You are not logged in.
- Topics: Active | Unanswered
#1 2017-03-21 18:52:22
- 912012
- Member
- Registered: 2017-03-21
- Posts: 2
openSC/PCSC: Smartcard stopped working, CKR_GENERAL_ERROR thrown
Hi all,
I had my smartcard working on ArchLinux some while ago to use the certificate for website logins in Firefox. This stopped working at some update, but I failed to notice when.
When accessing the website, it asks for the smartcard PIN and displays the certificate information correctly. If I proceed, this error is thrown:
Secure Connection Failed
An error occurred during a connection to fn2.flexnow.ruhr-uni-bochum.de. A PKCS #11 module returned CKR_GENERAL_ERROR, indicating that an unrecoverable error has occurred. Error code: SEC_ERROR_PKCS11_GENERAL_ERROR
This is the slightly more detailed pkcs11-tool output:
$ pkcs11-tool --module /usr/lib64/onepin-opensc-pkcs11.so -t -l
Using slot 0 with a present token (0x0)
Logging in to "Student Card (User Pin)".
Please enter User PIN:
C_SeedRandom() and C_GenerateRandom():
seeding (C_SeedRandom) not supported
seems to be OK
Digests:
all 4 digest functions seem to work
MD5: OK
SHA-1: OK
RIPEMD160: OK
Signatures (currently only RSA signatures)
testing key 0 (RUBSIGNCERT)
error: PKCS11 function C_SignFinal failed: rv = CKR_GENERAL_ERROR (0x5)Since this worked before, which packages are necessary to downgrade? What could help identify the issue and report it to upstream? If any verbose debug output is produced, please tell me if it compromises smartcard security.
Reader: OmniKey AG CardMan 4321
Smartcard Software:
local/opensc 0.16.0-2
local/pcsc-perl 1.4.14-2
local/pcsc-tools 1.4.27-1
local/pcsclite 1.8.20-1Firefox 52.0.1-1
In Firefox, Security Device is /usr/lib/opensc-pkcs11.so
Last edited by 912012 (2017-03-21 19:01:48)
Offline
#2 2017-03-23 11:17:04
- 912012
- Member
- Registered: 2017-03-21
- Posts: 2
Re: openSC/PCSC: Smartcard stopped working, CKR_GENERAL_ERROR thrown
If this is not the appropriate forum, please tell me.
Offline
#3 2017-03-23 14:13:42
- ewaller
- Administrator
- From: Pasadena, CA
- Registered: 2009-07-13
- Posts: 20,178
Re: openSC/PCSC: Smartcard stopped working, CKR_GENERAL_ERROR thrown
If this is not the appropriate forum, please tell me.
Not sure where else to put it.
A shot in the dark, have you merged all of any *.pacnew files that may have been created?
Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way
Offline
#4 2017-03-23 17:21:53
- R00KIE
- Forum Fellow
- From: Between a computer and a chair
- Registered: 2008-09-14
- Posts: 4,734
Re: openSC/PCSC: Smartcard stopped working, CKR_GENERAL_ERROR thrown
I'd say that the fastest way to get help on this is going to the upstream (opensc) support channels. That said, you could try downgrading opensc and see if it starts to work again.
R00KIE
Tm90aGluZyB0byBzZWUgaGVyZSwgbW92ZSBhbG9uZy4K
Offline