Date: Wed, 9 Sep 2009 12:10:35 +0200 From: Mel Flynn <mel.flynn+fbsd.ports@mailing.thruhere.net> To: freebsd-ports@freebsd.org Cc: Alex Dupre <ale@freebsd.org> Subject: Re: security/engine_pkcs11 unable to use it Message-ID: <200909091210.35307.mel.flynn%2Bfbsd.ports@mailing.thruhere.net> In-Reply-To: <4AA7792B.4090601@FreeBSD.org> References: <200909082313.59252.mel.flynn%2Bfbsd.ports@mailing.thruhere.net> <200909091127.52592.mel.flynn%2Bfbsd.ports@mailing.thruhere.net> <4AA7792B.4090601@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wednesday 09 September 2009 11:45:15 Alex Dupre wrote: > Mel Flynn ha scritto: > >> Mel Flynn ha scritto: > >>> As per http://www.opensc-project.org/engine_pkcs11/wiki/QuickStart I've > >>> modified my /etc/ssl/openssl.cnf, yet: > >> > >> Can you try the command-line alternative? > > > > OpenSSL> engine -t dynamic -pre > > SO_PATH:/usr/local/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre > > LIST_ADD:1 -pre LOAD -pre > > MODULE_PATH:/usr/local/lib/engines/engine_pkcs11.so (dynamic) Dynamic > > engine loading support > > [Success]: SO_PATH:/usr/local/lib/engines/engine_pkcs11.so > > [Success]: ID:pkcs11 > > [Success]: LIST_ADD:1 > > [Success]: LOAD > > [Success]: MODULE_PATH:/usr/local/lib/engines/engine_pkcs11.so > > Loaded: (pkcs11) pkcs11 engine > > unable to load module /usr/local/lib/engines/engine_pkcs11.so > > [ unavailable ] > > Ops, I didn't notice it before, but which PKCS11 token are you using? > This is the engine, MODULE_PATH must address a criptoki library. Aha! Maybe patch below is an idea? OpenSSL> engine -t dynamic -pre SO_PATH:/usr/local/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre LIST_ADD:1 -pre LOAD -pre MODULE_PATH:/usr/local/lib/opensc-pkcs11.so (dynamic) Dynamic engine loading support [Success]: SO_PATH:/usr/local/lib/engines/engine_pkcs11.so [Success]: ID:pkcs11 [Success]: LIST_ADD:1 [Success]: LOAD [Success]: MODULE_PATH:/usr/local/lib/opensc-pkcs11.so Loaded: (pkcs11) pkcs11 engine --- security/engine_pkcs11/Makefile.orig 2009-08-05 22:28:40.000000000 +0200 +++ security/engine_pkcs11/Makefile 2009-09-09 12:01:51.000000000 +0200 @@ -33,4 +33,8 @@ ${WRKSRC}/Makefile.in ${WRKSRC}/doc/Makefile.in .endif +post-install: + @${ECHO_MSG} "You will need a criptoki library to use the engine." + @${ECHO_MSG} "One is provided by security/opensc" + .include <bsd.port.mk> -- Mel
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200909091210.35307.mel.flynn%2Bfbsd.ports>