I would prefer to have a procedure that do not reset PINs to their default values, but as long as all PINs are set to known and valid values when KDF is setup it will not make the token unusable after that, so it seems reasonable to me.

Jan 28 2020, 10:09 AM · Restricted Project, scd, Bug Report

• gniibe added a comment to T3891: kdf-setup does not set admin and user PIN codes.

Or, #5 would be:

Jan 28 2020, 1:59 AM · Restricted Project, scd, Bug Report

Jan 27 2020

• gniibe added a comment to T3891: kdf-setup does not set admin and user PIN codes.

@Amaud, I read your code in Python. IIUC, it asks users PW1, Reset Code, and PW3 to setup, just before registering KDF DO (as you describe in https://dev.gnupg.org/T3891#114950).

Jan 27 2020, 5:30 AM · Restricted Project, scd, Bug Report

Jan 24 2020

• gniibe added a comment to T3891: kdf-setup does not set admin and user PIN codes.

Thanks for concrete cases. Sorry, not responding earlier. It was an experimental feature, firstly only available in Gnuk Token.

Jan 24 2020, 12:19 AM · Restricted Project, scd, Bug Report

Jan 23 2020

Arnaud added a comment to T3891: kdf-setup does not set admin and user PIN codes.

I implemented the script described previsouly (https://dev.gnupg.org/T3891#114950) in the smartpgp-cli utility provided in the SmartPGP repository (see commit https://github.com/ANSSI-FR/SmartPGP/commit/4be0fa442b43c2bafd5f0171417ff68fd88cbe2d).

Jan 23 2020, 7:53 PM · Restricted Project, scd, Bug Report

Jan 22 2020

szszszsz-nitrokey added a comment to T3891: kdf-setup does not set admin and user PIN codes.

Some users of ours wanted to use KDF with their OpenPGP smart cards. Could you tell when solution to this issue could be expected?
Additionally, is there any workaround for the current state? Perhaps based on T3823, or on derived [1]? To which values the PINs had to be set?

Jan 22 2020, 5:25 PM · Restricted Project, scd, Bug Report

Jan 16 2020

• gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID as Resolved.

Jan 16 2020, 5:17 AM · scd, Feature Request, gnupg

• gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

There is no use cases for $SIGNKEYID.

Jan 16 2020, 5:16 AM · scd, Feature Request, gnupg

• gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$ENCRKEYID use case have been removed.

Jan 16 2020, 5:14 AM · scd, Feature Request, gnupg

Jan 13 2020

• werner changed the status of T4791: Switch between PIV and OpenPGP app w/o reentering the PIN from Open to Testing.

Jan 13 2020, 6:24 PM · scd, yubikey

• werner added a comment to T4791: Switch between PIV and OpenPGP app w/o reentering the PIN.

Caching of the OpenPGP PIN while switching to and from PIV does now work in master

Jan 13 2020, 4:48 PM · scd, yubikey

• aheinecke created T4808: gnupg, scd: Status notifications to Applications.

Jan 13 2020, 11:22 AM · scd, gpgagent

• gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$AUTHKEYID use cases have been removed.

Jan 13 2020, 8:53 AM · scd, Feature Request, gnupg

Jan 6 2020

• werner claimed T4791: Switch between PIV and OpenPGP app w/o reentering the PIN.

Jan 6 2020, 11:04 AM · scd, yubikey

Dec 23 2019

• werner added a parent task for T4793: New GPGME API to support card personalization: Unknown Object (Maniphest Task).

Dec 23 2019, 11:20 AM · scd, gpgme

• werner added a parent task for T4793: New GPGME API to support card personalization: Unknown Object (Maniphest Task).

Dec 23 2019, 11:17 AM · scd, gpgme

• werner created T4793: New GPGME API to support card personalization.

Dec 23 2019, 11:17 AM · scd, gpgme

• werner added a parent task for T4791: Switch between PIV and OpenPGP app w/o reentering the PIN: Unknown Object (Maniphest Task).

Dec 23 2019, 11:09 AM · scd, yubikey

• werner created T4791: Switch between PIV and OpenPGP app w/o reentering the PIN.

Dec 23 2019, 11:09 AM · scd, yubikey

Dec 19 2019

• gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

Considering the concrete use case(s), it is more rational to support listing by capability.

NOTE: exposing capability is orthogonal issue

Dec 19 2019, 12:23 AM · scd, Feature Request, gnupg

Dec 18 2019

• gniibe renamed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Remove referring by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID to Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

Dec 18 2019, 2:36 AM · scd, Feature Request, gnupg

• gniibe lowered the priority of T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Unbreak Now! to Normal.

Dec 18 2019, 2:30 AM · scd, Feature Request, gnupg

• gniibe created T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

Dec 18 2019, 2:22 AM · scd, Feature Request, gnupg

• gniibe added a parent task for T4301: Handling multiple subkeys on two SmartCards: T4695: Remove SERIALNO as an identifier to select keys.

Dec 18 2019, 1:35 AM · Restricted Project, gnupg, scd, Bug Report

Nov 26 2019

• werner closed T4760: gnupg-2.2.18/scd/ccid-driver.c:3702: possible missing break ? as Resolved.

This is actually unused code and it will never be called with ERR == 0. Will fix it in master anway.

Nov 26 2019, 11:22 AM · scd, Bug Report

• werner triaged T4760: gnupg-2.2.18/scd/ccid-driver.c:3702: possible missing break ? as Normal priority.

[ Please do not post each compiler warning as a single report. That is just just too much overhead and we do see such messages ourselves if you would provide a bit more information. ]

Nov 26 2019, 11:12 AM · scd, Bug Report

Nov 18 2019

• gniibe closed T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7 as Resolved.

This will be in 2.2.18, closing.

Nov 18 2019, 9:37 AM · scd, Restricted Project, Bug Report

Oct 29 2019

• gniibe added a comment to T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7.

Sorry, it was simply my confusion (between GEMPC_PINPAD and GEMPC_EZIO).
Fixed now.

Oct 29 2019, 12:01 AM · scd, Restricted Project, Bug Report

Oct 28 2019

martin.von.wittich added a comment to T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7.

Please test. When I can confirm that it is stable, I'll backport it to 2.2.

Oct 28 2019, 2:22 PM · scd, Restricted Project, Bug Report

Oct 15 2019

pow added a comment to T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7.

@gniibe oh, I see thanks for pointing out precisely main the problem. I will check the hardware supply chain RoHS 2002/95/EC

Oct 15 2019, 6:14 PM · scd, Restricted Project, Bug Report

• werner closed T4681: Allow non-OpenPGP cards with gpg 2.2 as Resolved.

Oct 15 2019, 1:05 PM · gnupg (gpg22), scd, OpenPGP

• gniibe added projects to T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7: Restricted Project, scd.

@pow, thanks for a reference. But problem here is that there are multiple products with same name.

Oct 15 2019, 2:44 AM · scd, Restricted Project, Bug Report

Oct 9 2019

• gniibe added a project to T4158: UIF (User Interaction Flag) DO support: Restricted Project.

Oct 9 2019, 4:17 AM · Restricted Project, Feature Request, scd, gnupg

Sep 25 2019

martin.von.wittich added a comment to T4710: Cannot use Secure PIN Entry for Reset Code.

For pinpadtest.py, you need to offer an option --add (adding dummy byte), when you are using Cherry ST-2xxx.

Sep 25 2019, 2:55 PM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

• gniibe added a comment to T4710: Cannot use Secure PIN Entry for Reset Code.

For pinpadtest.py, you need to offer an option --add (adding dummy byte), when you are using Cherry ST-2xxx.

Sep 25 2019, 1:39 PM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

martin.von.wittich added a comment to T4710: Cannot use Secure PIN Entry for Reset Code.

It is not supported, by CCID protocol itself. So, it is not supported by scdaemon, and by any of card readers (which I know of), either.

Sep 25 2019, 1:26 PM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

• gniibe claimed T4710: Cannot use Secure PIN Entry for Reset Code.

It is not supported, by CCID protocol itself. So, it is not supported by scdaemon, and by any of card readers (which I know of), either.

Sep 25 2019, 12:09 PM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

• werner triaged T4710: Cannot use Secure PIN Entry for Reset Code as Normal priority.

Sep 25 2019, 9:23 AM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

Aug 23 2019

• werner moved T4681: Allow non-OpenPGP cards with gpg 2.2 from Backlog to For next release on the gnupg (gpg22) board.

Aug 23 2019, 10:33 AM · gnupg (gpg22), scd, OpenPGP

Aug 22 2019

• werner added a comment to T4681: Allow non-OpenPGP cards with gpg 2.2.

Note that rGd3f5d8544fdb needs to be backported to 2.2 but we will wait until we have better tested it.

Aug 22 2019, 4:44 PM · gnupg (gpg22), scd, OpenPGP

Aug 21 2019

• werner created T4681: Allow non-OpenPGP cards with gpg 2.2.

Aug 21 2019, 1:56 PM · gnupg (gpg22), scd, OpenPGP

Aug 7 2019

• gniibe created T4673: 2.3-only: Don't fallback to PC/SC on failure by the internal CCID driver, only use PC/SC when --disable-ccid is specified.

Aug 7 2019, 1:49 AM · gnupg (gpg23), Restricted Project, scd, Feature Request

Aug 6 2019

• gniibe closed T4631: Difficulties to generate key on OpenPGP Smart Card V3.3 as Resolved.

Aug 6 2019, 10:45 PM · scd, Bug Report

Jul 27 2019

JW-D added a comment to T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

The card was replaced by the vendor. It seems to be a problem with the specific card. All other cards so far worked well. The issue can be closed.

Jul 27 2019, 2:37 PM · scd, Bug Report

Jul 25 2019

• gniibe removed a project from T4646: scd: Increase CCID timeout for Trustica Cryptoucan: Info Needed.

I see your point (I am also the one who implements reader/token). That's reasonable argument.

Jul 25 2019, 1:54 AM · scd, Bug Report

Jul 22 2019

nephirus added a comment to T4646: scd: Increase CCID timeout for Trustica Cryptoucan.

Thanks for clarification.
However, CCID_CMD_TIMEOUT should be then based on BWT value reported by the card/reader, as bulk_in() function will still timeout if BWT is longer than 5 seconds.

Jul 22 2019, 12:50 PM · scd, Bug Report

nephirus closed T4645: scd: Configurable pinpad timeout as Invalid.

Thanks for pointing me in the right direction. I was confused by the hard-coded timeout value and got it all wrong.

Jul 22 2019, 12:26 PM · Info Needed, scd, Feature Request

• gniibe added a comment to T4646: scd: Increase CCID timeout for Trustica Cryptoucan.

I realized that it's a product of token. Then, I suggest that implementing time extension correctly, if some operation doesn't finish in BWT (block waiting time).

Jul 22 2019, 4:16 AM · scd, Bug Report

• gniibe claimed T4645: scd: Configurable pinpad timeout.

In general, if it requires more time, a reader can reply with time extension.

Jul 22 2019, 2:24 AM · Info Needed, scd, Feature Request

• gniibe claimed T4646: scd: Increase CCID timeout for Trustica Cryptoucan.

What's Trustica Cryptoucan?
In general, if it requires more time, a reader can reply with time extension.

Jul 22 2019, 2:18 AM · scd, Bug Report

• gniibe added a comment to T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

FYI, we have "factory-reset" command in gpg --card-edit; It is not enough for a card to have admin locked state, but it requires normal user locked state, too.

Jul 22 2019, 2:11 AM · scd, Bug Report

Jul 20 2019

JW-D added a comment to T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

I applied the following with gpg-connect-agent --hex:

Jul 20 2019, 3:46 PM · scd, Bug Report

Jul 19 2019

nephirus created T4646: scd: Increase CCID timeout for Trustica Cryptoucan.

Jul 19 2019, 3:09 PM · scd, Bug Report

nephirus created T4645: scd: Configurable pinpad timeout.

Jul 19 2019, 2:49 PM · Info Needed, scd, Feature Request

JW-D added a comment to T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

I do not wonder, that you face difficulties to reproduce it. It happened only with one card from my six cards; so five cards working fine. Therefore, I thought that this particular card was may dead at arrival and I contacted the vendor. They refused to replace it with the comment, it would be a well known issue. Do you know a test where I can demonstrate that the card is dead at arrival?

Jul 19 2019, 8:21 AM · scd, Bug Report

• gniibe added a comment to T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds.

It responds somehow, but the content has invalid data of (bChainParameter=0x04):

2019-07-05 09:36:41 scdaemon[71407] DBG: chan_17 -> S LOGIN-DATA aheinecke
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: PC_to_RDR_XfrBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 9
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 21
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bBWI ..............: 0x04
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   wLevelParameter ...: 0x0000
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0010]  00 40 05 00 CA 00
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0016]  6E 00 E1
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: RDR_to_PC_DataBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 4
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 21
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bStatus ...........: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bChainParameter ...: 0x04
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0010]  00 82 00 82
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: PC_to_RDR_XfrBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 9
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 22
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bBWI ..............: 0x04
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   wLevelParameter ...: 0x0000
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0010]  00 40 05 00 CA 00
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0016]  6E 00 E1
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: RDR_to_PC_DataBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 4
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 22
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bStatus ...........: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bChainParameter ...: 0x04
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0010]  00 82 00 82
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: PC_to_RDR_XfrBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 9
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 23
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bBWI ..............: 0x04
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   wLevelParameter ...: 0x0000
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0010]  00 40 05 00 CA 00
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   [0016]  6E 00 E1
2019-07-05 09:36:46 scdaemon[71407] DBG: ccid-driver: usb_bulk_read error: LIBUSB_ERROR_TIMEOUT
2019-07-05 09:36:46 scdaemon[71407] ccid_transceive failed: (0x1000a)
2019-07-05 09:36:46 scdaemon[71407] apdu_send_simple(1) failed: card I/O error

Jul 19 2019, 8:05 AM · backport, Restricted Project, scd, gnupg

• gniibe added a comment to T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds.

After the cancellation, the card reader seems being screwed up:

Jul 19 2019, 8:02 AM · backport, Restricted Project, scd, gnupg

• gniibe added a comment to T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds.

It is canceled:

2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: RDR_to_PC_DataBlock:
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   dwLength ..........: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSlot .............: 0
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bSeq ..............: 19
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bStatus ...........: 64
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver:   bError ............: 239
2019-07-05 09:36:41 scdaemon[71407] DBG: ccid-driver: CCID command failed: PIN cancelled
2019-07-05 09:36:41 scdaemon[71407] DBG: dismiss pinpad entry prompt
2019-07-05 09:36:41 scdaemon[71407] DBG: chan_7 -> INQUIRE DISMISSPINPADPROMPT
2019-07-05 09:36:41 scdaemon[71407] DBG: chan_7 <- END
2019-07-05 09:36:41 scdaemon[71407] verify CHV2 failed: Invalid response
2019-07-05 09:36:41 scdaemon[71407] operation decipher result: Invalid response
2019-07-05 09:36:41 scdaemon[71407] app_decipher failed: Invalid response
2019-07-05 09:36:41 scdaemon[71407] DBG: chan_7 -> ERR 100663372 Invalid response <SCD>

Jul 19 2019, 8:01 AM · backport, Restricted Project, scd, gnupg

• gniibe removed a project from T4631: Difficulties to generate key on OpenPGP Smart Card V3.3: OpenPGP.

Please note that key generation is takes time unusually longer from a viewpoint of card reader.
It is possible for a card reader to give up the execution of key generation command as timeout.

Jul 19 2019, 6:40 AM · scd, Bug Report

• gniibe claimed T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

I am trying to reproduce your problem with my 3.3 card using my TTXS card reader.

Jul 19 2019, 3:37 AM · scd, Bug Report

Jul 18 2019

JW-D added a comment to T4631: Difficulties to generate key on OpenPGP Smart Card V3.3.

I use the internal driver.

Jul 18 2019, 8:37 PM · scd, Bug Report

• werner edited projects for T4631: Difficulties to generate key on OpenPGP Smart Card V3.3, added: scd, OpenPGP; removed Info Needed.

Are you using pcscd (is that process running) or the internal driver.? Please try the latter if you are not already using it.

Jul 18 2019, 11:15 AM · scd, Bug Report

Jul 9 2019

• gniibe added a comment to T4616: Smartcard: Card reset required - It should be automatic.

I pushed my change of rGc51a5685554a: scd: ccid-driver: Initial getting ATR more robustly..
With TTXS, scdaemon correctly recovers from the error.

Jul 9 2019, 4:02 AM · gnupg, scd

• gniibe added a comment to T4616: Smartcard: Card reset required - It should be automatic.

When the computer is going to suspend, the scdaemon receives a message from USB layer as the interrupt transfer is shutting down, then scdaemon considers it's removal of device/card.
But in case of suspend (and the device does not support USB suspend), USB port is kept with the power.
So, it keeps running actually.

Jul 9 2019, 3:07 AM · gnupg, scd

• gniibe added a comment to T4616: Smartcard: Card reset required - It should be automatic.

Here are results of my experiment with Intel NUC computer (which supports S4 (and S3)).

Jul 9 2019, 2:53 AM · gnupg, scd

Jul 8 2019

• aheinecke created T4616: Smartcard: Card reset required - It should be automatic.

Jul 8 2019, 2:30 PM · gnupg, scd

• gniibe added a comment to T4158: UIF (User Interaction Flag) DO support.

No. I intentionally select: Not-backporting this feature.
The feature is added for Yubikey, in the specification.
Use of the feature by Data-Object is not that so useful.

Jul 8 2019, 9:21 AM · Restricted Project, Feature Request, scd, gnupg

Jul 5 2019

• werner added a comment to T4158: UIF (User Interaction Flag) DO support.

I think we should not backport this to 2.2 - okay?

Jul 5 2019, 11:14 AM · Restricted Project, Feature Request, scd, gnupg

• aheinecke created T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds.

Jul 5 2019, 9:50 AM · backport, Restricted Project, scd, gnupg

Jun 10 2019

kaspro added a comment to T4301: Handling multiple subkeys on two SmartCards.

Thanks a lot @gniibe for this change.
I do understand and share your concerns, nevertheless are there, in my opinion valid reasons to be able to have a backup or duplicate, especially on the same or similar media type.
Consider for example giving multiple devices a chance of common interaction, using the keys for backup encryption etc. - I think there are several possible use-cases which can benefit from this.

Jun 10 2019, 7:40 PM · Restricted Project, gnupg, scd, Bug Report

Jun 4 2019

• gniibe added a comment to T3383: scdaemon option 'card-timeout' does not have any effect.

I see the regression of gpgconf. I wonder if it's better to fix gpgconf side, too.

Jun 4 2019, 8:46 AM · Documentation, scd, Bug Report

• werner reopened T3383: scdaemon option 'card-timeout' does not have any effect as "Open".

I see a regression with your fix. This option is even controllable with gpgconf at the basic level. It would be better to make it a dummy option.

Jun 4 2019, 7:45 AM · Documentation, scd, Bug Report

• gniibe closed T3383: scdaemon option 'card-timeout' does not have any effect as Resolved.

Jun 4 2019, 3:01 AM · Documentation, scd, Bug Report

• gniibe added projects to T3383: scdaemon option 'card-timeout' does not have any effect: scd, Documentation.

I meant, 'card-timeout' was not intended for controlling caching PIN on card. It was for "DISCONNECT" command support.
I'm going to remove questionable documentation.
Closing.

Jun 4 2019, 2:56 AM · Documentation, scd, Bug Report

• gniibe closed T1854: Problems with same encryption and signing key on smartcard as Resolved.

While it's not recommended, current master has a support of sharing same raw key materials. I think that it now works (I don't try, though).
Closing.

Jun 4 2019, 2:33 AM · gnupg, Feature Request, scd

• gniibe closed T2298: Unblocking a smartcard PIN not possible in 2.1 as Resolved.

Jun 4 2019, 2:29 AM · Info Needed, gnupg, scd, Bug Report

• gniibe closed T1082: scd rewrites ~/.gnupg/reader_0.status with same content when SERIALNO is issued as Resolved.

Jun 4 2019, 2:25 AM · gnupg, Info Needed, gpg4win, Bug Report, scd

May 23 2019

• gniibe closed T4326: Reloading gpg-agent with disable-scdaemon set does not stop scdaemon. as Resolved.

Simply sending "KILLSCD" is implemented.

May 23 2019, 3:19 AM · Bug Report, scd, gpgagent

May 21 2019

• gniibe closed T4454: scdaemon is not working in cygwin (64bit) as Resolved.

In master, I pushed a change, closing.

May 21 2019, 9:40 AM · patch, scd, Cygwin, Bug Report

• gniibe claimed T4454: scdaemon is not working in cygwin (64bit).

For future, it would make sense applying your patch, but I wonder if it works on macOS.
Let me check.

May 21 2019, 9:11 AM · patch, scd, Cygwin, Bug Report

May 20 2019

• gniibe added a comment to T4301: Handling multiple subkeys on two SmartCards.

When having a backup media, I'd recommend completely different one (for example, on paper using paperkey to be stored in a locker in basement), which requires different method for recovering. Brains may be easily confused when same private key material exists in multiple similar devices.

May 20 2019, 2:12 AM · Restricted Project, gnupg, scd, Bug Report

ageis added a comment to T4301: Handling multiple subkeys on two SmartCards.

Thanks for this @gniibe. I have long been frustrated by trying to save the correct "stubs" to have my keyring point at two different smartcards. It was common and even advocated in my former community to place one's master key on a separate smartcard (certify capability), with a different one designated for daily usage.

May 20 2019, 1:03 AM · Restricted Project, gnupg, scd, Bug Report

vsrinu26f added a comment to T4301: Handling multiple subkeys on two SmartCards.

Thanks Gniibe San for explanation.

May 20 2019, 12:55 AM · Restricted Project, gnupg, scd, Bug Report

May 17 2019

• gniibe lowered the priority of T4301: Handling multiple subkeys on two SmartCards from Normal to Low.

@blades: This feature will be available in GnuPG 2.3, which is planed to be released this year.
For Debian, Buster will come with GnuPG 2.2.12. After release of GnuPG 2.3, backport might be available (like GnuPG 2.2.x is available as backport for Stretch).

May 17 2019, 2:00 AM · Restricted Project, gnupg, scd, Bug Report

May 16 2019

blades added a comment to T4301: Handling multiple subkeys on two SmartCards.

Helo and forgive me for the ignorance, Iam a new.
I subscribed to this topic because I need a fix like that, I have 2 yubikeys with same subkeys...
Now how is possible to install from master; It's about a debian based distro. Also, when this will be pushed for updates via apt-get;
Thank you.

May 16 2019, 9:51 AM · Restricted Project, gnupg, scd, Bug Report

• gniibe merged T2898: Option to ignore card serial number (to be able to use backup tokens containing same subkeys) into T4301: Handling multiple subkeys on two SmartCards.

May 16 2019, 9:26 AM · Restricted Project, gnupg, scd, Bug Report

• gniibe edited projects for T4301: Handling multiple subkeys on two SmartCards, added: scd, gnupg; removed Info Needed.

May 16 2019, 9:22 AM · Restricted Project, gnupg, scd, Bug Report