[gdm-list] Cannot get /usr/local/lib/opensc-pkcs11.so to work with gdm-smartcard-worker.

From: Patrik Martinsson <Patrik Martinsson smhi se>
To: gdm-list gnome org
Subject: [gdm-list] Cannot get /usr/local/lib/opensc-pkcs11.so to work with gdm-smartcard-worker.
Date: Tue, 24 Aug 2010 11:36:56 +0200

Hello everyone,

I'm trying to use the opensc-pkcs11 module together with oursmart-cards, I've successfully managed to use it together withpam_pkcs11. pkcs11_inspect and login works. (The login part work withgdm, but that's not the issue)

When I insert my card the first time (or if its inserted when gdm starts) I successfully get asked about my pin, this is what you would expect. However if I remove my smart-card whiteout typing my pin I would assume that gdm detects
this and throws me back to the initial login (where i can choose between smartcard& other), that's the part that doesn't work.

I ran gdm-smart-card-worker from the terminal and attaching the log-file. You can see at the end of the log that gdm-smart-card-worker is expecting slot_id not be 0, which it is in my case, don't really know why (if that is
normal or if my setup is wrong), I've also posted this on the opensc list tosee if they have an idea.

I added the code if (slot_id == 0) {slot_id = 1}; just to see how gdm-smart-card-worker reacted, it didn't die and actually reported that it detected each insert/removal, however gdm didn't do anything different. (throw
me back to the "initial" login screen when card is being removed etc).

I would really like to have this working. Earlier we used a module from our cardvendors together gdm (with a small hack i did myself to get it working), however due too theirs negligent and incompetent support, I would like to use
opensc driver instead.

I'm able to test any suggestions/patches or whatever that's necessary to get this working as expected.

Two questions directly comes to my mind,
# 1, Smartcard driver using spec 'library=/foo/' is configured at compile time, right ? This should really be configurable at run time, shouldn't it ? Not everyone is using the libcoolkeypk11.so that is used as default, or am i wrong ?

# 2, Wouldn't it be a good idea to remove the smart-card patch (and others too) from the huuuge multistack patch ? I'm no programmer so i don't know if there is a specific reason for why it's like this, but I find it rather hard to work
with, but again, maybe there is a reason for this.

I don't really know if gdm-plugin-smartcard is a part of gdm or if that is something thats been added by Red Hat, however i posted a bug about this on their bugzilla, https://bugzilla.redhat.com/show_bug.cgi?id=626744 .

Any suggestions are welcome!

Thanks in advance,
Patrik Martinsson,
Sweden.

Attachment: logs.tar.gz
Description: GNU Zip compressed data

Follow-Ups:
- Re: [gdm-list] Cannot get /usr/local/lib/opensc-pkcs11.so to work with gdm-smartcard-worker.
  - From: Ray Strode

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]