Hide Forgot
Description of problem: opensc is failing to read card getting error - (repeat) [opensc-pkcs11] card-coolkey.c:932:coolkey_apdu_io: called [opensc-pkcs11] card-coolkey.c:1866:coolkey_compute_crypt: returning with: -1300 (Invalid arguments) [opensc-pkcs11] sec.c:58:sc_compute_signature: returning with: -1300 (Invalid arguments) Version-Release number of selected component (if applicable): How reproducible: very Steps to Reproduce: 1.pkcs11-tool --test --login 2. 3. Actual results: error PKCS11 function C_SignFinal failed: rv = CKR_ARGUMENTS_BAD (0x7) Aborting. Expected results: succeeds Additional info:
The card reader is : Card reader types SCM Microsystems Inc. SCR 3310 [CCID Interface] 00 And the card is : Giesecke & Devrient (PIV endpoint) The output of opensc-tool --attr shows the ATR bytes of the card to be 3b:7a:18:00:00:73:66:74:65:20:63:64:31:34:34 As to the size of the keys how should I retrieve those? We tried: # pkcs11-tool --test --login But this failed to output the any signatures. Attaching that output as: redhat-pkcs11-tool-debug-output.txt
OK, so you have PIV card and you are getting the errors in coolkey. That is indeed a misconfiguration. Does it work if you run it with explicitly selected PIV or CAC driver? OPENSC_DRIVER=PIV-II pkcs11-tool --test --login OPENSC_DRIVER=cac pkcs11-tool --test --login You can get the size of the keys on the card by listing the objects on the card: pkcs11-tool -O
case abandoned by customer