[PuTTYcard] Problem with Aladdin eToken PRO

classic Classic list List threaded Threaded
12 messages Options
Reply | Threaded
Open this post in threaded view
|

[PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
Hi everyone,

I've got an Aladdin eToken PRO and would like to use it for storing ssh
keys. I also need to use theses keys through an ageant. All of this
under the Windows platform.

BTW I installed the Smart card bundle and PuTTYcard related files.

Now, I need to know the path of the private key, the keyref, pinref and
the pubkey in order to write a proper ppk-file. I tried to get thoses
infos as it's well described here :
http://www.opensc.org/opensc/wiki/PuTTYcard

But, it seems that the SBC I installed get some problems. Each time I
execute pkcs15-tool I get some errors, here is the verbose output:

Connecting to card in reader AKS ifdh 0...
Using card driver Siemens CardOS.
Trying to find a PKCS#15 compatible card...
file not found
iso7816.c:440:iso7816_select_file: returning with: File not found
card-etoken.c:411:etoken_select_file: returning with: File not found
card.c:763:sc_select_file: returning with: File not found
Failed to initialize Postecert and Cnipa emulation: Unsupported card
file not found
iso7816.c:440:iso7816_select_file: returning with: File not found
card-etoken.c:411:etoken_select_file: returning with: File not found
card.c:763:sc_select_file: returning with: File not found
file not found
iso7816.c:445:iso7816_select_file: returning with: File not found
card-etoken.c:411:etoken_select_file: returning with: File not found
card.c:763:sc_select_file: returning with: File not found
pkcs15.c:667:sc_pkcs15_bind: returning with: Unsupported card
PKCS#15 initialization failed: Unsupported card

I don't really understand what file is missing...

Another thing, I tried PuTTY SC: http://www.joebar.ch/puttysc/
It works very well, it detected my token and the certificate very
easily.
It appears that this patched PuTTY use constructor's DLL for the Token. I know that using a standardized DLL that can be usable with all ISO compliant tokens is the best way.
But, if the constructor provide a SDK or something in order to use their DLL, why not providing the to solution for PuTTYcard ?

Regards.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Stef Hoeben-2
Hi,

guess your card isn't pkcs15-formatted; and not supported by any of our
pkcs15 emulators?

Could you try opensc-explorer and then do cat 2F00? If the file 2F00
doesn't exist,
the card isn't pkcs15-formatted and can't be used. (Unless you would
write and emulator
or clear the card and use pkcs15-init to pkcs15-format the card and put
the key(s) back
on them again...

Cheers,
Stef

Alexandre Ahmim-Richard wrote:

>Hi everyone,
>
>I've got an Aladdin eToken PRO and would like to use it for storing ssh
>keys. I also need to use theses keys through an ageant. All of this
>under the Windows platform.
>
>BTW I installed the Smart card bundle and PuTTYcard related files.
>
>Now, I need to know the path of the private key, the keyref, pinref and
>the pubkey in order to write a proper ppk-file. I tried to get thoses
>infos as it's well described here :
>http://www.opensc.org/opensc/wiki/PuTTYcard
>
>But, it seems that the SBC I installed get some problems. Each time I
>execute pkcs15-tool I get some errors, here is the verbose output:
>
>Connecting to card in reader AKS ifdh 0...
>Using card driver Siemens CardOS.
>Trying to find a PKCS#15 compatible card...
>file not found
>iso7816.c:440:iso7816_select_file: returning with: File not found
>card-etoken.c:411:etoken_select_file: returning with: File not found
>card.c:763:sc_select_file: returning with: File not found
>Failed to initialize Postecert and Cnipa emulation: Unsupported card
>file not found
>iso7816.c:440:iso7816_select_file: returning with: File not found
>card-etoken.c:411:etoken_select_file: returning with: File not found
>card.c:763:sc_select_file: returning with: File not found
>file not found
>iso7816.c:445:iso7816_select_file: returning with: File not found
>card-etoken.c:411:etoken_select_file: returning with: File not found
>card.c:763:sc_select_file: returning with: File not found
>pkcs15.c:667:sc_pkcs15_bind: returning with: Unsupported card
>PKCS#15 initialization failed: Unsupported card
>
>I don't really understand what file is missing...
>
>Another thing, I tried PuTTY SC: http://www.joebar.ch/puttysc/
>It works very well, it detected my token and the certificate very
>easily.
>It appears that this patched PuTTY use constructor's DLL for the Token. I know that using a standardized DLL that can be usable with all ISO compliant tokens is the best way.
>But, if the constructor provide a SDK or something in order to use their DLL, why not providing the to solution for PuTTYcard ?
>
>Regards.
>  
>

_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Peter Koch-3
> guess your card isn't pkcs15-formatted; and not supported by any of our
> pkcs15 emulators?
>
> Could you try opensc-explorer and then do cat 2F00? If the file 2F00
> doesn't exist,
> the card isn't pkcs15-formatted and can't be used. (Unless you would
> write and emulator
> or clear the card and use pkcs15-init to pkcs15-format the card and put
> the key(s) back
> on them again...

PuTTYcard does NOT use opensc-libraries. This is an advantage as
it will work with all iso7816-cards. The disadvantage is that
PuTTYcard will need explicit information about where on your
card it can find your key and pin.

So Alexandre may use his Non-PKCS#15 card with PuTTYcard, but
he must find out the file id of his key and pin.

I wrote a help file that explains how to find these values
with pkcs15-tool. But since Alexanres card is NOT pkcs#15-formatted
he cannot cannot use pkcs15-tool.

Alexandre - please execute  opensc -f  and post the output.
opensc -f will list all files on your card wether its PKCS#15-formatted
or not. If you are lucky there are only a few files on your card
and you (or somebody on this list) might be able to find out the
information you need.

Unforunatley I'm not familiar with eTokens but others on this list are.

For those of you that are not familiar with PuTTYcard. Here's what
Alexandre needs:

1) file id of DF that contains private key
2) key-reference of the private key
3) pin-reference of the pin that protects the private key
4) file id of a transparent file that contains either a
   certificate or a public key.

Peter

--
Lust, ein paar Euro nebenbei zu verdienen? Ohne Kosten, ohne Risiko!
Satte Provisionen f?r GMX Partner: http://www.gmx.net/de/go/partner
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
In reply to this post by Stef Hoeben-2
On Tue, Nov 15, 2005 at 04:50:22PM +0100, Stef Hoeben wrote:
> Hi,
>

Hi,

> guess your card isn't pkcs15-formatted; and not supported by any of our
> pkcs15 emulators?
>
> Could you try opensc-explorer and then do cat 2F00? If the file 2F00
> doesn't exist,
> the card isn't pkcs15-formatted and can't be used. (Unless you would
> write and emulator
> or clear the card and use pkcs15-init to pkcs15-format the card and put
> the key(s) back
> on them again...
>

You were totaly right, I used Aladdin eToken proprietary software to format the
token & put the key+certificate (p12 format) on it.

I wasn't familiar with OpenSC, so I followed the quickstart and finally,
all is OK. :)

I can notice one thing, once the token is formated with pkcs15 using
OpenSC, it's unreadable by Aladdin's software. It's apparently normal
because Aladdin uses pkcs11 format.

> Cheers,
> Stef
>

Thanks you.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
In reply to this post by Peter Koch-3
On Tue, Nov 15, 2005 at 05:45:23PM +0100, Peter Koch wrote:

> > guess your card isn't pkcs15-formatted; and not supported by any of our
> > pkcs15 emulators?
> >
> > Could you try opensc-explorer and then do cat 2F00? If the file 2F00
> > doesn't exist,
> > the card isn't pkcs15-formatted and can't be used. (Unless you would
> > write and emulator
> > or clear the card and use pkcs15-init to pkcs15-format the card and put
> > the key(s) back
> > on them again...
>
> PuTTYcard does NOT use opensc-libraries. This is an advantage as
> it will work with all iso7816-cards. The disadvantage is that
> PuTTYcard will need explicit information about where on your
> card it can find your key and pin.
>

Ok... I begin to understand all aspects of the problem. Wasn't really
clear for me.

> So Alexandre may use his Non-PKCS#15 card with PuTTYcard, but
> he must find out the file id of his key and pin.
>
> I wrote a help file that explains how to find these values
> with pkcs15-tool. But since Alexanres card is NOT pkcs#15-formatted
> he cannot cannot use pkcs15-tool.
>

I saw that.

> Alexandre - please execute  opensc -f  and post the output.
> opensc -f will list all files on your card wether its PKCS#15-formatted
> or not. If you are lucky there are only a few files on your card
> and you (or somebody on this list) might be able to find out the
> information you need.
>

I just formated the token using pkcs15. I'll reformat tomorrow using
Aladdin's eToken proprietary software, and give you the output.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
In reply to this post by Alexandre Ahmim-Richard
Peter Koch wrote:
> Hi Alexandre
>

Hi Peter,

>>You were totaly right, I used Aladdin eToken proprietary software to
>>format the
>>token & put the key+certificate (p12 format) on it.
>>
>>I wasn't familiar with OpenSC, so I followed the quickstart and finally,
>>all is OK. :)
>
> Were you successfull in using PuTTYcard with either a PKCS#15-formatted
> eToken or an eToken that was formatted by Aladdins software?
>

I talked too fast, pkcs15-* commands returned me the right output, thing
that I did get before.
As far as I am, none of the 2 methods actually work.

It seems that the magic lines I tested are all wrong :
PuTTYcard,PuTTYiso7816.dll,3F00,10,03,3048
PuTTYcard,PuTTYiso7816.dll,3F00,10,03,3149
PuTTYcard,PuTTYiso7816.dll,3F00,10,01,3048
PuTTYcard,PuTTYiso7816.dll,3F00,10,01,3149

I know 3F00 musn't be used, it's noticed in the wiki page, but can't get
another path. Here is commands output:

pkcs15-tool -k
Private RSA Key [Private Key]
         Com. Flags  : 3
         Usage       : [0x4], sign
         Access Flags: [0x1D], sensitive, alwaysSensitive, neverExtract,
local
         ModLength   : 1024
         Key ref     : 16
         Native      : yes
         Path        : 3F005015
         Auth ID     : 01
         ID          : 45

pkcs15-tool --list-pins
PIN [Security Officer PIN]
         Com. Flags: 0x3
         Auth ID   : ff
         Flags     : [0xB2], local, initialized, needs-padding, soPin
         Length    : min_len:6, max_len:8, stored_len:8
         Pad char  : 0x00
         Reference : 1
         Type      : -1
         Path      : 3F005015
         Tries left: -1

PIN [Alexandre Ahmim-Richard]
         Com. Flags: 0x3
         Auth ID   : 01
         Flags     : [0x32], local, initialized, needs-padding
         Length    : min_len:4, max_len:8, stored_len:8
         Pad char  : 0x00
         Reference : 3
         Type      : -1
         Path      : 3F005015
         Tries left: -1

pkcs15-tool -c
X.509 Certificate [Certificate]
         Flags    : 2
         Authority: no
         Path     : 3F0050153149
         ID       : 45

pkcs15-tool --list-public-keys
Public RSA Key [Public Key]
         Com. Flags  : 2
         Usage       : [0x4], sign
         Access Flags: [0x0]
         ModLength   : 1024
         Key ref     : 0
         Native      : no
         Path        : 3F0050153048
         Auth ID     :
         ID          : 45

> If that was the case I would like to include your ppk-file in the
> PuTTYcard documentation.
>

Once I have something that works, I'll give you all you need.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
In reply to this post by Peter Koch-3
Peter Koch wrote:

>
> Alexandre - please execute  opensc -f  and post the output.
> opensc -f will list all files on your card wether its PKCS#15-formatted
> or not. If you are lucky there are only a few files on your card
> and you (or somebody on this list) might be able to find out the
> information you need.
>
> Unforunatley I'm not familiar with eTokens but others on this list are.
>
> For those of you that are not familiar with PuTTYcard. Here's what
> Alexandre needs:
>
> 1) file id of DF that contains private key
> 2) key-reference of the private key
> 3) pin-reference of the pin that protects the private key
> 4) file id of a transparent file that contains either a
>    certificate or a public key.
>
> Peter
>
Here is the output of opensc-tool -f as requested.
The token was formated with Aladdins eToken software and contains a p12
x509 certificate.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org

3F00 type:  DF, size: 25914
select[N/A] lock[NONE] delete[NONE] create[NONE] rehab[NONE] inval[NONE] list[N/A] sec: 00:00:00:00:00:00:FF:00
prop: 01:04:00

  3F00 6666 [AKS] type:  DF, size: 25914
  select[N/A] lock[CHV5] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:05:01:FF:FF:FF:FF:01
  prop: 01:00:FF

    3F00 6666 1000 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:40

      3F00 6666 1000 0001 type: wEF, ef structure: transpnt, size: 11
      read[NONE] update[NEVR] write[NEVR] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00
      prop: 01

00000000: 01 14 BE 0C 45 14 85 00 00 00 00 ....E......
      3F00 6666 1000 0002 type: wEF, ef structure: transpnt, size: 32
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 65 54 6F 6B 65 6E 20 20 20 20 20 20 20 20 20 20 eToken          
00000010: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 00                .
    3F00 6666 1001 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:0A:28

      3F00 6666 1001 1001 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 80 1F 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
      3F00 6666 1001 1002 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 01 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
      3F00 6666 1001 0002 type: wEF, ef structure: linvar(TLV), size: 268
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

    3F00 6666 1002 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

      3F00 6666 1002 1002 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 01 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
      3F00 6666 1002 0001 type: wEF, ef structure: transpnt, size: 940
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 04 00 51 03 30 82 03 49 30 82 02 B2 A0 03 02 01 ..Q.0..I0.......
00000010: 02 02 01 01 30 0D 06 09 2A 86 48 86 F7 0D 01 01 ....0...*.H.....
00000020: 04 05 00 30 6F 31 0B 30 09 06 03 55 04 06 13 02 ...0o1.0...U....
00000030: 46 52 31 0C 30 0A 06 03 55 04 08 13 03 49 44 46 FR1.0...U....IDF
00000040: 31 0E 30 0C 06 03 55 04 07 13 05 50 61 72 69 73 1.0...U....Paris
00000050: 31 0F 30 0D 06 03 55 04 0A 13 06 4F 72 61 6E 67 1.0...U....Orang
00000060: 65 31 14 30 12 06 03 55 04 03 13 0B 74 65 73 74 e1.0...U....test
00000070: 20 63 61 20 73 73 68 31 1B 30 19 06 09 2A 86 48  ca ssh1.0...*.H
00000080: 86 F7 0D 01 09 01 16 0C 74 65 73 74 40 73 73 68 ........test@ssh
00000090: 2E 63 6F 6D 30 1E 17 0D 30 35 31 31 31 34 31 37 .com0...05111417
000000A0: 31 38 33 36 5A 17 0D 30 36 31 31 31 34 31 37 31 1836Z..061114171
000000B0: 38 33 36 5A 30 6C 31 0B 30 09 06 03 55 04 06 13 836Z0l1.0...U...
000000C0: 02 46 52 31 0C 30 0A 06 03 55 04 08 13 03 49 44 .FR1.0...U....ID
000000D0: 46 31 0E 30 0C 06 03 55 04 07 13 05 50 61 72 69 F1.0...U....Pari
000000E0: 73 31 0F 30 0D 06 03 55 04 0A 13 06 4F 72 61 6E s1.0...U....Oran
000000F0: 67 65 31 0E 30 0C 06 03 55 04 03 13 05 70 61 73 ge1.0...U....pas
00000100: 73 65 31 1E 30 1C 06 09 2A 86 48 86 F7 0D 01 09 se1.0...*.H.....
00000110: 01 16 0F 70 61 73 73 65 40 63 6C 6F 70 65 2E 6E ...[hidden email]
00000120: 65 74 30 81 9F 30 0D 06 09 2A 86 48 86 F7 0D 01 et0..0...*.H....
00000130: 01 01 05 00 03 81 8D 00 30 81 89 02 81 81 00 CE ........0.......
00000140: E9 B6 68 D6 49 02 90 7D 53 E8 13 C8 71 FB 6B 46 ..h.I..}S...q.kF
00000150: F1 03 A6 CA 00 CA E7 13 5B 1C 25 74 D6 9C E8 4A ........[.%t...J
00000160: 18 F7 53 CA 27 F1 99 D8 07 84 1C 07 63 D0 76 67 ..S.'.......c.vg
00000170: 60 01 F6 6A 33 07 0B D9 B5 B2 AD C8 67 A6 4A 05 `..j3.......g.J.
00000180: 9A EE E5 1B 8E 0F 45 DB FC 10 5C EB F8 3B 30 8E ......E...\..;0.
00000190: 5A 4A 76 7D 74 0E 6B 3C F1 07 1C 75 B0 12 78 28 ZJv}t.k<...u..x(
000001A0: FE AD 15 C0 67 D9 18 16 B1 9D 4E 34 EB FC A6 7B ....g.....N4...{
000001B0: FB 86 B0 7D 09 8C B1 60 87 43 90 C1 69 4E CD 02 ...}...`.C..iN..
000001C0: 03 01 00 01 A3 81 F7 30 81 F4 30 09 06 03 55 1D .......0..0...U.
000001D0: 13 04 02 30 00 30 2C 06 09 60 86 48 01 86 F8 42 ...0.0,..`.H...B
000001E0: 01 0D 04 1F 16 1D 4F 70 65 6E 53 53 4C 20 47 65 ......OpenSSL Ge
000001F0: 6E 65 72 61 74 65 64 20 43 65 72 74 69 66 69 63 nerated Certific
00000200: 61 74 65 30 1D 06 03 55 1D 0E 04 16 04 14 32 B0 ate0...U......2.
00000210: 45 A7 D0 4D AE 04 FA 63 92 B7 AD 94 7F 34 F9 7A E..M...c.....4.z
00000220: F4 C9 30 81 99 06 03 55 1D 23 04 81 91 30 81 8E ..0....U.#...0..
00000230: 80 14 E6 FC 6A 87 FB 07 B9 75 51 3D 49 DB 61 C4 ....j....uQ=I.a.
00000240: 6F FB D3 D3 6A CC A1 73 A4 71 30 6F 31 0B 30 09 o...j..s.q0o1.0.
00000250: 06 03 55 04 06 13 02 46 52 31 0C 30 0A 06 03 55 ..U....FR1.0...U
00000260: 04 08 13 03 49 44 46 31 0E 30 0C 06 03 55 04 07 ....IDF1.0...U..
00000270: 13 05 50 61 72 69 73 31 0F 30 0D 06 03 55 04 0A ..Paris1.0...U..
00000280: 13 06 4F 72 61 6E 67 65 31 14 30 12 06 03 55 04 ..Orange1.0...U.
00000290: 03 13 0B 74 65 73 74 20 63 61 20 73 73 68 31 1B ...test ca ssh1.
000002A0: 30 19 06 09 2A 86 48 86 F7 0D 01 09 01 16 0C 74 0...*.H........t
000002B0: 65 73 74 40 73 73 68 2E 63 6F 6D 82 01 00 30 0D [hidden email]...0.
000002C0: 06 09 2A 86 48 86 F7 0D 01 01 04 05 00 03 81 81 ..*.H...........
000002D0: 00 3C F8 32 63 03 7C 65 4A E8 B0 6C 85 26 17 FB .<.2c.|eJ..l.&..
000002E0: E4 E6 E0 95 83 FB 73 A3 A8 DC 9B C8 5D 27 84 D0 ......s.....]'..
000002F0: F8 6B C9 4C D3 B1 09 81 83 D8 3E 91 CE BB F4 56 .k.L......>....V
00000300: F5 E9 53 53 FC 15 76 FA B8 AD 56 CE 4E 71 29 22 ..SS..v...V.Nq)"
00000310: 9E B6 BA 7B AC 2F 0B C4 CF 5D B9 AF E5 B6 D7 95 ...{./...]......
00000320: 35 05 9A C2 39 1C 55 EA B1 C6 8B 81 23 5A 2F D4 5...9.U.....#Z/.
00000330: E2 C3 F9 27 CD 95 AF 42 4D 75 DC E5 65 AC 84 BE ...'...BMu..e...
00000340: 89 62 F1 F1 D9 37 C8 8E 10 4D AA 3F A7 0A CC 89 .b...7...M.?....
00000350: B5 00 00 01 00 00 00 65 54 6F 6B 65 6E 20 42 61 .......eToken Ba
00000360: 73 65 20 43 72 79 70 74 6F 67 72 61 70 68 69 63 se Cryptographic
00000370: 20 50 72 6F 76 69 64 65 72 00 32 31 38 42 31 35  Provider.218B15
00000380: 33 44 2D 44 41 38 45 2D 34 35 31 45 2D 39 30 39 3D-DA8E-451E-909
00000390: 32 34 31 35 30 43 34 39 35 42 32 43 34 00 65 54 24150C495B2C4.eT
000003A0: 6F 6B 65 6E 4D 59 00 58 58 58 58 00             okenMY.XXXX.
    3F00 6666 1003 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:02:00

      3F00 6666 1003 1003 type: wEF, ef structure: transpnt, size: 64
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 6666 5000 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

Empty directory
    3F00 6666 6000 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

      3F00 6666 6000 ECEC type: wEF, ef structure: transpnt, size: 116
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 65 54 43 41 50 49 20 4B 65 79 20 43 6F 6E 74 61 eTCAPI Key Conta
00000010: 69 6E 65 72 73 20 48 65 61 64 65 72 20 46 69 6C iners Header Fil
00000020: 65 23 36 39 35 46 42 39 34 42 2D 41 46 36 33 2D e#695FB94B-AF63-
00000030: 34 36 33 63 2D 42 41 39 38 2D 39 44 42 41 34 43 463c-BA98-9DBA4C
00000040: 41 43 32 36 39 34 3D 32 31 38 42 31 35 33 44 2D AC2694=218B153D-
00000050: 44 41 38 45 2D 34 35 31 45 2D 39 30 39 32 34 31 DA8E-451E-909241
00000060: 35 30 43 34 39 35 42 32 43 34 26 31 30 30 31 26 50C495B2C4&1001&
00000070: 30 30 30 30                                     0000
      3F00 6666 6000 1001 type: wEF, ef structure: transpnt, size: 1
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 00 .
      3F00 6666 6000 3001 type: wEF, ef structure: transpnt, size: 29
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 4B 50 5F 43 45 52 54 5F 48 41 53 48 3A C1 0C 5A KP_CERT_HASH:..Z
00000010: AB 7C B2 DD 26 19 30 B0 95 C2 85 BE 4B          .|..&.0.....K
    3F00 6666 7000 type:  DF, size: 25914
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

Empty directory

_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Peter Koch-3
In reply to this post by Alexandre Ahmim-Richard
> It seems that the magic lines I tested are all wrong :
> PuTTYcard,PuTTYiso7816.dll,3F00,10,03,3048
> PuTTYcard,PuTTYiso7816.dll,3F00,10,03,3149
> PuTTYcard,PuTTYiso7816.dll,3F00,10,01,3048
> PuTTYcard,PuTTYiso7816.dll,3F00,10,01,3149

Your certificate is stored in 3F00:5015:3149
and your public key is in 3F00:5015:3048

Therefore 5015 is the correct path-value

pkcs15-tool -k lists 3F00:5015 as the path
for your private key. This cannot be right
as 3F00:5015 is a directory, so it cannot be
a file. But we need the keys pinref and according
to pkcs15-tool -k its 16 = 0x10

Your key is protected by Auth-ID 01 and pin 01
has a ref-value of 3, so 03 is your pinref

And your public key is either in 3048 or can be
extracted from 3149

So Try

PuTTYcard,PuTTYiso7816.dll,5015,10,03,3048

or

PuTTYcard,PuTTYiso7816.dll,5015,10,03,3149

If that does not work, please post  opensc -f
output for your PKCS#15-formatted token.

Peter

--
Telefonieren Sie schon oder sparen Sie noch?
NEU: GMX Phone_Flat http://www.gmx.net/de/go/telefonie
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Peter Koch-3
In reply to this post by Alexandre Ahmim-Richard
> Here is the output of opensc-tool -f as requested.
> The token was formated with Aladdins eToken software and contains a p12
> x509 certificate.

The current version of PTTYcard will not work with file layout.

Your certificate was stored in 3F00:6666:1002:0001.
Unfortunately this file does not contain the plain
certificate but starts with 4 bytes 04 00 51 03 and
then the certificate itself follows. Therefore
PuTTYcard will not be abe to extract the public key.

I will add an optional 5th argument to PuTTYiso7816
such that the next verion of PuTTYcard will be able
to read a certificate from a file at a certain offset.

Unfortunately this is not the only problem. I cannot
figure out what your keyref and pinref are.

Peter

--
10 GB Mailbox, 100 FreeSMS/Monat http://www.gmx.net/de/go/topmail
+++ GMX - die erste Adresse f?r Mail, Message, More +++
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Alexandre Ahmim-Richard
In reply to this post by Peter Koch-3
Peter Koch wrote:
>
> Your certificate is stored in 3F00:5015:3149
> and your public key is in 3F00:5015:3048
>
> Therefore 5015 is the correct path-value
>

Ok...

> pkcs15-tool -k lists 3F00:5015 as the path
> for your private key. This cannot be right
> as 3F00:5015 is a directory, so it cannot be
> a file. But we need the keys pinref and according
> to pkcs15-tool -k its 16 = 0x10
>
> Your key is protected by Auth-ID 01 and pin 01
> has a ref-value of 3, so 03 is your pinref
>
> And your public key is either in 3048 or can be
> extracted from 3149
>
I noticed that.

> So Try
>
> PuTTYcard,PuTTYiso7816.dll,5015,10,03,3048
>
> or
>
> PuTTYcard,PuTTYiso7816.dll,5015,10,03,3149
>
> If that does not work, please post  opensc -f
> output for your PKCS#15-formatted token.
>
Unfortunatly, it doesn't work, each time I run pageant.exe file.ppk, I
get a pop-up window with an error message : Select File 3048 failed SW=6A86.
Same thing if I test with 3149.

Here is the opensc-tool -f output.
The token is PKCS#15 formated and contains a certificate, I followed the
opensc quickstart.
--
Alexandre Ahmim-Richard
passe at clope dot net
http://www.u-admin.org

3F00 type:  DF, size: 26276
select[N/A] lock[NONE] delete[NONE] create[NONE] rehab[NONE] inval[NONE] list[N/A] sec: 00:00:00:00:00:00:00:00:00
prop: 01:04:00

  3F00 2F00 type: wEF, ef structure: transpnt, size: 128
  read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
  prop: 01

00000000: 61 21 4F 0C A0 00 00 00 63 50 4B 43 53 2D 31 35 a!O.....cPKCS-15
00000010: 50 0B 4F 70 65 6E 53 43 20 43 61 72 64 51 04 3F P.OpenSC CardQ.?
00000020: 00 50 15 00 00 00 00 00 00 00 00 00 00 00 00 00 .P..............
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
  3F00 5015 type:  DF, size: 26276
  select[N/A] lock[NEVR] delete[NONE] create[NONE] rehab[NONE] inval[NONE] list[N/A] sec: 00:FF:00:00:00:00:00:00:00
  prop: 01:08:00

    3F00 5015 4404 type: wEF, ef structure: transpnt, size: 512
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 26 30 11 0C 0B 43 65 72 74 69 66 69 63 61 74 0&0...Certificat
00000010: 65 03 02 06 40 30 03 04 01 45 A1 0C 30 0A 30 08 e...@0...E..0.0.
00000020: 04 06 3F 00 50 15 31 49 00 00 00 00 00 00 00 00 ..?.P.1I........
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 3149 type: wEF, ef structure: transpnt, size: 962
    read[NONE] update[NONE] write[NEVR] erase[NONE] rehab[NEVR] inval[NEVR] sec: 00:00:FF:FF:FF:00:00:00:00
    prop: 01

00000000: 30 82 03 BE 30 82 03 27 A0 03 02 01 02 02 09 00 0...0..'........
00000010: C0 2E D9 98 87 C4 D1 92 30 0D 06 09 2A 86 48 86 ........0...*.H.
00000020: F7 0D 01 01 05 05 00 30 81 9B 31 0B 30 09 06 03 .......0..1.0...
00000030: 55 04 06 13 02 46 52 31 0F 30 0D 06 03 55 04 08 U....FR1.0...U..
00000040: 13 06 46 72 61 6E 63 65 31 0E 30 0C 06 03 55 04 ..France1.0...U.
00000050: 07 13 05 50 61 72 69 73 31 16 30 14 06 03 55 04 ...Paris1.0...U.
00000060: 0A 13 0D 4F 72 61 6E 67 65 20 46 72 61 6E 63 65 ...Orange France
00000070: 31 11 30 0F 06 03 55 04 0B 13 08 55 4E 50 53 20 1.0...U....UNPS
00000080: 53 52 4D 31 20 30 1E 06 03 55 04 03 13 17 41 6C SRM1 0...U....Al
00000090: 65 78 61 6E 64 72 65 20 41 68 6D 69 6D 2D 52 69 exandre Ahmim-Ri
000000A0: 63 68 61 72 64 31 1E 30 1C 06 09 2A 86 48 86 F7 chard1.0...*.H..
000000B0: 0D 01 09 01 16 0F 70 61 73 73 65 40 63 6C 6F 70 ......passe@clop
000000C0: 65 2E 6E 65 74 30 1E 17 0D 30 35 31 31 31 35 31 e.net0...0511151
000000D0: 37 33 31 30 36 5A 17 0D 30 35 31 32 31 35 31 37 73106Z..05121517
000000E0: 33 31 30 36 5A 30 81 9B 31 0B 30 09 06 03 55 04 3106Z0..1.0...U.
000000F0: 06 13 02 46 52 31 0F 30 0D 06 03 55 04 08 13 06 ...FR1.0...U....
00000100: 46 72 61 6E 63 65 31 0E 30 0C 06 03 55 04 07 13 France1.0...U...
00000110: 05 50 61 72 69 73 31 16 30 14 06 03 55 04 0A 13 .Paris1.0...U...
00000120: 0D 4F 72 61 6E 67 65 20 46 72 61 6E 63 65 31 11 .Orange France1.
00000130: 30 0F 06 03 55 04 0B 13 08 55 4E 50 53 20 53 52 0...U....UNPS SR
00000140: 4D 31 20 30 1E 06 03 55 04 03 13 17 41 6C 65 78 M1 0...U....Alex
00000150: 61 6E 64 72 65 20 41 68 6D 69 6D 2D 52 69 63 68 andre Ahmim-Rich
00000160: 61 72 64 31 1E 30 1C 06 09 2A 86 48 86 F7 0D 01 ard1.0...*.H....
00000170: 09 01 16 0F 70 61 73 73 65 40 63 6C 6F 70 65 2E ....passe@clope.
00000180: 6E 65 74 30 81 A1 30 0D 06 09 2A 86 48 86 F7 0D net0..0...*.H...
00000190: 01 01 01 05 00 03 81 8F 00 30 81 8B 02 81 81 00 .........0......
000001A0: AC 62 4B E9 0C 44 EF 87 91 C3 B1 94 27 B1 A6 B9 .bK..D......'...
000001B0: 91 8B 1B 02 A7 CF 64 1B 0B 11 E3 EA 12 52 9D B3 ......d......R..
000001C0: E4 DB 52 16 F6 5C E1 F8 5B 54 3E C9 99 D9 61 BB ..R..\..[T>...a.
000001D0: 98 7D 2F 91 B7 B9 1A 24 CE 3D 7C BA DC 1D 51 D5 .}/....$.=|...Q.
000001E0: 71 3A 1A 9A F2 39 76 2E 9D 26 3E E9 2F DB DD 8A q:...9v..&>./...
000001F0: 56 52 8A B0 C6 5C 82 8D 39 5E 58 26 55 68 FD 0C VR...\..9^X&Uh..
00000200: 8C EF 0F DD 21 29 4E DF 6B 34 6A 28 BF C0 D4 7C ....!)N.k4j(...|
00000210: 40 E0 5E B1 ED EE 87 DD EE 76 23 09 04 DC D1 D7 @.^......v#.....
00000220: 02 05 00 80 17 1D 23 A3 82 01 04 30 82 01 00 30 ......#....0...0
00000230: 1D 06 03 55 1D 0E 04 16 04 14 97 4F F3 4C 79 E2 ...U.......O.Ly.
00000240: 55 08 1D C2 C4 02 3C 70 8E C0 EE 80 06 25 30 81 U.....<p.....%0.
00000250: D0 06 03 55 1D 23 04 81 C8 30 81 C5 80 14 97 4F ...U.#...0.....O
00000260: F3 4C 79 E2 55 08 1D C2 C4 02 3C 70 8E C0 EE 80 .Ly.U.....<p....
00000270: 06 25 A1 81 A1 A4 81 9E 30 81 9B 31 0B 30 09 06 .%......0..1.0..
00000280: 03 55 04 06 13 02 46 52 31 0F 30 0D 06 03 55 04 .U....FR1.0...U.
00000290: 08 13 06 46 72 61 6E 63 65 31 0E 30 0C 06 03 55 ...France1.0...U
000002A0: 04 07 13 05 50 61 72 69 73 31 16 30 14 06 03 55 ....Paris1.0...U
000002B0: 04 0A 13 0D 4F 72 61 6E 67 65 20 46 72 61 6E 63 ....Orange Franc
000002C0: 65 31 11 30 0F 06 03 55 04 0B 13 08 55 4E 50 53 e1.0...U....UNPS
000002D0: 20 53 52 4D 31 20 30 1E 06 03 55 04 03 13 17 41  SRM1 0...U....A
000002E0: 6C 65 78 61 6E 64 72 65 20 41 68 6D 69 6D 2D 52 lexandre Ahmim-R
000002F0: 69 63 68 61 72 64 31 1E 30 1C 06 09 2A 86 48 86 ichard1.0...*.H.
00000300: F7 0D 01 09 01 16 0F 70 61 73 73 65 40 63 6C 6F .......passe@clo
00000310: 70 65 2E 6E 65 74 82 09 00 C0 2E D9 98 87 C4 D1 pe.net..........
00000320: 92 30 0C 06 03 55 1D 13 04 05 30 03 01 01 FF 30 .0...U....0....0
00000330: 0D 06 09 2A 86 48 86 F7 0D 01 01 05 05 00 03 81 ...*.H..........
00000340: 81 00 22 2D 3D 5C 5D 67 B1 BB 5D AF 96 D5 FC 95 .."-=\]g..].....
00000350: 87 AC AF B2 B2 16 DA 25 34 89 79 B2 A5 AB 6A 38 .......%4.y...j8
00000360: D8 7E 4D BE B2 A1 A7 09 D5 5B CF EA 44 7A 3C F1 .~M......[..Dz<.
00000370: 9C F6 1E D4 DE 40 F0 D9 C0 98 0B CA EC 3D A2 E1 .....@.......=..
00000380: 66 54 ED 09 52 64 60 BF 2C DC 76 7A 60 A3 C5 9D fT..Rd`.,.vz`...
00000390: 62 2A 1B 20 B8 B2 02 74 F3 13 48 A6 FA 61 C7 8D b*. ...t..H..a..
000003A0: 80 70 0B 49 10 F9 E2 4D E4 DB 67 6C AF 71 C5 2A .p.I...M..gl.q.*
000003B0: 7F C1 22 F1 80 6F CE 5C A6 B8 6D C7 FE 1F 5E 38 .."..o.\..m...^8
000003C0: 35 BB                                           5.
    3F00 5015 4403 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 35 30 10 0C 0A 50 75 62 6C 69 63 20 4B 65 79 050...Public Key
00000010: 03 02 06 40 30 0D 04 01 45 03 02 05 20 01 01 00 ...@0...E... ...
00000020: 02 01 00 A0 00 A1 10 30 0E 30 08 04 06 3F 00 50 .......0.0...?.P
00000030: 15 30 48 02 02 04 00 00 00 00 00 00 00 00 00 00 .0H.............
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 3048 type: wEF, ef structure: transpnt, size: 142
    read[NONE] update[CHV3] write[NEVR] erase[CHV3] rehab[NEVR] inval[NEVR] sec: 00:03:FF:FF:FF:03:00:00:00
    prop: 01

00000000: 30 81 8B 02 81 81 00 AC 62 4B E9 0C 44 EF 87 91 0.......bK..D...
00000010: C3 B1 94 27 B1 A6 B9 91 8B 1B 02 A7 CF 64 1B 0B ...'.........d..
00000020: 11 E3 EA 12 52 9D B3 E4 DB 52 16 F6 5C E1 F8 5B ....R....R..\..[
00000030: 54 3E C9 99 D9 61 BB 98 7D 2F 91 B7 B9 1A 24 CE T>...a..}/....$.
00000040: 3D 7C BA DC 1D 51 D5 71 3A 1A 9A F2 39 76 2E 9D =|...Q.q:...9v..
00000050: 26 3E E9 2F DB DD 8A 56 52 8A B0 C6 5C 82 8D 39 &>./...VR...\..9
00000060: 5E 58 26 55 68 FD 0C 8C EF 0F DD 21 29 4E DF 6B ^X&Uh......!)N.k
00000070: 34 6A 28 BF C0 D4 7C 40 E0 5E B1 ED EE 87 DD EE 4j(...|@.^......
00000080: 76 23 09 04 DC D1 D7 02 05 00 80 17 1D 23       v#...........#
    3F00 5015 4402 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 38 30 14 0C 0B 50 72 69 76 61 74 65 20 4B 65 080...Private Ke
00000010: 79 03 02 06 C0 04 01 01 30 0E 04 01 45 03 02 05 y.......0...E...
00000020: 20 03 02 03 B8 02 01 10 A0 00 A1 0E 30 0C 30 06  ...........0.0.
00000030: 04 04 3F 00 50 15 02 02 04 00 00 00 00 00 00 00 ..?.P...........
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 4946 type: wEF, ef structure: transpnt, size: 128
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 01 06 70 6B 63 73 31 35 00 00 00 00 00 00 00 00 ..pkcs15........
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 5032 type: wEF, ef structure: transpnt, size: 42
    read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
    prop: 01

00000000: 30 28 02 01 00 04 02 00 00 0C 0E 4F 70 65 6E 53 0(.........OpenS
00000010: 43 20 50 72 6F 6A 65 63 74 80 0B 4F 70 65 6E 53 C Project..OpenS
00000020: 43 20 43 61 72 64 03 02 04 10                   C Card....
    3F00 5015 5031 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
    prop: 01

00000000: A8 0A 30 08 04 06 3F 00 50 15 44 01 A0 0A 30 08 ..0...?.P.D...0.
00000010: 04 06 3F 00 50 15 44 02 A1 0A 30 08 04 06 3F 00 ..?.P.D...0...?.
00000020: 50 15 44 03 A4 0A 30 08 04 06 3F 00 50 15 44 04 P.D...0...?.P.D.
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 4401 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 43 30 1A 0C 14 53 65 63 75 72 69 74 79 20 4F 0C0...Security O
00000010: 66 66 69 63 65 72 20 50 49 4E 03 02 06 C0 30 03 fficer PIN....0.
00000020: 04 01 FF A1 20 30 1E 03 02 00 4D 0A 04 FF FF FF .... 0....M.....
00000030: FF 02 01 06 02 01 08 80 01 01 04 01 00 30 06 04 .............0..
00000040: 04 3F 00 50 15 30 46 30 1D 0C 17 41 6C 65 78 61 .?.P.0F0...Alexa
00000050: 6E 64 72 65 20 41 68 6D 69 6D 2D 52 69 63 68 61 ndre Ahmim-Richa
00000060: 72 64 03 02 06 C0 30 03 04 01 01 A1 20 30 1E 03 rd....0..... 0..
00000070: 02 02 4C 0A 04 FF FF FF FF 02 01 04 02 01 08 80 ..L.............
00000080: 01 03 04 01 00 30 06 04 04 3F 00 50 15 00 00 00 .....0...?.P....
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

spector
In reply to this post by Peter Koch-3
Peter Koch-3 wrote
The current version of PTTYcard will not work with file layout.

Your certificate was stored in 3F00:6666:1002:0001.
Unfortunately this file does not contain the plain
certificate but starts with 4 bytes 04 00 51 03 and
then the certificate itself follows. Therefore
PuTTYcard will not be abe to extract the public key.

I will add an optional 5th argument to PuTTYiso7816
such that the next verion of PuTTYcard will be able
to read a certificate from a file at a certain offset.

Unfortunately this is not the only problem. I cannot
figure out what your keyref and pinref are.
Anything new with the eToken Pro issue?

I have formated my eToken Pro direct with openSC but PuTTYcard does not work :(

I thought that I’m not impacted by the file layout problem because I have used the pkcs15-init command. Is there any way to use a Aladdin eToken for PuTTYcard?


Here the details:

Type: eToken Pro
Model: Token P0514 F4.2.5.4
Product ID: 0x0514
Firmware version: 4.2.5.4 [0x8514]
Card/OS version: CardOS/M4.01

pkcs15-init -r 6 -E
pkcs15-init -r 0 -C --so-pin 123456 --so-puk 123456
pkcs15-init -r 0 -P -a 1 --so-pin 123456 --pin 1234 --puk 1234 -a 1
pkcs15-init -r 0 -S "test.p12" -f PKCS12 -a 1 -l test --so-pin 123456 --pin 1234 --passphrase password --key-usage dataEncipherment


pkcs15-tool -reader 0 -k

Private RSA Key [test]
        Com. Flags  : 3
        Usage       : [0x2], decrypt
        Access Flags: [0x1D], sensitive, alwaysSensitive, neverExtract, local
        ModLength   : 1024
        Key ref     : 16
        Native      : yes
        Path        : 3F005015
        Auth ID     : 01
        ID          : 45


pkcs15-tool -reader 0 --list-pins

PIN [Security Officer PIN]
        Com. Flags: 0x3
        Auth ID   : ff
        Flags     : [0xB2], local, initialized, needs-padding, soPin
        Length    : min_len:6, max_len:8, stored_len:8
        Pad char  : 0x00
        Reference : 1
        Type      : 1
        Path      : 3F005015

PIN []
        Com. Flags: 0x3
        Auth ID   : 01
        Flags     : [0x32], local, initialized, needs-padding
        Length    : min_len:4, max_len:8, stored_len:8
        Pad char  : 0x00
        Reference : 3
        Type      : 1
        Path      : 3F005015


pkcs15-tool -reader 0 -c


X.509 Certificate [/C=FI/O=OpenSC/CN=test/emailAddress=opensc-devel@opensc.org]
        Flags    : 2
        Authority: no
        Path     : 3F0050153049
        ID       : 45

X.509 Certificate [/C=FI/O=OpenSC/CN=OpenSC CA/emailAddress=opensc-devel@opensc.org]
        Flags    : 2
        Authority: yes
        Path     : 3F005015304A
        ID       : 46



PuTTYcard,PuTTYiso7816.dll,<path>,AA,BB,CCCC

PATH=5015
AA=10 (16 decimal)
BB=03 (3 decimal)
CCCC= 3049

results:

PuTTYcard,PuTTYiso7816.dll,5015,10,03,3049

Unfortunately it does not work :(

"Couldn’t load this key (not a privat key)"

Here is a dump with opensc-tool:

3F00 type:  DF, size: 21765
select[N/A] lock[NONE] delete[NONE] create[NONE] rehab[NONE] inval[NONE] list[N/A] sec: 00:00:00:00:00:00:FF:00
prop: 01:04:00

  3F00 2F00 type: wEF, ef structure: transpnt, size: 128
  read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
  prop: 01

00000000: 61 21 4F 0C A0 00 00 00 63 50 4B 43 53 2D 31 35 a!O.....cPKCS-15
00000010: 50 0B 4F 70 65 6E 53 43 20 43 61 72 64 51 04 3F P.OpenSC CardQ.?
00000020: 00 50 15 00 00 00 00 00 00 00 00 00 00 00 00 00 .P..............
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
  3F00 5015 type:  DF, size: 18734
  select[N/A] lock[NEVR] delete[NONE] create[NONE] rehab[NONE] inval[NONE] list[N/A] sec: 00:FF:00:00:00:00:00:00:00
  prop: 01:08:00

    3F00 5015 304A type: wEF, ef structure: transpnt, size: 551
    read[NONE] update[CHV3] write[NEVR] erase[CHV3] rehab[NEVR] inval[NEVR] sec: 00:03:FF:FF:FF:03:00:00:00
    prop: 01

00000000: 30 82 02 23 30 82 01 8C 02 01 00 30 0D 06 09 2A 0..#0......0...*
00000010: 86 48 86 F7 0D 01 01 04 05 00 30 5A 31 0B 30 09 .H........0Z1.0.
00000020: 06 03 55 04 06 13 02 46 49 31 0F 30 0D 06 03 55 ..U....FI1.0...U
00000030: 04 0A 13 06 4F 70 65 6E 53 43 31 12 30 10 06 03 ....OpenSC1.0...
00000040: 55 04 03 13 09 4F 70 65 6E 53 43 20 43 41 31 26 U....OpenSC CA1&
00000050: 30 24 06 09 2A 86 48 86 F7 0D 01 09 01 16 17 6F 0$..*.H........o
00000060: 70 65 6E 73 63 2D 64 65 76 65 6C 40 6F 70 65 6E pensc-devel@open
00000070: 73 63 2E 6F 72 67 30 1E 17 0D 30 33 30 35 31 35 sc.org0...030515
00000080: 31 35 34 31 32 35 5A 17 0D 30 36 30 32 30 38 31 154125Z..0602081
00000090: 35 34 31 32 35 5A 30 5A 31 0B 30 09 06 03 55 04 54125Z0Z1.0...U.
000000A0: 06 13 02 46 49 31 0F 30 0D 06 03 55 04 0A 13 06 ...FI1.0...U....
000000B0: 4F 70 65 6E 53 43 31 12 30 10 06 03 55 04 03 13 OpenSC1.0...U...
000000C0: 09 4F 70 65 6E 53 43 20 43 41 31 26 30 24 06 09 .OpenSC CA1&0$..
000000D0: 2A 86 48 86 F7 0D 01 09 01 16 17 6F 70 65 6E 73 *.H........opens
000000E0: 63 2D 64 65 76 65 6C 40 6F 70 65 6E 73 63 2E 6F c-devel@opensc.o
000000F0: 72 67 30 81 9F 30 0D 06 09 2A 86 48 86 F7 0D 01 rg0..0...*.H....
00000100: 01 01 05 00 03 81 8D 00 30 81 89 02 81 81 00 A3 ........0.......
00000110: 12 31 76 C5 F3 6B C0 3B 7B 91 10 EC 71 AB CE CC .1v..k.;{...q...
00000120: 06 FF 9F 21 42 21 7D EF 38 EC 5D 5D 49 74 1E A0 ...!B!}.8.]]It..
00000130: 6B E7 C8 1A 71 92 27 8E D6 B6 21 DC 01 92 71 80 k...q.'...!...q.
00000140: 9E FA 6F 82 D0 1B 73 3E BB CA 64 DD 5A 8E 4C 75 ..o...s>..d.Z.Lu
00000150: EC 9F FB 4E 95 28 9C EF FE 09 9B 2B 78 EF 21 13 ...N.(.....+x.!.
00000160: 74 9D 85 1D C9 0A D2 F4 E6 D0 A4 89 37 B9 7B 8C t...........7.{.
00000170: A3 58 3F 27 C6 A0 97 00 60 6D D9 79 C4 9A 11 ED .X?'....`m.y....
00000180: 65 C2 53 00 2E E9 80 55 6C 2E 76 CC 6B B2 F5 02 e.S....Ul.v.k...
00000190: 03 01 00 01 30 0D 06 09 2A 86 48 86 F7 0D 01 01 ....0...*.H.....
000001A0: 04 05 00 03 81 81 00 3F D1 45 F9 47 50 77 02 86 .......?.E.GPw..
000001B0: C7 AC 95 75 3A FF EE 61 CF 37 35 90 27 3B 54 F0 ...u:..a.75.';T.
000001C0: F6 5F DD 34 61 EB 09 13 1F 4C D6 05 8A 60 73 5F ._.4a....L...`s_
000001D0: ED 31 51 29 92 AC 77 5F 2E E9 FD BD EC 15 A3 1D .1Q)..w_........
000001E0: 5A 35 C8 89 B0 03 A8 0C 08 04 71 CE 01 BD 9C B3 Z5........q.....
000001F0: E4 6E F9 86 BE 3D 00 33 E1 A2 40 85 63 79 DB 10 .n...=.3..@.cy..
00000200: E7 A5 82 8E F3 C7 EE 97 D7 C4 65 B5 FE 80 C8 65 ..........e....e
00000210: 5C DF C4 3E 00 DA AF 7E D2 C7 AE 08 E6 DC 34 A7 \..>...~......4.
00000220: D5 7F AE 0F 40 81 66                            ....@.f
    3F00 5015 4404 type: wEF, ef structure: transpnt, size: 512
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 56 30 41 0C 3B 2F 43 3D 46 49 2F 4F 3D 4F 70 0V0A.;/C=FI/O=Op
00000010: 65 6E 53 43 2F 43 4E 3D 74 65 73 74 2F 65 6D 61 enSC/CN=test/ema
00000020: 69 6C 41 64 64 72 65 73 73 3D 6F 70 65 6E 73 63 ilAddress=opensc
00000030: 2D 64 65 76 65 6C 40 6F 70 65 6E 73 63 2E 6F 72 -devel@opensc.or
00000040: 67 03 02 04 40 30 03 04 01 45 A1 0C 30 0A 30 08 g...@0...E..0.0.
00000050: 04 06 3F 00 50 15 30 49 30 5E 30 46 0C 40 2F 43 ..?.P.0I0^0F.@/C
00000060: 3D 46 49 2F 4F 3D 4F 70 65 6E 53 43 2F 43 4E 3D =FI/O=OpenSC/CN=
00000070: 4F 70 65 6E 53 43 20 43 41 2F 65 6D 61 69 6C 41 OpenSC CA/emailA
00000080: 64 64 72 65 73 73 3D 6F 70 65 6E 73 63 2D 64 65 ddress=opensc-de
00000090: 76 65 6C 40 6F 70 65 6E 73 63 2E 6F 72 67 03 02 vel@opensc.org..
000000A0: 04 40 30 06 04 01 46 01 01 FF A1 0C 30 0A 30 08 .@0...F.....0.0.
000000B0: 04 06 3F 00 50 15 30 4A 00 00 00 00 00 00 00 00 ..?.P.0J........
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000001F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 3049 type: wEF, ef structure: transpnt, size: 787
    read[NONE] update[CHV3] write[NEVR] erase[CHV3] rehab[NEVR] inval[NEVR] sec: 00:03:FF:FF:FF:03:00:00:00
    prop: 01

00000000: 30 82 03 0F 30 82 02 78 A0 03 02 01 02 02 01 09 0...0..x........
00000010: 30 0D 06 09 2A 86 48 86 F7 0D 01 01 04 05 00 30 0...*.H........0
00000020: 5A 31 0B 30 09 06 03 55 04 06 13 02 46 49 31 0F Z1.0...U....FI1.
00000030: 30 0D 06 03 55 04 0A 13 06 4F 70 65 6E 53 43 31 0...U....OpenSC1
00000040: 12 30 10 06 03 55 04 03 13 09 4F 70 65 6E 53 43 .0...U....OpenSC
00000050: 20 43 41 31 26 30 24 06 09 2A 86 48 86 F7 0D 01  CA1&0$..*.H....
00000060: 09 01 16 17 6F 70 65 6E 73 63 2D 64 65 76 65 6C ....opensc-devel
00000070: 40 6F 70 65 6E 73 63 2E 6F 72 67 30 1E 17 0D 30 @opensc.org0...0
00000080: 33 30 35 31 35 31 35 34 34 33 31 5A 17 0D 30 35 30515154431Z..05
00000090: 31 30 33 31 31 35 34 34 33 31 5A 30 55 31 0B 30 1031154431Z0U1.0
000000A0: 09 06 03 55 04 06 13 02 46 49 31 0F 30 0D 06 03 ...U....FI1.0...
000000B0: 55 04 0A 13 06 4F 70 65 6E 53 43 31 0D 30 0B 06 U....OpenSC1.0..
000000C0: 03 55 04 03 13 04 74 65 73 74 31 26 30 24 06 09 .U....test1&0$..
000000D0: 2A 86 48 86 F7 0D 01 09 01 16 17 6F 70 65 6E 73 *.H........opens
000000E0: 63 2D 64 65 76 65 6C 40 6F 70 65 6E 73 63 2E 6F c-devel@opensc.o
000000F0: 72 67 30 81 9F 30 0D 06 09 2A 86 48 86 F7 0D 01 rg0..0...*.H....
00000100: 01 01 05 00 03 81 8D 00 30 81 89 02 81 81 00 B8 ........0.......
00000110: C3 AD 9F 9A 95 E4 93 F2 F8 36 76 BA 09 A6 22 D7 .........6v...".
00000120: DF 6F 34 DA 7D 4B F8 59 76 64 72 EB D4 8F D0 72 .o4.}K.Yvdr....r
00000130: D2 71 2A 1B F2 14 A0 AA 2D E9 DB 6F 60 59 34 7E .q*.....-..o`Y4~
00000140: FD C9 38 F7 E2 6F 95 F5 90 EB C9 94 4E D2 4D 3C ..8..o......N.M<
00000150: E4 8A 56 D4 70 63 50 1D 3F 82 22 0B 61 4E 5E 7C ..V.pcP.?.".aN^|
00000160: 40 0E C0 50 D6 A9 66 20 01 47 A5 2E 16 EC 97 C6 @..P..f .G......
00000170: 46 F1 03 60 87 76 8F A5 14 C3 66 90 71 DB 67 E1 F..`.v....f.q.g.
00000180: 14 FE 15 E4 AF BE FA 41 5B 7C FF A1 C1 9B CB 02 .......A[|......
00000190: 03 01 00 01 A3 81 E9 30 81 E6 30 09 06 03 55 1D .......0..0...U.
000001A0: 13 04 02 30 00 30 11 06 09 60 86 48 01 86 F8 42 ...0.0...`.H...B
000001B0: 01 01 04 04 03 02 04 B0 30 0B 06 03 55 1D 0F 04 ........0...U...
000001C0: 04 03 02 05 E0 30 2C 06 09 60 86 48 01 86 F8 42 .....0,..`.H...B
000001D0: 01 0D 04 1F 16 1D 4F 70 65 6E 53 53 4C 20 47 65 ......OpenSSL Ge
000001E0: 6E 65 72 61 74 65 64 20 43 65 72 74 69 66 69 63 nerated Certific
000001F0: 61 74 65 30 1D 06 03 55 1D 0E 04 16 04 14 B2 97 ate0...U........
00000200: 47 EE D6 D3 41 09 D6 B2 F8 64 9B 36 ED 63 6F D3 G...A....d.6.co.
00000210: CF 8E 30 6C 06 03 55 1D 23 04 65 30 63 A1 5E A4 ..0l..U.#.e0c.^.
00000220: 5C 30 5A 31 0B 30 09 06 03 55 04 06 13 02 46 49 \0Z1.0...U....FI
00000230: 31 0F 30 0D 06 03 55 04 0A 13 06 4F 70 65 6E 53 1.0...U....OpenS
00000240: 43 31 12 30 10 06 03 55 04 03 13 09 4F 70 65 6E C1.0...U....Open
00000250: 53 43 20 43 41 31 26 30 24 06 09 2A 86 48 86 F7 SC CA1&0$..*.H..
00000260: 0D 01 09 01 16 17 6F 70 65 6E 73 63 2D 64 65 76 ......opensc-dev
00000270: 65 6C 40 6F 70 65 6E 73 63 2E 6F 72 67 82 01 00 el@opensc.org...
00000280: 30 0D 06 09 2A 86 48 86 F7 0D 01 01 04 05 00 03 0...*.H.........
00000290: 81 81 00 30 D4 03 C2 3E AF E4 96 02 E4 3D FC 4B ...0...>.....=.K
000002A0: 51 66 D8 ED B7 11 31 7E 4B 02 64 E6 81 61 6E FB Qf....1~K.d..an.
000002B0: 5E DB 47 91 12 07 97 FE 79 51 BE 56 6A 77 1E F6 ^.G.....yQ.Vjw..
000002C0: 72 DE B2 D3 5B 17 DB 47 9F 8A EC C7 04 0A 4D C8 r...[..G......M.
000002D0: D1 75 AC 3B 1D F7 A0 89 F9 24 A3 6B A8 8A 9E B9 .u.;.....$.k....
000002E0: 31 CA 03 01 90 71 6E 2A F1 9A 49 28 C4 54 05 69 1....qn*..I(.T.i
000002F0: 97 AB 81 5E 9E 27 9D 90 03 13 08 2F AA 71 5A 06 ...^.'...../.qZ.
00000300: 67 5D 29 9A 21 07 D5 92 7F 30 C1 E7 16 B2 A1 2A g]).!....0.....*
00000310: 35 C7 F4                                        5..
    3F00 5015 4402 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 30 31 30 0D 0C 04 74 65 73 74 03 02 04 C0 04 01 010...test......
00000010: 01 30 0E 04 01 45 03 02 06 40 03 02 03 B8 02 01 .0...E...@......
00000020: 10 A0 00 A1 0E 30 0C 30 06 04 04 3F 00 50 15 02 .....0.0...?.P..
00000030: 02 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 4946 type: wEF, ef structure: transpnt, size: 128
    read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[CHV1] inval[CHV1] sec: 00:01:01:01:01:01:00:00:00
    prop: 01

00000000: 01 06 70 6B 63 73 31 35 00 00 00 00 00 00 00 00 ..pkcs15........
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 5032 type: wEF, ef structure: transpnt, size: 42
    read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
    prop: 01

00000000: 30 28 02 01 00 04 02 00 00 0C 0E 4F 70 65 6E 53 0(.........OpenS
00000010: 43 20 50 72 6F 6A 65 63 74 80 0B 4F 70 65 6E 53 C Project..OpenS
00000020: 43 20 43 61 72 64 03 02 04 10                   C Card....
    3F00 5015 5031 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
    prop: 01

00000000: A8 0A 30 08 04 06 3F 00 50 15 44 01 A0 0A 30 08 ..0...?.P.D...0.
00000010: 04 06 3F 00 50 15 44 02 A4 0A 30 08 04 06 3F 00 ..?.P.D...0...?.
00000020: 50 15 44 04 00 00 00 00 00 00 00 00 00 00 00 00 P.D.............
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 5015 4401 type: wEF, ef structure: transpnt, size: 256
    read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
    prop: 01

00000000: 30 40 30 1A 0C 14 53 65 63 75 72 69 74 79 20 4F 0@0...Security O
00000010: 66 66 69 63 65 72 20 50 49 4E 03 02 04 C0 30 03 fficer PIN....0.
00000020: 04 01 FF A1 1D 30 1B 03 02 00 4D 0A 01 01 02 01 .....0....M.....
00000030: 06 02 01 08 80 01 01 04 01 00 30 06 04 04 3F 00 ..........0...?.
00000040: 50 15 30 2A 30 04 03 02 04 C0 30 03 04 01 01 A1 P.0*0.....0.....
00000050: 1D 30 1B 03 02 02 4C 0A 01 01 02 01 04 02 01 08 .0....L.........
00000060: 80 01 03 04 01 00 30 06 04 04 3F 00 50 15 00 00 ......0...?.P...
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
000000F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
  3F00 6666 [AKS] type:  DF, size: 21765
  select[N/A] lock[NEVR] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:FF:01:FF:FF:FF:FF:01
  prop: 01:01:00

    3F00 6666 7000 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

Empty directory
    3F00 6666 6000 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

Empty directory
    3F00 6666 5000 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

Empty directory
    3F00 6666 1003 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:02:00

      3F00 6666 1003 1003 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 6666 1002 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:00

      3F00 6666 1002 1002 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 6666 1001 type:  DF, size: 21765
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:1F:A4

      3F00 6666 1001 1002 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
      3F00 6666 1001 1001 type: wEF, ef structure: transpnt, size: 128
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    3F00 6666 1000 type:  DF, size: 16550
    select[N/A] lock[CHV1] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR] list[N/A] sec: FF:01:01:FF:FF:FF:FF:01
    prop: 01:00:40

      3F00 6666 1000 0004 type: wEF, ef structure: transpnt, size: 4
      read[NONE] update[NONE] write[NONE] erase[NONE] rehab[NONE] inval[NONE] sec: 00:00:00:00:00:00:00:00:00
      prop: 01

00000000: 0A 0A 00 00 ....
      3F00 6666 1000 AAA0 type: wEF, ef structure: transpnt, size: 4
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 52 34 00 00 R4..
      3F00 6666 1000 0003 type: wEF, ef structure: transpnt, size: 1
      read[NONE] update[CHV1] write[CHV1] erase[CHV1] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:01:01:01:01
      prop: 01

00000000: 01 .
      3F00 6666 1000 0002 type: wEF, ef structure: transpnt, size: 32
      read[NONE] update[CHV1] write[CHV1] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00:01:01:FF:FF:FF:FF:01:01
      prop: 01

00000000: 73 74 61 72 67 61 74 65 20 73 73 68 00 00 00 00 stargate ssh....
00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
      3F00 6666 1000 0001 type: wEF, ef structure: transpnt, size: 11
      read[NONE] update[NEVR] write[NEVR] erase[NEVR] rehab[NEVR] inval[NEVR] sec: 00
      prop: 01

00000000: 01 14 50 46 48 14 85 00 00 00 00 ..PFH......

If Aladdin eToken does not work together with PuTTYcard which token/smartcard can be used? I have tried Cryptoflex eGate with much more problems.

I’d like the PuTTYcard approach  - better than puttysc. But puttysc works fine with Aladdin eToken Pro and is much easier to handle. Unfortunately it does not work with WinSCP. So I’m focused on a PuTTYcard solution.

Thanks Frank
Reply | Threaded
Open this post in threaded view
|

Re: [PuTTYcard] Problem with Aladdin eToken PRO

Andreas Jellinghaus-2
spector wrote:
> Anything new with the eToken Pro issue?
>
> I have formated my eToken Pro direct with openSC but PuTTYcard does not work
> :(
>
> I thought that I’m not impacted by the file layout problem because I have
> used the pkcs15-init command. Is there any way to use a Aladdin eToken for
> PuTTYcard?

so I wonder: why don't you use the putty provided by the scb package?
it works fine with opensc, no need for puttycard (which is more of a
hack, I'm sure peter will for give me:) ).

> If Aladdin eToken does not work together with PuTTYcard which
> token/smartcard can be used? I have tried Cryptoflex eGate with much more
> problems.

cyberflex cards in egate tokens work fine with opensc/scb/putty, but any
other token supported by opensc should work fine.

> I’d like the PuTTYcard approach  - better than puttysc. But puttysc works
> fine with Aladdin eToken Pro and is much easier to handle. Unfortunately it
> does not work with WinSCP. So I’m focused on a PuTTYcard solution.

what about our putty, the one in the scb package. it is patched to work
with our pkcs#11 (and any other pkcs#11 should work with little changes,
help is very welcome)?

Regards, Andreas
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc-project.org/mailman/listinfo/opensc-devel