Frank Morgner
Frank Morgner
maybe this crashes due to different symbols between google-chrome's boringssl and OpenSC's openssl. Are you sure to be using the same library when linkng chrome and OpenSC? According to your...
I think in Ubuntu it should be something like `./configure OPENSSL_LIBS="$(pkg-config --libs --static crypto)" OPENSSL_CFLAGS="$(pkg-config --cflags crypto)"`
I think it's primarily a decision on the card's side whether key import or export is supported. (Where the current answer is 'no', while @CardContact admits that there is some...
> was there any progress on the attestation? Testing would be needed for [ ] yubikey without support of touch policy [ ] yubikey with support for attestation statements only...
dtrust-tool needs to be compiled with OpenPACE... Implementing the sample, I also noticed some other problems: 1. I suggested to use a virtual smart card file in order to store...
`./MacOSX/build` will do all the work for you. This is also what we *successfully* use in our pipeline https://github.com/OpenSC/OpenSC/actions/workflows/macos.yml
src/tools/Makefile.am needs to add $(OPENPACE_LIBS) and $(OPENPACE_CFLAGS) for dtrust-tool. But that is a problem of the OpenSC build system - OpenPACE *is* built in CI and works as expected.
just add cflags and libs. as long as you don't use any openpace specific header files or function calls, sm/eac.h will handle non-availability of openpace.
This is a critical step, I would like to see this tested on the different platforms (i.e. PC/SC providers). I have extended the above check list accordingly. As I don't...