Hello Viktor, even not completed yet it's quite obvious what you want achieve with r5092 [1]. Its purpose is the selection of specific algorithms for the cryptographic operations sign and decipher. Tag 0x80 in the data field of MSE command and specific to each private key.
That intention is novel of cause, because it's an enabler for cards with mixed key sets. In example RSA, ECC, GOST (3DES and AES) on a single card without heavy workarounds in the drivers itself. That's possible because selection of algorithms is done in a common place namely pkcs15-sec.c controlled by some PKCS#15 data structures. It should be noted that the right mechanisms are in place since nine years now [2] and that a completely working patch was presented some months ago [3]. That patch was fully PKCS#15 conform and capable of serving all drivers at once. In example the iso7816 driver was instantly passing tag 0x80 to the card without any modifications to the driver itself. So, my solution was presented for public review [3]. Please do the same and provide a similar patch [4]. And keep in mind that it is of general interest because lots of drivers can take advantage of it. Regards Andre [1] http://www.opensc-project.org/opensc/changeset/5092 [2] http://www.opensc-project.org/opensc/browser/trunk/src/libopensc/iso7816.c?rev=177#L566 [3] http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014618.html [4] http://www.opensc-project.org/opensc/wiki/DevelopmentPolicy#Mailinglist _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
