Hello, I manage to have the new ERACOM HSM working... There is one thing that I am not sure though. As the Pin for the partition accessing is to be set in an environment variable for every access to it, I have used the login command to set it up. But I do not like this solution. Therefore I have patched the OpenSSL.pm module so that it is possible to pass to it a new parameter called PWD_ENV which contains the name of the env variable to be used for password. If no PWD_ENV is passed, then the behaviour is the same as before (i.e. the env:pwd is used) otherwise the PASSWD is passed onto another variable. This let adapters like the ERACOM to work without having the password hanging there from the login...
Also another patch, very small indeed, I made allows the OpenSSL.pm
module to set some environments variable based on configuration for
the token.
For example by using:
...
<option>
<name>ENV::MY_VAR</name>
<value>my_val</value>
</option>
...
in the token config, it is possible to set the MY_VAR environment
variable to the value of 'my_val'. I think this could be helpful
also for other devices, but before adding it I'd like to have your
opinion about this.
Let me know, bye!
--
Best Regards,
Massimiliano Pala
--o------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
Tel.: +39 (0)11 564 7081
http://security.polito.it Fax: +39 178 270 2077
Mobile: +39 (0)347 7222 365
Politecnico di Torino (EuroPKI)
Certification Authority Informations:
Authority Access Point http://ca.polito.it
Authority's Certificate: http://ca.polito.it/ca_cert/en_index.html
Certificate Revocation List: http://ca.polito.it/crl02/crl.crl
--o------------------------------------------------------------------------
smime.p7s
Description: S/MIME Cryptographic Signature
