet.ibm.com>
This is the initial drop for openssl-ibmpkcs11, an OpenSSL dynamic
engine that can be used to access crypto on PKCS#11 providers.
Signed-off-by: Kent Yoder <key@linux.vnet.ibm.com>
Kent Yoder