eID Viewer: Wrong status word after selecting file: 6e00 (Win 7 only)

[GoogleCodeExporter]

What steps will reproduce the problem?
1. Install Windows 7 (Service Pack 1)
2. Install the FedICT eID Middleware 4.00 (build 7094) 
3. Make sure that the "Smart Card Plug & Play" service is enabled (this is 
enabled by default) 
(http://technet.microsoft.com/en-us/library/dd979547(WS.10).aspx). 
4. Remove eID from the card reader
5. Open the eID Viewer application
6. Insert the eID in the card reader.
7. After operation completed (successful or not). Remove the eID from the 
reader and trye again from point 6. 

Result: The eID Viewer will sometimes fail to read the card.
In the log file, we can see the followin message in red:

[PCSCEidController] Clearing Data for security reasons, due to unexpected 
problem.
wrong status word after selecting file: 6e00
be.fedict.eid.applet.sc.PcscEid.selectFile(PcscEid.java:548)
be.fedict.eid.applet.sc.PcscEid.readFile(PcscEid.java:251)
be.fedict.eidviewer.lib.PCSCEid.readFile(PCSCEid.java:80)
be.fedict.eidviewer.lib.PCSCEid.getFile(PCSCEid.java:308)
be.fedict.eidviewer.lib.PCSCEid.getIdentity(PCSCEid.java:93)
be.fedict.eidviewer.lib.PCSCEidController.run(PCSCEidController.java:359)
java.lang.Thread.run(Unknown Source)

What version of the product are you using? On what operating system?
- Windows 7, Service Pack 1, 32 bits
- Java(TM) SE Runtime Environment (build 1.7.0_02-b13)
- eID Middleware 4.0.0 build 7094 (BeidMW40-7094_tcm146-158744.msi)
- eID Card reader: ACR38-U 
- eID Card ATR: 3B9813400AA503010101AD1311 (validity: 07.08.2007 - 07.08.2012)

This issue only applies to Windows 7 due to the Smart Card Plug & Play 
enhancements (see 
http://technet.microsoft.com/en-us/library/ff404304(WS.10).aspx).

Same issue with the eID Middleware 3.5.4 (build 6526) in the same conditions.

Same issue with third party softwares that don't rely on the eID middleware but 
that access directly the eID through PC/SC (with exclusive access)

Workaround:
-----------
Disable the Smart Card Plug & Play service.
See: http://technet.microsoft.com/en-us/library/dd979547(WS.10).aspx

For Win 7 Home edition, the gpedit.msc is not available. However, the Smart 
Card Plug & Play may be disabled via the registry editor:
See 
http://support.identive-infrastructure.com/file/kb_download/yyyy13_Tip_Disable%2
0Smartcard%20Plug%20and%20Play%20for%20Windows%207_100508_e.pdf

On x86:
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScPnP]
"EnableScPnP"=dword:00000000

On x64:
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScPnP] 
"EnableScPnP"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Policies\Microsoft\Windows\ScPnP] 
"EnableScPnP"=dword:00000000

A reboot is mandatory to take this modification in effect.

Rodolphe Cardon.

Original issue reported on code.google.com by cardon.r...@gmail.com on 22 Jan 2012 at 3:28

[GoogleCodeExporter]

URL corrections (problem with parenthesis)

Troubleshooting Smart Card Plug and Play Issues :
http://technet.microsoft.com/en-us/library/dd979547(WS.10).aspx 

Smart Card Enhancements:
http://technet.microsoft.com/en-us/library/ff404304(WS.10).aspx

Original comment by cardon.r...@gmail.com on 22 Jan 2012 at 3:33

[GoogleCodeExporter]

In my case, using Lenovo T410 integrated card reader and Windows 7 Enterprise, 
the workaround does not solve the issue. During the QuickInstall, the installer 
sees and reads the card with no issue, but after the reboot, no card can be 
read anymore.

Original comment by hugues.v...@gmail.com on 8 Mar 2012 at 3:40

[GoogleCodeExporter]

Hello Hugues,

Could you post this question to the fedict servicedesk? (servicedesk@fedict.be)

thanks,
 Frederik

Original comment by frederik...@gmail.com on 9 Mar 2012 at 2:04

[GoogleCodeExporter]

The workaround as described by Rodolphe will disable certificate propagation on 
the machine.
As a result, eID authentication might fail in Internet Explorer and Chrome.

Original comment by koe...@gmail.com on 12 Mar 2012 at 1:26

[GoogleCodeExporter]

This problem was reported well over three years ago; I don't think it is a 
problem anymore.

If it is, feel free to:
- Contact the service desk, or
- If it actually is a bug in the code, open an issue on our github project: 
https://github.com/Fedict/eid-mw

Since google code will close, we're migrating all data from the google code 
project to github.

Original comment by wouter.v...@fedict.be on 20 Mar 2015 at 11:44

• Changed state: Done