Dear all, The ePass2003 has been shipped for more than a week now and we would like to warn you about a bug:
When initializing the ePass2003 with public officer PIN, the key becomes
unusable:
$ pkcs15-init -E
$ pkcs15-init -v -C --pin 1234 --puk 123456 --so-pin 123456 --so-puk
12345678
Failed to create PKCS #15 meta structure: Security status not satisfied
The default permissions should be 0x90(the lowest privilege). But the
problem key's permissions is 0x9F(the highest authority). Feitian R&D
team is working on this issue.
On the converse, the onepin profile seems to work well:
$ pkcs15-init -E
$ pkcs15-init -v -C -p pkcs15+onepin --pin 1234 --puk 123456
Until further notice, don't initialize an ePass2003 with SO-PIN.
Manual was updated accordingly until we fix this bug.
Kind regards and merry Chistmas,
--
Jean-Michel Pouré - Gooze - http://www.gooze.eu
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
