Yubico Forum
https://forum.yubico.com/

YubiKey OTP+CCID not being recognized by Linux
https://forum.yubico.com/viewtopic.php?f=26&t=1574		 Page 1 of 1
Author:  peterloron [ Mon Nov 03, 2014 4:31 am ]
Post subject:  YubiKey OTP+CCID not being recognized by Linux
I have a YubiKey NEO (v3.3.0 firmware) which is configured for OTP + CCID. They key works fine for normal OTP use on my Mac. However, when I plug it into a Lubuntu 14.10 x86 machine, I get the following failure in the syslog. I'm guessing that pcscd is not recognizing the smartcard presence properly, but I'm stumped.

Can anybody help here? Thanks.


Nov 2 19:04:20 acer kernel: [ 1195.640158] usb 2-1: new full-speed USB device number 3 using uhci_hcd
Nov 2 19:04:20 acer kernel: [ 1196.009192] usb 2-1: New USB device found, idVendor=1050, idProduct=0111
Nov 2 19:04:20 acer kernel: [ 1196.009212] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
Nov 2 19:04:20 acer kernel: [ 1196.009225] usb 2-1: Product: Yubikey NEO OTP+CCID
Nov 2 19:04:20 acer kernel: [ 1196.009237] usb 2-1: Manufacturer: Yubico
Nov 2 19:04:20 acer kernel: [ 1196.022454] input: Yubico Yubikey NEO OTP+CCID as /devices/pci0000:00/0000:00:1d.0/usb2/2-1/2-1:1.0/0003:1050:0111.0003/input/input25
Nov 2 19:04:20 acer kernel: [ 1196.030170] hid-generic 0003:1050:0111.0003: input,hidraw0: USB HID v1.10 Keyboard [Yubico Yubikey NEO OTP+CCID] on usb-0000:00:1d.0-1/input0
Nov 2 19:04:20 acer mtp-probe: checking bus 2, device 3: "/sys/devices/pci0000:00/0000:00:1d.0/usb2/2-1"
Nov 2 19:04:20 acer mtp-probe: bus: 2, device: 3 was not an MTP device
Nov 2 19:04:20 acer pcscd: ifdhandler.c:117:CreateChannelByNameOrChannel() failed
Nov 2 19:04:20 acer pcscd: readerfactory.c:1046:RFInitializeReader() Open Port 0x200000 Failed (usb:1050/0111:libudev:0:/dev/bus/usb/002/003)
Nov 2 19:04:20 acer pcscd: readerfactory.c:338:RFAddReader() Yubico Yubikey NEO OTP+CCID init failed.
Author:  Tom [ Mon Nov 03, 2014 9:24 am ]
Post subject:  Re: YubiKey OTP+CCID not being recognized by Linux
https://www.yubico.com/faq/enable-u2f-linux/
Author:  peterloron [ Mon Nov 03, 2014 6:35 pm ]
Post subject:  Re: YubiKey OTP+CCID not being recognized by Linux
Thank you for the reply. In my case, I am not (yet) using U2F. I'm using OTP + CCID.

For some reason, I'm now also seeing similar behavior on my Mac. When I insert the key, it lights up for a few seconds and then goes dark. I see this in the system log:

Code:
11/3/14 09:34:23.684 com.apple.SecurityServer[53]: Token reader Yubico Yubikey NEO OTP+CCID inserted into system
11/3/14 09:34:23.684 com.apple.SecurityServer[53]: reader Yubico Yubikey NEO OTP+CCID: state changed 0 -> 34
11/3/14 09:34:23.684 com.apple.SecurityServer[53]: token in reader Yubico Yubikey NEO OTP+CCID cannot be used (error 229)
11/3/14 09:34:24.000 kernel[0]: AppleUSBMultitouchDriver::message - kIOUSBMessagePortHasBeenReset.
11/3/14 09:34:24.000 kernel[0]: AppleUSBMultitouchDriver::checkStatus - received Status Packet, Payload 2: device was reinitialized
11/3/14 09:34:24.405 hidd[70]: MultitouchHID: device bootloaded
11/3/14 09:34:24.000 kernel[0]: AppleUSBMultitouchDriver::_deviceGetReport - DeviceRequest for reportID 0xc8 returned with result 0xe000404f - retrying


When I revert the key to only doing OTP, the problems go away. I insert the key, and it stays lit up.
Author:  Tom [ Mon Nov 10, 2014 2:11 pm ]
Post subject:  Re: YubiKey OTP+CCID not being recognized by Linux
Got latest pcscd installed? Did you restarted it?
Author:  peterloron [ Mon Nov 10, 2014 7:29 pm ]
Post subject:  Re: YubiKey OTP+CCID not being recognized by Linux
I contacted support, and they pointed me to a new version of the NEO Manager (0.25). Toggling the CCID mode with that allowed things to get working properly.

The LED on the key still goes dark after a few seconds, but I don't see the errors any longer. I can use the key correctly for OTP (e.g. LastPass) and CCID (OpenPGP applet).
Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/