tem_ruby 0.9.0

data/lib/tem/sec_exec_error.rb

@@ -0,0 +1,45 @@
+# raised when executing a SEC 
+class Tem::SecExecError < StandardError
+  attr_reader :buffer_state, :key_state
+  attr_reader :trace
+  
+  def initialize(backtrace, tem_trace, buffer_state, key_state)
+    super 'SEC execution failed on the TEM'
+    set_backtrace backtrace
+    @trace = tem_trace
+    @buffer_state = buffer_state
+    @key_state = key_state
+  end
+  
+  def bstat_str
+    if @buffer_state.nil?
+      "no buffer state available"
+    else
+      @buffer_state.inspect
+    end
+  end
+
+  def kstat_str
+    if @key_state.nil?
+      "no key state available"
+    else
+      @key_state.inspect
+    end
+  end
+  
+  def trace_str
+    if @trace.nil?
+      "no trace available"
+    else
+      "ip=#{'%04x' % @trace[:ip]} sp=#{'%04x' % @trace[:sp]} out=#{'%04x' % @trace[:out]} pscell=#{'%04x' % @trace[:pscell]}"
+    end
+  end
+  
+  def to_s
+    "SECpack execution generated an exception on the TEM\nTEM Trace: " + trace_str + "\nTEM Buffer Status:\n" + bstat_str + "\nTEM Key Status:\n" + kstat_str
+  end
+  
+  def inspect
+    trace_str + "\n" + bstat_str + "\n" + kstat_str
+  end
+end

data/lib/tem/sec_opcodes.rb

@@ -0,0 +1,154 @@
+class Tem::SecAssembler
+  # 2 ST -> 1 ST
+  opcode :add,    0x10
+  # 2 ST -> 1 ST
+  opcode :sub,    0x11
+  # 2 ST -> 1 ST
+  opcode :mul,    0x12
+  # 2 ST -> 1 ST
+  opcode :div,    0x13
+  # 2 ST -> 1 ST
+  opcode :mod,    0x14
+  # 2 ST -> 1 ST 
+  opcode :rnd,    0x1E
+  
+
+  # 2 ST -> 1 ST
+  opcode :stbv,    0x3A
+  # 2 ST -> 1 ST
+  opcode :stwv,    0x3B
+
+  # 2 ST -> 1 ST
+  opcode :stk,     0x5B
+  
+
+  # 1 ST, 1 IM -> 1 ST
+  opcode :stb ,    0x38, {:name => :to, :type => :ushort}
+  # 1 ST, 1 IM -> 1 ST
+  opcode :stw ,    0x39, {:name => :to, :type => :ushort}
+  
+
+  # 2 IM -> 1 ST
+  opcode(:psupfxb, 0x48, {:name => :key, :type => :ushort}, {:name => :from, :type => :ushort})
+  # 2 ST -> 1 ST
+  opcode :psupvb,  0x49
+  # 2 IM -> 1 ST
+  opcode(:pswrfxb, 0x4A, {:name => :key, :type => :ushort}, {:name => :from, :type => :ushort})
+  # 2 ST -> 1 ST
+  opcode :pswrvb,  0x4B
+  # 2 IM -> 1 ST
+  opcode(:psrdfxb, 0x4C, {:name => :key, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 2 ST -> 1 ST
+  opcode :psrdvb,  0x4D
+  # 2 IM -> 1 ST
+  opcode :pshkfxb, 0x4E, {:name => :key, :type => :ushort}
+  # 2 ST -> 1 ST
+  opcode :pshkvb,  0x4F
+  
+  
+  # 3 IM -> 1 ST
+  opcode(:mdfxb,  0x18, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 3 ST -> 1 ST
+  opcode :mdvb,   0x19
+  # 3 IM -> 1 ST
+  opcode(:mcmpfxb,0x1A, {:name => :size, :type => :ushort}, {:name => :op1, :type => :ushort}, {:name => :op2, :type => :ushort})
+  # 3 ST -> 1 ST  
+  opcode :mcmpvb, 0x1B
+  # 3 IM -> 1 ST
+  opcode(:mcfxb,  0x1C, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 3 ST -> 1 ST
+  opcode :mcvb,   0x1D
+  
+  # 1 ST, 3 IM -> 1 ST   
+  opcode(:kefxb,   0x50, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 4 ST -> 1 ST
+  opcode :kevb,    0x51
+  # 1 ST, 3 IM -> 1 ST   
+  opcode(:kdfxb,   0x52, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 4 ST -> 1 ST
+  opcode :kdvb,    0x53
+  # 1 ST, 3 IM -> 1 ST   
+  opcode(:ksfxb,   0x54, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :to, :type => :ushort})
+  # 4 ST -> 1 ST
+  opcode :ksvb,    0x55
+  # 1 ST, 3 IM -> 1 ST   
+  opcode(:kvsfxb,  0x56, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort}, {:name => :signature, :type => :ushort})
+  # 4 ST -> 1 ST
+  opcode :kvsvb,   0x57
+    
+
+  # 0 ST -> 0 ST; IP
+  opcode :jmp,    0x27, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :jz,     0x21, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :je,     0x21, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :jnz,    0x26, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :jne,    0x26, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :ja,     0x22, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :jg,     0x22, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :jae,    0x23, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :jge,    0x23, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :jb,     0x24, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :jl,     0x24, {:name => :to, :type => :ushort, :reladdr => 2}
+  # 1 ST -> 0 ST; IP
+  opcode :jbe,    0x25, {:name => :to, :type => :ushort, :reladdr => 2}
+  opcode :jle,    0x25, {:name => :to, :type => :ushort, :reladdr => 2}
+
+  # 1 IM_B -> 1 ST
+  opcode :ldbc,    0x30, {:name => :const, :type => :byte}
+  # 1 IM -> 1 ST
+  opcode :ldwc,    0x31, {:name => :const, :type => :short}
+  # 1 ST -> 1 ST
+  opcode :ldb ,    0x32, {:name => :from, :type => :ushort}
+  # 1 ST -> 1 ST
+  opcode :ldw ,    0x33, {:name => :from, :type => :ushort}
+  # 1 ST -> 1 ST
+  opcode :ldbv,    0x36
+  # 1 ST -> 1 ST
+  opcode :ldwv,    0x37
+
+  # 1 ST -> 0 ST
+  opcode :outnew,  0x42
+  # 1 ST -> 0 ST
+  opcode :outb,    0x44
+  # 1 ST -> 0 ST
+  opcode :outw,    0x45  
+
+  # 1 ST -> 0 ST
+  opcode :pop,     0x34
+  # 2 ST -> 0 ST
+  opcode :pop2,    0x35
+
+  # 1 IM, x ST -> 2x ST  
+  opcode :dupn,    0x3C, {:name => :n, :type => :ubyte}
+  # 1 IM, x ST -> x ST
+  opcode :flipn,   0x3D, {:name => :n, :type => :ubyte}
+
+  # 2 IM -> 0 ST
+  opcode(:outfxb,  0x40, {:name => :size, :type => :ushort}, {:name => :from, :type => :ushort})
+  # 2 ST -> 0 ST
+  opcode(:outvlb,  0x41, {:name => :from, :type => :ushort}) 
+
+  
+  # 1 IM, 1 ST -> 0 ST
+  opcode :outvb,   0x43
+  # 0 ST -> 0 ST;;
+  opcode :halt,    0x46
+  # 1 ST -> 0 ST
+  opcode :psrm,    0x47
+  
+  # 1 ST -> 1 ST
+  opcode :rdk,     0x5A
+  # 1 ST -> 0 ST
+  opcode :relk,    0x5C
+  
+  opcode :ldkl,    0x5D
+  # 1 IM_B -> 2 ST
+  opcode :genkp,   0x5E, {:name => :type, :type => :ubyte }
+  # 1 ST, 1 IM -> 1 ST
+  opcode :authk,   0x5F, {:name => :auth, :type => :ushort }
+end

data/lib/tem/seclosures.rb

@@ -0,0 +1,82 @@
+require 'yaml'
+
+module Tem::SeClosures
+  module MixedMethods
+    def assemble(&proc_block)
+      return Tem::SecAssembler.new(self).assemble(&proc_block)
+    end
+  end
+  
+  include MixedMethods
+  def self.included(klass)
+    klass.extend MixedMethods
+  end
+  
+  def sec_trace
+    #begin      
+      response = issue_apdu [0x00, 0x54, 0x00, 0x00, 0x00].flatten
+      trace = reply_data(response)
+      if trace.length > 2
+        case read_tem_short(trace, 0) # trace version
+        when 1
+          return {:sp => read_tem_short(trace, 2), :ip => read_tem_short(trace, 4),
+                  :out => read_tem_short(trace, 6), :pscell =>  read_tem_short(trace, 8)}
+        end        
+      end
+      return nil # unreadable trace
+    #rescue
+    #  return nil
+    #end
+  end
+  
+  def solve_psfault
+    # TODO: better strategy, lol
+    next_cell = rand(16)
+    response = issue_apdu [0x00, 0x53, to_tem_ushort(next_cell), 0x00].flatten
+    tem_error(response) if failure_code(response)    
+  end
+  
+  def execute(compiled_proc, key_id = 0)
+    # load SECpack
+    buffer_id = post_buffer(compiled_proc.tem_formatted_body)
+    response = issue_apdu [0x00, 0x50, to_tem_byte(buffer_id), to_tem_byte(key_id), 0x00].flatten
+    release_buffer(buffer_id)
+    tem_error(response) if failure_code(response)
+    tem_secpack_error(response) if read_tem_byte(response, 0) != 1
+    
+    # execute SEC
+    sec_exception = nil
+    loop do 
+      response = issue_apdu [0x00, 0x52, 0x00, 0x00, 0x00].flatten
+      tem_error(response) if failure_code(response)
+      sec_status = read_tem_byte(response, 0)
+      case sec_status
+      when 2 # success
+        break
+      when 3 # exception
+        # there is an exception, try to collect the trace
+        b_stat = stat_buffers() rescue nil
+        k_stat = stat_keys() rescue nil
+        trace = sec_trace()        
+        backtrace = (trace && trace[:ip]) ? compiled_proc.stack_for_ip(trace[:ip]) : Kernel.caller
+        sec_exception = Tem::SecExecError.new backtrace, trace, b_stat, k_stat
+        break
+      when 4 # persistent store fault
+        solve_psfault
+      else
+        raise "Unrecognized execution engine status #{sec_status}"
+      end
+    end
+  
+    # TODO: handle response to figure out if we need to do page faults or something
+    
+    # unbind SEC
+    response = issue_apdu [0x00, 0x51, 0x00, 0x00, 0x00].flatten
+    raise sec_exception if sec_exception
+    buffer_id, buffer_length = read_tem_byte(response, 0), read_tem_short(response, 1)
+    data_buffer = read_buffer buffer_id
+    release_buffer buffer_id
+    
+    return data_buffer[0...buffer_length]
+  end
+end

data/lib/tem/secpack.rb

@@ -0,0 +1,86 @@
+require 'yaml'
+
+class Tem::SecPack
+  @@serialized_members = [:body, :labels, :ep, :sp, :extra_bytes, :signed_bytes, :encrypted_bytes, :sealed, :lines]
+  
+  def self.new_from_array(array)
+    arg_hash = { :tem_class => Tem::Session }
+    @@serialized_members.each_index { |i| arg_hash[@@serialized_members[i]] = array[i] }
+    self.new(arg_hash)
+  end
+  
+  def self.new_from_yaml_str(yaml_str)
+    array = YAML.load yaml_str
+    new_from_array array
+  end
+
+  def to_array
+    @@serialized_members.map { |m| self.instance_variable_get('@' + m.to_s) }
+  end
+  
+  def to_yaml_str
+    self.to_array.to_yaml.to_s
+  end
+  
+  attr_reader :body, :sealed
+  attr_reader :lines
+  
+  def initialize(args)
+    @tem_klass = args[:tem_class]
+    @@serialized_members.map { |m| self.instance_variable_set('@' + m.to_s, args[m]) }
+    @sealed ||= false
+  end
+  
+  def label_address(label_name)
+    @labels[label_name.to_sym]
+  end
+  
+  def tem_header
+    # TODO: use 0x0100 (no tracing) depending on options
+    hh = [0x0101, @signed_bytes, @encrypted_bytes, @extra_bytes, @sp, @ep].map { |n| @tem_klass.to_tem_ushort n }.flatten
+    hh += Array.new((@tem_klass.hash_for_tem [0]).length - hh.length, 0)
+    return hh
+  end
+  
+  def seal(public_key, encrypt_from = 0, plaintext_from = 0)
+    encrypt_from = @labels[encrypt_from.to_sym] unless encrypt_from.instance_of? Numeric
+    plaintext_from = @labels[plaintext_from.to_sym] unless plaintext_from.instance_of? Numeric
+    
+    @signed_bytes = encrypt_from
+    @encrypted_bytes = plaintext_from - encrypt_from
+    
+    proc_sig = @tem_klass.hash_for_tem [tem_header, @body[0...plaintext_from]].flatten
+    crypt = public_key.encrypt [@body[encrypt_from...plaintext_from], proc_sig].flatten
+    @body = [@body[0...encrypt_from], crypt, @body[plaintext_from..-1]].flatten
+      
+    label_delta = crypt.length - @encrypted_bytes         
+    @labels = Hash[*(@labels.map { |k, v|
+      if v < encrypt_from
+        [k, v] 
+      elsif v < plaintext_from
+        []
+      else
+        [k, v + label_delta]
+      end
+    }.flatten)]
+    
+    @sealed = true
+  end
+  
+  def tem_formatted_body()
+    return [tem_header, @body].flatten 
+  end
+  
+  def stack_for_ip(ip)
+    return nil unless @lines
+
+    max_value = -1
+    st = nil
+    @lines.each do |st_ip, stack|
+      # if something breaks, it's likely to happen after the opcode
+      # of the offending instruction has been read, so assume offending_ip < ip
+      max_value, st = st_ip, stack if st_ip < ip && max_value < st_ip
+    end
+    return st
+  end
+end

data/lib/tem/tag.rb

@@ -0,0 +1,28 @@
+module Tem::Tag
+  def set_tag(tag_data)
+    buffer_id = post_buffer(tag_data)
+    response = issue_apdu [0x00, 0x30, to_tem_byte(buffer_id), 0x00, 0x00].flatten
+    tem_error(response) if failure_code(response)
+    release_buffer(buffer_id)
+  end
+  
+  def get_tag_length
+    response = issue_apdu [0x00, 0x31, 0x00, 0x00, 0x00].flatten
+    tem_error(response) if failure_code(response)
+    return read_tem_short(response, 0)
+  end
+  
+  def get_tag_data(offset, length)
+    buffer_id = alloc_buffer(length)
+    response = issue_apdu [0x00, 0x32, to_tem_byte(buffer_id), 0x00, 0x04, to_tem_short(offset), to_tem_short(length)].flatten
+    tem_error(response) if failure_code(response)
+    tag_data = read_buffer(buffer_id)
+    release_buffer(buffer_id)
+    return tag_data
+  end
+
+  def get_tag
+    tag_length = self.get_tag_length
+    get_tag_data(0, tag_length)
+  end
+end

data/lib/tem/tem.rb

@@ -0,0 +1,47 @@
+require 'pp'
+
+class Tem::Session
+  include Tem::Abi
+  include Tem::Buffers
+  include Tem::CA
+  include Tem::CryptoAbi
+  include Tem::ECert
+  include Tem::Keys
+  include Tem::Lifecycle
+  include Tem::SeClosures
+  include Tem::Tag
+  include Tem::Toolkit
+  
+  @@aid = [0x19, 0x83, 0x12, 0x29, 0x10, 0xBA, 0xBE]
+  
+  def initialize(javacard)
+    @card = javacard
+    @card.select_applet(@@aid)
+  end
+  
+  def disconnect
+    # TODO: deselect applet, reset card
+    @card = nil
+  end
+  
+  def issue_apdu(apdu)
+    @card.issue_apdu apdu
+  end
+  
+  def failure_code(reply_apdu)
+    @card.failure_code reply_apdu
+  end
+  
+  def reply_data(reply_apdu)
+    @card.reply_data reply_apdu
+  end
+  
+  def tem_error(response)
+    fcode = failure_code response
+    raise "TEM returned error 0x#{'%04x' % fcode} while processing the request"
+  end
+  
+  def tem_secpack_error(response)
+    raise "TEM refused the SECpack"
+  end
+end

data/lib/tem/toolkit.rb

@@ -0,0 +1,104 @@
+module Tem::Toolkit
+  def tk_firmware_ver
+    tag = get_tag
+    return { :major => read_tem_ubyte(tag, 0), :minor => read_tem_ubyte(tag, 1) }
+  end
+  
+  def tk_gen_key(type = :asymmetric, authz = nil)
+    gen_sec = assemble do |s|
+      s.ldbc authz.nil? ? 24 : 4
+      s.outnew
+      if authz.nil?
+        # no authorization given, must generate one
+        s.ldbc 20
+        s.ldwc :key_auth
+        s.dupn :n => 2
+        s.rnd
+        s.outvb
+      end
+      s.genkp :type => (type == :asymmetric) ? 0x00 : 0x80
+      s.authk :auth => :key_auth 
+      s.outw
+      s.authk :auth => :key_auth 
+      s.outw
+      s.halt
+      s.label :key_auth
+      if authz.nil?
+        s.filler :ubyte, 20
+      else
+        s.immed :ubyte, authz
+      end
+      s.stack
+      s.extra 8
+    end
+    
+    kp_buffer = execute gen_sec
+    keys_offset = authz.nil? ? 20 : 0
+    k1id, k2id = read_tem_ushort(kp_buffer, keys_offset), read_tem_ushort(kp_buffer, keys_offset + 2) 
+    if type == :asymmetric 
+      return_val = { :pubk_id => k1id, :privk_id => k2id }
+    else
+      return_val = { :key_id => k1id }
+    end
+    return { :authz => authz.nil? ? kp_buffer[0...20] : authz }.merge!(return_val)
+  end
+  
+  def tk_read_key(key_id, authz)
+    read_sec = assemble do |s|
+      s.ldbc :const => key_id
+      s.authk :auth => :key_auth
+      s.ldkl
+      s.outnew
+      s.ldbc :const => key_id
+      s.ldbc(-1)
+      s.stk
+      s.halt
+      s.label :key_auth
+      s.immed :ubyte, authz
+      s.stack
+      s.extra 8      
+    end
+    
+    key_string = execute read_sec
+    return read_tem_key(key_string, 0)
+  end
+  
+  def tk_delete_key(key_id, authz)
+    del_sec = assemble do |s|
+      s.ldbc :const => key_id
+      s.authk :auth => :key_auth
+      s.relk
+      s.ldbc :const => 1
+      s.outnew
+      s.ldbc :const => key_id
+      s.outb
+      s.halt
+      s.label :key_auth
+      s.immed :ubyte, authz
+      s.stack
+      s.extra 8
+    end
+    
+    execute del_sec
+  end
+  
+  def tk_post_key(key, authz)
+    post_sec = assemble do |s|
+      s.ldbc :const => 1
+      s.outnew
+      s.ldwc :const => :key_data
+      s.rdk
+      s.authk :auth => :key_auth
+      s.outb
+      s.halt
+      s.label :key_data
+      s.immed :ubyte, key.to_tem_key
+      s.label :key_auth
+      s.immed :ubyte, authz
+      s.stack
+      s.extra 8
+    end
+    id_string = execute post_sec
+    return read_tem_ubyte(id_string, 0)
+  end
+end

data/lib/tem_ruby.rb

@@ -0,0 +1,29 @@
+# gems
+require 'smartcard'
+
+module Tem
+end
+
+module Tem::SCard
+end
+
+require 'scard/pcsc_terminal.rb'
+require 'scard/jcop_remote_terminal.rb'
+require 'scard/java_card.rb'
+
+require 'tem/abi.rb'
+require 'tem/buffers.rb'
+require 'tem/ca.rb'
+require 'tem/crypto_abi.rb'
+require 'tem/ecert.rb'
+require 'tem/hive.rb'
+require 'tem/keys.rb'
+require 'tem/lifecycle.rb'
+require 'tem/sec_assembler.rb'
+require 'tem/sec_opcodes.rb'
+require 'tem/sec_exec_error.rb'
+require 'tem/seclosures.rb'
+require 'tem/secpack.rb'
+require 'tem/tag.rb'
+require 'tem/toolkit.rb'
+require 'tem/tem.rb'

data/tem_ruby.gemspec

@@ -0,0 +1,53 @@
+
+# Gem::Specification for Tem_ruby-0.9.0
+# Originally generated by Echoe
+
+Gem::Specification.new do |s|
+  s.name = %q{tem_ruby}
+  s.version = "0.9.0"
+
+  s.specification_version = 2 if s.respond_to? :specification_version=
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Victor Costan"]
+  s.date = %q{2008-06-11}
+  s.description = %q{TEM (Trusted Execution Module) driver, written in and for ruby.}
+  s.email = %q{victor@costan.us}
+  s.executables = ["tem_stat", "tem_ca", "tem_irb", "tem_bench"]
+  s.extra_rdoc_files = ["bin/tem_stat", "bin/tem_ca", "bin/tem_irb", "bin/tem_bench", "LICENSE", "lib/scard/java_card.rb", "lib/scard/jcop_remote_terminal.rb", "lib/scard/pcsc_terminal.rb", "lib/tem_ruby.rb", "lib/tem/tag.rb", "lib/tem/keys.rb", "lib/tem/sec_opcodes.rb", "lib/tem/_cert.rb", "lib/tem/buffers.rb", "lib/tem/toolkit.rb", "lib/tem/tem.rb", "lib/tem/abi.rb", "lib/tem/crypto_abi.rb", "lib/tem/ca.rb", "lib/tem/secpack.rb", "lib/tem/sec_exec_error.rb", "lib/tem/sec_assembler.rb", "lib/tem/lifecycle.rb", "lib/tem/ecert.rb", "lib/tem/hive.rb", "lib/tem/seclosures.rb", "README", "CHANGELOG"]
+  s.has_rdoc = true
+  s.homepage = %q{http://tem.rubyforge.org}
+  s.rdoc_options = ["--line-numbers", "--inline-source", "--title", "Tem_ruby", "--main", "README"]
+  s.require_paths = ["lib"]
+  s.rubyforge_project = %q{tem}
+  s.rubygems_version = %q{1.1.1}
+  s.summary = %q{TEM (Trusted Execution Module) driver, written in and for ruby.}
+  s.test_files = ["test/test_driver.rb", "test/test_tem.rb", "test/test_exceptions.rb"]
+
+  s.add_dependency(%q<smartcard>, [">= 0.2.2"])
+end
+
+
+# # Original Rakefile source (requires the Echoe gem):
+# 
+# require 'rubygems'
+# gem 'echoe'
+# require 'echoe'
+# 
+# Echoe.new('tem_ruby') do |p|
+#   p.project = 'tem' # rubyforge project
+#   
+#   p.author = 'Victor Costan'
+#   p.email = 'victor@costan.us'
+#   p.summary = 'TEM (Trusted Execution Module) driver, written in and for ruby.'
+#   p.url = 'http://tem.rubyforge.org'
+#   p.dependencies = ['smartcard >=0.2.2']
+#   
+#   p.need_tar_gz = false
+#   p.rdoc_pattern = /^(lib|bin|tasks|ext)|^BUILD|^README|^CHANGELOG|^TODO|^LICENSE|^COPYING$/  
+# end
+# 
+# if $0 == __FILE__
+#   Rake.application = Rake::Application.new
+#   Rake.application.run
+# end