Major problems with gpg and scdaemon, help highly appriciated

22h39 22h39 at tutanota.com
Sat Nov 14 21:28:58 CET 2020


Thanks to everyone I have been able to resolve the problem by writing:

disable-pinpad

to: ~/.gnupg/scdaemon.conf

The problem lies in Pinentry which for some reason can't hande ccid pin requests on the contactless interface, after this fix the interface works as expceted no problem with any feautures.

Thank you,
22h49


Nov 14, 2020, 20:39 by gnupg-users at gnupg.org:

> No problem!
>
> I see.
> Well I don't have any experiences with other cards than these from Zeitcontrol and the tokens from Yubikey and Nitrokey.
> I know that the Yubikey5 supports PGP operations via RFID as a few customers from me use it with their mobile devices.
>
> But as Werner stated in his e-mail before it may be a 'problem' specific with GnuPG as it doesn't support wireless operation for security reasons.
>
> And I really don't know if another OpenPGP implementation does support smartcards/token.
> This was already a big issue with Mozilla's Thunderbird 78 and it's native implementation of OpenPGP instead of Enigmail.
>
> Sorry that I can't help in a better way!
>
> best regards and a great weekend
> Juergen
>
> -- 
> /¯\   No  |
> \ /  HTML |    Juergen Bruckner
>  X    in  |    juergen at bruckner.email
> / \  Mail |
>
> Am 14.11.20 um 20:08 schrieb 22h39 via Gnupg-users:
>
>> Sorry Jorgen for the mail I missclicked.
>>
>> As can be seen in the logs I'm using a NXP J3H145 card with this applet: https://github.com/ANSSI-FR/SmartPGP which is compliant with OpenPGP spec V3.4.
>>
>> I can assure that this card __works__ via RFID since I can easily sign files using it and OpenKeychain on my phone, the problem here is created by GPG in conjunction with the reader.
>>
>> Thanks for help,
>> 22h49
>>
>>
>>
>> Nov 14, 2020, 19:58 by gnupg-users at gnupg.org:
>>
>>> What kind of OpenPGP card do you use?
>>> The OpenPGP Smart Card V3.3 + MiFare DESFire [1] don't support PGP operations via RFID.
>>>
>>> regards
>>> Juergen
>>>
>>> [1] https://www.floss-shop.de/en/security-privacy/smartcards/4/openpgp-smart-card-v3.3-mifare-desfire
>>> --
>>> /¯\   No  |
>>> \ /  HTML |    Juergen Bruckner
>>>  X    in  |    juergen at bruckner.email
>>> / \  Mail |
>>>
>>> Am 14.11.20 um 19:45 schrieb 22h39 via Gnupg-users:
>>>
>>>> I don't understand, then how is OpenKeychain able to use OpenPGP cards via RFID?
>>>>
>>>> I can sucessfully sign using this card via my phone but It won't work with the reader connected to the computer.
>>>>
>>>> Looking at the logs, the card exchanges exactly the same apdus when using the contact and contactless interface so all points to some weird bug in gpg.
>>>>
>>>> Thanks for help,
>>>> 22h49
>>>>
>>>>
>>>> _______________________________________________
>>>> Gnupg-users mailing list
>>>> Gnupg-users at gnupg.org
>>>> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>>>>
>>
>>
>>
>> _______________________________________________
>> Gnupg-users mailing list
>> Gnupg-users at gnupg.org
>> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20201114/d31f9675/attachment.html>


More information about the Gnupg-users mailing list