1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

openvpn + pkcs11

Discussion in 'Networking' started by NE, Feb 11, 2014.

  1. NE

    NE New Member

    Messages:
    14
    Thanks Received:
    0
    Hi,

    I am tying to use openvpn with a pkcs11-compatible token. So I built it from security/openvpn port, using the « Use security/pkcs11-helper » option, but I can't get it working: every command involving pkcs11 just fails. Eg:
    Furthermore:
    • the openvpn man page has informations about pkcs11 commands/parameters while inner help (ie openvpn --help) has none.
    • ldd /usr/sbin/openvpn doesn't show any link with pkcs11*
    • truss openvpn --show-pkcs11-ids [...] doesn't report any attempt to open any pkcs11 related file
    Any hint ?
     
  2. NE

    NE New Member

    Messages:
    14
    Thanks Received:
    0
    Fixed with the following patch applied to the security/openvpn Makefile:
    Code:
    --- Makefile.bak        2014-02-13 10:40:42.000000000 +0100
    +++ Makefile    2014-02-13 06:54:19.000000000 +0100
    @@ -62,6 +62,7 @@
     
     .if ${PORT_OPTIONS:MPKCS11}
     LIB_DEPENDS+=  libpkcs11-helper.so:${PORTSDIR}/security/pkcs11-helper
    +CONFIGURE_ARGS+=       --enable-pkcs11=yes
     .else
     CONFIGURE_ARGS+=       --disable-pkcs11
     .endif