[Pki-devel] Fwd: [pki-devel][PATCH] 0008-Further-progress-Format-operation.patch
John Magne
jmagne at redhat.com
Tue Apr 8 21:33:21 UTC 2014
Actually attach the patch this time...
----- Forwarded Message -----
From: "John Magne" <jmagne at redhat.com>
To: "pki-devel" <pki-devel at redhat.com>
Sent: Tuesday, April 8, 2014 2:30:05 PM
Subject: [pki-devel][PATCH] 0008-Further-progress-Format-operation.patch
Patch accomplishes the following:
1. Read applet into memory to prepare to write to token.
2. With tpsclient create secure channel by implementing Initialize Update and ExternalAuthenticate messages.
3. Support for MAC and encryption for messages going on after secure channel has been created.
4. Implemented method to remove an aid file or instance from the token.
5. Added some symkey methods to allow TPS to manipulate session keys.
Have not tried this with real token as of yet. The tpsclient does verify of the MAC coming from the server and decrypts encrypted messages. Decrypted messages have to be correct for the MAC verification to work.
Next step will be to add the phone home servlet to the TPS and give it a try with a real token and esc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0008-Further-progress-Format-operation.patch
Type: text/x-patch
Size: 76399 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20140408/0f4eab8b/attachment.bin>
More information about the Pki-devel
mailing list