[opensc-devel] Problems transfering a RSA 2048bit key to Feitian PKI card

[François Pérou]

Hello,

I am following these guidelines with FEITIAN PKI:
http://wiki.strongswan.org/projects/strongswan/wiki/SmartCards

pkcs15-init  --erase-card
pkcs15-init  --create-pkcs15 --profile pkcs15+onepin \
 --use-default-transport-key \
 --pin  --puk 11 \
 --label Test 

Is okay.

Then pkcs15-init --auth-id 1 --store-private-key myKey.pem
fails with incorrect parameter.

The RSA is a 2048bit private key in PEM format.
Any idea?

Kind regards,
François

___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel

Re: [opensc-devel] [opensc-commits] [OpenSC] #197: Entersafe driver: impossible to transfer 2048bit key to PKI card

[François Pérou]

Le vendredi 19 février 2010 à 10:51 +0100, Viktor TARASOV a écrit :
 --- src/libopensc/card-entersafe.c  (révision 4040)
 +++ src/libopensc/card-entersafe.c  (copie de travail)
 @@ -1252,7 +1252,7 @@
  switch(data-usage)
  {
  case 0x22:
 - if(rsa-modulus.len=1024)
 + if(rsa-modulus.len  256)
return
 entersafe_write_small_rsa_key(card,data-key_id,rsa);
   else
return
 entersafe_write_large_rsa_key(card,data-key_id,rsa); 

The patch works well for me. Thanks Viktor.

___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel

Re: [opensc-devel] entersafe: can this patch be commited?

[François Pérou]

Le vendredi 19 février 2010 à 18:39 +0200, Martin Paljak a écrit :
 If it works - probably not. I've only used 1024 keys with epass3k.
I can confirm it works with Feitian PKI.

___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel

Re: [opensc-devel] Changes to opensc-project(.org) (Re: opensc-commit spam)

[François Pérou]

Le mardi 09 mars 2010 à 11:01 +0200, Martin Paljak a écrit :
 Ideas, feedback?

* Add a TXT spf anti-spam key on opensc-project.org
to avoid people spamming using OpenSC discussions

dig -t TXT opensc-project.org
returns no value.

This will avoid people forging false emails.
This may be really urgent and real problem nowadays.

* Register Honey***REMOVE***Pot project and trap spam robots:
http://www.projeREMOVE***cthoneypot.org/

* Register Spam***REMOVE***cop and make reports to block spammers
accounts:
http://www.spamc***REMOVEop.net
I make a report everytime I receive a spam anyway.

* Use DNSBL on your email server.

Feel free to contact me privately if you need more info.

Kind regards,
François Pérou

___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel

Re: [opensc-devel] Changes to opensc-project(.org) (Re: opensc-commit spam)

[François Pérou]

Le mardi 09 mars 2010 à 11:18 +0200, Martin Paljak a écrit :
 This is a bit out of scope of the original goal (which is structural
 changes to make development and usage of OpenSC simpler and easier)

Sorry, I though you we discussing about spam.

Kind regards,
François Pérou
http://www.gooze.eu

___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel