A P P E N D I X B |
Installing and Configuring openCryptoki Software for Linux |
This appendix contains the following topics:
Note - The openCryptoki software is for Linux platforms only. |
The Sun Crypto Accelerator 6000 board uses openCryptoki as the interface for PKCS#11 applications. Version 1.1 of the board uses the certified openCryptoki 2.2.4 release of the software. The source rpm package is downloadable from the RedHat web site (http://www.redhat.com/). Additional information on openCryptoki is available at:
http://sourceforge.net/projects/opencryptoki
Later releases of openCryptoki might not be supported. Refer to the Sun Crypto Accelerator 6000 Board Product Notes for Version 1.1 before using any other releases.
This section describes how to build and install openCryptoki software on RHEL5, RHEL4, and SUSE10 SP1.
Install openCryptoki Software on RHEL5 |
The openCryptoki binary packages are available on the RHEL5 CD#4.
Install openCryptoki packages if not already installed with one of the following commands:
%> rpm -i openCryptoki-2.2.4-15.el5.i386.rpm (For 32-bit and 64-bit systems) %> rpm -i openCryptoki-2.2.4-15.el5.x86_64.rpm (For 64-bit systems only) |
Note - Install the 32-bit binary on both 32-bit and 64-bit systems. Install the 64-bit binary on 64-bit systems only. |
Build and Install openCryptoki on RHEL4 Updates |
The openCryptoki binary packages for RHEL5 cannot install on RHEL4 due to dependencies. The openCryptoki 2.2.4 source rpm package, openCryptoki-2.2.4-15.el5.src.rpm, is downloadable from the RedHat web site.
1. Prepare a 32-bit and a 64-bit RHEL4.x system.
2. Install openCryptoki source with the following command:
3. Change to /usr/src/redhat/SPECS directory.
4. Delete the following line from openCryptoki.spec file:
5. Type the following command:
Once this command completes, the openCryptoki packages should be as follows:
6. Install the openCryptoki packages on RHEL4 with the following command:
On RHEL systems, start and stop openCryptoki with the following commands:
Build and Install openCryptoki Software on SUSE10 SP1 Platforms |
The openCryptoki binary packages for RHEL5 do not install on SUSE10 SP1 due to dependencies. The openCryptoki 2.2.4 source rpm package, openCryptoki-2.2.4-15.el5.src.rpm, is downloadable from the Internet.
1. Prepare a 32-bit and a 64-bit SUSE10 SP1 system.
2. Install openCryptoki source with the following command:
3. Change to /usr/src/packages/SPECS directory and type the following command:
After the above command is done, the openCryptoki packages should be as follows:
4. Install openCryptoki packages on SUSE10 SP1 systems with the following command:
5. Edit the /etc/rc.d/init.d/pkcsslotd file to delete daemon and the daemon options from the command lines.
These lines are for RHEL only.
a. Delete line . /etc/rc.d/init.d/functions
b. Change daemon --force $SLOTDBIN to $SLOTDBIN
c. Change daemon $SLOTDBIN to $SLOTDBIN
6. Stop and Start openCryptoki.
Note - The openCryptoki packages must be installed before the Sun Crypto Accelerator 6000 packages are installed. The Sun Crypto Accelerator 6000 installation modifies openCryptoki files. |
7. Stop and start the Sun Crypto Accelerator 6000 board with the /etc/init.d/sca stop or /etc/init.d/sca start commands.
The board should have been started during Sun Crypto Accelerator 6000 package installation or upon reboot.
On SUSE systems, start and stop openCryptoki with the following commands:
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.