openssl pkcs#11 engine patch
Paul Wouters
paul at xelerance.com
Tue Mar 29 10:51:48 UTC 2011
On Wed, 23 Mar 2011, Billy Glynn wrote:
> For me, I had the same problem.
>
> I'm running RHEL5, openssl-0.9.8l with the ISC patch and integrating
> with the AEP Keyper PKCS#11 lib.
>
> After applying the ISC patch, I found that this worked for me:
>
> # ./Configure linux-elf -m32 -pthread
> --pk11-libname=/opt/Keyper/PKCS11Provider/pkcs11.so
> --pk11-flavor=sign-only --prefix=/opt/pkcs11/usr
>
> # make
>
> # ./apps/openssl engine pkcs11
> (pkcs11) PKCS #11 engine support (sign only)
Note that fedora/rhel have a package bind-pkcs11 that *should* would without
patching bind manually. I have not tried this recently, but if it does not
work, I suggest opening a bug report about this, so that we can get it fixed.
Paul
More information about the bind-users
mailing list