pkcs11 module search paths
Andreas Metzler
ametzler at downhill.at.eu.org
Mon Oct 31 08:40:52 PDT 2011
On 2011-10-24 Stef Walter <stefw at collabora.co.uk> wrote:
> On 2011-10-21 19:22, Andreas Metzler wrote:
[...]
>> them). A major step of the process is changing installation parts,
>> libraries go to /usr/lib/<triplet>[1] and /lib/<triplet> instead of
>> /usr/lib or /lib respectively.
>> This also changes the location of PKCS#11 modules, they previously
>> lived in /usr/lib/pkcs11 but will move to /usr/lib/<triplet>/pkcs11.
>> We will have a transition phase where part of the modules have moved.
>> Could libp11-kit0 be changed to support searching modules in both
>> locations?
> Hmmm, I see the problem. However...
> p11-kit only loads modules that have a module specific configuration
> file installed (usually in /etc/pkcs11/modules).
> So far I know of only one applications does this: gnome-keyring
> I'm working with developers of other pkcs#11 modules (such as opensc
> [1]) to try and get them to also support p11-kit out of the box by
> installing such module config files. But until they do, there should be
> only one pkcs#11 module in question.
[...]
Afaiui there is second piece. "module" commands in
~/.pkcs11/pkcs11.conf also support using relative paths, don't they?
cu andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the p11-glue
mailing list