diff options
author | tpearson <tpearson@283d02a7-25f6-0310-bc7c-ecb5cbfe19da> | 2010-03-01 18:47:14 +0000 |
---|---|---|
committer | tpearson <tpearson@283d02a7-25f6-0310-bc7c-ecb5cbfe19da> | 2010-03-01 18:47:14 +0000 |
commit | 3eaf4237194e25804f221af93c269d3d97e2809d (patch) | |
tree | cdedf3fc954b0727b0b34aa9b0b211cc18f854eb /usr/bin/smartauth.sh | |
download | smartcardauth-3eaf4237194e25804f221af93c269d3d97e2809d.tar.gz smartcardauth-3eaf4237194e25804f221af93c269d3d97e2809d.zip |
Added my SmartCard login/session lock/unlock utility
git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/applications/smartcardauth@1097604 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
Diffstat (limited to 'usr/bin/smartauth.sh')
-rw-r--r-- | usr/bin/smartauth.sh | 74 |
1 files changed, 74 insertions, 0 deletions
diff --git a/usr/bin/smartauth.sh b/usr/bin/smartauth.sh new file mode 100644 index 0000000..d0ab03a --- /dev/null +++ b/usr/bin/smartauth.sh @@ -0,0 +1,74 @@ +#!/bin/sh + +# Smart Card Authentication Helper (c) 2008 Timothy Pearson +# +# This program is free software: you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. + + +authscript="C0 84 00 00 08" +echo $authscript > authscript + +scriptor_standalone authscript | grep 'Normal processing' > challenge +perl -pi -e 's/ //g' challenge +perl -pi -e 's/:Normalprocessing.//g' challenge +perl -pi -e 's/<//g' challenge +xxd -r -p challenge challenge + +# Now DES encrypt the challenge +openssl des-ecb -in challenge -out response -K 0000000000000000 -iv 1 + +# Truncate to 6 bytes +dd if=response of=response2 bs=1 count=6 + +# Expand to standard hex listing format +xxd -g 1 response2 response +dd if=response of=response2 bs=1 count=17 skip=9 + +# Assemble the response file +response2=$(cat response2) +response1="C0 82 00 00 07 01 ${response2}" +echo $response1 > response + +# Send the response! +scriptor_standalone response > response2 + +# Get the result +dd if=response2 of=response bs=1 count=5 skip=95 +perl -pi -e 's/ //g' response +response1=$(cat response) +authokresponse="9000" +if [ "$response1" = "$authokresponse" ]; then + echo "Smart card validation successfull!" + # Get encryption key + authscript="C0 A4 00 00 02 10 01" + echo $authscript > authscript + scriptor_standalone authscript + #authscript="C0 B0 00 00 00" + authscript="" + echo $authscript > authscript + scriptor_standalone authscript > smart + mkdir smartcard + cd smartcard + echo "get 1001" | opensc-explorer + cd .. + rm smart + mv smartcard/*_1001 smart.key +else + echo "Authentication failed!" +fi + +rm authscript & +rm response & +rm response2 & +rm challenge & |