[Muscle] PC/SC issues with Aladdin eToken PRO 64 on Ubuntu Quetzal (12.10)

Yoann Juet Fri, 11 Jan 2013 08:17:57 -0800

Hi all,

We have used, on Ubuntu systems, cryptographic tokens 'Aladdin eToken PRO 64' for ssh public key authentication for many years now. Since the release of Ubuntu 12.10 aka Quantal Quetzal we're facing a major problem. On a fresh installation of Quantal with all updates, when I try to add keys provided by the PKCS#11 library to the ssh authentication agent, I get the following error:


irts~$ ssh-add -s /usr/lib/opensc-pkcs11.so
Enter passphrase for PKCS#11:
SSH_AGENT_FAILURE
Could not add card: /usr/lib/opensc-pkcs11.so

irts~$ opensc-tool -l
# Detected readers (pcsc)
Nr.  Card  Features  Name
0    Yes             Aladdin eToken PRO 64 00 00

The only workaround I found until now is stopping the service pcscd and restarting it in foreground mode. Then, ssh-add authentication works as expected:


irts~$ sudo /etc/init.d/pcscd stop
irts~$ sudo pcscd -f

00000000 dyn_unix.c:81:DYN_GetAddress() IFDHCreateChannelByName: /usr/lib/pcsc/drivers/openct-ifd.bundle/Contents/Linux/openct-ifd.so: undefined symbol: IFDHCreateChann

00001577 ccid_usb.c:514:OpenUSBByName() Can't claim interface 2/5: -6
00000048 ifdhandler.c:117:CreateChannelByNameOrChannel() failed

00000021 readerfactory.c:1009:RFInitializeReader() Open Port 0x200001 Failed (usb:058f/9540:libudev:0:/dev/bus/usb/002/005)

00000006 readerfactory.c:312:RFAddReader() Alcor Micro AU9540 init failed.

00000027 hotplug_libudev.c:384:HPAddDevice() Failed adding USB device: Alcor Micro AU9540 00000010 utils.c:95:CheckForOpenCT() File /var/run/openct/status found. Remove OpenCT and try again

Error: Bad CTBCS APDU, ins=0x15

irts~$ ssh-add -s /usr/lib/opensc-pkcs11.so
Enter passphrase for PKCS#11:
Card added: /usr/lib/opensc-pkcs11.so

This problems seems to be related to PC/SC. Do you have any hints on the possible cause ?


----

ii      libopenct1              0.6.20-1.2
ii      libpcsc-perl            1.4.12-1build2
ii      libpcsclite1:amd64      1.8.5-1ubuntu1
ii      openct                  0.6.20-1.2
ii      opensc                  0.12.2-2ubuntu2
ii      pcsc-tools              1.4.20-1
ii      pcscd                   1.8.5-1ubuntu1
ii      libccid                 1.4.7-1

Thanks for your assistance,
Regards,
--
Université de Nantes - Direction des Systèmes d'Information
Ingénieur réseau & sécurité
IM jabber: [email protected]
Tél: 02.53.48.49.26 - Fax: 02.53.48.49.09

<<attachment: yoann_juet.vcf>>

smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Muscle mailing list
[email protected]
http://lists.musclecard.com/mailman/listinfo/muscle_lists.musclecard.com

[Muscle] PC/SC issues with Aladdin eToken PRO 64 on Ubuntu Quetzal (12.10)

Reply via email to