Problems reading smartcard
Healer64 at protonmail.com
Fri Dec 22 14:51:53 CET 2017
I have openpgp keys loaded on a yubikey in smartcard mode but am having problems accessing the card. Originally there were some permission issues but i worked them out to the point that gpg --card-status consistently reads the card. This is on fedora. However gpg2 --card-status gives "gpg selecting openpgp failed Card error gpg OpenPGP card not available Card error"
Since selinux had previously been a problem I did setenforce 0 to troubleshoot. Now gpg2 --card-status reads the card successfully. However there are no new avc denials so I'm not sure how or why selinux is blocking gpg2 but not gpg. Even more weirdly If while selinux is in permissive mode I read the card with gpg2 I can't afterwards read it with gpg. I get "gpg pcsc_establish_context failed no service (0x801001d) gpg OpenPGP card not available general error"
So using gpg I can access the card if selinux is on or off unless I first access the card with gpg2. Afterwards I get errors from gpg.
Any idea how to troubleshoot this?
Sent with [ProtonMail](https://protonmail.com) Secure Email.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gnupg-users