Aiosa
commented
4 years ago After some investigation it seems only yubikeys are supported. Pity.
Closed Aiosa closed 4 years ago
Aiosa
commented
4 years ago After some investigation it seems only yubikeys are supported. Pity.
imakhalova
commented
4 years ago Hello @Aiosa , It seems like your Android app works as actually expected. You just don't have any accounts yet, so it doesn't show you anything (UX needs to be a bit more polished). That would be the same experience as you will have if you tap new YubiKey. But I see that you were able to select applet and it returned you empty list of accounts. You can try and add new one by clicking Add fab button.
Aiosa
commented
4 years ago Thank you! I found some discussions on how yubico verifies the reader manufacturer and some other stuff to not to accept such cards, was a bit confused on how to do such things over NFC, maybe some card serial number or whatever.
Aiosa
commented
4 years ago It would be nice to find out the issue in the desktop AID mismatch though...
An installed applet is not recognized by host applications when using NXP JCOP3 J3H145 card (sdk support up to 3.0.4) via Gemalto external card USB reader.
I tried to investigate using APDU tracer and noticed the desktop app is repeatedly sending select commands for different AID than project-defined
Therefore, I tried to compile with both these AIDs, but apart from select command succession, the applet is still not recognized.
Full description of desktop tracing:
**A0 00 00 05 27 20 01** > 00 A4 04 00 07 A0 00 00 05 27 20 01 > 79 03 01 00 02 71 08 AF 4F C6 D4 4F A4 42 61 90 00 selection succesfull, but the app did not try to send any other commands **A0 00 00 05 27 47 11 17** > 00 A4 04 00 08 A0 00 00 05 27 47 11 17 > 79 03 01 00 02 71 08 3C ED 63 0F 3E 47 D0 A8 90 00 > 00 1D 00 00 00 > 6D 00 **A0 00 00 05 27 21 01 01** (the project-default) > 00 A4 04 00 07 A0 00 00 05 27 20 01 > 6A 82 (file not found) > 00 A4 04 00 08 A0 00 00 05 27 47 11 17 > 6A 82 (file not found)I tried to debug the android APP, when trying those aids
it said "OATH not repsent or disabled", with the project id it did not say/do anything.
Android app debug log when connection first non-project, then project-defined applet AID
``` D/yubikit: On tag: com.yubico.yubioath.ui.main.MainActivity@38a46a0 D/yubikit: OathApplication app SEND: 00 a4 04 00 08 a000000527210101 D/yubikit: OathApplication app RECV: 6a82 E/yubioath: Error using OathClient com.yubico.yubikitold.application.ApduException: APDU SW=0x6A82 at com.yubico.yubikitold.application.AbstractApplication.select(AbstractApplication.java:49) at com.yubico.yubikitold.application.oath.OathApplication.select(OathApplication.java:67) at com.yubico.yubioath.client.OathClient.So unlike the desktop versions, android is sending select command with the aid equal to the project defined one - and the message "missing OATH" means no applet found on the card. Nice. Now just why it selects the applet and does not do anything else? The screen stays like when starting app - tap or insert your Yubikey.
Thanks