Am Donnerstag, 29. Oktober 2009 schrieb Andreas Jellinghaus: > a few questions about this: > ========== libseacap11.so: Read Data (no login) > ========== ========== libseacap11.so: Create > Certificate/Key ========== ========== libseacap11.so: > Read Data (with login) ========== ========== > libseacap11.so: Delete Certificate/Key ========== > ========== opensc-pkcs11.so: Read Data (no login) > ========== ========== opensc-pkcs11.so: Create > Certificate/Key ========== > > so you also want to create keys on the card?
Yes, a C_CreateObject for the Certificate and private key. Means: Import a PKCS#12 file to the SmartCard. > So far I was only aware of your plans to: > * unlock cards fresh from the CA (no log file for that) No Problem for that - direct APDU-calls. > * store certificates (part of the log I hope) What's the difference between "store" and "create" certificates? For me, that's the same. Yes, in the log, labeled "create". > * delete certificates? (part of the log I hope) > * store private data objects (no log - but a "later" > issue, right?) Yes to all. > ok, will have a look and see if I can find out what is > wrong. Yes, thank's. Any results so far? > btw: an opensc debug log (level 6) for "Create > Certifikate/Key" would be nice too. > maybe best as sync'ed logs Yes, sorry, that's the reason for the delay of this answer, I was frequently interrupted by other tasks dropping in ... Unfortunately: Now that I have the time, it does not work anymore! Perhaps it has something to do with my upgrade to Ubuntu 09.10 Karmic Koala? The OpenSC module (onepin-) opensc-pkcs11.so does no more show the real slots, but about 16 useless "Virtual Slots"! What's the problem? > create all log files from that single run - opensc, > pkcs11-spy, pcscd, your tool), so we can switch back and > forth to see what is wrong. > > read data works as far as I know, so please no log files > for that. (or what is the issue with that?) OpenSC does not get the full information and data differs to what's reported by the libsiecap11.so, so that's the reason for that trace. But it's a less important issue. Thanks, regards Marc Wäckerlin -- SwissSign AG > extreme security & identity Pfingstweidstrasse 60b > CH - 8080 Zürich Tel: +41-58/386'24'93 > Mobil: +41-79/721'23'24 marc.waecker...@tech.swisssign.com > http://swisssign.com Secure Mailbox https://incamail.post.ch/ marc.waecker...@swisssign.com SwissSign, ein Unternehmen der Schweizerischen Post, schützt und beschleunigt Ihre Geschäftsprozesse mit einfachen Lösungen für eindeutige Identifikation, digitale Signatur und sichere Kommunikation E-Mail Richtlinien: http://marc.waeckerlin.org Bitte korrekt zitieren: mit '>' am Zeilenanfang _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
