OTP static key limited to 8 characters instead of 32 on pico

Question

Closed this issue a year ago · 4 comments

$ ykman otp static 1 DrHfEHtICeCeNuEjkfHJdCGuvbhEhGvDenecgk
Slot 1 is already configured. Overwrite configuration? [y/N]: y

Stored password ends up being: DrHfEHtI

Answer 1 · 2023-08-14T10:37:46.000Z

Did you try it with a legit Yubikey? It seems that YKMAN supports 16 bytes for static OTP (if you have 8 might be caused by SHORT_TICKET flag).

Answer 2 · 2023-08-14T11:15:48.000Z

From Yubico documentation, static passwords are 16 bytes length:

From specs, it cannot increased, as it would overflow the frame buffer.

Answer 3 · 2024-01-22T05:07:31.000Z

But then why can it only be 8, not 16?

Answer 4 · 2024-01-22T07:50:06.000Z

Not really. In version 5.8 we removed that limitation and Pico Fido is able to send up to 38 bytes.