From 25dae28ab55c8aa80e323a0bddde9d41bc97dec3 Mon Sep 17 00:00:00 2001 From: Uri Blumenthal Date: Mon, 21 Dec 2015 12:10:46 -0500 Subject: [PATCH] Access to public key should not be PIN-authenticated. Especially since access to certificate (from which one can get public key) is not currently PIN-authenticated. --- src/tools/pkcs15-tool.c | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/src/tools/pkcs15-tool.c b/src/tools/pkcs15-tool.c index 7aa981fe..46892aa5 100644 --- a/src/tools/pkcs15-tool.c +++ b/src/tools/pkcs15-tool.c @@ -688,9 +688,7 @@ static int read_public_key(void) if (r >= 0) { if (verbose) printf("Reading public key with ID '%s'\n", opt_pubkey); - r = authenticate(obj); - if (r >= 0) - r = sc_pkcs15_read_pubkey(p15card, obj, &pubkey); + r = sc_pkcs15_read_pubkey(p15card, obj, &pubkey); } else if (r == SC_ERROR_OBJECT_NOT_FOUND) { /* No pubkey - try if there's a certificate */ r = sc_pkcs15_find_cert_by_id(p15card, &id, &obj);