Oddity with 7816 change_reference_data
Open, NormalPublic
Actions

Assigned To

None

Authored By

	• werner
	Thu, Oct 2, 2:54 PM

Description

The way reference data (ie. a PIN) is changed w/o a pinpad is by concatenating the old and the new PIN and pass this to CHANGE_REFERENCE_DATA (0x24). Here is a funny effect of this assuming a fresh card:

You enter "123456789" as the old AdminPIN and you enter for the new Admin PIN "11223344". The result is that the Admin PIN is changed to "911223344". This is because the card implicitly knows the length of the old PIN and considers the "9" to be the first digit of the new PIN.

Thus we should do a VERIFY with the old PIN right before the CHNAGE_REFERENCE_DATA.

Revisions and Commits

rG GnuPG
	rGf3b70a9352ae scd: Fix an oddity in changing the PIN.

Event Timeline

• werner triaged this task as Normal priority.Thu, Oct 2, 2:54 PM

• werner created this task.

• werner created this object with edit policy "Contributor (Project)".

• werner moved this task from Backlog to WIP on the gnupg26 board.Thu, Oct 2, 3:11 PM

• werner added a commit: rGf3b70a9352ae: scd: Fix an oddity in changing the PIN..Thu, Oct 2, 3:11 PM

Oddity with 7816 change_reference_dataOpen, NormalPublicActions

Description

Revisions and Commits

Event Timeline

Oddity with 7816 change_reference_data
Open, NormalPublic
Actions