Menu
▾
▴
Re: [Globalplatform-users] Need help deploying Applet using GPShell
|
From: Karsten O. <wid...@t-...> - 2010-10-11 20:49:42
|
Hi Mike, is there anything gpshell can do here? Would be a proper handling of this to intercept such command and so a GET DATA automatically? This works within a secure channel? Karsten Am 05.10.2010 04:02, schrieb Michael StJohns: > You need a newer version of ISO 7816-4 - the 2005 version explains this. > > Basically, this is saying that the card has data of some sort (2005 > says a query) that has to be responded to. > > > Do a "GET DATA" with a P1P2 of 0000 and with a Le of 0x36 (or whatever > the value XX of 64XX you get is). My guess (its not clear in the > document) is that the returned data will look like a Command APDU > > Once you figure out what's going on, you do the response with a PUT > DATA and P1P2 of 0000 with whatever the appropriate response is. > > Ideally, you should get the card specific guide to explain what's > going on. > > My further guess is that it's looking for a specific library and that > the response is telling you which one(s) is/are missing. > > Mike > > > At 06:05 PM 10/3/2010, Karsten Ohme wrote: >> Hi, >> >> *0x6436 is a strange error. This seems to be a proprietary response. >> According to ISO 7816-4 only 6400 *is specified. Also the GP spec >> does not mention it. >> >> Maybe it complains because about the cap file format. Although it >> fits try to use a lower Java Card version. Some cards also want that >> the cap file is transformed into something proprietary. In you script >> you also have commented out *BusCardApplet.transf*. So you are using >> a CAP transformator? >> >> You can also try to start with a "load" command in the script file, >> until this step works. Later you can go back to the complete install >> command. >> >> But start to try to pass some parameters to the install script: >> >> -nvDataLimit 2000 -instParam 00 -priv 2 >> >> Usually later some amount must be specified what data will be used by >> the applet. Also a dummy install parameter is sometimes necessary. Or >> a privilege must be given. >> >> Karsten >> >> Am 03.10.2010 23:40, schrieb Han Yang Chin: >>> Hi, >>> >>> I am currently doing a project on smart card and I am having >>> trouble deploying any applet onto the real smart card using GPShell. >>> I was wondering if anyone of you could help me out with this java card. >>> >>> I am using ASEDrive IIIe CL card reader to read the card. The smart >>> card is Athena IDProtect Version 1.1. The specifications are: >>> >>> * GP 2.1.1 >>> * JCRE Runtime Environment Spec 2.2.2 >>> * JCVM Virtual Machine 2.2.2 >>> * 128k ROM >>> * 72k EEPROM >>> * 5k RAM >>> * T=0 (default) >>> * Card Manager AID is A0 00 00 01 51 00 00 >>> * Auth Key 404142434445464748494a4b4c4d4e4f >>> * Mac Key 404142434445464748494a4b4c4d4e4f >>> * Kek Key 404142434445464748494a4b4c4d4e4f >>> >>> Note that I am NOT planning to PUT KEY on smart card. >>> >>> My cap file is a very simple applet generated by Netbeans card >>> project and is compilable with Netbeans classic applet project with >>> JavaCard Platform 2.2.2. I already placed the file on the the same >>> directory as GPShell.exe >>> >>> This is my script but it doesn't seem to work: >>> >>> *mode_211 >>> enable_trace >>> establish_context >>> card_connect >>> select -AID a0000001510000 >>> open_sc -security 1 -keyind 0 -keyver 0 -mac_key >>> 404142434445464748494a4b4c4d4e4f -enc_key >>> 404142434445464748494a4b4c4d4e4f -kek_key >>> 404142434445464748494a4b4c4d4e4f >>> delete -AID a00000006203010c01 >>> delete -AID a00000006203010c0101 >>> install -file SimpleApplet.cap >>> //install_for_load -pkgAID a00000030000 -sdAID a000000300001 >>> //install -file BusCardApplet.transf -sdAID 00 >>> get_status -element 40 >>> //load -file SimpleApplet.cap >>> //load -file BusCardApplet.cap >>> card_disconnect >>> release_context* >>> >>> >>> This is my output: >>> >>> * >>> C:\Users\admin\Downloads\Programming\Java\GPShell\GPShell-1.4.2>gpshell >>> < Modifi >>> edHelloInstall.txt >>> mode_211 >>> enable_trace >>> establish_context >>> card_connect >>> * reader name Athena ASEDrive IIIe CL 0 >>> select -AID a0000001510000 >>> Command --> 00A4040007A0000001510000 >>> Wrapped command --> 00A4040007A0000001510000 >>> Response <-- 6F0F8407A0000001510000A5049F6501FF9000 >>> open_sc -security 1 -keyind 0 -keyver 0 -mac_key >>> 404142434445464748494a4b4c4d4e4 >>> f -enc_key 404142434445464748494a4b4c4d4e4f -kek_key >>> 404142434445464748494a4b4c4 >>> d4e4f >>> Command --> 80CA006600 >>> Wrapped command --> 80CA006600 >>> Response <-- >>> 663F733D06072A864886FC6B01600C060A2A864886FC6B02020101630906072A864 >>> 886FC6B03640B06092A864886FC6B040105660C060A2B060104012A026E01029000 >>> Command --> 8050000008D268F29E0B023E9300 >>> Wrapped command --> 8050000008D268F29E0B023E9300 >>> Response <-- >>> 000008500025212F0157FF01A4CBE14595D684D33B33D1F1F9F6A3519000 >>> Command --> 84820100107608D3BC014666EED967A23F357BF1C7 >>> Wrapped command --> 84820100107608D3BC014666EED967A23F357BF1C7 >>> Response <-- 9000 >>> delete -AID a00000006203010c01 >>> Command --> 80E400800B4F09A00000006203010C0100 >>> Wrapped command --> 84E40080134F09A00000006203010C016B569664FDB4710400 >>> Response <-- 6A88 >>> delete_applet() returns 0x80206A88 (6A88: Referenced data not found.) >>> delete -AID a00000006203010c0101 >>> Command --> 80E400800C4F0AA00000006203010C010100 >>> Wrapped command --> 84E40080144F0AA00000006203010C01012A29419C85517A8600 >>> Response <-- 6A88 >>> delete_applet() returns 0x80206A88 (6A88: Referenced data not found.) >>> install -file SimpleApplet.cap >>> file name SimpleApplet.cap >>> Command --> 80E60200180652E29648933F07A00000015100000006EF04C60201000000 >>> Wrapped command --> >>> 84E60200200652E29648933F07A00000015100000006EF04C6020100000F >>> 577F0690A0289B00 >>> Response <-- 009000 >>> Command --> >>> 80E80000EFC481F78200F7010010DECAFFED01020400010652E29648933F02001F00 >>> 10001F000A00150012000C001A000A00080000004100000000000002010004001502040107A00000 >>> 00620101000107A000000062000103000A010652E2964893BE000106000C00800300FF0007010000 >>> 001707001A0002308F00013D8C00003B7A0110188C0002188B00037A00207A08000A000000000000 >>> 0000000005001200040600000C01000000068003000380030109000800000004040408040B004101 >>> 00010000000000000300090001000C0009000000000184000C000A00090000000007010017000F00 >>> 01000000000004000AFF >>> Wrapped command --> >>> 84E80000F7C481F78200F7010010DECAFFED01020400010652E29648933F >>> 02001F0010001F000A00150012000C001A000A000800000041000000000000020100040015020401 >>> 07A0000000620101000107A000000062000103000A010652E2964893BE000106000C00800300FF00 >>> 07010000001707001A0002308F00013D8C00003B7A0110188C0002188B00037A00207A08000A0000 >>> 000000000000000005001200040600000C0100000006800300038003010900080000000404040804 >>> 0B00410100010000000000000300090001000C0009000000000184000C000A000900000000070100 >>> 17000F0001000000000004000AFF999F4F9B7C9505D2 >>> Response <-- 6436 >>> load_applet() returns 0x80206436 (Unknown ISO7816 error: 0x6436)* >>> * >>> *Im not sure what is going wrong with it. Is it the parameters I did >>> or didn't put in? I did not put any parameters to install because I >>> would have thought GPShell would pick it up as it says on the readme >>> file.* >>> *I just need to deploy properly with this smart card. Thank you in >>> advance!* >>> *Han >>> >>> ------------------------------------------------------------------------------ >>> Virtualization is moving to the mainstream and overtaking >>> non-virtualized >>> environment for deploying applications. Does it make network security >>> easier or more difficult to achieve? Read this whitepaper to separate the >>> two and get a better understanding. >>> >>> http://p.sf.net/sfu/hp-phase2-d2d >>> >>> _______________________________________________ >>> Globalplatform-users mailing list >>> >>> Glo...@li... <mailto:Glo...@li...> >>> >>> https://lists.sourceforge.net/lists/listinfo/globalplatform-users >>> >> >> ------------------------------------------------------------------------------ >> Virtualization is moving to the mainstream and overtaking non-virtualized >> environment for deploying applications. Does it make network security >> easier or more difficult to achieve? Read this whitepaper to separate >> the >> two and get a better understanding. >> http://p.sf.net/sfu/hp-phase2-d2d >> _______________________________________________ >> Globalplatform-users mailing list >> Glo...@li... >> https://lists.sourceforge.net/lists/listinfo/globalplatform-users > |
