|
(Tcl) ScMinidriver - Import Private Key to Smart Card
Demonstrates how to import a private key to the "signature" or "key exchange" location in the Nth key container on a smart card.
load ./chilkat.dll
# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
# Chilkat recommends the following free tool for interactively examining the contents of your smart card
# through the ScMinidriver interface: MGTEK Tool for Minidriver enabled Smart Cards
# Let's first look at our smart card before importing a private key.
# Here's the view of our Gemalto (Thales) IDPrime MD T=0 smart card in the MGTEK tool:
# First let's load a private key into the Chilkat private key object.
# (Chilkat provides the ability to load private keys from many different sources and formats.
# this example loads from a PEM file.)
set privKey [new_CkPrivateKey]
set success [CkPrivateKey_LoadPemFile $privKey "qa_data/rsa/rsaPrivKey_pkcs8.pem"]
if {$success == 0} then {
puts [CkPrivateKey_lastErrorText $privKey]
delete_CkPrivateKey $privKey
exit
}
set scmd [new_CkScMinidriver]
# First we need to acquire a context to the smart card in the reader where it is inserted.
# Reader names (smart card readers or USB tokens) can be discovered
# via List Readers or Find Smart Cards
set readerName "Alcor Micro USB Smart Card Reader 0"
set success [CkScMinidriver_AcquireContext $scmd $readerName]
if {$success == 0} then {
puts [CkScMinidriver_lastErrorText $scmd]
delete_CkPrivateKey $privKey
delete_CkScMinidriver $scmd
exit
}
# If successful, the name of the currently inserted smart card is available:
puts "Card name: [CkScMinidriver_cardName $scmd]"
# To import a private key, we'll need to be PIN authenticated.
# For more details about smart card PIN authentication, see the Smart Card PIN Authentication Example
set pinId "user"
set retval [CkScMinidriver_PinAuthenticate $scmd $pinId "0000"]
if {$retval != 0} then {
puts "PIN Authentication failed."
CkScMinidriver_DeleteContext $scmd
delete_CkPrivateKey $privKey
delete_CkScMinidriver $scmd
exit
}
# Let's import into the "key exchange" position in key container #7.
set success [CkScMinidriver_ImportKey $scmd 7 "kex" $privKey "user"]
if {$success == 0} then {
puts "PIN Authentication failed."
CkScMinidriver_DeleteContext $scmd
delete_CkPrivateKey $privKey
delete_CkScMinidriver $scmd
exit
}
CkScMinidriver_DeleteContext $scmd
puts "Success."
# Here's the MGTEK view of the smart card after importing the private key:
delete_CkPrivateKey $privKey
delete_CkScMinidriver $scmd
|