Hello,
the command
pkcs15-tool --read-public-key 45
gives the expected output on Windows 7 but triggers
a crash message finally:
"pcks15-tool.exe funktioniert nicht mehr"
which translates to "pcks15-tool.exe doesn't work any more".
Other parameters of pkcs15-tool don't produce this
annoying
Hello,
Am Dienstag 13 Dezember 2011 schrieb Ludovic Rousseau:
> Johannes can you attach a "pkcs15-crypt --sign" log with the same card
> and same reader on Linux?
http://www.uni-giessen.de/~g013/opensc/pkcs15-sign-linux.log
The log on Mac was
http://www.uni-giessen.de/~g013/opensc/pkcs15-crypt
Hello,
using Firefox on Mac OS X with CardOS cards I get a connection error.
Ludovic Rousseau kindly showed me how to track it down to the sign
function of opensc 0.12.2:
The command
pkcs15-crypt --sign --pkcs1 --sha-1 --in sig.in --out sig.out --key 46
produces
Compute signature failed:
Hello,
Am Donnerstag 03 November 2011 schrieb Ludovic Rousseau:
> So the problem occurs on Mac but not on Linux (or Windows). Exact?
Yes.
>
> If so the bug may not be in OpenSC, but in the libccid provided by
> Apple (in 10.6.8 Snow Leopard it is version 1.3.8) or in pcsc-lite
> modified by Ap
Hello,
Am Mittwoch 02 November 2011 schrieb Ludovic Rousseau:
> Martin is right. OpenSC is sending an extended APDU with a data length
> of 00 01 01 = 257 bytes.
Changing "max_send_size" didn't make any difference.
> Can you run the procedure at [2] so I can check your reader?
The logs are
h
Hello,
while OpenSC 0.12.2 works with our card CardOS V4.3B
using Linux or Windows, there is a problem with Mac OS X:
The PIN asked. After entering the PIN on the pinpad Firefox
asks you to select the certificate, but finally the connection
to the web site is not established.
A log file produced
Hello,
Am Montag 08 August 2011 schrieb Martin Paljak:
...
> Reading the e-mail I don't see what is so illegal or confidential in
> it that it should be removed either?
I thought that too, that's why I made the mistake.
But I feel obliged to comply, whatever the reasons might be.
By the way, X
Hello,
could someone please remove
http://www.opensc-project.org/pipermail/opensc-devel/2011-July/016985.html
from the opensc-devel archives?
I'm sorry, in this e-mail I quoted another e-mail. I shouldn't have done so.
Regards
Johannes
___
opensc-deve
Hello,
with Windows 7 (64 bit) and opensc 0.12.2 the command
pkcs15-tool --reader 0 --read-public-key 45
gives the right result but afterwards a message from the
Windows system pops up:
"pkcs15-tool funktioniert nicht mehr"
(That translates to "pkcs15-tool doesn't work any more")
This is no
new cards.
Please let me know your comments and feedbacks.
Kind regards,
Patrice
Am Samstag 16 Juli 2011 schrieb Peter Koch:
> Hi Johannes!
>
> 2011/7/15 Johannes Becker
>
> > Hello,
> >
> > I'm testing a new Firmware for the Xiring MyLeo card reader. It
&g
Hello,
I'm testing a new Firmware for the Xiring MyLeo card reader. It
will support extended APDU. It works with a CardOS chip, but
with a TCOS chip firefox displays quickly the small window asking
you to enter the pin on the pinpad several times. You have no chance
to do so and there is subsequ
Hello,
I had a hard time to get the Windows Installer 0.12
working with my Windows 7, 64 bit.
I learned that you have to use the x86 installer, probably because
Firefox is 32 bit.
Then I noticed, that opensc.dll is not replaced properly, if an
opensc.dll is left over from an old installation. Y
Hello,
Am Samstag 18 Juni 2011 schrieb Hans Witvliet:
...
> But with some cards it works
...
> If i use a pinpad-reader (Xiring in my case) i get an prompt on the
> reader, and have to type the ping on the reader-keyboard.
With all my readers, even with the Xiring I get
OpenSC [3F00]> verif
Hello,
the "verify" command of opensc-tool promises
"If key is omitted, card reader's keypad will be used to collect PIN."
I doesn't work for me. Is there a way to do it or is this feature not
implemented yet?
Regards
Johannes
___
opensc-devel m
Am Sonntag 12 Juni 2011 schrieb MAK:
> Hello,
>
> i have the problem that running "opensc-tool -w -a" gives immediately a
> timeout if no card is present in the reader.
...
> I am running opensc-0.12.0, pcsc-lite-1.7.2 and ccid-1.4.4 on a FreeBSD
> 8.2-RELEASE system.
It's the same fault with ot
Hello,
Am Mittwoch 08 Juni 2011 schrieb Martin Paljak:
> > Using the GemPlus Pinpad reader, Firefox shows quickly serveral times
> > the window telling you to enter the PIN on the Pinpad, but the connection
> > to the web servers fails before you have a chance to to anything.
...
> How does this
Hello,
the card readers SPR532 (SCM) and GemPC Pinpad USB (Gemalto)
work fine with CardOS cards. SPR532 is ok under Linux.
With Windows the SPR532 doesn't accept the PIN, when you use opensc.
On the other hand, with Peter Koch's middleware it is ok.
Using the GemPlus Pinpad reader, Firefox shows
Hello,
Am Mittwoch 01 Juni 2011 schrieb Martin Paljak:
> > I have no idea why your SCM reader behaves different under Windows and
> > Linux. Does it have old firmware?
The installer tells me that the firmware is up to date. I even tried the beta
firmware,
that I got from SCM.
> Probably. SPR5
Hello,
opensc-0.12.2-svn r5526 works with TCOS2 and CardOS cards
using e.g. the Kobil KAAN advanced reader.
If i use the reader on the Dell USB Smartcard Keyboard, the pinpad works only
with CardOS cards.
When I use a TCOS 2 card and ask Firefox to show a site requiring chip card
authentication
Hello,
Am Montag 30 Mai 2011 schrieb Martin Paljak:
> The latest version
> should require the use of --module, wiki should be updated. But it
> should also fail in an obvious way, showing the help text.
Yes, a help text is shown with the first line
--module Specify the module to
Am Samstag 28 Mai 2011 schrieb Peter Koch:
> Johannes, could you please test with version 5508. TCOS2 should
> work again.
Yes! Thank you, a great relief.
I had successful tests with
r5526 on Debian 64 squeeze and on Windows XP
On Windows 7 (64) the module opensc-pkcs11.dll of r5526 doesn't lo
Am Freitag 29 April 2011 schrieb Martin Paljak:
>
> I froze r5409 [1] as OpenSC 0.12.1 RC1.
It works with iceweasel (firefox) and CardOS V4.3B
It doesn't work with TCOS 2 .
This the same with OpenSC 0.12.0, we discussed the
problem without a solution last september and
probably tracked it dow
Hello,
thank you for the release.
Just a reminder, that the "login required" bug concerning
TCOS2 cards is not fixed yet.
The patch
http://www.opensc-project.org/opensc/ticket/256
does not add the "login required" flag.
Can I be of any help tracing down the problem?
Happy New Year!
Johannes
Am Donnerstag 02 Dezember 2010 schrieb Martin Paljak:
> > Have you decided on a release date yet for 0.12.0?
>
> Either today or tomorrow.
I tested opensc-0.12.0-rc1 on Debian Squeeze and on Windows XP.
There is still the bug with our TCOS 2 Card, described
in my e-mail from 2010-09-02 12:21 an
Hello,
it took me some time to reproduce the already described bug:
"After some idle time the browser seems to forget completely about the chip
card.
If you request an encrypted web page, a ssl handshake error is displayed."
This happens, if you use "ignored_readers" in opensc.conf.
In my examp
Hi,
now I detected another flaw in 0.12.0:
After some idle time the browser seems to forget completely about the chip card.
If you request an encrypted web page, a ssl handshake error is displayed.
For production purposes I'm now returning to opensc2 0.11.4-5+lenny1,
the last opensc working wit
Hello,
now I have the opensc-debug logs for pkcs11-tool -L with TCOS
opensc version 0.11.13-1 gives
token flags: login required, PIN initialized, token initialized
http://www.uni-giessen.de/~g013/opensc/opensc-debug.0.11.13-1.log
opensc version 0.12.0-svn-r4700 gives
token flags: readonl
Am Montag 06 September 2010 schrieb Martin Paljak:
> Hello,
>
> On Sep 6, 2010, at 2:05 PM, Johannes Becker wrote:
> > Am Donnerstag 02 September 2010 schrieb Martin Paljak:
> >> Please provide opensc-debug.log for TCOS2 for the failing transaction
> >> w
Am Donnerstag 02 September 2010 schrieb Martin Paljak:
>
> Please provide opensc-debug.log for TCOS2 for the failing transaction with
> 0.12.0. If possible, also the successful log with 0.11.X might help.
The logs are
http://www.uni-giessen.de/~g013/opensc/report-bug.txt
http://www.uni-giessen.d
Hello,
unfortunately I have to repeat my message about the TCOS2 card:
When using opensc-0.12.0-svn-r4647 with our Uni Giessen Card (TCOS 2),
firefox presents the certificate to use without asking the PIN.
Subsequently the web page called can't be displayed.
On the other hand CardOS 4.3 works w
Hello,
I'm setting up a process for printing the personal information for a chipcard
to be handed out.
The service person's card is used by firefox for authentication.
The card to be handed out is analysed by opensc command line tools.
Everything works, but I think, the process that analyses the s
Am Donnerstag 12 August 2010 schrieb Ludovic Rousseau:
> Try again with ccid 1.3.13 or 1.4.0.
While the Debian experimental package libccid 1.4.0. works on real machines,
it doesn't do the job inside Virtualbox. There firefox complains
about an unresponsive card. On the other hand, the older lib
Hello,
when using opensc-0.12.0-svn-r4621 with our Uni Giessen Card (TCOS 2),
firefox presents the certificate to use without asking the PIN.
Subsequently the web page can't be displayed.
On the other hand CardOS 4.3 works.
Grüße
Johannes
___
opensc
Am Donnerstag 12 August 2010 schrieb Ludovic Rousseau:
> Try again with ccid 1.3.13 or 1.4.0.
Yes, libccid 1.4.0-1 from Debian experimental does the job.
Thank you.
Grüße
Johannes
___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
h
Hello,
I could track down the problems with CardOS 4.3 a little bit.
The (Uni-Bochum) card doesn't work using the Kobil card readers
(KAAN advanced and KAAN t...@ank).
On the other hand, using the reader in the Dell Sk-3205 Keyboard the test was
successfull
on Ubuntu 8.04.4 (opensc 0.11.4) or
on
Am Mittwoch 07 Juli 2010 schrieb kerstin.ho...@uv.ruhr-uni-bochum.de:
>
> I checked out 0.12.0-svn-r4413. With this version, our cards work again.
I checked this on Debian Lenny and got the following error:
pkcs11-tool --slot 1 --test --login
C_SeedRandom() and C_GenerateRandom():
seeding (
Am Freitag 18 Juni 2010 schrieb Andreas Jellinghaus:
> in any case without an opensc debug log file, there is little we can
> say about the problem
Here comes the log.
Opensc under Windows works. The test is attached below.
Under Linux (Debian etch) I now have the same opensc version (0.11.4)
and
Am Montag 14 Juni 2010 schrieb Andreas Jellinghaus:
> 1.) define a test.
> for example "pkcs11-tool --test --login --pin ... --slot ...".
I didn't succeed yet in testing all you've proposed.
Here an intermediary result.
The RUB-Card from Bochum works on windows with
http://www.opensc-project.org
Hello,
I got a card for testing purposes from the Ruhr-Universität Bochum.
It works with Windows, the newest Firefox and opensc-pkcs11.dll from good old
smart card bundle. (opensc 0.11.4).
It doesn't work on Debian Linux Testing (opensc 0.11.13-1).
My impression is, that the problem is not the o
Hello,
when using the NetKey 3.0 card with opensc, Firefox asks
for the pin of every installed certificate and after that Firefox
doesn't offer any certificate to use for communication with the web server.
Is there a way to restrict the choice of certificates to just one?
Grüße
Johannes
Hello,
after some time-consuming test with the files from opensc build I came to the
conclusion, that opensc-pkcs11.dll works with Firefox using all versions
starting with
opensc-i686-pc
The last one is dated 29-Jul-2009.
The others ( opensc-i686-w32, opensc-i686-w64 ) don't work.
On the other
Hello,
when configuring OpenSC 0.11.11 under Debian lenny and squeeze I get
PC/SC support: no
NSPlugin support:no
I have installed
libpcsclite-dev (Version: 1.4.102-1)
What else do I need?
By the way: opensc doesn't work as it comes with Debian squeeze
pcsc_scan detects r
Hello,
the device for my USB reader has owner 'root' and group 'scard'.
I can use the reader without being in group 'scard'.
How can I restrict the usage of the reader to users in group 'scard' ?
The dilemma arises with Linux machines where you want to restrict
the card reader to the one locally
Hello,
using Debian lenny at the moment the card reader has to be
plugged in to the USB port while the PC boots.
If you plug it in later or if you unplug and plug again, the reader doesn't
work. I noticed this only recently. It was ok before.
# uname -a
Linux be 2.6.26-1-686 #1 SMP Sat Jan 10 1
Alon Bar-Lev schrieb:
> These are two separate packages. You should install this on separate
> directory.
> Some instructions are available at [1].
>
...
> [1] http://www.opensc-project.org/build
The .exe files work with these instructions, but I couldn't get
openpsc-pkcs11.dll installed into
Hello,
I couldn't find documentation for how to get Firefox using
opensc-i686-pc-mingw32-002-base.
I copied the files from opensc-i686-pc-mingw32-002-base over an existing
installation
of Smart Card Bundle. Firefox works with that.
Is there any problem in doing this?
Regards,
Johannes
__
Hello,
writing a certificates with opensc-explorer to a TCOS card works,
but an additional hex FF is added at the end of the certificate.
So you have to create the certificate file on the card being one bit
longer than the certificate. Is the additional FF necessary for
any application? Wouldn't
Am Freitag, 12. September 2008 schrieb Ludovic Rousseau:
> Maybe you can add support of a pinpad in opensc-explorer.
> The command "change CHVid [old-pin] new-pin" should allow an empty
> new-pin if the token has the CKF_PROTECTED_AUTHENTICATION_PATH bit
> set.
Hello,
That didn't work. At the mom
Am Freitag, 27. Juni 2008 schrieb Franz Brandl:
> as far as i remember, the PKCS#11 driver has to use
> CKF_PROTECTED_AUTHENTICATION_PATH to indicate to the application that it
> shall not prompt for the PIN itself. Seems that this is not the case for
> your reader. The question is how OpenSC deci
Hello,
I have a Kobil card reader with pinpad. In principle the pinpad works with
opensc, but the behaviour generally is a bit confusing.
If you use it with pam (for instance su, kdm or gdm) the user is asked to
type the PIN at the keyboard, this input is ignored and as soon as you
type 'enter
Hello,
when I use opensc (both in Linux and Windows) with
enable_pinpad = true;
in opensc.conf, everything works fine, exept that on visiting
a site that requires card authentication at first firefox
pops up a window asking for the "master password" (the PIN, as
everybody else calls it.)
No matte
Hello,
Am Donnerstag, 16. November 2006 14:59 schrieb Ludovic Rousseau:
>
> What do you use for the authentication in this precise case? Do you
> use a PAM module? Which one?
/usr/local/lib/security/pam_pkcs11.so
I compiled pam_pkcs11-0.5.3
> As Martin said we should correct this. So if you ca
Eddy Nigg (StartCom Ltd.) wrote:
It requires modification of g/kdm, something we intend to
suggest/propose/modify in the future.
I guess, you wouldn't have to modify gdm/kdm. My Pinpad beeps and blinks,
as soon as the system asks for the PIN. So it would be nice to have no
prompt
for a keyb
Hello,
I got pam_pkcs11 working. If I use the card reader's pin pad, there
is still the prompt to enter the PIN. No matter what you enter,
after 'return' the pinpad awakes and you can enter the PIN there.
This is a confusing behaviour, especially if you have a graphical login
with gdm or kdm.
Ho
Hi,
Martin Paljak schrieb:
What cardreader?
Kobil CT_KAAN Advanced, (CCID)
But there is a wrong dialogue to enter the PIN.
This is currently so by (missing) design. Firefox has no GUI related
knowledge of pinpad readers.
Kobil's own drivers provide a special dialogue for pinpad readers usi
Hello,
My cardreader's Keypad works with opensc-0.11.1-svn-r3042, when
adding "enable_pinpad = true;" to opensc.conf.
But there is a wrong dialogue to enter the PIN.
Using firefox you are requested to enter the PIN via
the PC's keyboard. As soon as you enter "return", the
cardreader beeps and you
Hello,
can I get the Pinpad on the reader "Kobil Advanced" working?
I use today's pcscd, pcsc-tools, libccid, opensc, libopenct1 from
Debian/unstable which seems to be up to date.
Everything works with firefox except asking the PIN from the PINPad.
Do you have to configure the PINPad somwhere?
Hello,
when using pcsc_scan in a terminal, I get messages like
Card state: Card removed,
But when I'm using pcsc_scan in a script like
pcsc_scan > test.out.txt
or in perl
open (PIPE,"-|", "pcsc_scan");
those messages are missing and I can only detect, if
a card is inserted.
How can I de
58 matches
Mail list logo
