Le 22/09/2016 à 18:57, Timothy Pearson a écrit :
Package: libpam-pkcs11
Version: 0.6.8-4
Severity: important
This package is out of date by at least a year; since the last udate there
have been numerous fixes that allow this module to integrate properly into
modern card based environments.
Please update this package to the latest upstream GIT head.
You are right. This package is outdated.
The problem is that the upstream maintainer (me) has stopped working on it.
See https://github.com/OpenSC/pam_pkcs11
And nobody proposed to maintain it.
Another problem is that pam-pkcs#11 does not build with OpenSSL 1.1.0
See Debian bug #828487
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828487
A patch is proposed but OpenSSL removed i2c_ASN1_INTEGER() used by pam-pkcs#11.
So the build fails.
See https://github.com/OpenSC/pam_pkcs11/pull/21
I can make a new release of pam-pkcs#11 for OpenSSL 1.0.0.
But OpenSSL 1.1.0 will enter Debian unstable "soon" and pam-pkcs#11 will be
broken (removed).
If you want to see an upgraded version of pam-pkcs#11 you can work on OpenSSL
1.1.0 support.
Bye
--
Dr. Ludovic Rousseau
