Dimitrios Siganos wrote: > Hi, > > I am using a feitian epass 3000 usb smartcard and I have a problem with > the length of the key id of the RSA private key on the smartcard. This > is what pkcs15-tool reports: > > $ pkcs15-tool -k > Using reader with a card: CCID Compatible > Private RSA Key [Private Key] > Com. Flags : 3 > Usage : [0x4], sign > Access Flags: [0x0] > ModLength : 1024 > Key ref : 1 > Native : yes > Path : 3f005015 > Auth ID : 01 > ID : 6de677f53533e28254d5890e2d7a15a8135883ca > > This is an example usage of the key: > openssl req -new -x509 -engine pkcs11 -keyform engine -text \ > -in slot_1-id_6de677f53533e28254d5890e2d7a15a8135883ca > > I have tried generating the key in the card and also generating it on > the PC and copying into the smartcard. in both cases, I end up with a > long id. > > My question is: can I change this id and make it smaller? Who allocates > this id? >
You can change it back to one-byte ID when you set 'pkcs15-id-style' = 'native' in the 'pkcs15' part of the pkcs15.profile. > Some apps, assume that the key id is small and don't allocate enough > buffer space for my long key id. > What are these apps? > Regards, > Dimitrios Siganos > Kind wishes, Viktor Tarasov. > _______________________________________________ > opensc-devel mailing list > opensc-devel@lists.opensc-project.org > http://www.opensc-project.org/mailman/listinfo/opensc-devel > > -- Viktor Tarasov <viktor.tara...@opentrust.com> _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
