Ubuntu
yubikey-personalization package

YubiKey NEO not detected

Bug #1230182 reported by Robin Sheat
12
This bug affects 2 people
Affects Status Importance Assigned to Milestone
yubikey-personalization (Ubuntu)
Triaged
Undecided
Unassigned

Bug Description

The YubiKey NEO is a device that does things like HOTP keys, and can also behave as a PGP smartcard.

In the default udev rules, attempting to use it as a smartcard gives the following error:

$ LANGUAGE=en gpg --card-status
gpg: pcsc_establish_context failed: no service (0x8010001d)
gpg: card reader not available
gpg: OpenPGP card not available: general error

which is GPG's obscure way of saying that it can't find a card, although the real problem is the USB device isn't readable by the logged in user.

If you add the following udev rule:

$ cat /etc/udev/rules.d/70-yubikey.rules
ACTION=="add|change", SUBSYSTEM=="usb", \
  ATTRS{idVendor}=="1050", ATTRS{idProduct}=="0111", \
  TEST=="/var/run/ConsoleKit/database", \
  RUN+="udev-acl --action=$env{ACTION} --device=$env{DEVNAME}"

which is pretty much a copy of /lib/udev/rules.d/70-yubikey.rules with the idProduct changed, then things start working again:

$ LANGUAGE=en gpg --card-status
Application ID ...: D2760001240102000000000000010000
Version ..........: 2.0
Manufacturer .....: test card
Serial number ....: 00000001
Name of cardholder: Robin Sheat
... and so on.

ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: udev 175-0ubuntu26
ProcVersionSignature: Ubuntu 3.8.0-30.44-generic 3.8.13.6
Uname: Linux 3.8.0-30-generic x86_64
NonfreeKernelModules: nvidia
ApportVersion: 2.9.2-0ubuntu8.3
Architecture: amd64
CustomUdevRuleFiles: 51-android.rules 70-yubikey.rules
Date: Wed Sep 25 21:13:20 2013
InstallationDate: Installed on 2011-04-26 (882 days ago)
InstallationMedia: Ubuntu 10.10 "Maverick Meerkat" - Release amd64 (20101007)
MachineType: Gigabyte Technology Co., Ltd. P67A-UD4-B3
MarkForUpload: True
ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.8.0-30-generic root=UUID=dbd6a855-ab0f-43ad-944f-4748722e0d1a ro quiet splash
SourcePackage: udev
UpgradeStatus: Upgraded to raring on 2013-04-13 (165 days ago)
dmi.bios.date: 02/14/2011
dmi.bios.vendor: Award Software International, Inc.
dmi.bios.version: F1
dmi.board.name: P67A-UD4-B3
dmi.board.vendor: Gigabyte Technology Co., Ltd.
dmi.board.version: x.x
dmi.chassis.type: 3
dmi.chassis.vendor: Gigabyte Technology Co., Ltd.
dmi.modalias: dmi:bvnAwardSoftwareInternational,Inc.:bvrF1:bd02/14/2011:svnGigabyteTechnologyCo.,Ltd.:pnP67A-UD4-B3:pvr:rvnGigabyteTechnologyCo.,Ltd.:rnP67A-UD4-B3:rvrx.x:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvr:
dmi.product.name: P67A-UD4-B3
dmi.sys.vendor: Gigabyte Technology Co., Ltd.

Revision history for this message
Robin Sheat (eythian) wrote :
Martin Pitt (pitti)
affects: udev (Ubuntu) → yubikey-personalization (Ubuntu)
Changed in yubikey-personalization (Ubuntu):
status: New → Triaged
Revision history for this message
Robin Sheat (eythian) wrote :

It might be of note that you need this rule to use it with gpg also, so it's not just a requirement for the YubiKey tools.

Revision history for this message
Simon Josefsson (simon-josefsson) wrote :

Is this GnuPG 1.x? Please try GnuPG 2.x or GnuPG 1.x and --use-agent. If you are using pcscd it should work better. Maybe this is GnuPG's internal CCID implementation at work? That is somewhat incomplete, especially in GnuPG 1.x, so I advice using scdaemon (which means either GnuPG 2.x or GnuPG 1.x with the agent).

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.