pkcs11 module search paths
Stef Walter
stefw at collabora.co.uk
Tue Nov 1 06:21:27 PDT 2011
On 2011-10-31 16:40, Andreas Metzler wrote:
> On 2011-10-24 Stef Walter <stefw at collabora.co.uk> wrote:
>> p11-kit only loads modules that have a module specific configuration
>> file installed (usually in /etc/pkcs11/modules).
>
>> So far I know of only one applications does this: gnome-keyring
>
>> I'm working with developers of other pkcs#11 modules (such as opensc
>> [1]) to try and get them to also support p11-kit out of the box by
>> installing such module config files. But until they do, there should be
>> only one pkcs#11 module in question.
> [...]
>
> Afaiui there is second piece. "module" commands in
> ~/.pkcs11/pkcs11.conf also support using relative paths, don't they?
Yes, in a strict sense that's true.
However most user installed modules will be using full paths. In the
rare case that a power user/administrator/developer wishes to use
relative path for a user configured module, they'll need to figure out
the directory which is used for relative paths.
Currently this can be done with the following command, but maybe we
should make this easier:
pkg-config p11-kit-1 --variable p11_module_path
This is documented here:
http://p11-glue.freedesktop.org/doc/p11-kit/config.html#notes-paths-modules
Cheers,
Stef
More information about the p11-glue
mailing list