Miroshin Stepan

@rmhrisk What do you think?

@supershippy Thank you I'm using SCard API https://github.com/PeculiarVentures/pvpkcs11/blob/ms_smart_card/src/mscapi/scard.cpp Can I use `\\.\\` for key generation? How can I check if reader supports readonly mode?

This is why I didn't use `pszScope` https://msdn.microsoft.com/ru-ru/library/windows/desktop/aa376259(v=vs.85).aspx ``` pszScope [in, optional] This parameter is not currently used and must be NULL. ```

@supershippy I need your help I've got two Rutoken tokens. ``` {"level":"info","message":"PCSCWatcher: New reader detected `Aktiv Rutoken ECP 0`","timestamp":"2018-01-16T20:06:18.499Z"} {"level":"info","message":"PCSCWatcher: New reader detected `Aktiv Rutoken ECP 1`","timestamp":"2018-01-16T20:06:18.500Z"} ``` I'm using...

I found example. `pszScope` must be `\\\\.\\Aktiv Rutoken ECP 1\\`

@supershippy I've got one more question about Windows CAPI Is there any way to use `CertOpenStore` for Smart Card? I need it for Certificate management (read/import/remove)

@rmhrisk Is it ok? - show certs which has private key only - import certificate which can be linked with private key (I hope NCRYPT_CEERTIFICATE_PROPERTY must do it) - show...

In accordance with RFC5280 (https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.5): > CAs conforming to this profile MUST always encode certificate validity dates through the year 2049 as UTCTime; certificate validity dates in 2050 or later...

@achingbrain I utilized one of the tests to generate an X509 certificate with GeneralizedTime and attempted to read this certificate using OpenSSL. > openssl x509 -in cert.pem -text -noout OpenSSL...

pvpkcs11 doesn't implement `CKM_RSA_PKCS` https://github.com/PeculiarVentures/pvpkcs11/blob/master/src/mscapi/crypto_sign.cpp#L46-L58 Use `C_GetMechanismList` function to get a list of supported mechanisms