From samuel.weinbeck at gmail.com Thu Nov 8 16:34:46 2012 From: samuel.weinbeck at gmail.com (Samuel Weinbeck) Date: Thu, 8 Nov 2012 08:34:46 -0800 Subject: Modifying simtrace firmware Message-ID: Hello, I am interested in modifying the firmware of the simtrace device to perform modifications on the data sent back to the phone. Is there any documentation on how this can be done? I could not find any on the website. I looked at the source a little bit but I am hoping someone here can give me a jump-start on the best way to do this. Thanks, Sam W. From 246tnt at gmail.com Thu Nov 8 16:37:34 2012 From: 246tnt at gmail.com (Sylvain Munaut) Date: Thu, 8 Nov 2012 17:37:34 +0100 Subject: Modifying simtrace firmware In-Reply-To: References: Message-ID: Hi, > I am interested in modifying the firmware of the simtrace device to > perform modifications on the data sent back to the phone. Is there any > documentation on how this can be done? I could not find any on the > website. I looked at the source a little bit but I am hoping someone > here can give me a jump-start on the best way to do this. The current simtrace fw is passive listener only AFAIK. If you want to do MITM you pretty much need an entire new firmware mode, so feed free to design it like you want. Cheers, Sylvain From holger at freyther.de Fri Nov 9 07:47:47 2012 From: holger at freyther.de (Holger Hans Peter Freyther) Date: Fri, 9 Nov 2012 08:47:47 +0100 Subject: Modifying simtrace firmware In-Reply-To: References: Message-ID: <20121109074747.GA13395@xiaoyu.lan> On Thu, Nov 08, 2012 at 08:34:46AM -0800, Samuel Weinbeck wrote: > Hello, > > I am interested in modifying the firmware of the simtrace device to > perform modifications on the data sent back to the phone. Is there any > documentation on how this can be done? I could not find any on the > website. I looked at the source a little bit but I am hoping someone > here can give me a jump-start on the best way to do this. Hi, general information about building and flashing can be found in Chapter 6 of the manual[1]. For manipulation you should operate the bus switch in a way that SIM and SAM, and Phone and SAM are not directly connected. This bus switch configuration is mentioned here[2] It would be nice if you have the time to implement the MITM mode. Please feel free to continue asking technical questions. holger [1] http://bb.osmocom.org/trac/raw-attachment/wiki/SIMtrace/usermanual.pdf [2] http://bb.osmocom.org/trac/wiki/SIMtrace/Hardware#Modi From samuel.weinbeck at gmail.com Fri Nov 9 23:54:13 2012 From: samuel.weinbeck at gmail.com (Samuel Weinbeck) Date: Fri, 9 Nov 2012 15:54:13 -0800 Subject: Serial console Message-ID: What are the correct settings to access the debug terminal on the SIMtrace hardware? I cannot find this documented on the website. From holger at freyther.de Sat Nov 10 07:56:12 2012 From: holger at freyther.de (Holger Hans Peter Freyther) Date: Sat, 10 Nov 2012 08:56:12 +0100 Subject: Serial console In-Reply-To: References: Message-ID: <20121110075612.GA32325@xiaoyu.lan> On Fri, Nov 09, 2012 at 03:54:13PM -0800, Samuel Weinbeck wrote: > What are the correct settings to access the debug terminal on the > SIMtrace hardware? I cannot find this documented on the website. 115200 8n1 no flow control. Where did you search for that information? holger > From samuel.weinbeck at gmail.com Mon Nov 12 16:40:59 2012 From: samuel.weinbeck at gmail.com (Samuel Weinbeck) Date: Mon, 12 Nov 2012 08:40:59 -0800 Subject: Serial console In-Reply-To: <20121110075612.GA32325@xiaoyu.lan> References: <20121110075612.GA32325@xiaoyu.lan> Message-ID: I searched http://bb.osmocom.org/trac/wiki/SIMtrace/Hardware for the information. I tried 115200 8n1 with no control flow but it looks like the debug console is broken. Hitting enter just sends me partial strings. Pressing '2' does toggle the green LED though. Behavior is same with screen and gtkterm. SW On Fri, Nov 9, 2012 at 11:56 PM, Holger Hans Peter Freyther wrote: > On Fri, Nov 09, 2012 at 03:54:13PM -0800, Samuel Weinbeck wrote: >> What are the correct settings to access the debug terminal on the >> SIMtrace hardware? I cannot find this documented on the website. > > 115200 8n1 no flow control. Where did you search for that information? > > holger >> From holger at freyther.de Mon Nov 12 18:44:50 2012 From: holger at freyther.de (Holger Hans Peter Freyther) Date: Mon, 12 Nov 2012 19:44:50 +0100 Subject: Serial console In-Reply-To: References: <20121110075612.GA32325@xiaoyu.lan> Message-ID: <20121112184450.GK31742@xiaoyu.lan> On Mon, Nov 12, 2012 at 08:40:59AM -0800, Samuel Weinbeck wrote: > I tried 115200 8n1 with no control flow but it looks like the debug > console is broken. Hitting enter just sends me partial strings. > Pressing '2' does toggle the green LED though. Behavior is same with > screen and gtkterm. when you press the reset button you should be able see the copyright header, version and where the firmware was built. Which serial cable do you use? holger From samuel.weinbeck at gmail.com Mon Nov 12 18:54:39 2012 From: samuel.weinbeck at gmail.com (Samuel Weinbeck) Date: Mon, 12 Nov 2012 10:54:39 -0800 Subject: Serial console In-Reply-To: <20121112184450.GK31742@xiaoyu.lan> References: <20121110075612.GA32325@xiaoyu.lan> <20121112184450.GK31742@xiaoyu.lan> Message-ID: Nevermind, it was a faulty USB port! Sorry. On Mon, Nov 12, 2012 at 10:44 AM, Holger Hans Peter Freyther wrote: > On Mon, Nov 12, 2012 at 08:40:59AM -0800, Samuel Weinbeck wrote: >> I tried 115200 8n1 with no control flow but it looks like the debug >> console is broken. Hitting enter just sends me partial strings. >> Pressing '2' does toggle the green LED though. Behavior is same with >> screen and gtkterm. > > when you press the reset button you should be able see the copyright > header, version and where the firmware was built. Which serial cable > do you use? > > holger From roger.jardi at urv.cat Tue Nov 13 16:45:40 2012 From: roger.jardi at urv.cat (=?iso-8859-1?Q?=22Roger_Jardi_Ced=F3=22?=) Date: Tue, 13 Nov 2012 17:45:40 +0100 Subject: T=0 and T=1 sniffer Message-ID: Dear all, I'am new in this mailing list.? I'am a PhD. student at the University Rovira i Virgili studying smart cards (SC). I would like to log?transmitted?apdus between reader and SC (like credit card, ID card, sim, etc). I've recently bought a cheap sniffer (season interface) but I have problems with it, I lose data sniffing any smart card type (iso-7816). I'm asking if your device (v1.1) is valid for this purpose. Note that v2 would be compatible with credit card sized smart cards (ID-1 and ID-000 smart card slots (with presence detection): so to be able to also sniff credit card sized smart cards). However, I've read too that v1.1 is capable to read smart card with both modes (T=0 and T=1) with proper accessories (http://shop.sysmocom.de/products/fullsize-sim-fpc and http://shop.sysmocom.de/products/sim-adapter). It is possible? With this device, I will log any smart card type? Roger Jard? Personal de Suport a la Recerca Grup de recerca CRISES Departament d'Enginyeria Inform?tica i Matem?tiques Universitat Rovira i Virgili Despatx 132? Av. Pa?sos Catalans 26 43007 TARRAGONA Tel. +34 977 55 82 70 -------------- next part -------------- An HTML attachment was scrubbed... URL: From ml at mail.tsaitgaist.info Tue Nov 13 20:35:30 2012 From: ml at mail.tsaitgaist.info (Kevin Redon) Date: Tue, 13 Nov 2012 21:35:30 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: References: Message-ID: <1352838368-sup-6304@dennou> Hi, Excerpts from Roger Jardi Ced?'s message of Tue Nov 13 17:45:40 +0100 2012: > Dear all, > > I'am new in this mailing list.? > > I'am a PhD. student at the University Rovira i Virgili studying smart cards (SC). I would like to log?transmitted?apdus between reader and SC (like credit card, ID card, sim, etc). > > I've recently bought a cheap sniffer (season interface) but I have problems with it, I lose data sniffing any smart card type (iso-7816). > > I'm asking if your device (v1.1) is valid for this purpose. Note that v2 would be compatible with credit card sized smart cards (ID-1 and ID-000 smart card slots (with presence detection): so to be able to also sniff credit card sized smart cards). SIMtrace v2 has no release date and is not currently being developed on. Thus stay with the current version (v1.2). > However, I've read too that v1.1 is capable to read smart card with both modes (T=0 and T=1) with proper accessories (http://shop.sysmocom.de/products/fullsize-sim-fpc and http://shop.sysmocom.de/products/sim-adapter). Yes, this is what you need for credit card size connectivity. > > It is possible? With this device, I will log any smart card type? no, not any. It only supports T=0 and T=1 (with few adjustments). This protocols are defined in IEC/ISO-7816 part 3. Other Smart cards can use other protocols (I2C, SPI, ?). It may be possible to be compatible with it, but these are not supported by the software. kevin From roger.jardi at urv.cat Tue Nov 13 22:40:48 2012 From: roger.jardi at urv.cat (=?iso-8859-1?Q?=22Roger_Jardi_Ced=F3=22?=) Date: Tue, 13 Nov 2012 23:40:48 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: <1352838368-sup-6304@dennou> References: <1352838368-sup-6304@dennou> Message-ID: Hello, I'm sorry, I wanted to refer to ISO 7816-3 smart card (T=0 and T=1) like Java Card. > no, not any. It only supports T=0 and T=1 (with few adjustments). > This protocols are defined in IEC/ISO-7816 part 3. > Other Smart cards can use other protocols (I2C, SPI, ?). It may? > be possible to be compatible with it, but these are not? > supported by the software. So, what kind of adjustments are these? Could you please detail them? Thank you!!! Roger. ----- Missatge original ----- De: Kevin Redon Data: Dimarts, Novembre 13, 2012 21:42 Assumpte: Re: T=0 and T=1 sniffer Per a: simtrace > Hi, > > Excerpts from Roger Jardi Ced?'s message of Tue Nov 13 17:45:40 > +0100 2012: > > Dear all, > > > > I'am new in this mailing list.? > > > > I'am a PhD. student at the University Rovira i Virgili > studying smart cards (SC). I would like to log?transmitted?apdus > between reader and SC (like credit card, ID card, sim, etc). > > > > I've recently bought a cheap sniffer (season interface) but I > have problems with it, I lose data sniffing any smart card type > (iso-7816). > > > > I'm asking if your device (v1.1) is valid for this purpose. > Note that v2 would be compatible with credit card sized smart > cards (ID-1 and ID-000 smart card slots (with presence > detection): so to be able to also sniff credit card sized smart > cards). > SIMtrace v2 has no release date and is not currently being > developed on. Thus stay with the current version (v1.2). > > > However, I've read too that v1.1 is capable to read smart card > with both modes (T=0 and T=1) with proper accessories > (http://shop.sysmocom.de/products/fullsize-sim-fpc and > http://shop.sysmocom.de/products/sim-adapter). > > Yes, this is what you need for credit card size connectivity. > > > > > It is possible? With this device, I will log any smart card type? > > no, not any. It only supports T=0 and T=1 (with few adjustments). > This protocols are defined in IEC/ISO-7816 part 3. > Other Smart cards can use other protocols (I2C, SPI, ?). It may > be possible to be compatible with it, but these are not > supported by the software. > > kevin > Roger Jard? Personal de Suport a la Recerca Grup de recerca CRISES Departament d'Enginyeria Inform?tica i Matem?tiques Universitat Rovira i Virgili Despatx 132 Av. Pa?sos Catalans 26 43007 TARRAGONA Tel. +34 977 55 82 70 -------------- next part -------------- An HTML attachment was scrubbed... URL: From ml at mail.tsaitgaist.info Wed Nov 14 09:19:50 2012 From: ml at mail.tsaitgaist.info (Kevin Redon) Date: Wed, 14 Nov 2012 10:19:50 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: References: <1352838368-sup-6304@dennou> Message-ID: <1352884349-sup-3464@dennou> Hi, Excerpts from Roger Jardi Ced?'s message of Tue Nov 13 23:40:48 +0100 2012: > Hello, > > I'm sorry, I wanted to refer to ISO 7816-3 smart card (T=0 and T=1) like Java Card. > > > no, not any. It only supports T=0 and T=1 (with few adjustments). > > This protocols are defined in IEC/ISO-7816 part 3. > > Other Smart cards can use other protocols (I2C, SPI, ?). It may? > > be possible to be compatible with it, but these are not? > > supported by the software. > > So, what kind of adjustments are these? Could you please detail them? I don't know exactly, as I never tested. The hardware is fully compatible. T=0 and T=1 are quite similar, and I don't know if any adjustment is required on the firmware. Maybe the firmware only needs to tell the micro-controller to switch to T=1, and then it works flawlessly. Harald Welte would be able to answer this question in more details, but he is not online before next week. Does your smart card not support T=0, or is the communication you want to sniff using T=1? AFAIK T=0 is the most used and supported protocol. T=1 is mainly if you want to have "high speed" communication. kevin From roger.jardi at urv.cat Wed Nov 14 10:59:30 2012 From: roger.jardi at urv.cat (=?iso-8859-1?Q?=22Roger_Jardi_Ced=F3=22?=) Date: Wed, 14 Nov 2012 11:59:30 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: <1352884349-sup-3464@dennou> References: <1352838368-sup-6304@dennou> <1352884349-sup-3464@dennou> Message-ID: Hi, > Does your smart card not support T=0, or is the communication? > you want to sniff using T=1? > AFAIK T=0 is the most used and supported protocol. T=1 is mainly? > if you want to have "high speed" communication. I'm interested on both modes. I've SC working in T=0 and other in T=1. On my development environment is common the use of T=1. I hope that Harald can solve that...I'm strong interested. Thank you very much. ----- Missatge original ----- De: Kevin Redon Data: Dimecres, Novembre 14, 2012 10:24 Assumpte: Re: T=0 and T=1 sniffer Per a: simtrace > Hi, > > Excerpts from Roger Jardi Ced?'s message of Tue Nov 13 23:40:48 > +0100 2012: > > Hello, > > > > I'm sorry, I wanted to refer to ISO 7816-3 smart card (T=0 and > T=1) like Java Card. > > > > > no, not any. It only supports T=0 and T=1 (with few adjustments). > > > This protocols are defined in IEC/ISO-7816 part 3. > > > Other Smart cards can use other protocols (I2C, SPI, ?). It may? > > > be possible to be compatible with it, but these are not? > > > supported by the software. > > > > So, what kind of adjustments are these? Could you please > detail them? > > I don't know exactly, as I never tested. > The hardware is fully compatible. > T=0 and T=1 are quite similar, and I don't know if any > adjustment is required on the firmware. > Maybe the firmware only needs to tell the micro-controller to > switch to T=1, and then it works flawlessly. > Harald Welte would be able to answer this question in more > details, but he is not online before next week. > > Does your smart card not support T=0, or is the communication > you want to sniff using T=1? > AFAIK T=0 is the most used and supported protocol. T=1 is mainly > if you want to have "high speed" communication. > > kevin > Roger Jard? Personal de Suport a la Recerca Grup de recerca CRISES Departament d'Enginyeria Inform?tica i Matem?tiques Universitat Rovira i Virgili Despatx 132 Av. Pa?sos Catalans 26 43007 TARRAGONA Tel. +34 977 55 82 70 -------------- next part -------------- An HTML attachment was scrubbed... URL: From stefmalli89 at gmail.com Fri Nov 16 11:08:18 2012 From: stefmalli89 at gmail.com (Stefanos Malliaros) Date: Fri, 16 Nov 2012 13:08:18 +0200 Subject: osmo-sim-auth Message-ID: <50A61EA2.5000306@gmail.com> Good evening. I would like to ask some questions about osmo-sim-auth. First of all i have installed it and i am capable of doing 2g authentications with the parameters -r -s However i face some problems with the 3g authentication. I have checked my cards through windows and they are usim. When i run the command /./osmo-sim-auth.py -r 00000000000000000000000000000000 -a ec9320c2c2120000c8b7de2a3449f1bd /i get as response the following/ Traceback (most recent call last): File "./osmo-sim-auth.py", line 114, in handle_usim(options, rand_bin, autn_bin) File "./osmo-sim-auth.py", line 44, in handle_usim if len(ret) == 1: TypeError: object of type 'NoneType' has no len() /I tried to find where the problem is and i have found that the problem is possibly in the if statement in file USIM.py in line 296 ( /if self.coms()[2][0] in (0x9F, 0x61):/) i put before that line the following to see the value that is compared in the if /print self.coms()[2][0] /and i get as response the number 152 which in hex is 98. I also put a print 'aaaa' below the if statement to see if the print will be executed. Unfortunately the i didn't see the 'aaaa' message on the screen. Do you know what should i do or where to search to fix this problem? Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: From stefmalli89 at gmail.com Fri Nov 16 12:59:18 2012 From: stefmalli89 at gmail.com (Stefanos Malliaros) Date: Fri, 16 Nov 2012 14:59:18 +0200 Subject: osmo-sim-auth In-Reply-To: <50A61EA2.5000306@gmail.com> References: <50A61EA2.5000306@gmail.com> Message-ID: <50A638A6.4090302@gmail.com> sorry. the if that might have the problem (/if self.coms()[2][0] in (0x9F, 0x61):/) is at line 275 and not at 296 On 11/16/2012 01:08 PM, Stefanos Malliaros wrote: > Good evening. > > I would like to ask some questions about osmo-sim-auth. > First of all i have installed it and i am capable of doing 2g > authentications with the parameters -r -s > > However i face some problems with the 3g authentication. I have > checked my cards through windows and they are usim. > > When i run the command > > /./osmo-sim-auth.py -r 00000000000000000000000000000000 -a > ec9320c2c2120000c8b7de2a3449f1bd > > /i get as response the following/ > > Traceback (most recent call last): > File "./osmo-sim-auth.py", line 114, in > handle_usim(options, rand_bin, autn_bin) > File "./osmo-sim-auth.py", line 44, in handle_usim > if len(ret) == 1: > TypeError: object of type 'NoneType' has no len() > > /I tried to find where the problem is and i have found that the > problem is possibly in the if statement in file USIM.py in line 296 > ( /if self.coms()[2][0] in (0x9F, 0x61):/) > > i put before that line the following to see the value that is compared > in the if > /print self.coms()[2][0] > > /and i get as response the number 152 which in hex is 98. > > I also put a print 'aaaa' below the if statement to see if the print > will be executed. > Unfortunately the i didn't see the 'aaaa' message on the screen. > > Do you know what should i do or where to search to fix this problem? > > Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: From laforge at gnumonks.org Sun Nov 18 11:08:33 2012 From: laforge at gnumonks.org (Harald Welte) Date: Sun, 18 Nov 2012 12:08:33 +0100 Subject: osmo-sim-auth In-Reply-To: <50A61EA2.5000306@gmail.com> References: <50A61EA2.5000306@gmail.com> Message-ID: <20121118110832.GP8595@prithivi.gnumonks.org> On Fri, Nov 16, 2012 at 01:08:18PM +0200, Stefanos Malliaros wrote: > /and i get as response the number 152 which in hex is 98. 98xx is a security related parameter. Did you make sure to disable the PIN? osmo-sim-auth does not support cards with active PIN. -- - Harald Welte http://laforge.gnumonks.org/ ============================================================================ "Privacy in residential applications is a desirable marketing option." (ETSI EN 300 175-7 Ch. A6) From stefmalli89 at gmail.com Sun Nov 18 11:29:32 2012 From: stefmalli89 at gmail.com (Stefanos Malliaros) Date: Sun, 18 Nov 2012 13:29:32 +0200 Subject: osmo-sim-auth In-Reply-To: <20121118110832.GP8595@prithivi.gnumonks.org> References: <50A61EA2.5000306@gmail.com> <20121118110832.GP8595@prithivi.gnumonks.org> Message-ID: <50A8C69C.8000807@gmail.com> ???? 11/18/2012 01:08 PM, ?/? Harald Welte ??????: > On Fri, Nov 16, 2012 at 01:08:18PM +0200, Stefanos Malliaros wrote: >> /and i get as response the number 152 which in hex is 98. > 98xx is a security related parameter. Did you make sure to disable the > PIN? osmo-sim-auth does not support cards with active PIN. > yes i have disabled the pin through my mobile phone. before i disabled my pin i wasn't able to do 2G authentication. but when i disabled it i was ok with 2G authentication should i disable it using another way? From michau.benoit at gmail.com Sun Nov 18 18:32:29 2012 From: michau.benoit at gmail.com (benoit michau) Date: Sun, 18 Nov 2012 19:32:29 +0100 Subject: osmo-sim-auth In-Reply-To: <50A8C69C.8000807@gmail.com> References: <50A61EA2.5000306@gmail.com> <20121118110832.GP8595@prithivi.gnumonks.org> <50A8C69C.8000807@gmail.com> Message-ID: Hello, actually, code SW 98.XX can be an error related with 3G authentication. See TS 31.102, section 7.3.1. You can also try the authenticate() directly from python: >>> from card.USIM import USIM >>> u = USIM() >>> u.authenticate(RAND=[1,2,3,...], AUTN=[4,5,6,...],ctx='3G') Then, you can see all the APDU and card's answers in .coms attribute of the USIM: >>> u.coms 2012/11/18 Stefanos Malliaros : > ???? 11/18/2012 01:08 PM, ?/? Harald Welte ??????: > >> On Fri, Nov 16, 2012 at 01:08:18PM +0200, Stefanos Malliaros wrote: >>> >>> /and i get as response the number 152 which in hex is 98. >> >> 98xx is a security related parameter. Did you make sure to disable the >> PIN? osmo-sim-auth does not support cards with active PIN. >> > yes i have disabled the pin through my mobile phone. > before i disabled my pin i wasn't able to do 2G authentication. but when i > disabled it i was ok with 2G authentication > > should i disable it using another way? > From roger.jardi at urv.cat Mon Nov 19 11:16:07 2012 From: roger.jardi at urv.cat (=?iso-8859-1?Q?=22Roger_Jardi_Ced=F3=22?=) Date: Mon, 19 Nov 2012 12:16:07 +0100 Subject: Fwd: Re: T=0 and T=1 sniffer Message-ID: An HTML attachment was scrubbed... URL: -------------- next part -------------- An embedded message was scrubbed... From: Kevin Redon Subject: Re: T=0 and T=1 sniffer Date: Wed, 14 Nov 2012 10:19:50 +0100 Size: 4661 URL: From 246tnt at gmail.com Mon Nov 19 12:21:45 2012 From: 246tnt at gmail.com (Sylvain Munaut) Date: Mon, 19 Nov 2012 13:21:45 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: <1352884349-sup-3464@dennou> References: <1352838368-sup-6304@dennou> <1352884349-sup-3464@dennou> Message-ID: Hi, > T=0 and T=1 are quite similar, and I don't know if any adjustment is required on the firmware. > Maybe the firmware only needs to tell the micro-controller to switch to T=1, and then it works flawlessly. > Harald Welte would be able to answer this question in more details, but he is not online before next week. Mmm, although they are similar at the higer levels, T=0 and T=1 are pretty different at the 'byte' level and I'm pretty sure you'll need to adapt both the firmware and the host app (since it tries to interpret the bytes to fw entire APDU to wireshark). Cheers, Sylvain From stefmalli89 at gmail.com Mon Nov 19 13:04:17 2012 From: stefmalli89 at gmail.com (Stefanos Malliaros) Date: Mon, 19 Nov 2012 15:04:17 +0200 Subject: simtrace Digest, Vol 19, Issue 6 In-Reply-To: References: Message-ID: <50AA2E51.9060608@gmail.com> actually the error is 98 62 which is invalid mac. i have checked tha apdu and it is correct (as the 31.102 describes). the MAC as i read is produced y the f1. MAC = f1_K (SQN || RAND || AMF) i think that the SQN i import is the problem then On 11/19/2012 01:00 PM, simtrace-request at lists.osmocom.org wrote: > Send simtrace mailing list submissions to > simtrace at lists.osmocom.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://lists.osmocom.org/mailman/listinfo/simtrace > or, via email, send a message with subject or body 'help' to > simtrace-request at lists.osmocom.org > > You can reach the person managing the list at > simtrace-owner at lists.osmocom.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of simtrace digest..." > > > Today's Topics: > > 1. Re: osmo-sim-auth (Harald Welte) > 2. Re: osmo-sim-auth (Stefanos Malliaros) > 3. Re: osmo-sim-auth (benoit michau) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Sun, 18 Nov 2012 12:08:33 +0100 > From: Harald Welte > To: Stefanos Malliaros > Cc: simtrace at lists.osmocom.org > Subject: Re: osmo-sim-auth > Message-ID: <20121118110832.GP8595 at prithivi.gnumonks.org> > Content-Type: text/plain; charset=us-ascii > > On Fri, Nov 16, 2012 at 01:08:18PM +0200, Stefanos Malliaros wrote: >> /and i get as response the number 152 which in hex is 98. > 98xx is a security related parameter. Did you make sure to disable the > PIN? osmo-sim-auth does not support cards with active PIN. > -------------- next part -------------- An HTML attachment was scrubbed... URL: From laforge at gnumonks.org Tue Nov 20 07:31:02 2012 From: laforge at gnumonks.org (Harald Welte) Date: Tue, 20 Nov 2012 08:31:02 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: References: <1352838368-sup-6304@dennou> <1352884349-sup-3464@dennou> Message-ID: <20121120073102.GM8595@prithivi.gnumonks.org> Hi all, On Mon, Nov 19, 2012 at 01:21:45PM +0100, Sylvain Munaut wrote: > Mmm, although they are similar at the higer levels, T=0 and T=1 are > pretty different at the 'byte' level and I'm pretty sure you'll need > to adapt both the firmware and the host app (since it tries to > interpret the bytes to fw entire APDU to wireshark). Yes, this is true. I think I remember having started to work on T=1 support at some point in the past, but I cannot find the code anywhere. Maybe it was just an idea, after all. The hardware can definietly do it. One of the reasons it is not implemented in firmware / host software yet is simple: All SIM cards are mandated to also support T=0, and I don't think I've ever seen a phone that actually uses T=1. So there are many other tasks higher up on the priority list than the mostly "scientific" interest in T=1 support, sorry. Regards, Harald -- - Harald Welte http://laforge.gnumonks.org/ ============================================================================ "Privacy in residential applications is a desirable marketing option." (ETSI EN 300 175-7 Ch. A6) From peter at stuge.se Tue Nov 20 18:46:14 2012 From: peter at stuge.se (Peter Stuge) Date: Tue, 20 Nov 2012 19:46:14 +0100 Subject: T=0 and T=1 sniffer In-Reply-To: <20121120073102.GM8595@prithivi.gnumonks.org> References: <1352838368-sup-6304@dennou> <1352884349-sup-3464@dennou> <20121120073102.GM8595@prithivi.gnumonks.org> Message-ID: <20121120184614.23129.qmail@stuge.se> Harald Welte wrote: > there are many other tasks higher up on the priority list than the > mostly "scientific" interest in T=1 support, sorry. Of course patches from anyone who wants to implement it would be welcome. :) //Peter From roger.jardi at urv.cat Wed Nov 21 10:27:30 2012 From: roger.jardi at urv.cat (=?iso-8859-1?Q?=22Roger_Jardi_Ced=F3=22?=) Date: Wed, 21 Nov 2012 11:27:30 +0100 Subject: T=0 and T=1 sniffer Message-ID: Many thanks to all of you. My question has been solved!!!! ;) Roger Jard? Personal de Suport a la Recerca Grup de recerca CRISES Departament d'Enginyeria Inform?tica i Matem?tiques Universitat Rovira i Virgili Despatx 132 Av. Pa?sos Catalans 26 43007 TARRAGONA Tel. +34 977 55 82 70 -------------- next part -------------- An HTML attachment was scrubbed... URL: