Re: [Muscle] muscleTool 2.1.0 & gpshell problem

Thu, 09 Feb 2006 01:10:32 -0800 

From: Karsten Ohme <[EMAIL PROTECTED]>
Reply-To: MUSCLE  <[email protected]>
To: MUSCLE <[email protected]>
Subject: Re: [Muscle] muscleTool 2.1.0 & gpshell problem
Date: Thu, 09 Feb 2006 00:01:38 +0100

kammi cazze wrote:
>> From: Karsten Ohme <[EMAIL PROTECTED]>
>> Reply-To: MUSCLE  <[email protected]>
>> To: MUSCLE <[email protected]>
>> Subject: Re: [Muscle] muscleTool 2.1.0 & gpshell problem
>> Date: Wed, 08 Feb 2006 02:37:17 +0100
>>
>> kammi cazze wrote:
>> > Hi,
>> >
>> > after some long vacation, i started to work on the smartcard stuff
>> > again, but still have some problems with the tools :(
>> >
>> > I compile muscletool-2.1.0 succesfully, but if i run the program and
>> ask
>> > for tokens, the processor raise to 99% and stays there.
>> > I tried the same with muscleTool-0.9.2, but didn't had that problem.
>> >
>> > Another thing is with my GemXpresso Pro R3 cards. From the docs, the
>> > card supports both gp211 and op2.0.1'.

I'm just integrating the GemXpresso Pro into GlobalPlatform and GPShell ...

Just wait a moment.

Karsten


Very nice, thx alot for all the help you are giving us!



>>
>> Both is not possible. You mixed the card management specification
>> OpenPlatform 2.0.1' and the Runtime Environment on the Card JavaCard
>> 2.1.1.
>>
>> GemXpresso Pro R3 E32PK
>> 
>> · JavaCard2.1.1
>> · Open Platform 2.0.1’
>> · ISO 7816 part 1, 2 & 3 (T=0 & T=1)
>> · RSA Operations up to 2.048 bits key length
>> · EMV
>>
>> The 64 variant support the same.
>>
>> So, use always the mode mode_201.
>
>
> That's right, i mixed those up :(
>
>>
>> If you take the install examples as a base please take the examples from >> the SVN repository, the example files in the release are wrong (at least 
>> for the mode gp211 the Security Domain AID is wrong). But is seams that
>> you already have adjusted the scripts to a special Security Domain.
>
>
> Done, thx
>
>>
>> Karsten
>>
>> >
>> > I tried this script with gpshell 1.2, both with mode_211 and mode_201
>> >
>> > mode_201 (mode_211)
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > card_disconnect
>> > release_context
>> >
>> > and got this back for both modes:
>> >
>> > mode_201 (mode_211)
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > --> 00A4040007A000000018434D
>> > <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
>> > card_disconnect
>> > release_context
>> >
>> > If i now want to use the next script, i get different responce back
>> from
>> > both modes, all failing :(
>> >
>> > mode_201
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > open_sc -security 1 -keyind 0 -keyver 0 -mac_key
>> > 404142434445464748494a4b4c4d4e4f -enc_key
>> > 404142434445464748494a4b4c4d4e4f // Open secure channel
>> > get_status -element e0
>> > card_disconnect
>> > release_context
>> >
>> > i get this back:
>> >
>> > mode_201
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > --> 00A4040007A000000018434D
>> > <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
>> > open_sc -security 1 -keyind 0 -keyver 0 -mac_key
>> > 404142434445464748494a4b4c4d4e4f -enc_key
>> > 404142434445464748494a4b4c4d4e4f // Open secure channel
>> > --> 8050000008425A1BDDA8BC472300
>> > <-- 434D10159416191223C10D01C671894151329DA516BDD69A278053809000
>> > mutual_authentication() returns 0x80302000 (The verification of the
>> card
>> > cryptogram failed.)
>> >
>> > and for the 211 script:
>> >
>> > mode_211
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > open_sc -security 1 -keyind 0 -keyver 0 -mac_key
>> > 404142434445464748494a4b4c4d4e4f -enc_key
>> > 404142434445464748494a4b4c4d4e4f // Open secure channel
>> > get_status -element 20
>> > card_disconnect
>> > release_context
>> >
>> > i got this back:
>> >
>> > mode_211
>> > enable_trace
>> > establish_context
>> > card_connect
>> > select -AID a000000018434d
>> > --> 00A4040007A000000018434D
>> > <-- 6F188407A000000018434DA50D9F6E061291035633309F6501FF9000
>> > open_sc -security 1 -keyind 0 -keyver 0 -mac_key
>> > 404142434445464748494a4b4c4d4e4f -enc_key
>> > 404142434445464748494a4b4c4d4e4f // Open secure channel
>> > --> 00CA006600
>> > <-- 6E00
>> > --> 8050000008FCF70277F3E05F1C00
>> > <-- 434D10159416191223C10D01861F156B46ED8FF3BC529AD43D11B5709000
>> > mutual_authentication() returns 0x8030F006 (The Secure Channel Protocol 
>> > Implementation is invalid.)
>> >
>> > I tried this all with different cards, but they all gave me the same
>> > result. Does this mean my cards are blocked? How can i see it if they
>> > are blocked? Which of the 2 modes is better to use if it support
>> both (i
>> > think so but am not sure getting the above result with gp211)?
>> >
>> > Any ID?
>> >
>> > Regards,
>> >
>> > Pierre
>> >
>> >
>> > _______________________________________________
>> > Muscle mailing list
>> > [email protected]
>> > http://lists.drizzle.com/mailman/listinfo/muscle
>>
>> _______________________________________________
>> Muscle mailing list
>> [email protected]
>> http://lists.drizzle.com/mailman/listinfo/muscle
>
>
>
> _______________________________________________
> Muscle mailing list
> [email protected]
> http://lists.drizzle.com/mailman/listinfo/muscle

_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle



_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle

Reply via email to