Sorry - I did not read the OpenSC mailinglist for a while,
otherwise I could have informed you about my FireFox 2/3
experiences regarding smart cards and PIN-dialogs.
1) FireFox 2 always asks for a PIN before C_Login is
called. If CKF_PROTECTED_AUTHENTICATION_PATH is set FireFox 2
will ignore what
As I wrote before, nss implementation is not fully PKCS#11 compliant.
They have a different attitude... They require vendors to support
their own sequences.
Other than your example, it perform login before it access the token,
it open a new session each for each SSL session and more.
I tried to wo
> How and when did you contact safenet?
I e-mailed support (either directly, or via a web form, I can't remember) and
received an acknowledge with number 883656.
> However I will get the required documentation and make it available to the
> project.
That would be great, thank you a lot!
VL
As a short term solution, you may want to look at the opensc.conf
cache_pins = true option.
The pkcs11/framework-pkcs15.c in revalidate_pin will do a pkcs15_login
with a cached pin if a crypto operation returns
SC_ERROR_SECURITY_STATUS_NOT_SATISFIED.
Ludovic Rousseau wrote:
> On Mon, Aug 11, 2
On Mon, Aug 11, 2008 at 4:56 PM, Ludovic Rousseau
<[EMAIL PROTECTED]> wrote:
> On Sun, Aug 10, 2008 at 12:26 AM, Emanuele Pucciarelli <[EMAIL PROTECTED]>
> wrote:
>> I would guess that OpenSC does not support that right now, but it should be
>> fairly easy to implement, and I would expect Firefox
On Tue, Aug 12, 2008 at 8:59 AM, Eric Dorland <[EMAIL PROTECTED]> wrote:
> * Ludovic Rousseau ([EMAIL PROTECTED]) wrote:
>> Maybe a better solution is to NOT return an error code in case
>> "$DAEMON shutdown" fails because no status file is found.
>> Than patch is simple:
>> Index: src/tools/openct