1OPENCRYPTOKI.CONF(5)             openCryptoki             OPENCRYPTOKI.CONF(5)
2
3
4

NAME

6       opencryptoki.conf - Configuration file for pkcsslotd.
7
8

DESCRIPTION

10       pkcsslotd  uses  a  configuration  file  at /etc/opencryptoki/opencryp‐
11       toki.conf
12
13       This is a text file that contains information used to configure pkcs#11
14       slots.  At  startup, the pkcsslotd daemon parses this file to determine
15       which slots will be made available.
16
17

SYNTAX

19       This file is made up of optional global definitions, and slot  descrip‐
20       tions.
21
22       The following global definitions are valid:
23
24
25       disable-event-support
26              If  this  keyword is specified the openCryptoki event support is
27              disabled.
28
29
30       Each slot description is composed of a slot number, brackets  and  key-
31       value pairs.
32
33        slot number
34        {
35            key = value
36            ...
37        }
38
39       More than one key-value pair may be used within a slot description.
40
41       A key-value pair is composed of, keyword = value.
42
43       The following keywords are valid:
44
45
46       description
47              A  Description  of  the  slot.  PKCS#11v2.20  defined  this as a
48              64-byte max character-string.
49
50       stdll  This keyword is used to define the name of the  stdll  or  token
51              library  that will be used for this slot. The stdll is an avail‐
52              able token library in opencryptoki.
53
54       manufacturer
55              This keyword is used to name the ID of  the  slot  manufacturer.
56              PKCS#11v2.20 defines this as a 32 byte long string.
57
58       hwversion
59              Version  number of the slot's hardware, if any. The version num‐
60              ber is composed of a major version number (the  integer  portion
61              of  the version) and a minor version number (the hundredths por‐
62              tion of the version).  For example, version 1.2, major = 1,  mi‐
63              nor = 2
64
65       firmwareversion
66              Version  number of the slot's firmware, if any. The version num‐
67              ber is composed of a major version number (the  integer  portion
68              of  the version) and a minor version number (the hundredths por‐
69              tion of the version).
70
71       confname
72              If the slot is associated with a token that has its own configu‐
73              ration  file, this option identifies the name of that configura‐
74              tion file.  For example, confname=ep11tok.conf
75
76       tokname
77              If a token want to have its own token  directory  name  that  is
78              different  from  the default name, especially if multiple tokens
79              of the same type are configured, this option defines the name of
80              the token individual directory.  For example, tokname=ep11tok01
81
82              Note: This key-value pair is optional: If only one token per to‐
83              ken type is used, you don't need that entry. In  that  case  the
84              default directory name is used.
85
86       tokversion
87              Version number of the slot's token of the form <major>.<minor>.
88
89

Notes

91       The  pound  sign ('#') is used to indicate a comment.  Both the comment
92       character and any text after it, up to the end of  the  line,  are  ig‐
93       nored. The comment character cannot be used inside the brackets of slot
94       descriptions, as this will cause a syntax error.
95
96

SEE ALSO

98       opencryptoki(7),
99       pkcsslotd(8),
100
101
102
1033.16.0                          September 2012            OPENCRYPTOKI.CONF(5)
Impressum