1OPENCRYPTOKI.CONF(5)             openCryptoki             OPENCRYPTOKI.CONF(5)
2
3
4

NAME

6       opencryptoki.conf - Configuration file for pkcsslotd.
7
8

DESCRIPTION

10       pkcsslotd  uses  a  configuration  file  at /etc/opencryptoki/opencryp‐
11       toki.conf
12
13       This is a text file that contains information used to configure pkcs#11
14       slots.  At  startup, the pkcsslotd daemon parses this file to determine
15       which slots will be made available.
16
17

SYNTAX

19       This file is made up of slot descriptions.  Each  slot  description  is
20       composed of a slot number, brackets and key-value pairs.
21
22        slot number
23        {
24            key = value
25            ...
26        }
27
28       More than one key-value pair may be used within a slot description.
29
30       A key-value pair is composed of, keyword = value.
31
32       The following keywords are valid:
33
34
35       description
36              A  Description  of  the  slot.  PKCS#11v2.20  defined  this as a
37              64-byte max character-string.
38
39       stdll  This keyword is used to define the name of the  stdll  or  token
40              library  that will be used for this slot. The stdll is an avail‐
41              able token library in opencryptoki.
42
43       manufacturer
44              This keyword is used to name the ID of  the  slot  manufacturer.
45              PKCS#11v2.20 defines this as a 32 byte long string.
46
47       hwversion
48              Version  number of the slot's hardware, if any. The version num‐
49              ber is composed of a major version number (the  integer  portion
50              of  the version) and a minor version number (the hundredths por‐
51              tion of the version).  For example,  version  1.2,  major  =  1,
52              minor = 2
53
54       firmwareversion
55              Version  number of the slot's firmware, if any. The version num‐
56              ber is composed of a major version number (the  integer  portion
57              of  the version) and a minor version number (the hundredths por‐
58              tion of the version).
59
60       confname
61              If the slot is associated with a token that has its own configu‐
62              ration  file, this option identifies the name of that configura‐
63              tion file.  For example, confname=ep11tok.conf
64
65       tokname
66              If a token want to have its own token  directory  name  that  is
67              different  from  the default name, especially if multiple tokens
68              of the same type are configured, this option defines the name of
69              the token individual directory.  For example, tokname=ep11tok01
70
71              Note:  This  key-value  pair  is optional: If only one token per
72              token type is used, you don't need that entry. In that case  the
73              default directory name is used.
74
75

Notes

77       The  pound  sign ('#') is used to indicate a comment.  Both the comment
78       character and any text after it,  up  to  the  end  of  the  line,  are
79       ignored.  The  comment  character cannot be used inside the brackets of
80       slot descriptions, as this will cause a syntax error.
81
82

SEE ALSO

84       opencryptoki(7),
85       pkcsslotd(8),
86
87
88
893.11.0                          September 2012            OPENCRYPTOKI.CONF(5)
Impressum