2019-03-20 15:46:36 +01:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								# Using the smartcard wallet
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## Requirements
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  *  A USB smartcard reader
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  *  A keycard that supports the status app
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 09:50:52 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  *  PCSCD version 4.3 running on your system **Only version 4.3 is currently supported** 
							 
						 
					
						
							
								
									
										
										
										
											2019-03-20 15:46:36 +01:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## Preparing the smartcard
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 09:50:52 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  **WARNING: FOILLOWING THESE INSTRUCTIONS WILL DESTROY THE MASTER KEY ON YOUR CARD. ONLY PROCEED IF NO FUNDS ARE ASSOCIATED WITH THESE ACCOUNTS** 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  You can use status' [keycard-cli ](https://github.com/status-im/keycard-cli ) and you should get _at least_  version 2.1.1 of their [smartcard application ](https://github.com/status-im/status-keycard/releases/download/2.2.1/keycard_v2.2.1.cap )
							 
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  You also need to make sure that the PCSC daemon is running on your system.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  Then, you can install the application to the card by typing:
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  keycard install -a keycard_v2.2.1.cap & &  keycard init
							 
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  At the end of this process, you will be provided with a PIN, a PUK and a pairing password. Write them down, you'll need them shortly.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  Start `geth`  with the `console`  command. You will notice the following warning:
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  WARN [04-09|16:58:38.898] Failed to open wallet                    url=keycard://044def09                          err="smartcard: pairing password needed"
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  Write down the URL (`keycard://044def09`  in this example). Then ask `geth`  to open the wallet:
							 
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2021-01-26 15:43:12 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  >  personal.openWallet("keycard://044def09", "pairing password")
  
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2021-01-26 15:43:12 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  The pairing password has been generated during the card initialization process.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  The process needs to be repeated once more with the PIN:
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  >  personal.openWallet("keycard://044def09", "PIN number")
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  If everything goes well, you should see your new account when typing `personal`  on the console:
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 09:50:52 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  >  personal
  
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  WARN [04-09|17:02:07.330] Smartcard wallet account derivation failed url=keycard://044def09 err="Unexpected response status Cla=0x80, Ins=0xd1, Sw=0x6985"
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  {
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    listAccounts: [],
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    listWallets: [{
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        status: "Empty, waiting for initialization",
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								        url: "keycard://044def09"
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    }],
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    ...
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  }
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 09:50:52 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  So the communication with the card is working, but there is no key associated with this wallet. Let's create it:
							 
						 
					
						
							
								
									
										
										
										
											2019-03-23 17:13:02 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  >  personal.initializeWallet("keycard://044def09")
  
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  "tilt ... impact"
							 
						 
					
						
							
								
									
										
										
										
											2019-03-23 17:13:02 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
									
										
										
										
											2019-03-21 10:54:24 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  You should get a list of words, this is your seed so write them down. Your wallet should now be initialized:
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  >  personal.listWallets
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  [{
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    accounts: [{
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        address: "0x678b7cd55c61917defb23546a41803c5bfefbc7a",
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								        url: "keycard://044d/m/44'/60'/0'/0/0"
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    }],
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    status: "Online",
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    url: "keycard://044def09"
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  }]
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  ```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  You're all set!
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-03-20 15:46:36 +01:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								## Usage
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  1.  Start `geth`  with the `console`  command
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  2.  Check the card's URL by checking `personal.listWallets` :
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  listWallets: [{
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								      status: "Online, can derive public keys",
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								      url: "keycard://a4d73015"
							 
						 
					
						
							
								
									
										
										
										
											2019-03-20 15:46:36 +01:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								  }]
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  3.  Open the wallet, you will be prompted for your pairing password, then PIN:
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								```
							 
						 
					
						
							
								
									
										
										
										
											2019-05-28 18:47:53 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								personal.openWallet("keycard://a4d73015")
							 
						 
					
						
							
								
									
										
										
										
											2019-03-20 15:46:36 +01:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								```
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  4.  Check that creation was successful by typing e.g. `personal` . Then use it like a regular wallet.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## Known issues
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-10 10:51:45 +02:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  *  Starting geth with a valid card seems to make firefox crash.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  *  PCSC version 4.4 should work, but is currently untested