2002-04-02 13:26:42 +00:00
|
|
|
/*
|
|
|
|
|
* GPK specific operation for PKCS15 initialization
|
|
|
|
|
*
|
2015-10-05 12:06:23 +00:00
|
|
|
* Copyright (C) 2002 Olaf Kirch <okir@suse.de>
|
2002-04-02 13:26:42 +00:00
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
*/
|
|
|
|
|
|
2010-03-04 08:14:36 +00:00
|
|
|
#include "config.h"
|
|
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
#include <sys/types.h>
|
2002-04-15 18:03:45 +00:00
|
|
|
#include <stdlib.h>
|
2002-04-02 13:26:42 +00:00
|
|
|
#include <string.h>
|
|
|
|
|
#include <assert.h>
|
|
|
|
|
#include <stdarg.h>
|
2003-12-17 12:15:11 +00:00
|
|
|
#ifdef HAVE_UNISTD_H
|
2003-12-16 14:32:16 +00:00
|
|
|
#include <unistd.h>
|
2003-12-17 12:15:11 +00:00
|
|
|
#endif
|
2010-03-04 08:14:36 +00:00
|
|
|
|
|
|
|
|
#include "libopensc/opensc.h"
|
|
|
|
|
#include "libopensc/cardctl.h"
|
|
|
|
|
#include "libopensc/cards.h"
|
|
|
|
|
#include "libopensc/log.h"
|
2002-04-02 13:26:42 +00:00
|
|
|
#include "pkcs15-init.h"
|
|
|
|
|
#include "profile.h"
|
|
|
|
|
|
2008-03-06 16:06:59 +00:00
|
|
|
/* this could be removed once we include libopensc/internal.h */
|
|
|
|
|
#ifndef _WIN32
|
|
|
|
|
#define msleep(t) usleep((t) * 1000)
|
|
|
|
|
#else
|
|
|
|
|
#include <windows.h>
|
|
|
|
|
#define msleep(t) Sleep(t)
|
|
|
|
|
#define sleep(t) Sleep((t) * 1000)
|
|
|
|
|
#endif
|
|
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
#define PK_INIT_IMMEDIATELY
|
|
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
#define GPK_MAX_PINS 8
|
2003-10-13 16:13:12 +00:00
|
|
|
#define GPK_PIN_SCOPE 8
|
2002-04-02 13:26:42 +00:00
|
|
|
#define GPK_FTYPE_SECRET_CODE 0x21
|
|
|
|
|
#define GPK_FTYPE_PUBLIC_KEY 0x2C
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Key components (for storing private keys)
|
|
|
|
|
*/
|
|
|
|
|
struct pkcomp {
|
|
|
|
|
unsigned char tag;
|
|
|
|
|
u8 * data;
|
|
|
|
|
unsigned int size;
|
|
|
|
|
};
|
2002-04-19 14:23:31 +00:00
|
|
|
|
|
|
|
|
struct pkpart {
|
|
|
|
|
struct pkcomp components[7];
|
|
|
|
|
unsigned int count;
|
|
|
|
|
unsigned int size;
|
|
|
|
|
};
|
|
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
struct pkdata {
|
|
|
|
|
unsigned int algo;
|
|
|
|
|
unsigned int usage;
|
2002-04-19 14:23:31 +00:00
|
|
|
struct pkpart _public, _private;
|
2002-04-02 13:26:42 +00:00
|
|
|
unsigned int bits, bytes;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Local functions
|
|
|
|
|
*/
|
2010-02-21 16:21:57 +00:00
|
|
|
static int gpk_pkfile_create(sc_profile_t *, sc_pkcs15_card_t *, sc_file_t *);
|
2003-10-14 09:57:29 +00:00
|
|
|
static int gpk_encode_rsa_key(sc_profile_t *, sc_card_t *,
|
2002-04-15 13:42:10 +00:00
|
|
|
struct sc_pkcs15_prkey_rsa *, struct pkdata *,
|
2002-04-02 13:26:42 +00:00
|
|
|
struct sc_pkcs15_prkey_info *);
|
2003-10-14 09:57:29 +00:00
|
|
|
static int gpk_encode_dsa_key(sc_profile_t *, sc_card_t *,
|
2002-04-15 13:42:10 +00:00
|
|
|
struct sc_pkcs15_prkey_dsa *, struct pkdata *,
|
2002-04-02 13:26:42 +00:00
|
|
|
struct sc_pkcs15_prkey_info *);
|
2010-02-21 16:21:57 +00:00
|
|
|
static int gpk_store_pk(struct sc_profile *, sc_pkcs15_card_t *,
|
2005-03-09 00:04:44 +00:00
|
|
|
sc_file_t *, struct pkdata *);
|
2010-02-21 16:21:57 +00:00
|
|
|
static int gpk_init_pinfile(sc_profile_t *, sc_pkcs15_card_t *, sc_file_t *);
|
|
|
|
|
static int gpk_pkfile_init_public(sc_profile_t *, sc_pkcs15_card_t *,
|
2003-12-16 14:32:16 +00:00
|
|
|
sc_file_t *, unsigned int, unsigned int, unsigned int);
|
|
|
|
|
static int gpk_pkfile_init_private(sc_card_t *, sc_file_t *, unsigned int);
|
|
|
|
|
static int gpk_read_rsa_key(sc_card_t *, struct sc_pkcs15_pubkey_rsa *);
|
2002-06-17 15:26:36 +00:00
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Erase the card
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_erase_card(struct sc_profile *pro, sc_pkcs15_card_t *p15card)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2002-11-08 13:50:33 +00:00
|
|
|
int locked;
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
if (sc_card_ctl(p15card->card, SC_CARDCTL_GPK_IS_LOCKED, &locked) == 0
|
2002-11-08 13:50:33 +00:00
|
|
|
&& locked) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx,
|
2002-11-08 13:50:33 +00:00
|
|
|
"This card is already personalized, unable to "
|
|
|
|
|
"create PKCS#15 structure.");
|
|
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
2010-02-21 16:21:57 +00:00
|
|
|
return sc_card_ctl(p15card->card, SC_CARDCTL_ERASE_CARD, NULL);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/*
|
|
|
|
|
* Create a new DF
|
|
|
|
|
* This will usually be the application DF
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_create_dir(sc_profile_t *profile, sc_pkcs15_card_t *p15card, sc_file_t *df)
|
2003-10-13 16:13:12 +00:00
|
|
|
{
|
|
|
|
|
struct sc_file *pinfile;
|
2010-02-21 20:33:51 +00:00
|
|
|
int r, locked;
|
2003-10-13 16:13:12 +00:00
|
|
|
|
2010-03-15 12:17:13 +00:00
|
|
|
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
|
2012-04-02 21:40:05 +00:00
|
|
|
if (sc_card_ctl(p15card->card, SC_CARDCTL_GPK_IS_LOCKED, &locked) == 0
|
2010-02-21 18:24:41 +00:00
|
|
|
&& locked) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx,
|
2003-10-13 16:13:12 +00:00
|
|
|
"This card is already personalized, unable to "
|
|
|
|
|
"create PKCS#15 structure.");
|
|
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Create the DF. */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_pkcs15init_create_file(profile, p15card, df);
|
2003-10-13 16:13:12 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* See if there's a file called "pinfile" that resides within
|
|
|
|
|
* this DF. If so, create it */
|
|
|
|
|
if (sc_profile_get_file(profile, "pinfile", &pinfile) >= 0) {
|
|
|
|
|
/* Build the pin file's path from the DF path + its
|
|
|
|
|
* file ID */
|
|
|
|
|
pinfile->path = df->path;
|
|
|
|
|
sc_append_file_id(&pinfile->path, pinfile->id);
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_init_pinfile(profile, p15card, pinfile);
|
2003-10-13 16:13:12 +00:00
|
|
|
sc_file_free(pinfile);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2010-02-21 18:24:41 +00:00
|
|
|
/* TODO: What for it was used ?
|
2003-10-13 16:13:12 +00:00
|
|
|
for (i = 0; i < GPK_MAX_PINS; i++)
|
2010-02-21 18:24:41 +00:00
|
|
|
* sc_keycache_put_pin(&df->path, GPK_PIN_SCOPE|i, (const u8 *) " ");
|
|
|
|
|
*/
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
|
|
2018-11-22 22:10:49 +00:00
|
|
|
LOG_FUNC_RETURN(p15card->card->ctx, r);
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Select a PIN reference
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_select_pin_reference(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
|
2011-06-05 15:46:25 +00:00
|
|
|
sc_pkcs15_auth_info_t *auth_info)
|
2003-10-13 16:13:12 +00:00
|
|
|
{
|
|
|
|
|
int preferred, current;
|
|
|
|
|
|
2010-03-15 12:17:13 +00:00
|
|
|
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
|
2011-06-05 15:46:25 +00:00
|
|
|
|
|
|
|
|
if (auth_info->auth_type != SC_PKCS15_PIN_AUTH_TYPE_PIN)
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
|
|
|
|
|
if ((current = auth_info->attrs.pin.reference) < 0)
|
2003-10-13 16:13:12 +00:00
|
|
|
current = 0;
|
|
|
|
|
|
2011-06-05 15:46:25 +00:00
|
|
|
if (auth_info->attrs.pin.flags & SC_PKCS15_PIN_FLAG_SO_PIN) {
|
2003-10-13 16:13:12 +00:00
|
|
|
preferred = GPK_PIN_SCOPE | 0;
|
|
|
|
|
} else {
|
|
|
|
|
preferred = current | GPK_PIN_SCOPE;
|
|
|
|
|
|
|
|
|
|
if (preferred & 1)
|
|
|
|
|
preferred++;
|
|
|
|
|
if (preferred < (GPK_PIN_SCOPE | 2))
|
|
|
|
|
preferred = GPK_PIN_SCOPE | 2;
|
|
|
|
|
if (preferred > 15)
|
|
|
|
|
return SC_ERROR_TOO_MANY_OBJECTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (current > preferred)
|
|
|
|
|
return SC_ERROR_TOO_MANY_OBJECTS;
|
2011-06-05 15:46:25 +00:00
|
|
|
auth_info->attrs.pin.reference = preferred;
|
2018-11-22 22:10:49 +00:00
|
|
|
LOG_FUNC_RETURN(p15card->card->ctx, 0);
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Store a PIN
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_create_pin(sc_profile_t *profile, sc_pkcs15_card_t *p15card, sc_file_t *df,
|
2003-10-17 11:21:48 +00:00
|
|
|
sc_pkcs15_object_t *pin_obj,
|
2003-12-18 21:37:34 +00:00
|
|
|
const u8 *pin, size_t pin_len,
|
|
|
|
|
const u8 *puk, size_t puk_len)
|
2003-10-13 16:13:12 +00:00
|
|
|
{
|
2011-06-05 15:46:25 +00:00
|
|
|
sc_pkcs15_auth_info_t *auth_info = (sc_pkcs15_auth_info_t *) pin_obj->data;
|
|
|
|
|
struct sc_pkcs15_pin_attributes *pin_attrs = &auth_info->attrs.pin;
|
2003-12-18 21:37:34 +00:00
|
|
|
u8 nulpin[8];
|
2011-02-05 20:41:51 +00:00
|
|
|
int r;
|
2003-10-13 16:13:12 +00:00
|
|
|
|
2010-03-15 12:17:13 +00:00
|
|
|
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
|
2011-06-05 15:46:25 +00:00
|
|
|
|
|
|
|
|
if (auth_info->auth_type != SC_PKCS15_PIN_AUTH_TYPE_PIN)
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
|
|
|
|
|
if (pin_attrs->flags & SC_PKCS15_PIN_FLAG_SO_PIN) {
|
2003-10-13 16:13:12 +00:00
|
|
|
/* SO PIN reference must be 0 */
|
2011-06-05 15:46:25 +00:00
|
|
|
if (pin_attrs->reference != (GPK_PIN_SCOPE | 0))
|
2003-10-13 16:13:12 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
} else {
|
|
|
|
|
/* PIN references must be even numbers
|
|
|
|
|
* (the odd numbered PIN entries contain the
|
|
|
|
|
* PUKs).
|
|
|
|
|
* Returning SC_ERROR_INVALID_PIN_REFERENCE will
|
|
|
|
|
* tell the caller to pick a different value.
|
|
|
|
|
*/
|
2011-06-05 15:46:25 +00:00
|
|
|
if ((pin_attrs->reference & 1) || !(pin_attrs->reference & GPK_PIN_SCOPE))
|
2003-10-13 16:13:12 +00:00
|
|
|
return SC_ERROR_INVALID_PIN_REFERENCE;
|
2011-06-05 15:46:25 +00:00
|
|
|
if (pin_attrs->reference >= (GPK_PIN_SCOPE + GPK_MAX_PINS))
|
2003-10-13 16:13:12 +00:00
|
|
|
return SC_ERROR_TOO_MANY_OBJECTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* No PUK given, but the PIN file specifies an unblock
|
|
|
|
|
* PIN for every PIN.
|
|
|
|
|
* Use the same value for the PUK for now.
|
|
|
|
|
* Alternatively, we could leave the unblock PIN at the default
|
|
|
|
|
* value, but deliberately block it. */
|
|
|
|
|
if (puk == NULL || puk_len == 0) {
|
|
|
|
|
puk = pin;
|
|
|
|
|
puk_len = pin_len;
|
|
|
|
|
}
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_select_file(p15card->card, &df->path, NULL);
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "select df path: %i", r);
|
2003-10-13 16:13:12 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* Current PIN is 00:00:00:00:00:00:00:00 */
|
|
|
|
|
memset(nulpin, 0, sizeof(nulpin));
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_change_reference_data(p15card->card, SC_AC_CHV,
|
2011-06-05 15:46:25 +00:00
|
|
|
pin_attrs->reference,
|
2003-10-13 16:13:12 +00:00
|
|
|
nulpin, sizeof(nulpin),
|
|
|
|
|
pin, pin_len, NULL);
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "change CHV %i", r);
|
2003-10-13 16:13:12 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* Current PUK is 00:00:00:00:00:00:00:00 */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_change_reference_data(p15card->card, SC_AC_CHV,
|
2011-06-05 15:46:25 +00:00
|
|
|
pin_attrs->reference + 1,
|
2003-10-13 16:13:12 +00:00
|
|
|
nulpin, sizeof(nulpin),
|
|
|
|
|
puk, puk_len, NULL);
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "change CHV+1 %i", r);
|
2003-10-13 16:13:12 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2018-11-22 22:10:49 +00:00
|
|
|
LOG_FUNC_RETURN(p15card->card->ctx, r);
|
2003-10-13 16:13:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
/*
|
|
|
|
|
* Lock a file operation
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2005-03-09 00:04:44 +00:00
|
|
|
gpk_lock(sc_card_t *card, sc_file_t *file, unsigned int op)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
|
|
|
|
struct sc_cardctl_gpk_lock args;
|
|
|
|
|
|
|
|
|
|
args.file = file;
|
|
|
|
|
args.operation = op;
|
|
|
|
|
return sc_card_ctl(card, SC_CARDCTL_GPK_LOCK, &args);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Lock the pin file
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_lock_pinfile(struct sc_profile *profile, sc_pkcs15_card_t *p15card,
|
2005-03-09 00:04:44 +00:00
|
|
|
sc_file_t *pinfile)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
|
|
|
|
struct sc_path path;
|
|
|
|
|
struct sc_file *parent = NULL;
|
|
|
|
|
int r;
|
|
|
|
|
|
2010-03-15 12:17:13 +00:00
|
|
|
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
|
2002-04-02 13:26:42 +00:00
|
|
|
/* Select the parent DF */
|
|
|
|
|
path = pinfile->path;
|
|
|
|
|
if (path.len >= 2)
|
|
|
|
|
path.len -= 2;
|
|
|
|
|
if (path.len == 0)
|
|
|
|
|
sc_format_path("3F00", &path);
|
2010-02-21 16:21:57 +00:00
|
|
|
if ((r = sc_select_file(p15card->card, &path, &parent)) < 0)
|
2002-04-02 13:26:42 +00:00
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* Present PINs etc as necessary */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_pkcs15init_authenticate(profile, p15card, parent, SC_AC_OP_LOCK);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r >= 0)
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_lock(p15card->card, pinfile, SC_AC_OP_WRITE);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
sc_file_free(parent);
|
2018-11-22 22:10:49 +00:00
|
|
|
LOG_FUNC_RETURN(p15card->card->ctx, r);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Initialize pin file
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_init_pinfile(struct sc_profile *profile, sc_pkcs15_card_t *p15card,
|
2005-03-09 00:04:44 +00:00
|
|
|
sc_file_t *file)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2005-03-09 00:04:44 +00:00
|
|
|
const sc_acl_entry_t *acl;
|
2002-04-02 13:26:42 +00:00
|
|
|
unsigned char buffer[GPK_MAX_PINS * 8], *blk;
|
|
|
|
|
struct sc_file *pinfile;
|
2002-04-08 09:28:26 +00:00
|
|
|
unsigned int so_attempts[2], user_attempts[2];
|
2002-04-02 13:26:42 +00:00
|
|
|
unsigned int npins, i, j, cks;
|
|
|
|
|
int r;
|
|
|
|
|
|
2010-03-15 12:17:13 +00:00
|
|
|
SC_FUNC_CALLED(p15card->card->ctx, SC_LOG_DEBUG_VERBOSE);
|
2002-04-02 13:26:42 +00:00
|
|
|
/* Set defaults */
|
2003-10-13 16:13:12 +00:00
|
|
|
so_attempts[0] = sc_profile_get_pin_retries(profile, SC_PKCS15INIT_SO_PIN);
|
|
|
|
|
so_attempts[1] = sc_profile_get_pin_retries(profile, SC_PKCS15INIT_SO_PUK);
|
|
|
|
|
user_attempts[0] = sc_profile_get_pin_retries(profile, SC_PKCS15INIT_USER_PIN);
|
|
|
|
|
user_attempts[1] = sc_profile_get_pin_retries(profile, SC_PKCS15INIT_USER_PUK);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
sc_file_dup(&pinfile, file);
|
2005-08-19 17:56:56 +00:00
|
|
|
if (pinfile == NULL)
|
|
|
|
|
return SC_ERROR_OUT_OF_MEMORY;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Create the PIN file. */
|
|
|
|
|
acl = sc_file_get_acl_entry(pinfile, SC_AC_OP_WRITE);
|
|
|
|
|
if (acl->method != SC_AC_NEVER) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"PIN file most be protected by WRITE=NEVER");
|
2006-04-26 10:01:06 +00:00
|
|
|
sc_file_free(pinfile);
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
|
|
|
|
sc_file_add_acl_entry(pinfile, SC_AC_OP_WRITE, SC_AC_NONE, 0);
|
|
|
|
|
|
|
|
|
|
if (pinfile->size == 0)
|
|
|
|
|
pinfile->size = GPK_MAX_PINS * 8;
|
|
|
|
|
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "Now create file");
|
2002-04-02 13:26:42 +00:00
|
|
|
/* Now create the file */
|
2010-02-21 16:21:57 +00:00
|
|
|
if ((r = sc_pkcs15init_create_file(profile, p15card, pinfile)) < 0
|
2010-02-21 18:24:41 +00:00
|
|
|
|| (r = sc_select_file(p15card->card, &pinfile->path, NULL)) < 0) {
|
2002-04-02 13:26:42 +00:00
|
|
|
goto out;
|
2010-02-21 18:24:41 +00:00
|
|
|
}
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Set up the PIN file contents.
|
|
|
|
|
* We assume the file will contain pairs of PINs/PUKs */
|
|
|
|
|
npins = pinfile->size / 8;
|
|
|
|
|
memset(buffer, 0, sizeof(buffer));
|
|
|
|
|
for (i = 0, blk = buffer; i < npins; blk += 8, i += 1) {
|
2002-04-08 09:28:26 +00:00
|
|
|
/* Determine the number of PIN/PUK presentation
|
|
|
|
|
* attempts. If the profile defines a SO PIN,
|
|
|
|
|
* it will be stored in the first PIN/PUK pair.
|
|
|
|
|
*/
|
|
|
|
|
blk[0] = user_attempts[i & 1];
|
|
|
|
|
if (i < 2 && so_attempts[0])
|
|
|
|
|
blk[0] = so_attempts[i & 1];
|
|
|
|
|
if ((i & 1) == 0) {
|
2002-04-02 13:26:42 +00:00
|
|
|
/* This is a PIN. If there's room in the file,
|
|
|
|
|
* the next will be a PUK so take note of the
|
2002-04-08 09:28:26 +00:00
|
|
|
* unlock code */
|
2002-04-02 13:26:42 +00:00
|
|
|
if (i + 1 < npins)
|
2003-10-13 16:13:12 +00:00
|
|
|
blk[2] = GPK_PIN_SCOPE | (i + 1);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Compute the CKS */
|
|
|
|
|
for (j = 0, cks = 0; j < 8; j++)
|
|
|
|
|
cks ^= blk[j];
|
|
|
|
|
blk[3] = ~cks;
|
|
|
|
|
}
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_write_binary(p15card->card, 0, buffer, npins * 8, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r >= 0)
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_lock_pinfile(profile, p15card, pinfile);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
out: sc_file_free(pinfile);
|
2018-11-22 22:10:49 +00:00
|
|
|
LOG_FUNC_RETURN(p15card->card->ctx, r);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-10-13 16:13:12 +00:00
|
|
|
* Create a key file
|
2002-04-02 13:26:42 +00:00
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_create_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card, sc_pkcs15_object_t *obj)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2003-10-13 16:13:12 +00:00
|
|
|
sc_pkcs15_prkey_info_t *key_info = (sc_pkcs15_prkey_info_t *) obj->data;
|
|
|
|
|
struct sc_file *keyfile = NULL;
|
|
|
|
|
size_t bytes, mod_len, exp_len, prv_len, pub_len;
|
2003-12-16 14:32:16 +00:00
|
|
|
int r, algo;
|
2002-11-08 13:50:33 +00:00
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* The caller is supposed to have chosen a key file path for us */
|
|
|
|
|
if (key_info->path.len == 0 || key_info->modulus_length == 0)
|
|
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* Get the file we're supposed to create */
|
|
|
|
|
r = sc_profile_get_file_by_path(profile, &key_info->path, &keyfile);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* Compute the file size.
|
|
|
|
|
* We assume private keys are stored as CRT elements.
|
|
|
|
|
* - 512, 768 bit keys: all CRT elements fit into one record
|
|
|
|
|
* - >= 1024: each CRT element into a record of its own
|
|
|
|
|
*
|
|
|
|
|
* We also assume the public exponent is 32bit max
|
|
|
|
|
*
|
|
|
|
|
* Rules
|
|
|
|
|
* - private key records must have a length divisible by 8
|
|
|
|
|
*/
|
|
|
|
|
mod_len = key_info->modulus_length / 8;
|
|
|
|
|
exp_len = 4;
|
|
|
|
|
bytes = mod_len / 2;
|
|
|
|
|
pub_len = 8 + ((3 + mod_len + 3 + exp_len + 3) & ~3UL);
|
|
|
|
|
if (5 * bytes < 256) {
|
|
|
|
|
prv_len = 8 + ((3 + 5 * bytes + 7) & ~7UL);
|
|
|
|
|
} else {
|
|
|
|
|
prv_len = 8 + 5 * ((3 + bytes + 7) & ~7UL);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
2003-10-13 16:13:12 +00:00
|
|
|
keyfile->size = pub_len + prv_len;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
switch (obj->type) {
|
|
|
|
|
case SC_PKCS15_TYPE_PRKEY_RSA:
|
|
|
|
|
algo = SC_ALGORITHM_RSA; break;
|
|
|
|
|
case SC_PKCS15_TYPE_PRKEY_DSA:
|
|
|
|
|
algo = SC_ALGORITHM_DSA; break;
|
|
|
|
|
default:
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "Unsupported public key algorithm");
|
2003-12-16 14:32:16 +00:00
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
/* Fix up PIN references in file ACL and create the PK file */
|
2010-02-21 16:21:57 +00:00
|
|
|
if ((r = sc_pkcs15init_fixup_file(profile, p15card, keyfile)) < 0
|
|
|
|
|
|| (r = gpk_pkfile_create(profile, p15card, keyfile)) < 0)
|
2003-12-16 14:32:16 +00:00
|
|
|
goto done;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
#ifdef PK_INIT_IMMEDIATELY
|
|
|
|
|
/* Initialize the public key header */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_init_public(profile, p15card, keyfile, algo,
|
2003-12-16 14:32:16 +00:00
|
|
|
key_info->modulus_length,
|
|
|
|
|
key_info->usage);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
goto done;
|
|
|
|
|
|
|
|
|
|
/* Create the private key portion */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_init_private(p15card->card, keyfile, prv_len);
|
2003-12-16 14:32:16 +00:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
done:
|
2015-01-22 19:29:33 +00:00
|
|
|
sc_file_free(keyfile);
|
2002-04-02 13:26:42 +00:00
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-10-13 16:13:12 +00:00
|
|
|
* Store a private key
|
2002-04-02 13:26:42 +00:00
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_store_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
|
2003-10-13 16:13:12 +00:00
|
|
|
sc_pkcs15_object_t *obj, struct sc_pkcs15_prkey *key)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2003-10-13 16:13:12 +00:00
|
|
|
sc_pkcs15_prkey_info_t *key_info = (sc_pkcs15_prkey_info_t *) obj->data;
|
|
|
|
|
struct sc_file *keyfile = NULL;
|
|
|
|
|
struct pkdata data;
|
2002-04-02 13:26:42 +00:00
|
|
|
int r;
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* The caller is supposed to have chosen a key file path for us */
|
|
|
|
|
if (key_info->path.len == 0 || key_info->modulus_length == 0)
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* Get the file we're supposed to create */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_select_file(p15card->card, &key_info->path, &keyfile);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
switch (key->algorithm) {
|
|
|
|
|
case SC_ALGORITHM_RSA:
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_encode_rsa_key(profile, p15card->card, &key->u.rsa,
|
2003-10-13 16:13:12 +00:00
|
|
|
&data, key_info);
|
|
|
|
|
break;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
case SC_ALGORITHM_DSA:
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_encode_dsa_key(profile, p15card->card, &key->u.dsa,
|
2003-10-13 16:13:12 +00:00
|
|
|
&data, key_info);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
if (r >= 0)
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_store_pk(profile, p15card, keyfile, &data);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2017-01-05 19:21:44 +00:00
|
|
|
sc_file_free(keyfile);
|
2002-04-02 13:26:42 +00:00
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
/*
|
|
|
|
|
* On-board key generation.
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_generate_key(sc_profile_t *profile, sc_pkcs15_card_t *p15card,
|
2003-12-16 14:32:16 +00:00
|
|
|
sc_pkcs15_object_t *obj,
|
|
|
|
|
sc_pkcs15_pubkey_t *pubkey)
|
|
|
|
|
{
|
|
|
|
|
struct sc_cardctl_gpk_genkey args;
|
|
|
|
|
sc_pkcs15_prkey_info_t *key_info = (sc_pkcs15_prkey_info_t *) obj->data;
|
|
|
|
|
unsigned int keybits;
|
|
|
|
|
sc_file_t *keyfile;
|
|
|
|
|
int r, n;
|
|
|
|
|
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx,
|
2017-03-14 19:02:30 +00:00
|
|
|
"path=%s, %"SC_FORMAT_LEN_SIZE_T"u bits\n",
|
|
|
|
|
sc_print_path(&key_info->path),
|
|
|
|
|
key_info->modulus_length);
|
2006-01-11 23:41:17 +00:00
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
if (obj->type != SC_PKCS15_TYPE_PRKEY_RSA) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "GPK supports generating only RSA keys.");
|
2003-12-16 14:32:16 +00:00
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* The caller is supposed to have chosen a key file path for us */
|
|
|
|
|
if (key_info->path.len == 0 || key_info->modulus_length == 0)
|
|
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
keybits = key_info->modulus_length;
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
if ((r = sc_select_file(p15card->card, &key_info->path, &keyfile)) < 0)
|
2003-12-16 14:32:16 +00:00
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
#ifndef PK_INIT_IMMEDIATELY
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_init_public(profile, p15card, keyfile, SC_ALGORITHM_RSA,
|
2003-12-16 14:32:16 +00:00
|
|
|
keybits, key_info->usage);
|
2005-01-21 11:06:01 +00:00
|
|
|
if (r < 0) {
|
|
|
|
|
sc_file_free(keyfile);
|
2003-12-16 14:32:16 +00:00
|
|
|
return r;
|
2005-01-21 11:06:01 +00:00
|
|
|
}
|
2003-12-16 14:32:16 +00:00
|
|
|
|
2010-02-21 18:24:41 +00:00
|
|
|
if ((r = gpk_pkfile_init_private(p15card->card, keyfile, 5 * ((3 + keybits / 16 + 7) & ~7UL))) < 0) {
|
2005-01-21 11:06:01 +00:00
|
|
|
sc_file_free(keyfile);
|
2003-12-16 14:32:16 +00:00
|
|
|
return r;
|
2005-01-21 11:06:01 +00:00
|
|
|
}
|
2003-12-16 14:32:16 +00:00
|
|
|
#endif
|
2005-01-21 11:06:01 +00:00
|
|
|
sc_file_free(keyfile);
|
2003-12-16 14:32:16 +00:00
|
|
|
|
|
|
|
|
memset(&args, 0, sizeof(args));
|
|
|
|
|
/*args.exponent = 0x10001;*/
|
|
|
|
|
n = key_info->path.len;
|
|
|
|
|
args.fid = (key_info->path.value[n-2] << 8) | key_info->path.value[n-1];
|
|
|
|
|
args.privlen = keybits;
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_card_ctl(p15card->card, SC_CARDCTL_GPK_GENERATE_KEY, &args);
|
2003-12-16 14:32:16 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* This is fairly weird. The GENERATE RSA KEY command returns
|
|
|
|
|
* immediately, but obviously it needs more time to complete.
|
|
|
|
|
* This is why we sleep here. */
|
|
|
|
|
sleep(20);
|
|
|
|
|
|
|
|
|
|
pubkey->algorithm = SC_ALGORITHM_RSA;
|
2010-02-21 16:21:57 +00:00
|
|
|
return gpk_read_rsa_key(p15card->card, &pubkey->u.rsa);
|
2003-12-16 14:32:16 +00:00
|
|
|
}
|
|
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
/*
|
|
|
|
|
* GPK public/private key file handling is hideous.
|
|
|
|
|
* 600 lines of coke sweat and tears...
|
|
|
|
|
*/
|
|
|
|
|
/*
|
|
|
|
|
* Create the PK file
|
|
|
|
|
* XXX: Handle the UPDATE ACL = NEVER case just like for EFsc files
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_pkfile_create(sc_profile_t *profile, sc_pkcs15_card_t *p15card, sc_file_t *file)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
|
|
|
|
struct sc_file *found = NULL;
|
|
|
|
|
int r;
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_select_file(p15card->card, &file->path, &found);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r == SC_ERROR_FILE_NOT_FOUND) {
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_pkcs15init_create_file(profile, p15card, file);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r >= 0)
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_select_file(p15card->card, &file->path, &found);
|
2002-04-02 13:26:42 +00:00
|
|
|
} else {
|
|
|
|
|
/* XXX: make sure the file has correct type and size? */
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (r >= 0)
|
2012-04-02 21:40:05 +00:00
|
|
|
r = sc_pkcs15init_authenticate(profile, p15card, file,
|
2010-02-21 18:24:41 +00:00
|
|
|
SC_AC_OP_UPDATE);
|
2017-01-05 19:21:44 +00:00
|
|
|
sc_file_free(found);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
gpk_pkfile_keybits(unsigned int bits, unsigned char *p)
|
|
|
|
|
{
|
|
|
|
|
switch (bits) {
|
|
|
|
|
case 512: *p = 0x00; return 0;
|
|
|
|
|
case 768: *p = 0x10; return 0;
|
|
|
|
|
case 1024: *p = 0x11; return 0;
|
|
|
|
|
}
|
|
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
gpk_pkfile_keyalgo(unsigned int algo, unsigned char *p)
|
|
|
|
|
{
|
|
|
|
|
switch (algo) {
|
|
|
|
|
case SC_ALGORITHM_RSA: *p = 0x00; return 0;
|
|
|
|
|
case SC_ALGORITHM_DSA: *p = 0x01; return 0;
|
|
|
|
|
}
|
|
|
|
|
return SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Set up the public key record for a signature only public key
|
|
|
|
|
*/
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_pkfile_init_public(sc_profile_t *profile, sc_pkcs15_card_t *p15card, sc_file_t *file,
|
2002-04-02 13:26:42 +00:00
|
|
|
unsigned int algo, unsigned int bits,
|
|
|
|
|
unsigned int usage)
|
|
|
|
|
{
|
2010-02-21 16:21:57 +00:00
|
|
|
struct sc_context *ctx = p15card->card->ctx;
|
2005-03-09 00:04:44 +00:00
|
|
|
const sc_acl_entry_t *acl;
|
2003-10-13 16:13:12 +00:00
|
|
|
sc_file_t *tmp = NULL;
|
2002-04-02 13:26:42 +00:00
|
|
|
u8 sysrec[7], buffer[256];
|
|
|
|
|
unsigned int n, npins;
|
2005-02-10 10:07:13 +00:00
|
|
|
int r, card_type;
|
2002-06-17 15:26:36 +00:00
|
|
|
|
|
|
|
|
/* Find out what sort of GPK we're using */
|
2010-02-21 16:21:57 +00:00
|
|
|
if ((r = sc_card_ctl(p15card->card, SC_CARDCTL_GPK_VARIANT, &card_type)) < 0)
|
2002-06-17 15:26:36 +00:00
|
|
|
return r;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Set up the system record */
|
|
|
|
|
memset(sysrec, 0, sizeof(sysrec));
|
|
|
|
|
|
2003-12-17 07:35:55 +00:00
|
|
|
/* Mapping keyUsage to sysrec[2]:
|
2002-04-02 13:26:42 +00:00
|
|
|
* 0x00 sign & unwrap
|
|
|
|
|
* 0x10 sign only
|
|
|
|
|
* 0x20 unwrap only
|
|
|
|
|
* 0x30 CA key
|
2003-12-17 07:35:55 +00:00
|
|
|
*
|
|
|
|
|
* We start with a value of 0x30.
|
|
|
|
|
* If the key allows decryption, clear the sign only bit.
|
|
|
|
|
* Likewise, if it allows signing, clear the unwrap only bit.
|
2002-04-02 13:26:42 +00:00
|
|
|
*/
|
2003-12-17 07:35:55 +00:00
|
|
|
sysrec[2] = 0x30;
|
|
|
|
|
if (usage & (SC_PKCS15_PRKEY_USAGE_DECRYPT|SC_PKCS15_PRKEY_USAGE_UNWRAP))
|
|
|
|
|
sysrec[2] &= ~0x10;
|
|
|
|
|
if (usage & (SC_PKCS15_PRKEY_USAGE_SIGN|SC_PKCS15_PRKEY_USAGE_NONREPUDIATION))
|
|
|
|
|
sysrec[2] &= ~0x20;
|
|
|
|
|
if (sysrec[2] == 0x30) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "Key usage should specify at least one of sign or decipher");
|
2003-12-17 07:35:55 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2003-12-17 07:35:55 +00:00
|
|
|
/* Set the key size and algorithm */
|
2002-04-02 13:26:42 +00:00
|
|
|
if ((r = gpk_pkfile_keybits(bits, &sysrec[1])) < 0
|
|
|
|
|
|| (r = gpk_pkfile_keyalgo(algo, &sysrec[5])) < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* Set PIN protection if requested.
|
|
|
|
|
* As the crypto ACLs are stored inside the file,
|
|
|
|
|
* we have to get them from the profile here. */
|
|
|
|
|
r = sc_profile_get_file_by_path(profile, &file->path, &tmp);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
/* Fix up PIN references in file ACL */
|
2012-04-02 21:40:05 +00:00
|
|
|
if ((r = sc_pkcs15init_fixup_file(profile, p15card, tmp)) < 0)
|
2003-10-13 16:13:12 +00:00
|
|
|
goto out;
|
|
|
|
|
|
|
|
|
|
acl = sc_file_get_acl_entry(tmp, SC_AC_OP_CRYPTO);
|
2002-04-02 13:26:42 +00:00
|
|
|
for (npins = 0; acl; acl = acl->next) {
|
|
|
|
|
if (acl->method == SC_AC_NONE
|
|
|
|
|
|| acl->method == SC_AC_NEVER)
|
|
|
|
|
continue;
|
|
|
|
|
if (acl->method != SC_AC_CHV) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "Authentication method not "
|
2002-04-02 13:26:42 +00:00
|
|
|
"supported for private key files.\n");
|
2003-10-13 16:13:12 +00:00
|
|
|
r = SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
goto out;
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
if (++npins >= 2) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "Too many pins for PrKEY file!\n");
|
2003-10-13 16:13:12 +00:00
|
|
|
r = SC_ERROR_NOT_SUPPORTED;
|
|
|
|
|
goto out;
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
sysrec[2] += 0x40;
|
|
|
|
|
sysrec[3] >>= 4;
|
|
|
|
|
sysrec[3] |= acl->key_ref << 4;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* compute checksum - yet another slightly different
|
|
|
|
|
* checksum algorithm courtesy of Gemplus */
|
2005-02-10 10:07:13 +00:00
|
|
|
if (card_type >= SC_CARD_TYPE_GPK_GPK8000) {
|
2002-06-17 15:26:36 +00:00
|
|
|
/* This is according to the gpk reference manual */
|
|
|
|
|
sysrec[6] = 0xA5;
|
|
|
|
|
} else {
|
|
|
|
|
/* And this is what you have to use for the GPK4000 */
|
|
|
|
|
sysrec[6] = 0xFF;
|
|
|
|
|
}
|
|
|
|
|
for (n = 0; n < 6; n++)
|
2002-04-02 13:26:42 +00:00
|
|
|
sysrec[6] ^= sysrec[n];
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_read_record(p15card->card, 1, buffer, sizeof(buffer),
|
2002-04-02 13:26:42 +00:00
|
|
|
SC_RECORD_BY_REC_NR);
|
|
|
|
|
if (r >= 0) {
|
|
|
|
|
if (r != 7 || buffer[0] != 0) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "first record of public key file is not Lsys0");
|
2015-04-29 21:22:28 +00:00
|
|
|
r = SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
goto out;
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_update_record(p15card->card, 1, sysrec, sizeof(sysrec),
|
2002-04-02 13:26:42 +00:00
|
|
|
SC_RECORD_BY_REC_NR);
|
|
|
|
|
} else {
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_append_record(p15card->card, sysrec, sizeof(sysrec), 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
2003-10-13 16:13:12 +00:00
|
|
|
|
2017-01-05 19:21:44 +00:00
|
|
|
out: sc_file_free(tmp);
|
2002-04-02 13:26:42 +00:00
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
gpk_pkfile_update_public(struct sc_profile *profile,
|
2010-02-21 16:21:57 +00:00
|
|
|
sc_pkcs15_card_t *p15card, struct pkpart *part)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2010-02-21 16:21:57 +00:00
|
|
|
struct sc_context *ctx = p15card->card->ctx;
|
2002-04-02 13:26:42 +00:00
|
|
|
struct pkcomp *pe;
|
|
|
|
|
unsigned char buffer[256];
|
|
|
|
|
unsigned int m, n, tag;
|
|
|
|
|
int r = 0, found;
|
|
|
|
|
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "Updating public key elements\n");
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* If we've been given a key with public parts, write them now */
|
|
|
|
|
for (n = 2; n < 256; n++) {
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_read_record(p15card->card, n, buffer, sizeof(buffer),
|
2002-04-02 13:26:42 +00:00
|
|
|
SC_RECORD_BY_REC_NR);
|
|
|
|
|
if (r < 0) {
|
|
|
|
|
r = 0;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Check for bad record */
|
|
|
|
|
if (r < 2) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "key file format error: "
|
2012-04-02 21:40:05 +00:00
|
|
|
"record %u too small (%u bytes)\n",
|
2002-04-02 13:26:42 +00:00
|
|
|
n, r);
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tag = buffer[0];
|
|
|
|
|
|
|
|
|
|
for (m = 0, found = 0; m < part->count; m++) {
|
|
|
|
|
pe = part->components + m;
|
|
|
|
|
if (pe->tag == tag) {
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_update_record(p15card->card, n,
|
2002-04-02 13:26:42 +00:00
|
|
|
pe->data, pe->size,
|
|
|
|
|
SC_RECORD_BY_REC_NR);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
pe->tag = 0; /* mark as stored */
|
|
|
|
|
found++;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
if (!found)
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "GPK unknown PK tag %u\n", tag);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Write all remaining elements */
|
|
|
|
|
for (m = 0; r >= 0 && m < part->count; m++) {
|
|
|
|
|
pe = part->components + m;
|
|
|
|
|
if (pe->tag != 0)
|
2010-02-21 16:21:57 +00:00
|
|
|
r = sc_append_record(p15card->card, pe->data, pe->size, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2005-03-09 00:04:44 +00:00
|
|
|
gpk_pkfile_init_private(sc_card_t *card,
|
|
|
|
|
sc_file_t *file, unsigned int privlen)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
|
|
|
|
struct sc_cardctl_gpk_pkinit args;
|
|
|
|
|
|
|
|
|
|
args.file = file;
|
|
|
|
|
args.privlen = privlen;
|
|
|
|
|
return sc_card_ctl(card, SC_CARDCTL_GPK_PKINIT, &args);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2005-03-09 00:04:44 +00:00
|
|
|
gpk_pkfile_load_private(sc_card_t *card, sc_file_t *file,
|
2002-04-02 13:26:42 +00:00
|
|
|
u8 *data, unsigned int len, unsigned int datalen)
|
|
|
|
|
{
|
|
|
|
|
struct sc_cardctl_gpk_pkload args;
|
|
|
|
|
|
|
|
|
|
args.file = file;
|
|
|
|
|
args.data = data;
|
|
|
|
|
args.len = len;
|
|
|
|
|
args.datalen = datalen;
|
|
|
|
|
return sc_card_ctl(card, SC_CARDCTL_GPK_PKLOAD, &args);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
gpk_pkfile_update_private(struct sc_profile *profile,
|
2010-02-21 16:21:57 +00:00
|
|
|
sc_pkcs15_card_t *p15card, sc_file_t *file,
|
2002-04-02 13:26:42 +00:00
|
|
|
struct pkpart *part)
|
|
|
|
|
{
|
|
|
|
|
unsigned int m, size, nb, cks;
|
|
|
|
|
struct pkcomp *pe;
|
2003-10-13 16:13:12 +00:00
|
|
|
u8 data[256];
|
2002-04-02 13:26:42 +00:00
|
|
|
int r = 0;
|
|
|
|
|
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(p15card->card->ctx, "Updating private key elements\n");
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
for (m = 0; m < part->count; m++) {
|
|
|
|
|
pe = part->components + m;
|
|
|
|
|
|
|
|
|
|
if (pe->size + 8 > sizeof(data))
|
|
|
|
|
return SC_ERROR_BUFFER_TOO_SMALL;
|
|
|
|
|
memcpy(data, pe->data, pe->size);
|
|
|
|
|
size = pe->size;
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
/* We must set a secure messaging key before each
|
|
|
|
|
* Load Private Key command. Any key will do...
|
|
|
|
|
* The GPK _is_ weird. */
|
2010-03-17 16:26:07 +00:00
|
|
|
r = sc_pkcs15init_verify_secret(profile, p15card, NULL, SC_AC_PRO, 1);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
/* Pad out data to a multiple of 8 and checksum.
|
|
|
|
|
* The GPK manual is a bit unclear about whether you
|
|
|
|
|
* checksum first and then pad, or vice versa.
|
|
|
|
|
* The following code does seem to work though: */
|
|
|
|
|
for (nb = 0, cks = 0xff; nb < size; nb++)
|
|
|
|
|
cks ^= data[nb];
|
|
|
|
|
data[nb++] = cks;
|
|
|
|
|
while (nb & 7)
|
|
|
|
|
data[nb++] = 0;
|
|
|
|
|
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_load_private(p15card->card, file, data, size-1, nb);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Sum up the size of the public key elements
|
|
|
|
|
* Each element is type + tag + bignum
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
gpk_compute_publen(struct pkpart *part)
|
|
|
|
|
{
|
|
|
|
|
unsigned int n, publen = 8; /* length of sysrec0 */
|
|
|
|
|
|
|
|
|
|
for (n = 0; n < part->count; n++)
|
|
|
|
|
publen += 2 + part->components[n].size;
|
|
|
|
|
part->size = (publen + 3) & ~3UL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Sum up the size of the private key elements
|
|
|
|
|
* Each element is type + tag + bignum + checksum, padded to a multiple
|
|
|
|
|
* of eight
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
gpk_compute_privlen(struct pkpart *part)
|
|
|
|
|
{
|
|
|
|
|
unsigned int n, privlen = 8;
|
|
|
|
|
|
|
|
|
|
for (n = 0; n < part->count; n++)
|
|
|
|
|
privlen += (3 + part->components[n].size + 7) & ~7UL;
|
|
|
|
|
part->size = privlen;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Convert BIGNUM to GPK representation, optionally zero padding to size.
|
2002-04-15 13:42:10 +00:00
|
|
|
* Note that the bignum's we're given are big-endian, while the GPK
|
|
|
|
|
* wants them little-endian.
|
2002-04-02 13:26:42 +00:00
|
|
|
*/
|
|
|
|
|
static void
|
2002-04-15 13:42:10 +00:00
|
|
|
gpk_bn2bin(unsigned char *dest, sc_pkcs15_bignum_t *bn, unsigned int size)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2002-04-15 13:42:10 +00:00
|
|
|
u8 *src;
|
|
|
|
|
unsigned int n;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2002-04-15 13:42:10 +00:00
|
|
|
assert(bn->len <= size);
|
|
|
|
|
memset(dest, 0, size);
|
|
|
|
|
for (n = bn->len, src = bn->data; n--; src++)
|
|
|
|
|
dest[n] = *src;
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Add a BIGNUM component, optionally padding out the number to size bytes
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2002-04-15 13:42:10 +00:00
|
|
|
gpk_add_bignum(struct pkpart *part, unsigned int tag,
|
|
|
|
|
sc_pkcs15_bignum_t *bn, size_t size)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
|
|
|
|
struct pkcomp *comp;
|
2012-04-02 21:40:05 +00:00
|
|
|
|
2002-04-02 13:26:42 +00:00
|
|
|
if (size == 0)
|
2002-04-15 13:42:10 +00:00
|
|
|
size = bn->len;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
comp = &part->components[part->count++];
|
|
|
|
|
memset(comp, 0, sizeof(*comp));
|
|
|
|
|
comp->tag = tag;
|
|
|
|
|
comp->size = size + 1;
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
comp->data = malloc(size + 1);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Add the tag */
|
|
|
|
|
comp->data[0] = tag;
|
|
|
|
|
|
|
|
|
|
/* Add the BIGNUM */
|
2002-04-15 13:42:10 +00:00
|
|
|
gpk_bn2bin(comp->data + 1, bn, size);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* printf("TAG 0x%02x, len=%u\n", tag, comp->size); */
|
|
|
|
|
}
|
|
|
|
|
|
2007-06-21 11:07:00 +00:00
|
|
|
static int gpk_encode_rsa_key(sc_profile_t *profile, sc_card_t *card,
|
2002-04-15 13:42:10 +00:00
|
|
|
struct sc_pkcs15_prkey_rsa *rsa, struct pkdata *p,
|
2003-10-14 09:57:29 +00:00
|
|
|
sc_pkcs15_prkey_info_t *info)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2002-04-15 13:42:10 +00:00
|
|
|
if (!rsa->modulus.len || !rsa->exponent.len) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"incomplete RSA public key");
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Make sure the exponent is 0x10001 because that's
|
|
|
|
|
* the only exponent supported by GPK4000 and GPK8000 */
|
2002-04-15 13:42:10 +00:00
|
|
|
if (rsa->exponent.len != 3
|
|
|
|
|
|| memcmp(rsa->exponent.data, "\001\000\001", 3)) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"unsupported RSA exponent");
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memset(p, 0, sizeof(*p));
|
|
|
|
|
p->algo = SC_ALGORITHM_RSA;
|
|
|
|
|
p->usage = info->usage;
|
2002-04-15 13:42:10 +00:00
|
|
|
p->bytes = rsa->modulus.len;
|
|
|
|
|
p->bits = p->bytes << 3;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Set up the list of public elements */
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_add_bignum(&p->_public, 0x01, &rsa->modulus, 0);
|
|
|
|
|
gpk_add_bignum(&p->_public, 0x07, &rsa->exponent, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Set up the list of private elements */
|
2002-04-15 13:42:10 +00:00
|
|
|
if (!rsa->p.len || !rsa->q.len || !rsa->dmp1.len || !rsa->dmq1.len || !rsa->iqmp.len) {
|
2002-04-02 13:26:42 +00:00
|
|
|
/* No or incomplete CRT information */
|
2002-04-15 13:42:10 +00:00
|
|
|
if (!rsa->d.len) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"incomplete RSA private key");
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_add_bignum(&p->_private, 0x04, &rsa->d, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
} else if (5 * (p->bytes / 2) < 256) {
|
|
|
|
|
/* All CRT elements are stored in one record */
|
|
|
|
|
struct pkcomp *comp;
|
|
|
|
|
unsigned int K = p->bytes / 2;
|
|
|
|
|
u8 *crtbuf;
|
|
|
|
|
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
crtbuf = malloc(5 * K + 1);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
crtbuf[0] = 0x05;
|
2002-04-15 13:42:10 +00:00
|
|
|
gpk_bn2bin(crtbuf + 1 + 0 * K, &rsa->p, K);
|
|
|
|
|
gpk_bn2bin(crtbuf + 1 + 1 * K, &rsa->q, K);
|
|
|
|
|
gpk_bn2bin(crtbuf + 1 + 2 * K, &rsa->iqmp, K);
|
|
|
|
|
gpk_bn2bin(crtbuf + 1 + 3 * K, &rsa->dmp1, K);
|
|
|
|
|
gpk_bn2bin(crtbuf + 1 + 4 * K, &rsa->dmq1, K);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2002-04-19 14:23:31 +00:00
|
|
|
comp = &p->_private.components[p->_private.count++];
|
2002-04-02 13:26:42 +00:00
|
|
|
comp->tag = 0x05;
|
|
|
|
|
comp->size = 5 * K + 1;
|
|
|
|
|
comp->data = crtbuf;
|
|
|
|
|
} else {
|
|
|
|
|
/* CRT elements stored in individual records.
|
|
|
|
|
* Make sure they're all fixed length even if they're
|
|
|
|
|
* shorter */
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_add_bignum(&p->_private, 0x51, &rsa->p, p->bytes/2);
|
|
|
|
|
gpk_add_bignum(&p->_private, 0x52, &rsa->q, p->bytes/2);
|
|
|
|
|
gpk_add_bignum(&p->_private, 0x53, &rsa->iqmp, p->bytes/2);
|
|
|
|
|
gpk_add_bignum(&p->_private, 0x54, &rsa->dmp1, p->bytes/2);
|
|
|
|
|
gpk_add_bignum(&p->_private, 0x55, &rsa->dmq1, p->bytes/2);
|
2002-04-02 13:26:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Encode a DSA key.
|
|
|
|
|
* Confusingly, the GPK manual says that the GPK8000 can handle
|
|
|
|
|
* DSA with 512 as well as 1024 bits, but all byte sizes shown
|
|
|
|
|
* in the tables are 512 bits only...
|
|
|
|
|
*/
|
2007-06-21 11:07:00 +00:00
|
|
|
static int gpk_encode_dsa_key(sc_profile_t *profile, sc_card_t *card,
|
2002-04-15 13:42:10 +00:00
|
|
|
struct sc_pkcs15_prkey_dsa *dsa, struct pkdata *p,
|
2003-10-14 09:57:29 +00:00
|
|
|
sc_pkcs15_prkey_info_t *info)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2002-04-15 13:42:10 +00:00
|
|
|
if (!dsa->p.len || !dsa->q.len || !dsa->g.len
|
|
|
|
|
|| !dsa->pub.len || !dsa->priv.len) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"incomplete DSA public key");
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memset(p, 0, sizeof(*p));
|
|
|
|
|
p->algo = SC_ALGORITHM_RSA;
|
|
|
|
|
p->usage = info->usage;
|
2002-04-15 13:42:10 +00:00
|
|
|
p->bytes = dsa->q.len;
|
|
|
|
|
p->bits = dsa->q.len << 3;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Make sure the key is either 512 or 1024 bits */
|
|
|
|
|
if (p->bytes <= 64) {
|
|
|
|
|
p->bits = 512;
|
|
|
|
|
p->bytes = 64;
|
|
|
|
|
} else if (p->bytes <= 128) {
|
|
|
|
|
p->bits = 1024;
|
|
|
|
|
p->bytes = 128;
|
|
|
|
|
} else {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2003-10-14 09:57:29 +00:00
|
|
|
"incompatible DSA key size (%u bits)", p->bits);
|
2002-04-02 13:26:42 +00:00
|
|
|
return SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Set up the list of public elements */
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_add_bignum(&p->_public, 0x09, &dsa->p, 0);
|
|
|
|
|
gpk_add_bignum(&p->_public, 0x0a, &dsa->q, 0);
|
|
|
|
|
gpk_add_bignum(&p->_public, 0x0b, &dsa->g, 0);
|
|
|
|
|
gpk_add_bignum(&p->_public, 0x0c, &dsa->pub, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Set up the list of private elements */
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_add_bignum(&p->_private, 0x0d, &dsa->priv, 0);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2010-02-21 16:21:57 +00:00
|
|
|
gpk_store_pk(struct sc_profile *profile, sc_pkcs15_card_t *p15card,
|
2005-03-09 00:04:44 +00:00
|
|
|
sc_file_t *file, struct pkdata *p)
|
2002-04-02 13:26:42 +00:00
|
|
|
{
|
2010-02-21 16:21:57 +00:00
|
|
|
struct sc_context *ctx = p15card->card->ctx;
|
2003-10-13 16:13:12 +00:00
|
|
|
size_t fsize;
|
2002-04-02 13:26:42 +00:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
/* Compute length of private/public key parts */
|
2002-04-19 14:23:31 +00:00
|
|
|
gpk_compute_publen(&p->_public);
|
|
|
|
|
gpk_compute_privlen(&p->_private);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(ctx, "Storing pk: %u bits, pub %u bytes, priv %u bytes\n",
|
2002-06-17 15:26:36 +00:00
|
|
|
p->bits, p->_public.size, p->_private.size);
|
|
|
|
|
|
2003-10-13 16:13:12 +00:00
|
|
|
fsize = p->_public.size + p->_private.size;
|
|
|
|
|
if (fsize > file->size)
|
|
|
|
|
return SC_ERROR_FILE_TOO_SMALL;
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Put the system record */
|
2003-12-16 14:32:16 +00:00
|
|
|
#ifndef PK_INIT_IMMEDIATELY
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_init_public(profile, p15card, file, p->algo,
|
2002-04-02 13:26:42 +00:00
|
|
|
p->bits, p->usage);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2003-12-16 14:32:16 +00:00
|
|
|
#endif
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Put the public key elements */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_update_public(profile, p15card, &p->_public);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
|
|
|
|
|
|
|
|
|
/* Create the private key part */
|
2003-12-16 14:32:16 +00:00
|
|
|
#ifndef PK_INIT_IMMEDIATELY
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_init_private(p15card->card, file, p->_private.size);
|
2002-04-02 13:26:42 +00:00
|
|
|
if (r < 0)
|
|
|
|
|
return r;
|
2003-12-16 14:32:16 +00:00
|
|
|
#endif
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
/* Now store the private key elements */
|
2010-02-21 16:21:57 +00:00
|
|
|
r = gpk_pkfile_update_private(profile, p15card, file, &p->_private);
|
2002-04-02 13:26:42 +00:00
|
|
|
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
2003-12-16 14:32:16 +00:00
|
|
|
static int
|
|
|
|
|
gpk_read_rsa_key(sc_card_t *card, struct sc_pkcs15_pubkey_rsa *rsa)
|
|
|
|
|
{
|
|
|
|
|
int n, r;
|
|
|
|
|
|
|
|
|
|
/* Read modulus and exponent */
|
|
|
|
|
for (n = 2; ; n++) {
|
|
|
|
|
sc_pkcs15_bignum_t *bn;
|
|
|
|
|
u8 buffer[256];
|
|
|
|
|
size_t m;
|
|
|
|
|
|
|
|
|
|
r = sc_read_record(card, n, buffer, sizeof(buffer),
|
|
|
|
|
SC_RECORD_BY_REC_NR);
|
|
|
|
|
if (r < 1)
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
if (buffer[0] == 0x01)
|
|
|
|
|
bn = &rsa->modulus;
|
|
|
|
|
else if (buffer[0] == 0x07)
|
|
|
|
|
bn = &rsa->exponent;
|
|
|
|
|
else
|
|
|
|
|
continue;
|
|
|
|
|
bn->len = r - 1;
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
bn->data = malloc(bn->len);
|
2003-12-16 14:32:16 +00:00
|
|
|
for (m = 0; m < bn->len; m++)
|
|
|
|
|
bn->data[m] = buffer[bn->len - m];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2005-08-10 21:31:18 +00:00
|
|
|
static struct sc_pkcs15init_operations sc_pkcs15init_gpk_operations = {
|
2005-08-14 22:33:43 +00:00
|
|
|
gpk_erase_card,
|
|
|
|
|
NULL, /* init_card */
|
|
|
|
|
gpk_create_dir,
|
|
|
|
|
NULL, /* create_domain */
|
|
|
|
|
gpk_select_pin_reference,
|
|
|
|
|
gpk_create_pin,
|
|
|
|
|
NULL, /* select_key_reference */
|
|
|
|
|
gpk_create_key,
|
|
|
|
|
gpk_store_key,
|
|
|
|
|
gpk_generate_key,
|
|
|
|
|
NULL, NULL, /* encode private/public key */
|
|
|
|
|
NULL, /* finalize_card */
|
2010-03-28 11:37:13 +00:00
|
|
|
NULL, /* delete_object */
|
2010-12-30 12:50:35 +00:00
|
|
|
NULL, NULL, NULL, NULL, NULL, /* pkcs15init emulation */
|
|
|
|
|
NULL /* sanity_check */
|
2005-08-10 21:31:18 +00:00
|
|
|
};
|
2003-10-13 20:41:00 +00:00
|
|
|
|
|
|
|
|
struct sc_pkcs15init_operations *sc_pkcs15init_get_gpk_ops(void)
|
|
|
|
|
{
|
|
|
|
|
return &sc_pkcs15init_gpk_operations;
|
|
|
|
|
}
|
