More on using OpenSC-0.11.6 with Solaris 10 and /usr/lib/libpkcs11.so. I rebuilt OpenSC to use the OpenSSL from /usr/sfw and changed the OpenSC to return CKR_TOKEN_NOT_PRESENT in the C_GetMechanismList if the p11card==NULL. See attachment.
With the the metaslot enabled, sshd fails. Still need to trace why. With the metaslot disabled, sshd works, but it does load the opensc-pkcs11, and if a card is present, opensc will access the card to get info need to setup for use with pkcs11. This adds about 5 seconds to the ssh connection! -- Douglas E. Engert <DEEngert at anl.gov> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: mechanisum.txt URL: <http://mail.opensolaris.org/pipermail/crypto-discuss/attachments/20081007/98d4ada8/attachment.txt>
