I just released a new version of pcsc-lite 1.8.22.
pcsc-lite is a Free Software implementation of the PC/SC (or WinSCard) API for Unix systems.
Changes:
1.8.22: Ludovic Rousseau
17 June 2017
SCardCancel() was broken in 1.8.21. The call was blocking.-i/--info
Since version 1.5.0 of pcsc-tools (see "New version of pcsc-tools: 1.5.0, 1.5.1, 1.5.2") it is possible to build and run pcsc_scan on Windows.
MSYS2 is a software distro and building platform for Windows
At its core is an independent rewrite of MSYS, based on modern Cygwin (POSIX compatibility layer) and MinGW-w64 with the aim of better interoperability with native Windows software. It provides a bash shell, Autotools, revision control systems and the like for building native Windows applications using MinGW-w64 toolchains.
It features a package management system to provide easy installation of packages, Pacman. It brings many powerful features such as dependency resolution and simple complete system upgrades, as well as straight-forward package building.
$ ./configure configure: loading site script /etc/config.site checking for a BSD-compatible install... /usr/bin/install -c checking whether build environment is sane... yes checking for a thread-safe mkdir -p... /usr/bin/mkdir -p checking for gawk... gawk checking whether make sets $(MAKE)... yes checking whether make supports nested variables... yes checking whether make supports nested variables... (cached) yes checking build system type... x86_64-pc-msys checking host system type... x86_64-pc-msys checking for gcc... gcc checking whether the C compiler works... yes checking for C compiler default output file name... a.exe checking for suffix of executables... .exe checking whether we are cross compiling... no checking for suffix of object files... o checking whether we are using the GNU C compiler... yes checking whether gcc accepts -g... yes checking for gcc option to accept ISO C89... none needed checking whether gcc understands -c and -o together... yes checking for style of include used by make... GNU checking dependency style of gcc... gcc3 checking for pkg-config... /usr/bin/pkg-config checking pkg-config is at least version 0.9.0... yes configure: WARNING: libpcsclite not found by pkg-config checking how to run the C preprocessor... gcc -E checking for grep that handles long lines and -e... /usr/bin/grep checking for egrep... /usr/bin/grep -E checking for ANSI C header files... yes checking for sys/types.h... yes checking for sys/stat.h... yes checking for stdlib.h... yes checking for string.h... yes checking for memory.h... yes checking for strings.h... yes checking for inttypes.h... yes checking for stdint.h... yes checking for unistd.h... yes checking winscard.h usability... yes checking winscard.h presence... yes checking for winscard.h... yes checking for SCardEstablishContext... yes checking for ANSI C header files... (cached) yes checking for unistd.h... (cached) yes checking time.h usability... yes checking time.h presence... yes checking for time.h... yes checking for string.h... (cached) yes checking stdio.h usability... yes checking stdio.h presence... yes checking for stdio.h... yes checking for stdlib.h... (cached) yes checking sys/time.h usability... yes checking sys/time.h presence... yes checking for sys/time.h... yes checking whether sys/types.h defines makedev... yes checking that generated files are newer than configure... done configure: creating ./config.status config.status: creating Makefile config.status: creating config.h config.status: executing depfiles commands
SCardEstablishContext() can be used.$ make make all-am make[1] : on entre dans le répertoire « /home/Ludovic/pcsc-tools » CC pcsc_scan-pcsc_scan.o CCLD pcsc_scan.exe make[1] : on quitte le répertoire « /home/Ludovic/pcsc-tools »
$ ./pcsc_scan.exe PC/SC device scanner V 1.5.2 (c) 2001-2017, Ludovic Rousseau Using reader plug'n play mechanism Scanning present readers... 0: Broadcom Corp Contacted SmartCard 0 1: Broadcom Corp Contactless SmartCard 0 Tue May 30 18:04:07 2017 Reader 0: Broadcom Corp Contacted SmartCard 0 Card state: Card removed, Reader 1: Broadcom Corp Contactless SmartCard 0 Card state: Card removed, Reader 2: \\?PnP?\Notification Card state:
\\?PnP?\Notification, used for reader hotplug events, has its name listed.Ctrl-C is used. On Unix the Control-C sequence is used to send a SIGINT signal to the process. On Windows I do not know an equivalent.I just released a new version of pcsc-tools, a suite of tools for PC/SC.
The main changes are for the pcsc_scan command.
Changes:
1.5.2 - 28 May 2017, Ludovic ROUSSEAU
I just released a new version of PyKCS11, a Python wrapper above the PKCS#11 API.
See PyKCS11 introduction for more details about PyKCS11.
Changes:
1.4.2 - May 2017, Ludovic Rousseau
Makefile: use a better default value for PREFIX
PyKCS11.__del__(): test that every module is accessiblegetSlotList(): add optional tokenPresent parameterC_Initialize() in ::Load() to work with some bogus PKCS#11 library (like libCryptoki2 from Safenet Luna SA HSM)PYKCS11LIB environment variableI just released a version 1.4.27 of libccid the Free Software CCID class smart card reader driver.
Changes:
1.4.27 - 21 May 2017, Ludovic Rousseau
./configure --enable-zlp
I just released a new version of pcsc-lite 1.8.21.
pcsc-lite is a Free Software implementation of the PC/SC (or WinSCard) API for Unix systems.
Changes:
1.8.21: Ludovic Rousseau
20 May 2017
SCardCancel():SCardGetStatusChange(): fix a race condition when a reader is removedSCardDisconnect(): fix status update for SCARD_UNPOWER_CARD
pcsc_stringify_error(): use Thread-local storagepcsc_stringify_error() now returns a const char *SCardControl() may return SCARD_E_INSUFFICIENT_BUFFER when pbRecvBuffer is not big enough to receive the card response.pcsc-spy: add support of Python 3I am pleased to announce that I am one of the 2017 "Google Open Source Peer Bonus winners" for my work on pcsc-lite and the CCID driver.
The latest round of Google Open Source Peer Bonus winners
Monday, March 27, 2017
Google relies on open source software throughout our systems, much of it written by non-Googlers. We’re always looking for ways to say “thank you!” so 5 years ago we started asking Googlers to nominate open source contributors outside of the company who have made significant contributions to codebases we use or think are important. We’ve recognized more than 500 developers from 30+ countries who have contributed their time and talent to over 400 open source projects since the program’s inception in 2011. Today we are pleased to announce the latest round of awardees, 52 individuals we’d like to recognize for their dedication to open source communities. The following is a list of everyone who gave us permission to thank them publicly:Congratulations to all of the awardees, past and present! Thank you for your contributions.
Name Project Name Project Philipp Hancke Adapter.js Fernando Perez Jupyter & IPython Geoff Greer Ag Michelle Noorali Kubernetes & Helm Dzmitry Shylovich Angular Prosper Otemuyiwa Laravel Hackathon Starter David Kalnischkies Apt Keith Busch Linux kernel Peter Mounce Bazel Thomas Caswell matplotlib Yuki Yugui Sonoda Bazel Tatsuhiro Tsujikawa nghttp2 Eric Fiselier benchmark Anna Henningsen Node.js Rob Stradling Certificate Transparency Charles Harris NumPy Ke He Chromium Jeff Reback pandas Daniel Micay CopperheadOS Ludovic Rousseau PCSC-Lite, CCID Nico Huber coreboot Matti Picus PyPy Kyösti Mälkki coreboot Salvatore Sanfilippo Redis Jana Moudrá Dart Ralf Gommers SciPy John Wiegley Emacs Kevin O'Connor SeaBIOS Alex Saveau FirebaseUI-Android Sam Aaron Sonic Pi Toke Hoiland-Jorgensen Flent Michael Tyson The Amazing Audio Engine Hanno Böck Fuzzing Project Rob Landley Toybox Luca Milanesio Gerrit Bin Meng U-Boot Daniel Theophanes Go programming language Ben Noordhuis V8 Josh Snyder Go programming language Fatih Arslan vim-go Brendan Tracey Go programming language Adam Treat WebKit Elias Naur Go on Mobile Chris Dumez WebKit Anthonios Partheniou Google Cloud Datalab Sean Larkin Webpack Marcus Meissner gPhoto2 Tobias Koppers Webpack Matt Butcher Helm Alexis La Goutte Wireshark dissector for QUIC
By Helen Hu, Open Source Programs Office
To continue the list of PC/SC wrappers initiated in 2010 with "PC/SC sample in different languages" I now present a new sample in Objective-C using the Apple Crypto Token Kit API.
I already proposed a sample code in Objective-C in "PCSC sample in Objective-C". This code used the asynchronous version of sendIns. The API is:
- (void)sendIns:(UInt8)ins
p1:(UInt8)p1
p2:(UInt8)p2
data:(NSData *)requestData
le:(NSNumber *)le
reply:(void (^)(NSData *replyData, UInt16 sw, NSError *error))reply;
reply block is executed when the card response is received.- (NSData *)sendIns:(UInt8)ins
p1:(UInt8)p1
p2:(UInt8)p2
data:(NSData *)requestData
le:(NSNumber *)le
sw:(UInt16 *)sw
error:(NSError * _Nullable *)error;
com.apple.security.smartcard entitlement to yes.#import <CryptoTokenKit/CryptoTokenKit.h> int main(int argc, const char * argv[]) { TKSmartCardSlotManager * mngr; mngr = [TKSmartCardSlotManager defaultManager]; // Use the first reader/slot found NSString *slotName = (NSString *)mngr.slotNames[0]; NSLog(@"slotName: %@", slotName); dispatch_semaphore_t sem = dispatch_semaphore_create(0); // connect to the slot [mngr getSlotWithName:slotName reply:^(TKSmartCardSlot *slot) { // connect to the card TKSmartCard *card = [slot makeSmartCard]; if (nil == card) { NSLog(@"No card found"); // signals end of getSlotWithName block dispatch_semaphore_signal(sem); return; } // begin a session [card beginSessionWithReply:^(BOOL success, NSError *error) { if (success) { NSData *response; UInt16 sw; NSString *newString; // explicitly set the CLA byte even if 0 is already the default value card.cla = 0x00; // send 1st APDU uint8_t aid[] = {0xA0, 0x00, 0x00, 0x00, 0x62, 0x03, 0x01, 0x0C, 0x06, 0x01}; NSData *data = [NSData dataWithBytes:aid length:sizeof aid]; response = [card sendIns:0xA4 p1:0x04 p2:0x00 data:data le:nil sw:&sw error:&error]; if (nil == response) { NSLog(@"sendIns error: %@", error); goto out; } NSLog(@"Response: %@ 0x%04X", response, sw); // send 2nd APDU response = [card sendIns:0x00 p1:0x00 p2:0x00 data:nil le:@0 sw:&sw error:&error]; if (nil == response) { NSLog(@"sendIns error: %@", error); goto out; } NSLog(@"Response: %@ 0x%04X", response, sw); newString = [[NSString alloc] initWithData:response encoding:NSASCIIStringEncoding]; NSLog(@"%@", newString); out: // end the session [card endSession]; } else { NSLog(@"Session error: %@", error); } // signals end of beginSessionWithReply block dispatch_semaphore_signal(sem); }]; }]; // wait for the asynchronous blocks to finish dispatch_semaphore_wait(sem, DISPATCH_TIME_FOREVER); return 0; }
2017-03-31 10:54:24.990581+0200 HelloWorld[19931:85555] slotName: Gemalto PC Twin Reader 2017-03-31 10:54:25.103855+0200 HelloWorld[19931:85584] Response: <> 0x9000 2017-03-31 10:54:25.115946+0200 HelloWorld[19931:85584] Response: <48656c6c 6f20776f="" 726c6421=""> 0x9000 2017-03-31 10:54:25.115993+0200 HelloWorld[19931:85584] Hello world!
[card endSession]; is called.[card beginSessionWithReply:...].[mngr getSlotWithName:...] and [card beginSessionWithReply:...] to finish using a semaphore (instead of a sleep()).sendIns: method is nice.Some Gemalto smart card readers with a specific firmware version have a problem and send bogus USB frames.
00000023 commands.c:2251:SetParameters() length: 7 bytes
00000037 -> 000000 61 07 00 00 00 00 0E 01 00 00 18 10 02 58 00 FE 00
00001776 <- 000000
00000025 commands.c:2271:SetParameters() Not enough data received: 0 bytes
--enable-zlp to explicitly enable the modification.To continue the list of PC/SC wrappers initiated in 2010 with "PC/SC sample in different languages" I now present a sample in Rust.
[package] name = "hello_world" version = "0.1.0" authors = ["Your Name <you@example.com>"] [dependencies] pcsc = "0.1"
extern crate pcsc; use pcsc::*; use std::str; fn main() { // Establish a PC/SC context. let ctx = Context::establish(Scope::User) .expect("failed to establish context"); // List available readers. let mut readers_buf = [0; 2048]; let mut readers = ctx.list_readers(&mut readers_buf) .expect("failed to list readers"); // Use the first reader. let reader = readers.next().ok_or(()) .expect("no readers are connected"); println!("Using reader: {:?}", reader); // Connect to the card. let card = ctx.connect(reader, ShareMode::Shared, PROTOCOL_ANY) .expect("failed to connect to card"); // Send an SELECT APDU command. let apdu = b"\x00\xA4\x04\x00\x0A\xA0\x00\x00\x00\x62\x03\x01\x0C\x06\x01"; let mut rapdu_buf = [0; MAX_BUFFER_SIZE]; let rapdu = card.transmit(apdu, &mut rapdu_buf) .expect("failed to transmit APDU to card"); println!("{:?}", rapdu); // Send an COMMAND APDU command. let apdu = b"\x00\x00\x00\x00"; let mut rapdu_buf = [0; MAX_BUFFER_SIZE]; let rapdu = card.transmit(apdu, &mut rapdu_buf) .expect("failed to transmit APDU to card"); println!("{:?}", rapdu); // remove the extra 2 SW bytes at the end let text = &rapdu[0 .. rapdu.len()-2]; // convert to UTF-8 (ASCII in fact) println!("{}", str::from_utf8(&text).unwrap()); }
$ cargo build
Compiling pkg-config v0.3.9
Compiling bitflags v0.7.0
Compiling pcsc-sys v0.1.0
Compiling pcsc v0.1.0
Compiling hello_world v0.1.0 (file:///Users/rousseau/Documents/sc/HelloWorld%20Rust)
Finished debug [unoptimized + debuginfo] target(s) in 3.4 secs
$ ./target/debug/hello_world Using reader: "Gemalto PC Twin Reader" [144, 0] [72, 101, 108, 108, 111, 32, 119, 111, 114, 108, 100, 33, 144, 0] Hello world!