'init' command doesn't work

[cttillman]

caleb@jet:~$ onlykey-cli init




Press the Enter key once you are done



Press the Enter key once you are done


 for second profile

Press the Enter key once you are done
 for second profile


Press the Enter key once you are done




Press the Enter key once you are done



Press the Enter key once you are done

These prompts are vague and unclear. What exactly am I supposed to do?

I do not know if it is relevant to the main problem, but I also cannot list credentials without getting an error saying AttributeError: 'Fido2Client' object has no attribute 'client_pin'

I am running the latest version of Debian.

[onlykey]

Have you followed setup instruction here for OnlyKey https://onlykey.io/start or here for OnlyKey DUO https://onlykey.io/duo

[cttillman]

Yes. Can you tell me what I am supposed to be seeing? I have a backup OnlyKey I could wipe and set up from scratch...

…

On Tue, Jun 21, 2022 at 9:41 AM onlykey ***@***.***> wrote: Have you followed setup instruction here for OnlyKey https://onlykey.io/start or here for OnlyKey DUO https://onlykey.io/duo — Reply to this email directly, view it on GitHub <#63 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AVHIPSHJQ2PJO7ZALAG43NLVQHBCJANCNFSM5ZLDKVEQ> . You are receiving this because you authored the thread.Message ID: ***@***.***>

[onlykey]

If you followed those instructions and set up OnlyKey per the users guide then your key is initialized. There would be no need to use the init command to set a PIN as you would already have a PIN set.

AttributeError: 'Fido2Client' object has no attribute 'client_pin'

This is because you have not used your security key to store credentials, FIDO2 requires setting a client pin to store credentials. There are no credentials to list.

[cttillman]

Set-pin gives the same error.

Set new FIDO PIN, this is the PIN entered via keyboard and used for FIDO2 register/login (not the OnlyKey PIN entered on device).

The only PIN I created during setup was the device PIN. Even if it is already set, why can't I make a new one with this command?

[Kleptoid]

I'm getting the same error attempting to list credentials or set the fido2 PIN using onlykey-cli on NixOS. The onlykey is already initialised, it all works just fine on Ubuntu.

[onlykey]

@Kleptoid You can only list credentials if there are FIDO2 resident credentials to list and a FIDO2 PIN has been set.

[Kleptoid]

@Kleptoid You can only list credentials if there are FIDO2 resident credentials to list and a FIDO2 PIN has been set.

Yes, there are credentials and a pin has been set on the Ubuntu machine, on that machine listing credentials works as expected. On the NixOS machine it doesn't, giving the stated error. It may be a problem with the NixOS package or environment, but since it seems to be happening on someone's Debian as well I though I'd mention it :)