[opensc-devel] Issue during delete object with Athena Cards

Tue, 26 Jul 2011 00:55:26 -0700 

Hello all,

We seem to have a regression issue between OpenSC 12.1 & OpenSC 12.0 with the 
Athena ASEPCOS card. The issue is still there in OpenSC 12.2.

When I try to delete an object on the card using PKCS15-init, it fails every 
time saying the security status is not satisfied.

It's quite easy to reproduce. I have a card with 2 PIN & 2 PUK and with the 
following objects:

Private RSA Key [Private Key]
        Object Flags   : [0x3], private, modifiable
        Usage          : [0x2C], sign, signRecover, unwrap
        Access Flags   : [0x0]
        ModLength      : 1024
        Key ref        : 0 (0x0)
        Native         : yes
        Path           : 3f0050150100
        Auth ID        : 01
        ID             : 46

X.509 Certificate [/DC=pmtdom/DC=local/L=MDS/OU=PMT/CN=user1]
        Object Flags   : [0x2], modifiable
        Authority      : no
        Path           : 3f0050153104
        ID             : 46
        Encoded serial : 02 0A 6173874100000000005C

Then I try to remove the certificate using the following command line:
pkcs15-init -D cert --id 46 --so-pin 12345678 --pin 12345678

And get the following error:
Failed to delete object 0: Security status not satisfied
Deleted 0 objects
Failed to delete object(s): Security status not satisfied

As I said, it works well with OpenSC 12.0...

Thanks for your help,

William
________________________________

Ce message et les pi?ces jointes sont confidentiels et r?serv?s ? l'usage 
exclusif de ses destinataires. Il peut ?galement ?tre prot?g? par le secret 
professionnel. Si vous recevez ce message par erreur, merci d'en avertir 
imm?diatement l'exp?diteur et de le d?truire. L'int?grit? du message ne pouvant 
?tre assur?e sur Internet, la responsabilit? du groupe Atos ne pourra ?tre 
engag?e quant au contenu de ce message. Bien que les meilleurs efforts soient 
faits pour maintenir cette transmission exempte de tout virus, l'exp?diteur ne 
donne aucune garantie ? cet ?gard et sa responsabilit? ne saurait ?tre engag?e 
pour tout dommage r?sultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for 
the addressee; it may also be privileged. If you receive this e-mail in error, 
please notify the sender immediately and destroy it. As its integrity cannot be 
secured on the Internet, the Atos group liability cannot be triggered for the 
message content. Although the sender endeavors to maintain a computer 
virus-free network, the sender does not warrant that this transmission is 
virus-free and will not be liable for any damages resulting from any virus 
transmitted.

_______________________________________________
opensc-devel mailing list
[email protected]
http://www.opensc-project.org/mailman/listinfo/opensc-devel

Reply via email to