Re: Private Keys are cached "forever" leading to inop HTTP-TLS-servers

2022-06-21 Thread Lothar Kimmeringer
Am 21.06.2022 um 09:32 schrieb Andrew Haley: On 6/16/22 21:02, Lothar Kimmeringer wrote: If they are allowed to become unuseable (as explained, I see that as something that is to be expected IRL) I don't think they are. There is nothing in PKCS#11 that gives an implementation any permission

Re: Private Keys are cached "forever" leading to inop HTTP-TLS-servers

2022-06-21 Thread Andrew Haley
On 6/16/22 21:02, Lothar Kimmeringer wrote: If they are allowed to become unuseable (as explained, I see that as something that is to be expected IRL) I don't think they are. There is nothing in PKCS#11 that gives an implementation any permission to time out. -- Andrew Haley (he/him) Java Pla

Re: Private Keys are cached "forever" leading to inop HTTP-TLS-servers

2022-06-16 Thread Lothar Kimmeringer
[this is a resend, my last mail seem to have been lost] Am 15.06.2022 um 13:32 schrieb Bernd Eckenfels: This look to me like a bug in the PKCS11 code or - if it is documented - in the application. Why do you think it is in JCE? I'm not sure if there is a SPTB (single point to blame ;-). - As