Commit 2c9fa542 authored by Tails developers's avatar Tails developers
Browse files

Add another test report.

This is getting hard without the hardware at hand.
parent 68d136c9
...@@ -52,10 +52,21 @@ Hardware: USB 04e6:5115 SCM Microsystems, Inc. SCR335 SmartCard Reader ...@@ -52,10 +52,21 @@ Hardware: USB 04e6:5115 SCM Microsystems, Inc. SCR335 SmartCard Reader
## Test 1 ## Test 1
### hardware
[gemalto USB shell token v2](http://shop.kernelconcepts.de/product_info.php?products_id=119) [gemalto USB shell token v2](http://shop.kernelconcepts.de/product_info.php?products_id=119)
lsusb: $ lsusb | grep GemPC
Bus 001 Device 005: ID 08e6:3438 Gemplus GemPC Key SmartCard Reader Bus 005 Device 003: ID 08e6:3438 Gemplus GemPC Key SmartCard Reader
$ getfacl -a /dev/bus/usb/005/003
getfacl: Removing leading '/' from absolute path names
# file: dev/bus/usb/005/003
# owner: root
# group: root
user::rw-
group::rw-
other::r--
gpg --card-status: gpg --card-status:
gpg: detected reader `Gemalto GemPC Key 00 00' gpg: detected reader `Gemalto GemPC Key 00 00'
...@@ -63,49 +74,53 @@ Hardware: USB 04e6:5115 SCM Microsystems, Inc. SCR335 SmartCard Reader ...@@ -63,49 +74,53 @@ Hardware: USB 04e6:5115 SCM Microsystems, Inc. SCR335 SmartCard Reader
Version ..........: 2.0 Version ..........: 2.0
Manufacturer .....: ZeitControl Manufacturer .....: ZeitControl
What kind of additional software is needed? That reader does not get any ACL set by either the GnuPG ruleset, nor
by the libccid one.
Testing with Tails 0.12.1 I've found it was necessary to install the following set of packages from Debian Wheezy.
* libc-bin (2.13-35)
* libc6 (2.13-35)
* multiarch-support
* libpcsclite1 (1.8.4-1)
* libccid (1.4.7-1)
* pcscd (1.8.4-1)
If Tails begins building on Wheezy, including the libccid and pcscd
package should be enough for Gemalto USB shell Token (A USB smart card
reader) that is popularly used with OpenPGP cards.
> It looks like all the additional packages were pulled as
> dependencies of pcscd and libccid.
>> Backports were built, tested and uploaded.
>> The user credentials issues are discussed on tails-dev: All needed software is now shipped in Tails 0.15-rc1.
>> <CALSDXiB1VWcEQ-BxJzXF95_mPg_UyHL6b83wXCGQz-a2hMvAYA@mail.gmail.com>
Testers: Patrick Bx <patrickbx@gmail.com> Testers: Patrick Bx <patrickbx@gmail.com>
## Test 2 ### tests
gemalto USB shell token v2 (see details in test #1) > The user credentials issues are discussed on tails-dev:
> <CALSDXiB1VWcEQ-BxJzXF95_mPg_UyHL6b83wXCGQz-a2hMvAYA@mail.gmail.com>
### with pcscd installed #### with pcscd installed
* can't use the card as a non-root user * can't use the card as a non-root user
* can use the card as a non-root user who is a member of the `pcscd` group * can use the card as a non-root user who is a member of the `pcscd` group
* can use the card as root * can use the card as root
### without pcscd, without gnupg-pkcs11-scd #### without pcscd, without gnupg-pkcs11-scd
* can't use the card as a non-root user * can't use the card as a non-root user
* can't use the card as a non-root user who is a member of the * can't use the card as a non-root user who is a member of the
`pcscd` group `pcscd` group; this hangs and must be killed by hand:
$ gpg --card-status
gpg: detected reader `Gemalto USB Shell Token V2 00 00'
* can't use the card as root * can't use the card as root
### without pcscd, with gnupg-pkcs11-scd #### gpg2
* non-root user:
$ gpg2 --card-status
gpg: OpenPGP card not available: No SmartCard daemon
* root user:
$ sudo gpg2 --card-status
[sudo] password for amnesia:
can't connect to `/root/.gnupg/S.gpg-agent': No such file or directory
gpg-agent[8175]: can't connect server: `ERR 67109133 can't exec
`/usr/bin/scdaemon': No such file or directory'
gpg-agent[8175]: can't connect to the SCdaemon: IPC connect call failed
gpg: OpenPGP card not available: No SmartCard daemon
#### without pcscd, with gnupg-pkcs11-scd
adding a line containing: adding a line containing:
...@@ -120,8 +135,6 @@ Testers: Patrick Bx <patrickbx@gmail.com> ...@@ -120,8 +135,6 @@ Testers: Patrick Bx <patrickbx@gmail.com>
[[!taglink todo/wait]] for results from Patrick Bx: [[!taglink todo/wait]] for results from Patrick Bx:
* with gnupg2, pcscd and scdaemon (as per Corsac's howto) * with gnupg2, pcscd and scdaemon (as per Corsac's howto)
* his `GPG_AGENT_INFO`
* the `getfacl` output on the USB device
Resources Resources
========= =========
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment