scdProject
ActivePublic

Watchers

  • This project does not have any watchers.

Recent Activity

Today

gniibe added a commit to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2): rG684a52dffa8b: scd: Change handling of SPR532 card reader..
Mon, Sep 28, 6:38 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a project to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2): Testing.

The patch {rGcc5e8ef3ab} makes me happier. It is more stable.

Mon, Sep 28, 6:37 AM · Testing, gnupg (gpg22), scd, Bug Report
turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

This is also what I found out with my tests with the libvirt usb: removing and redirecting back the device got it working again.

Mon, Sep 28, 5:58 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Testing more, I managed to encounter failure with physical usb.
Once in this failure mode, I need to remove the card reader from USB and reinsert again.
I need to figure out a sequence to avoid this situation and to reset the card reader correctly.

Mon, Sep 28, 4:53 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

I tested with physical usb, did multiple operations with external events (insert/remove/etc. for card). I haven't seen any problem (if so, I were doing more fixes), so far.

Mon, Sep 28, 1:44 AM · Testing, gnupg (gpg22), scd, Bug Report

Sat, Sep 26

turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Ok. Tried to test this with master, but failed. I got it compiled and installed, and it actually detected the first removal after reboot/suspend/reader attach/whatever reason, but after that when I inserted the card back, it didn't function anymore. I suppose you also tried that? I mean that's the use case, I suppose: to be able to remove/insert the card reliably all day long.

Sat, Sep 26, 2:03 PM · Testing, gnupg (gpg22), scd, Bug Report

Fri, Sep 25

gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Currently, yes. After some testing, I'll backport it to 2.2.

Fri, Sep 25, 2:03 AM · Testing, gnupg (gpg22), scd, Bug Report

Thu, Sep 24

turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Nice, thanks! If I want to try this fix, should I just compile the master tree?

Thu, Sep 24, 2:45 PM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a commit to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2): rG7cbb513a2dc1: scd: Fix CCID internal driver for interrupt transfer..
Thu, Sep 24, 1:00 PM · Testing, gnupg (gpg22), scd, Bug Report

Thu, Sep 17

turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

This is everything lsusb knows about the device:

Thu, Sep 17, 8:28 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

And please report the output of lsusb -d 04e6:e003 for the information of the card reader.

Thu, Sep 17, 8:27 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

@turkja Thanks for your information.
May I ask you one thing?
Please show me the usb VID:PID of your card reader.
Is it 04e6:e003?
You can examine a line of the output by lsusb.

Thu, Sep 17, 8:23 AM · Testing, gnupg (gpg22), scd, Bug Report
turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Just wanted to add to my initial findings:

  • I was not using proprietary drivers (libscmccid.so.5.0.35), because the installer script fails to install on default CentOS 8 pcsc-lite. So the distribution pcsc-lite also doesn't have this issue.
  • Fastest way to test this condition is to just detach/attach the reader device.
  • Proprietary drivers doesn't support secure pin entry!
Thu, Sep 17, 5:59 AM · Testing, gnupg (gpg22), scd, Bug Report

Wed, Sep 16

gniibe updated the task description for T5001: Card specification enhancement.
Wed, Sep 16, 8:51 AM · Feature Request, scd
gniibe claimed T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).
Wed, Sep 16, 8:04 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Thanks for sending.

Wed, Sep 16, 8:01 AM · Testing, gnupg (gpg22), scd, Bug Report
werner added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

I checked two devices and both have the info below but 332 on the case.

Wed, Sep 16, 7:55 AM · Testing, gnupg (gpg22), scd, Bug Report
werner added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Bus 001 Device 123: ID 04e6:e003 SCM Microsystems, Inc. SPR532 PinPad SmartCard Reader

Wed, Sep 16, 7:48 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Is it an alias of SPR532? Please show me the USB vendor ID and product ID.

Wed, Sep 16, 7:39 AM · Testing, gnupg (gpg22), scd, Bug Report

Tue, Sep 15

werner triaged T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2) as High priority.

Okay, I have the same problem at my office and thus I should be able to figure out the reason. I have ignored the problem until now because the wokraround is easy enough and in most cases I authenticate with my token anyway. But yes, this needs to be fixed.

Tue, Sep 15, 9:35 PM · Testing, gnupg (gpg22), scd, Bug Report

Mon, Sep 14

turkja added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Thanks for prompt answer!

Mon, Sep 14, 9:45 AM · Testing, gnupg (gpg22), scd, Bug Report
werner added projects to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2): scd, gnupg (gpg22).

Thanks for the detailed report. Does the green LED blink fast when it does not work?

Mon, Sep 14, 7:59 AM · Testing, gnupg (gpg22), scd, Bug Report

Fri, Sep 11

gniibe closed T4957: OpenPGP card protocol 3.4 with Yubikey as Resolved.

The data object 0x00FA is now supported. And other changes are not needed.

Fri, Sep 11, 5:17 AM · scd

Tue, Sep 1

gniibe updated the task description for T5001: Card specification enhancement.
Tue, Sep 1, 7:23 AM · Feature Request, scd

Aug 28 2020

gniibe added projects to T4710: Cannot use Secure PIN Entry for Reset Code: Documentation, Not A Bug.
Aug 28 2020, 6:48 AM · Not A Bug, Documentation, OpenPGP, scd, Bug Report

Aug 19 2020

lrvick added a comment to T3843: Unable to generate RSA4096 keys on Yubikey 4 on OSX Sierra.

I am the worst. I totally forgot about this.

Aug 19 2020, 4:04 AM · Info Needed, MacOS, yubikey, scd, Bug Report
gniibe closed T3843: Unable to generate RSA4096 keys on Yubikey 4 on OSX Sierra as Resolved.

No more information, can't proceed, thus, closed.

Aug 19 2020, 3:41 AM · Info Needed, MacOS, yubikey, scd, Bug Report

Aug 13 2020

werner closed T4793: New GPGME API to support card personalization as Wontfix.

We won't do such a interface now.

Aug 13 2020, 3:22 PM · scd, gpgme

Jul 28 2020

werner triaged T5001: Card specification enhancement as Normal priority.
Jul 28 2020, 8:54 AM · Feature Request, scd

Jul 27 2020

werner added a comment to T5001: Card specification enhancement.

Well, it is now defined. We use a CMS object containing an OpenPGP keyblock container. Right, there is no open standard for it but with OIDs you don't really need them. it is a bit of a hack but it works with the majority of deployed cards and the overhead is quite small.

Jul 27 2020, 2:34 PM · Feature Request, scd
gniibe added a comment to T5001: Card specification enhancement.

@wener But it uses undefined data structure of "certificate" DO, IIUC. My point is defining DOs for OpenPGP, so that host side can construct OpenPGP object from those DOs.

Jul 27 2020, 3:48 AM · Feature Request, scd

Jul 26 2020

werner added a comment to T5001: Card specification enhancement.

Item 2 and 3 have already been solved by allowing to store a minimal key.

Jul 26 2020, 11:22 PM · Feature Request, scd

Jul 21 2020

gniibe updated the task description for T5001: Card specification enhancement.
Jul 21 2020, 7:05 AM · Feature Request, scd
gniibe updated the task description for T5001: Card specification enhancement.
Jul 21 2020, 7:02 AM · Feature Request, scd
gniibe updated the task description for T5001: Card specification enhancement.
Jul 21 2020, 7:02 AM · Feature Request, scd
gniibe created T5001: Card specification enhancement.
Jul 21 2020, 6:45 AM · Feature Request, scd

Jul 17 2020

werner added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

That could also be the reason for some strange behaviour I have sometimes with my bunch or readers. I have not had the time to look into this and thus opted for a gpgconf --kill scdaemon which fixes things quickly but of course this is a bad workaround.

Jul 17 2020, 3:02 PM · Testing, scd, Bug Report
gniibe added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

I am happy that your use case will be supported, and the bug was fixed before the release.
It's me who say "thank you" to you!

Jul 17 2020, 4:28 AM · Testing, scd, Bug Report
kevinoid added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

46d185f60 doesn't segfault and does prints the YubiKey card information, even without reader-port configured. Perfect! That will fix the issue for me. Looking forward to seeing it released. Thanks again @gniibe!

Jul 17 2020, 4:20 AM · Testing, scd, Bug Report
gniibe added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

Thanks a lot.
I pushed a fix as rG46d185f60397: scd: PC/SC: Don't release the context when it's in use..

Jul 17 2020, 4:16 AM · Testing, scd, Bug Report
gniibe added a commit to T4998: scdaemon: PC/SC "No such device" without reader-port: rG46d185f60397: scd: PC/SC: Don't release the context when it's in use..
Jul 17 2020, 4:15 AM · Testing, scd, Bug Report
kevinoid added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

Thanks again @gniibe! In case it's still useful, I bisected to 1080e91ef. The output with --debug-all --debug-level guru is:

Jul 17 2020, 4:14 AM · Testing, scd, Bug Report
gniibe added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

Ah, I identified an issue.
While it's in a loop of trying readers (in select_application in scd/app.c), it should not deallocate resources to access readers, even if reference count == 0.
I'll fix.

Jul 17 2020, 3:56 AM · Testing, scd, Bug Report
gniibe added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

Thanks for your testing.

Jul 17 2020, 3:52 AM · Testing, scd, Bug Report
kevinoid added a comment to T4998: scdaemon: PC/SC "No such device" without reader-port.

Thanks for the detailed explanation, I'm glad to hear it! Out of curiosity, I tried running echo 'serialno openpgp' | ./scd/scdaemon --log-file - -v --server built from 43000b043 and it printed:

Jul 17 2020, 3:27 AM · Testing, scd, Bug Report
gniibe added a subtask for T3300: scd: Support multiple readers by PC/SC driver: T4998: scdaemon: PC/SC "No such device" without reader-port.
Jul 17 2020, 2:59 AM · Testing, gnupg (gpg23), scd
gniibe added a parent task for T4998: scdaemon: PC/SC "No such device" without reader-port: T3300: scd: Support multiple readers by PC/SC driver.
Jul 17 2020, 2:59 AM · Testing, scd, Bug Report
gniibe claimed T4998: scdaemon: PC/SC "No such device" without reader-port.

Thanks for your report.
Major reason was multiple card readers/tokens were not supported by PC/SC handling of scdaemon, only a single reader was assumed, so, user had to specify one if it's not the first one.
Multiple reader by PC/SC support was added in master (to be 2.3), so, I think the problem is solved in master.

Jul 17 2020, 2:54 AM · Testing, scd, Bug Report
gniibe added a parent task for T3300: scd: Support multiple readers by PC/SC driver: Unknown Object (Maniphest Task).
Jul 17 2020, 2:45 AM · Testing, gnupg (gpg23), scd
kevinoid updated the task description for T4998: scdaemon: PC/SC "No such device" without reader-port.
Jul 17 2020, 1:06 AM · Testing, scd, Bug Report