Jean-Michel Pouré - GOOZE wrote: > > For the sake of purity, I don^t think that --list-public-keys should > > display a fake public key object, which does NOT exist on the card in > > relevant PKCS#15 structures. but patches for documentation are most > > welcome. > > I understand your point of view. > > 1) IMHO the public key really exists on card as soon as it derives from > the private key. This is the duality of asymmetric key encryption.
Your HO doesn't trump facts. :) pkcs15-tool is a tool that works with PKCS#15 data. If no public key exists within PKCS#15 then pkcs15-tool must not display a public key. (Again) I think the answer is to create a new, slightly higher-level tool that does what you and users want, and hides some of the PKCS#15 details. //Peter _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel