published under license CC4-BY
posted in category Systems Software / Crypto
posted at 21. Feb '23
OpenWRT/TurrisOS + gnupg/Yubikey/smart card = NOPE
Currently I’m trying to debug why my Yubikey 5 and 4 are not detected in OpenSuse, so I was thinking - great, I have Turris Omnia, it has USB port, I’ll try it there. Well, not so fast. While OpenWRT is an universal operating system for routers, gpg or gpg2 there do not support smart cards. What now? I’m afraid this is the end of the road. I’ll boot live Ubuntu or something.
I installed these packages:
- gnupg2
- gnupg2-dirmngr
- gnupg2-utils
And I get:
root@allie:~# gpg --card-status
gpg: invalid option "--card-status"
with dmesg:
[602686.517362] usb 4-1: new full-speed USB device number 2 using xhci-hcd
[602687.679056] usb 4-1: USB disconnect, device number 2
[602688.127257] usb 4-1: new full-speed USB device number 3 using xhci-hcd
[604060.482928] usb 4-1: USB disconnect, device number 3
[604066.846442] usb 4-1: new full-speed USB device number 4 using xhci-hcd
While gpg in OpenSuse:
damon@rapthalia:~> gpg --card-status
gpg: selecting card failed: No such device
gpg: OpenPGP card not available: No such device
with dmesg:
[12812.764606] usb 1-3: new full-speed USB device number 8 using xhci_hcd
[12813.162950] usb 1-3: New USB device found, idVendor=1050, idProduct=0407, bcdDevice= 5.27
[12813.162956] usb 1-3: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[12813.162958] usb 1-3: Product: YubiKey OTP+FIDO+CCID
[12813.162960] usb 1-3: Manufacturer: Yubico
[12813.199043] input: Yubico YubiKey OTP+FIDO+CCID as /devices/pci0000:00/0000:00:01.3/0000:01:00.0/usb1/1-3/1-3:1.0/0003:1050:0407.0018/input/input35
[12813.256721] hid-generic 0003:1050:0407.0018: input,hidraw12: USB HID v1.10 Keyboard [Yubico YubiKey OTP+FIDO+CCID] on usb-0000:01:00.0-3/input0
[12813.261116] hid-generic 0003:1050:0407.0019: hiddev100,hidraw13: USB HID v1.10 Device [Yubico YubiKey OTP+FIDO+CCID] on usb-0000:01:00.0-3/input1
That’s it.
Add Comment