2004-11-24 17:00:53 +00:00
|
|
|
/*
|
|
|
|
|
* PKCS15 emulation layer for Postecert and Cnipa card.
|
|
|
|
|
* To see how this works, run p15dump on your Postecert or Cnipa Card.
|
|
|
|
|
*
|
|
|
|
|
* Copyright (C) 2004, Antonino Iacono <ant_iacono@tin.it>
|
|
|
|
|
* Copyright (C) 2003, Olaf Kirch <okir@suse.de>
|
|
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
*/
|
|
|
|
|
|
2010-03-04 08:14:36 +00:00
|
|
|
#include "config.h"
|
|
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
#include <stdio.h>
|
2010-03-04 08:14:36 +00:00
|
|
|
|
|
|
|
|
#include "common/compat_strlcpy.h"
|
|
|
|
|
#include "internal.h"
|
|
|
|
|
#include "pkcs15.h"
|
|
|
|
|
#include "log.h"
|
2004-11-24 17:00:53 +00:00
|
|
|
|
2004-12-15 17:34:15 +00:00
|
|
|
int sc_pkcs15emu_postecert_init_ex(sc_pkcs15_card_t *, sc_pkcs15emu_opt_t *);
|
|
|
|
|
|
2005-03-08 20:59:35 +00:00
|
|
|
static int (*set_security_env) (sc_card_t *, const sc_security_env_t *, int);
|
2004-11-24 17:00:53 +00:00
|
|
|
|
2005-03-08 20:59:35 +00:00
|
|
|
static int set_sec_env(sc_card_t * card, const sc_security_env_t *env,
|
2005-02-04 17:32:03 +00:00
|
|
|
int se_num)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-03-08 20:59:35 +00:00
|
|
|
sc_security_env_t tenv = *env;
|
2005-02-04 17:32:03 +00:00
|
|
|
if (tenv.operation == SC_SEC_OPERATION_SIGN)
|
|
|
|
|
tenv.operation = SC_SEC_OPERATION_DECIPHER;
|
|
|
|
|
return set_security_env(card, &tenv, se_num);
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
static int do_sign(sc_card_t * card, const u8 * in, size_t inlen, u8 * out,
|
|
|
|
|
size_t outlen)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
return card->ops->decipher(card, in, inlen, out, outlen);
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
static void set_string(char **strp, const char *value)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
if (*strp)
|
2005-03-18 20:36:52 +00:00
|
|
|
free(*strp);
|
2005-02-04 17:32:03 +00:00
|
|
|
*strp = value ? strdup(value) : NULL;
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
|
2005-10-30 21:42:35 +00:00
|
|
|
#if 1
|
|
|
|
|
/* XXX: temporary copy of the old pkcs15emu functions,
|
|
|
|
|
* to be removed */
|
|
|
|
|
static int sc_pkcs15emu_add_pin(sc_pkcs15_card_t *p15card,
|
|
|
|
|
const sc_pkcs15_id_t *id, const char *label,
|
|
|
|
|
const sc_path_t *path, int ref, int type,
|
|
|
|
|
unsigned int min_length,
|
|
|
|
|
unsigned int max_length,
|
|
|
|
|
int flags, int tries_left, const char pad_char, int obj_flags)
|
|
|
|
|
{
|
2011-06-05 15:46:25 +00:00
|
|
|
sc_pkcs15_auth_info_t info;
|
2005-10-30 21:42:35 +00:00
|
|
|
sc_pkcs15_object_t obj;
|
|
|
|
|
|
|
|
|
|
memset(&info, 0, sizeof(info));
|
|
|
|
|
memset(&obj, 0, sizeof(obj));
|
|
|
|
|
|
|
|
|
|
info.auth_id = *id;
|
2011-06-05 15:46:25 +00:00
|
|
|
info.auth_type = SC_PKCS15_PIN_AUTH_TYPE_PIN;
|
|
|
|
|
info.attrs.pin.min_length = min_length;
|
|
|
|
|
info.attrs.pin.max_length = max_length;
|
|
|
|
|
info.attrs.pin.stored_length = max_length;
|
|
|
|
|
info.attrs.pin.type = type;
|
|
|
|
|
info.attrs.pin.reference = ref;
|
|
|
|
|
info.attrs.pin.flags = flags;
|
|
|
|
|
info.attrs.pin.pad_char = pad_char;
|
2005-10-30 21:42:35 +00:00
|
|
|
info.tries_left = tries_left;
|
|
|
|
|
|
|
|
|
|
if (path)
|
|
|
|
|
info.path = *path;
|
|
|
|
|
if (type == SC_PKCS15_PIN_TYPE_BCD)
|
2011-06-05 15:46:25 +00:00
|
|
|
info.attrs.pin.stored_length /= 2;
|
2005-10-30 21:42:35 +00:00
|
|
|
|
2006-07-12 08:12:38 +00:00
|
|
|
strlcpy(obj.label, label, sizeof(obj.label));
|
2005-10-30 21:42:35 +00:00
|
|
|
obj.flags = obj_flags;
|
|
|
|
|
|
|
|
|
|
return sc_pkcs15emu_add_pin_obj(p15card, &obj, &info);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int sc_pkcs15emu_add_prkey(sc_pkcs15_card_t *p15card,
|
|
|
|
|
const sc_pkcs15_id_t *id,
|
|
|
|
|
const char *label,
|
|
|
|
|
int type, unsigned int modulus_length, int usage,
|
|
|
|
|
const sc_path_t *path, int ref,
|
|
|
|
|
const sc_pkcs15_id_t *auth_id, int obj_flags)
|
|
|
|
|
{
|
|
|
|
|
sc_pkcs15_prkey_info_t info;
|
|
|
|
|
sc_pkcs15_object_t obj;
|
|
|
|
|
|
|
|
|
|
memset(&info, 0, sizeof(info));
|
|
|
|
|
memset(&obj, 0, sizeof(obj));
|
|
|
|
|
|
|
|
|
|
info.id = *id;
|
|
|
|
|
info.modulus_length = modulus_length;
|
|
|
|
|
info.usage = usage;
|
|
|
|
|
info.native = 1;
|
|
|
|
|
info.access_flags = SC_PKCS15_PRKEY_ACCESS_SENSITIVE
|
|
|
|
|
| SC_PKCS15_PRKEY_ACCESS_ALWAYSSENSITIVE
|
|
|
|
|
| SC_PKCS15_PRKEY_ACCESS_NEVEREXTRACTABLE
|
|
|
|
|
| SC_PKCS15_PRKEY_ACCESS_LOCAL;
|
|
|
|
|
info.key_reference = ref;
|
|
|
|
|
|
|
|
|
|
if (path)
|
|
|
|
|
info.path = *path;
|
|
|
|
|
|
|
|
|
|
obj.flags = obj_flags;
|
2006-07-12 08:12:38 +00:00
|
|
|
strlcpy(obj.label, label, sizeof(obj.label));
|
2005-10-30 21:42:35 +00:00
|
|
|
if (auth_id != NULL)
|
|
|
|
|
obj.auth_id = *auth_id;
|
|
|
|
|
|
|
|
|
|
return sc_pkcs15emu_add_rsa_prkey(p15card, &obj, &info);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int sc_pkcs15emu_add_cert(sc_pkcs15_card_t *p15card,
|
|
|
|
|
int type, int authority, const sc_path_t *path,
|
|
|
|
|
const sc_pkcs15_id_t *id, const char *label, int obj_flags)
|
|
|
|
|
{
|
|
|
|
|
/* const char *label = "Certificate"; */
|
|
|
|
|
sc_pkcs15_cert_info_t info;
|
|
|
|
|
sc_pkcs15_object_t obj;
|
|
|
|
|
|
|
|
|
|
memset(&info, 0, sizeof(info));
|
|
|
|
|
memset(&obj, 0, sizeof(obj));
|
|
|
|
|
|
|
|
|
|
info.id = *id;
|
|
|
|
|
info.authority = authority;
|
|
|
|
|
if (path)
|
|
|
|
|
info.path = *path;
|
|
|
|
|
|
2006-07-12 08:12:38 +00:00
|
|
|
strlcpy(obj.label, label, sizeof(obj.label));
|
2005-10-30 21:42:35 +00:00
|
|
|
obj.flags = obj_flags;
|
|
|
|
|
|
|
|
|
|
return sc_pkcs15emu_add_x509_cert(p15card, &obj, &info);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
static int sc_pkcs15emu_postecert_init(sc_pkcs15_card_t * p15card)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
static int prkey_usage = SC_PKCS15_PRKEY_USAGE_NONREPUDIATION;
|
|
|
|
|
static int authprkey_usage = SC_PKCS15_PRKEY_USAGE_SIGN
|
2012-06-07 20:12:37 +00:00
|
|
|
| SC_PKCS15_PRKEY_USAGE_SIGNRECOVER
|
|
|
|
|
| SC_PKCS15_PRKEY_USAGE_ENCRYPT
|
|
|
|
|
| SC_PKCS15_PRKEY_USAGE_DECRYPT;
|
2005-02-04 17:32:03 +00:00
|
|
|
|
|
|
|
|
sc_card_t *card = p15card->card;
|
|
|
|
|
sc_path_t path;
|
|
|
|
|
sc_pkcs15_id_t id, auth_id;
|
|
|
|
|
unsigned char certlen[2];
|
|
|
|
|
unsigned char *certi = NULL;
|
|
|
|
|
int index_cert[4];
|
|
|
|
|
int count_cert[4];
|
|
|
|
|
int flags;
|
|
|
|
|
int authority;
|
2005-08-08 10:22:14 +00:00
|
|
|
size_t i, count;
|
|
|
|
|
int r;
|
2005-02-04 17:32:03 +00:00
|
|
|
int o = 0;
|
|
|
|
|
|
|
|
|
|
const char *label = "User Non-repudiation Certificate";
|
|
|
|
|
const char *calabel = "CA Certificate";
|
|
|
|
|
const char *catmslabel = "CA TimeStamper Certificate";
|
|
|
|
|
const char *authlabel = "User Authentication Certificate";
|
|
|
|
|
|
|
|
|
|
const char *postecert_auth_cert_path = "504B0001";
|
|
|
|
|
|
|
|
|
|
const char *authPIN = "Authentication PIN";
|
|
|
|
|
const char *nonrepPIN = "Non-repudiation PIN";
|
|
|
|
|
|
|
|
|
|
const char *authPRKEY = "Authentication Key";
|
|
|
|
|
const char *nonrepPRKEY = "Non repudiation Key";
|
2004-11-24 17:00:53 +00:00
|
|
|
|
2012-06-07 20:12:37 +00:00
|
|
|
memset(index_cert, 0, sizeof(index_cert));
|
|
|
|
|
memset(count_cert, 0, sizeof(count_cert));
|
|
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
/* Get the non-repudiation certificate length */
|
|
|
|
|
sc_format_path(postecert_auth_cert_path, &path);
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
if (sc_select_file(card, &path, NULL) < 0) {
|
2004-11-24 17:00:53 +00:00
|
|
|
r = SC_ERROR_WRONG_CARD;
|
|
|
|
|
goto failed;
|
2005-02-04 17:32:03 +00:00
|
|
|
}
|
2004-11-24 17:00:53 +00:00
|
|
|
|
2010-10-05 15:44:58 +00:00
|
|
|
set_string(&p15card->tokeninfo->label, "Postecert & Cnipa Card");
|
|
|
|
|
set_string(&p15card->tokeninfo->manufacturer_id, "Postecert");
|
|
|
|
|
set_string(&p15card->tokeninfo->serial_number, "0000");
|
2005-02-04 17:32:03 +00:00
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
sc_read_binary(card, 0, certlen, 2, 0);
|
|
|
|
|
|
|
|
|
|
/* Now set the certificate offset/len */
|
|
|
|
|
count = (certlen[0] << 8) + certlen[1];
|
2005-08-08 10:22:14 +00:00
|
|
|
if (count < 256)
|
|
|
|
|
return SC_ERROR_INTERNAL;
|
2004-11-24 17:00:53 +00:00
|
|
|
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
certi = malloc(count);
|
2005-02-04 17:32:03 +00:00
|
|
|
|
|
|
|
|
if (!certi)
|
|
|
|
|
return SC_ERROR_OUT_OF_MEMORY;
|
|
|
|
|
|
|
|
|
|
sc_read_binary(card, 0, certi, count - 500, 0);
|
|
|
|
|
|
|
|
|
|
for (i = 2; i < (count - 256); i++) {
|
|
|
|
|
/* this file contain more than one certificate */
|
|
|
|
|
if (*(certi + i) == 0x30 && *(certi + i + 1) == 0x82
|
|
|
|
|
&& *(certi + i + 4) == 0x30 && *(certi + i + 5) == 0x82
|
|
|
|
|
&& *(certi + i + 2) > 1 && *(certi + i + 2) < 8
|
|
|
|
|
&& *(certi + i + 6) <= *(certi + i + 2)) {
|
|
|
|
|
index_cert[o] = i;
|
|
|
|
|
count_cert[o] =
|
|
|
|
|
(*(certi + i + 2) << 8) + *(certi + i + 3) + 4;
|
|
|
|
|
o++;
|
|
|
|
|
if (o > 4)
|
|
|
|
|
break;
|
|
|
|
|
i += (*(certi + i + 2) << 8) + *(certi + i + 3);
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
free(certi);
|
|
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
path.index = index_cert[0];
|
|
|
|
|
path.count = count_cert[0];
|
|
|
|
|
|
|
|
|
|
id.value[0] = 1;
|
|
|
|
|
id.len = 1;
|
|
|
|
|
|
|
|
|
|
authority = 1;
|
|
|
|
|
|
|
|
|
|
sc_pkcs15emu_add_cert(p15card,
|
2005-02-04 17:32:03 +00:00
|
|
|
SC_PKCS15_TYPE_CERT_X509, authority,
|
|
|
|
|
&path, &id, calabel, SC_PKCS15_CO_FLAG_MODIFIABLE);
|
2004-11-24 17:00:53 +00:00
|
|
|
|
|
|
|
|
path.index = index_cert[1];
|
|
|
|
|
path.count = count_cert[1];
|
|
|
|
|
|
|
|
|
|
id.value[0] = 2;
|
|
|
|
|
id.len = 1;
|
|
|
|
|
|
|
|
|
|
authority = 1;
|
|
|
|
|
|
|
|
|
|
sc_pkcs15emu_add_cert(p15card,
|
2005-02-04 17:32:03 +00:00
|
|
|
SC_PKCS15_TYPE_CERT_X509, authority,
|
|
|
|
|
&path, &id, catmslabel, SC_PKCS15_CO_FLAG_MODIFIABLE);
|
2004-11-24 17:00:53 +00:00
|
|
|
|
|
|
|
|
path.index = index_cert[2];
|
|
|
|
|
path.count = count_cert[2];
|
|
|
|
|
|
|
|
|
|
id.value[0] = 3;
|
|
|
|
|
id.len = 1;
|
|
|
|
|
|
|
|
|
|
authority = 0;
|
|
|
|
|
|
|
|
|
|
sc_pkcs15emu_add_cert(p15card,
|
2005-02-04 17:32:03 +00:00
|
|
|
SC_PKCS15_TYPE_CERT_X509, authority,
|
|
|
|
|
&path, &id, label, SC_PKCS15_CO_FLAG_MODIFIABLE);
|
2004-11-24 17:00:53 +00:00
|
|
|
|
|
|
|
|
path.index = index_cert[3];
|
|
|
|
|
path.count = count_cert[3];
|
|
|
|
|
|
|
|
|
|
id.value[0] = 4;
|
|
|
|
|
id.len = 1;
|
|
|
|
|
|
|
|
|
|
sc_pkcs15emu_add_cert(p15card,
|
2005-02-04 17:32:03 +00:00
|
|
|
SC_PKCS15_TYPE_CERT_X509, authority,
|
|
|
|
|
&path, &id, authlabel, SC_PKCS15_CO_FLAG_MODIFIABLE);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
flags = SC_PKCS15_PIN_FLAG_CASE_SENSITIVE |
|
|
|
|
|
SC_PKCS15_PIN_FLAG_INITIALIZED | SC_PKCS15_PIN_FLAG_NEEDS_PADDING;
|
|
|
|
|
|
|
|
|
|
/* add authentication PIN */
|
|
|
|
|
sc_format_path("3F00504B", &path);
|
|
|
|
|
id.value[0] = 1;
|
|
|
|
|
sc_pkcs15emu_add_pin(p15card, &id,
|
|
|
|
|
authPIN, &path, 0x82,
|
|
|
|
|
SC_PKCS15_PIN_TYPE_ASCII_NUMERIC,
|
|
|
|
|
6, 14, flags, 3, 0,
|
|
|
|
|
SC_PKCS15_CO_FLAG_MODIFIABLE |
|
|
|
|
|
SC_PKCS15_CO_FLAG_PRIVATE);
|
|
|
|
|
|
|
|
|
|
/* add authentication private key */
|
|
|
|
|
id.value[0] = 4;
|
|
|
|
|
auth_id.value[0] = 1;
|
|
|
|
|
auth_id.len = 1;
|
|
|
|
|
sc_pkcs15emu_add_prkey(p15card, &id,
|
|
|
|
|
authPRKEY,
|
|
|
|
|
SC_PKCS15_TYPE_PRKEY_RSA,
|
|
|
|
|
1024, authprkey_usage,
|
|
|
|
|
&path, 0x06, &auth_id, SC_PKCS15_CO_FLAG_PRIVATE);
|
|
|
|
|
|
|
|
|
|
/* add non repudiation PIN */
|
|
|
|
|
sc_format_path("3F00504B", &path);
|
|
|
|
|
id.value[0] = 2;
|
|
|
|
|
sc_pkcs15emu_add_pin(p15card, &id,
|
|
|
|
|
nonrepPIN, &path, 0x82,
|
|
|
|
|
SC_PKCS15_PIN_TYPE_ASCII_NUMERIC,
|
|
|
|
|
6, 14, flags, 3, 0,
|
|
|
|
|
SC_PKCS15_CO_FLAG_MODIFIABLE |
|
|
|
|
|
SC_PKCS15_CO_FLAG_PRIVATE);
|
2004-11-24 17:00:53 +00:00
|
|
|
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
/* add non repudiation private key */
|
|
|
|
|
id.value[0] = 3;
|
|
|
|
|
auth_id.value[0] = 2;
|
|
|
|
|
sc_pkcs15emu_add_prkey(p15card, &id,
|
|
|
|
|
nonrepPRKEY,
|
|
|
|
|
SC_PKCS15_TYPE_PRKEY_RSA,
|
|
|
|
|
1024, prkey_usage,
|
|
|
|
|
&path, 0x01, &auth_id, SC_PKCS15_CO_FLAG_PRIVATE);
|
|
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
/* return to MF */
|
|
|
|
|
sc_format_path("3F00", &path);
|
2005-12-05 21:50:47 +00:00
|
|
|
r = sc_select_file(card, &path, NULL);
|
|
|
|
|
if (r != SC_SUCCESS)
|
|
|
|
|
return r;
|
|
|
|
|
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
/* save old signature funcs */
|
2005-02-06 20:46:15 +00:00
|
|
|
set_security_env = card->ops->set_security_env;
|
2005-02-04 17:32:03 +00:00
|
|
|
/* set new one */
|
2005-02-06 20:46:15 +00:00
|
|
|
card->ops->set_security_env = set_sec_env;
|
|
|
|
|
card->ops->compute_signature = do_sign;
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
return 0;
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
failed:
|
2010-03-15 12:17:13 +00:00
|
|
|
sc_debug(card->ctx, SC_LOG_DEBUG_NORMAL,
|
2005-02-04 17:32:03 +00:00
|
|
|
"Failed to initialize Postecert and Cnipa emulation: %s\n",
|
|
|
|
|
sc_strerror(r));
|
|
|
|
|
return r;
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
static int postecert_detect_card(sc_pkcs15_card_t * p15card)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
sc_card_t *card = p15card->card;
|
2004-11-24 17:00:53 +00:00
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
/* check if we have the correct card OS */
|
|
|
|
|
if (strcmp(card->name, "CardOS M4"))
|
|
|
|
|
return SC_ERROR_WRONG_CARD;
|
|
|
|
|
return SC_SUCCESS;
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
|
|
|
|
|
2005-02-04 17:32:03 +00:00
|
|
|
int sc_pkcs15emu_postecert_init_ex(sc_pkcs15_card_t * p15card,
|
|
|
|
|
sc_pkcs15emu_opt_t * opts)
|
2004-11-24 17:00:53 +00:00
|
|
|
{
|
2005-02-04 17:32:03 +00:00
|
|
|
if (opts && opts->flags & SC_PKCS15EMU_FLAGS_NO_CHECK)
|
|
|
|
|
return sc_pkcs15emu_postecert_init(p15card);
|
|
|
|
|
else {
|
|
|
|
|
int r = postecert_detect_card(p15card);
|
|
|
|
|
if (r)
|
|
|
|
|
return SC_ERROR_WRONG_CARD;
|
|
|
|
|
return sc_pkcs15emu_postecert_init(p15card);
|
|
|
|
|
}
|
2004-11-24 17:00:53 +00:00
|
|
|
}
|
