giomba
/
opensc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
opensc/src/pkcs15init/pkcs15-entersafe.c

539 lines
16 KiB
C
Raw Normal View History

Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
/*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 2.1 of the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this library; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
/* Initially written by Weitao Sun (weitao@ftsafe.com) 2008*/
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
/* Disable RSA:512bits by Shengchao Niu (shengchao@ftsafe.com) 2012 */
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
Header file cleanup. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4081 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-04 08:14:36 +00:00
#include "config.h"
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
#include <sys/types.h>
#include <stdlib.h>
#include <string.h>
#include <assert.h>
#include <stdarg.h>
Header file cleanup. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4081 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-04 08:14:36 +00:00
#include "libopensc/log.h"
#include "libopensc/opensc.h"
#include "libopensc/cardctl.h"
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
#include "pkcs15-init.h"
#include "profile.h"
static u8 process_acl_entry(sc_file_t *in, unsigned int method, unsigned int in_def)
{
u8 def = (u8)in_def;
const sc_acl_entry_t *entry = sc_file_get_acl_entry(in, method);
if (!entry)
{
return def;
}
else if (entry->method == SC_AC_CHV)
{
unsigned int key_ref = entry->key_ref;
if (key_ref == SC_AC_KEY_REF_NONE)
return def;
else
return ENTERSAFE_AC_ALWAYS&0x04;
}
else if (entry->method == SC_AC_SYMBOLIC)
{
return ENTERSAFE_AC_ALWAYS&0x04;
}
else if (entry->method == SC_AC_NEVER)
{
return ENTERSAFE_AC_NEVER;
}
else
{
return def;
}
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_erase_card(struct sc_profile *profile, sc_pkcs15_card_t *p15card)
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
{
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
entersafe: unify cards behavior - don't throw error when erasing empty card git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4042 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-19 16:41:05 +00:00
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
if (sc_select_file(p15card->card, sc_get_mf_path(), NULL) < 0)
entersafe: unify cards behavior - don't throw error when erasing empty card git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4042 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-19 16:41:05 +00:00
return SC_SUCCESS;
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
return sc_card_ctl(p15card->card,SC_CARDCTL_ERASE_CARD,0);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_init_card(sc_profile_t *profile, sc_pkcs15_card_t *p15card)
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
{
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
struct sc_card *card = p15card->card;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
int ret;
{/* MF */
sc_file_t *mf_file;
sc_entersafe_create_data mf_data;
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ret = sc_profile_get_file(profile, "MF", &mf_file);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Get MF info failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
mf_data.type = SC_ENTERSAFE_MF_DATA;
mf_data.data.df.file_id[0]=0x3F;
mf_data.data.df.file_id[1]=0x00;
mf_data.data.df.file_count=0x04;
mf_data.data.df.flag=0x11;
mf_data.data.df.ikf_size[0]=(mf_file->size>>8)&0xFF;
mf_data.data.df.ikf_size[1]=mf_file->size&0xFF;
mf_data.data.df.create_ac=0x10;
mf_data.data.df.append_ac=0xC0;
mf_data.data.df.lock_ac=0x10;
memcpy(mf_data.data.df.aid,mf_file->name,mf_file->namelen);
sc_file_free(mf_file);
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_CREATE_FILE, &mf_data);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Create MF failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
{/* EF(DIR) */
sc_file_t *dir_file;
size_t fid,size;
sc_entersafe_create_data ef_data;
u8 *buff=0;
/* get dir profile */
ret = sc_profile_get_file(profile, "dir", &dir_file);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Get EF(DIR) info failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
fid=dir_file->id;
size=dir_file->size;
sc_file_free(dir_file);
ef_data.type=SC_ENTERSAFE_EF_DATA;
ef_data.data.ef.file_id[0]=(fid>>8)&0xFF;
ef_data.data.ef.file_id[1]=fid&0xFF;
ef_data.data.ef.size[0]=(size>>8)&0xFF;
ef_data.data.ef.size[1]=size&0xFF;
ef_data.data.ef.attr[0]=0x00;
ef_data.data.ef.attr[1]=0x00;
ef_data.data.ef.name=0x00;
memset(ef_data.data.ef.ac,0x10,sizeof(ef_data.data.ef.ac));
memset(ef_data.data.ef.sm,0x00,sizeof(ef_data.data.ef.sm));
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_CREATE_FILE, &ef_data);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Create EF(DIR) failed");
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
/* fill file by 0 */
buff = calloc(1,size);
if(!buff)
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
memset(buff,0,size);
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ret = sc_update_binary(card,0,buff,size,0);
free(buff);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Initialize EF(DIR) failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_create_dir(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_file_t *df)
{
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
struct sc_card *card = p15card->card;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
int ret;
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
{/* df */
sc_entersafe_create_data df_data;
df_data.type = SC_ENTERSAFE_DF_DATA;
df_data.data.df.file_id[0]=(df->id >> 8) & 0xFF;
df_data.data.df.file_id[1]=df->id & 0xFF;
Weitao Sun: no one can create more than 15 files under 5015 df. I increase it from 15 to 48, and all are OK. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3713 c6295689-39f2-0310-b995-f0e70906c6a9
2009-07-23 08:56:41 +00:00
df_data.data.df.file_count=0x30;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
df_data.data.df.flag=0x01;
df_data.data.df.ikf_size[0]=(df->size>>8)&0xFF;
df_data.data.df.ikf_size[1]=df->size&0xFF;
df_data.data.df.create_ac=0x10;
df_data.data.df.append_ac=0xC0;
df_data.data.df.lock_ac=0x10;
memcpy(df_data.data.df.aid,df->name,df->namelen);
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_CREATE_FILE, &df_data);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Crate DF failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
{/* GPKF */
sc_file_t *gpkf_file;
sc_entersafe_create_data ef_data;
/* get p15_gpkf profile */
ret = sc_profile_get_file(profile, "p15_gpkf", &gpkf_file);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Get GPKF info failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ef_data.type=SC_ENTERSAFE_EF_DATA;
ef_data.data.ef.file_id[0]=(gpkf_file->id>>8)&0xFF;
ef_data.data.ef.file_id[1]=gpkf_file->id&0xFF;
ef_data.data.ef.size[0]=(gpkf_file->size>>8)&0xFF;
ef_data.data.ef.size[1]=gpkf_file->size&0xFF;
ef_data.data.ef.attr[0]=0x15;
ef_data.data.ef.attr[1]=0x80;
ef_data.data.ef.name=0x00;
memset(ef_data.data.ef.ac,0x10,sizeof(ef_data.data.ef.ac));
memset(ef_data.data.ef.sm,0x00,sizeof(ef_data.data.ef.sm));
sc_file_free(gpkf_file);
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_CREATE_FILE, &ef_data);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Create GPKF failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
{/* p15 efs */
Fix pkcs15-entersafe.c:200: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:201: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:202: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:203: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:204: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:205: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:206: warning: initialization discards qualifiers from pointer target type pkcs15-entersafe.c:207: warning: initialization discards qualifiers from pointer target type git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4200 c6295689-39f2-0310-b995-f0e70906c6a9
2010-04-02 12:12:27 +00:00
const char * create_efs[]={
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
"PKCS15-ODF",
"PKCS15-TokenInfo",
"PKCS15-UnusedSpace",
"PKCS15-AODF",
"PKCS15-PrKDF",
"PKCS15-PuKDF",
"PKCS15-CDF",
"PKCS15-DODF",
NULL,
};
int i;
sc_file_t *file=0;
sc_entersafe_create_data tmp;
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
for(i = 0; create_efs[i]; ++i) {
if (sc_profile_get_file(profile, create_efs[i], &file)) {
replace sc_debug with sc_log
2018-11-22 08:31:29 +00:00
sc_log(card->ctx, "Inconsistent profile: cannot find %s", create_efs[i]);
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,SC_ERROR_INCONSISTENT_PROFILE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
tmp.type=SC_ENTERSAFE_EF_DATA;
tmp.data.ef.file_id[0]=(file->id>>8)&0xFF;
tmp.data.ef.file_id[1]=file->id&0xFF;
tmp.data.ef.size[0]=(file->size>>8)&0xFF;
tmp.data.ef.size[1]=file->size&0xFF;
tmp.data.ef.attr[0]=0x00;
tmp.data.ef.attr[1]=0x00;
tmp.data.ef.name=0x00;
memset(tmp.data.ef.ac,ENTERSAFE_AC_ALWAYS,sizeof(tmp.data.ef.ac));
tmp.data.ef.ac[0]=process_acl_entry(file,SC_AC_OP_READ,ENTERSAFE_AC_ALWAYS); /* read */
tmp.data.ef.ac[1]=process_acl_entry(file,SC_AC_OP_UPDATE,ENTERSAFE_AC_ALWAYS); /* update */
memset(tmp.data.ef.sm,0x00,sizeof(tmp.data.ef.sm));
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_file_free(file);
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_CREATE_FILE, &tmp);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Create pkcs15 file failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
}
{/* Preinstall keys */
ret = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_PREINSTALL_KEYS, 0);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx,ret,"Preinstall keys failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,ret);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_pin_reference(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
sc_pkcs15_auth_info_t *auth_info)
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
{
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
if (auth_info->auth_type != SC_PKCS15_PIN_AUTH_TYPE_PIN)
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
return SC_ERROR_OBJECT_NOT_VALID;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
if (auth_info->attrs.pin.reference < ENTERSAFE_USER_PIN_ID)
auth_info->attrs.pin.reference = ENTERSAFE_USER_PIN_ID;
if (auth_info->attrs.pin.reference > ENTERSAFE_USER_PIN_ID)
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
return SC_ERROR_TOO_MANY_OBJECTS;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_create_pin(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_file_t *df, sc_pkcs15_object_t *pin_obj,
const unsigned char *pin, size_t pin_len,
const unsigned char *puk, size_t puk_len)
{
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
struct sc_card *card = p15card->card;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
int r;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
sc_pkcs15_auth_info_t *auth_info = (sc_pkcs15_auth_info_t *) pin_obj->data;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
if (auth_info->auth_type != SC_PKCS15_PIN_AUTH_TYPE_PIN)
return SC_ERROR_OBJECT_NOT_VALID;
Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3674 c6295689-39f2-0310-b995-f0e70906c6a9
2009-04-02 10:32:02 +00:00
{/*pin*/
sc_entersafe_wkey_data data;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3674 c6295689-39f2-0310-b995-f0e70906c6a9
2009-04-02 10:32:02 +00:00
if (!pin || !pin_len || pin_len > 16)
return SC_ERROR_INVALID_ARGUMENTS;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
data.key_id = auth_info->attrs.pin.reference;
Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3674 c6295689-39f2-0310-b995-f0e70906c6a9
2009-04-02 10:32:02 +00:00
data.usage=0x0B;
data.key_data.symmetric.EC=0x33;
data.key_data.symmetric.ver=0x00;
/* pad pin with 0 */
memset(data.key_data.symmetric.key_val, 0, sizeof(data.key_data.symmetric.key_val));
memcpy(data.key_data.symmetric.key_val, pin, pin_len);
data.key_data.symmetric.key_len=16;
r = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_WRITE_KEY, &data);
fixed dead assignments
2017-08-03 15:02:03 +00:00
if (r < 0)
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE, r);
fixed dereference before null check silence warnings reported by coverity-scan
2015-01-22 19:29:33 +00:00
/* Cache new PIN value. */
sc_pkcs15_pincache_add(p15card, pin_obj, pin, pin_len);
Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3674 c6295689-39f2-0310-b995-f0e70906c6a9
2009-04-02 10:32:02 +00:00
}
{/*puk*/
sc_entersafe_wkey_data data;
if (!puk || !puk_len || puk_len > 16)
return SC_ERROR_INVALID_ARGUMENTS;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
data.key_id = auth_info->attrs.pin.reference+1;
Entersafe changes by Weitao Sun: 1.Card type FTCOS/PK-01C added. (new) 2.Limit pin length in range [4,16). (bug fix) 3.Can not unblock PIN. (bug fix) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3674 c6295689-39f2-0310-b995-f0e70906c6a9
2009-04-02 10:32:02 +00:00
data.usage=0x0B;
data.key_data.symmetric.EC=0x33;
data.key_data.symmetric.ver=0x00;
/* pad pin with 0 */
memset(data.key_data.symmetric.key_val, 0, sizeof(data.key_data.symmetric.key_val));
memcpy(data.key_data.symmetric.key_val, puk, puk_len);
data.key_data.symmetric.key_len=16;
r = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_WRITE_KEY, &data);
}
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
fixed dead assignments
2017-08-03 15:02:03 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE, r);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_key_reference(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_pkcs15_prkey_info_t *prkey)
{
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
if (prkey->key_reference < ENTERSAFE_MIN_KEY_ID)
prkey->key_reference = ENTERSAFE_MIN_KEY_ID;
if (prkey->key_reference > ENTERSAFE_MAX_KEY_ID)
return SC_ERROR_TOO_MANY_OBJECTS;
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_create_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_pkcs15_object_t *obj)
{
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
SC_FUNC_RETURN(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_store_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_pkcs15_object_t *obj, sc_pkcs15_prkey_t *key)
{
sc_pkcs15_prkey_info_t *kinfo = (sc_pkcs15_prkey_info_t *) obj->data;
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
sc_card_t *card = p15card->card;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_entersafe_wkey_data data;
sc_file_t *tfile;
const sc_acl_entry_t *acl_entry;
int r;
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
struct sc_pkcs15_prkey_info *key_info = (struct sc_pkcs15_prkey_info *)obj->data;
size_t keybits = key_info->modulus_length;
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
if ( key->algorithm != SC_ALGORITHM_RSA )
{
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
/* ignore DSA keys */
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,SC_ERROR_INVALID_ARGUMENTS);
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
}
/* Disable RSA:512bits */
if ( ( keybits < 1024 ) ||
( keybits > 2048 ) ||
( keybits % 0x20 ) )
{
Fix log messages format and parameter issues flagged by GCC Since "Add GCC format checking attributes to log functions" commit GCC warns us about problems with format strings and their arguments provided to OpenSC message logging functions. This commit fixes all cases where GCC warned about incorrect format on 64-bit Linux, 32-bit and 64-bit mingw builds (with SM and OpenSSL enabled). Well, almost all since on mingw GCC does not recognize "ll" size specifier (present at least since Visual Studio 2005, also in mingw own CRT) so these (few) warnings about it remain. In most cases format size specifier for size_t type was missing (usually size was left at default int level, with is different on 64-bit x86). Some formats had too few / too many arguments. In some cases pointers were printed as integers. Some long variables were missing "l" prefix (especially with regard to %x format). Signed-off-by: Maciej S. Szmigiero <mail@maciej.szmigiero.name>
2017-03-14 19:02:30 +00:00
sc_debug(card->ctx,
SC_LOG_DEBUG_NORMAL,
"Unsupported key size %"SC_FORMAT_LEN_SIZE_T"u\n",
keybits);
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
return SC_ERROR_INVALID_ARGUMENTS;
}
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
r = sc_profile_get_file(profile, "PKCS15-AODF", &tfile);
if (r < 0)
return r;
acl_entry = sc_file_get_acl_entry(tfile, SC_AC_OP_UPDATE);
if (acl_entry->method != SC_AC_NONE) {
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
r = sc_pkcs15init_authenticate(profile, p15card, tfile, SC_AC_OP_UPDATE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
if(r<0)
r = SC_ERROR_SECURITY_STATUS_NOT_SATISFIED;
}
sc_file_free(tfile);
spelling fixes Fix various spelling errors, mostly in comments but also in texts displayed. Errors found & interactively fixed using 'codespell', with additional manual checks after the fixes.
2020-08-29 08:34:51 +00:00
LOG_TEST_RET(card->ctx, r, "can't verify pin");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
data.key_id = (u8) kinfo->key_reference;
data.usage=0x22;
data.key_data.rsa=&key->u.rsa;
return sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_WRITE_KEY, &data);
}
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
static int entersafe_generate_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_pkcs15_object_t *obj, sc_pkcs15_pubkey_t *pubkey)
{
int r;
sc_entersafe_gen_key_data gendat;
sc_pkcs15_prkey_info_t *kinfo = (sc_pkcs15_prkey_info_t *) obj->data;
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
sc_card_t *card = p15card->card;
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
sc_file_t *tfile;
const sc_acl_entry_t *acl_entry;
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
struct sc_pkcs15_prkey_info *key_info = (struct sc_pkcs15_prkey_info *)obj->data;
size_t keybits = key_info->modulus_length;
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
if ( obj->type != SC_PKCS15_TYPE_PRKEY_RSA )
{
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
return SC_ERROR_NOT_SUPPORTED;
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
}
/* Disable RSA:512bits */
if ( ( keybits < 1024 ) ||
( keybits > 2048 ) ||
( keybits % 0x20 ) )
{
Fix log messages format and parameter issues flagged by GCC Since "Add GCC format checking attributes to log functions" commit GCC warns us about problems with format strings and their arguments provided to OpenSC message logging functions. This commit fixes all cases where GCC warned about incorrect format on 64-bit Linux, 32-bit and 64-bit mingw builds (with SM and OpenSSL enabled). Well, almost all since on mingw GCC does not recognize "ll" size specifier (present at least since Visual Studio 2005, also in mingw own CRT) so these (few) warnings about it remain. In most cases format size specifier for size_t type was missing (usually size was left at default int level, with is different on 64-bit x86). Some formats had too few / too many arguments. In some cases pointers were printed as integers. Some long variables were missing "l" prefix (especially with regard to %x format). Signed-off-by: Maciej S. Szmigiero <mail@maciej.szmigiero.name>
2017-03-14 19:02:30 +00:00
sc_debug(card->ctx,
SC_LOG_DEBUG_NORMAL,
"Unsupported key size %"SC_FORMAT_LEN_SIZE_T"u\n",
keybits);
entersafe: Disable RSA:512bits that modified in entersafe_generate_key and entersafe_store_key function 1.Added a prompt while initializing ePass2003 \n 2.Modify code to disable 512bit key
2012-09-13 07:38:47 +00:00
return SC_ERROR_INVALID_ARGUMENTS;
}
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
r = sc_profile_get_file(profile, "PKCS15-AODF", &tfile);
if (r < 0)
return r;
acl_entry = sc_file_get_acl_entry(tfile, SC_AC_OP_UPDATE);
if (acl_entry->method != SC_AC_NONE) {
pkcs15init: in the prototypes of the internal procedures the 'struct sc_card' argument replaced with the 'struct sc_pkcs15_card' one This patch is not largely tested and it will be followed (hope in a few hours) with another one that will replace the using of the static pincache with the pincache as the content of the AUTH pkcs15 object. In the intervention into the card specific part I tried to respect its creator's coding style. Sorry, if it's not always the case. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4057 c6295689-39f2-0310-b995-f0e70906c6a9
2010-02-21 16:21:57 +00:00
r = sc_pkcs15init_authenticate(profile, p15card, tfile, SC_AC_OP_UPDATE);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
if(r<0)
r = SC_ERROR_SECURITY_STATUS_NOT_SATISFIED;
}
sc_file_free(tfile);
spelling fixes Fix various spelling errors, mostly in comments but also in texts displayed. Errors found & interactively fixed using 'codespell', with additional manual checks after the fixes.
2020-08-29 08:34:51 +00:00
LOG_TEST_RET(card->ctx, r, "can't verify pin");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
/* generate key pair */
gendat.key_id = (u8) kinfo->key_reference;
gendat.key_length = (size_t) kinfo->modulus_length;
gendat.modulus = NULL;
r = sc_card_ctl(card, SC_CARDCTL_ENTERSAFE_GENERATE_KEY, &gendat);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(card->ctx, r, "EnterSafe generate RSA key pair failed");
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
/* get the modulus via READ PUBLIC KEY */
if (pubkey) {
u8 *buf;
struct sc_pkcs15_pubkey_rsa *rsa = &pubkey->u.rsa;
/* set the modulus */
rsa->modulus.data = gendat.modulus;
rsa->modulus.len = kinfo->modulus_length >> 3;
/* set the exponent (always 0x10001) */
Do not cast the return value of malloc(3) and calloc(3) From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety " Casting and type safety malloc returns a void pointer (void *), which indicates that it is a pointer to a region of unknown data type. One may "cast" (see type conversion) this pointer to a specific type, as in int *ptr = (int*)malloc(10 * sizeof (int)); When using C, this is considered bad practice; it is redundant under the C standard. Moreover, putting in a cast may mask failure to include the header stdlib.h, in which the prototype for malloc is found. In the absence of a prototype for malloc, the C compiler will assume that malloc returns an int, and will issue a warning in a context such as the above, provided the error is not masked by a cast. On certain architectures and data models (such as LP64 on 64 bit systems, where long and pointers are 64 bit and int is 32 bit), this error can actually result in undefined behavior, as the implicitly declared malloc returns a 32 bit value whereas the actually defined function returns a 64 bit value. Depending on calling conventions and memory layout, this may result in stack smashing. The returned pointer need not be explicitly cast to a more specific pointer type, since ANSI C defines an implicit conversion between the void pointer type and other pointers to objects. An explicit cast of malloc's return value is sometimes performed because malloc originally returned a char *, but this cast is unnecessary in standard C code.[4][5] Omitting the cast, however, creates an incompatibility with C++, which does require it. The lack of a specific pointer type returned from malloc is type-unsafe behaviour: malloc allocates based on byte count but not on type. This distinguishes it from the C++ new operator that returns a pointer whose type relies on the operand. (see C Type Safety). " See also http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
buf = malloc(3);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
if (!buf)
return SC_ERROR_OUT_OF_MEMORY;
buf[0] = 0x01;
buf[1] = 0x00;
buf[2] = 0x01;
rsa->exponent.data = buf;
rsa->exponent.len = 3;
pubkey->algorithm = SC_ALGORITHM_RSA;
} else
/* free public key */
free(gendat.modulus);
cleanup of the debug code: * reduce to a few, supported functions. * change all functions to take the debug level as parameter. * use symbolic names for the debug levels. * fix tools to pass "verbose"/"opt_debug" as ctx->debug. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4118 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-15 12:17:13 +00:00
SC_FUNC_RETURN(card->ctx, SC_LOG_DEBUG_VERBOSE,SC_SUCCESS);
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
}
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
static int entersafe_sanity_check(sc_profile_t *profile, sc_pkcs15_card_t *p15card)
{
struct sc_context *ctx = p15card->card->ctx;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
struct sc_pkcs15_auth_info profile_auth;
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
struct sc_pkcs15_object *objs[32];
int rv, nn, ii, update_df = 0;
SC_FUNC_CALLED(ctx, SC_LOG_DEBUG_VERBOSE);
replace sc_debug with sc_log
2018-11-22 08:31:29 +00:00
sc_log(ctx, "Check and if needed update PinFlags");
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
rv = sc_pkcs15_get_objects(p15card, SC_PKCS15_TYPE_AUTH_PIN, objs, 32);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(ctx, rv, "Failed to get PINs");
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
nn = rv;
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
sc_profile_get_pin_info(profile, SC_PKCS15INIT_USER_PIN, &profile_auth);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(ctx, rv, "Failed to get PIN info");
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
for (ii=0; ii<nn; ii++) {
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
struct sc_pkcs15_auth_info *ainfo = (struct sc_pkcs15_auth_info *) objs[ii]->data;
struct sc_pkcs15_pin_attributes *pin_attrs = &ainfo->attrs.pin;
if (ainfo->auth_type != SC_PKCS15_PIN_AUTH_TYPE_PIN)
continue;
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
if (pin_attrs->reference == profile_auth.attrs.pin.reference
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
&& pin_attrs->flags != profile_auth.attrs.pin.flags) {
replace sc_debug with sc_log
2018-11-22 08:31:29 +00:00
sc_log(ctx, "Set flags of '%s'(flags:%X,ref:%i,id:%s) to %X", objs[ii]->label,
pkcd15init: remove trailing whitespaces inspired by http://www.opensc-project.org/pipermail/opensc-devel/2012-March/017883.html Change-Id: I817f903e67965942d9cc0c30931dbaea0c5f736e
2012-04-02 21:40:05 +00:00
pin_attrs->flags, pin_attrs->reference, sc_pkcs15_print_id(&ainfo->auth_id),
pkcs15: use general 'AuthenticationObject' instead of 'PinObject' now the attributes of the previous 'pin-info' data type are included as the sub-type attributes of the general 'auth-info' data . It will allow to include support of the 'biometricTemplate' and 'authKey' authentication types. http://www.opensc-project.org/pipermail/opensc-devel/2011-May/016655.html git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5550 c6295689-39f2-0310-b995-f0e70906c6a9
2011-06-05 15:46:25 +00:00
profile_auth.attrs.pin.flags);
pin_attrs->flags = profile_auth.attrs.pin.flags;
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
update_df = 1;
}
}
if (update_df) {
struct sc_pkcs15_df *df = p15card->df_list;
while (df != NULL && df->type != SC_PKCS15_AODF)
df = df->next;
if (!df)
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(ctx, SC_ERROR_OBJECT_NOT_FOUND, "Cannot find AODF");
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
rv = sc_pkcs15init_update_any_df(p15card, profile, df, 0);
replaced SC_TEST_RET with LOG_TEST_RET
2018-11-23 20:54:14 +00:00
LOG_TEST_RET(ctx, rv, "Update AODF error");
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
}
SC_FUNC_RETURN(ctx, SC_LOG_DEBUG_VERBOSE, rv);
}
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
static struct sc_pkcs15init_operations sc_pkcs15init_entersafe_operations = {
entersafe_erase_card,
entersafe_init_card,
entersafe_create_dir,
NULL, /* create_domain */
entersafe_pin_reference,
entersafe_create_pin,
entersafe_key_reference,
entersafe_create_key,
entersafe_store_key,
entersafe_generate_key,
NULL, NULL, /* encode private/public key */
NULL, /* finalize */
Fix warning: missing initializer git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4156 c6295689-39f2-0310-b995-f0e70906c6a9
2010-03-28 11:37:13 +00:00
NULL, /* delete_object */
pkcs15init: new 'emulation-store-data' operation ... the first usage is to update the public key PKCS#15 object attributes and to encode it's direct value. (support of the Oberthur's AuthentIC V3.2 card) git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@5001 c6295689-39f2-0310-b995-f0e70906c6a9
2010-12-30 12:50:35 +00:00
NULL, NULL, NULL, NULL, NULL, /* pkcs15init emulation */
#229: pkcs15init entersafe: 'sanity-check' includes the update of the User PIN's 'pinFlags' git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4516 c6295689-39f2-0310-b995-f0e70906c6a9
2010-07-06 12:40:56 +00:00
entersafe_sanity_check,
Add new entersafe driver for ePass 3000 tokens. git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@3556 c6295689-39f2-0310-b995-f0e70906c6a9
2008-08-20 05:41:20 +00:00
};
struct sc_pkcs15init_operations *sc_pkcs15init_get_entersafe_ops(void)
{
return &sc_pkcs15init_entersafe_operations;
}