On 5/3/2011 9:09 AM, Jean-Michel Pouré - GOOZE wrote: > Le mardi 19 avril 2011 à 15:31 +0200, Jean-Michel Pouré - GOOZE a > écrit : >>> This should be tackled in a semi-uniform way for the next release. >> You >>> don't really need the .inf, you need to have the correct registry >>> entries only. Feel free to maintain a sample .inf file on Entersafe >>> wiki page as an attachment or something similar for now. > > I would like to propose and maintain a sample .inf file for the > Entersafe driver. But I still don't understand how to test the > mini-driver. Could someone summarize, in short?
the opensc-minidriver gets added to Windows\system32. (I have not tried on a win7 of 64-bit machine.) The for each ATR or set of ATRs that match the mask add something like this to the registry: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards\DEE OPENSC] "ATR"=hex:3b,db,96,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 "ATRMask"=hex:ff,ff,ff,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\ 00 "Crypto Provider"="Microsoft Base Smart Card Crypto Provider" "Smart Card Key Storage Provider"="Microsoft Smart Card Key Storage Provider" "80000001"="opensc-minidriver.dll" Pick the name you want, I used DEE OPENSC for this test. the 8000001= is the path to the mini-driver. Since it might be used by login or other system process, it will find it in system32. A search is made of the HKLM\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards\ looking for cardATR | ATRMask == ATR Then certutil can be used to look at a card: certutil -scinfo Or you can look at the user's certificates: certutil -store -user My The control panel or IE "tools->Internet Options->content-> certificates->Personal" also shows the "My" certificates that certutil can show. With IE if you go to a web site the accepts client certificates, and the web site trusts the CA that signed your smart card certificate, it should try and use the cert. If more then one cert could be used, it prompts you to pick one, then prompt to insert the card, then prompts for the pin. -- Douglas E. Engert <deeng...@anl.gov> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
