Package: mozilla-opensc Version: 0.10.1-1 Severity: normal Steps to reproduce: Log in to cacert.org account, select Client Certificates / New. Add at least one email address, select 'Next'. Select either 1024 or 2048 bit keysize, then 'Create Certificate Request'. Choose 'OpenSC card', select 'Ok'. Message 'key generation in progress' appears.
Message displayed is: Your certificate request has failed to be processed correctly, please try submitting it again. A key should have been generated on the card instead. If the card does not support the operation, a descriptive error message should be presented. /tmp/opensc-errors.log contains: iso7816.c:98:iso7816_check_sw: Incorrect parameters in the data field card-flex.c:938:flex_create_file: Card returned error: Incorrect parameters in APDU card.c:586:sc_create_file: returning with: Incorrect parameters in APDU /tmp/opensc-debug.log contains: pkcs11-session.c:40:C_OpenSession: Opening new session for slot 0 pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_SENSITIVE = TRUE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_TOKEN = TRUE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_PRIVATE = TRUE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_DERIVE = FALSE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_UNWRAP = TRUE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_SIGN = TRUE pkcs11-object.c:831:C_GenerateKeyPair: C_CreateObject(), PrivKey attrs: CKA_DECRYPT = TRUE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_MODULUS_BITS = 0x400 pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_PUBLIC_EXPONENT = 010001 pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_TOKEN = TRUE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_DERIVE = FALSE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_WRAP = FALSE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_VERIFY = TRUE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_VERIFY_RECOVER = FALSE pkcs11-object.c:832:C_GenerateKeyPair: C_CreateObject(), PubKey attrs: CKA_ENCRYPT = FALSE framework-pkcs15.c:1291:pkcs15_gen_keypair: Keypair generation, mech = 0x0 card.c:877:sc_card_ctl: called card.c:883:sc_card_ctl: card_ctl(4) not supported card.c:741:sc_select_file: called; type=2, path=3f0050154946 card-flex.c:582:flex_select_file: called, cached path=3f005015 card-flex.c:527:select_file_id: called, p1=0, path=4946 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 8 bytes (resp. 258 bytes): C0 A4 00 00 02 49 46 FC .....IF. card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=61 SW2=0F) card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 5 bytes (resp. 258 bytes): C0 C0 00 00 0F ..... card.c:274:sc_transmit_apdu: Received 15 bytes (SW1=90 SW2=00) 00 00 00 80 49 46 01 FC 01 01 11 01 01 00 00 ....IF......... iso7816.c:592:iso7816_get_response: returning with: 15 card-flex.c:623:flex_select_file: returning with: 0 card.c:763:sc_select_file: returning with: 0 card.c:613:sc_read_binary: called; 128 bytes at index 0 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 5 bytes (resp. 258 bytes): C0 B0 00 00 80 ..... card.c:274:sc_transmit_apdu: Received 128 bytes (SW1=90 SW2=00) 01 06 70 6B 63 73 31 35 02 06 6F 6E 65 70 69 6E ..pkcs15..onepin 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ iso7816.c:126:iso7816_read_binary: returning with: 128 card.c:644:sc_read_binary: returning with: 128 profile.c:313:sc_profile_load: Trying profile file /usr/share/opensc/pkcs15.profile profile.c:321:sc_profile_load: profile /usr/share/opensc/pkcs15.profile loaded ok profile.c:313:sc_profile_load: Trying profile file /usr/share/opensc/flex.profile profile.c:321:sc_profile_load: profile /usr/share/opensc/flex.profile loaded ok pkcs15-lib.c:2120:select_object_path: key-domain.private-key @3f005015 (auth_id.len=1) profile.c:572:sc_profile_instantiate_template: Instantiating template key-domain at 3f005015 profile.c:652:sc_profile_instantiate_file: Instantiated key-directory at 3f0050153045 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated private-key at 3f00501530450012 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated internal-pubkey-file at 3f00501530451012 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated extractable-key at 3f0050154345 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated public-key at 3f0050154445 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated certificate at 3f0050154545 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] profile.c:652:sc_profile_instantiate_file: Instantiated data at 3f0050154645 profile.c:655:sc_profile_instantiate_file: [EMAIL PROTECTED] card.c:741:sc_select_file: called; type=2, path=3f0050153045 card-flex.c:582:flex_select_file: called, cached path=3f0050154946 card-flex.c:527:select_file_id: called, p1=0, path=3f00 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 7 bytes (resp. 258 bytes): C0 A4 00 00 02 3F 00 .....?. card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=61 SW2=14) card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 5 bytes (resp. 258 bytes): C0 C0 00 00 14 ..... card.c:274:sc_transmit_apdu: Received 20 bytes (SW1=90 SW2=00) 00 00 61 1C 3F 00 38 FC 4F 44 44 01 05 00 01 03 ..a.?.8.ODD..... 00 00 00 00 .... iso7816.c:592:iso7816_get_response: returning with: 20 card-flex.c:527:select_file_id: called, p1=0, path=5015 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 7 bytes (resp. 258 bytes): C0 A4 00 00 02 50 15 .....P. card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=61 SW2=14) card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 5 bytes (resp. 258 bytes): C0 C0 00 00 14 ..... card.c:274:sc_transmit_apdu: Received 20 bytes (SW1=90 SW2=00) 00 00 14 D4 50 15 38 FC 00 00 00 01 07 00 01 05 ....P.8......... 02 00 83 8A .... iso7816.c:592:iso7816_get_response: returning with: 20 card-flex.c:527:select_file_id: called, p1=0, path=3045 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 8 bytes (resp. 258 bytes): C0 A4 00 00 02 30 45 FC .....0E. card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=61 SW2=14) card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 5 bytes (resp. 258 bytes): C0 C0 00 00 14 ..... card.c:274:sc_transmit_apdu: Received 20 bytes (SW1=90 SW2=00) 00 00 00 00 30 45 38 FC 00 11 00 01 07 00 00 02 ....0E8......... 02 00 83 8A .... iso7816.c:592:iso7816_get_response: returning with: 20 card-flex.c:623:flex_select_file: returning with: 0 card.c:763:sc_select_file: returning with: 0 pkcs15-lib.c:2966:sc_pkcs15init_authenticate: path=3f0050153045, op=3 card.c:741:sc_select_file: called; type=2, path=3f0050153045 card-flex.c:582:flex_select_file: called, cached path=3f0050153045 card.c:763:sc_select_file: returning with: 0 sec.c:157:sc_pin_cmd: called card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 13 bytes (resp. 258 bytes, sensitive): c0 20 00 01 [sensitive data] card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=90 SW2=00) sec.c:204:sc_pin_cmd: returning with: 0 pkcs15-lib.c:3178:sc_pkcs15init_fixup_file: sc_pkcs15init_fixup_file: user pin is CVH1 card.c:877:sc_card_ctl: called card.c:883:sc_card_ctl: card_ctl(4) not supported card.c:581:sc_create_file: called; type=2, path=3f00501530450012, size=326 card.c:254:sc_transmit_apdu: called card.c:221:sc_transceive: Sending 21 bytes (resp. 258 bytes): F0 E0 00 00 10 FF FF 01 46 00 12 01 FF F1 F1 FF ........F....... 01 03 00 00 00 ..... card.c:274:sc_transmit_apdu: Received 0 bytes (SW1=6A SW2=80) framework-pkcs15.c:1376:pkcs15_gen_keypair: sc_pkcs15init_generate_key returned -1205 pkcs11-session.c:131:C_CloseSession: C_CloseSession(2) Slot 0 Schlumberger E-Gate token label: OpenSC Card (User PIN) token manuf: OpenSC Project token model: PKCS #15 SCard token flags: rng, login required, PIN initialized, token initialized serial num : 00000210FFFF0200 Supported mechanisms: SHA-1, digest MD5, digest RIPEMD160, digest RSA-X-509, sign, verify, unwrap, decrypt RSA-PKCS, sign, verify, unwrap, decrypt SHA1-RSA-PKCS, sign, verify MD5-RSA-PKCS, sign, verify RIPEMD160-RSA-PKCS, sign, verify RSA-PKCS-KEY-PAIR-GEN, keypairgen -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages mozilla-opensc depends on: ii libc6 2.3.6-7 GNU C Library: Shared libraries ii libopensc2 0.10.1-1 SmartCard library with support for ii libssl0.9.8 0.9.8a-8 SSL shared libraries ii zlib1g 1:1.2.3-11 compression library - runtime mozilla-opensc recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]