Sample code for 30+ languages & platforms
Tcl

ScMinidriver - Import Private Key to Smart Card

See more ScMinidriver Examples

Demonstrates how to import a private key to the "signature" or "key exchange" location in the Nth key container on a smart card.

Chilkat Tcl Downloads

Tcl

load ./chilkat.dll

set success 0

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# Chilkat recommends the following free tool for interactively examining the contents of your smart card
# through the ScMinidriver interface:  MGTEK Tool for Minidriver enabled Smart Cards

# Let's first look at our smart card before importing a private key.
# Here's the view of our Gemalto (Thales) IDPrime MD T=0 smart card in the MGTEK tool:

# (image:https://example-code.com/images/gemalto_idprime_md_t0.JPG/endImage)

# First let's load a private key into the Chilkat private key object.
# (Chilkat provides the ability to load private keys from many different sources and formats.
# this example loads from a PEM file.)
set privKey [new_CkPrivateKey]

set success [CkPrivateKey_LoadPemFile $privKey "qa_data/rsa/rsaPrivKey_pkcs8.pem"]
if {$success == 0} then {
    puts [CkPrivateKey_lastErrorText $privKey]
    delete_CkPrivateKey $privKey
    exit
}

set scmd [new_CkScMinidriver]

# First we need to acquire a context to the smart card in the reader where it is inserted.
# Reader names (smart card readers or USB tokens) can be discovered
# via List Readers or Find Smart Cards
set readerName "Alcor Micro USB Smart Card Reader 0"
set success [CkScMinidriver_AcquireContext $scmd $readerName]
if {$success == 0} then {
    puts [CkScMinidriver_lastErrorText $scmd]
    delete_CkPrivateKey $privKey
    delete_CkScMinidriver $scmd
    exit
}

# If successful, the name of the currently inserted smart card is available:
puts "Card name: [CkScMinidriver_cardName $scmd]"

# To import a private key, we'll need to be PIN authenticated.
# For more details about smart card PIN authentication, see the Smart Card PIN Authentication Example
set pinId "user"
set retval [CkScMinidriver_PinAuthenticate $scmd $pinId "0000"]
if {$retval != 0} then {
    puts "PIN Authentication failed."
    CkScMinidriver_DeleteContext $scmd
    delete_CkPrivateKey $privKey
    delete_CkScMinidriver $scmd
    exit
}

# Let's import into the "key exchange" position in key container #7.
set success [CkScMinidriver_ImportKey $scmd 7 "kex" $privKey "user"]
if {$success == 0} then {
    puts "PIN Authentication failed."
    CkScMinidriver_DeleteContext $scmd
    delete_CkPrivateKey $privKey
    delete_CkScMinidriver $scmd
    exit
}

CkScMinidriver_DeleteContext $scmd

puts "Success."

# Here's the MGTEK view of the smart card after importing the private key:
# (image:https://example-code.com/images/gemalto_idprime_after_key_import.JPG/endImage)

delete_CkPrivateKey $privKey
delete_CkScMinidriver $scmd