Re: [opensc-devel] SCA for Snow Leopard built yet?

Thu, 10 Sep 2009 11:55:32 -0700 

On Sep 4, 2009, at 9:15 AM, JP Szikora wrote:
Tokend probably needs to be 64bits. I'm surprised for the PKCS11 module... 
Can you test the PKCS11 module with this command:
/Library/OpenSC/bin/pkcs11-tool -tl --module
/Library/OpenSC/lib/opensc-pkcs11.so



Problems with OpenSC.tokend I almost expect, but the module is  
certainly a problem; it doesn't find anything on the card.  The Apple  
tokendPKCS11 module, while it fails to sign, at least sees something  
on the card (see my earlier email today in another branch of this  
thread).


Output follows:

stovetop:bin tmiller$ ./pkcs11-tool --module=../lib/opensc-pkcs11.so -L
[opensc-pkcs11] reader-pcsc.c:239:pcsc_transmit: unable to transmit
[opensc-pkcs11] apdu.c:394:do_single_transmit: unable to transmit APDU
Available slots:
Slot 0           SCM SCR 3310 00 00
  token label:   PIV_II (PIV Card Holder pin)
  token manuf:   piv_II
  token model:   PKCS#15 emulated

  token flags:   rng, login required, PIN initialized, token  
initialized

  serial num  :  00000000
Slot 1           (empty)
Slot 2           (empty)
Slot 3           (empty)
Slot 4           (empty)
Slot 5           (empty)
Slot 6           (empty)
Slot 7           (empty)
Slot 8           (empty)
Slot 9           (empty)
Slot 10          (empty)
Slot 11          (empty)
Slot 12          (empty)
Slot 13          (empty)
Slot 14          (empty)
Slot 15          (empty)
stovetop:bin tmiller$ ./pkcs11-tool --module=../lib/opensc-pkcs11.so -M
Supported mechanisms:
  SHA-1, digest
  SHA256, digest
  SHA384, digest
  SHA512, digest
  MD5, digest
  RIPEMD160, digest
  RSA-X-509, sign, verify, unwrap, decrypt
  RSA-PKCS, sign, verify, unwrap, decrypt
  SHA1-RSA-PKCS, sign, verify
  MD5-RSA-PKCS, sign, verify
  RIPEMD160-RSA-PKCS, sign, verify
  RSA-PKCS-KEY-PAIR-GEN, keypairgen
stovetop:bin tmiller$ ./pkcs11-tool --module=../lib/opensc-pkcs11.so -tl
Please enter User PIN:
C_SeedRandom() and C_GenerateRandom():
  seeding (C_SeedRandom) not supported
  ERR: C_GenerateRandom failed: CKR_DATA_INVALID (0x20)
Digests:
  all 4 digest functions seem to work
  MD5: OK
  SHA-1: OK
  RIPEMD160: OK
Signatures (currently only RSA signatures)
Signatures: no private key found in this slot
Verify (currently only for RSA):
  No private key found for testing
Key unwrap (RSA)
Decryption (RSA)
Testing card detection
Please press return to continue, x to exit: x
Testing card detection using C_WaitForSlotEvent
Please press return to continue, x to exit: x
1 errors
stovetop:bin tmiller$




Attachment:
smime.p7s

Description: S/MIME cryptographic signature


_______________________________________________
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel






















					Reply via email to