[gpkcs11-dev] Binaries for ceay_token?
Status: Beta
Brought to you by:
cypherfox
Menu
▾
▴
[gpkcs11-dev] Binaries for ceay_token?
|
From: Philipp <pg...@fu...> - 2005-09-03 15:17:23
|
Hi, Should I switch to german? Thank you very much for making gpkcs11 available as OpenSource! I stumbled across gpkcs11 about a week ago, and tried to get it running, bu= t=20 without much luck. gpkcs11 itself compiles somewhat cleanly, but I didn=B4t succeed to get=20 ceay_token linked together. I tried it with openssl-0.9.8 and openssl-0.9.6= ,=20 but it doesn=B4t work. Does anyone have up-to-date binaries (perhaps for SuSE 9.3 or compatible?)? How is the specialized openssl variante supposed to be linked with ceay_tok= en?=20 statically or dynamically? What about renaming the special openssl library to something different?=20 opensslgspkcs or something? Then there wouldn=B4t be much chance for confli= cts. Is it really necessary not to distribute the openssl package with the gpkcs= 11=20 package? Distributing it together (in a already prepared way) would help a = =20 lot, I think. And having nicely installable binary RPM=B4s/dpkg=B4s would also not be a b= ad=20 idea. Now regarding the registry: =46or the PKCS#11 drivers, I am currently proposing /usr/lib/pks11/*.so as = a=20 "registry" for all PKCS#11 drivers. So I would suggest that gpkcs11 install= s=20 itself there too. =46or the gpkcs Tokens, I would suggest something like /usr/lib/gpkcs11-tok= ens/=20 or something. gpkcs should automatically try to load all the tokens which are installed i= n=20 that directory. Regarding the PersistentRootDir, the ceay_token should automatically use=20 ~/.ceay_token/ (and the other tokens accordingly). Where is the TCSC Token implementation? I could not find it. Where is the DATA Token implementation? Regarding PKCS#11 client, I would suggest to bundle pkcs11-tool from OpenSC= =20 with gpkcs#11. http://www.opensc.org/ I found another soft-token PKCS#11 driver: http://people.su.se/~lha/soft-pkcs11/ (I wish there were a mixture between soft-pkcs11 and gpkcs. The simple desi= gn=20 from soft-pkcs11, the functionality of ceay-token) The pkcs11.log has the error messages: /* CI_GetDLLHandle(): Opening Dynamic Library=20 '/usr/local/lib/libceay_tok.so.1.0.1' failed: /usr/local/lib/libceay_tok.so= =2E1 =2E0.1: undefined symbol: CI_CeaySymbolTable(GENERAL ERROR) */ /* CI_InitTokenDll(): retrieving dll handle (GENERAL ERROR) */ /* CI_TokenInit(): Init'ing of Token 'CEAY-TOKEN' failed: no valid init=20 symbol(GENERAL ERROR) */ Thank you for your help, Philipp G=FChring |
