search

Yubico / ykneo-openpgp

OpenPGP applet for the YubiKey NEO
https://developers.yubico.com/ykneo-openpgp/
GNU General Public License v2.0
215 stars 67 forks source link

Can't set the PIN retries #40

Closed tuxlife closed 8 years ago

tuxlife commented 8 years ago

I can't change the PIN retries for my YubiKey 4.

Is this a other instruction code?

$ gpg2 --card-status
Application ID ...: D2760001240102010006041379970000
Version ..........: 2.1
Manufacturer .....: Yubico
Serial number ....: 04137997
Name of cardholder: [not set]
Language prefs ...: [not set]
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: not forced
Key attributes ...: 2048R 2048R 2048R
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 0 3
Signature counter : 0
Signature key ....: [none]
Encryption key....: [none]
Authentication key: [none]
General key info..: [none]

$ gpg-connect-agent --hex "scd apdu 00 f1 00 00" /bye
D[0000]  04 02 07 90 00                                     .....           
OK

$ gpg-connect-agent --hex "scd apdu 00 20 00 83 08 31 32 33 34 35 36 37 38" \
   "scd apdu 00 f2 00 00 03 05 05 05" /bye
D[0000]  90 00                                              ..              
OK
D[0000]  6D 00                                              m.              
OK

$ # re-insert the token...
$ gpg2 --card-status                                                                                                                                                                                               
...
PIN retry counter : 3 0 3
...
klali commented 8 years ago

YubiKey 4 is not running this code, and does unfortunately (right now) not implement the setting of pin retries.