Re: [opensc-devel] libp11 & engine_pkcs11 support for ECDSA keys

It works =). I've tested sign/verify with p-192, p-224, p-256, p-384 and p-521. No problems found. Thank you for your attention. 2011/9/8 Douglas E. Engert > Try the attached patch. It compiles, but I have not tested it. > > > On 9/8/2011 11:48 AM, Felipe Blauth wrote: >

Re: [opensc-devel] libp11 & engine_pkcs11 support for ECDSA keys

string, need to strip off 04 len */ a = ec_point + 2; o2i_ECPublicKey(&ec, &a, ec_pointlen-2); ... 2011/9/7 Douglas E. Engert > > > On 9/6/2011 4:53 PM, Felipe Blauth wrote: > >> I've tested your mods and they work well =). I can sign and verify with >> most EC

Re: [opensc-devel] libp11 & engine_pkcs11 support for ECDSA keys

ess that I didn't look much at engine_pkcs11 source code, but if you could give me some appointments I can try to fix that. OpenSSL error is the following, after loading the key: error:10067066:elliptic curve routines:ec_GFp_simple_oct2point:invalid encoding Regards, 2011/8/13 Felipe Blaut

[opensc-devel] engine_pkcs11 + libp11 leaking memory ?

Hello everyone. I'm playing around with engine_pkcs11 and libp11 and, maybe I'm doing something wrong, but I'm getting leaks regarding EVP_PKEY's. The following sample code just load a private key into an EVP_PKEY and then release it. I'm using Safenet pkcs11 implementation (libcryptoki.so) to wor

Re: [opensc-devel] libp11 & engine_pkcs11 support for ECDSA keys

icket/Display.html?id=2459&user=guest&pass=guest > > It also appeared on the OpenSSL mailing list. > > The patch should still work. Please try it, and you can > also add comments to the OpenSSL bug report. > > > On 8/12/2011 2:12 PM, Felipe Blauth wrote: > > He

[opensc-devel] libp11 & engine_pkcs11 support for ECDSA keys

Hello. I've started using engine_pkcs11 to access PKCS #11 tokens from OpenSSL EVP_PKEY's trough "ENGINE_load__key" methods. It works very well with RSA keys, but it doesn't recognize ECDSA keys. Searching trough the web, I've found that Douglas had a patch for it at http://www.mail-archive.com/o

Re: [opensc-devel] Java and pkcs11

2011/8/2 NdK > Hi all! > > Maybe it's nearly OT, but I think it could be useful for other readers. > > I've found that a quite recurring problem in accessing tokens from java > is the "PKCS11 not found" exception. > Disabling hot plug support, as suggested in the past to another user, > didn't wo

Re: [opensc-devel] Unwrap, with openssl, a key wrapped inside Smart Card

2011/4/16 Martin Paljak > Hello, > On Apr 14, 2011, at 17:43 , Felipe Blauth wrote: > > 2011/4/14 Martin Paljak > > Hello, > > On Apr 14, 2011, at 02:21 , Felipe Blauth wrote: > > > I just wanted to make a simple protocol to import a private key to a > card

Re: [opensc-devel] Unwrap, with openssl, a key wrapped inside Smart Card

2011/4/13 Douglas E. Engert > > > On 4/13/2011 2:03 PM, Martin Paljak wrote: > > Hello, > > On Apr 13, 2011, at 20:44 , Felipe Blauth wrote: > > > >> Hello to all, > >> > >> Simple question: > >> Is it possible, using openssl, to

[opensc-devel] Unwrap, with openssl, a key wrapped inside Smart Card

Hello to all, Simple question: Is it possible, using openssl, to unwrap a key wraped inside a Smart Card with C_Wrap function? Thank you. __ Felipe Blauth ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc

Re: [opensc-devel] Problems with starcos spk 2.4 and opensc-pkcs11.so

n By doing that, I can call most of PKCS#11 interface functions. The only thing I've missed is the C_InitToken and C_InitPin functions, that are not supported. I think there's a strong reason for that tough. 2011/3/21 Martin Paljak > Hello, > > On Mar 19, 2011, at 11:12

Re: [opensc-devel] Problems with starcos spk 2.4 and opensc-pkcs11.so

neither coding directly against PKCS#11 API (with opensc-pkcs11.so) nor using pkcs11-tool (I get CKR_GENERAL_ERROR). Maybe I need to do something before calling C_GenerateKeyPair? Regards, Felipe Blauth. 2011/3/18 Viktor TARASOV > On 17.03.2011 16:14, Felipe Blauth wrote: > > Hell

[opensc-devel] Problems with starcos spk 2.4 and opensc-pkcs11.so

Hello everyone, Currently, I'm having some trouble with usage of starcos spk 2.4 cards and opensc. I used to have no problem, and I don't know where exactly the problem is. Here what's happening: I have an aplicattion that use's pkcs15-init to initialize cards and then it codes directly against P

Re: [opensc-devel] Securing pin while it travels to the Smart Card

Thank you for the answers. 2010/9/23 Viktor TARASOV > Douglas E. Engert wrote: > > On 9/22/2010 1:04 PM, Felipe Blauth wrote: > > > >> Hello to all. > >> > >> Do you know any way of secure pin while it travels from the computer to > >

[opensc-devel] Securing pin while it travels to the Smart Card

Hello to all. Do you know any way of secure pin while it travels from the computer to the card? More precisely, I have two cryptographic perimeters, one is an HSM, and the other is the Smart Card. The HSM communicates with the Smart Card trough a normal USB reader, using OpensSC and PCSCD. (the H

Re: [opensc-devel] How to Initialize a token using C_InitToken() from PKCS#11 interface?

I think my last message got cut because of too many attached files, so I'm resending with links to the files. Also, please enable debugging (set to 9 and uncomment debug_file in > opensc.conf) and send the generated log file. This file (opensc-debug.log

[opensc-devel] How to Initialize a token using C_InitToken() from PKCS#11 interface?

the token becomes visible in that slot and I'm able to login in it and do stuff. What becomes unclear is if it is possible to do what the command "pkcs15-init --store-pin "does with pkcs#11 code. Regards, Felipe Blauth ___ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel

Re: [opensc-devel] Help with project that demands interoperability betewen cards

Hello, thanks for the reply. > > What functionality is missing from libp11? A function to delete objects, such as keys and certificates. > Why not use PKCS#11 directly, without additional layers between your > application and the PKCS#11 library? Actually I am still avaliating the b

[opensc-devel] Help with project that demands interoperability betewen cards

Hello again. I'm going to start a project in wich I need to have interoperability between smart cards. Since not all cards are supported by OpenSC I would like some advice on the ideas I already have: 1) I've been studying PKCS#11 interface and it's interation with LIBP11 and I find out a good s