Doug Engert

@Jakuje @frankmorgner Can you put this on your review again? @dlegaultbbry We maybe making similar changes and I would like your reviews also. All the tests passed. Code is based...

@frankmorgner @Jakuje @popovec Some new features have been added: - pkcs11-tool - new option --public-key-info write the PKCS11 3.0 CKA_PUBLIC_KEY_INFO which returns DER and works with RSA, EC, Edwards and...

> Is anyone following this? I'd also like to know if this is intentional behavior or not? Yes but on vacation. URI is defined here: https://www.rfc-editor.org/rfc/rfc7512.html The error may be...

The mail and S/MIME signing / encryption would use the "Certificate for Digital Signature" and "Certificate for Key Management" where as the auth commands would use the "Certificate for PIV...

The 3 keys and certificates should not be the same. The keyUsage bits in the certificate are different. " MacOS Outlook or Mail.app for S/MIME signing / encryption." maybe look...

As @frankmorgner said, you may not be using OpenSC drivers. You can get a debug log and PKCS11 SPY log See: https://github.com/OpenSC/OpenSC/wiki/Using-OpenSC You may also need to add the CA...

Before making the assumption that all Yubikey 5.4.3 cards have this error, there are other possible sources for this error. Some other application may have selected one of the other...

Have you contacted Yubico about this bug? In regards to Select AID this is a special case of a select file, that is used to change to multiple applets on...

https://smartcard-atr.apdu.fr/parse?ATR=3b+7a+18+00+00+73+66+74++65+20+63+64+31+34+34 says your card could be one of these: ``` Republic Slovenia e-Gov, Ministry of Public Administration SIGOV-CA, Slovenian Governmental Certification Authority Giesecke & Devrient (PIV Endpoint) G&D Sm@rtCafe Expert...

Also try running `pkcs11-tool -I -L -O --login` t see the info, slots and objects it found. This gould give a clue to what driver is being used.