Open eCard

Hallo,

I have the same problem. I try to setup an user account at Elster online (German online tax authorities protal: https://www.elster.de/eportal/start) and the process ends with the same error message.

For further information see the attached log file and the profile.

Any help is appreciated.

Alexander

Profile
Ubuntu 17.10
Open-eCard App 1.2.4
REINER SCT cyberJack RFID standard
icedtea-web 1.6.2
pcsc-tools:
Installiert: 1.5.2-1
Installationskandidat: 1.5.2-1
Versionstabelle: *** 1.5.2-1 500
500 http://archive.ubuntu.com/ubuntu artful/universe amd64 Packages
100 /var/lib/dpkg/status
pcscd:
Installiert: 1.8.22-1ubuntu1
Installationskandidat: 1.8.22-1ubuntu1
Versionstabelle: *** 1.8.22-1ubuntu1 500
500 http://archive.ubuntu.com/ubuntu artful/universe amd64 Packages
100 /var/lib/dpkg/status

Error Messages
ERROR o.o.s.p.eac.gui.PINStepAction:-1 - An unknown error occured while trying to verify the PIN.
...
[PAOS] WARN org.openecard.ifd.scio.IFD:-1 - Unknown error in the underlying SCIO implementation.
...
2018-01-24 16:17:30,007 [Thread-8] DEBUG o.o.c.b.h.h.HttpAppPluginActionHandler:-1 - HTTP response: HTTP/1.1 303

Would you please try again with the following build (current master branch). There have been fixes in the IFD layer recently.
However the log shows PCSC messages about not being able to start a transaction, so there is a good chance this is a problem with the pcsc driver for the reader.

I also experienced, problems with the CyberJACK komfort when the card is inserted too fast after the reader is pluggend in or the App is started.

Thank you for your quick replay. I tried the process with the software version you attached. Actually it did not work. Please find the debug log attached.

Due to your note regarding the card reader I started the app and after 20 seconds when everything looked "settled" I attached the card reader without the nPe. When the open ecard app stated to insert the nPe I inserted the card. As you already have mentioned the error seems to be related with the Reiner Card reader.

Is there anything else what we can do?

I've reinstalled the Reiner SCT driver and started the pcscd daemon in foreground mode. This is the error message of pcscd:

00000068 readerfactory.c:847:RFReaderInfoById() RefReader() count was: 1
22069136 ifdwrapper.c:477:IFDControl() Card not transacted: 612
00000015 ifdwrapper.c:479:IFDControl() ControlCode: 0x42000DCC BytesReturned: 0
00000027 ifdwrapper.c:364:IFDStatusICC() Card not transacted: 612
00000014 eventhandler.c:334:EHStatusHandlerThread() Error communicating to: REINER SCT cyberJack RFID standard (0810057893) 00 00
00000137 TxBuffer 02 18 03 03 15 7F 4C 12 06 09 04 00 7F 00 07 03 01 02 02 53 05 00 01 00 99 04 00 FE 02 30 82 02 FA 06 0A 04 00 7

In the syslog
Jan 24 11:48:39 alexander-Aspire-SW5-171 pcscd¹³⁶⁶⁶: RSCT: No USB context.}n*** Error in `/usr/sbin/pcscd': free(): corrupted unsorted chunks: 0x000055c0bce40a40 ***
Jan 24 11:48:39 alexander-Aspire-SW5-171 systemd¹: pcscd.service: Main process exited, code=killed, status=6/ABRT
Jan 24 11:48:39 alexander-Aspire-SW5-171 systemd¹: pcscd.service: Unit entered failed state.
Jan 24 11:48:39 alexander-Aspire-SW5-171 systemd¹: pcscd.service: Failed with result 'signal'.
Jan 24 11:

I tied to logon the Reiner support forum, but I could`t register due to a missing module on the server. I'm quiet not sure if the error belongs to pcscd or the driver. What do you think?

After the update (Open eCard, now version 1.2.4) CyberJack RFID Deluxe my card reader fails. I can enter my PIN, and establish a tunnel, but then no further function.
I have the app. running under Linux Mint 18.02, KDE version, and the reader connected to a Lenovo ThinkPad X240.

What tests should I perform?

Today after a reboot (duh), everything works!

I can confirm that richclient-bundle-1.3.0-rc8-20180125.jar does not solve the problem.

I'm still not sure which software is responsible for the issue. If it is the Reiner cyberjack driver, I'm wondering how to reach out to them. Unfortunately, their Linux driver subforum currently contains several unanswered threads. Not very motivating. Maybe using the contact form on their website is promising?! Haven't done so far...

However, since they provide the official driver on their website, I assembled steps to reproduce the issue on a fresh CentOS install, where they provide drivers for.

- install CentOS 7 and update system
- $ sudo yum install pcsc-lite
- $ sudo rpm -i http://support.reiner-sct.de/downloads/LINUX/V3.99.5_SP11/pcsc-cyberjack-3.99.5final.SP11-1.centos7.3.1611.x86_64.rpm
- $ reboot
- connect CyberJack (comfort?!) reader, make it available in virtual machine if applicable
- $ javaws https://jnlp.openecard.org/openecard.jnlp
- try to authenticate somewhere with eID, process fails after entering PIN

But if it turns out to be a pcsc-lite bug, https://github.com/LudovicRousseau/PCSC might be the correct address. Probably it will be hard for the maintainer to reproduce a problem with this specific reader and the eID functionality...

PS: @Tobias: would you consider changing the jnlp download URL to https on the website? Reiner also serves their drivers over plain http :/ Don't like this practice. :P

• pcsclite
• libcyberjack
• reader firmware

pcsclite (1.8.20) and the cyberjack driver (3.99.5final.sp09-1.1) work for me with the named versions and a Reiner comfort reader.
The Windows driver contains a UI which allows to install reader firmware updates. You should check that the latest firmware is installed on the device.

The cyberjack readme has some info for support requests. You may put me in CC if you make a support request.

5. Support

   Support of this driver is provided by REINER SCT. E-mail:
   support@reiner-sct.com Postal address: Schwabacher Str. 34,
   90762 Fürth, GERMANY

   In your problem description, please include as far as possible:

     * Any error messages you get.
     * Which Linux distribution you use including version, e.g.
       SuSE 10.1, Debian 3.0r1 testing, ...
     * CPU type, e.g. on Linux the content of the file
       /proc/cpuinfo.
     * Kernel version, e.g. on Linux the output from the command
       uname -r.
     * List of attached USB devices, e.g. on Linux the output of
       the lsusb command.

The URLs are also replaced. Fingers crossed that Java Webstart likes it that way.

Thanks for your reply.

AA2 also crashed at this point when I tried few weeks ago. But I did not saw a similar log containing corresponding errors, so I can only assume that this is the same bug but have no proof.

I updated the firmware before I tried for the first time. Also, authentication worked out on Windows, so I do not assume it is the firmware. However, I rechecked and there was indeed a new firmware update. Installed it, but same problem as before.

@Alexander: Do you intend writing an email to the support team? You already tried registering in their forum.. If not, I can do this in the next couple of days. Let me know.

(PS: regarding https, at least on my side, Java Webstart likes it. Thanks)

Finaly I managed to register at the forum of Reiner SCT. I opend an discussion in the linux driver sub forum. This ist the URL:

https://forum.reiner-sct.com/index.php?/topic/3728-failed-to-transmit-control-command-to-the-terminal/

Let's see what they say.

Due to not getting a reaction in support forum at Reiner SCT, I wrote an e-mail to their support. Actually there is no support from Reiner SCT side. The support wrote back and "advised" me to contact the support of Elster Online. The support at Elster Online advised me to contact the support at Reiner SCT.

So no support from anybody except the nice people here in the forum. Now I have the choice between using the traditional process by mail to set up an account at Elster Online or to try the card reader under Windows.

Not the best opportunities I can imagine.

Alexander

Dear Colleagues,

I have several questions ...

While it works with Windows and AusweisApp2, it does not using Linux (Fedora 27), neither with Open eCard nor with AusweisApp2.

1) How exactly did you use AusweisApp2 under Fedora 27? Did you compile your own version of
https://github.com/Governikus/AusweisApp2 ?

2) Does the problem also exist with other eID-enbaled applications?
Have you e.g. tried to register at https://sp.skidentity.de?

BR,
Detlef

Hi.

1) Yes, I compiled AA2 by myself. The build system needed a patch that will be included in the next release (see https://github.com/Governikus/AusweisApp2/pull/6), but this is irrelevant for this issue.

2) I have tested eID authentication with multiple services, not with the one you proposed, but with:
- changing the transport PIN
- "Selbstauskunft" (only using AusweisApp2)
- https://www.kba-online.de/registerauskunft/app/registeranfrage.html
- https://www.eservice-drv.de/OnlineDiensteWeb/init.do?npa=true

In the meantime, I found a ticket in the pcscd issue tracker: https://github.com/LudovicRousseau/PCSC/issues/22

It seems one of the AusweisApp2 developers encountered the problem, talked to the pcscd maintainer and concluded that it is indeed a cyberjack driver issue.

In fact, it works well with older pcscd versions, e.g. on Ubuntu 14.04 LTS.

Unfortunately they haven't fixed it yet. I emailed the Reiner support, mentioning the issue but I'm not confident they will respond properly...

So no support from anybody except the nice people here in the forum. Now I have the choice between using the traditional process by mail to set up an account at Elster Online or to try the card reader under Windows.

https://www.iflyswahelp.xyz

iflyswa early bird check in

iflyswa fares

iflyswa flight check in

iflyswa flight map

iflyswa flight schedule