A Rust implementation of the GlobalPlatform Card Specification for smart card management.
This crate provides functionality for managing smart cards that implement the GlobalPlatform specification, including secure channel establishment, applet installation, and package loading.
The main entry point is the GlobalPlatform struct, which provides high-level methods
for common card management operations.
- Card manager selection
- SCP02 secure channel establishment
- Package loading
- Applet installation
- Application/package deletion
- Status listing
use nexum_apdu_core::prelude::*;
use nexum_apdu_globalplatform::GlobalPlatform;
use nexum_apdu_transport_pcsc::{PcscDeviceManager, PcscConfig};
fn main() -> Result<(), Error> {
// Connect to a card
let manager = PcscDeviceManager::new()?;
let readers = manager.list_readers()?;
let reader = readers.iter().find(|r| r.has_card()).unwrap();
let transport = manager.open_reader(reader.name())?;
let executor = CardExecutor::new_with_defaults(transport);
// Create GlobalPlatform instance
let mut gp = GlobalPlatform::new(executor);
// Select the Card Manager
gp.select_card_manager()?;
// Open secure channel
gp.open_secure_channel()?;
// List applications
let response = gp.get_applications_status()?;
println!("Applications: {:?}", response);
// Delete a package
let package_aid = hex::decode("A0000000030000")?;
gp.delete_object_and_related(&package_aid)?;
// Load a CAP file
gp.load_cap_file("path/to/package.cap", Some(Box::new(|current, total| {
println!("Loading block {}/{}", current, total);
Ok(())
})))?;
// Install an applet
let package_aid = hex::decode("A0000000030000")?;
let applet_aid = hex::decode("A000000003000001")?;
let instance_aid = hex::decode("A000000003000001")?;
gp.install_for_install_and_make_selectable(
&package_aid, &applet_aid, &instance_aid, &[]
)?;
Ok(())
}This crate works seamlessly with the nexum-apdu-core prelude, allowing for cleaner code:
use nexum_apdu_core::prelude::*;
use nexum_apdu_globalplatform::{GlobalPlatform, KeySet, KeySetVersion};
use nexum_apdu_transport_pcsc::PcscDeviceManager;
fn main() -> Result<(), Error> {
// Set up transport and executor
let manager = PcscDeviceManager::new()?;
let readers = manager.list_readers()?;
let reader = readers.iter().find(|r| r.has_card()).unwrap();
let transport = manager.open_reader(reader.name())?;
let executor = CardExecutor::new_with_defaults(transport);
// Create GlobalPlatform with default keys
let mut gp = GlobalPlatform::new(executor);
// Start session and manage card
gp.select_card_manager()?;
gp.open_secure_channel()?;
// List installed applications
let apps = gp.get_applications_status()?;
println!("Installed applications:");
for app in apps {
println!(" AID: {}", hex::encode_upper(&app.aid));
println!(" Lifecycle: {}", app.lifecycle_state);
println!(" Privileges: {:?}", app.privileges);
}
Ok(())
}- GlobalPlatform Card Specification 2.1.1
- Secure Channel Protocol 02 (SCP02)
This implementation is based on the GlobalPlatform Card Specification and draws inspiration from:
Licensed under the AGPL License or http://www.gnu.org/licenses/agpl-3.0.html.
Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in these crates by you shall be licensed as above, without any additional terms or conditions.