Re: [opensc-devel] Upgrading Trac on opensc-project.org
On Wed, Feb 27, 2008 at 8:48 PM, Martin Paljak <[EMAIL PROTECTED]> wrote: > We're currently running trac 0.10.3. The latest Trac is 0.11b1 which > (trunk before that) I've run successfully for several projects for > several months. Maybe it is time to upgrade Trac? The version 0.11b1 is a beta version. It is not declared stable yet. AFAIK Andreas is using Debian to host trac. A Debian bug [1] is open about trac 0.11 version. > From: <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: When ... it is released ... > Date: Fri, 08 Feb 2008 23:32:23 + > > 0.11 is a serious open case ... > > 0.11 will apear in debian as soon as it is released or previously in > experimental, maybe. > > it can be installed at the same time that 0.10.x, if it is compiled to do > that. > > 0.11 is a big step for trac and it has hudge set of changes, so it needs > time to be done and tested, so it can be released. So a Debian trac package may not happen before some time and efforts are invested in packaging this new version. > Also, maybe we could > use OpenID for authentication ?:) I have no comment on this. That would be my first time... with OpenID :-) Bye [1] http://bugs.debian.org/463201 -- Dr. Ludovic Rousseau ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] Upgrading Trac on opensc-project.org
On Feb 28, 2008, at 10:00 AM, Ludovic Rousseau wrote: > The version 0.11b1 is a beta version. It is not declared stable yet. > > AFAIK Andreas is using Debian to host trac. A Debian bug [1] is open > about trac 0.11 version. True, but it has several enhancements over 0.10 and as said, I've been running trac/trunk and 11b1 since early last year without problems on several sites for several projects. It works well enough, at least allows to have consistent logins :) The way I propose to install it, the way I've done it and I'm quite happy with: 1. sudo apt-get install python (and database drivers) 2. sudo apt-get install setuptools 3. sudo easy_install virtualenv 4. virtualenv /home/projects/python 5. source /home/projects/python/bin/activate 6. easy_install Trac 7. deploy with mod_wsgi, processes have user rights m. -- Martin Paljak http://martin.paljak.pri.ee +3725156495 ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
[opensc-devel] opensc-project.org: trac updated to 0.11b1
I updated trac - the software we use for the wiki, ticket system, svn browser etc. for each project - to a new version: 0.11b1. for this I updated also several other python dependencies. I also had to update the wiki (trac pages) and I had to update the database structure. And while add it, I moved the database from sqlite to postgresql and changed some config options for apache. the pages I tested worked fine. Please give it a try and let me know if it works for you. the web server as whole seems to be as slow as ever, not sure how I can tune it to work faster. any ideas are very welcome. Please post any problem you find either on this list or reply to me directly. Thanks for your help! Regards, Andreas ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] opensc-project.org: trac updated to 0.11b1
On Thu, Feb 28, 2008 at 2:02 PM, Andreas Jellinghaus <[EMAIL PROTECTED]> wrote: > Please post any problem you find either on this list or reply to me directly. I can't go to do any of the admin tasks. If I click on the "Admin" button I have a page: Error: Not Found No administration panels available And I see the "Login" button instead of "logged in as ludovic". My admin account is: ludovic Bye -- Dr. Ludovic Rousseau ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] opensc-project.org: trac updated to 0.11b1
Plugins and components for 0.11 are different than 0.10. 0.11 contains the webadmin that used to be a plugin before. Configurations have to be updated as well probably. What do you think about OpenID ? m. On Feb 28, 2008, at 3:33 PM, Ludovic Rousseau wrote: > On Thu, Feb 28, 2008 at 2:02 PM, Andreas Jellinghaus <[EMAIL PROTECTED] > > wrote: >> Please post any problem you find either on this list or reply to me >> directly. > > I can't go to do any of the admin tasks. > If I click on the "Admin" button I have a page: > Error: Not Found > > No administration panels available > > And I see the "Login" button instead of "logged in as ludovic". > > My admin account is: ludovic > > Bye > > -- > Dr. Ludovic Rousseau > ___ > opensc-devel mailing list > opensc-devel@lists.opensc-project.org > http://www.opensc-project.org/mailman/listinfo/opensc-devel -- Martin Paljak http://martin.paljak.pri.ee +3725156495 ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] [TEST REQUEST] OpenSC New Build System
Hi Alon,
success!
I have
- reinstalled msys 1.0.11 + mingw 5.1.3
- added the openssl, zlib and libtool packages from the mingw.org site
- exported all required env vars ({OPENSSL,LTDL,ZLIB}_{CFLAGS,LIBS}
- ran ./configure + make
and the thing just built :-)
The resulting pkcs11-tool.exe can even see my Aladdin eToken (with
Aladdin driver software) with only one snag (which is not opensc -
related) : it seems that the unloading of modules is broken (again) in
this version of libtool , which causes pkcs11-tool to take a *very* long
time to terminate.
So all in all, success!
cheers,
JJK
Alon Bar-Lev wrote:
> 1.libtool
>
> How did you build libtool?
> Have you added LTLIB_CFLAGS="-I<>" LTLIB_LIBS="-L<> -lltdl" to configure?
>
> 2. mingw runtime should have gettimeofday... Please tell me if it does
> not work after your update.
>
> Thanks!
>
> On 2/25/08, Jan Just Keijser <[EMAIL PROTECTED]> wrote:
>
>> Hi Alon,
>>
>> I already did and continued; turns out that my LIBTOOL setup was/is
>> still not OK (lots of missing -lltdl lines in the makefiles). After
>> correcting that one the build continued until pkcs11-global.c, where it
>> ran into problems with the gettimeofday function that MingW does not
>> seem to support. The compile error was something about an unknown struct
>> size:
>> struct _timeb time_buf;
>>
>> At that point I decided to scratch my entire Mingw/Msys setup. I will
>> re-install MingW+msys tools tomorrow and continue.
>>
>>
>> cheers,
>>
>> JJK
>>
>> Alon Bar-Lev wrote:
>> > Hello,
>> >
>> > Thank you for testing!
>> >
>> > The pkcs15-piv.c should not have included openssl... I guess this is
>> > leftover from some other work.
>> > Can you please try to remove these includes and continue building?
>> >
>> > Alon.
>> >
>> > On 2/25/08, Jan Just Keijser <[EMAIL PROTECTED]> wrote:
>> >
>> >> Hi Alon,
>> >>
>> >> finally had some time to test your new build system on my Windows XP box
>> >> with both Cygwin and MingW installed.
>> >>
>> >> ./configure + make ran fine on cygwin; the resulting pkcs11-tool (which
>> >> is all I really use) was working fine
>> >> ./configure ran on MingW after I added libtool to my MingW installation.
>> >> make did *not* run on MingW because openssl was missing:
>> >>
>> >> /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I.
>> >> -I../.. -I../../src/include -I../../src/common -DWIN32_LEAN_AND_MEAN
>> >> -L/usr/local/include -fno-strict-aliasing -g -O2 -MT pkcs15-piv.lo -MD
>> >> -MP -MF .deps/pkcs15-piv.Tpo -c -o pkcs15-piv.lo pkcs15-piv.c
>> >> gcc -DHAVE_CONFIG_H -I. -I../.. -I../../src/include -I../../src/common
>> >> -DWIN32_LEAN_AND_MEAN -L/usr/local/include -fno-strict-aliasing -g -O2
>> >> -MT pkcs15-piv.lo -MD -MP -MF .deps/pkcs15-piv.Tpo -c pkcs15-piv.c
>> >> -DDLL_EXPORT -DPIC -o .libs/pkcs15-piv.o
>> >> pkcs15-piv.c:34:25: openssl/bio.h: No such file or directory
>> >> pkcs15-piv.c:35:25: openssl/rsa.h: No such file or directory
>> >> pkcs15-piv.c:36:25: openssl/pem.h: No such file or directory
>> >>
>> >> So building without openssl support does NOT seem to be supported (which
>> >> is fine, I guess, it's just that my very minimalistic MingW install has
>> >> no support for it, nor for readline or zlib).
>> >>
>> >>
>> >> cheers,
>> >>
>> >> JJK
>> >>
>> >>
>> >>
>> >> Alon Bar-Lev wrote:
>> >>
>> >>
>> >>> Hi!
>> >>>
>> >> > Waiting for your input :)
>> >> > Alon
>> >> >
>> >> > On 2/14/08, Alon Bar-Lev <[EMAIL PROTECTED]> wrote:
>> >> >
>> >> >> On Thu, Feb 14, 2008 at 7:01 PM, Martin Paljak <[EMAIL PROTECTED]>
>> wrote:
>> >> >> > > 4. openct, pcsc and nsplugins features are disabled by default.
>> >> >> > I don't think it's a good idea to by default disable most used
>> reader
>> >> >> > interfaces by default, as I'd expect most software to behave
>> nicely
>> >> >> > after a ./configure; make; make install cycle. Have not tried it
>> on
>> >> >> > Linux, but we might include some special handling code for Mac
>> as Mac
>> >> >> > is a pretty defined platform. a ./configure; make; make install
>> cycle
>> >> >> > could work on osx as well flawlessly.
>> >> >>
>> >> >>
>> >> >> I don't like packages that enable optional features automatically.
>> >> >> Users/packagers should choose what they wish and enable dependency
>> explicitly.
>> >> >> In this case, nsplugin seldom used anyway, and there is not much
>> sense in
>> >> >> enabling both pcsc and openct.
>> >> >> And if the user has for some strange reason openct installed, does
>> it mean
>> >> >> the result of OpenSC compilation should depend on it?
>> >> >>
>> >> >> I truly think users are able to choose, and I am sure distro
>> packagers will
>> >> >> enable the features by the dependency of their packages.
>> >> >>
>> >> >>
>> >> >> > > 9. Add export files to each library in order to expor
Re: [opensc-devel] [TEST REQUEST] OpenSC New Build System
Great to hear
Thank you for testing.
On 2/28/08, Jan Just Keijser <[EMAIL PROTECTED]> wrote:
> Hi Alon,
>
> success!
> I have
> - reinstalled msys 1.0.11 + mingw 5.1.3
> - added the openssl, zlib and libtool packages from the mingw.org site
> - exported all required env vars ({OPENSSL,LTDL,ZLIB}_{CFLAGS,LIBS}
> - ran ./configure + make
> and the thing just built :-)
>
> The resulting pkcs11-tool.exe can even see my Aladdin eToken (with
> Aladdin driver software) with only one snag (which is not opensc -
> related) : it seems that the unloading of modules is broken (again) in
> this version of libtool , which causes pkcs11-tool to take a *very* long
> time to terminate.
>
> So all in all, success!
>
>
> cheers,
>
> JJK
>
> Alon Bar-Lev wrote:
> > 1.libtool
> >
> > How did you build libtool?
> > Have you added LTLIB_CFLAGS="-I<>" LTLIB_LIBS="-L<> -lltdl" to configure?
> >
> > 2. mingw runtime should have gettimeofday... Please tell me if it does
> > not work after your update.
> >
> > Thanks!
> >
> > On 2/25/08, Jan Just Keijser <[EMAIL PROTECTED]> wrote:
> >
> >> Hi Alon,
> >>
> >> I already did and continued; turns out that my LIBTOOL setup was/is
> >> still not OK (lots of missing -lltdl lines in the makefiles). After
> >> correcting that one the build continued until pkcs11-global.c, where it
> >> ran into problems with the gettimeofday function that MingW does not
> >> seem to support. The compile error was something about an unknown struct
> >> size:
> >> struct _timeb time_buf;
> >>
> >> At that point I decided to scratch my entire Mingw/Msys setup. I will
> >> re-install MingW+msys tools tomorrow and continue.
> >>
> >>
> >> cheers,
> >>
> >> JJK
> >>
> >> Alon Bar-Lev wrote:
> >> > Hello,
> >> >
> >> > Thank you for testing!
> >> >
> >> > The pkcs15-piv.c should not have included openssl... I guess this is
> >> > leftover from some other work.
> >> > Can you please try to remove these includes and continue building?
> >> >
> >> > Alon.
> >> >
> >> > On 2/25/08, Jan Just Keijser <[EMAIL PROTECTED]> wrote:
> >> >
> >> >> Hi Alon,
> >> >>
> >> >> finally had some time to test your new build system on my Windows XP
> box
> >> >> with both Cygwin and MingW installed.
> >> >>
> >> >> ./configure + make ran fine on cygwin; the resulting pkcs11-tool
> (which
> >> >> is all I really use) was working fine
> >> >> ./configure ran on MingW after I added libtool to my MingW
> installation.
> >> >> make did *not* run on MingW because openssl was missing:
> >> >>
> >> >> /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H
> -I.
> >> >> -I../.. -I../../src/include -I../../src/common -DWIN32_LEAN_AND_MEAN
> >> >> -L/usr/local/include -fno-strict-aliasing -g -O2 -MT pkcs15-piv.lo
> -MD
> >> >> -MP -MF .deps/pkcs15-piv.Tpo -c -o pkcs15-piv.lo pkcs15-piv.c
> >> >> gcc -DHAVE_CONFIG_H -I. -I../.. -I../../src/include
> -I../../src/common
> >> >> -DWIN32_LEAN_AND_MEAN -L/usr/local/include -fno-strict-aliasing -g
> -O2
> >> >> -MT pkcs15-piv.lo -MD -MP -MF .deps/pkcs15-piv.Tpo -c pkcs15-piv.c
> >> >> -DDLL_EXPORT -DPIC -o .libs/pkcs15-piv.o
> >> >> pkcs15-piv.c:34:25: openssl/bio.h: No such file or directory
> >> >> pkcs15-piv.c:35:25: openssl/rsa.h: No such file or directory
> >> >> pkcs15-piv.c:36:25: openssl/pem.h: No such file or directory
> >> >>
> >> >> So building without openssl support does NOT seem to be supported
> (which
> >> >> is fine, I guess, it's just that my very minimalistic MingW install
> has
> >> >> no support for it, nor for readline or zlib).
> >> >>
> >> >>
> >> >> cheers,
> >> >>
> >> >> JJK
> >> >>
> >> >>
> >> >>
> >> >> Alon Bar-Lev wrote:
> >> >>
> >> >>
> >> >>> Hi!
> >> >>>
> >> >> > Waiting for your input :)
> >> >> > Alon
> >> >> >
> >> >> > On 2/14/08, Alon Bar-Lev <[EMAIL PROTECTED]> wrote:
> >> >> >
> >> >> >> On Thu, Feb 14, 2008 at 7:01 PM, Martin Paljak <[EMAIL
> PROTECTED]> wrote:
> >> >> >> > > 4. openct, pcsc and nsplugins features are disabled by
> default.
> >> >> >> > I don't think it's a good idea to by default disable most
> used reader
> >> >> >> > interfaces by default, as I'd expect most software to behave
> nicely
> >> >> >> > after a ./configure; make; make install cycle. Have not tried
> it on
> >> >> >> > Linux, but we might include some special handling code for
> Mac as Mac
> >> >> >> > is a pretty defined platform. a ./configure; make; make
> install cycle
> >> >> >> > could work on osx as well flawlessly.
> >> >> >>
> >> >> >>
> >> >> >> I don't like packages that enable optional features automatically.
> >> >> >> Users/packagers should choose what they wish and enable
> dependency explicitly.
> >> >> >> In this case, nsplugin seldom used anyway, and there is not much
> sense
[opensc-devel] scb 0.10 broken
Hi, I got a batch of new axalto E Gate 32K cards and USB Shell token V2 adapters. I tried also the old e-gate usb readers, the same result. First I tried to initialize the cards in ubuntu 7.10 and found out that openssl pkcs11 engine integration does not work. Then I tried the same on windows. I get the card initialized (after fixing the openssl.cnf I get past the library loading problems), but I get hit by "security status not satisfied". The same "security status not satisfied" occurs with pkcs11-tool. Has anyone got this working or know where the problem might be? Best Regards, JARI HEIKKINEN MODIRUM MDPAY Mobile +358 40 555 0125 Fax +358 9 251 66100 Tel. +358 9 25123737, +372 644 4205, +1 650 557 2064, +44 20 8144 1540 , +852 8199 0064 skype: jari_heikkinen Mannerheimintie 12 B, FIN-00100 Helsinki, FINLAND [EMAIL PROTECTED] www.modirum.com MDpay - the leading European 3-D Secure software "Millions of cardholders, thousands of merchants and hundreds of card issuers utilize MDpay software" C:\Program Files\Smart card bundle>pkcs15-init -E -C -P --pin 12341234 --puk 098 70987 -a 01 --no-so-pin -T C:\Program Files\Smart card bundle>pkcs15-init -G rsa/2048 -a 01 --pin 12341234 -u sign,decrypt C:\Program Files\Smart card bundle>pkcs15-tool --list-pins --list-public-keys -k -c -C Private RSA Key [Private Key] Com. Flags : 3 Usage : [0x22E], decrypt, sign, signRecover, unwrap, nonRepudiatio n Access Flags: [0x1D], sensitive, alwaysSensitive, neverExtract, local ModLength : 2048 Key ref : 0 Native : yes Path: 3f0050154b0130450012 Auth ID : 01 ID : 45 Public RSA Key [Public Key] Com. Flags : 2 Usage : [0x2D1], encrypt, wrap, verify, verifyRecover, nonRepudiat ion Access Flags: [0x0] ModLength : 2048 Key ref : 0 Native : no Path: 3f0050154445 Auth ID : ID : 45 PIN [] Com. Flags: 0x3 ID: 01 Flags : [0x32], local, initialized, needs-padding Length: min_len:4, max_len:8, stored_len:8 Pad char : 0x00 Reference : 1 Type : ascii-numeric Path : 3f0050154b01 C:\Program Files\Smart card bundle>openssl req -engine pkcs11 -new -key id_45 -k eyform engine -out req.pem -config my_openssl.cnf engine "pkcs11" set. PKCS#11 token PIN: You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. - Country Name (2 letter code) [SE]:FI State or Province Name (full name) [Default_Here]: Locality Name (eg, city) [Default_Here]: Organization Name (eg, company) [Default_Here]: Organizational Unit Name (eg, section) []: Common Name (eg, YOUR name) []:jari Email Address [Default_Here]: Security status not satisfied [opensc-pkcs11] card-flex.c:1055:cryptoflex_compute_signature: Card returned err or: Security status not satisfied [opensc-pkcs11] sec.c:53:sc_compute_signature: returning with: Security status n ot satisfied [opensc-pkcs11] pkcs15-sec.c:273:sc_pkcs15_compute_signature: sc_compute_signatu re() failed: Security status not satisfied C:\Program Files\Smart card bundle>type my_openssl.cnf openssl_conf = openssl_def [openssl_def] engines = engines [engines] pkcs11 = pkcs11_def [pkcs11_def] engine_id = pkcs11 dynamic_path = C:/Program Files/Smart card bundle/engine_pkcs11.dll MODULE_PATH = C:/Program Files/Smart card bundle/opensc-pkcs11.dll init = 0 [ca] default_ca = sc_ca [sc_ca] private_key = id_45 certificate = ca.crt# point to Base-64 encoded X.509 certificate taken off y our smart card ca_dir = c:/my_ca new_certs_dir = $ca_dir/newcerts database= $ca_dir/index.txt certs = $ca_dir/certs crl_dir = $ca_dir/crl serial = $ca_dir/serial RANDFILE= $ca_dir/private/.rand default_md = sha1 policy = policy_match [ policy_match ] countryName = match stateOrProvinceName = match organizationName= match organizationalUnitName = optional commonName = supplied emailAddress= optional [req] distinguished_name = req_distinguished_name [ req_distinguished_name ] countryName = Country Name (2 letter code) countryName_default = SE countryName_min = 2 countryName_max = 2 stateOrProvinceName = State or Province Name (full name) stateOrProvinceName_default = Default_Here localityName= Locality Name (eg, city)
Re: [opensc-devel] scb 0.10 broken
Am Donnerstag, 28. Februar 2008 17:44:52 schrieb [EMAIL PROTECTED]: > The same "security status not satisfied" occurs with pkcs11-tool. edit lock_login parameter. some tools break if it is true, others break if it is false. there is no perfect setting :( Regards, Andreas ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] scb 0.10 broken
On Feb 28, 2008, at 9:33 PM, Andreas Jellinghaus wrote: > Am Donnerstag, 28. Februar 2008 17:44:52 schrieb [EMAIL PROTECTED] > : >> The same "security status not satisfied" occurs with pkcs11-tool. > > edit lock_login parameter. some tools break if it is true, others > break if it > is false. there is no perfect setting :( Some utilities should just lock the session for the duration of the operation they are doing. Like signing or generating a cert request. From a top-down approach having lock_login false should just work. From a real life perspective, stuff breaks. But we should fix that. m. -- Martin Paljak http://martin.paljak.pri.ee +3725156495 ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
[opensc-devel] FW: scb 0.10 broken
Hi, problem is there ain't no easy fix. We fixed it in our own PKCS#11 implementation by writing an "intelligent" process which allocates / frees the card (reader), but at the price of having some platform dependent code there now. I think the real problem is that some apps do not release their PKCS#11 sessions any more. Regards, Franz > From: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Date: Thu, 28 Feb 2008 22:28:23 +0200 > CC: opensc-devel@lists.opensc-project.org; [EMAIL PROTECTED] > Subject: Re: [opensc-devel] scb 0.10 broken > > On Feb 28, 2008, at 9:33 PM, Andreas Jellinghaus wrote: > > Am Donnerstag, 28. Februar 2008 17:44:52 schrieb [EMAIL PROTECTED] > > : > >> The same "security status not satisfied" occurs with pkcs11-tool. > > > > edit lock_login parameter. some tools break if it is true, others > > break if it > > is false. there is no perfect setting :( > Some utilities should just lock the session for the duration of the > operation they are doing. Like signing or generating a cert request. > From a top-down approach having lock_login false should just work. > From a real life perspective, stuff breaks. But we should fix that. > > m. > -- > Martin Paljak > http://martin.paljak.pri.ee > +3725156495 > > > ___ > opensc-devel mailing list > opensc-devel@lists.opensc-project.org > http://www.opensc-project.org/mailman/listinfo/opensc-devel Express yourself instantly with MSN Messenger! MSN Messenger _ Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
Re: [opensc-devel] FW: scb 0.10 broken
Am Donnerstag, 28. Februar 2008 23:38:23 schrieb Franz Brandl: > Hi, > problem is there ain't no easy fix. We fixed it in our own PKCS#11 > implementation by writing an "intelligent" process which allocates / frees > the card (reader), but at the price of having some platform dependent code > there now. I think the real problem is that some apps do not release their > PKCS#11 sessions any more. Regards, one way could be to implement a client/server system. that could allow several applications to retrieve data - by reading all static data like certs etc. when the first user connects - and only serialize signing/decryption requests. using a connection (tcp/unix domain socket) it would know when some client application quits, even if it does not properly logout. also implementing single sign on - read the card content once, enter pin once, sign/decrypt many times even for different applications - would be possible to implement this way. but: noone has time for work like this I guess. at least I don't :( Andreas ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
