VeraCrypt icon indicating copy to clipboard operation
VeraCrypt copied to clipboard
verified publisher icon veracrypt

Show more yubikey piv slots.

Open Kitki30 opened this issue 1 year ago • 0 comments

Current behavior

VeraCrypt with OpenSC lib only shows 3 slots for piv

  • Cardholder fingerprints
  • Printed information
  • Cardholder facial image

Screenshot From 2024-12-08 09-59-25

Desired behavior

Show more slots that yubi has like this (output of pkcs11-tool --slot 0 --login --pin xxxxxx --list-objects --type data):

Data object 3074938176
  label:          'Cardholder Fingerprints'
  application:    'Cardholder Fingerprints'
  app_id:         2.16.840.1.101.3.7.2.96.16
  flags:           private
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Cardholder%20Fingerprints;type=data
Data object 3074938272
  label:          'Printed Information'
  application:    'Printed Information'
  app_id:         2.16.840.1.101.3.7.2.48.1
  flags:           private
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Printed%20Information;type=data
Data object 3074938368
  label:          'Cardholder Facial Image'
  application:    'Cardholder Facial Image'
  app_id:         2.16.840.1.101.3.7.2.96.48
  flags:           private
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Cardholder%20Facial%20Image;type=data
Data object 3074933280
  label:          'Card Capability Container'
  application:    'Card Capability Container'
  app_id:         2.16.840.1.101.3.7.1.219.0
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Card%20Capability%20Container;type=data
Data object 3074933376
  label:          'Card Holder Unique Identifier'
  application:    'Card Holder Unique Identifier'
  app_id:         2.16.840.1.101.3.7.2.48.0
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Card%20Holder%20Unique%20Identifier;type=data
Data object 3074937984
  label:          'Unsigned Card Holder Unique Identifier'
  application:    'Unsigned Card Holder Unique Identifier'
  app_id:         2.16.840.1.101.3.7.2.48.2
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Unsigned%20Card%20Holder%20Unique%20Identifier;type=data
Data object 3074938080
  label:          'X.509 Certificate for PIV Authentication'
  application:    'X.509 Certificate for PIV Authentication'
  app_id:         2.16.840.1.101.3.7.2.1.1
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=X.509%20Certificate%20for%20PIV%20Authentication;type=data
Data object 3074938464
  label:          'X.509 Certificate for Digital Signature'
  application:    'X.509 Certificate for Digital Signature'
  app_id:         2.16.840.1.101.3.7.2.1.0
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=X.509%20Certificate%20for%20Digital%20Signature;type=data
Data object 3074938560
  label:          'X.509 Certificate for Key Management'
  application:    'X.509 Certificate for Key Management'
  app_id:         2.16.840.1.101.3.7.2.1.2
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=X.509%20Certificate%20for%20Key%20Management;type=data
Data object 3074938656
  label:          'X.509 Certificate for Card Authentication'
  application:    'X.509 Certificate for Card Authentication'
  app_id:         2.16.840.1.101.3.7.2.5.0
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=X.509%20Certificate%20for%20Card%20Authentication;type=data
Data object 3074938752
  label:          'Security Object'
  application:    'Security Object'
  app_id:         2.16.840.1.101.3.7.2.144.0
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Security%20Object;type=data
Data object 3074938848
  label:          'Discovery Object'
  application:    'Discovery Object'
  app_id:         2.16.840.1.101.3.7.2.96.80
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Discovery%20Object;type=data
Data object 3074939040
  label:          'Biometric Information Templates Group Template'
  application:    'Biometric Information Templates Group Template'
  app_id:         2.16.840.1.101.3.7.2.16.22
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Biometric%20Information%20Templates%20Group%20Template;type=data
Data object 3074939136
  label:          'Secure Messaging Certificate Signer'
  application:    'Secure Messaging Certificate Signer'
  app_id:         2.16.840.1.101.3.7.2.16.23
  flags:          <empty>
  uri:            pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=00000000;token=PIV_II;object=Secure%20Messaging%20Certificate%20Signer;type=data

Your Environment

Yubikey 5 NFC

VeraCrypt version: 1.26.14

Operating system and version: Fedora Linux 41 (Workstation Edition), Linux 6.11.8-300.fc41.x86_64

System type: 64-bit

Kitki30 avatar Dec 08 '24 09:12 Kitki30