21210428 add pkcs11_inspect.1 and pklogin_finder.1 to Userland
authorJohn Beck <John.Beck@Oracle.COM>
Fri, 05 Jun 2015 13:25:50 -0700
changeset 4437 f6ae6ead79e8
parent 4436 3a75dfb8c83b
child 4438 5c17d084f39b
21210428 add pkcs11_inspect.1 and pklogin_finder.1 to Userland
components/pam_pkcs11/files/ja/pkcs11_inspect.1
components/pam_pkcs11/files/ja/pklogin_finder.1
components/pam_pkcs11/files/pkcs11_inspect.1
components/pam_pkcs11/files/pklogin_finder.1
components/pam_pkcs11/files/zh/pkcs11_inspect.1
components/pam_pkcs11/files/zh/pklogin_finder.1
components/pam_pkcs11/pam_pkcs11.p5m
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/ja/pkcs11_inspect.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,150 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pkcs11_inspect 1 "2012 年 1 月 18 日" "SunOS 5.12" "ユーザーコマンド"
+.SH 名前
+pkcs11_inspect \- 証明書の内容の出力
+.SH 形式
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pkcs11_inspect\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH 機能説明
+.sp
+.LP
+\fBpkcs11_inspect\fR は、\fBpam_pkcs11\fR ライブラリインフラストラクチャーを使用して、証明書の内容を取得および表示します。
+.sp
+.LP
+\fBpkcs11_inspect\fR は、\fBpam_pkcs11\fR(5) PAM モジュールと同じ構成ファイルおよび引数を使用します。また、定義済みのマッパーモジュール (\fBms_mapper\fR など) を読み込み、それを使用して証明書に必要なエントリ (\fBms UPN\fR エントリなど) があるかどうかを調べます。
+.sp
+.LP
+マッパーモジュールは、証明書内で適切なエントリを見つけると、それを \fBUTF-8\fR に変換して \fBstdout\fR に出力します。 
+.SH オプション
+.sp
+.LP
+サポートしているオプションは、次のとおりです。
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+構成ファイルを設定します。デフォルト値は \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR です。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+デバッグ出力を有効にします。
+.RE
+
+.sp
+.LP
+\fBpam_pkcs11\fR(5) と同じ構成ファイルが使用されるため、\fBpam_pkcs11\fR のすべてのオプションを使用できます。一部のオプションは PAM 以外の環境では意味がないため、無視されます。一部のマッパーオプション (\fBmapfile\fR、\fBignorecase\fR) も証明書の内容に影響しないため、無視されます。
+.SH 終了ステータス
+.sp
+.LP
+次の終了ステータスが返されます。
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+正常終了。 
+.sp
+\fBpkcs11_inspect\fR は、マッパーに関して見つかった証明書の内容のすべてを \fBstdout\fR に出力します。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+エラーが発生した。
+.RE
+
+.SH 使用例
+.LP
+\fB例 1 \fR\fBpkcs_inspect\fR を使用する
+.sp
+.LP
+次の例では、オプションを指定せずに \fBpkcs_inspect\fR コマンドを実行しています。
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fB例 2 \fRオプションを指定して \fBpkcs_inspect\fR を使用する
+.sp
+.LP
+次の例では、オプションを指定して \fBpkcs_inspect\fR コマンドを実行しています。
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH ファイル
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH 著者
+.sp
+.LP
+Juan Antonio Martinez (\[email protected]\fR)
+.SH 属性
+.sp
+.LP
+属性についての詳細は、マニュアルページの \fBattributes\fR(5) を参照してください。
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+属性タイプ属性値
+_
+使用条件library/security/pam/module/pam-pkcs11
+_
+インタフェースの安定性不確実
+.TE
+
+.SH 関連項目
+.sp
+.LP
+\fBpklogin_finder\fR(1), \fBattributes\fR(5), \fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 User Manual\fR, http://www.opensc-project.org/pam_pkcs11
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/ja/pklogin_finder.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,166 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pklogin_finder 1 "2012 年 1 月 18 日" "SunOS 5.12" "ユーザーコマンド"
+.SH 名前
+pklogin_finder \- 証明書のユーザーへのマッピング
+.SH 形式
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pklogin_finder\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH 機能説明
+.sp
+.LP
+\fBpklogin_finder\fR は、\fBpam_pkcs11\fR ライブラリインフラストラクチャーを使用して、PKCS#11 で規定された証明書を対話形式でユーザーにマップします。
+.sp
+.LP
+\fBpklogin_finder\fR は、\fBpam_pkcs11\fR(5) PAM モジュールと同じ構成ファイルと引数を使用します。また、定義済みのマッパーモジュールを読み込み、見つかった証明書とユーザーログイン間のマップを探し出します。 
+.SH オプション
+.sp
+.LP
+サポートしているオプションは、次のとおりです。
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+構成ファイルを設定します。 
+.sp
+デフォルト値は \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR です。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+デバッグ出力を有効にします。
+.sp
+デフォルトはデバッグなしです。
+.RE
+
+.sp
+.LP
+\fBpam_pkcs11\fR(5) と同じ構成ファイルが使用されるため、\fBpam_pkcs11\fR のすべてのオプションを使用できます。一部のオプションは PAM 以外の環境では意味がないため、無視されます。一部のマッパーオプション (\fBmapfile\fR、\fBignorecase\fR) も証明書の内容に影響しないため、無視されます。
+.SH 終了ステータス
+.sp
+.LP
+次の終了ステータスが返されます。
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+正常終了。 
+.sp
+\fBpkcs11_inspect\fR は、ログイン名を \fBstdout\fR に出力して終了します。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+エラーが発生した。
+.sp
+ユーザーマッピングエラーが見つかった。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB2\fR\fR
+.ad
+.RS 5n
+.rt  
+エラーが発生した。
+.sp
+一致するユーザーが見つからなかった。
+.RE
+
+.SH 使用例
+.LP
+\fB例 1 \fR\fBpklogin_finder\fR を使用する
+.sp
+.LP
+次の例では、オプションを指定せずに \fBpklogin_finder\fR コマンドを実行しています。
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fB例 2 \fRオプションを指定して \fBpklogin_finder\fR を使用する
+.sp
+.LP
+次の例では、オプション指定して \fBpkcs_finder\fR コマンドを実行しています。
+
+.sp
+.in +2
+.nf
+% pklogin_finder debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH ファイル
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH 著者
+.sp
+.LP
+Juan Antonio Martinez (\[email protected]\fR)
+.SH 属性
+.sp
+.LP
+属性についての詳細は、マニュアルページの \fBattributes\fR(5) を参照してください。
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+属性タイプ属性値
+_
+使用条件library/security/pam/module/pam-pkcs11
+_
+インタフェースの安定性不確実
+.TE
+
+.SH 関連項目
+.sp
+.LP
+\fBpkcs11_inspect\fR(1), \fBattributes\fR(5), \fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 User Manual\fR, http://www.opensc-project.org/pam_pkcs11
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/pkcs11_inspect.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,150 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pkcs11_inspect 1 "18 Jan 2012" "SunOS 5.12" "User Commands"
+.SH NAME
+pkcs11_inspect \- print certificate contents
+.SH SYNOPSIS
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pkcs11_inspect\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH DESCRIPTION
+.sp
+.LP
+\fBpkcs11_inspect\fR uses the \fBpam_pkcs11\fR library infrastructure to obtain the content of a certificate and display it.
+.sp
+.LP
+\fBpkcs11_inspect\fR uses the same configuration file and arguments as the \fBpam_pkcs11\fR(5) PAM module. It loads defined mapper modules, and uses them to look into the certificate for required entries, that is, \fBms_mapper\fR looks for \fBms UPN\fR entries, and so forth.
+.sp
+.LP
+When a mapper module finds a proper entry in the certificate, it converts to \fBUTF-8\fR and prints it to \fBstdout\fR. 
+.SH OPTIONS
+.sp
+.LP
+The following options are supported:
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+Set the configuration file. The default value is \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR.
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+Enable debugging output.
+.RE
+
+.sp
+.LP
+As it uses the same configuration file as \fBpam_pkcs11\fR(5), all of the \fBpam_pkcs11\fR options are available. Some of these options make no sense in a non-PAM environment, and are therefore ignored. Some mapper options (\fBmapfile\fR, \fBignorecase\fR) have no effect on certificate contents, and they are ignored as well.
+.SH EXIT STATUS
+.sp
+.LP
+The following exit values are returned:
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+Successful completion. 
+.sp
+\fBpkcs11_inspect\fR prints on \fBstdout\fR all certificate contents that are found for mappers.
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+An error occurred.
+.RE
+
+.SH EXAMPLES
+.LP
+\fBExample 1 \fRUsing \fBpkcs_inspect\fR
+.sp
+.LP
+The following example runs the \fBpkcs_inspect\fR command without any options:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fBExample 2 \fRUsing \fBpkcs_inspect\fR with Options
+.sp
+.LP
+The following example runs the \fBpkcs_inspect\fR command with options:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH FILES
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH AUTHORS
+.sp
+.LP
+Juan Antonio Martinez, \[email protected]\fR
+.SH ATTRIBUTES
+.sp
+.LP
+See \fBattributes\fR(5) for descriptions of the following attributes:
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+ATTRIBUTE TYPEATTRIBUTE VALUE
+_
+Availabilitylibrary/security/pam/module/pam-pkcs11
+_
+Interface StabilityUncommitted
+.TE
+
+.SH SEE ALSO
+.sp
+.LP
+\fBpklogin_finder\fR(1), \fBattributes\fR(5), \fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 User Manual\fR, http://www.opensc-project.org/pam_pkcs11
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/pklogin_finder.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,166 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pklogin_finder 1 "18 Jan 2012" "SunOS 5.12" "User Commands"
+.SH NAME
+pklogin_finder \- map certificates into a user
+.SH SYNOPSIS
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pklogin_finder\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH DESCRIPTION
+.sp
+.LP
+\fBpklogin_finder\fR uses the \fBpam_pkcs11\fR library infrastructure to interactively map a PKCS#11 provided certificate to a user.
+.sp
+.LP
+\fBpklogin_finder\fR uses the same configuration file and arguments than \fBpam_pkcs11\fR(5) PAM module. It loads defined mapper modules and tries to find a map between found certificates and a user login. 
+.SH OPTIONS
+.sp
+.LP
+The following options are supported:
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+Set the configuration file. 
+.sp
+The default value is \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR.
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+Enable debugging output.
+.sp
+The default is no debug.
+.RE
+
+.sp
+.LP
+As it uses the same configuration file as \fBpam_pkcs11\fR(5), all of the \fBpam_pkcs11\fR options are available. Some of these options make no sense in a non-PAM environment, and are therefore ignored. Some mapper options (\fBmapfile\fR, \fBignorecase\fR) have no effect on certificate contents, and they are ignored as well.
+.SH EXIT STATUS
+.sp
+.LP
+The following exit values are returned:
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+Successful completion. 
+.sp
+\fBpkcs11_inspect\fR prints on \fBstdout\fR the login name and exits.
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+An error occurred.
+.sp
+A user mapping error was found.
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB2\fR\fR
+.ad
+.RS 5n
+.rt  
+An error occurred.
+.sp
+No user match was found.
+.RE
+
+.SH EXAMPLES
+.LP
+\fBExample 1 \fRUsing \fBpklogin_finder\fR
+.sp
+.LP
+The following example runs the \fBpklogin_finder\fR command without any options:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fBExample 2 \fRUsing \fBpklogin_finder\fR with Options
+.sp
+.LP
+The following example runs the \fBpkcs_finder\fR command with options:
+
+.sp
+.in +2
+.nf
+% pklogin_finder debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH FILES
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH AUTHORS
+.sp
+.LP
+Juan Antonio Martinez, \[email protected]\fR
+.SH ATTRIBUTES
+.sp
+.LP
+See \fBattributes\fR(5) for descriptions of the following attributes:
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+ATTRIBUTE TYPEATTRIBUTE VALUE
+_
+Availabilitylibrary/security/pam/module/pam-pkcs11
+_
+Interface StabilityUncommitted
+.TE
+
+.SH SEE ALSO
+.sp
+.LP
+\fBpkcs11_inspect\fR(1), \fBattributes\fR(5), \fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 User Manual\fR, http://www.opensc-project.org/pam_pkcs11
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/zh/pkcs11_inspect.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,150 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pkcs11_inspect 1 "2012 年 1 月 18 日" "SunOS 5.12" "用户命令"
+.SH 名称
+pkcs11_inspect \- 打印证书内容
+.SH 用法概要
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pkcs11_inspect\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH 描述
+.sp
+.LP
+\fBpkcs11_inspect\fR 使用 \fBpam_pkcs11\fR 库基础结构获取及显示证书内容。
+.sp
+.LP
+\fBpkcs11_inspect\fR 使用与 \fBpam_pkcs11\fR(5) PAM 模块相同的配置文件及参数。它装入定义的映射器模块,并使用它们在证书中查看需要的条目,即 \fBms_mapper\fR 查找 \fBms UPN\fR 条目等。
+.sp
+.LP
+映射器模块在证书中找到正确的条目时,它会转换为 \fBUTF-8\fR 并将其打印到 \fBstdout\fR。 
+.SH 选项
+.sp
+.LP
+支持以下选项:
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+设置配置文件。缺省值是 \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+启用调试输出。
+.RE
+
+.sp
+.LP
+因为它使用与 \fBpam_pkcs11\fR(5) 相同的配置文件,所以所有 \fBpam_pkcs11\fR 选项均可用。其中某些选项在非 PAM 环境中没有意义,因此被忽略。某些映射器选项(\fBmapfile\fR、\fBignorecase\fR)对证书内容不起作用,因此也被忽略。
+.SH 退出状态
+.sp
+.LP
+将返回以下退出值:
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+成功完成。 
+.sp
+\fBpkcs11_inspect\fR 在 \fBstdout\fR 中打印为映射器找到的所有证书内容。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+出现错误。
+.RE
+
+.SH 示例
+.LP
+\fB示例 1 \fR使用 \fBpkcs_inspect\fR
+.sp
+.LP
+以下示例运行 \fBpkcs_inspect\fR 命令而没有任何选项:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fB示例 2 \fR使用具有选项的 \fBpkcs_inspect\fR
+.sp
+.LP
+以下示例运行 \fBpkcs_inspect\fR 命令时具有选项:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH 文件
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH 作者
+.sp
+.LP
+Juan Antonio Martinez,\[email protected]\fR
+.SH 属性
+.sp
+.LP
+有关下列属性的说明,请参见 \fBattributes\fR(5):
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+属性类型属性值
+_
+可用性library/security/pam/module/pam-pkcs11
+_
+接口稳定性Uncommitted(未确定)
+.TE
+
+.SH 另请参见
+.sp
+.LP
+\fBpklogin_finder\fR(1)、\fBattributes\fR(5)、\fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 用户手册\fR,http://www.opensc-project.org/pam_pkcs11
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/pam_pkcs11/files/zh/pklogin_finder.1	Fri Jun 05 13:25:50 2015 -0700
@@ -0,0 +1,166 @@
+'\" te
+.\" Portions Copyright (c) 2008, 2012, Oracle and/or its affiliates. All rights reserved.
+.\" This manual page is derived from documentation obtained from the OpenSC organization (www.opensc-project.org). This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+.TH pklogin_finder 1 "2012 年 1 月 18 日" "SunOS 5.12" "用户命令"
+.SH 名称
+pklogin_finder \- 将证书映射到用户
+.SH 用法概要
+.LP
+.nf
+\fB/usr/lib/pam_pkcs11/pklogin_finder\fR [debug] [config_file=\fIfilename\fR]
+.fi
+
+.SH 描述
+.sp
+.LP
+\fBpklogin_finder\fR 使用 \fBpam_pkcs11\fR 库基础结构以交互方式将所提供的 PKCS#11 证书映射到用户。
+.sp
+.LP
+\fBpklogin_finder\fR 使用与 \fBpam_pkcs11\fR(5) PAM 模块相同的配置文件和参数。它装入所定义的映射器模块,并尝试查找所发现的证书与用户登录之间的映射。 
+.SH 选项
+.sp
+.LP
+支持以下选项:
+.sp
+.ne 2
+.mk
+.na
+\fB\fBconfig_file=\fR\fIfileame\fR\fR
+.ad
+.RS 23n
+.rt  
+设置配置文件。 
+.sp
+缺省值是 \fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fBdebug\fR\fR
+.ad
+.RS 23n
+.rt  
+启用调试输出。
+.sp
+缺省值是不调试。
+.RE
+
+.sp
+.LP
+因为它使用与 \fBpam_pkcs11\fR(5) 相同的配置文件,所以所有 \fBpam_pkcs11\fR 选项均可用。其中某些选项在非 PAM 环境中没有意义,因此被忽略。某些映射器选项(\fBmapfile\fR、\fBignorecase\fR)对证书内容不起作用,因此也被忽略。
+.SH 退出状态
+.sp
+.LP
+将返回以下退出值:
+.sp
+.ne 2
+.mk
+.na
+\fB\fB0\fR\fR
+.ad
+.RS 5n
+.rt  
+成功完成。 
+.sp
+\fBpkcs11_inspect\fR 在 \fBstdout\fR 上输出登录名,然后退出。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB1\fR\fR
+.ad
+.RS 5n
+.rt  
+出现错误。
+.sp
+发现用户映射错误。
+.RE
+
+.sp
+.ne 2
+.mk
+.na
+\fB\fB2\fR\fR
+.ad
+.RS 5n
+.rt  
+出现错误。
+.sp
+找不到用户匹配。
+.RE
+
+.SH 示例
+.LP
+\fB示例 1 \fR使用 \fBpklogin_finder\fR
+.sp
+.LP
+以下示例在不使用任何选项的情况下运行 \fBpklogin_finder\fR 命令:
+
+.sp
+.in +2
+.nf
+% pkcs11_inspect
+.fi
+.in -2
+.sp
+
+.LP
+\fB示例 2 \fR带选项使用 \fBpklogin_finder\fR
+.sp
+.LP
+以下示例带选项使用 \fBpkcs_finder\fR 命令:
+
+.sp
+.in +2
+.nf
+% pklogin_finder debug config_file=${HOME}/.pam_pkcs11.conf
+.fi
+.in -2
+.sp
+
+.SH 文件
+.sp
+.ne 2
+.mk
+.na
+\fB\fB/etc/security/pam_pkcs11/pam_pkcs11.conf\fR\fR
+.ad
+.sp .6
+.RS 4n
+
+.RE
+
+.SH 作者
+.sp
+.LP
+Juan Antonio Martinez,\[email protected]\fR
+.SH 属性
+.sp
+.LP
+有关下列属性的说明,请参见 \fBattributes\fR(5):
+.sp
+
+.sp
+.TS
+tab() box;
+cw(2.75i) |cw(2.75i) 
+lw(2.75i) |lw(2.75i) 
+.
+属性类型属性值
+_
+可用性library/security/pam/module/pam-pkcs11
+_
+接口稳定性Uncommitted(未确定)
+.TE
+
+.SH 另请参见
+.sp
+.LP
+\fBpkcs11_inspect\fR(1)、\fBattributes\fR(5)、\fBpam_pkcs11\fR(5)
+.sp
+.LP
+\fIPAM-PKCS11 用户手册\fR,http://www.opensc-project.org/pam_pkcs11
--- a/components/pam_pkcs11/pam_pkcs11.p5m	Fri Jun 05 13:16:26 2015 -0700
+++ b/components/pam_pkcs11/pam_pkcs11.p5m	Fri Jun 05 13:25:50 2015 -0700
@@ -21,6 +21,8 @@
 # Copyright (c) 2011, 2015, Oracle and/or its affiliates. All rights reserved.
 #
 
+# Bypass the mangler for these files because they are pre-Solarified.
+<transform file path=usr/share/man/.+$ -> add mangler.bypass true >
 set name=pkg.fmri \
     value=pkg:/library/security/pam/module/[email protected]$(IPS_COMPONENT_VERSION),$(BUILD_VERSION)
 set name=pkg.summary value="The OpenSC PKCS#11 PAM Login Tools"
@@ -61,8 +63,17 @@
 file doc/mappers_api.html path=usr/share/doc/pam_pkcs11/mappers_api.html
 file doc/pam_pkcs11.html path=usr/share/doc/pam_pkcs11/pam_pkcs11.html
 file path=usr/share/locale/fr/LC_MESSAGES/pam_pkcs11.mo
-# pam_pkcs11.5 is pre-Solarified, so bypass the mangler.
-file files/pam_pkcs11.5 path=usr/share/man/man5/pam_pkcs11.5 mangler.bypass=true
+file files/ja/pkcs11_inspect.1 \
+    path=usr/share/man/ja_JP.UTF-8/man1/pkcs11_inspect.1
+file files/ja/pklogin_finder.1 \
+    path=usr/share/man/ja_JP.UTF-8/man1/pklogin_finder.1
+file files/pkcs11_inspect.1 path=usr/share/man/man1/pkcs11_inspect.1
+file files/pklogin_finder.1 path=usr/share/man/man1/pklogin_finder.1
+file files/pam_pkcs11.5 path=usr/share/man/man5/pam_pkcs11.5
+file files/zh/pkcs11_inspect.1 \
+    path=usr/share/man/zh_CN.UTF-8/man1/pkcs11_inspect.1
+file files/zh/pklogin_finder.1 \
+    path=usr/share/man/zh_CN.UTF-8/man1/pklogin_finder.1
 #
 license pam_pkcs11.license license=LGPLv2.1
 # pam_pkcs11.5 used to be in system/core-os, so we need an optional dependency