From pkix at inbox.lv Tue Sep 2 09:57:02 2014 From: pkix at inbox.lv (Andris Berzins) Date: Tue, 02 Sep 2014 12:57:02 +0300 Subject: sniffing EMV Message-ID: <1409651822.5405946e06f10@mail.inbox.lv> An HTML attachment was scrubbed... URL: From lukash at backstep.net Mon Sep 8 18:11:22 2014 From: lukash at backstep.net (Lukas Kuzmiak) Date: Mon, 8 Sep 2014 20:11:22 +0200 Subject: sniffing hangs / too fast sim? / parsing problem? Message-ID: Hey guys, this problem has been around for ages (from my perspective) .. and I don't seem to understand if it's a SW issue or a HW issue. I start the ./simtrace .. and then insert the SIM into the phone (or vice versa), boot up the phone and start sniffing (log below). It works for a second or two and then the stuff get broken into weird parts .. I could probably fix that in apdu_split.c but the other issue is that it stops sniffing completely at that point for some reason. Any idea why that happens? Thanks! Lukas Entering main loop ATR APDU: 3b 9e 96 80 1f c7 80 31 e0 73 fe 21 1b 66 d0 01 7b 8f 0d 00 f8 PPS(Fi=9/Di=6) APDU: 00 a4 00 04 02 3f 00 61 2e APDU: 00 c0 00 00 2e 62 2c 82 02 78 21 83 02 3f 00 a5 09 80 01 71 83 04 00 00 95 d5 8a 01 05 8b 03 2f 06 02 c6 09 90 01 40 83 01 01 83 01 81 81 04 00 01 50 f2 90 00 APDU: 00 a4 08 04 02 2f e2 61 1b APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f e2 a5 03 80 01 71 8a 01 05 8b 03 2f 06 01 80 02 00 0a 90 00 APDU: 00 b0 00 00 0a 98 94 22 14 51 02 31 21 51 f0 90 00 APDU: 00 a4 00 04 02 2f 05 61 1b APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f 05 a5 03 80 01 71 8a 01 05 8b 03 2f 06 05 80 02 00 08 90 00 APDU: 00 b0 00 00 08 64 65 65 6e 66 72 ff ff 90 00 APDU: 80 10 00 00 1e ff ff ff ff 7f 9f 00 df ff 00 00 1f e2 00 00 00 83 fb 00 07 06 01 60 00 11 00 00 00 00 18 91 44 APDU: 80 12 00 00 44 d0 42 81 03 01 25 00 82 02 81 82 05 0c 53 4d 53 20 53 65 72 76 69 63 65 73 8f 0e 01 49 6e 66 6f 20 53 65 72 76 69 63 65 73 8f 0b 02 57 7c 72 74 65 72 62 75 63 68 8f 06 03 45 4d 61 69 6c 8f 04 04 46 61 78 90 00 APDU: 00 a4 00 04 02 2f 00 61 21 APDU: 00 c0 00 00 21 62 1f 82 05 42 21 00 26 02 83 02 2f 00 a5 03 80 01 71 8a 01 05 8b 03 2f 06 04 80 02 00 4c 88 01 f0 00 00 APDU: b2 01 04 26 b2 61 1e APDU: 4f 10 a0 00 00 00 87 APDU: 10 02 ff 33 ff ff 89 APDU: 01 01 01 00 50 0a 4f APDU: 32 2d 47 65 72 6d 61 APDU: 6e 79 ff ff ff ff ff APDU: ff 90 00 00 b2 02 04 APDU: 26 b2 ff ff ff ff ff -------------- next part -------------- An HTML attachment was scrubbed... URL: From lukash at backstep.net Mon Sep 8 18:27:05 2014 From: lukash at backstep.net (Lukas Kuzmiak) Date: Mon, 8 Sep 2014 20:27:05 +0200 Subject: sniffing hangs / too fast sim? / parsing problem? In-Reply-To: References: Message-ID: oh, I forgot to mention.. I still have SIMTrace v1.0 (from CCC camp when it was first time available). were there improvements I did not notice? On Mon, Sep 8, 2014 at 8:11 PM, Lukas Kuzmiak wrote: > Hey guys, > > this problem has been around for ages (from my perspective) .. and I don't > seem to understand if it's a SW issue or a HW issue. > > I start the ./simtrace .. and then insert the SIM into the phone (or vice > versa), boot up the phone and start sniffing (log below). > > It works for a second or two and then the stuff get broken into weird > parts .. I could probably fix that in apdu_split.c > > but the other issue is that it stops sniffing completely at that point for > some reason. > > Any idea why that happens? > > Thanks! > > Lukas > > Entering main loop > > ATR APDU: 3b 9e 96 80 1f c7 80 31 e0 73 fe 21 1b 66 d0 01 7b 8f 0d 00 f8 > > PPS(Fi=9/Di=6) APDU: 00 a4 00 04 02 3f 00 61 2e > > APDU: 00 c0 00 00 2e 62 2c 82 02 78 21 83 02 3f 00 a5 09 80 01 71 83 04 00 > 00 95 d5 8a 01 05 8b 03 2f 06 02 c6 09 90 01 40 83 01 01 83 01 81 81 04 00 > 01 50 f2 90 00 > > APDU: 00 a4 08 04 02 2f e2 61 1b > > APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f e2 a5 03 80 01 71 8a 01 05 > 8b 03 2f 06 01 80 02 00 0a 90 00 > > APDU: 00 b0 00 00 0a 98 94 22 14 51 02 31 21 51 f0 90 00 > > APDU: 00 a4 00 04 02 2f 05 61 1b > > APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f 05 a5 03 80 01 71 8a 01 05 > 8b 03 2f 06 05 80 02 00 08 90 00 > > APDU: 00 b0 00 00 08 64 65 65 6e 66 72 ff ff 90 00 > > APDU: 80 10 00 00 1e ff ff ff ff 7f 9f 00 df ff 00 00 1f e2 00 00 00 83 fb > 00 07 06 01 60 00 11 00 00 00 00 18 91 44 > > APDU: 80 12 00 00 44 d0 42 81 03 01 25 00 82 02 81 82 05 0c 53 4d 53 20 53 > 65 72 76 69 63 65 73 8f 0e 01 49 6e 66 6f 20 53 65 72 76 69 63 65 73 8f 0b > 02 57 7c 72 74 65 72 62 75 63 68 8f 06 03 45 4d 61 69 6c 8f 04 04 46 61 78 > 90 00 > > APDU: 00 a4 00 04 02 2f 00 61 21 > > APDU: 00 c0 00 00 21 62 1f 82 05 42 21 00 26 02 83 02 2f 00 a5 03 80 01 71 > 8a 01 05 8b 03 2f 06 04 80 02 00 4c 88 01 f0 00 00 > > APDU: b2 01 04 26 b2 61 1e > > APDU: 4f 10 a0 00 00 00 87 > > APDU: 10 02 ff 33 ff ff 89 > > APDU: 01 01 01 00 50 0a 4f > > APDU: 32 2d 47 65 72 6d 61 > > APDU: 6e 79 ff ff ff ff ff > > APDU: ff 90 00 00 b2 02 04 > > APDU: 26 b2 ff ff ff ff ff > -------------- next part -------------- An HTML attachment was scrubbed... URL: From mxu at sanjole.com Tue Sep 9 18:58:52 2014 From: mxu at sanjole.com (mxu at sanjole.com) Date: Tue, 9 Sep 2014 08:58:52 -1000 (HST) Subject: =?utf-8?Q?RE=3A_sniffing_hangs_=2F_too_fast_sim=3F_=2F_parsing_problem=3F?= In-Reply-To: References: Message-ID: <1410289132.982528888@apps.rackspace.com> The issues has been discussed before and I believe I have already fixed the problem. When I asked Dean to confirm if my last post fixed his issue, it appear he already unsubscribed from the list before he sent me the reply. See below P.S. you can get the new firmware at this link: http://lists.osmocom.org/pipermail/simtrace/2014-June/000600.html for the client software, you'll also need the changes indicated here: http://lists.osmocom.org/pipermail/simtrace/2014-January/000586.html Subject: Re: Fast SIM cards loosing bytes From: Dean Chester To: Min Xu Cc: "simtrace at lists.osmocom.org" Content-Type: multipart/alternative; boundary=001a11c2bdaaa8ae9104fedd1d85 --001a11c2bdaaa8ae9104fedd1d85 Content-Type: text/plain; charset=UTF-8 Hi Min, Sorry for the delay, i've been travelling with work and been unable to test this. I can confirm this is fixes the issues I was having earlier this year. I believe this firmware should be the default firmware on the simtrace devices. The company I work for are currently going through quality control on a java implementation of the simtrace software to complement this new firmware once this has been released I'll publish a link to it so then there is a complete solution for a user to use an improved simtrace device. Many Thanks, Dean Chester On 24 June 2014 22:26, Min Xu wrote: > Hi Dean > > I recently worked on the firmware again and believe I have fixed the > issues with the parity errors (at least for my SGS 2 and SGS 4 with ATT > 4G/LTE cards) > > Can you try the attached firmware and let me know your results? > > Thanks > > > On Mon, Mar 10, 2014 at 8:23 AM, Min Xu wrote: > ..... -----Original Message----- Date: Mon, 8 Sep 2014 20:11:22 +0200 From: Lukas Kuzmiak To: "simtrace at lists.osmocom.org" Subject: sniffing hangs / too fast sim? / parsing problem? Message-ID: Content-Type: text/plain; charset="utf-8" Hey guys, this problem has been around for ages (from my perspective) .. and I don't seem to understand if it's a SW issue or a HW issue. I start the ./simtrace .. and then insert the SIM into the phone (or vice versa), boot up the phone and start sniffing (log below). It works for a second or two and then the stuff get broken into weird parts .. I could probably fix that in apdu_split.c but the other issue is that it stops sniffing completely at that point for some reason. Any idea why that happens? Thanks! Lukas Entering main loop ATR APDU: 3b 9e 96 80 1f c7 80 31 e0 73 fe 21 1b 66 d0 01 7b 8f 0d 00 f8 PPS(Fi=9/Di=6) APDU: 00 a4 00 04 02 3f 00 61 2e APDU: 00 c0 00 00 2e 62 2c 82 02 78 21 83 02 3f 00 a5 09 80 01 71 83 04 00 00 95 d5 8a 01 05 8b 03 2f 06 02 c6 09 90 01 40 83 01 01 83 01 81 81 04 00 01 50 f2 90 00 APDU: 00 a4 08 04 02 2f e2 61 1b APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f e2 a5 03 80 01 71 8a 01 05 8b 03 2f 06 01 80 02 00 0a 90 00 APDU: 00 b0 00 00 0a 98 94 22 14 51 02 31 21 51 f0 90 00 APDU: 00 a4 00 04 02 2f 05 61 1b APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f 05 a5 03 80 01 71 8a 01 05 8b 03 2f 06 05 80 02 00 08 90 00 APDU: 00 b0 00 00 08 64 65 65 6e 66 72 ff ff 90 00 APDU: 80 10 00 00 1e ff ff ff ff 7f 9f 00 df ff 00 00 1f e2 00 00 00 83 fb 00 07 06 01 60 00 11 00 00 00 00 18 91 44 APDU: 80 12 00 00 44 d0 42 81 03 01 25 00 82 02 81 82 05 0c 53 4d 53 20 53 65 72 76 69 63 65 73 8f 0e 01 49 6e 66 6f 20 53 65 72 76 69 63 65 73 8f 0b 02 57 7c 72 74 65 72 62 75 63 68 8f 06 03 45 4d 61 69 6c 8f 04 04 46 61 78 90 00 APDU: 00 a4 00 04 02 2f 00 61 21 APDU: 00 c0 00 00 21 62 1f 82 05 42 21 00 26 02 83 02 2f 00 a5 03 80 01 71 8a 01 05 8b 03 2f 06 04 80 02 00 4c 88 01 f0 00 00 APDU: b2 01 04 26 b2 61 1e APDU: 4f 10 a0 00 00 00 87 APDU: 10 02 ff 33 ff ff 89 APDU: 01 01 01 00 50 0a 4f APDU: 32 2d 47 65 72 6d 61 APDU: 6e 79 ff ff ff ff ff APDU: ff 90 00 00 b2 02 04 APDU: 26 b2 ff ff ff ff ff -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 2 Date: Mon, 8 Sep 2014 20:27:05 +0200 From: Lukas Kuzmiak To: "simtrace at lists.osmocom.org" Subject: Re: sniffing hangs / too fast sim? / parsing problem? Message-ID: Content-Type: text/plain; charset="utf-8" oh, I forgot to mention.. I still have SIMTrace v1.0 (from CCC camp when it was first time available). were there improvements I did not notice? On Mon, Sep 8, 2014 at 8:11 PM, Lukas Kuzmiak wrote: > Hey guys, > > this problem has been around for ages (from my perspective) .. and I don't > seem to understand if it's a SW issue or a HW issue. > > I start the ./simtrace .. and then insert the SIM into the phone (or vice > versa), boot up the phone and start sniffing (log below). > > It works for a second or two and then the stuff get broken into weird > parts .. I could probably fix that in apdu_split.c > > but the other issue is that it stops sniffing completely at that point for > some reason. > > Any idea why that happens? > > Thanks! > > Lukas > > Entering main loop > > ATR APDU: 3b 9e 96 80 1f c7 80 31 e0 73 fe 21 1b 66 d0 01 7b 8f 0d 00 f8 > > PPS(Fi=9/Di=6) APDU: 00 a4 00 04 02 3f 00 61 2e > > APDU: 00 c0 00 00 2e 62 2c 82 02 78 21 83 02 3f 00 a5 09 80 01 71 83 04 00 > 00 95 d5 8a 01 05 8b 03 2f 06 02 c6 09 90 01 40 83 01 01 83 01 81 81 04 00 > 01 50 f2 90 00 > > APDU: 00 a4 08 04 02 2f e2 61 1b > > APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f e2 a5 03 80 01 71 8a 01 05 > 8b 03 2f 06 01 80 02 00 0a 90 00 > > APDU: 00 b0 00 00 0a 98 94 22 14 51 02 31 21 51 f0 90 00 > > APDU: 00 a4 00 04 02 2f 05 61 1b > > APDU: 00 c0 00 00 1b 62 19 82 02 41 21 83 02 2f 05 a5 03 80 01 71 8a 01 05 > 8b 03 2f 06 05 80 02 00 08 90 00 > > APDU: 00 b0 00 00 08 64 65 65 6e 66 72 ff ff 90 00 > > APDU: 80 10 00 00 1e ff ff ff ff 7f 9f 00 df ff 00 00 1f e2 00 00 00 83 fb > 00 07 06 01 60 00 11 00 00 00 00 18 91 44 > > APDU: 80 12 00 00 44 d0 42 81 03 01 25 00 82 02 81 82 05 0c 53 4d 53 20 53 > 65 72 76 69 63 65 73 8f 0e 01 49 6e 66 6f 20 53 65 72 76 69 63 65 73 8f 0b > 02 57 7c 72 74 65 72 62 75 63 68 8f 06 03 45 4d 61 69 6c 8f 04 04 46 61 78 > 90 00 > > APDU: 00 a4 00 04 02 2f 00 61 21 > > APDU: 00 c0 00 00 21 62 1f 82 05 42 21 00 26 02 83 02 2f 00 a5 03 80 01 71 > 8a 01 05 8b 03 2f 06 04 80 02 00 4c 88 01 f0 00 00 > > APDU: b2 01 04 26 b2 61 1e > > APDU: 4f 10 a0 00 00 00 87 > > APDU: 10 02 ff 33 ff ff 89 > > APDU: 01 01 01 00 50 0a 4f > > APDU: 32 2d 47 65 72 6d 61 > > APDU: 6e 79 ff ff ff ff ff > > APDU: ff 90 00 00 b2 02 04 > > APDU: 26 b2 ff ff ff ff ff > -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ _______________________________________________ simtrace mailing list simtrace at lists.osmocom.org https://lists.osmocom.org/mailman/listinfo/simtrace End of simtrace Digest, Vol 39, Issue 2 ***************************************