Bug 1341037 - Cannot use DNIe with gpg/2
Summary: Cannot use DNIe with gpg/2
Keywords:
Status: CLOSED UPSTREAM
Alias: None
Product: Fedora
Classification: Fedora
Component: gnupg2
Version: 23
Hardware: x86_64
OS: Linux
unspecified
unspecified
Target Milestone: ---
Assignee: Tomas Mraz
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-05-31 07:01 UTC by Yajo
Modified: 2016-05-31 07:14 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-05-31 07:14:52 UTC
Type: Bug


Attachments (Terms of Use)

Description Yajo 2016-05-31 07:01:25 UTC
Description of problem:

DNIe is the official Spanish ID card, which includes an electronic smart card with a PKCS#11 certificate.

I'm trying to use it to sign some PDF documents, but gpg is unable to contact the card.

Version-Release number of selected component (if applicable):

gnupg-1.4.20-1.fc23.x86_64
gnupg2-2.1.11-1.fc23.x86_64
opensc-0.15.0-4.fc23.x86_64
pcsc-tools-1.4.25-1.fc23.x86_64
pcsc-lite-ccid-1.4.20-1.fc23.x86_64
gnupg2-smime-2.1.11-1.fc23.x86_64

How reproducible:


Steps to Reproduce:
1. Insert DNIe in slot.
2. gpg2 --card-status

Actual results:

gpg: OpenPGP card not available: Not supported

Expected results:

Card available.

Additional info:
specs: http://www.dnielectronico.es

pcsc_scan works:
PC/SC device scanner
V 1.4.25 (c) 2001-2011, Ludovic Rousseau <ludovic.rousseau@free.fr>
Compiled with PC/SC lite version: 1.8.15
Using reader plug'n play mechanism
Scanning present readers...
0: Generic USB2.0-CRW [Smart Card Reader Interface] (20070818000000000) 00 00

Tue May 31 08:59:03 2016
Reader 0: Generic USB2.0-CRW [Smart Card Reader Interface] (20070818000000000) 00 00
  Card state: Card inserted, Exclusive Mode, 
  ATR: ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** **
ATR: ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** **
+ TS = 3B --> Direct Convention
+ T0 = 7F, Y(1): 0111, K: 15 (historical bytes)
  TA(1) = 38 --> Fi=744, Di=12, 62 cycles/ETU
    64516 bits/s at 4 MHz, fMax for Fi = 8 MHz => 129032 bits/s
  TB(1) = 00 --> VPP is not electrically connected
  TC(1) = 00 --> Extra guard time: 0
+ Historical bytes: ** ** ** ** ** ** ** ** ** ** ** ** ** ** **
  Category indicator byte: 00 (compact TLV data object)
    Tag: 6, len: A (pre-issuing data)
      Data: ** ** ** ** ** ** ** ** **
    Mandatory status indicator (3 last bytes)
      LCS (life card cycle): 03 (Initialisation state)
      SW: 9000 (Normal processing.)

Possibly identified card (using /usr/share/pcsc/smartcard_list.txt):
** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** **
** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** **
	DNI electronico (Spanish electronic ID card)
	http://www.dnielectronico.es

Comment 1 Tomas Mraz 2016-05-31 07:14:52 UTC
Please work with upstream of GnuPG to have the support of your Smart Card included. Unfortunately I cannot help you much more here. Here is the upstream issue tracker: https://bugs.gnupg.org/gnupg/


Note You need to log in before you can comment on or make changes to this bug.