Hello, While investigating an issue with a USB token, I have found that the OpenSSL PKCS#11 engine never release enumerated slots (unless an error has occured during enumeration).
Each time OpenSSL try to load a key or a certificate a new slot list is created and initialized and the previous one is lost. The problem (aside from the memory leak) is that any open session is never closed and a new session is opened each time. In my particular case, the PKCS#11 library only allow one session opened at a time (...) so once I have loaded a key, I can't load or reload a new key or certificate. Do you agree with my analysis? Which correction should be prefered (release all previous slots on enumerate, keep same slot object instead of creating a new one, ...)? Regards, -- Mathieu Lafon
_______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
