On Thu, Sep 25, 2008 at 3:33 AM, Huie-Ying Lee <[EMAIL PROTECTED]> wrote: > Hello, > > In the pam_pkcs11 module, it requires PKCS#11 modules to have uid = 0 and > gid = 0. With this restriction, /usr/lib/libpkcs11.so on Solaris OS > could not be loaded successfully because its gid is 2. > > --------------------------------------------------------------------------------------------------------------------------------------------------- > DEBUG:pkcs11_lib.c:948: PKCS #11 module = [/usr/lib/libpkcs11.so] > DEBUG:pkcs11_lib.c:965: module permissions: uid = 0, gid = 2, mode = 755 > ERROR:pam_pkcs11.c:307: load_pkcs11_module() failed: the pkcs #11 module > MUST be owned by root and MUST NOT be writeable by the group or others > --------------------------------------------------------------------------------------------------------------------------------------------------- > > To resolve this problem on Solaris OS, we removed the gid == 0 > requirement from the src/common/pkcs11_lib.c file, because it should be > sufficient with the uid, group write permisson and other write permission > checking. > > Attached is the patch file, please let me know if you have any comments.
Good patch. Applied in revision 334. Thanks -- Dr. Ludovic Rousseau _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
