Skip to content

Latest commit

 

History

History
159 lines (133 loc) · 11.4 KB

README.md

File metadata and controls

159 lines (133 loc) · 11.4 KB
Raw

KONG SiLo USB NFC Tool

Description

Node script for verifying KONG SiLos via a NFC USB reader such as the ACR-122. Learn more about SiLos at KONG Cash and KONG Land.

Environment

Tested on MacOS and Raspbian with node 17.1.0 and npm 8.1.2. The key package nfc-pcsc may be tricky to install as it requires certain dependencies. See the nfc-pcsc repo for more information.

Arguments

  • command: The command code sent to the SiLo. See possible command codes referenced below.
  • reveal: Indicates via boolean whether or not to print data and instructions required for the NFT reveal process.
  • block: The desired blockhash to include within the SiLo signature. If blank, a random number is used.
  • blockDigits:Tthe block number that corresponds to the blockhash provided; needed for reveal
  • to_addr: The desired Ethereum address to include within the SiLo signature. If blank, a random number is used.
  • pubkey: Force usage of another ECDSA P256 public key in order to validate the signature. Useful when validating a tertiaryPublicKey signature on a subsequent tap.
  • json: Indicate via boolean whether or not to print out certain SiLo values in a JSON blob. Note that under command 00 these values are missing the tertiaryPublicKey. NOTE: requires an export dir to be present in the root project directory to be created.
  • verify: Boolean, use the script in verification mode; if a corresponding JSON file exists for a SiLo in /export, this command will move the file to /verify if the device successfully generates a signature. NOTE: requires export and verify dirs to be present in the root project directory.
  • scanonce: Boolean, activate with =y, will kill script after scanning a single SiLo.
  • matchFile: Match devices listed in a file. See example-match.json for formatting. primaryPublicKeyHash is expected. name and poap are optional to show a name and render a POAP URL as QR code.
  • testMatch : Test matching a device that you don't have on hand to scan.
  • saveSig : Save the signature of the device. You must create a signatures directory.

SiLo Command Codes

The first generation SiLo's, including KONG Cash and KONG Passports, will accept the following command codes:

  • 00: Generate a signature from a 32 byte input (typically a hash comprised of a random number and recent blockhash or a user's address and recent blockhash)
  • 55: This is a special command with only a limited set of uses. It will generate a signature using the ECDSA keypair associated with tertiaryPublicKey. It first generation SiLo's it can be used a maximum of 5 times before refusing to sign additional data.
  • 56: This is a special command that will reveal the tertiaryPublicKey which is not normally shown in any of the NDEF records.

Scan Example

node src/scan.js --command=00 --block=3c2877a9a9701eb80ce3974a14e0a1ab80308c1cb9907c5a0a30f4c0945c3180

Scan Output

7:12:27 PM – ACS ACR122U PICC Interface info: card detected {
  atr: <Buffer 3b 8f 80 01 80 4f 0c a0 00 00 03 06 03 00 03 00 00 00 00 68>,
  standard: 'TAG_ISO_14443_3',
  type: 'TAG_ISO_14443_3',
  uid: '04368dfae26480'
}
7:12:27 PM – ACS ACR122U PICC Interface info: configBytes <Buffer 29 32 f8 48>
7:12:27 PM – ACS ACR122U PICC Interface info: outputRecord:
7:12:28 PM – info: externalPublicKey 'cecf98ac1ddc55d1215b4d10497e3d2a6aecf4e0ee3d14fdf8c743b4965caceb09ddd61ac5bd48a6982ab640b707a9f334606fe79fda742d6c991e7bb3a7ebf8'
7:12:28 PM – info: internalPublicKey '793dda69c0c1876755ec65fe2f3e170ac536c5f81d139add2fcf51b97c141c62343e400ccae8402a7f55372cb0363ea6e36256bc4ec567b37b3159a04e86e51e'
7:12:28 PM – info: hardwareRevisionNumber '01010101'
7:12:28 PM – info: serialNumber '0303030303030303'
7:12:28 PM – info: firmwareNumber '02020202'
7:12:28 PM – info: nxpI2cSerial '07070707070707'
7:12:28 PM – info: nxp804Serial '08080808080808080808080808080808'
7:12:28 PM – info: atecc608aSerial '012375caa68af184ee'
7:12:28 PM – info: smartContractAddress '0606060606060606060606060606060606060606'
7:12:28 PM – info: configZoneBytes '012375ca00006002a68af184ee015100c000006889a08aa089a089a089a089a089a089a000000000000000000000000000000000ffffffff00000000ffffffff000000000000000000000000000000000000000000000000fcd9000000000000310071003100310031003100310031001c0070007000700070003c003c003c00'
7:12:28 PM – info: externalPublicKeyHash '91465a1d2058d1a93c5261bd25dea32673f0feb10fc89fb01aaeb2abe8815a19'
7:12:28 PM – info: toAddress 'af42d5dff2c8398110525555b48d7f156a498680'
7:12:28 PM – info: blockNumber '3c2877a9a9701eb80ce3974a14e0a1ab80308c1cb9907c5a0a30f4c0945c3180'
7:12:28 PM – info: combinedHash '02e4f2407ae858587db2cbe0854da033b0c008efc19e6a26f059292cfdbace2a'
7:12:28 PM – ACS ACR122U PICC Interface info: crcBuffer <Buffer 14 e1>
7:12:28 PM – ACS ACR122U PICC Interface info: inputBufferWrite
7:12:29 PM – ACS ACR122U PICC Interface info: readLastIcBlockAfterWrite: <Buffer 00 00 00 00>
7:12:31 PM – ACS ACR122U PICC Interface info: read outputRecord:
7:12:32 PM – ACS ACR122U PICC Interface info: lastHash '02e4f2407ae858587db2cbe0854da033b0c008efc19e6a26f059292cfdbace2abe'
7:12:32 PM – ACS ACR122U PICC Interface info: externalSignature '0c3a3ec09d2c9720d11554a842d56aabb63efbead2d0f01adc0c530bde212436d9a2f5684bfd2c7c8ed741b341fb967d522dc4d47a60aa1d91a0484f680dc6bb'
7:12:32 PM – ACS ACR122U PICC Interface info: internalSignature '5a579c8bb6b6ae93e1339c6c58717cd160bd41f1e69ee0997d5e9faac039227dafd3c655eb48788000d6dcdde5fd42b664be2dc87e1c72a699de12418401ee3a'
7:12:32 PM – ACS ACR122U PICC Interface info: counter '00'
7:12:32 PM – ACS ACR122U PICC Interface info: verfication worked? true
7:12:32 PM – ACS ACR122U PICC Interface info: read diagnostic:
7:12:33 PM – ACS ACR122U PICC Interface info: debugBytes:  'Tag written\x00'

Reveal instructions

  • Run scan script with: node src/scan.js --command=00 --to_addr=deadbeef12997707982080F6452db15485c1c394 --reveal and substitute to_addr with your address that holds the NFT
  • Scan your passport and produce an output like below
  • Go to etherscan and submit the reveal tx: https://etherscan.io/address/0x1a8befa8c5fe2d4fb554dff70d79f679884519d9#writeContract using the revealOracle function and the inputs without ' from your scan output
  • Make sure you are sending the tx from the to_addr which holds the NFT
  • Also make sure that the tx confirms within 256 blocks (about 50mins) after blockDigits / after you started this process or it will fail
  • Once your reveal tx was successful finish your reveal by running the command:
curl --location --request POST 'https://bridge.cryptocash.dev/reveal' --header 'Content-Type: application/x-www-form-urlencoded' --data-urlencode 'tx=0xdead'

where tx is the successful reveal tx.

  • Enjoy your dope ass statue. It should now show up in the kong app when scanning or on Opensea (make sure to refresh metadata on Opensea).

Reveal Example

node src/scan.js --command=00 --block=bd09d1327be9c5bf41f08978e488d00af9af5a5953588a986bd3a3a8898d5380 --to_addr=deadbeef12997707982080F6452db15485c1c394 --blockDigits=15023561 --reveal

Reveal Output

1:54:44 PM – ACS ACR122U PICC Interface 00 00 info: card detected {
  atr: <Buffer 3b 8f 80 01 80 4f 0c a0 00 00 03 06 03 00 03 00 00 00 00 68>,
  standard: 'TAG_ISO_14443_3',
  type: 'TAG_ISO_14443_3',
  uid: '0498a0b24e6680'
}
1:54:44 PM – ACS ACR122U PICC Interface 00 00 info: configBytes <Buffer 29 32 f8 48>
1:54:44 PM – ACS ACR122U PICC Interface 00 00 info: outputRecord:
1:54:45 PM – info: externalPublicKey 'f8c27628e8d5aedb69f1f277305cb5d6e36a1049777270b6d89333fdc8a6cd115b5747111ea2719881ff31cd542546d89ec93fb843a7e1e01a4e6f0d1a43959f'
1:54:45 PM – info: internalPublicKey '4b7550c9a665cb96e864b96488e57d1a6b648851f5425a13cd17fe2aa3f91304e885b6a55d0efb15fcde883e94b1a48dfb1c75335eb30b6d77332f6d3e8acc80'
1:54:45 PM – info: atecc608aSerial '012328fe4164dacbee'
1:54:45 PM – info: configZoneBytes '012328fe000060034164dacbee616900c000006889a08aa089a089a089a089a089a089a000000000000000000000000000000000ffffffff00000000ffffffff000000000000000000000000000000000000000000000000fcd9000000000000310071003100310031003100310031001c0070007000700070003c003c003c00'
1:54:45 PM – info: externalPublicKeyHash '3f4b75147022901fde6a9c6cd7a55a3ba0713e6b47fb9ae3170f490c8697405f'
1:54:45 PM – info: toAddress 'deadbeef12997707982080F6452db15485c1c394'
1:54:45 PM – info: blockNumber 'bd09d1327be9c5bf41f08978e488d00af9af5a5953588a986bd3a3a8898d5380'
1:54:45 PM – info: combinedHash '8107515ee39d8fb715d4c951c495f138627b488934ce162c27ac1b03885cddc8'
1:54:45 PM – ACS ACR122U PICC Interface 00 00 info: crcBuffer <Buffer 4c 34>
1:54:45 PM – ACS ACR122U PICC Interface 00 00 info: inputBufferWrite
1:54:45 PM – ACS ACR122U PICC Interface 00 00 info: readLastIcBlockAfterWrite: <Buffer 00 00 00 00>
1:54:48 PM – ACS ACR122U PICC Interface 00 00 info: read outputRecord:
1:54:48 PM – ACS ACR122U PICC Interface 00 00 info: lastHash '8107515ee39d8fb715d4c951c495f138627b488934ce162c27ac1b03885cddc826'
1:54:48 PM – ACS ACR122U PICC Interface 00 00 info: externalSignature 'ccb37cffb88c706adbaaa62b443878bd82a19eaea83db85f4fa52bb4bcde1a3067598babb085f4f2f1d9ea030daccd9b501492457f0440a9f790b03d6c48597b'
1:54:48 PM – ACS ACR122U PICC Interface 00 00 info: internalSignature 'e8f7d92df4bc3ec58de62edd52d03917bec82fa1943f2ff0d2caa651b313a7f330a500d80d4f588c9c84f9efe692c771b902d4c26234d1aa4d7145bc2f913883'
1:54:48 PM – ACS ACR122U PICC Interface 00 00 info: counter '00'
1:54:49 PM – ACS ACR122U PICC Interface 00 00 info: verfication worked? true
1:54:49 PM – ACS ACR122U PICC Interface 00 00 info: read diagnostic:
1:54:49 PM – ACS ACR122U PICC Interface 00 00 info: debugBytes:  'Tag written\x00'
1:54:49 PM – info: no device found.
1:54:51 PM – info: ######################################## REVEAL INSTRUCTIONS ########################################################
1:54:51 PM – info: Use this data to submit the reveal tx from the same address holding the NFT(0xdeadbeef12997707982080F6452db15485c1c394): 
1:54:51 PM – info: You can submit the reveal tx eg on etherscan: https://etherscan.io/address/0x1a8befa8c5fe2d4fb554dff70d79f679884519d9#writeContract using the revealOracle function; inputs without ' 
1:54:51 PM – info: tokenID 'Your token ID'
1:54:51 PM – info: rs '[0xccb37cffb88c706adbaaa62b443878bd82a19eaea83db85f4fa52bb4bcde1a30,0x67598babb085f4f2f1d9ea030daccd9b501492457f0440a9f790b03d6c48597b]'
1:54:51 PM – info: primaryPublicKeyX '0xf8c27628e8d5aedb69f1f277305cb5d6e36a1049777270b6d89333fdc8a6cd11'
1:54:51 PM – info: primaryPublicKeyY '0x5b5747111ea2719881ff31cd542546d89ec93fb843a7e1e01a4e6f0d1a43959f'
1:54:51 PM – info: blockNumber 15023561
1:54:51 PM – info: merkleRoot '0x3b33d17cd7b7cfa954c719aceea33b91d2f8e955e70b123171f626a1ac33a475'
1:54:51 PM – info: OracleSignature: 0xf5190e2969f1f040571a9bf7cf5cf1dc8217492e0852e00ca89ddfe63771e60a230a9b970da0e1cf27a6ef3f5403314186e8145a933c1e926e483c4c8e941ab71b

Notes

NFC Scanner

You must have an NFC scanner in order to use this script. Occasionally driver issues require system reboot. Tested with the ACR122U-A9 scanner.

KONG Cash note values.

1 KONG   = 1000000000000000000
5 KONG   = 5000000000000000000
10 KONG  = 10000000000000000000
20 KONG  = 20000000000000000000
50 KONG  = 50000000000000000000
100 KONG = 100000000000000000000
500 KONG = 500000000000000000000