Menu
▾
▴
Re: [Opensc-devel] opensc-0.18.0-rc1 tests with MyEID card
|
From: Peter P. <pop...@gm...> - 2018-04-20 08:06:02
|
Hi, I can confirm, pkcs11-tool --login --test (MyEID card) is functional in WIN 10 if I use https://ci.appveyor.com/project/frankmorgner/opensc/build/0.17.0.807/job/htduh03okdf2x976/artifacts Back to certutil .. opensc-0.17.0 win10 64 bit, MyEID card. If I remove Aventra driver and if I add registry entry for MyEID ATR to be handled by opensc-minidriver.dll, certutil --scinfo is fully functional. I can import certificates from card and I can use card for TLS client auth in EDGE. register info: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards\MyEID-opensc] "80000001"="opensc-minidriver.dll" "ATR"=hex:3b,f5,18,00,00,81,31,fe,45,4d,79,45,49,44,9a "ATRmask"=hex:ff,ff,ff,ff,ff,ff,ff,ff,ff,ff,ff,ff,ff,ff,ff "Smart Card Key Storage Provider"="Microsoft Smart Card Key Storage Provider" "Crypto Provider"="OpenSC CSP" Please check (partial) flog rom certutil runs: opensc 0.17.0 certutil example (only 1st part.. ): C:\Program Files\OpenSC Project\OpenSC\tools>certutil -scinfo The Microsoft Smart Card Resource Manager is running. Current reader/card status: Readers: 1 0: Generic EMV Smartcard Reader 0 --- Reader: Generic EMV Smartcard Reader 0 --- Status: SCARD_STATE_PRESENT | SCARD_STATE_UNPOWERED --- Status: The card is available for use. --- Card: MyEID-opensc --- ATR: 3b f5 18 00 00 81 31 fe 45 4d 79 45 49 44 9a ;.....1.EMyEID. ======================================================= Analyzing card in reader: Generic EMV Smartcard Reader 0 --------------===========================-------------- ================ Certificate 0 ================ --- Reader: Generic EMV Smartcard Reader 0 --- Card: MyEID-opensc Provider = OpenSC CSP Key Container = 19f848a2-d902-6fbb-b410-2f4b92678b6c [Default Container] No AT_SIGNATURE key for reader: Generic EMV Smartcard Reader 0 Serial Number: b0dde4e9e3991049 Issuer: CN=Joe Random/emailAddress=joe.random@example.example, O=example, L=Example, S=Example, C=EX NotBefore: 4/19/2018 12:41 PM NotAfter: 5/19/2018 12:41 PM Subject: CN=Joe Random/emailAddress=joe.random@example.example, O=example, L=Example, S=Example, C=EX Signature matches Public Key Root Certificate: Subject matches Issuer Cert Hash(sha1): 148a469f2e6bae6825fe117bd48465342dd40321 Same with opensc 0.18.0-rc1 or from appveyor... C:\Program Files\OpenSC Project\OpenSC\tools>certutil -scinfo The Microsoft Smart Card Resource Manager is running. Current reader/card status: Readers: 1 0: Generic EMV Smartcard Reader 0 --- Reader: Generic EMV Smartcard Reader 0 --- Status: SCARD_STATE_PRESENT | SCARD_STATE_UNPOWERED --- Status: The card is available for use. --- Card: MyEID-opensc --- ATR: 3b f5 18 00 00 81 31 fe 45 4d 79 45 49 44 9a ;.....1.EMyEID. ======================================================= Analyzing card in reader: Generic EMV Smartcard Reader 0 --------------===========================-------------- ================ Certificate 0 ================ --- Reader: Generic EMV Smartcard Reader 0 --- Card: MyEID-opensc Provider = OpenSC CSP Key Container = (null) [Default Container] Cannot open the AT_SIGNATURE key for reader: Generic EMV Smartcard Reader 0 Cannot open the AT_KEYEXCHANGE key for reader: Generic EMV Smartcard Reader 0 --------------===========================-------------- ================ Certificate 0 ================ --- Reader: Generic EMV Smartcard Reader 0 --- Card: MyEID-opensc Provider = Microsoft Smart Card Key Storage Provider Key Container = (null) [Default Container] Cannot open the key for reader: Generic EMV Smartcard Reader 0 --------------===========================-------------- Done. CertUtil: -SCInfo command completed successfully. If I compare these outputs, one thing is interesting: Key Container = (null) [Default Container] (opensc 0.18.0) Key Container = 19f848a2-d902-6fbb-b410-2f4b92678b6c [Default Container] (opensc 0.17.0) maybe this "null" is problem .. Peter. |
