Description of problem: The Dod Supplies a set of PIV cards that it intends to deploy. Several of these cards are not expected to work because they require support that coolkey does not have: Card 2: cert has PSS signatures. Card 4, Card 5, Card 15: ECC cards. The rest of the sample cards should work, but are unrecognized by coolkey. Version-Release number of selected component (if applicable): coolkey-1.1.0-24.el6 How reproducible: Plug in any card. Neither Firefox (which coolkey installed), nor ESC (the card manager) will recognize the card. neither will pklogin_finder. Additional info:
I have a patch in hand that solves this problem.
Already in the errata, flip to ON_QA
Wrong bug... this is only assigned...
Asha, I never got a qa ack on this. There are complaints by Dod people that PIV II doesn't work, so we really do want this in 6.4 if we can get it...
Setting conditional NAK flag for QE, can not fully ack until we have cards to verify.
Jenny please reconsider. I have cards in hand I guarrentee I'll get at least one card out to Asha before I leave today, but I need the ack to check in as today is my last day to do so. Not getting this in could really hurt us with one of our best customers...
This bug needs to get into the errata still.
Card 2, Card 3: cert has PSS signatures. Card 4, Card 5, Card 15: ECC cards. All the PIV cards except ECC ones are recognized on ESC, Firefox and pklogin_finder. Marking the bug verified.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-0397.html