On 15.03.2011 10:42, Pierre Ossman wrote: > On Mon, 14 Mar 2011 16:07:53 +0100 > Viktor TARASOV<viktor.tara...@opentrust.com> wrote: > >> On 14.03.2011 15:38, Pierre Ossman wrote: >>> PS. Should OpenSC really try unknown applications at all? Seems like >>> it'll just cause random glitches. >> As for me yes, >> it has to be able to read any PKCS#15 application . >> > But isn't the AID well known for PKCS#15 applications? And don't we > know the AIDs for the other ones (the emulated)?
You have a reason, thanks to point it out. I should have said 'read any PKCS#15 compatible application'. " When several PKCS #15 applications resides on one card, they shall be distinguished by their object identifier in their application template in EF(DIR)." " The full AID for the current version of this document is thus A0 00 00 00 63 50 4B 43 53 2D 31 35. " (pkcs15 v1.1 ch 5.7.1/2). Reading these lines only the OpenSC PKCS#15 application conforms to the specification. All the rest, like the ones listed in dir.c, the 'native' cards that declare to be compatible with PKCS#15 (AuthentIC v3.2, IAS/ECC, ...) are not . All these issuers use its own AID that is not the one from PKCS#15 specification. I don't think that OpenSC should reject these applications, and actually it do not -- beside emulation, the 'known' applications are listed in the static table 'apps' from dir.c (as you see, they are known not by their 'object identifier' but by their AID). My intention is to 'discover' the PKCS#15 compatible applications, rather then to get them from the static list . These applications are discriminated by the ability to bind to . As it implemented now, the 'known' applications are pushed to the head of the list, and so, the middleware that expects one application will address the known one. (Precisely this point was invalidated by the accidental commit ) . > Rgds Kind wishes, Viktor. -- Viktor Tarasov <viktor.tara...@opentrust.com> _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
