Hi Holger, I think I know what the issue is. How exactly are you trying to create signatures? what padding mode etc. are you using?
The reason I'm asking is this: if I remember correctly, opensc so far only has flags what a card can do (in theory), but it has these flags once per card. Each key might be restricted and offer only a subset of those functionality, for example a signature key may not offer RAW RSA signing (so it can't be used for decryption operations). Now I guess your application tries to do that. pkcs11-tool --test does that, when I test it with my signtrust card, thus the test fails (for the first slot / signing only key). so, can you provide more details so we can verify if my wild guess is correct? Regards, Andreas _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
