Christian Horn wrote:
Hi,
i am unable to use the keys on this smartcard labeled
"TeleSec NetKey Card" here.
Using pcsc-lite 1.2.9beta9 / openct 0.6.6 / opensc 0.10.0
the card is accessed as a TCOS-card by opensc.
Reading certs and accessing private-keys from the card seems
to work, global/local-pin-problems are solved.
The problem is this: the usual case seems to be someone tells the
application to use private-key with ID 1, and the application also
uses the cert with ID 1 for that communication. Due to a different
use of certs in this card here that doesnt work out: i have to use
private-key with ID 1 and in the same operation the cert with ID 2.
doesn't the cert with the id 1 belong to the private key with the
id 1 (or what is the exactly problem) ?
I tried to bend this over in the OpenSwan-code but a) id didnt work
out and b) it doesnt seem to be the right way, as for using the card
with s/mime pgp would have to be modified..
How hard is it to let OpenSC do this?
Ive had a look at the debugging-output that gets generated from
'pkcs15-tool -r'eading certs, but didnt find the hook to overwrite
the path to the cert-file that is read out.
the binding between the certs and keys is defined in pkcs15-tcos.c
( in src/libopensc/ ) as this is most likely not a pkcs15 compliant
card.
Cheers,
Nils
_______________________________________________
opensc-devel mailing list
[email protected]
http://www.opensc-project.org/mailman/listinfo/opensc-devel
