Re: [Muscle] muscleTool 2.1.0 & gpshell problem

Tue, 07 Feb 2006 17:37:46 -0800 

kammi cazze wrote:
> Hi,
> 
> after some long vacation, i started to work on the smartcard stuff
> again, but still have some problems with the tools :(
> 
> I compile muscletool-2.1.0 succesfully, but if i run the program and ask
> for tokens, the processor raise to 99% and stays there.
> I tried the same with muscleTool-0.9.2, but didn't had that problem.
> 
> Another thing is with my GemXpresso Pro R3 cards. From the docs, the
> card supports both gp211 and op2.0.1'.

Both is not possible. You mixed the card management specification
OpenPlatform 2.0.1' and the Runtime Environment on the Card JavaCard 2.1.1.

GemXpresso Pro R3 E32PK

· JavaCard2.1.1
· Open Platform 2.0.1’
· ISO 7816 part 1, 2 & 3 (T=0 & T=1)
· RSA Operations up to 2.048 bits key length
· EMV

The 64 variant support the same.

So, use always the mode mode_201.

If you take the install examples as a base please take the examples from
the SVN repository, the example files in the release are wrong (at least
for the mode gp211 the Security Domain AID is wrong). But is seams that
you already have adjusted the scripts to a special Security Domain.

Karsten

> 
> I tried this script with gpshell 1.2, both with mode_211 and mode_201
> 
> mode_201 (mode_211)
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> card_disconnect
> release_context
> 
> and got this back for both modes:
> 
> mode_201 (mode_211)
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> --> 00A4040007A000000018434D
> <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
> card_disconnect
> release_context
> 
> If i now want to use the next script, i get different responce back from
> both modes, all failing :(
> 
> mode_201
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> open_sc -security 1 -keyind 0 -keyver 0 -mac_key
> 404142434445464748494a4b4c4d4e4f -enc_key
> 404142434445464748494a4b4c4d4e4f // Open secure channel
> get_status -element e0
> card_disconnect
> release_context
> 
> i get this back:
> 
> mode_201
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> --> 00A4040007A000000018434D
> <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
> open_sc -security 1 -keyind 0 -keyver 0 -mac_key
> 404142434445464748494a4b4c4d4e4f -enc_key
> 404142434445464748494a4b4c4d4e4f // Open secure channel
> --> 8050000008425A1BDDA8BC472300
> <-- 434D10159416191223C10D01C671894151329DA516BDD69A278053809000
> mutual_authentication() returns 0x80302000 (The verification of the card
> cryptogram failed.)
> 
> and for the 211 script:
> 
> mode_211
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> open_sc -security 1 -keyind 0 -keyver 0 -mac_key
> 404142434445464748494a4b4c4d4e4f -enc_key
> 404142434445464748494a4b4c4d4e4f // Open secure channel
> get_status -element 20
> card_disconnect
> release_context
> 
> i got this back:
> 
> mode_211
> enable_trace
> establish_context
> card_connect
> select -AID a000000018434d
> --> 00A4040007A000000018434D
> <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
> open_sc -security 1 -keyind 0 -keyver 0 -mac_key
> 404142434445464748494a4b4c4d4e4f -enc_key
> 404142434445464748494a4b4c4d4e4f // Open secure channel
> --> 00CA006600
> <-- 6E00
> --> 8050000008FCF70277F3E05F1C00
> <-- 434D10159416191223C10D01861F156B46ED8FF3BC529AD43D11B5709000
> mutual_authentication() returns 0x8030F006 (The Secure Channel Protocol
> Implementation is invalid.)
> 
> I tried this all with different cards, but they all gave me the same
> result. Does this mean my cards are blocked? How can i see it if they
> are blocked? Which of the 2 modes is better to use if it support both (i
> think so but am not sure getting the above result with gp211)?
> 
> Any ID?
> 
> Regards,
> 
> Pierre
> 
> 
> _______________________________________________
> Muscle mailing list
> [email protected]
> http://lists.drizzle.com/mailman/listinfo/muscle

_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle

Reply via email to