[OCF] saving RSA key pair

Tue, 28 Dec 1999 00:55:00 -0800 

Hi,

  I try to generate RSA key pair outside of my smart card (SC) and save both
public and private keys into my SC using PKCS11 native library. I use
following template for creating RSA public key (Java PKCS#11 API code):

int[] attrtypes =     { PKCS11Object.CLASS,
                                PKCS11Object.TOKEN,
                                PKCS11Object.LABEL,
                                PKCS11Object.KEY_TYPE,
                                PKCS11Object.ID,
                                PKCS11Object.ENCRYPT,
                                PKCS11Object.VERIFY,
                                PKCS11Object.VERIFY_RECOVER,
                                PKCS11Object.WRAP,
                                PKCS11Object.MODULUS,
                                PKCS11Object.PUBLIC_EXPONENT
};
Object[] attrvalues = { PKCS11Object.PUBLIC_KEY,
                                PKCS11Object.TRUE,
                                "My Appl",
                                PKCS11Object.RSA,
                                pub.getFingerprint(),
                                PKCS11Object.TRUE,
                                PKCS11Object.TRUE,
                                PKCS11Object.FALSE,
                                PKCS11Object.FALSE,
                                pub.getModulus(),
                                pub.getPublicExponent()
};

and I use following template for creating RSA private key:

int[] attrtypes =     { PKCS11Object.CLASS,
                                PKCS11Object.TOKEN,
                                PKCS11Object.PRIVATE,
                                PKCS11Object.LABEL,
                                PKCS11Object.KEY_TYPE,
                                PKCS11Object.MODULUS,
                                PKCS11Object.ID,
                                PKCS11Object.DECRYPT,
                                PKCS11Object.UNWRAP,
                                PKCS11Object.SIGN,
                                PKCS11Object.SIGN_RECOVER,
                                PKCS11Object.DERIVE,
                                PKCS11Object.PUBLIC_EXPONENT,
                                PKCS11Object.PRIVATE_EXPONENT,
                                PKCS11Object.PRIME_1,
                                PKCS11Object.PRIME_2,
                                PKCS11Object.EXPONENT_1,
                                PKCS11Object.EXPONENT_2,
                                PKCS11Object.COEFFICIENT,
                                PKCS11Object.EXTRACTABLE,
                                PKCS11Object.LOCAL,
};
Object[] attrvalues = { PKCS11Object.PRIVATE_KEY,
                                PKCS11Object.TRUE,
                                PKCS11Object.TRUE,
                                "My Appl",
                                PKCS11Object.RSA,
                                pri.getModulus(),
        
((RSAPublicKey)pri.getPublicKey()).getFingerprint(),
                                PKCS11Object.TRUE,
                                PKCS11Object.FALSE,
                                PKCS11Object.TRUE,
                                PKCS11Object.FALSE,
                                PKCS11Object.FALSE,
                                pri.getPublicExponent(),
                                pri.getPrivateExponent(),
                                pri.getPrimeP(),
                                pri.getPrimeQ(),
                                pri.getPrimeExponentP(),
                                pri.getPrimeExponentQ(),
                                pri.getCrtCoefficient(),
                                PKCS11Object.TRUE,
                                PKCS11Object.TRUE,
};

if I generate a key pair and save only one key everything goes well, but if
I try to save both keys DeviceException occures. Only the first key is
written and during the second key is being written DeviceException occurs. I
tried to change saving order of keys, but the same error occurred.

Could be anyone so kind to help me?

Thanks in advance,

Jakub Zrzavy




---
> Visit the OpenCard web site at http://www.opencard.org/ for more
> information on OpenCard---binaries, source code, documents.
> This list is being archived at http://www.opencard.org/archive/opencard/

! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email
! to
!                           [EMAIL PROTECTED]
! containing the word
!                           unsubscribe 
! in the body.

Reply via email to