Using a Windows initilized GPK card on Linux

Nils,
Thanks for your response. I am now on the opensc-devel list,
and and sending this question to it. as well as addressing some
of your questions.

Nils Larsch wrote:

> Douglas E. Engert wrote:
>
> > I am trying to use a GemPlus GPK 16 card in Linux. The card has
> > been initialized to use with Windows login and it works well with
> > windows. (The goal is to eventually use the same card for login
> > to any machine by using the Kerberos PKINIT to the Windows AD.)
> >
> > I have ccid-0.9.3 and pcsc-lite-1.2.9-beta7 running today and
> > am trying to use them with opensc-20050306.
> >
> > It appears the ccid and pcsc can see the card and return
> > the ATR, and says it is a "Gemplus GPK". But it looks like the
> > opensc-tool, pkcs11-tool and pkcs15-tool don't know what the
> > file structure has be written to the card by the windows
> > initialization. failing in libopensc/card.c:756.
> > sc_select_file: returning with: file not found.
> >
> > Any ideas?
>
>
> wrong list, try opensc-devel@xxxxxxxxxx . However I guess you
> need a opensc feature called pkcs15 emulation (what do you know
> about your card profile ?).

The card was created by the Gemplus routines for uses with Windows
login. I have a USB trace on Windows XP of it being used, and can see
many of the IOS7816 commands being issued, with responses. So I don't
know much about the profile.

I also see that they will use the "00 A4 00 00 02 3F 00"
for the top directory, but for the next file that will use
some thing like: "00 a4 04 0c 0c a0 00 00 00 18 0f 00 00 01 63 00 01"
to get ready to accept the pin. They do a number of other
attempts to find files, presumable looking for other cards.

On Linux using formaticc, I can get it to accept the pin, and look
at some of the control blocks.

I see the OpenSC code about pkcs15 emulation, and it looks like
this would be one the way to go. I am having some trouble determining
what the opensc.conf file should have to get it to use a new pkcs15-xxx
module for this one card.


> Nils
> _______________________________________________
> Muscle mailing list
> Muscle@xxxxxxxxxxxxxxxxxxxx
> http://lists.drizzle.com/mailman/listinfo/muscle

--

 Douglas E. Engert  <DEEngert@xxxxxxx>
 Argonne National Laboratory
 9700 South Cass Avenue
 Argonne, Illinois  60439
 (630) 252-5444