On Tuesday 02 October 2007 19:20:22 Gürer Özen wrote:
> I've added a new generic cardctl call, SC_CARDCTL_READ_PUBLIC_KEY. When the
> length of the path is zero, sc_pkcs15_read_pubkey() calls this with
> key_reference value. So cards can provide alternative methods to read
> public keys. AKIS impl
On Tuesday 02 October 2007 23:13:00 Gürer Özen wrote:
> On Tuesday 02 October 2007 23:01:21 Ludovic Rousseau wrote:
> > My question was in fact why use sc_card_ctl() instead of
> > sc_pkcs15_read_key_by_ref()
> > I don't know if a generic sc_pkcs15_read_key_by_ref() is possible or
> > if each card
On Tuesday 02 October 2007 22:58:35 Ludovic Rousseau wrote:
> 2007/10/2, Ludovic Rousseau <[EMAIL PROTECTED]>:
> > Why use a complete struct sc_cardctl_public_key when only the
> > pkey.key_ref is used?
>
> I now see why. I am not sure it is a good idea to have the same
> parameter for in and out a
On Tuesday 02 October 2007 23:01:21 Ludovic Rousseau wrote:
> My question was in fact why use sc_card_ctl() instead of
> sc_pkcs15_read_key_by_ref()
> I don't know if a generic sc_pkcs15_read_key_by_ref() is possible or
> if each card driver must implement its own version.
Ah I see now. APDU comm
2007/10/2, Gürer Özen <[EMAIL PROTECTED]>:
> On Tuesday 02 October 2007 22:34:09 Ludovic Rousseau wrote:
>
> > Why not call the function sc_pkcs15_read_key_by_ref() or something similar?
>
> Because upper level stuff (pkcs11 layer for example) calls the
> sc_pkcs15_read_pubkey, and change needs to
2007/10/2, Ludovic Rousseau <[EMAIL PROTECTED]>:
> Why use a complete struct sc_cardctl_public_key when only the
> pkey.key_ref is used?
I now see why. I am not sure it is a good idea to have the same
parameter for in and out arguments.
I would prefer something like:
sc_pkcs15_read_key_by_ref(sc_c
On Tuesday 02 October 2007 22:34:09 Ludovic Rousseau wrote:
> Why not call the function sc_pkcs15_read_key_by_ref() or something similar?
Because upper level stuff (pkcs11 layer for example) calls the
sc_pkcs15_read_pubkey, and change needs to be done in only one place this
way.
> Why use a co
2007/10/2, Gürer Özen <[EMAIL PROTECTED]>:
> Hi,
Hello,
> pam_p11 module first makes the card sign some random data, then extracts the
> public key, and signs it itself, then compares the signatures. Public key is
> read by the sc_pkcs15_read_pubkey() function in the pkcs15-pubkey.c file.
> This
Hi,
pam_p11 module first makes the card sign some random data, then extracts the
public key, and signs it itself, then compares the signatures. Public key is
read by the sc_pkcs15_read_pubkey() function in the pkcs15-pubkey.c file.
This function blindly tries to read public key via calling
sc
