On your website you are announcing under HSM->Applications->General that the HSM Key is supported since Version Gnu 2.1.
I have my doubts after spending my Sunday to get it up and running - now saying that it could be that I make something wrong. While the card works very well under OpenSC with sm-hsm-tool, pkcs15-tool and pkcs11-tool , it doesnât work with the openpgp-tool from OpenSC nor does it work with gpgv1/2. I always receive the answer the card doesnât support OpenPGP.
Here is a log of the scdaemon:
2018-10-29 12:51:56 scdaemon[40080] DBG: chan_7 <- GETINFO version
2018-10-29 12:51:56 scdaemon[40080] DBG: chan_7 -> D 2.2.10
2018-10-29 12:51:56 scdaemon[40080] DBG: chan_7 -> OK
2018-10-29 12:51:56 scdaemon[40080] DBG: chan_7 <- SERIALNO openpgp
2018-10-29 12:51:56 scdaemon[40080] detected reader âNitrokey Nitrokey HSM (010000000000000000000000) 00 00â
2018-10-29 12:51:56 scdaemon[40080] detected reader ââ
2018-10-29 12:51:56 scdaemon[40080] reader slot 0: not connected
2018-10-29 12:51:57 scdaemon[40080] DBG: feature: code=12, len=4, v=42330012
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=01, len=2, v=00000000
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=03, len=1, v=00000000
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=09, len=1, v=00000000
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=0B, len=2, v=000020A0
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=0C, len=2, v=00004230
2018-10-29 12:51:57 scdaemon[40080] DBG: TLV properties: tag=0A, len=4, v=00010000
2018-10-29 12:51:57 scdaemon[40080] reader slot 0: active protocol: T1
2018-10-29 12:51:57 scdaemon[40080] slot 0: ATR=3B FE 18 00 00 81 31 FE 45 80 31 81 54 48 53 4D 31 73 80 21 40 81 07 FA
2018-10-29 12:51:57 scdaemon[40080] DBG: pcsc_get_status_change: changed present inuse
2018-10-29 12:51:57 scdaemon[40080] DBG: send apdu: c=00 i=A4 p1=00 p2=0C lc=2 le=-1 em=0
2018-10-29 12:51:57 scdaemon[40080] DBG: PCSC_data: 00 A4 00 0C 02 3F 00
2018-10-29 12:51:57 scdaemon[40080] DBG: response: sw=6A86 datalen=0
2018-10-29 12:51:57 scdaemon[40080] canât select application âopenpgpâ: Nicht unterstĂźtzt
2018-10-29 12:51:57 scdaemon[40080] DBG: chan_7 -> ERR 100696144 Operation not supported by device <SCD>
2018-10-29 12:51:57 scdaemon[40080] DBG: chan_7 <- RESTART
2018-10-29 12:51:57 scdaemon[40080] DBG: chan_7 -> OK
2018-10-29 12:51:57 gpg-agent[39839] Handhabungsroutine 0x801c17e00 fĂźr den fd 8 beendet
I was able to tell scdaemon not to use the internal ccid driver and also denied using the openpgp applications with the pcsc-driver ( as the driver should use sc-hsm-driver - which would be possible ) . Now it looks like pgp --card-status always wants the openpgp application and doesnât leave the selection of the driver to scdaemon ?
Or I am lost in the wrong way inside the maze ?
PS: is it possible to simple change the card inside the HSM to a newer card ?
PS2: The above scenario works well with NK ProV1 - so I assume it is not my driver setup