Page MenuHome GnuPG
Create Task
Maniphest T6421

Improve error message if no reset code (PUK) is set
Open, NormalPublic
Actions

Description

If I take a smart card where no PUK (PW2) is set and execute the following, the info returned is correct:

gpg --card-edit 
unblock  
gpg: OpenPGP Karte Nr. D276000124010304000500009D400000 erkannt
gpg: Der Rückstellcode ist nicht vorhanden

But if I click "Unblock Card" in Kleopatra, I get "wrong PIN":

Kleopatra is not at fault, Ingo said:

The part after the colon is the error code GPG_ERR_BAD_PIN supplied by the backend converted to text.
GPG_ERR_BAD_PUK does not exist in gpg-error.

Related Objects

Event Timeline

ebo created this task.Mar 23 2023, 4:05 PM
gniibe added a project: gpgrt.Mar 24 2023, 5:10 AM
gniibe added a subscriber: gniibe.

Having GPG_ERR_BAD_PUK makes sense. So, I added a tag for gpg-error.

ebo added a comment.Mar 24 2023, 8:18 AM

Should we also differentiate between wrong PUK and no PUK set?

werner added a subscriber: werner.Mar 24 2023, 9:17 AM

FWIW, some cards don't have PUKs but two PINs which are able to unblock reciprocal.

ebo mentioned this in T6425: improve pinentry behavior and texts in smart card context .Mar 24 2023, 3:50 PM
werner triaged this task as Normal priority.Mar 28 2023, 5:08 PM
werner added projects: gnupg24, gnupg22, Feature Request.
werner added a comment.Apr 6 2023, 10:05 AM

I'll add new error codes to gpgrt

werner mentioned this in T6231: Release Libgpg-error 1.47.Apr 6 2023, 10:45 AM
werner moved this task from Backlog to Done on the gpgrt board.May 26 2023, 5:19 PM
werner claimed this task.Aug 25 2023, 4:05 PM
werner moved this task from Backlog to WiP on the gnupg22 board.
werner moved this task from WiP to Backlog on the gnupg22 board.Aug 28 2023, 5:07 PM

Not easy do decide whether something is a PIN or a PUK and we will need to check a lot of places. So, not now.