curl-library
Re: Howto use libcurl with libnss and PKCS11 Interface to a Security Module?
Date: Thu, 24 Mar 2016 10:49:21 +0100
On 23/03/16, Kamil Dudka wrote:
> On Tuesday, March 22, 2016 15:03:42 Oliver Graute wrote:
> > On 22/03/16, Kamil Dudka wrote:
> > > On Monday 21 March 2016 09:29:06 Oliver Graute wrote:
> > > > Hello list,
> > > >
> > > > we want to use libcurl and libnss together with a Security Module (SM).
> > > > Libnss should use the PKCS11 Interface to a crypto Interface of the SM.
> > > >
> > > > Is such a libnss setup possible with libcurl? If yes can someone explain
> > > > me what I need to do?
> > >
> > > I guess you need to add the module to /etc/pki/nssdb/pkcs11.txt but you
> > > will
> > > get a more precise answer on NSS-focused channels:
> > ok for SM integration its a nss related question. But how does the
> > libcurl libnss connection works?
> >
> > First I would like to know how I can use nss from libcurl. I tried to
> > set the path to my nss certificate database in my httpclient code:
> >
> > setenv("SSL_DIR", "/etc/nssdb", 1);
> > res = curl_easy_setopt(m_CURLCtx, CURLOPT_KEYPASSWD, "nss");
> >
> > is this sufficient?
>
> Could be. I would suggest to also set CURLOPT_VERBOSE to 1L and attach
> the verbose output if anything goes wrong.
ok CURLOPT_VERBOSE to 1L helped a lot thx for that hint.
No its complaining about missing libnsspem.so. Is this lib part of nss itself?
I couldn't find it there.
Or is libnsspem.so part of nss-pem package?
Best regards,
Oliver
-------------------------------------------------------------------
List admin: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2016-03-24