Closed PaulSD closed 8 years ago
How much time ago did you buy this card ? Before January ? There was a bug in the card firmware generating invalid rsa signature. Then when generating RSA key. Contact smartcardfocus and ask for a replacement. (I did it too)
For the ATR, the applet should ask the card to change it. Vincent
Yes, I bought it before January. I will contact smartcardfocus.
Thanks!
I've successfully used GidsApplet on a SmartCafe Expert 6.0 80K card. However, I'm having trouble using GidsApplet on a JavaCOS A22 card - GidsApplet on this card seems to generate invalid RSA signatures. I'm not sure how to go about debugging this, so I'm wondering if you can point me in the right direction?
I purchased this card from here: http://www.smartcardfocus.com/shop/ilp/id~712/javacos-a22-dual-interface-java-card-150k/p/index.shtml ATR is 3b:fc:18:00:00:81:31:80:45:90:67:46:4a:00:68:08:04:00:00:00:00:0e
I installed the Applet:
gp -install GidsApplet.cap
Then I tried to initialize it with gids-tool, but libopensc detected it as an entersafe card instead of a gids card - Apparently the entersafe driver in libopensc matches this card based on ATR rather than Applet/Package ID. I commented out the ATR in src/libopensc/card-entersafe.c in opensc, then recompiled opensc to get past this issue. Then I initialized it:And generated a key:
pkcs15-init --verify-pin --auth-id 80 --pin "$(cat pin)" --generate-key rsa/2048 --id 0 --label 'testKey'
Everything seemed to be working fine up until this point.Then I tried to generate a cert request, but openssl failed when validating the request's signature:
Generating a private key using openssl and loading it on the card (rather than generating the key on the card) does not change the behavior:
Any pointers you can give me to help troubleshoot this would be appreciated. Thanks!