Hello,
Mailing list should eat attachments just fine (50KB limit IIRC)
On Mar 20, 2011, at 8:00 PM, Dominik Fischer wrote:
> It adds displaying error messages to the user via pam_prompt. Because in
> GDM the messages disappear so quick, I've added a new option
> "err_display_time". After
> a mes
e the
> number -devel dependencies packages I had to install for this!), build
> gdm 2.32 (on FC13!), build openct/opensc drivers from source while strip
> the dependencies I do not need and eventually made the whole thing work,
> not without the critical help I received from
On Mar 12, 2011, at 3:22 PM, Mr Dash Four wrote:
>> I don't think RedHat is using OpenSC. They have a PKCS#11 token called
>> coolkey.
>> Coolkey is already available in Debian at
>> http://packages.debian.org/source/sid/coolkey
>>
> They do! The configuration file(s) default to coolkey, but ope
Hello,
On Mar 12, 2011, at 10:16 AM, Ludovic Rousseau wrote:
> Le 12 mars 2011 08:49, Jean-Michel Pouré - GOOZE a écrit :
>> Dear Friends,
>>
>> Just a quick note that I stumbled upon Gnome Smartcard Manager,
>> which seems to be a Redhat project based on OpenSC:
>> http://directory.fedoraproject
On Mar 12, 2011, at 3:19 PM, Mr Dash Four wrote:
> One of the reasons to subscribe to the list many months ago was that I
> wanted to use Gnome Smartcard Manager but it wasn't working (at least
> not in FC13) :-X
I guess you are mixing up two things: Gnome Display Manager (which takakes care
Hello,
On Mar 6, 2011, at 8:38 AM, Travis wrote:
> What is the status of support for the ACOS 5? It seems that the last
> real inquiry was in August of last year.
No support at the moment.
> I just purchased the ACS ACOS5 SDK. It has a PKCS#11 driver; but I was
> hoping to find an open source
Hello,
On Mar 1, 2011, at 4:13 PM, Brian Thomas wrote:
> Is the STARCOS SPK 2.3 smart card supported by OpenSC version 12? I cannot
> initialize (pkcs15-init –CT) this card with OpenSC version 11.13 but not with
> version 12. The error message returned is: “Security Status not satisfied”
If it
Hello,
On Feb 28, 2011, at 2:44 PM, NdK wrote:
> Could it be possible to check the available space on card files before
> importing PKCS12 certs? Or at least "rollback" already done additions.
Rollback would be a nice feature.
> Now it could easily happen that a cert is only partially stored, sin
Hello,
On Feb 23, 2011, at 10:14 AM, Stef Walter wrote:
> Hi guys. As a follow up from the security devroom at FOSDEM, I'm working
> out hosting and mailing lists for the PKCS#11 glue stuff [1] that I
> talked about. This includes things like p11-kit, trust assertions,
> pkcs11 uris and more.
>
>
On Feb 25, 2011, at 7:22 PM, Brian Thomas wrote:
> The subject of the requirement is to verify that "malformed" or
> "incomplete" certificates cannot be loaded on to the card.
I'd assume OpenSSL (which is used to read and parse the certificates) does some
basic syntax/format checks.
But go on, v
Hello,
On Feb 25, 2011, at 7:20 PM, webmas...@opensc-project.org wrote:
> ---
> Allow a key to be used to sign a certificate request
> even if the normal usage does not allow sign.
> This is need when initializing a card when called by
> OpenSSL req -engine
Actually it would be nice to
Hello,
What about submitting a GSOC application [1] with a few "grand master plans"
that could be fixed/improved in either OpenSC (like revamping MuscleApplet) or
fix something else in the ecosystem (p11-glue might be interesting, if that
could be planned without too much experimentation) ?
2
Hello,
On Feb 23, 2011, at 4:26 PM, NdK wrote:
> I'm always the one that finds problems :)
That's great testing!
> Waiting to "fix" CA issue, I'm trying to use an on-card key to
> authenticate a SSH user.
Which issue?
> But when I try to use it, I get:
> -8<--
> $ ssh otheruser@myhost
> Enter PIN
Hello,
On Tue, Feb 22, 2011 at 07:31, Xiaoshuo Wu wrote:
>> Index: src/libopensc/card-entersafe.c
>> ===
>> --- src/libopensc/card-entersafe.c (revision 5121)
>> +++ src/libopensc/card-entersafe.c (working copy)
>> @@ -953,
Hello,
On Tue, Feb 22, 2011 at 17:39, Douglas E. Engert wrote:
> On 2/22/2011 1:16 AM, Martin Paljak wrote:
>
> At one time there was some Secure Messaging code in OpenSC, which as
> I understad it, was removed because the the intent of OpenSC is to
> support only the crypto that
On Feb 22, 2011, at 9:20 AM, Toni Sjoblom - Aventra wrote:
> Hi,
>
>> -Original Message-
>> From: opensc-devel-boun...@lists.opensc-project.org
> [mailto:opensc-devel-boun...@lists.opensc-project.org] On Behalf Of Andreas
> Jellinghaus
>>
>> not sure about athena, but many cards return
Hello,
On Feb 21, 2011, at 10:23 PM, Douglas E. Engert wrote:
> I would like to C_DeriveKey support to OpenSC, to the derivation
> capabilities of a smartcard. Although RSA can do key derivation,
> I am interested in CKM_ECDH1_COFACTOR_DERIVE which is supported
> in the newer PIV cards. (There is
Hello,
On Feb 20, 2011, at 10:59 AM, Jean-Michel Pouré - GOOZE wrote:
> Le vendredi 18 février 2011 à 13:59 +0800, Xiaoshuo Wu a écrit :
>> I've added SC_PIN_CMD_GET_INFO handling in entersafe_pin_cmd(),
>> C_GetTokenInfo() will get PIN retries now, you can run "pkcs11-tool
>> --test-hotplug"
On Feb 18, 2011, at 11:54 AM, NdK wrote:
> Il 18/02/2011 07:07, Martin Paljak ha scritto:
>
>>> Yup. That's why keys are generated on card :)
>> Unless the key is exportable
> Always asked why one needs to mark a private key exportable: if you need
> it expo
Hello,
On Feb 18, 2011, at 11:17 PM, Douglas E. Engert wrote:
> The _WIN32_WINNT was change to 502 which supports XP SP2 and 2003 SP1
> and above. If there is some reason to support any systems older
> then these, place change this back. (VS 2010 may mot support anything
> less then 502.)
That
Hello,
On Feb 18, 2011, at 6:45 PM, Ludovic Rousseau wrote:
> Is it possible to have templates in bug reports with trac? I could not
> find anything like that. But I am not a trac admin.
>
> I can use an URL like
> https://www.opensc-project.org/opensc/newticket?description=foobar but
> I don't k
Hello,
On Feb 18, 2011, at 12:30 AM, NdK wrote:
> On 17/02/2011 22:55, Andreas Jellinghaus wrote:
>
>> no, that wiki page is correct and works for me - done it a hundred times.
>> it uses the key on the card, and the card does the signature (you cannot
>> read the private key, a smart card won't
On Feb 17, 2011, at 7:56 PM, Viktor TARASOV wrote:
> Hi,
>
> I'm trying to compile OpenSC on the
> Windows Server 2008 R2 Enterprise OS 64-bit
> using compiler
> Microsoft (R) 32-bit C/C++ Optimizing Compiler Version 16.00.30319.01 for
> 80x86
> installed with Visual Studio v10.0
>
> It seems
On Feb 16, 2011, at 11:10 PM, Douglas E. Engert wrote:
> Now to try and build on Windows native.
http://martinpaljak.net:/job/OpenSC%20win32%20psdk/
--
@MartinPaljak.net
+3725156495
___
opensc-devel mailing list
opensc-devel@lists.opensc-projec
On Feb 16, 2011, at 10:31 PM, NdK wrote:
> On 16/02/2011 21:13, Martin Paljak wrote:
>
>>> The same can be done for 768bit key, and, I suppose, for all key sizes from
>>> 512 to 2048 with the 64 bit step.
>> The only questions is: are you sure you want to do this
Hello,
On Feb 16, 2011, at 5:19 PM, Viktor TARASOV wrote:
> On 16.02.2011 13:34, Martin Paljak wrote:
>> On Feb 16, 2011, at 1:01 PM, webmas...@opensc-project.org wrote:
>>> Revision: 5199
>>> Author: vtarasov
>>> Date: 2011-02-16 11:01:46 + (We
On Feb 16, 2011, at 10:49 AM, Viktor TARASOV wrote:
> On 15.02.2011 19:50, NdK wrote:
>> On 15/02/2011 19:47, Viktor TARASOV wrote:
>>> Sorry, this card can
>>> gen/home/vtarasov/projects/llvm/build/Debug+Asserts/bin/clangerate key
>>> 512bit .
>>> For that the corresponding algorithm should be
Hello,
On Feb 15, 2011, at 5:26 PM, Jean-Michel Pouré - GOOZE wrote:
> Le lundi 14 février 2011 à 17:52 +0100, Andreas Jellinghaus a écrit :
>> fine tuning for each different card and driver: I don't think anyone
>> has the time and manpower for that.
Tuning each and every card driver is of cours
Hello,
On Feb 16, 2011, at 12:32 PM, webmas...@opensc-project.org wrote:
> ---
> card-piv: 'ssize_t' is not defined when compiling with Visual Studio
(I'm on the road not connected to work PC with git and more links, but some
comments nevertheless)
Windows does have SSIZE_T. But Windows
On Feb 16, 2011, at 1:01 PM, webmas...@opensc-project.org wrote:
> Revision: 5199
> Author: vtarasov
> Date: 2011-02-16 11:01:46 + (Wed, 16 Feb 2011)
>
> Log Message:
> ---
> IAS/ECC: for the IAS/ECC cards include into the OpenSC configuration the
> 'card_atr' sections
Why are
Hello,
On Feb 14, 2011, at 11:08 PM, NdK wrote:
> On 14/02/2011 17:52, Andreas Jellinghaus wrote:
>
>> I have no clue about myeid, but some other cards are only 32k for example.
>> reserving 8192 would be 25% and that is only one directory file...
> Well, javacards have a limit of 32k of data, I
Hello,
On Feb 14, 2011, at 12:47 AM, NdK wrote:
> On 13/02/2011 21:18, Martin Paljak wrote:
>>> $ pkcs15-init -S startssl.p12 -f PKCS12 -i 45 -a 2 -l "StartSSL auth"
>>> Using reader with a card: Gemalto GemPC Twin 00 00
>>> error:23076071:PKCS12 routin
Hello,
On Feb 13, 2011, at 2:59 PM, NdK wrote:
>
> $ pkcs15-init -S startssl.p12 -f PKCS12 -i 45 -a 2 -l "StartSSL auth"
> Using reader with a card: Gemalto GemPC Twin 00 00
> error:23076071:PKCS12 routines:PKCS12_parse:mac verify failure
Is this error normal? Does it happen with OpenSSL command l
On Feb 11, 2011, at 9:47 PM, Douglas E. Engert wrote:
> On 2/11/2011 11:35 AM, Martin Paljak wrote:
>>
>> Didn't you include the sc_ctx_detect_readers realignment patch that removed
>> it from create context to the responsibility of calling application? (will
>>
On Feb 11, 2011, at 10:06 PM, Douglas E. Engert wrote:
> On 2/11/2011 11:43 AM, Martin Paljak wrote:
>>
>> On Feb 11, 2011, at 6:55 PM, Douglas E. Engert wrote:
>>> On 2/11/2011 3:24 AM, Martin Paljak wrote:
>>>> On Fri, Feb 4, 2011 at 01:19, Andre Zepezauer
On Feb 11, 2011, at 9:10 PM, Andre Zepezauer wrote:
> On Fri, 2011-02-11 at 11:24 +0200, Martin Paljak wrote:
>> On Fri, Feb 4, 2011 at 01:19, Andre Zepezauer
>> wrote:
>>
>>> BTW: The main handle in OpenSC is 'sc_pkcs15_card_t' and not
>>>
On Feb 11, 2011, at 6:55 PM, Douglas E. Engert wrote:
> On 2/11/2011 3:24 AM, Martin Paljak wrote:
>> On Fri, Feb 4, 2011 at 01:19, Andre Zepezauer
>> wrote:
>>
>>> BTW: The main handle in OpenSC is 'sc_pkcs15_card_t' and not
>>> 'sc_co
On Feb 11, 2011, at 6:39 PM, Douglas E. Engert wrote:
>> Platform adapters should be "core" of OpenSC. How they are bundled in
>> terms of source packages or distributed as binaries is a different
>> story. But conceptually they are "part of OpenSC", not "external
>> applications".
>
> So based o
On Fri, Feb 4, 2011 at 01:19, Andre Zepezauer
wrote:
> BTW: The main handle in OpenSC is 'sc_pkcs15_card_t' and not
> 'sc_context_t'. In fact 'sc_context_t' is really unimportant. But
> sc_pkcs15_card_t holds all the operational state the is required to make
> things working. Have a look at VENDO
Hello,
On Tue, Feb 8, 2011 at 22:42, Douglas E. Engert wrote:
> On 2/8/2011 1:29 PM, Andre Zepezauer wrote:
>>
>> Hello Douglas,
>>
>> please have a look at that picture [1]. FYI the cardmod resides on the
>> same level as OpenSC.tokend does. As you can see, there is a clear
>> distinction betwee
Hello,
On Jan 24, 2011, at 6:07 PM, Martin Paljak wrote:
> The next step, for next release, is to get automated (nightly) builds and
> automated tests.
After re-doing the hudson/jenkins installation a few times, the preliminary
result is here:
Mr. Jenkins for OpenSC - http://martinpalj
Hello,
The slides and videos from the security devroom at FOSDEM 2011 are now
available from the wiki:
http://www.opensc-project.org/opensc/wiki/FOSDEM2011
If you missed FOSDEM this year, I suggest you try harder next year, it is a
great event :)
Best,
Martin
--
@MartinPaljak.net
+3725156
Hello,
On Feb 8, 2011, at 2:26 PM, Jean-Michel Pouré - GOOZE wrote:
> On mailing list, this kind of remark is meant to start a flame war.
>
> Comparing the speed of two cars makes sense, comparing the speed of two
> cards is absurd. The RSA generation time can be a sign of speed,
> accuracy, slow
Jean-Michel,
On Feb 8, 2011, at 11:17 AM, Jean-Michel Pouré - GOOZE wrote:
> Le mardi 08 février 2011 à 09:08 +0100, Ludovic Rousseau a écrit :
>> It is _expected_ to have a _highly_ variable time for prime number
>> generators.
>
> This is understood now. So please let us remove key generation t
Hello,
On Feb 7, 2011, at 7:43 PM, Jean-Michel Pouré - GOOZE wrote:
> Le lundi 07 février 2011 à 17:25 +0100, Peter Stuge a écrit :
>> Maybe more extensive testing could be done. Higher precision timing,
>> and say 1000 or 1 cycles.
>
> Okay, I understand what you mean. Timing is different a
On Feb 4, 2011, at 2:11 PM, Toni Sjöblom - Aventra wrote:
> Hi,
>
>> -Original Message-
>> From: Andre Zepezauer [mailto:andre.zepeza...@student.uni-halle.de]
>> Sent: 23. tammikuuta 2011 4:45
>>
>> On Sat, 2011-01-22 at 15:42 +0200, Martin Paljak wr
Hello,
On Feb 3, 2011, at 11:14 PM, Andre Zepezauer wrote:
> On Thu, 2011-02-03 at 14:04 -0600, Douglas E. Engert wrote:
>> I have updates #321 with a new version of the cardmod patch
>> and would like to start to commit it in pieces.
>>
>> Piece 1 is the attachment I sent on 1/28 as new.martin.pa
On Feb 3, 2011, at 10:04 PM, Douglas E. Engert wrote:
> I have updates #321 with a new version of the cardmod patch
> and would like to start to commit it in pieces.
>
> Piece 1 is the attachment I sent on 1/28 as new.martin.patch
> based on Martin's patch from 1/19. This was the patch that woul
Hello,
On Jan 26, 2011, at 10:09 AM, Ludovic Rousseau wrote:
> I just found the page "SmartCardPKI" [1] on the seek-for-android
> project. The goal is to build OpenSC for Android. They provide a patch
> [2] but I do not remember reading any discussion about it on the
> OpenSC mailing lists. Maybe t
On Feb 3, 2011, at 3:22 PM, Andre Zepezauer wrote:
> That patch could be some lines shorter when using
> sc_pkcs15_compare_id(). Additionally that would improve readability.
>
> I don't know what kind of function you did mean. Extracting only that
> patch into a new function?
I mean the lookup f
Hello,
On Thu, Jan 27, 2011 at 20:08, Andre Zepezauer
wrote:
> Hello Martin,
>
> some comments on r5124:
>
> 1. The values of pin_info->reference and prkey_info->key_reference
> shouldn't be compared because:
>
> * pin_info->reference is used as P2 parameter in VERIFY command
> * prkey_info->key_
Hello,
On Jan 31, 2011, at 10:18 PM, Andreas Jellinghaus wrote:
> Am Montag 31 Januar 2011, um 10:35:47 schrieb Ludovic Rousseau:
>> I don't know if it is possible to specify a PPS.
>> It is not possible to do that using pcsc-lite unless the driver has
>> support for it.
>
> ok, thanks for the ad
Hello,
I'll make a T-shirt for FOSDEM. Nothing fancy, just text.
"Protect
Your
Privates" (front)
"OpenSC
... use a smart card!" (back)
I could produce and bring a few extra matching copies if there's interest.
Drop me a line before Wednesday with your size if you are interested, the cost
of th
Hello,
On Jan 27, 2011, at 6:09 PM, Jean-Michel Pouré - GOOZE wrote:
> Le jeudi 27 janvier 2011 à 15:24 +0200, Martin Paljak a écrit :
>> Sure. A random number generator (with different properties) is
>> available in virtually any PKI card. Have you tried it?
>>
>>
On Jan 28, 2011, at 9:21 PM, Douglas E. Engert wrote:
>>> There may be a better way, maybe using side by side assemblies, as if
>>> OpenSSL is included, it may want to load other dlls too.
>> A static dll is the recommended way by Microsoft and easiest to manage
>> (polluting system32 with random
Hello,
On Jan 28, 2011, at 12:36 AM, Douglas E. Engert wrote:
> The changes are large, and still not ready. The 3 changes I discussed on 1/19
> are
> still in this patch. Martin is working on a different version of the "don't
> run sc_ctx_detect_reader" part of this patch.
>
> Martin, any idea wh
Hello,
On Jan 26, 2011, at 9:46 PM, Andreas Jellinghaus wrote:
> Am Mittwoch 26 Januar 2011, um 12:12:42 schrieb Nikos Mavrogiannopoulos:
>> I don't understand what you mean by a reasonable enrollment system, however
>> having seen the EMV protocol, I believe that the available PKCS #11
>> compat
Hello,
On Jan 27, 2011, at 8:08 PM, Andre Zepezauer wrote:
> some comments on r5124:
>
> 1. The values of pin_info->reference and prkey_info->key_reference
> shouldn't be compared because:
>
> * pin_info->reference is used as P2 parameter in VERIFY command
> * prkey_info->key_reference is used i
Hello,
(posted to opensc-devel to remind those who have not signed up to
security-devroom list yet)
== Information on OpenSC wiki has been updated and should be consulted for the
latest status of things and for further pointers:
http://www.opensc-project.org/opensc/wiki/FOSDEM2011
== Subscri
On Jan 27, 2011, at 3:26 PM, Frank Morgner wrote:
> On Thursday, January 27 at 01:57PM, Jean-Michel Pouré - GOOZE wrote:
>> Dear Friends,
>>
>> Can OpenSC / libp11 or any framework access the random number generator
>> which is available in some cards, including the Feitian PKI?
>
> The card dr
On Jan 27, 2011, at 2:57 PM, Jean-Michel Pouré - GOOZE wrote:
> Can OpenSC / libp11 or any framework access the random number generator
Sure. A random number generator (with different properties) is available in
virtually any PKI card. Have you tried it?
C_GenerateRandom
--
@MartinPaljak.net
Hello,
On Jan 26, 2011, at 10:09 AM, Ludovic Rousseau wrote:
> I just found the page "SmartCardPKI" [1] on the seek-for-android
> project. The goal is to build OpenSC for Android. They provide a patch
> [2] but I do not remember reading any discussion about it on the
> OpenSC mailing lists. Maybe
Hello,
On Jan 24, 2011, at 10:11 PM, Douglas E. Engert wrote:
> On 1/24/2011 12:54 PM, Brian Thomas wrote:
>> Hello,
>>
>> I strongly urge the OpenSC team to make this change to fix mini-driver
>> compatibility. Yes, my company "needs this because we just do", however
>> by implementing this fix
Hello,
On Jan 24, 2011, at 3:17 PM, jons...@terra.es wrote:
> > Not that I would want to suggest a "8 meters requirement" [1], something
> > should be done about it.
> [...]
>
> I agree:
>
> In the writting of Spanish DNIe LGPL driver I've found so many times that
> lack of information.
> A s
Hello,
On Jan 24, 2011, at 6:13 PM, Douglas E. Engert wrote:
> I agree with you on this, but there has not been much support for building
> on Windows and it has been hard to find Windows developers and getting Visual
> Studio installed is not easy. Alon and I had this discussion a few years ago
Hello all,
OpenSC 0.12.0 includes scripts to reasonably automatically and repeatably build
the installers on all supported platforms (and of course the standard targzip
for Linux).
The next step, for next release, is to get automated (nightly) builds and
automated tests.
This requires infrastr
Hello,
On Jan 10, 2011, at 6:12 PM, Viktor TARASOV wrote:
> On 10.01.2011 16:01, Viktor TARASOV wrote:
>> From:Andre Zepezauer
>> it's hard to follow all the changes done in the last view days. Here
>> some issues I found so far:
>>
> I do my best, trying to split the changes into the s
On Jan 14, 2011, at 9:07 PM, Douglas E. Engert wrote:
> 'On 1/14/2011 12:48 PM, Alon Bar-Lev wrote:
>> At build script there is a comment:
>> # Disable until we solve license issue
>> # if [ -n "${BUILD_FOR_WINDOWS}" ]; then
>> # extra_opensc="${extra_opensc} --enable-cardmod"
Hello,
To be honest I can't follow the discussion in detail, nor do I want to add oil
to the continued dialogue unless one of the following is true:
- OpenSC shall now create data structures that are not PKCS#15 conforming
(requires a consensus on interpretation), or break some other
"Signific
On Jan 21, 2011, at 9:33 AM, Aventra wrote:
> Could this fix that Andre has proposed be committed to trunk?
> It should work for all cards, since it only makes two elements of the
> TokenInfo optional.
Yes, but I'm not able to directly locate the relevant part in the ASN.1
description (for objId
Hello,
On Jan 21, 2011, at 9:45 PM, Douglas E. Engert wrote:
> Attached is the patch to just do (2) below. I believe that this
> is the part that Brian wants to not call sc_ctx_detect_readers
> Martin you had said you want to do this differently so I will
> leave this up to you as to weither this
Hello,
On Jan 20, 2011, at 11:28 AM, francois.lebl...@cev-sa.com wrote:
> "Douglas E. Engert" a écrit sur 20/01/2011 00:46:51 :
>
> It's close to the first release I've develop see the start
>
> http://www.opensc-project.org/pipermail/opensc-devel/2009-October/012610.html
>
> but Martin at th
Hello,
On Jan 20, 2011, at 1:46 AM, Douglas E. Engert wrote:
> Attached is a patch to the cardmod code to do the following:
>
> (1) Fix an uninitialized stricture by by using calloc
>in stead of malloc. With out this it was having problems
>with checking the status on the reader.
malloc
On Jan 14, 2011, at 7:12 PM, Douglas E. Engert wrote:
>
> Is this the version of the cngsgk.msi to use? I see there may
> be a 1.3.0 version also available?
2.0 version should be used.
Where on microsoft.com can you find the "download page" (which has release
notes etc as well) for 1.3 versio
Hello Douglas,
On Jan 18, 2011, at 12:09 AM, Douglas E. Engert wrote:
> Using the registry for this does not look correct for a
> number of reasons:
>
> (1) there maybe multiple mini-drivers being run at the same
> time.
> (2) The location in the registry can only be written be the system,
>
Hello.
On Jan 17, 2011, at 11:41 AM, Rickard Bellgrim wrote:
> We have written a review of four different HSM:s (AEP, Safenet, Thales, and
> Utimaco) with focus on creating signatures for DNSSEC with the PKCS#11
> interface. Other topics was also addressed like the security model,
> administra
On Jan 14, 2011, at 11:34 AM, Lionel Elie Mamane wrote:
> On Sun, Jan 09, 2011 at 10:17:09AM +, webmas...@opensc-project.org wrote:
>
>> Log Message:
>> ---
>> iso7816: Don't translate a returned FCP template from SELECT FILE to
>> "unknown data received"
>
> This log message looks
On Jan 13, 2011, at 7:08 PM, Peter Stuge wrote:
> Jean-Michel Pouré - GOOZE wrote:
>>> I've been under the impression (based on the header in "should work"
>>> list [1]) that it contains readers which work as expected and which
>>> Ludovic has.
>>
>> The names should be then:
>> * Unsupported.
>
Hello,
On Jan 13, 2011, at 7:08 PM, Peter Stuge wrote:
> Jean-Michel Pouré - GOOZE wrote:
>>> I've been under the impression (based on the header in "should work"
>>> list [1]) that it contains readers which work as expected and which
>>> Ludovic has.
>>
>> The names should be then:
>> * Unsuppor
Hello,
On Jan 12, 2011, at 2:04 PM, Jean-Michel Pouré - GOOZE wrote:
> Le mercredi 12 janvier 2011 à 13:26 +0200, Martin Paljak a écrit :
>>
>>> Per discussion, we have to pay to get the reader out of the
>> unsupported
>>> list, and this is quite a large sum
On Jan 12, 2011, at 1:22 PM, Jean-Michel Pouré - GOOZE wrote:
> Le mercredi 12 janvier 2011 à 12:07 +0200, Martin Paljak a écrit :
>> Jean-Michel, what were the symptoms of the bug?
>
> As for R-301-v1, it used to have an unsupported message, but it proved
> to be an OpenCT i
Hello,
On Jan 12, 2011, at 11:53 AM, François Schauber wrote:
> Hi,
>
> I just discovered OpenSC. I try to read my card, a Cryptoflex, but it seems
> unsupported.
>
> D:\Program Files\OpenSC Project\OpenSC>opensc-tool.exe --reader 0 -a
> 3b:95:18:40:14:64:02:01:01:02
This seems like an unknown
Hello,
On Jan 12, 2011, at 11:22 AM, Ludovic Rousseau wrote:
> Every _non-bogus_ reader.
> For example the Feitian SCR301 [2] is bogus and can't support CASE 2
> APDU with Le=0 (256 bytes). That is why this reader is listed in the
> "unsupported" list of my CCID driver.
Interesting. Too bad the o
Hello,
On Jan 12, 2011, at 11:34 AM, Aventra development wrote:
> Readers we have tested are:
> - ACS ACR38 CCID
This is a very broad range, ACS re-uses the chip in different incarnations in
several products that are marketed under different names and I would not bet on
it being 100% the same chi
On Jan 11, 2011, at 6:21 PM, Mr Dash Four wrote:
>
>>> Something like that might actually warrant a new point release of opensc
>>> to make sure Linux distros pick up the fix.
>>>
>>
>> Having a point release for every single bug fix would be overkill. So
>> the question is, what's the best a
Hello,
On Jan 11, 2011, at 4:50 PM, Jan Just Keijser wrote:
> I've been reading this discussion and a question comes to mind.
>
> The Feitian cards work with the OpenSC driver
> The Feitian cards also work with the proprietary driver from Feitian
> itself, in a way that is almost 100% compatible
Hello,
On Jan 10, 2011, at 11:21 AM, Aventra development wrote:
> I have been testing the new release and sadly found a braking change that
> causes cards that are not initialized with (the current version of) OpenSC to
> result in the message “Unsupported card”. The cause is the token info (5032
2011/1/11 Jean-Michel Pouré - GOOZE :
> Le mardi 11 janvier 2011 à 08:48 -0600, Brian Thomas a écrit :
>> Sometimes I can return information about the card instantaneously, for
>> example "opensc-tool -n" or "pkcs15-tool -D" but most of the time the
>> commands just hang.
>
> What are your PC/SC Li
On Jan 11, 2011, at 4:48 PM, Brian Thomas wrote:
> Hello:
>
> I am trying to get the Feitian FTCOS/PK-01C smart card to work with OpenSC
> version 12 and far my observations have been very intermittent communication.
> Sometimes I can return information about the card instantaneously, for
>
On Jan 7, 2011, at 11:21 PM, Jean-Michel Pouré - GOOZE wrote:
> It seems that initializing a Feitian PKI on Windows 7 64bits (CSP), you
> are able to use the card on GNU/Linux (OpenSC). But the converse is not
> always true. Windows may not accept the PIN code or declare certificates
> invalid.
Wh
Hello,
On Jan 2, 2011, at 6:24 PM, Viktor TARASOV wrote:
> Martin Paljak wrote:
>>>
>>>
>> This will hold plaintext RSA private key parameters. Why? When importing a
>> private key, the key object should already come from pkcs15-init (or
>> equivalen
Hello,
A generic question about authentic_pin* (like authentic_chv_verify_pinpad)
functions and related logic.
Generic review of it suggests that it mostly duplicates iso7816_pin_cmd and
sc_pin_cmd. Why the duplication? What is missing from ISO functions?
PIN handling and decisions to what hap
Hello,
On Jan 8, 2011, at 12:13 AM, Douglas E. Engert wrote:
> On 1/7/2011 3:21 PM, Jean-Michel Pouré - GOOZE wrote:
>> It seems that initializing a Feitian PKI on Windows 7 64bits (CSP), you
>> are able to use the card on GNU/Linux (OpenSC). But the converse is not
>> always true. Windows may not
On Jan 7, 2011, at 7:25 PM, Anders Rundgren wrote:
> Slightly off-topic but I guess some of you guys have more insight in
> HSMs than most other people have :-)
>
> In a recent project there were a requirement for frequent and *automated*
> renewals of certificates. The renewal procedure is bas
On Jan 6, 2011, at 6:21 PM, webmas...@opensc-project.org wrote:
> Revision: 5052
> Author: vtarasov
> Date: 2011-01-06 16:21:15 + (Thu, 06 Jan 2011)
>
> Log Message:
> ---
> pkcs15-tool: new action 'list-applications'
Just a thought:
Maybe it would be useful to split the para
Hello,
On Jan 5, 2011, at 6:32 PM, Viktor TARASOV wrote:
> On 05.01.2011 17:22, Martin Paljak wrote:
>> On Jan 5, 2011, at 5:22 PM, webmas...@opensc-project.org wrote:
>>> Log Message:
>>> ---
>>> pkcs15-tool: new 'bind-to-aid' argument ...
&g
On Jan 5, 2011, at 5:22 PM, webmas...@opensc-project.org wrote:
> Revision: 5046
> Author: vtarasov
> Date: 2011-01-05 15:22:12 + (Wed, 05 Jan 2011)
>
> Log Message:
> ---
> pkcs15-tool: new 'bind-to-aid' argument ...
Why not --aid ?
--
@MartinPaljak.net
+3725156495
___
On Jan 4, 2011, at 7:15 PM, Andreas Jellinghaus wrote:
> Am Montag 03 Januar 2011, um 23:59:47 schrieb Peter Stuge:
>>> opensc-devel mailing list
>>> opensc-devel@lists.opensc-project.org
>>> http://www.opensc-project.org/mailman/listinfo/opensc-devel
>>
>> I would appreciate if we could change
On Jan 4, 2011, at 3:52 PM, Brian Thomas wrote:
> NMAKE : fatal error U1077: '"C:\Program Files\Microsoft Visual Studio
> 9.0\VC\Bin
> \cl.EXE"' : return code '0xc135'
http://social.msdn.microsoft.com/Forums/en-US/windowssdk/thread/97ebc510-25f2-4747-8d4f-185038d805d4/
Maybe this helps? Wha
Hello,
On Jan 4, 2011, at 2:47 PM, Jean-Michel Pouré wrote:
> I just discovered the pGina project:
> http://www.gooze.eu/links/pgina-open-source-authentication-system
If you post links, please paste the original link (which, by the way, is 44
characters shorter) instead of blog links.
> Did any
301 - 400 of 1137 matches
Mail list logo