Hi.
Unfortunately, after enabling KDF using gpg2 --card-edit command command I lost my PINs, my fault.
The problem is that GPG factory-reset seems to have no effect on my Nitrokey Storage 2 (FW v0.57, tried to flash it again).
No error is printed, but nothing happens: I still can see the previous keys and PINs counter are not reset.
What can I do?
I see somewhere somebody mentioning anitrokey-reset.txt file, but I can’t find it.
I bought my Nitrokey storage 2 key less than 2 years ago, I wish I can recover it since it is still under warranty.
Hi @nku!
Yes, I followed that documentation. I cannot perform factory reset from app since my PINs are gone.
If I try the GPG factory reset this is what happens (I’ve removed some personal data and some data about the keys which I think are useless for the analysis):
gpg2 --card-edit
Reader ...........: Nitrokey Nitrokey Storage (0000000000000) 00 00
Application ID ...: D27600012401030400050000A0940000
Application type .: OpenPGP
Version ..........: 3.4
Manufacturer .....: ZeitControl
Serial number ....: 0000A094
Name of cardholder: My name
Language prefs ...: de
Salutation .......:
URL of public key : https://keys.openpgp.org/vks/v1/by-fingerprint/
Login data .......: [non impostato]
Signature PIN ....: costretto
Key attributes ...: nistp384 nistp384 nistp384
Max. PIN lengths .: 64 64 64
PIN retry counter : 0 0 0
Signature counter : 107
KDF setting ......: on
Signature key ....:
created ....:
Encryption key....:
created ....:
Authentication key:
created ....:
General key info..:
pub nistp384/
sec> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
ssb> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
ssb> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
gpg/card> admin
I comandi di amministrazione sono consentiti
gpg/card> factory-reset
gpg: Scheda OpenPGP n. D27600012401030400050000A0940000 rilevata
gpg: Nota: Questo comando distrugge tutti i tasti memorizzati sulla scheda!
Continuare? (Y/n) Y
Fare davvero un reset di fabbrica? (immettere "sì") sì
gpg/card> list
Reader ...........: Nitrokey Nitrokey Storage (0000000000000) 00 00
Application ID ...: D27600012401030400050000A0940000
Application type .: OpenPGP
Version ..........: 3.4
Manufacturer .....: ZeitControl
Serial number ....: 0000A094
Name of cardholder: My name
Language prefs ...: de
Salutation .......:
URL of public key : https://keys.openpgp.org/vks/v1/by-fingerprint/
Login data .......: [non impostato]
Signature PIN ....: costretto
Key attributes ...: nistp384 nistp384 nistp384
Max. PIN lengths .: 64 64 64
PIN retry counter : 0 0 0
Signature counter : 107
KDF setting ......: on
Signature key ....:
created ....:
Encryption key....:
created ....:
Authentication key:
created ....:
General key info..:
pub nistp384/
sec> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
ssb> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
ssb> nistp384/ creato: scadenza:
scheda-no: 0005 0000A094
gpg/card>
Tried both on updated arch & Manjaro, the output was the same.