Re: GPGSM detached signature without auth attributes

2016-11-22 Thread Jernej Kos
Hello! On 22. 11. 2016 08:06, Werner Koch wrote: > That is unfortunate because all modern implementations use the > indirect signing method (using the attribute 1.2.840.113549.1.9.4). > GPGSM is able to verify the old direct signing method but it can't > create such an old signature. This explain

Re: GPGSM detached signature without auth attributes

2016-11-22 Thread Jernej Kos
27;t have signedAttrs, but for some reason the signature is then wrong. So I have to look into this more. Thanks! Jernej On 22. 11. 2016 01:58, Stephan Beck wrote: > Hi Jerney, > > Jernej Kos: >> Hello! >> >> I would like to use GPGSM to sign a Linux kernel mo

GPGSM detached signature without auth attributes

2016-11-20 Thread Jernej Kos
Hello! I would like to use GPGSM to sign a Linux kernel module with a private key stored on an OpenPGP smartcard. The original signing tool uses OpenSSL to sign the kernel module using a detached CMS signature. The kernel requires that the CMS does not contain any authenticated attributes and it

Re: Manually changing smartcard state

2015-01-27 Thread Jernej Kos
Hello! On 27. 01. 2015 01:00, Johannes Zarl wrote: > You can tell gpg-agent to lock the card using the following command[1]: > > gpg-connect-agent 'SCD RESET' /bye Nice, this works, thank you! Jernej signature.asc Description: OpenPGP digital signature __

Manually changing smartcard state

2015-01-26 Thread Jernej Kos
Hello! Is it possible to change the smartcard state after PIN is entered, so it would be back in the same state as it was when first inserted into the reader (and would require the PIN to be entered again also for decryption)? So without removing and re-inserting the card, possibly using some APDU