can't init Cryptoflex 32K e-gate

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

can't init Cryptoflex 32K e-gate

butler-5
Hi,

I'm trying to use OpenSC with Cyptoflex 32K e-gate thur a PC/SC smartcard reader.
However, when I tried to init the card with pkcs15-init, it fail to create the pkcs#15 file on the card.
Did I do something wrong? Any config missed? Thanks!!!

Here are the steps I tried:

> opensc-tool -n
Cryptoflex 32K e-gate

> pkcs15-init -E
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00


> pkcs15-init -C -p pkcs15+onepin --pin 00000000 --puk 11111111
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00
pkcs15-cflex.c:559:cflex_create_pin_file: Unable to create dummy CHV file: Unsupported CLA byte in APDU
Failed to create PKCS #15 meta structure: Unsupported CLA byte in APDU


> pkcs15-init -C --so-pin 00000000 --so-puk 11111111
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00
iso7816.c:98:iso7816_check_sw: Incorrect parameters in the data field
card-flex.c:986:flex_create_file: Card returned error: Incorrect parameters in APDU
card.c:536:sc_create_file: returning with: Incorrect parameters in APDU
Failed to create PKCS #15 meta structure: Incorrect parameters in APDU

--
Regards,
Butler
_______________________________________________
opensc-user mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-user
Reply | Threaded
Open this post in threaded view
|

Re: can't init Cryptoflex 32K e-gate

butler-5
my OpenSC version is 0.9.6

On 9/29/05, Butler <[hidden email]> wrote:
Hi,

I'm trying to use OpenSC with Cyptoflex 32K e-gate thur a PC/SC smartcard reader.
However, when I tried to init the card with pkcs15-init, it fail to create the pkcs#15 file on the card.
Did I do something wrong? Any config missed? Thanks!!!

Here are the steps I tried:

> opensc-tool -n
Cryptoflex 32K e-gate

> pkcs15-init -E
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00


> pkcs15-init -C -p pkcs15+onepin --pin 00000000 --puk 11111111
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00
pkcs15-cflex.c:559:cflex_create_pin_file: Unable to create dummy CHV file: Unsupported CLA byte in APDU
Failed to create PKCS #15 meta structure: Unsupported CLA byte in APDU


> pkcs15-init -C --so-pin 00000000 --so-puk 11111111
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00
iso7816.c:98:iso7816_check_sw: Incorrect parameters in the data field
card-flex.c:986:flex_create_file: Card returned error: Incorrect parameters in APDU
card.c:536:sc_create_file: returning with: Incorrect parameters in APDU
Failed to create PKCS #15 meta structure: Incorrect parameters in APDU

--
Regards,
Butler



--
Butler
_______________________________________________
opensc-user mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-user
Reply | Threaded
Open this post in threaded view
|

Re: can't init Cryptoflex 32K e-gate

Andreas Jellinghaus-2
In reply to this post by butler-5
On Thursday 29 September 2005 06:17, Butler wrote:
> Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00

you changed the transport key? the one we print
is the one shipped by schlumberger/axalto for all
cards. I never saw anyone who changed the transport
key before.

if you enter the wrong transport key three times your
card is dead, as far as I know. oops, the log has
three times.

Andreas
_______________________________________________
opensc-user mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-user
Reply | Threaded
Open this post in threaded view
|

Re: can't init Cryptoflex 32K e-gate

butler-5
ya, it's a test card with transport key all set to 0. I tried to browse file in the card with opensc-explorer so the key is correct.

I changed the debug level of opensc and tried again, here is the result:

> ./pkcs15-init -C -p pkcs15+onepin --pin 000000 --puk 111111
Transport key (External authentication key #1) required.
Please enter key in hexadecimal notation (e.g. 00:11:22:aa:bb:cc),
or press return to accept default.

To use the default transport keys without being prompted,
specify the --use-default-transport-keys option on the
command line (or -T for short), or press Ctrl-C to abort.
Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00

card.c:691:sc_select_file: called; type=2, path=3f00
card-flex.c:629:flex_select_file: called, cached path=3f00
card.c:713:sc_select_file: returning with: 0
sec.c:157:sc_pin_cmd: called
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 13 bytes (resp. 2 bytes, sensitive):
F0 2A 00 01 08 00 00 00 00 00 00 00 00 .*...........
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=90 SW2=00)
sec.c:204:sc_pin_cmd: returning with: 0
pkcs15-lib.c:2823:sc_pkcs15init_fixup_file: sc_pkcs15init_fixup_file: user pin is CVH1
card.c:531:sc_create_file: called; type=2, path=3f005015, size=7500
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 21 bytes (resp. 2 bytes):
F0 E0 00 00 10 FF FF 1D 4C 50 15 38 FF 00 00 00 ........LP.8....
01 03 00 00 00                                  .....
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=90 SW2=00)
card.c:536:sc_create_file: returning with: 0
card.c:691:sc_select_file: called; type=2, path=3f0050150000
card-flex.c:629:flex_select_file: called, cached path=3f005015
card-flex.c:574:select_file_id: called, p1=0, path=0000
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 7 bytes (resp. 260 bytes):
C0 A4 00 00 02 00 00 .......
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=6A SW2=82)
iso7816.c:98:iso7816_check_sw: File not found
card-flex.c:593:select_file_id: Card returned error: File not found
card-flex.c:670:flex_select_file: returning with: -1201
card.c:713:sc_select_file: returning with: -1201
card.c:691:sc_select_file: called; type=2, path=3f0050150000
card-flex.c:629:flex_select_file: called, cached path=
card-flex.c:574:select_file_id: called, p1=0, path=3f00
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 7 bytes (resp. 260 bytes):
C0 A4 00 00 02 3F 00 .....?.
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=61 SW2=14)
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 5 bytes (resp. 22 bytes):
C0 C0 00 00 14 .....
card.c:249:sc_transmit_apdu: Received 20 bytes (SW1=90 SW2=00)
00 00 61 84 3F 00 38 FC 4F 44 44 01 07 00 01 03 ..a.?.8.ODD.....
02 00 88 88                                     ....
iso7816.c:591:iso7816_get_response: returning with: 20
card-flex.c:574:select_file_id: called, p1=0, path=5015
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 7 bytes (resp. 260 bytes):
C0 A4 00 00 02 50 15 .....P.
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=6E SW2=00)
iso7816.c:98:iso7816_check_sw: Class not supported
card-flex.c:593:select_file_id: Card returned error: Unsupported CLA byte in APDU
card-flex.c:652:flex_select_file: Unable to select DF: Unsupported CLA byte in APDU
card.c:713:sc_select_file: returning with: -1203
pkcs15-cflex.c:559:cflex_create_pin_file: Unable to create dummy CHV file: Unsupported CLA byte in APDU
Failed to create PKCS #15 meta structure: Unsupported CLA byte in APDU
card.c:488:sc_unlock: called
card.c:493:sc_unlock: Calling card logout function
card.c:229:sc_transmit_apdu: called
card.c:196:sc_transceive: Sending 4 bytes (resp. 2 bytes):
F0 22 07 00 ."..
card.c:249:sc_transmit_apdu: Received 0 bytes (SW1=90 SW2=00)
card-flex.c:1321:flex_logout: returning with: 0
card.c:443:sc_disconnect_card: called
card.c:458:sc_disconnect_card: returning with: 0
ctx.c:618:sc_release_context: called


On 9/29/05, Andreas Jellinghaus <[hidden email]> wrote:
On Thursday 29 September 2005 06:17, Butler wrote:
> Please enter key [2c:15:e5:26:e9:3e:8a:19]: 00:00:00:00:00:00:00:00

you changed the transport key? the one we print
is the one shipped by schlumberger/axalto for all
cards. I never saw anyone who changed the transport
key before.

if you enter the wrong transport key three times your
card is dead, as far as I know. oops, the log has
three times.

Andreas



--
Butler
_______________________________________________
opensc-user mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-user