UserNotLoggedIn calling decrypt after login.... about rust-cryptoki HOT 5 CLOSED

I got a client log of the program they use that supplies the pkcs11 driver... it's a lot, but it looks like it might be something in their driver. Contacting support. I'll close this.

from rust-cryptoki.

What module do they use? Is it the same as yours?

Maybe they have special login requirements: https://docs.rs/cryptoki/latest/cryptoki/session/struct.Session.html#method.login

NOTE: By passing None into login, you must ensure that the CKF_PROTECTED_AUTHENTICATION_PATH flag is set in the TokenFlags.

from rust-cryptoki.

I think the card is a bit different.
The thing is... they use some software that, in my case and theirs, prompts for the pin if I pass in None. It appears to work in both cases, and I get this status from the card: RoUser

When I call decrypt though, it throws this: Pkcs11(UserNotLoggedIn)
I have given them a binary in which I collect the pin myself and send it, but I have not heard back yet.

But I would not have expected to get past the login attempt if there were an issue with the card not liking a None pin.

from rust-cryptoki.

The really frustrating thing is when I go to search the card for Private(true) objects... I can't see them unless I login.
When I login (in both cases) I can see the private objects. so I know the login is doing something!

When I try to use one to decrypt it works on mine, but it throws Pkcs11(UserNotLoggedIn) on theirs.

from rust-cryptoki.

I have read online about interference with other pkcs11 applications interfacing with the card:
MicrochipTech/cryptoauthlib#149

But I don't know enough about how any of this works... is this something that an application can control itself or does all access to the card need to be handled in order to not get corrupted sessions?

from rust-cryptoki.