security/engine_pkcs11 unable to use it

[Mel Flynn]

On Wednesday 09 September 2009 11:45:15 Alex Dupre wrote:
> Mel Flynn ha scritto:
> >> Mel Flynn ha scritto:
> >>> As per http://www.opensc-project.org/engine_pkcs11/wiki/QuickStart I've
> >>> modified my /etc/ssl/openssl.cnf, yet:
> >>
> >> Can you try the command-line alternative?
> >
> > OpenSSL> engine -t dynamic -pre
> > SO_PATH:/usr/local/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre
> > LIST_ADD:1 -pre LOAD -pre
> > MODULE_PATH:/usr/local/lib/engines/engine_pkcs11.so (dynamic) Dynamic
> > engine loading support
> > [Success]: SO_PATH:/usr/local/lib/engines/engine_pkcs11.so
> > [Success]: ID:pkcs11
> > [Success]: LIST_ADD:1
> > [Success]: LOAD
> > [Success]: MODULE_PATH:/usr/local/lib/engines/engine_pkcs11.so
> > Loaded: (pkcs11) pkcs11 engine
> > unable to load module /usr/local/lib/engines/engine_pkcs11.so
> >      [ unavailable ]
>
> Ops, I didn't notice it before, but which PKCS11 token are you using?
> This is the engine, MODULE_PATH must address a criptoki library.

Aha! Maybe patch below is an idea?
OpenSSL> engine -t dynamic -pre 
SO_PATH:/usr/local/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre LIST_ADD:1 
-pre LOAD -pre MODULE_PATH:/usr/local/lib/opensc-pkcs11.so
(dynamic) Dynamic engine loading support
[Success]: SO_PATH:/usr/local/lib/engines/engine_pkcs11.so
[Success]: ID:pkcs11
[Success]: LIST_ADD:1
[Success]: LOAD
[Success]: MODULE_PATH:/usr/local/lib/opensc-pkcs11.so
Loaded: (pkcs11) pkcs11 engine

--- security/engine_pkcs11/Makefile.orig        2009-08-05 22:28:40.000000000 
+0200
+++ security/engine_pkcs11/Makefile     2009-09-09 12:01:51.000000000 +0200
@@ -33,4 +33,8 @@
                ${WRKSRC}/Makefile.in ${WRKSRC}/doc/Makefile.in
 .endif

+post-install:
+       @${ECHO_MSG} "You will need a criptoki library to use the engine."
+       @${ECHO_MSG} "One is provided by security/opensc"
+
 .include <bsd.port.mk>

-- 
Mel