Raul Metsma
Raul Metsma
I can probably help out.
Can you include whole log
Is the eToken initalized? any keys generated? Or is it blank?
OpenSC only supports usage. You need to setup and generate keys with Thales Safenet software
opensc does not support right now also key generation on SafeNet eTokens
https://cpl.thalesgroup.com/access-management/authenticators/pki-usb-authentication/etoken-5300-usb-token Seems like this is obsolete product. But you can try to match ATR some previous idprime driver
Maybe it is similar to #3478, token is not initialised? there was similar log ``` P:3012144; T:0x132170056924672 17:28:43.135 [opensc-pkcs11] iso7816.c:128:iso7816_check_sw: Security status not satisfied P:3012144; T:0x132170056924672 17:28:43.135 [opensc-pkcs11] iso7816.c:162:iso7816_read_binary: Check...
Can you explain the reason?
Maybe we should figure out how to make X509CertStore usable as public API?
I do not think it is that easy. Digest is only used some parts of XAdES validation and generation. XML DSig part is still validated with https://www.aleksey.com/xmlsec/ library.