Valid values are:
<dl><dd>'''configDir''' - Configuration Directory where NSS can store persistant state information (typically databases).</dl? <dd>'''secmod''' - Name of the secmod database (default = secmod.db).</dl> <dd>'''certPrefix''' - Prefix for the cert database.</dl> <dd>'''keyPrefix''' - Prefix for the key database.</dl> <dd>'''minPWLen''' - Minimum password length in bytes.</dl> <dd>'''manufacturerID''' - Override the default manufactureID value for the module returned in the CK_INFO, CK_SLOT_INFO, and CK_TOKEN_INFO structures with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''libraryDescription''' - Override the default libraryDescription value for the module returned in the CK_INFO structure with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''cryptoTokenDescription''' - Override the default label value for the internal crypto token returned in the CK_TOKEN_INFO structure with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''dbTokenDescription''' - Override the default label value for the internal DB token returned in the CK_TOKEN_INFO structure with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''FIPSTokenDescription''' - Override the default label value for the internal FIPS token returned in the CK_TOKEN_INFO structure with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''cryptoSlotDescription''' - Override the default slotDescription value for the internal crypto token returned in the CK_SLOT_INFO structure with an internationalize string (UTF8). This value will be truncated at 64 bytes (no NULL, partial UTF8 characters dropped). <dd>'''dbSlotDescription''' - Override the default slotDescription value for the internal DB token returned in the CK_SLOT_INFO structure with an internationalize string (UTF8). This value will be truncated at 64 bytes (no NULL, partial UTF8 characters dropped). <dd>'''FIPSSlotDescription''' - Override the default slotDecription value for the internal FIPS token returned in the CK_SLOT_INFO structure with an internationalize string (UTF8). This value will be truncated at 64 bytes (no NULL, partial UTF8 characters dropped). <dd>'''flags''' - comma separated list of flag values, parsed case-insensitive.
Valid flags are:
<dl><dd>'''noModDB''' - don't open SECMOD.db and try to supply the strings. The MOD DB function is not through standard PKCS #11 interfaces. <dd>'''readOnly''' - Databases should be opened read only. <dd>'''noCertDB''' - Don't try to open a certificate database. <dd>'''noKeyDB''' - Don't try to open a key database. <dd>'''forceOpen''' - Don't fail to initialize the token if the databases could not be opened. <dd>'''passwordRequired''' - zero length passwords are not acceptable (valid only if there is a keyDB). <dd>'''optimizeSpace''' - allocate smaller hash tables and lock tables.When this flag is not specified, Softoken will allocate large tables to prevent lock contention. <dd>'''tokens''' - configure 'tokens' by hand. The tokens parameter specifies a space sparated list of slotIDS, each of which specify their own set of parameters affecting that token. Typically 'tokens' would not be specified unless additional databases are to be opened as additional tokens. If tokens is specified, then all tokens (including the default tokens) need to be specified. If tokens is not specified, then softoken would default to the following specs: In non-FIPS mode: tokens=<0x01=[configDir=''configDir'' tokenDescription=''cryptoTokenDescription'' slotDescription=''cryptoSlotDescription'' flags=noCertDB,noKeyDB,''optimizeSpace''] 0x02=[configDir=''configDir'' tokenDescription=''dbTokenDescription'' slotDescription=''dbSlotDescription'' certPrefix=''certPrefix'' keyPrefix=''keyPrefix'' flags=''flags'' minPWLen=''minPWLen'']> In FIPS mode: tokens=<0x03=[configDir=''configDir'' tokenDescription=''FIPSTokenDescription'' slotDescription=''FIPSSlotDescription'' certPrefix=''certPrefix'' keyPrefix=''keyPrefix'' flags=''flags'' minPWLen=''minPWLen'']> where ''configDir'', ''cryptoTokenDescription'', ''cryptoSlotDescription'', ''dbTokenDescription'', ''dbSlotDescription'', ''FIPSTokenDescription'', ''FIPSSlotDescription'', ''optimizeSpace'', ''certPrefix'', ''keyPrefix'', ''flags'', and ''minPWLen'' are copied from the parameters above. Parameters: <dl><dd>'''configDir''' - The location of the databases for this token. If configDir is not specified, the default configDir specified earlier will be used. <dd>'''certPrefix''' - Cert prefix for this token. <dd>'''keyPrefix''' - Prefix for the key database for this token. <dd>'''tokenDescription''' - The label value for this token returned in the CK_TOKEN_INFO structure with an internationalize string (UTF8). This value will be truncated at 32 bytes (no NULL, partial UTF8 characters dropped). <dd>'''slotDescription''' - The slotDescription value for this token returned in the CK_SLOT_INFO structure with an internationalize string (UTF8). This value will be truncated at 64 bytes (no NULL, partial UTF8 characters dropped). <dd>'''minPWLen''' - minimum password length for this token. <dd>'''flags''' - comma separated list of flag values, parsed case-insensitive. Valid flags are: <dl><dd>'''readOnly''' - Databases should be opened read only. <dd>'''noCertDB''' - Don't try to open a certificate database. <dd>'''noKeyDB''' - Don't try to open a key database. <dd>'''forceOpen''' - Don't fail to initialize the token if the databases could not be opened. <dd>'''passwordRequired''' - zero length passwords are not acceptable (valid only if there is a keyDB). <dd>'''optimizeSpace''' - allocate smaller hash tables and lock tables.When this flag is not specified, Softoken will allocate large tables to prevent lock contention.</dl></dl></dl>
