David Matson

> So basically I should add a new flag using one of the names you proposed to activate this feature? This is a feature request to add a new flag...

@derekmauro - thoughts on this proposal? We'd be interested in working on a draft implementation, if there's agreement that this would be a good idea.

@RedMarcher - I think we'll be best off if we can get someone from the GoogleTest team to consider the feature request before we get too deep into implementation details....

``` PS C:\> & "C:\Program Files\OpenSSL-Win64\bin\openssl.exe" pkeyutl -decrypt -in encrypted.txt -inkey "pkcs11:object=Private key for Key Management;type=private" -keyform ENGINE -engine pkcs11 Engine "pkcs11" set. DBG ykcs11.c:415 (C_GetSlotList): Initializing slot 0 for...

>What YubiKey version do you have? I'm using the latest yubico-piv-tool release (2.6.0) and YubiKey 5C NFC with firmware 5.7.1. > How did you create the keys (I created them...

Thanks for looking, @aveenismail. I just tried using yubico-piv-tool to generate the keys, and the same problem repro'd for me - it can decrypt the RSA-encrypted file if and only...

@aveenismail - I tried with the 2.6.1 release of yubico-piv-tool, and this bug still repros. I also tried putting the X25519/ED25519 key a later slot (9E), and that didn't change...

``` Engine "pkcs11" set. DBG ykcs11.c:415 (C_GetSlotList): Initializing slot 0 for '' DBG ykcs11.c:428 (C_GetSlotList): Failed to validate : Argument error DBG ykpiv.c:544 (ykpiv_connect): Connect reader ''. DBG ykpiv.c:560 (ykpiv_connect):...

Yes, here's the config (ykman piv info): ``` PIV version: 5.7.1 PIN tries remaining: PUK tries remaining: Management key algorithm: AES192 Management key is stored on the YubiKey, protected by...

That sounds great. Thanks, @aveenismail!