v2.1 openpgp smartcard -- packing in after a `key to card'
NIIBE Yutaka
gniibe at fsij.org
Wed Dec 11 08:44:06 CET 2019
Dirk-Willem van Gulik wrote:
> During a pretty standard create key; key to card cycle (scripted) - I got an error
>
> gpg: OpenPGP card not available: Card removed
>
> just after the ‘save’ in the —edit-key. A subsequent status check gives me:
>
> gpg2 --card-status
> gpg: OpenPGP card not available: Card removed
>
> with below scdaemon log information.
Unfortunately, your log only includes information _after_ the failure.
So, I could only guess about failure. I guess that "key to card" was
failed for some reason.
> 2019-12-09 18:15:06 scdaemon[47159] detected reader 'SCM Microsystems Inc. SPR 532'
> 2019-12-09 18:15:06 scdaemon[47159] detected reader 'ACS ACR122U PICC Interface'
> 2019-12-09 18:15:06 scdaemon[47159] detected reader 'OMNIKEY AG CardMan 3121'
While you have three card readers...
> 2019-12-09 18:15:07 scdaemon[47159] DBG: chan_7 -> S READER OMNIKEY AG CardMan 3121
What you were using was "OMNIKEY AG CardMan 3121", which only supports
short APDU level exchange.
It is listed in this list: https://ccid.apdu.fr/ccid/supported.html
It should work for 1024-bit key.
However, I'm afraid that probably, it doesn't work well with recent
PC/SC lite, because readers with short APDU level exchange only are
getting uncommon.
SCM SPR 532 works better, because it supports TPDU level exchance (lower
level).
--
More information about the Gnupg-users
mailing list