1PKCSSLOTD(8) openCryptoki PKCSSLOTD(8)
2
3
4
6 pkcsslotd - shared memory manager for opencryptoki
7
8
10 The pkcsslotd daemon manages PKCS#11 objects between PKCS#11-enabled
11 applications. When 2 or more processes are accessing the same crypto‐
12 graphic token, the daemon is notified and updates each application when
13 the token's objects change.
14
15
17 Only one instance of the pkcsslotd daemon should be running on any
18 given host. If a prior instance of pkcsslotd did not shut down cleanly,
19 then it may leave an allocated shared memory segment on the system. The
20 allocated memory segment can be identified by its key and can be safely
21 removed once the daemon is stopped with the ipcrm command, such as:
22
23 ipcrm -M 0x6202AB38
24
25 The daemon creates the shared memory segment with group ownership by
26 the pkcs11 group. All non-root users that should be able to use open‐
27 Cryptoki need to be members of the group. Only trusted users should be
28 assigned to the group, see the "SECURITY NOTE" in the opencryptoki(7)
29 manual page for details.
30
31
33 opencryptoki(7),
34 opencryptoki.conf(5),
35 pkcsconf(1),
36
37
38
393.20.0 May 2007 PKCSSLOTD(8)