FreeBSD Port: security/openct
Petr Holub
hopet at ics.muni.cz
Thu Aug 18 12:59:11 GMT 2005
Hi,
I've seen openct (with opensc and Mozilla) not being able to do hotplug
of iKey3000 on FreeBSD RELENG_6 (6-STABLE) although the hotplug is enabled
in the config file.
1) when I attempt to start the deamon when no key is present, it
doesn't start and with debug=1 it just reports:
Debug: ifd_scan_usb: BSD: ifd_scan_usb
2) when detaching the key while the daemon is running, it eats up
the processor and mozilla complains:
sec.c:204:sc_pin_cmd: returning with: PIN code or key incorrect
card.c:203:sc_transceive: Unable to transmit: Reader detached (hotplug device?)
card.c:238:sc_transmit_apdu: transceive() failed: Reader detached (hotplug
device?)
card-starcos.c:1172:starcos_set_security_env: APDU transmit failed: Reader
detached (hotplug device?)
sec.c:67:sc_set_security_env: returning with: Reader detached (hotplug device?)
pkcs15-sec.c:312:sc_pkcs15_compute_signature: sc_set_security_env() failed:
Reader detached (hotplug device?)
3) when the key is re-attached after (2), the daemons keeps hanging,
mozilla says
card-starcos.c:1393:starcos_logout: APDU re-transmit failed: Reader reattached
(hotplug device?)
sec.c:104:sc_logout: returning with: Reader reattached (hotplug device?)
but the certicate is no longer accessible.
When no hotplug is done, everything works fine except it seems to
be a little bit slower than on Win + IE.
Best,
Petr
================================================================
Petr Holub
CESNET z.s.p.o. Supercomputing Center Brno
Zikova 4 Institute of Compt. Science
162 00 Praha 6, CZ Masaryk University
Czech Republic Botanicka 68a, 60200 Brno, CZ
e-mail: Petr.Holub at cesnet.cz phone: +420-549493944
fax: +420-541212747
e-mail: hopet at ics.muni.cz
More information about the freebsd-ports
mailing list