Summary: | OpenSSH + OpenCT + smartcard not working on amd64 | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Milus János <jmilus> |
Component: | Current packages | Assignee: | Daniel Ahlberg (RETIRED) <aliz> |
Status: | RESOLVED NEEDINFO | ||
Severity: | normal | CC: | aj, vapier |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | AMD64 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: |
messages.bz2: the messages file
opensc-debug.log |
Description
Milus János
2005-03-09 12:29:35 UTC
Created attachment 53031 [details]
messages.bz2: the messages file
Andreas: care to take a peek ? I already now an amd64 problem with the pam module, it looks like the same issue. Sorry, I don't have time right now to look into the issue, but will link this bug in the upstream bug system (new!). Andreas most likely an opensc issue. which version of opensc are you using? also could you edit opensc.conf and set debug to 6, set the opensc-debug log file, and attach it here? thanks! Created attachment 53402 [details]
opensc-debug.log
opensc: 0.9.4 openct: 0.5.0 openssh: 3.9_p1-r1 oops, on debian pure64 ssh with opensc and openct works fine. So this could be a gentoo issue. please update to openct 0.6.2 (to make sure it's not a bug already fixed), and the post all details on the compiler, configure options, etc. andreas: is openct-0.6.x and opensc-0.9.x ready for general consumption yet ? in other words do you mind if i move these versions into unstable ? yes, everything is stable now, but there are still a few issues with opensc. openct 0.6.4rc1 with solaris fixes only maybe this evening, opensc 0.9.6rc1 planed for this week. Upgrade to openct 0.6.2 (and openssh 4.0_p1) dosen't help. The simptoms are same, I got exactly the following on my terminal: # ssh -I 0 X.X.X.X (X.X.X.X is the server IP address of course) asn1.c:1015:asn1_decode_entry: decoding of ASN.1 object 'tokenflags' failed: Buffer too small asn1.c:1015:asn1_decode_entry: decoding of ASN.1 object 'TokenInfo' failed: Buffer too small pkcs15.c:74:parse_tokeninfo: ASN.1 parsing of EF(TokenInfo) failed: Buffer too small asn1.c:1015:asn1_decode_entry: decoding of ASN.1 object 'usage' failed: Buffer too small asn1.c:1015:asn1_decode_entry: decoding of ASN.1 object 'classAttributes' failed: Buffer too small asn1.c:1015:asn1_decode_entry: decoding of ASN.1 object 'privateRSAKey' failed: Buffer too small pkcs15-prkey.c:144:sc_pkcs15_decode_prkdf_entry: ASN.1 decoding failed: Buffer too small pkcs15.c:1214:sc_pkcs15_parse_df: Error decoding DF entry: Buffer too small pkcs15.c:724:__sc_pkcs15_search_objects: DF parsing failed: Buffer too small Permission denied (publickey,keyboard-interactive). The error messages (except the last line) are red. I changed only one thing in the default settings: raise the debug level in openct and opensc. # gcc --version gcc (GCC) 3.4.3-20050110 (Gentoo Linux 3.4.3.20050110, ssp-3.4.3.20050110-0, pie-8.7.7) USE flags and CFLAGS are in the emerge info I already sent. and just for sanity's sake, emerge opensc / openct with CFLAGS="-pipe" doesnt 'fix' this ? The CFLAGS='-pipe' doesn't help. The result is the same. in the spirit of being lazy, how about openssh-4.2_p1 and openct-0.6.6 ? also please compile with gcc 3.*, so we are sure it is not a gcc 4/opensc bug (we seem to have one). Well, some user response needed. Try w/ uptodate version of involved apps. |