Bug#363443: libopensc2: new location for opensc-pkcs11.so breaks working libpam-p11 installation

[Daniel Kahn Gillmor]

Package: libopensc2
Version: 0.10.1-1
Severity: normal

libopensc1 had opensc-pkcs11.so in /usr/lib/pkcs11.

libopensc2 now has opensc-pkcs11.so in /usr/lib.

libpam-p11's PAM configuration requires an explicit path to the shared
library in order to function.  e.g.:

  auth required pam_p11_opensc.so /usr/lib/opensc-pkcs11.so

when i moved from libopensc1 to libopensc2 on a machine with a
functioning libpam-p11 installation, that machine's pam configuration
was silently broken by the upgrade because of the library's new
location.

the line in the changelog that describes the changed location is
probably not enough of an alert to avoid breakage on most systems.

One strategy to avoid this problem could be to provide a symlink to
the library, at least until etch is out, to provide clean sarge->etch
upgrades for anyone relying on the location of the library, followed
by an entry in NEWS during etch+1 about the deprecated move.

Another (kludgier) option would be to reassign this bug to libpam-p11,
and have it automatically search for the module in /usr/lib if it
finds itself searching in /usr/lib/pkcs11.

And of course, since pam-p11 has never been in stable, and i don't
know of any other packages that rely on the explicit location of the
library, you could also just resolve this with wontfix, if that makes
sense to you.

i figure it's worth noting the problem here so that other people can
find it if they run into trouble, even if you decide that this is a
wontfix.

Thanks again for maintaining these packages in debian.

        --dkg

-- System Information:
Debian Release: testing/unstable
  APT prefers testing
  APT policy: (700, 'testing'), (700, 'stable'), (600, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-1-686
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)

Versions of packages libopensc2 depends on:
ii  libc6                         2.3.6-7    GNU C Library: Shared libraries
ii  libltdl3                      1.5.22-4   A system independent dlopen wrappe
ii  libopenct1                    0.6.6-2    middleware framework for smart car
ii  libpcsclite1                  1.3.0-1    Middleware to access a smart card 
ii  libssl0.9.8                   0.9.8a-8   SSL shared libraries
ii  zlib1g                        1:1.2.3-11 compression library - runtime

libopensc2 recommends no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]