From: Michael Gold <[EMAIL PROTECTED]> Subject: [Muscle] [PATCH] MuscleCard engine for OpenSSL To: [EMAIL PROTECTED], [EMAIL PROTECTED] Cc: Date: Fri, 27 Aug 2004 16:21:23 -0400 Reply-To: [EMAIL PROTECTED], MUSCLE <[EMAIL PROTECTED]>
I've created a patch to add a MuscleCard engine to OpenSSL 0.9.7d, allowing it to access smart cards using the MuscleCard API. It is located at: http://www.scs.carleton.ca/~mgold/patches/openssl-add-mcard.patch This engine implements RSA encryption (signing) and decryption using a private key stored on a MuscleCard-compatible smart card. It has been tested with a Cyberflex e-gate 32K Java Card running MUSCLE's CardEdgeApplet (using the MCardPlugin service for PCSC Lite). Usage example ------------- This command will use the MuscleCard engine to create a self-signed certificate: openssl req -new -text -sha1 -x509 \ -engine musclecard -keyform engine \ -key "E-Gate 00 00:0:1:1111:/var/ssl/cflex_pub.key" \ -out cacert.pem The meaning of the key string is as follows: Use PCSC Lite reader "E-Gate 00 00" Private key 0 Authenticate with PIN #1, value "1111" Public key is stored in /var/ssl/cflex_pub.key (to export public key 1 using muscleTool: "exportkey 1 /var/ssl/cflex_pub.key") - Michael _______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.drizzle.com/mailman/listinfo/muscle ---------- -- Eugen* Leitl <a href="http://leitl.org">leitl</a> ______________________________________________________________ ICBM: 48.07078, 11.61144 http://www.leitl.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE http://moleculardevices.org http://nanomachines.net
pgpyZD9poPZbT.pgp
Description: PGP signature