[Opendnssec-develop] packaging questions about softhsm
Paul Wouters
paul at xelerance.com
Mon Mar 7 17:24:22 UTC 2011
On Mon, 7 Mar 2011, Rickard Bellgrim wrote:
>> If it is a module and not a shared library, then it should not be installed in /usr/lib* ?
>> Perhaps a better place would be /usr/lib/softhsm/ ?
>
> Yes, perhaps. What do you think Jakob?
Okay, I'll put it there and update things for the new location.
>> Is this module only loadable by opendnssec? If so, then it should probably be a sub package,
>> like opendnssec-softhsm.
>
> It can be loaded by any application that supports PKCS#11.
>>> That is the pkcs11.h from RSA Labs (or the Scute project). What do we think, should we install it?
>>
>> That could cause issues with other packages, like cryptoki or bind-pkcs11.
I'll double check how the other PKCS#11 providers (bind-pkcs11 and openCryptoki) do it.
> If you would like to develop something with SoftHSM, then you download the header from RSA or Scute. The header is not SoftHSM specific, but is more generic for any type of PKCS#11 provider.
Since some other package will provide that, I will add a dependancy for softhsm-devel for it.
Thanks,
Paul
More information about the Opendnssec-develop
mailing list