Hello,
the command
pkcs15-tool --read-public-key 45
gives the expected output on Windows 7 but triggers
a crash message finally:
pcks15-tool.exe funktioniert nicht mehr
which translates to pcks15-tool.exe doesn't work any more.
Other parameters of pkcs15-tool don't produce this
annoying
Hello,
Am Dienstag 13 Dezember 2011 schrieb Ludovic Rousseau:
Johannes can you attach a pkcs15-crypt --sign log with the same card
and same reader on Linux?
http://www.uni-giessen.de/~g013/opensc/pkcs15-sign-linux.log
The log on Mac was
Hello,
using Firefox on Mac OS X with CardOS cards I get a connection error.
Ludovic Rousseau kindly showed me how to track it down to the sign
function of opensc 0.12.2:
The command
pkcs15-crypt --sign --pkcs1 --sha-1 --in sig.in --out sig.out --key 46
produces
Compute signature failed:
Hello,
Am Donnerstag 03 November 2011 schrieb Ludovic Rousseau:
So the problem occurs on Mac but not on Linux (or Windows). Exact?
Yes.
If so the bug may not be in OpenSC, but in the libccid provided by
Apple (in 10.6.8 Snow Leopard it is version 1.3.8) or in pcsc-lite
modified by Apple.
Hello,
Am Mittwoch 02 November 2011 schrieb Ludovic Rousseau:
Martin is right. OpenSC is sending an extended APDU with a data length
of 00 01 01 = 257 bytes.
Changing max_send_size didn't make any difference.
Can you run the procedure at [2] so I can check your reader?
The logs are
Hello,
while OpenSC 0.12.2 works with our card CardOS V4.3B
using Linux or Windows, there is a problem with Mac OS X:
The PIN asked. After entering the PIN on the pinpad Firefox
asks you to select the certificate, but finally the connection
to the web site is not established.
A log file
Hello,
Am Montag 08 August 2011 schrieb Martin Paljak:
...
Reading the e-mail I don't see what is so illegal or confidential in
it that it should be removed either?
I thought that too, that's why I made the mistake.
But I feel obliged to comply, whatever the reasons might be.
By the way,
Hello,
could someone please remove
http://www.opensc-project.org/pipermail/opensc-devel/2011-July/016985.html
from the opensc-devel archives?
I'm sorry, in this e-mail I quoted another e-mail. I shouldn't have done so.
Regards
Johannes
___
Hello,
with Windows 7 (64 bit) and opensc 0.12.2 the command
pkcs15-tool --reader 0 --read-public-key 45
gives the right result but afterwards a message from the
Windows system pops up:
pkcs15-tool funktioniert nicht mehr
(That translates to pkcs15-tool doesn't work any more)
This is no
and new cards.
Please let me know your comments and feedbacks.
Kind regards,
Patrice
Am Samstag 16 Juli 2011 schrieb Peter Koch:
Hi Johannes!
2011/7/15 Johannes Becker johannes.bec...@hrz.uni-giessen.de
Hello,
I'm testing a new Firmware for the Xiring MyLeo card reader
Hello,
I'm testing a new Firmware for the Xiring MyLeo card reader. It
will support extended APDU. It works with a CardOS chip, but
with a TCOS chip firefox displays quickly the small window asking
you to enter the pin on the pinpad several times. You have no chance
to do so and there is
Hello,
I had a hard time to get the Windows Installer 0.12
working with my Windows 7, 64 bit.
I learned that you have to use the x86 installer, probably because
Firefox is 32 bit.
Then I noticed, that opensc.dll is not replaced properly, if an
opensc.dll is left over from an old installation.
Hello,
Am Samstag 18 Juni 2011 schrieb Hans Witvliet:
...
But with some cards it works
...
If i use a pinpad-reader (Xiring in my case) i get an prompt on the
reader, and have to type the ping on the reader-keyboard.
With all my readers, even with the Xiring I get
OpenSC [3F00] verify
Hello,
the verify command of opensc-tool promises
If key is omitted, card reader's keypad will be used to collect PIN.
I doesn't work for me. Is there a way to do it or is this feature not
implemented yet?
Regards
Johannes
___
opensc-devel
Hello,
Am Mittwoch 08 Juni 2011 schrieb Martin Paljak:
Using the GemPlus Pinpad reader, Firefox shows quickly serveral times
the window telling you to enter the PIN on the Pinpad, but the connection
to the web servers fails before you have a chance to to anything.
...
How does this reader
Hello,
Am Mittwoch 01 Juni 2011 schrieb Martin Paljak:
I have no idea why your SCM reader behaves different under Windows and
Linux. Does it have old firmware?
The installer tells me that the firmware is up to date. I even tried the beta
firmware,
that I got from SCM.
Probably. SPR532
Hello,
Am Montag 30 Mai 2011 schrieb Martin Paljak:
The latest version
should require the use of --module, wiki should be updated. But it
should also fail in an obvious way, showing the help text.
Yes, a help text is shown with the first line
--module argSpecify the module
Hello,
opensc-0.12.2-svn r5526 works with TCOS2 and CardOS cards
using e.g. the Kobil KAAN advanced reader.
If i use the reader on the Dell USB Smartcard Keyboard, the pinpad works only
with CardOS cards.
When I use a TCOS 2 card and ask Firefox to show a site requiring chip card
Am Samstag 28 Mai 2011 schrieb Peter Koch:
Johannes, could you please test with version 5508. TCOS2 should
work again.
Yes! Thank you, a great relief.
I had successful tests with
r5526 on Debian 64 squeeze and on Windows XP
On Windows 7 (64) the module opensc-pkcs11.dll of r5526 doesn't
Hello,
thank you for the release.
Just a reminder, that the login required bug concerning
TCOS2 cards is not fixed yet.
The patch
http://www.opensc-project.org/opensc/ticket/256
does not add the login required flag.
Can I be of any help tracing down the problem?
Happy New Year!
Johannes
Am Donnerstag 02 Dezember 2010 schrieb Martin Paljak:
Have you decided on a release date yet for 0.12.0?
Either today or tomorrow.
I tested opensc-0.12.0-rc1 on Debian Squeeze and on Windows XP.
There is still the bug with our TCOS 2 Card, described
in my e-mail from 2010-09-02 12:21 and
Hello,
it took me some time to reproduce the already described bug:
After some idle time the browser seems to forget completely about the chip
card.
If you request an encrypted web page, a ssl handshake error is displayed.
This happens, if you use ignored_readers in opensc.conf.
In my example,
Hi,
now I detected another flaw in 0.12.0:
After some idle time the browser seems to forget completely about the chip card.
If you request an encrypted web page, a ssl handshake error is displayed.
For production purposes I'm now returning to opensc2 0.11.4-5+lenny1,
the last opensc working
Hello,
now I have the opensc-debug logs for pkcs11-tool -L with TCOS
opensc version 0.11.13-1 gives
token flags: login required, PIN initialized, token initialized
http://www.uni-giessen.de/~g013/opensc/opensc-debug.0.11.13-1.log
opensc version 0.12.0-svn-r4700 gives
token flags:
Am Montag 06 September 2010 schrieb Martin Paljak:
Hello,
On Sep 6, 2010, at 2:05 PM, Johannes Becker wrote:
Am Donnerstag 02 September 2010 schrieb Martin Paljak:
Please provide opensc-debug.log for TCOS2 for the failing transaction
with 0.12.0. If possible, also the successful log
Am Donnerstag 02 September 2010 schrieb Martin Paljak:
Please provide opensc-debug.log for TCOS2 for the failing transaction with
0.12.0. If possible, also the successful log with 0.11.X might help.
The logs are
http://www.uni-giessen.de/~g013/opensc/report-bug.txt
Hello,
unfortunately I have to repeat my message about the TCOS2 card:
When using opensc-0.12.0-svn-r4647 with our Uni Giessen Card (TCOS 2),
firefox presents the certificate to use without asking the PIN.
Subsequently the web page called can't be displayed.
On the other hand CardOS 4.3 works
Am Donnerstag 12 August 2010 schrieb Ludovic Rousseau:
Try again with ccid 1.3.13 or 1.4.0.
While the Debian experimental package libccid 1.4.0. works on real machines,
it doesn't do the job inside Virtualbox. There firefox complains
about an unresponsive card. On the other hand, the older
Am Donnerstag 12 August 2010 schrieb Ludovic Rousseau:
Try again with ccid 1.3.13 or 1.4.0.
Yes, libccid 1.4.0-1 from Debian experimental does the job.
Thank you.
Grüße
Johannes
___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
Hello,
when using opensc-0.12.0-svn-r4621 with our Uni Giessen Card (TCOS 2),
firefox presents the certificate to use without asking the PIN.
Subsequently the web page can't be displayed.
On the other hand CardOS 4.3 works.
Grüße
Johannes
___
Hello,
I could track down the problems with CardOS 4.3 a little bit.
The (Uni-Bochum) card doesn't work using the Kobil card readers
(KAAN advanced and KAAN t...@ank).
On the other hand, using the reader in the Dell Sk-3205 Keyboard the test was
successfull
on Ubuntu 8.04.4 (opensc 0.11.4) or
Am Mittwoch 07 Juli 2010 schrieb kerstin.ho...@uv.ruhr-uni-bochum.de:
I checked out 0.12.0-svn-r4413. With this version, our cards work again.
I checked this on Debian Lenny and got the following error:
pkcs11-tool --slot 1 --test --login
C_SeedRandom() and C_GenerateRandom():
seeding
Am Freitag 18 Juni 2010 schrieb Andreas Jellinghaus:
in any case without an opensc debug log file, there is little we can
say about the problem
Here comes the log.
Opensc under Windows works. The test is attached below.
Under Linux (Debian etch) I now have the same opensc version (0.11.4)
and
Hello,
I got a card for testing purposes from the Ruhr-Universität Bochum.
It works with Windows, the newest Firefox and opensc-pkcs11.dll from good old
smart card bundle. (opensc 0.11.4).
It doesn't work on Debian Linux Testing (opensc 0.11.13-1).
My impression is, that the problem is not the
Hello,
after some time-consuming test with the files from opensc build I came to the
conclusion, that opensc-pkcs11.dll works with Firefox using all versions
starting with
opensc-i686-pc
The last one is dated 29-Jul-2009.
The others ( opensc-i686-w32, opensc-i686-w64 ) don't work.
On the other
Hello,
when configuring OpenSC 0.11.11 under Debian lenny and squeeze I get
PC/SC support: no
NSPlugin support:no
I have installed
libpcsclite-dev (Version: 1.4.102-1)
What else do I need?
By the way: opensc doesn't work as it comes with Debian squeeze
pcsc_scan detects
Hello,
using Debian lenny at the moment the card reader has to be
plugged in to the USB port while the PC boots.
If you plug it in later or if you unplug and plug again, the reader doesn't
work. I noticed this only recently. It was ok before.
# uname -a
Linux be 2.6.26-1-686 #1 SMP Sat Jan 10
Hello,
I couldn't find documentation for how to get Firefox using
opensc-i686-pc-mingw32-002-base.
I copied the files from opensc-i686-pc-mingw32-002-base over an existing
installation
of Smart Card Bundle. Firefox works with that.
Is there any problem in doing this?
Regards,
Johannes
Am Freitag, 12. September 2008 schrieb Ludovic Rousseau:
Maybe you can add support of a pinpad in opensc-explorer.
The command change CHVid [old-pin] new-pin should allow an empty
new-pin if the token has the CKF_PROTECTED_AUTHENTICATION_PATH bit
set.
Hello,
That didn't work. At the moment
Am Freitag, 27. Juni 2008 schrieb Franz Brandl:
as far as i remember, the PKCS#11 driver has to use
CKF_PROTECTED_AUTHENTICATION_PATH to indicate to the application that it
shall not prompt for the PIN itself. Seems that this is not the case for
your reader. The question is how OpenSC decides
Hello,
I have a Kobil card reader with pinpad. In principle the pinpad works with
opensc, but the behaviour generally is a bit confusing.
If you use it with pam (for instance su, kdm or gdm) the user is asked to
type the PIN at the keyboard, this input is ignored and as soon as you
type
Hello,
when I use opensc (both in Linux and Windows) with
enable_pinpad = true;
in opensc.conf, everything works fine, exept that on visiting
a site that requires card authentication at first firefox
pops up a window asking for the master password (the PIN, as
everybody else calls it.)
No matter
Hello,
Am Donnerstag, 16. November 2006 14:59 schrieb Ludovic Rousseau:
What do you use for the authentication in this precise case? Do you
use a PAM module? Which one?
/usr/local/lib/security/pam_pkcs11.so
I compiled pam_pkcs11-0.5.3
As Martin said we should correct this. So if you can
Eddy Nigg (StartCom Ltd.) wrote:
It requires modification of g/kdm, something we intend to
suggest/propose/modify in the future.
I guess, you wouldn't have to modify gdm/kdm. My Pinpad beeps and blinks,
as soon as the system asks for the PIN. So it would be nice to have no
prompt
for a
Hello,
I got pam_pkcs11 working. If I use the card reader's pin pad, there
is still the prompt to enter the PIN. No matter what you enter,
after 'return' the pinpad awakes and you can enter the PIN there.
This is a confusing behaviour, especially if you have a graphical login
with gdm or kdm.
Hi,
Martin Paljak schrieb:
What cardreader?
Kobil CT_KAAN Advanced, (CCID)
But there is a wrong dialogue to enter the PIN.
This is currently so by (missing) design. Firefox has no GUI related
knowledge of pinpad readers.
Kobil's own drivers provide a special dialogue for pinpad readers
Hello,
when using pcsc_scan in a terminal, I get messages like
Card state: Card removed,
But when I'm using pcsc_scan in a script like
pcsc_scan test.out.txt
or in perl
open (PIPE,-|, pcsc_scan);
those messages are missing and I can only detect, if
a card is inserted.
How can I detect
47 matches
Mail list logo