Doug Engert
Doug Engert
Most likely the reason Firefox worked before https://github.com/OpenSC/OpenSC/commit/1e625a3824c6a639e4c1590fe20899ade93242d0 has to do with: Firefox looks for profiles with CKA_TOKEN True. and would not find any. After https://github.com/OpenSC/OpenSC/commit/1e625a3824c6a639e4c1590fe20899ade93242d0 it does: ``` 13:...
Going back to original debug log, at line 7494 is the C_Sign request ending at line 7618, with the command sent and response received between lines 7583 and 7598 Why...
@SCjona This might be your best bet; Changes were made in 2016 to `pkcs15-piv.c` to allow the 20 "retired" key slots to be used based in certificate keyUsage. https://github.com/OpenSC/OpenSC/pull/905 This...
It is not clear yet where the real problem is: OS, FireFox or OpenSC. The circumvention for @SCjona is to not use the PIV 9E key which is intended for...
Thanks for quick response. In https://gist.github.com/SCjona/eb9d15e4e7ebe798b2d660f92a9ed4eb In lines 424- 564 it found the certificate which you CENSORED. form 700 to 827 it found the CK_ID=04 from certificate and public key...
14 card drivers in OpenSC have support for RSA 3072. But you need a card/token with applet that supports RSA 3072. NIST sp800-73-1 in 2006 defined it for PIV, but...
Using a Yubikey with OpenPGP applet to get ATR and version: ``` ./opensc-tool --card-driver openpgp -a -s "00:f1:00:00:03" Using reader with a card: Yubico YubiKey CCID 00 00 3b:f8:13:00:00:81:31:fe:15:59:75:62:69:6b:65:79:34:d4 Sending:...
I believe it would for OpenPGP applet. Just a different command. Yubikey PIV applet uses `00 FD 00 00` Yubikey OpenPGP applett uses `00 F1 00 00` as shown in...
> I was thinking, that there is already ATR matching, by pgp_atrs, and there is even flags field - so, I can add flag there, to allow Yubikey-specific commands/workarounds. https://github.com/OpenSC/OpenSC/blob/master/src/libopensc/card-openpgp.c#L305-L315...
`SC_CARD_FLAG_YUBIKEY_SELECT` should not be in opensc.h. It should not be a new card type. The point of reading the Yubikey version, is that Yubikey as fixed problem in 5.4.3 and...