Hello, currently, when 'composed' mechanisms (like CKM_SHA1_RSA_PKCS) used, the OpenSC PKCS#11 module 'helps' the cards with the first algorithm and calculates itself the hash.
Not all the cards are ready to accept such kindness of middleware. For example IAS/ECC card, when calculating digital signature, needs to perform itself the final stage of hash. For that reason I propose to introduce a new handler for the PKCS#15 framework object (private key), that will be called by the handlers of mechanisms (signature and decryption) to get know if card can itself perform totally the asked mechanism. https://github.com/viktorTarasov/OpenSC/commit/7b2cf6f1d8010552350ff51ed31903e4deeef3db Kind regards, Viktor. _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
