Page MenuHome GnuPG
Create Task
Maniphest T5161

scd: For NetKey cards KEYINFO with keygrip fails
Closed, ResolvedPublic
Actions

Description

This is with master. This does actually happen when trying to generate an OpenPGP public key for NetKey card keys with gpg --quick-gen-key --yes nks@example.net card where this makes gpg/pinentry ask for the card that is already inserted, but it's easier/faster to reproduce as follows (the first few SCD commands may not be necessary):
Plug in card reader (I have an IDENTIV SPR332 V2) and insert NetKey card. Then run

$ gpg-connect-agent "SCD SERIALNO --all" /bye
S SERIALNO 89490173300026616520
OK

$ gpg-connect-agent "SCD LEARN --keypairinfo" /bye
S CHV-STATUS -4+0+-4+0
S KEYPAIRINFO 39400430E38BB96F105B740A7119FE113578B59D NKS-NKS3.4531 sa - rsa2048
S KEYPAIRINFO 42C3CA6F9D7A725A59DDE06B16B61E88C62777C4 NKS-NKS3.45B1 e - rsa2048
S KEYPAIRINFO 20E7CB1D5299669CABF29B103C692AB34CB03528 NKS-NKS3.45B2 e - rsa1024
S KEYPAIRINFO A69B0D3796EE33E4426E5CE4B6BEEE5F1209FBA4 NKS-SIGG.4531 se - rsa2048
OK

$ gpg-connect-agent "SCD KEYINFO 39400430E38BB96F105B740A7119FE113578B59D" /bye
ERR 100663323 Not found <SCD>

Maybe a similar fix as for T5150 is needed.

Revisions and Commits

rG GnuPG
rGc9eb4c063231 scd:nks: Fix caching keygrip (more).
rG87d2c579cc38 scd:nks: Fix caching keygrip (more).

Related Objects
Search...

Event Timeline

ikloecker created this task.Nov 30 2020, 10:57 AM
gniibe added a subscriber: gniibe.EditedDec 2 2020, 9:13 AM

I can't see how it occurs. "SCE KEYINFO" and "SCD READKEY" with keygrip both goes exactly same code path (the difference is only the "action" argument).

Does "SCD READKEY <KEYGRIP>" also fail in the situation "SCD KEYINFO" fails?

gniibe added a comment.EditedDec 3 2020, 7:44 AM

I found a bug which resulted "Not Found <SCD>" when "SCD KEYINFO" is used with "--data" or "--".
It is fixed in rG54b88ae46062: scd: Fix KEYINFO command with --data option..

gniibe added a commit: rG87d2c579cc38: scd:nks: Fix caching keygrip (more)..Dec 3 2020, 8:25 AM
gniibe claimed this task.Dec 3 2020, 8:26 AM
gniibe added a project: Restricted Project.

I think that T5150 was also not fixed completely.

I pushed another fix of rG87d2c579cc38: scd:nks: Fix caching keygrip (more)., which fixes both cases, hopefully.

gniibe triaged this task as Normal priority.Dec 3 2020, 8:26 AM
ikloecker closed this task as Resolved.Dec 9 2020, 12:23 PM

This works now. Thanks.

werner added a commit: rGc9eb4c063231: scd:nks: Fix caching keygrip (more)..Oct 20 2022, 12:23 PM