Page MenuHome GnuPG
Feed Advanced Search

Jul 2 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

works fine with gnupg 2.1.6 and pc/sc.

Jul 2 2015, 4:21 PM · Bug Report, gnupg

Jun 22 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

scd-change-st-2000-20150619.diff doesn't seem to fix PC/SC - it only
works when PC/SC daemon is not running (and therefor gnupg's internal
CCID driver is used).

Jun 22 2015, 3:58 PM · Bug Report, gnupg

Jun 19 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

For the pinpadtest script case (without the --add parameter) it actually asks
for the pin, but when I press enter to confirm, the retry counter is decremented
and the stacktrace is shown.

Jun 19 2015, 9:13 AM · Bug Report, gnupg

Jun 18 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

Also an interesting fact: the pin retry counter is only decremented,
when using your python script for testing - not when using gnupg.

Jun 18 2015, 4:01 PM · Bug Report, gnupg

Jun 15 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

(1) pinpadtest.py with no option works? Prompt on the reader? And you can input PIN?

The padlock LED on the reader blinks and I enter the pin. When I press
the green return button on the reader, the traceback is shown.
Also the PIN retry counter is decremented (which was quite a cavecat for
debugging)

Jun 15 2015, 5:02 PM · Bug Report, gnupg

Jun 12 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

I'm pretty sure that the reader supports varlength pinpad input - it is the same
device that was used here: T1549

Jun 12 2015, 9:27 AM · Bug Report, gnupg

Jun 11 2015

asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

Jun 11 2015, 3:49 PM · Bug Report, gnupg
asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

Same error when using gnupg's CCID.

Jun 11 2015, 3:49 PM · Bug Report, gnupg
asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

$ ./pinpadtest.py
Reader/Token: Cherry GmbH SmartTerminal ST-2xxx [Vendor Interface] (000004fa) 00 00
ATR: 3B DA 18 FF 81 B1 FE 75 1F 03 00 31 C5 73 C0 01 40 00 90 00 0C
Please input User's PIN
Traceback (most recent call last):

File "./pinpadtest.py", line 378, in <module>
  main(who, method, add_a_byte, pinmin, pinmax, change_by_two_steps, fixed)
File "./pinpadtest.py", line 242, in main
  card.cmd_verify_pinpad(who)
File "./pinpadtest.py", line 138, in cmd_verify_pinpad
  raise ValueError, ("cmd_verify_pinpad %02x %02x" % (sw1, sw2))

ValueError: cmd_verify_pinpad 69 82

Jun 11 2015, 3:40 PM · Bug Report, gnupg

Jun 8 2015

asdil12 set Version to 2.1.3 on T2004: scd: insufficient buffer error when using reader pinpad.
Jun 8 2015, 4:48 PM · Bug Report, gnupg
asdil12 added projects to T2004: scd: insufficient buffer error when using reader pinpad: gnupg, Bug Report.
Jun 8 2015, 4:48 PM · Bug Report, gnupg
asdil12 added a comment to T2004: scd: insufficient buffer error when using reader pinpad.

Jun 8 2015, 4:48 PM · Bug Report, gnupg
asdil12 updated subscribers of T2004: scd: insufficient buffer error when using reader pinpad.
Jun 8 2015, 4:48 PM · Bug Report, gnupg

Jun 23 2014

asdil12 updated subscribers of T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

@werner: I think, you mean 2.0.23

Jun 23 2014, 10:16 AM · Bug Report, gnupg, scd
asdil12 reopened T1549: scd: reader pinpad stopped working with gnupg-2.0.22 as "Open".
Jun 23 2014, 10:16 AM · Bug Report, gnupg, scd

Nov 14 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

The fix for the login-data thing works fine.

Nov 14 2013, 12:29 AM · Bug Report, gnupg, scd

Nov 12 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

OK, I tested gnupg-2.0.22 with both patches applied, and it worked again.

I also noticed, that the pinpad won't be used - you would be asked via software

  • (even if enable-pinpad-varlen was specified), if this

Login data .......: gpguser\n\x14P=6,8\n
thing was set on the card.

Nov 12 2013, 10:29 PM · Bug Report, gnupg, scd

Nov 11 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

I tested on Archlinux (x86_64) applying my
patches on the current archlinux gnupg pkg.

Nov 11 2013, 8:58 AM · Bug Report, gnupg, scd

Nov 9 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

the reiner reader also doesn't seem to work:

2013-11-09 17:00:48 scdaemon[7374] signatures created so far: 83
2013-11-09 17:00:48 scdaemon[7374] DBG: check_pcsc_pinpad: command=20, r=0
2013-11-09 17:00:48 scdaemon[7374] DBG: prompting for pinpad entry '||Please
enter the PIN%0A[sigs done: 83]'
2013-11-09 17:00:48 scdaemon[7374] DBG: send secure: c=00 i=20 p1=00 p2=81
len=24 pinmax=-1
2013-11-09 17:00:48 scdaemon[7374] DBG: response: sw=6B80 datalen=2
2013-11-09 17:00:48 scdaemon[7374] DBG: dismiss pinpad entry prompt
2013-11-09 17:00:48 scdaemon[7374] verify CHV1 failed: Card error
2013-11-09 17:00:48 scdaemon[7374] operation sign result: Card error
2013-11-09 17:00:48 scdaemon[7374] app_sign failed: Card error
2013-11-09 17:00:48 scdaemon[7374] updating slot 0 status: 0x0000->0x0007 (0->1)
2013-11-09 17:00:48 scdaemon[7374] sending signal 12 to client 4554

Nov 9 2013, 5:02 PM · Bug Report, gnupg, scd
asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

Nov 9 2013, 4:36 PM · Bug Report, gnupg, scd
asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

I just retried today using gnupg-2.0.22 with your patch, and it failed again, if
the enable-pinpad-varlen option was set:

one try:

2013-11-09 16:30:01 scdaemon[1536] DBG: send apdu: c=00 i=CA p1=00 p2=C4 lc=-1
le=256 em=0
2013-11-09 16:30:01 scdaemon[1536] DBG: PCSC_data: 00 CA 00 C4 00
2013-11-09 16:30:01 scdaemon[1536] DBG: response: sw=9000 datalen=7
2013-11-09 16:30:01 scdaemon[1536] DBG: dump: 01 20 20 20 03 00 03
2013-11-09 16:30:01 scdaemon[1536] 3 Admin PIN attempts remaining before card is
permanently locked
2013-11-09 16:30:01 scdaemon[1536] DBG: check_pcsc_pinpad: command=20, r=0
2013-11-09 16:30:01 scdaemon[1536] DBG: prompting for pinpad entry '|A|Please
enter the Admin PIN'
2013-11-09 16:30:01 scdaemon[1536] DBG: send secure: c=00 i=20 p1=00 p2=83
len=24 pinmax=-1
2013-11-09 16:30:01 scdaemon[1536] pcsc_control failed: not transacted (0x80100016)
2013-11-09 16:30:01 scdaemon[1536] control_pcsc failed: 65547
2013-11-09 16:30:01 scdaemon[1536] DBG: dismiss pinpad entry prompt
2013-11-09 16:30:01 scdaemon[1536] verify CHV3 failed: General error

for the other try (with user pin), see attached log.

Nov 9 2013, 4:36 PM · Bug Report, gnupg, scd

Oct 16 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

You might use the known-
readers.txt from ccid
source, which lists usb-ids
and reader ames for
detection via pcscd. As
pcscd adds some text about
reader port to the string,
you can only match the
beginning of the string, but
that should do it.

Oct 16 2013, 8:16 AM · Bug Report, gnupg, scd
asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

I applied your patch onto gnupg-2.0.22 source (I couldn't get the automake-foo
run through), and it worked again. (enable-pinpad-varlen set in config).
I used the cherry reader for testing.

Oct 16 2013, 12:53 AM · Bug Report, gnupg, scd

Oct 14 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

BTW: shouldn't scd autodetect pinpad
support, or does this only work when using
internal ccid driver insted of pcsc?

Oct 14 2013, 10:50 AM · Bug Report, gnupg, scd

Oct 12 2013

asdil12 added a project to T1548: [PATCH] Allow cert-only keys on smartcards: Bug Report.
Oct 12 2013, 1:46 PM · Feature Request, gnupg
asdil12 renamed T1548: [PATCH] Allow cert-only keys on smartcards from [patch] Allow cert-only keys on smartcards to [PATCH] Allow cert-only keys on smartcards.
Oct 12 2013, 1:46 PM · Feature Request, gnupg
asdil12 removed a project from T1548: [PATCH] Allow cert-only keys on smartcards: Feature Request.
Oct 12 2013, 1:46 PM · Feature Request, gnupg

Oct 11 2013

asdil12 assigned T1548: [PATCH] Allow cert-only keys on smartcards to werner.
Oct 11 2013, 9:22 PM · Feature Request, gnupg
asdil12 updated subscribers of T1548: [PATCH] Allow cert-only keys on smartcards.
Oct 11 2013, 9:22 PM · Feature Request, gnupg
asdil12 added a comment to T1548: [PATCH] Allow cert-only keys on smartcards.

Tested and works fine with current gnupg and gpgcard.

Oct 11 2013, 9:22 PM · Feature Request, gnupg
asdil12 added a comment to T1548: [PATCH] Allow cert-only keys on smartcards.

D180: 398_0001-enable-key-to-card-upload-for-cert-only-keys.patch

Oct 11 2013, 9:18 PM · Feature Request, gnupg
asdil12 added a project to T1548: [PATCH] Allow cert-only keys on smartcards: patch.
Oct 11 2013, 9:18 PM · Feature Request, gnupg
asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

Oct 11 2013, 8:48 PM · Bug Report, gnupg, scd
asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

my scdaemon.conf:
reader-port Cherry GmbH SmartTerminal ST-2xxx [Vendor Interface]
(21121310161160) 00 00
verbose
debug 2048
enable-pinpad-varlen
log-file /tmp/scd-pinpad.log

Oct 11 2013, 8:48 PM · Bug Report, gnupg, scd

Oct 8 2013

asdil12 added a comment to T1549: scd: reader pinpad stopped working with gnupg-2.0.22.

Just tested with Cherry SMARTTERMINAL ST-2000U (via pcsc -> ccid).
Same issue with that reader, so not related to reiner-driver.

When I don't set the "enable-pinpad-varlen" option, pin-validation is done via
pc keyboard, if I do set the option, the complete action fails without asking
for the pin in any kind:

scdaemon[5137]: DBG: prompting for pinpad entry '||Please enter the PIN%0A[sigs
done: 46]'
scdaemon[5137]: DBG: dismiss pinpad entry prompt
scdaemon[5137]: verify CHV1 failed: Invalid value
scdaemon[5137]: app_sign failed: Invalid value
gpg: signing failed: Invalid value
gpg: signing failed: Invalid value

And pcscd must be restarted then, to get the setup working, again.

Oct 8 2013, 10:48 PM · Bug Report, gnupg, scd
asdil12 renamed T1549: scd: reader pinpad stopped working with gnupg-2.0.22 from scd: reiner-sct-rfid-standard reader pinpad stopped working with gnupg-2.0.22 to scd: reader pinpad stopped working with gnupg-2.0.22.
Oct 8 2013, 10:48 PM · Bug Report, gnupg, scd
asdil12 raised the priority of T1549: scd: reader pinpad stopped working with gnupg-2.0.22 from Normal to High.
Oct 8 2013, 10:48 PM · Bug Report, gnupg, scd

Oct 6 2013

asdil12 added projects to T1549: scd: reader pinpad stopped working with gnupg-2.0.22: gnupg, Bug Report.
Oct 6 2013, 8:06 PM · Bug Report, gnupg, scd
asdil12 set Version to 2.0.22 on T1549: scd: reader pinpad stopped working with gnupg-2.0.22.
Oct 6 2013, 8:06 PM · Bug Report, gnupg, scd

Oct 5 2013

asdil12 added a comment to T1548: [PATCH] Allow cert-only keys on smartcards.

D181: 389_cert_card.patch

Oct 5 2013, 9:44 PM · Feature Request, gnupg
asdil12 added projects to T1548: [PATCH] Allow cert-only keys on smartcards: Feature Request, gnupg.
Oct 5 2013, 9:44 PM · Feature Request, gnupg