Ubuntu
yubico-piv-tool package

yubico-piv-tool self-signing certificates fails

Bug #1988833 reported by Avamander
12
This bug affects 2 people
Affects Status Importance Assigned to Milestone
yubico-piv-tool (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

The command:

yubico-piv-tool -v2 -a verify-pin --pin=123456 -a selfsign-certificate -s 9a -S "/CN=example/O=organisation/" -i "keys/example-public.pem" -o "keys/example-cert.pem" --valid-days=1825

The output:

Connect reader 'Yubico YubiKey OTP+FIDO+CCID 00 00' matching 'Yubikey'
... snip ...
Action 'verify-pin' does not need authentication.
Action 'selfsign-certificate' does not need authentication.
Now processing for action 'verify-pin'.
... snip ...
Successfully verified PIN.
Now processing for action 'selfsign-certificate'.
Failed signing certificate.
Disconnect card #12345678

As described in this issue as well: https://github.com/Yubico/yubico-piv-tool/issues/388

Rebuilding yubico-piv-tool fixed the issue.

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in yubico-piv-tool (Ubuntu):
status: New → Confirmed
Revision history for this message
Ricardo Ariel Gorosito (rgorosito) wrote :

This bug can be related to https://bugs.launchpad.net/ubuntu/+source/yubico-piv-tool/+bug/1993908

Revision history for this message
Sasidhar Palaka (psasidhar) wrote :

What is the timeline for getting 2.3.1 released to jammy?

We have a similar issue with the version that is currently going to jammy installations

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.