-
-
Notifications
You must be signed in to change notification settings - Fork 212
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
VISA2 diversification is not working properly #276
Comments
I don't see difference in diversified key for next branch and the mentioned version. |
I can confirm that "visa2" is broken in GlobalPlatformPro version 325fe84. |
Can you give a working version number? |
I spent some time to investigate, to provide to you a detailed answer. I setup a card with a visa2 key and trial many last releadse versions. GPpro200123 : 🆗 ✅ From the logs, it seems the keys are not diversified, the key used are the master one. Like it skips the diversification step. Card is setup : KeyVersion=01 MasterKey=303132333435363738393A3B3C3D3E3F with "visa2" derivation. Logs :
|
OK, I just see in a documentation, this is a breaking change, where the syntax changed for this derivation kind, and the "-visa2" argument is deprecated. Using the new syntax "-key visa2:303132333435363738393A3B3C3D3E3F", it works. |
Absolutely noted. |
I have to add one more thing. I tested the other way : use the new syntax with the stable release (20.01.23). And it doesn't work. So the documentation is unmatched. It says "GPPro supports a bunch of key diversification methods out of the box. To use a master key with a key derivation function, specify the KDF before the key: -key visa2:. Then the "shorthand -visa2 option is still supported, but deprecated.". From what I can see the syntax is incompatible between versions. Stable current only understands the legacy shorthand option, and newest prerelease can only understand new key syntax.
|
Indeed. I'll remove the old options and bring this out better in docs. |
Describe the bug
VISA2 diversification is not properly working in GlobalPlatformPro 325fe84
Information about your card
As much information as you have:
Expected behavior
Properly authenticate using Gemalto Keys
Full log
Additional context
I'm sorry currently I don't have time to look at the code to check :(
The text was updated successfully, but these errors were encountered: