Blame man/man8/pkcsslotd.8.in
|
Packit |
8681c6 |
.TH PKCSSLOTD 8 "May 2007" "@PACKAGE_VERSION@" "openCryptoki"
|
|
Packit |
8681c6 |
.SH NAME
|
|
Packit |
8681c6 |
pkcsslotd - shared memory manager for opencryptoki
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
.SH DESCRIPTION
|
|
Packit |
8681c6 |
The \fBpkcsslotd\fP daemon manages PKCS#11 objects between
|
|
Packit |
8681c6 |
PKCS#11-enabled applications. When 2 or more processes are accessing
|
|
Packit |
8681c6 |
the same cryptographic token, the daemon is notified and updates
|
|
Packit |
8681c6 |
each application when the token's objects change.
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
.SH NOTES
|
|
Packit |
8681c6 |
Only one instance of the pkcsslotd daemon should be running on any
|
|
Packit |
8681c6 |
given host. If a prior instance of pkcsslotd did not shut down
|
|
Packit |
8681c6 |
cleanly, then it may leave an allocated shared memory segment on
|
|
Packit |
8681c6 |
the system. The allocated memory segment can be identified by its
|
|
Packit |
8681c6 |
key and can be safely removed once the daemon is stopped with the
|
|
Packit |
8681c6 |
ipcrm command, such as:
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
\fIipcrm -M 0x6202AB38\fP
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
The daemon creates the shared memory segment with group ownership by the
|
|
Packit |
8681c6 |
\fIpkcs11\fP group. All non-root users that should be able to use
|
|
Packit |
8681c6 |
openCryptoki need to be members of the group. Only trusted users should be
|
|
Packit |
8681c6 |
assigned to the group, see the "SECURITY NOTE" in the \fBopencryptoki\fP(7)
|
|
Packit |
8681c6 |
manual page for details.
|
|
Packit |
8681c6 |
|
|
Packit |
8681c6 |
.SH "SEE ALSO"
|
|
Packit |
8681c6 |
.PD 0
|
|
Packit |
8681c6 |
.TP
|
|
Packit |
8681c6 |
\fBopencryptoki\fP(7),
|
|
Packit |
8681c6 |
.TP
|
|
Packit |
8681c6 |
\fBopencryptoki.conf\fP(5),
|
|
Packit |
8681c6 |
.TP
|
|
Packit |
8681c6 |
\fBpkcsconf\fP(1),
|
|
Packit |
8681c6 |
.PD
|