root/trunk/howto

Requirements
------------
- PPC based Mac OS X 10.4 (With latest updates, currently 10.4.7)
- Install Xcode 2.4 from Apple on their developer site
(http://developer.apple.com/tools/xcode/index.html) for the ADC member.
For ADC registration at no cost: http://developer.apple.com/membership/details.html

- Install Fink (http://fink.sourceforge.net/download/)

- In a Terminal
        sudo fink update-all
        sudo fink install automake1.9
        sudo fink install libtool14
        sudo fink install wget
        sudo fink install pkgconfig
        
- Install subversion
        You have two choices here. The first (and historical) one is to compile it 
                yourself through fink by issuing this in a Terminal:
                sudo fink install svn-client-ssl
        OR install the subversion client package from:
                http://metissian.com/projects/macosx/subversion/

Building the package for PPC only
---------------------------------
- Check out the sca project to your Documents folder
  svn co http://www.opensc-project.org/svn/sca/trunk opensc

In the newly created directory "opensc":
!Edit the makefile!
!Edit xxxx-pack/Info.plist for version number!

        make fetch
        make build
        sudo make install
        make package
        make dist
        
The resulting file sca-X.X.dmg can be distributed.      

Building the Universal package
------------------------------
- You need first create the i386 part on a MacIntel system.
        The MacIntel need to have the Developer Xcode installed which is available
        on the Installation DVD or on Apple's developer site. Fink doesn't need 
        to be installed.
        Transfer the Makefile_i386 and libusb-runloop.patch
        and then do:
        make -f Makefile_i386 all ; make -f Makefile_i386 transfer
        The compiled-i386.tgz obtained need to be transfered back to your PPC system,
        in Documents/opensc.
        There do tar xzf compiled-i386.tgz
        
- Check out the sca project to your Documents folder
  svn co http://www.opensc-project.org/svn/sca/trunk opensc

In the newly created directory "opensc":
!Edit the makefile!
!Edit xxxx-pack/Info.plist for version number!

        make fetch
        make build
        make lipo
        sudo make install
        make package
        make dist
        
The resulting file sca-X.X.dmg can be distributed.      

Building the Universal Light package
------------------------------------
- You need first create the i386 part on a MacIntel system.
        The MacIntel need to have the Developer Xcode installed which is available
        on the Installation DVD or on Apple's developer site.
        Transfer the Makefile_light_i386 and libusb-runloop.patch
        and then do:
        make -f Makefile_light_i386 all ; make -f Makefile_light_i386 transfer
        The compiled-i386.tgz obtained need to be transfered back to your your PPC system,
        in Documents/opensc.
        There do tar xzf compiled-i386.tgz
        
- Check out the sca project to your Documents folder
  svn co http://www.opensc-project.org/svn/sca/trunk opensc

In the newly created directory "opensc":
!Edit the makefile!
!Edit xxxx-pack/Info.plist for version number!

        make -f Makefile_light fetch
        make -f Makefile_light build
        make -f Makefile_light lipo
        sudo  make -f Makefile_light install
        make -f Makefile_light package
        
The resulting file sca_light-X.X.dmg and sca_reader-X.X.dmg can be distributed. 


Before building the file for distribution, check:
-------------------------------------------------

1. libltdl library

This library is installed by XCode 2.3, but is sometimes overwriten by
other software installer.
If it is not the right one, you need to reinstall XCode 2.3
ls -l /usr/lib/libltdl*dylib
lrwxr-xr-x   1 root  wheel     15 Nov 15 13:04 /usr/lib/libltdl.3.1.0.dylib -> libltdl.3.dylib
-rwxr-xr-x   1 root  wheel  74684 Nov  3 00:50 /usr/lib/libltdl.3.dylib
lrwxr-xr-x   1 root  wheel     15 Nov 15 13:04 /usr/lib/libltdl.dylib -> libltdl.3.dylib

2. libreadline library

ls -l /usr/lib/libreadline*dylib 
lrwxr-xr-x   1 root  wheel  13 Nov  6 09:38 /usr/lib/libreadline.dylib -> libedit.dylib

3. opensc.tokend

You need to prepare a Darwin Build Directory, according to the points 1
to 5 of http://www.opensc-project.org/sca/wiki/OpenscTokend. 

Be sure pcscd is running
------------------------
With your card reader installed, check ' ps ax | grep pcscd | grep -v "grep pcscd" '
If it is not running, re-run SCA installer, go to 'Personalize' 
and select 'Smartcard reader autostart fix'.
If pcscd is running, insert a smartcard, and try 'pcsctest'

To test engine_pkcs11
---------------------
/Library/OpenSC/bin/openssl 
engine -t dynamic -pre SO_PATH:/Library/OpenSC/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre LIST_ADD:1 -pre LOAD -pre MODULE_PATH:/Library/OpenSC/lib/opensc-pkcs11.so


To use SmartCard enabled OpenSSH
--------------------------------
NB: all executables are prepended with a 'sc' (ssh -> scssh), so there
is no conflict with the native executables installed with MacOSX. 

    You can also add /Library/OpenSC/bin to your $PATH without conflict.
- read your smartcard content with /Library/OpenSC/bin/scssh-keygen -D0
- append the long line beginning with ssh-rsa from the previous command
  to ~/.ssh/authorized_keys2 on the server where you want to connect
- to connect to remote host: /Library/OpenSC/bin/scssh -I0 login@host.domain.com

In case you want to use the agent:
- eval `/Library/OpenSC/bin/scssh-agent -s` (you can put this in your
  ~/.bash_profile)

- you need to register your private keys reference in scssh-agent with
  /Library/OpenSC/bin/scssh-add -s0
  you need to put your PIN code
- to verify the agent content: /Library/OpenSC/bin/scssh-add -l