Corcoran David wrote:
I may be wrong on this, but I believe you can "simulate" a logout command by selecting the card's Card Manager and then the applet again. Not sure if this will work with the CAC since it has a shared ID applet which manages PIN state, but it is worth a try ....
I was looking at the ActivIdentity FIPS documentation for their CAC applets, and it clearly states that the results of a PIN verification through the ACA (Access Control Applet) remain in transient memory until the card is powered down. So the *only* way to logout is to reset.
Which means I'm going to yank my hackaround out of commonAccessCard.c and work on fixing the other issues I've identified with session_FreeSession(). If anyone has a patch in this area that's not applied to the trunk please let me know.
-- Tim
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Muscle mailing list [email protected] http://lists.drizzle.com/mailman/listinfo/muscle
