OpenPGP card problem

Tue Aug 4 00:22:13 CEST 2009

Hi to all,
I've just subscripted this list after a few days spent looking for a
solution to my problem:
I've just bought a OpenPGP card and a card reader (SCR 335) to use with my
Ubuntu 9.04 laptop.
I've installed the udev scripts, as explained in the fsfe howto (
http://wiki.fsfe.org/Card_howtos/Card_reader_setup_(udev)).
I've used gpg to set-up the first data on the card: Name, Language, PIN,
etc, but when I've tried to change the Admin PIN the behaviour of the
software became strange; mainly gpg doesn't want to change the PIN, nor the
Admin PIN.
I paste an example:

-----------------------------------------------------------------------------
gpg --change-pin
gpg: detected reader `SCM SCR 335 00 00'
gpg: OpenPGP card no. D27600012401020000050XXXXXXXXXXXXXXXX detected

1 - change PIN
2 - unblock PIN
3 - change Admin PIN
Q - quit

Your selection? 1

PIN

New PIN

New PIN
Error changing the PIN: invalid argument
---------------------------------------------------------------------------------

I'm sure the pin is correct...if I try to unblock it I this:

---------------------------------------------------------------------------------
gpg: 3 Admin PIN attempts remaining before card is permanently locked

Admin PIN

New PIN

New PIN
Error unblocking the PIN: general error

---------------------------------------------------------------------------------

Also i I try to change the admin PIN (wich is still the default one) I
obtain a "invalid argument"...
I suspect that gpg wants to change the CHV2 PIN, in fact if I intentionally
put in a wrong (alphabetic) pin I obtain:

--------------------------------------------------------------------------------
PIN
gpg: PIN for CHV2 is too short; minimum length is 6
Error changing the PIN: bad passphrase
--------------------------------------------------------------------------------

and if I try with gpg --card-status this is a strange line:

--------------------------------------------------------------------------------
...
PIN retry counter : 3 0 3
--------------------------------------------------------------------------------

Should be 3 3 3, is that correct?

I don't know what to do, what do you think about?
These are the packages installed on my linux box:

ii  gnupg                                      1.4.9-3ubuntu1
rc  gnupg-agent                                2.0.9-3.1
ii  gnupg-pkcs11-scd                           0.06-4
ii  python-gnupginterface

Many thanks,

Fabrizio
-- 
@P=split//,".URRUU\c8R";@d=split//,"\niranruF oizirbaF";sub p{
@p{"r$p","u$p"}=(P,P);pipe"r$p","u$p";++$p;($q*=2)+=$f=!fork;map{$P=$P[$f^ord
($p{$_})&6];$p{$_}=/
^$P/ix?$P:close$_}keys%p}p;p;p;p;p;map{$p{$_}=~/^[P.]/&&
close$_}%p;wait until$?;map{/^r/&&<$_>}%p;$_=$d[$q];sleep
rand(2)if/\S/;print
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20090804/23e359a6/attachment-0001.htm>