-
Notifications
You must be signed in to change notification settings - Fork 183
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Using OpenPGP applet - fails to login...? #205
Comments
@dengert perhaps you can see what the problem is? |
Turns out (@dengert, thanks for diagnosing it) the problem was that Hopefully OpenSC/OpenSC#1243 + OpenSC/OpenSC#1256 will take care of this problem. But it's not a |
Yes, #1243 will handle the OpenPGP application. #1256 will handle the PIV application. When either driver needs to do something to the card, it will get a reader lock, "SCardBeginTransaction" then detect if its application is active. If not it will do a SELECT AID to make it active. They also take actions if the card was reset too. Since the reader lock, "SCardBeginTransaction" is done in PCSC, any other middleware even in other processes will be locked out during the transaction. |
Perfect. Thanks!! |
OpenSSL+libp11 debug log:
Same token, pkcs11-tool debug excerpt:
Somehow, when login is requested not via
pkcs11-tool
, the token responds withCKR_GENERAL_ERROR
:Here's the
OPENSC_DEBUG=9
log:pgp-opensc-bad.txt
But doing
OPENSC_DEBUG=9 OPENSC_DRIVER=openpgp pkcs11-tool --slot 4 -O --login
is successful:Complete console SPY log (good result):
pgp-full-spy-good.txt
Complete debug log (good result):
pgp-opensc-debug-good.txt
I confess to having no clue as to what's wrong. Would appreciate any help.
The text was updated successfully, but these errors were encountered: