Bug 479880

Summary: Support protocol T1 cards in CoolKey for ESC
Product: [Retired] Dogtag Certificate System Reporter: Jack Magne <jmagne>
Component: ESCAssignee: Jack Magne <jmagne>
Status: CLOSED ERRATA QA Contact: Chandrasekar Kannan <ckannan>
Severity: high Docs Contact:
Priority: high    
Version: 1.0CC: aakkiang, alee, benl, rrelyea
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 514298 (view as bug list) Environment:
Last Closed: 2009-07-22 23:31:01 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 443788, 514298    
Attachments:
Description Flags
Code to allow protocol T1 cards. none

Description Jack Magne 2009-01-13 19:05:11 UTC 
Description of problem:

Coolkey as it stands, supports only the T0 protocol cards.
There is a simple patch included later, that will allow CoolKey to recognize cards that favor protocol T1.

Version-Release number of selected component (if applicable):

esc-1.0.1

How reproducible:

Always

Steps to Reproduce:
1. Launch the current ESC on any platform.
2. Input a token that favors protocol T1.
3. Note that the card is not recognized by ESC.
  
Actual results:

ESC does not recognize the card.

Expected results:

ESC should recognize this card.

Additional info:

Further evidence of this failure can be observed by starting pcscd  in foreground mode , such that the logs can be viewed in real time.

as root:

/etc/init.d/pcscd stop
/usr/sbin/pcscd -f -d

When a token is inserted, the logs should complain about protocol mismatch errors.
Comment 1 Jack Magne 2009-01-13 19:07:39 UTC 
Created attachment 328908 [details]
Code to allow protocol T1 cards.
Comment 2 Jack Magne 2009-01-15 04:56:55 UTC 
rrelyea, can you review 328908?
Comment 3 Bob Relyea 2009-01-21 19:06:16 UTC 
Comment on attachment 328908 [details]
Code to allow protocol T1 cards.

r+ as long as you verified the code works on all platforms (I'm pretty sure that all platforms support g_rsSCardTIPci, but we should make sure).

bob
Comment 4 Jack Magne 2009-01-23 03:53:24 UTC 
Code compiles successfully on Windows and Mac.
The test T1 card is recognized on Windows, will test Mac.
Comment 5 Jack Magne 2009-01-24 00:08:28 UTC 
Checking in cky_card.c;
/cvs/dirsec/coolkey/src/libckyapplet/cky_card.c,v  <--  cky_card.c
new revision: 1.2; previous revision: 1.1
done
Comment 6 Asha Akkiangady 2009-06-11 20:06:34 UTC 
Gemalto 64K and Safenet 330 J cards are recognized by ESC on Windows (XP and Vista) and RHEL5.3 platforms. 
Jack, these two tokens support T1 protocol? 
Lets keep this bug open till we test ESC on Mac.
Comment 7 Jack Magne 2009-06-11 23:09:31 UTC 
The Safenet token requires T1 protocol.
Therefore I think we should close this one.
If the Mac has problems with the Safenet, it will probably be for other reasons, not the fact that it's the T1 protocol.

We could open up a new bug for that.
Comment 8 Asha Akkiangady 2009-06-12 16:25:19 UTC 
Verified.