Forum Stats

  • 3,816,111 Users
  • 2,259,142 Discussions
  • 7,893,390 Comments

Discussions

Categories

pre-personalization JCOP3

59987095-691a-4f4b-bcd7-773b62fb6d28
59987095-691a-4f4b-bcd7-773b62fb6d28 Member Posts: 1
edited Dec 5, 2019 6:47AM in Java Card

i want to pre-personalization JCOP3 SECID P60 but always there is error in boot command

  1. #---------------------------
  2. #
  3. #----Pre-personalization script----
  4. #
  5. #Script folder can be set using /set-var shell command (e.g. /set-var path c:/JCShellScripts).
  6. #The JCShell always searches the current directory for script files.
  7. #To execute a script, just type the name of the file (without extension) in the JCShell command line.
  8. #---------------------------
  11. #-------VARIABLES-----------
  13. /set-var Kt                 __INSERT_YOUR_TRANSPORT_KEY__
  14. /set-var chanel             0
  15. /set-var OK_resp            9000
  17. #Card manager lifecycle
  18. /set-var CM_LIFECYCLE_size        02
  19. /set-var CM_OP_READY          FE01
  20. /set-var CM_INITILIZED          F807
  21. /set-var CM_SECURED                  F00F
  22. /set-var CM_CARD_LOCKED          807F
  23. /set-var CM_TERMINATED          00FF
  25. /set-var CM_LIFECYCLE          ${CM_OP_READY}
  27. #Card manager default keys:
  28. /set-var DES_key_size          10
  29. /set-var DES_key_keyset          FF
  30. /set-var DES_keyset_size     01
  31. /set-var DES_K1           0123456789ABCDEF0123456789ABCDEF
  32. /set-var DES_K2           0123456789ABCDEF0123456789ABCDEF
  33. /set-var DES_K3           0123456789ABCDEF0123456789ABCDEF
  35. #size of GPIN_size is 01, size of GPIN_format is 01 and sizes used in functions without pre-defined constants
  36. /set-var GPIN                 3132333435
  37. /set-var GPIN_size             05
  38. /set-var GPIN_format           01
  40. #-------COMANDS-------------
  41. /set-var BOOT                   00F00000
  42. /set-var PROTECT                00100000
  43. /set-var FUSE                   00000000
  44. /set-var AUTH                   00880000
  45. /set-var ADMINEXEC              00200000
  46. /set-var READ                   B0
  47. /set-var WRITE                  D6
  49. #-------ADRESSES------------
  50. #     From: 188730_JCOPV2_4_1R3_admi.pdf
  51. /set-var A2_addr                C0
  53. /set-var CM_Lifecycle_addr      029A
  54. /set-var DES_K1_addr            0305
  55. /set-var DES_K2_addr            0321
  56. /set-var DES_K3_addr            033D
  58. /set-var DES_K1_type_addr       0301
  59. /set-var DES_K2_type_addr       031D
  60. /set-var DES_K3_type_addr       0339
  62. /set-var GPIN_addr              0412
  63. /set-var GPIN_size_addr         0407
  64. /set-var GPIN_format_addr       0409
  65. #==============================
  67. #connect to card
  68. #===============
  69. /terminal
  70. /atr
  71. #select root applet with Transport key (Kt), and chanel 0
  72. /select ${Kt} ${chanel}
  74. #boot applet
  75. #===========
  76. /echo BOOT ROOT APPLET:
  77. /send ${BOOT}
  79. #setup CM lifecycle
  80. /echo setup CM lifecycle
  81. /send "${A2_addr}${WRITE}${CM_Lifecycle_addr} ${CM_LIFECYCLE_size} ${CM_LIFECYCLE}"
  82. #check it
  83. /send "${A2_addr}${READ}${CM_Lifecycle_addr}${CM_LIFECYCLE_size}"
  84. /set-var chk ${CM_LIFECYCLE}${OK_resp}
  85. if ${response} != ${chk}
  86.    throw "ERROR: CM_LIFECYCLE not set"
  87. end
  89. #setup DES keys SET UP DES KEYS: 10.4.2
  90. #======================================
  91. /echo SETUP DES KEY:
  92. /send "${A2_addr}${WRITE}${DES_K1_addr} ${DES_key_size} ${DES_K1}"
  93. /send "${A2_addr}${WRITE}${DES_K2_addr} ${DES_key_size} ${DES_K2}"
  94. /send "${A2_addr}${WRITE}${DES_K3_addr} ${DES_key_size} ${DES_K3}"
  95. #
  96. #check it:
  97. #
  98. /echo CHECK DES KEYS:
  99. /send  ${A2_addr}${READ}${DES_K1_addr}${DES_key_size}
  100. /set-var chk ${DES_K1}${OK_resp}
  101. if ${response} != ${chk}
  102.    throw "ERROR: DES_K1 not equal"
  103. end
  104. /send  ${A2_addr}${READ}${DES_K2_addr}${DES_key_size}
  105. /set-var chk ${DES_K2}${OK_resp}
  106. if ${response} != ${chk}
  107.    throw "ERROR: DES_K2 not equal"
  108. end
  109. /send  ${A2_addr}${READ}${DES_K3_addr}${DES_key_size}
  110. /set-var chk ${DES_K3}${OK_resp}
  111. if ${response} != ${chk}
  112.    throw "ERROR: DES_K3 not equal"
  113. end
  115. #set key type
  116. #============
  117. /echo SET KEY TYPE = ${DES_key_keyset}:
  118. /send "${A2_addr}${WRITE}${DES_K1_type_addr}${DES_keyset_size}${DES_key_keyset}"
  119. /send "${A2_addr}${WRITE}${DES_K2_type_addr}${DES_keyset_size}${DES_key_keyset}"
  120. /send "${A2_addr}${WRITE}${DES_K3_type_addr}${DES_keyset_size}${DES_key_keyset}"
  122. #check it:
  123. #=========
  124. /echo CHECK KEY TYPE:
  125. /send  ${A2_addr}${READ}${DES_K1_type_addr}${DES_keyset_size}
  126. /set-var chk ${DES_key_keyset}${OK_resp}
  127. if ${response} != ${chk}
  128.    throw "ERROR: DES_K1_keyset not equal"
  129. end
  130. /send ${A2_addr}${READ}${DES_K2_type_addr}${DES_keyset_size}
  131. if ${response} != ${chk}
  132.    throw "ERROR: DES_K2_keyset not equal"
  133. end
  134. /send ${A2_addr}${READ}${DES_K3_type_addr}${DES_keyset_size}
  135. if ${response} != ${chk}
  136.    throw "ERROR: DES_K3_keyset not equal"
  137. end
  139. #set pin 12345 -(hex)->31 32 33 34 35
  140. #====================================
  141. /echo SETUP GLOBAL PIN (12345:5:ASCII):
  142. /send "${A2_addr}${WRITE}${GPIN_addr} ${GPIN_size} ${GPIN}"
  143. #set pin size 5 byte
  144. /send "${A2_addr}${WRITE}${GPIN_size_addr} 01 ${GPIN_size}"
  145. #set pin format ASCII
  146. /send "${A2_addr}${WRITE}${GPIN_format_addr} 01 ${GPIN_format}"
  147. #check set pin:
  148. /send "${A2_addr}${READ}${GPIN_addr} ${GPIN_size}"
  149. /set-var chk ${GPIN}${OK_resp}
  150. if ${response} != ${chk}
  151.    throw "ERROR: GPIN not equal"
  152. end
  153. #pin size:
  154. /send "${A2_addr}${READ}${GPIN_size_addr} 01"
  155. /set-var chk ${GPIN_size}${OK_resp}
  156. if ${response} != ${chk}
  157.    throw "ERROR: GPIN_size not equal"
  158. end
  159. #pin format:
  160. /send "${A2_addr}${READ}${GPIN_format_addr} 01"
  161. /set-var chk ${GPIN_format}${OK_resp}
  162. if ${response} != ${chk}
  163.    throw "ERROR: GPIN_format not equal"
  164. end
  166. #need to send protect
  167. /echo PROTECT
  168. /send ${PROTECT}
  169. if ${response} != '9000'
  170.      throw "ERROR IN PROTECT:" ${last.error} "Card can`t be fuse..."
  171. end
  173. #fuse:
  174. #
  175. /echo FUSE STEP:
  176. /send ${FUSE}
  177. if ${response} != '9000'
  178. throw "ERROR in FUSE" ${last.error}
  179. #end
  180. /clos
· Share on TwitterShare on Facebook