openpgp-card

History

Heiko Schaefer 5e7fcd079b Change CardApp API: take &mut CardClient parameter for all calls (instead of owning a CardClientBox). This way, clients can exert control over the state of the CardClient, e.g. to combine CardApp operations in a PCSC transaction.		2022-02-14 17:43:07 +01:00
..
src	Change CardApp API: take &mut CardClient parameter for all calls (instead of owning a CardClientBox).	2022-02-14 17:43:07 +01:00
Cargo.toml	Bump versions for releases.	2021-12-02 18:45:46 +01:00
README.md	Document known limitations of scdc	2021-08-27 23:05:58 +02:00

README.md

scdaemon client for the openpgp-card library

This crate provides ScdClient, which is an implementation of the CardClient trait that uses an instance of GnuPG's scdaemon to access OpenPGP cards.

Known limitations

Uploading RSA 4096 keys via scdaemon doesn't work with cards that don't support Command Chaining (e.g. the "Floss Shop OpenPGP Smart Card"). This is caused by a size limitation for client requests via the Assuan protocol. Assuan "Client requests" are limited to 1000 chars. Commands are sent as ASCII encoded hex, so APDU commands are limited to around 480 bytes. This is insufficient for importing RSA 4096 keys to the card (all other OpenPGP card operations fit into this constraint).
When using scdaemon via pcsc (by configuring scdaemon with disable-ccid), choosing a specific card of multiple plugged in OpenPGP cards seems to be broken. So you probably want to plug in one OpenPGP card at a time when using openpgp-card-scdc combined with disable-ccid.
When using scdaemon via its default ccid driver, choosing a specific one of multiple plugged in OpenPGP cards seems to only work up to 4 plugged in cards. So you probably want to plug in at most four OpenPGP cards at a time when using openpgp-card-scdc with its ccid driver.