1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
|
# Summary
GPShell (GlobalPlatform Shell) is a script interpreter which talks to a smart card. It is written on top of the GlobalPlatform library, which was developed by Karsten Ohme.
It uses smart card communication protocols ISO-7816-4 and OpenPlatform 2.0.1 and GlobalPlatform 2.1.1.
It can establish a secure channel with a smart card, load, instantiate, delete, list applets on a smart card.
__!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!__
__PLEASE OBEY THAT EVERY CARD GETS LOCKED AFTER A FEW (USUALLY 10) UNSUCCESSFUL MUTUAL AUTHENTICATIONS.
THE CONTENTS OF A LOCKED CARD CANNOT BE MANAGED ANYMORE (DELETED, INSTALLED)!!!
IF YOU EXPERIENCE SOME UNSUCCESSFUL MUTUAL AUTHENTICATION ATTEMPTS FIRST EXECUTE A SUCCESSFUL MUTUAL AUTHENTICATION WITH A KNOWN WORKING PROGRAM
TO RESET THE RETRY COUNTER BEFORE YOU PROCEED WITH GPSHELL. CHECK THE PARAMETERS FOR MUTUAL AUTHENTICATION (KEYS, SECURITY PROTOCOL) AND ASK IF ANYBODY KNOWS IF THE CARD IS SUPPORTED.__
__!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!__
# Execution
You also need at least one connection plugin, e.g. the shipped `gppcscconnectionplugin` to use PC/SC.
## Example Script Files
In the source directory of this project several script files are provided as an example. After being installed
the sample files can be found in `/usr/share/doc/gpshell<version>` or `/usr/local/share/doc/gpshell<version>` or
`~/.linuxbrew/share/doc/gpshell<version>`
## Command Line Documentation
Read the [GPShell man page](./src/gpshell.1.md) for all commands and their options.
## MacOS
For MacOS you might set:
export DYLD_LIBRARY_PATH=/opt/local/lib
so that all needed libraries are found.
# Compilation
For further detailed instructions also consult the `README.md` from the `globalplatform` sub project.
## Prerequisites
Use a suitable packet manager for your OS or install the programs and libraries manually if applicable.
* Compiler Suite:
* Linux: Termed `build-essential` in Debian based distributions (gcc, make)
* MacOS: Xcode
* Windows: Visual Studio and SDK
* [CMake 3.5.1](http://www.cmake.org/) or higher is needed
* [PC/SC Lite](https://pcsclite.apdu.fr) (only for UNIXes, Windows and MacOS is already including this)
* [zlib](http://www.zlib.net/) (MacOS should already bundle this, for Windows a pre-built version is included)
* [GlobalPlatform](https://github.com/kaoh/globalplatform)
## Unix/MacOS
On a command line type:
```
cd \path\to\globalplatform
cmake .
make
make install
```
## Windows
Launch Visual Studio Command Prompt / Developer Command Prompt / Developer PowerShell:
```
cd \path\to\globalplatform
cmake -G "NMake Makefiles"
nmake
```
## Source Packages
Execute:
make/nmake package_source
## Binary Packages
Execute:
make/nmake package
## Debug Builds
To be able to debug the library enable the debug symbols:
cmake -DDEBUG=ON
## Man Page (Only for UNIXes)
The man page is translated with [pandoc](https://pandoc.org) from markdown to groff syntax. To render a preview of the result use:
pandoc --standalone --to man gpshell.1.md | groff -man -Tascii
## Debug Output
If you experience problems a DEBUG output is helpful.
The variable `GLOBALPLATFORM_DEBUG=1` in the environment must be set. The log file can be set with `GLOBALPLATFORM_LOGFILE=<file>`. Under Windows by default `C:\Temp\GlobalPlatform.log` is chosen. The log file must be writeable for the user.
Under Unix systems if syslog is available it will be used by default.
The default log file under Unix systems is `/tmp/GlobalPlatform.log` if syslog is not available or cannot be written by the user. If you don't have access to the syslog or don't want to use it you can still set the
`GLOBALPLATFORM_LOGFILE` manually. Keep in mind that the debugging output may contain sensitive information, e.g. keys!
|
