On 12/8/06, Joe Orton <[EMAIL PROTECTED]> wrote:
You say the KDE QCA code can be used as a library. So in that case:
what happens when both QCA code and some other pkcs11h_*-using code are
linked into the same process, and both register a token prompt hook?
There can only be one callback registered for the process so it can't be
handled by both the QCA code and any other user, right?
True.
And what happens if I register OpenSSL locking hooks, modify its
engines unloading alogirthmim while using neon?
Or application that uses pkcs11-helper, and decides to access the
PKCS#11 provider directly?
Or using operating system to read/write files and access directly to /dev/sda?
Every developer should determine in which level he integrate with low
level components.
Let's say I have two instances of software that works with
pkcs11-helper, each uses a differnet certificate/key but both resides
on the same token.
Both instances should use the same session to access the token, user
should authenticate only once for this process.
So I have to maintain a global context... But which application will
prompt the user? The first one? The main one? What happens if the card
was removed/inserted? Now, which component will prompt the user?
Please remember that this is dynamic environment, but as dynamic as it
is, the user should not be made crazy.
Best Regards,
Alon Bar-Lev.
_______________________________________________
neon mailing list
[email protected]
http://mailman.webdav.org/mailman/listinfo/neon
