2003-10-30 17:04:22 +00:00
|
|
|
/*
|
2005-02-04 20:29:35 +00:00
|
|
|
* card-openpgp.c: Support for OpenPGP card
|
2003-10-30 17:04:22 +00:00
|
|
|
*
|
|
|
|
|
* Copyright (C) 2003 Olaf Kirch <okir@suse.de>
|
|
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
*/
|
|
|
|
|
|
2011-01-09 10:17:16 +00:00
|
|
|
/*
|
|
|
|
|
* Specifications:
|
2018-06-10 09:58:51 +00:00
|
|
|
* (all available from: https://gnupg.org/ftp/specs/)
|
|
|
|
|
* https://gnupg.org/ftp/specs/openpgp-card-1.0.pdf (obsolete)
|
|
|
|
|
* https://gnupg.org/ftp/specs/openpgp-card-1.1.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-2.0.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-2.1.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-2.2.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.0.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.1.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.2.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.3.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.3.0.pdf
|
|
|
|
|
* https://gnupg.org/ftp/specs/OpenPGP-smart-card-application-3.3.1.pdf
|
2011-01-09 10:17:16 +00:00
|
|
|
*/
|
|
|
|
|
|
2015-04-22 21:55:33 +00:00
|
|
|
#if HAVE_CONFIG_H
|
2010-03-04 08:14:36 +00:00
|
|
|
#include "config.h"
|
2015-04-22 21:55:33 +00:00
|
|
|
#endif
|
2010-03-04 08:14:36 +00:00
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
#include <ctype.h>
|
2012-06-14 02:05:16 +00:00
|
|
|
#include <time.h>
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2010-03-04 08:14:36 +00:00
|
|
|
#include "internal.h"
|
|
|
|
|
#include "asn1.h"
|
|
|
|
|
#include "cardctl.h"
|
2011-05-23 17:31:24 +00:00
|
|
|
#include "errors.h"
|
2012-06-14 02:05:16 +00:00
|
|
|
#ifdef ENABLE_OPENSSL
|
|
|
|
|
#include <openssl/sha.h>
|
|
|
|
|
#endif /* ENABLE_OPENSSL */
|
2010-03-04 08:14:36 +00:00
|
|
|
|
2018-06-16 18:04:27 +00:00
|
|
|
static const char default_cardname[] = "OpenPGP card";
|
|
|
|
|
static const char default_cardname_v1[] = "OpenPGP card v1.x";
|
|
|
|
|
static const char default_cardname_v2[] = "OpenPGP card v2.x";
|
|
|
|
|
static const char default_cardname_v3[] = "OpenPGP card v3.x";
|
|
|
|
|
|
2018-08-22 15:01:51 +00:00
|
|
|
static const struct sc_atr_table pgp_atrs[] = {
|
2018-06-16 18:04:27 +00:00
|
|
|
{ "3b:fa:13:00:ff:81:31:80:45:00:31:c1:73:c0:01:00:00:90:00:b1", NULL, default_cardname_v1, SC_CARD_TYPE_OPENPGP_V1, 0, NULL },
|
|
|
|
|
{ "3b:da:18:ff:81:b1:fe:75:1f:03:00:31:c5:73:c0:01:40:00:90:00:0c", NULL, default_cardname_v2, SC_CARD_TYPE_OPENPGP_V2, 0, NULL },
|
2018-09-12 11:04:12 +00:00
|
|
|
{
|
|
|
|
|
"3b:da:11:ff:81:b1:fe:55:1f:03:00:31:84:73:80:01:80:00:90:00:e4",
|
|
|
|
|
"ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:ff:00:ff:ff:00",
|
|
|
|
|
"Gnuk v1.0.x (OpenPGP v2.0)", SC_CARD_TYPE_OPENPGP_GNUK, 0, NULL
|
|
|
|
|
},
|
2015-08-01 09:25:31 +00:00
|
|
|
{ "3b:fc:13:00:00:81:31:fe:15:59:75:62:69:6b:65:79:4e:45:4f:72:33:e1", NULL, "Yubikey NEO (OpenPGP v2.0)", SC_CARD_TYPE_OPENPGP_V2, 0, NULL },
|
2018-04-04 19:41:39 +00:00
|
|
|
{ "3b:f8:13:00:00:81:31:fe:15:59:75:62:69:6b:65:79:34:d4", NULL, "Yubikey 4 (OpenPGP v2.1)", SC_CARD_TYPE_OPENPGP_V2, 0, NULL },
|
2018-06-16 18:04:27 +00:00
|
|
|
{ "3b:da:18:ff:81:b1:fe:75:1f:03:00:31:f5:73:c0:01:60:00:90:00:1c", NULL, default_cardname_v3, SC_CARD_TYPE_OPENPGP_V3, 0, NULL },
|
2005-09-07 08:33:55 +00:00
|
|
|
{ NULL, NULL, NULL, 0, 0, NULL }
|
2003-10-30 17:04:22 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static struct sc_card_operations *iso_ops;
|
|
|
|
|
static struct sc_card_operations pgp_ops;
|
|
|
|
|
static struct sc_card_driver pgp_drv = {
|
2005-02-23 10:39:33 +00:00
|
|
|
"OpenPGP card",
|
2003-10-30 17:04:22 +00:00
|
|
|
"openpgp",
|
2005-09-07 08:33:55 +00:00
|
|
|
&pgp_ops,
|
|
|
|
|
NULL, 0, NULL
|
2003-10-30 17:04:22 +00:00
|
|
|
};
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
/*
|
|
|
|
|
* The OpenPGP card doesn't have a file system, instead everything
|
|
|
|
|
* is stored in data objects that are accessed through GET/PUT.
|
|
|
|
|
*
|
|
|
|
|
* However, much inside OpenSC's pkcs15 implementation is based on
|
|
|
|
|
* the assumption that we have a file system. So we fake one here.
|
|
|
|
|
*
|
|
|
|
|
* Selecting the MF causes us to select the OpenPGP AID.
|
|
|
|
|
*
|
|
|
|
|
* Everything else is mapped to "file" IDs.
|
|
|
|
|
*/
|
2011-05-23 17:32:49 +00:00
|
|
|
|
2011-05-23 17:32:54 +00:00
|
|
|
enum _type { /* DO type */
|
|
|
|
|
SIMPLE = SC_FILE_TYPE_WORKING_EF,
|
|
|
|
|
CONSTRUCTED = SC_FILE_TYPE_DF
|
|
|
|
|
};
|
|
|
|
|
|
2011-05-23 17:32:49 +00:00
|
|
|
enum _version { /* 2-byte BCD-alike encoded version number */
|
|
|
|
|
OPENPGP_CARD_1_0 = 0x0100,
|
|
|
|
|
OPENPGP_CARD_1_1 = 0x0101,
|
2015-09-20 08:52:45 +00:00
|
|
|
OPENPGP_CARD_2_0 = 0x0200,
|
|
|
|
|
OPENPGP_CARD_2_1 = 0x0201,
|
2018-04-22 13:11:56 +00:00
|
|
|
OPENPGP_CARD_2_2 = 0x0202,
|
2018-01-17 20:11:16 +00:00
|
|
|
OPENPGP_CARD_3_0 = 0x0300,
|
|
|
|
|
OPENPGP_CARD_3_1 = 0x0301,
|
2018-04-22 13:11:56 +00:00
|
|
|
OPENPGP_CARD_3_2 = 0x0302,
|
|
|
|
|
OPENPGP_CARD_3_3 = 0x0303,
|
2011-05-23 17:32:49 +00:00
|
|
|
};
|
|
|
|
|
|
2011-05-23 17:32:54 +00:00
|
|
|
enum _access { /* access flags for the respective DO/file */
|
|
|
|
|
READ_NEVER = 0x0010,
|
|
|
|
|
READ_PIN1 = 0x0011,
|
|
|
|
|
READ_PIN2 = 0x0012,
|
|
|
|
|
READ_PIN3 = 0x0014,
|
|
|
|
|
READ_ALWAYS = 0x0018,
|
|
|
|
|
READ_MASK = 0x00FF,
|
|
|
|
|
WRITE_NEVER = 0x1000,
|
|
|
|
|
WRITE_PIN1 = 0x1100,
|
|
|
|
|
WRITE_PIN2 = 0x1200,
|
|
|
|
|
WRITE_PIN3 = 0x1400,
|
|
|
|
|
WRITE_ALWAYS = 0x1800,
|
|
|
|
|
WRITE_MASK = 0x1F00
|
|
|
|
|
};
|
|
|
|
|
|
2012-05-26 20:27:58 +00:00
|
|
|
enum _ext_caps { /* extended capabilities/features */
|
|
|
|
|
EXT_CAP_ALG_ATTR_CHANGEABLE = 0x0004,
|
|
|
|
|
EXT_CAP_PRIVATE_DO = 0x0008,
|
|
|
|
|
EXT_CAP_C4_CHANGEABLE = 0x0010,
|
|
|
|
|
EXT_CAP_KEY_IMPORT = 0x0020,
|
|
|
|
|
EXT_CAP_GET_CHALLENGE = 0x0040,
|
|
|
|
|
EXT_CAP_SM = 0x0080,
|
2018-06-10 20:06:53 +00:00
|
|
|
EXT_CAP_LCS = 0x0100,
|
2012-05-26 20:27:58 +00:00
|
|
|
EXT_CAP_CHAINING = 0x1000,
|
2018-09-06 08:57:23 +00:00
|
|
|
EXT_CAP_APDU_EXT = 0x2000,
|
|
|
|
|
EXT_CAP_MSE = 0x3000
|
2012-05-26 20:27:58 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
enum _card_state {
|
|
|
|
|
CARD_STATE_UNKNOWN = 0x00,
|
|
|
|
|
CARD_STATE_INITIALIZATION = 0x03,
|
|
|
|
|
CARD_STATE_ACTIVATED = 0x05
|
|
|
|
|
};
|
|
|
|
|
|
2018-06-10 11:09:13 +00:00
|
|
|
enum _sm_algo {
|
|
|
|
|
SM_ALGO_NONE = 0, /* SM not supported */
|
|
|
|
|
SM_ALGO_AES128 = 1,
|
|
|
|
|
SM_ALGO_AES256 = 2,
|
|
|
|
|
SM_ALGO_SCP11b = 3,
|
|
|
|
|
SM_ALGO_3DES = 256, /* 2.x: coded as 0 in DO C0 */
|
|
|
|
|
SM_ALGO_UNKNOWN = 257 /* 3.x: coded as 0 in DO C0 */
|
|
|
|
|
};
|
|
|
|
|
|
2014-07-13 11:41:36 +00:00
|
|
|
typedef struct pgp_blob {
|
|
|
|
|
struct pgp_blob * next; /* pointer to next sibling */
|
|
|
|
|
struct pgp_blob * parent; /* pointer to parent */
|
2003-11-20 15:41:28 +00:00
|
|
|
struct do_info *info;
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
sc_file_t * file;
|
|
|
|
|
unsigned int id;
|
2003-11-20 15:41:28 +00:00
|
|
|
int status;
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
unsigned char * data;
|
|
|
|
|
unsigned int len;
|
2014-07-13 11:41:36 +00:00
|
|
|
struct pgp_blob * files; /* pointer to 1st child */
|
|
|
|
|
} pgp_blob_t;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
struct do_info {
|
2011-05-23 17:32:54 +00:00
|
|
|
unsigned int id; /* ID of the DO in question */
|
|
|
|
|
|
|
|
|
|
enum _type type; /* constructed DO or not */
|
2012-06-21 08:22:44 +00:00
|
|
|
enum _access access; /* R/W access levels for the DO */
|
2011-05-23 17:32:54 +00:00
|
|
|
|
|
|
|
|
/* function to get the DO from the card:
|
|
|
|
|
* only != NULL is DO if readable and not only a part of a constructed DO */
|
2003-10-31 16:01:00 +00:00
|
|
|
int (*get_fn)(sc_card_t *, unsigned int, u8 *, size_t);
|
2011-05-23 17:32:54 +00:00
|
|
|
/* function to write the DO to the card:
|
|
|
|
|
* only != NULL if DO is writeable under some conditions */
|
2003-10-31 16:01:00 +00:00
|
|
|
int (*put_fn)(sc_card_t *, unsigned int, const u8 *, size_t);
|
2003-11-20 15:41:28 +00:00
|
|
|
};
|
|
|
|
|
|
2011-05-23 17:33:04 +00:00
|
|
|
static int pgp_get_card_features(sc_card_t *card);
|
2011-05-23 17:31:31 +00:00
|
|
|
static int pgp_finish(sc_card_t *card);
|
2014-07-13 11:41:36 +00:00
|
|
|
static void pgp_iterate_blobs(pgp_blob_t *, int, void (*func)());
|
2011-05-23 17:30:56 +00:00
|
|
|
|
2014-07-13 11:41:36 +00:00
|
|
|
static int pgp_get_blob(sc_card_t *card, pgp_blob_t *blob,
|
|
|
|
|
unsigned int id, pgp_blob_t **ret);
|
|
|
|
|
static pgp_blob_t * pgp_new_blob(sc_card_t *, pgp_blob_t *, unsigned int, sc_file_t *);
|
|
|
|
|
static void pgp_free_blob(pgp_blob_t *);
|
2003-11-20 15:41:28 +00:00
|
|
|
static int pgp_get_pubkey(sc_card_t *, unsigned int,
|
|
|
|
|
u8 *, size_t);
|
|
|
|
|
static int pgp_get_pubkey_pem(sc_card_t *, unsigned int,
|
|
|
|
|
u8 *, size_t);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* The DO holding X.509 certificate is constructed but does not contain a child DO.
|
2014-11-09 08:58:40 +00:00
|
|
|
* We should notice this when building fake file system later. */
|
|
|
|
|
#define DO_CERT 0x7f21
|
|
|
|
|
/* Control Reference Template of private keys. Ref: Section 4.3.3.7 of OpenPGP card v2 spec.
|
2015-09-19 14:52:51 +00:00
|
|
|
* Here we treat them as DOs just for convenience */
|
2014-11-09 08:58:40 +00:00
|
|
|
#define DO_SIGN 0xb600
|
|
|
|
|
#define DO_ENCR 0xb800
|
|
|
|
|
#define DO_AUTH 0xa400
|
2015-09-19 14:52:51 +00:00
|
|
|
/* These DOs do not exist. They are defined and used just for ease of implementation */
|
2014-11-09 08:58:40 +00:00
|
|
|
#define DO_SIGN_SYM 0xb601
|
|
|
|
|
#define DO_ENCR_SYM 0xb801
|
|
|
|
|
#define DO_AUTH_SYM 0xa401
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Private DOs */
|
2014-11-11 15:16:15 +00:00
|
|
|
#define DO_PRIV1 0x0101
|
|
|
|
|
#define DO_PRIV2 0x0102
|
|
|
|
|
#define DO_PRIV3 0x0103
|
|
|
|
|
#define DO_PRIV4 0x0104
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Cardholder information DOs */
|
2014-11-11 15:16:15 +00:00
|
|
|
#define DO_CARDHOLDER 0x65
|
|
|
|
|
#define DO_NAME 0x5b
|
|
|
|
|
#define DO_LANG_PREF 0x5f2d
|
|
|
|
|
#define DO_SEX 0x5f35
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Maximum length for response buffer when reading pubkey.
|
|
|
|
|
* This value is calculated with 4096-bit key length */
|
2014-11-09 08:58:40 +00:00
|
|
|
#define MAXLEN_RESP_PUBKEY 527
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Gnuk only supports 1 key length (2048 bit) */
|
2014-11-09 08:58:40 +00:00
|
|
|
#define MAXLEN_RESP_PUBKEY_GNUK 271
|
|
|
|
|
|
2018-06-09 15:18:42 +00:00
|
|
|
static struct do_info pgp1x_objects[] = { /* OpenPGP card spec 1.1 */
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x004f, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x005b, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x005e, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
|
|
|
|
{ 0x0065, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x006e, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x0073, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x007a, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x0081, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x0082, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x0093, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c0, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c1, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c2, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c3, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c4, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c5, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c6, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c7, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c8, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c9, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00ca, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cb, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cc, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cd, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00ce, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cf, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d0, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00e0, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00e1, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00e2, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
2012-05-25 16:56:12 +00:00
|
|
|
{ 0x0101, SIMPLE, READ_ALWAYS | WRITE_PIN2, sc_get_data, sc_put_data },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x0102, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
2012-05-25 16:56:12 +00:00
|
|
|
{ 0x0103, SIMPLE, READ_PIN2 | WRITE_PIN2, sc_get_data, sc_put_data },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x0104, SIMPLE, READ_PIN3 | WRITE_PIN3, sc_get_data, sc_put_data },
|
2011-06-01 11:33:23 +00:00
|
|
|
{ 0x3f00, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x5f2d, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x5f35, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x5f50, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
|
|
|
|
{ 0x7f49, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
2014-11-09 08:58:40 +00:00
|
|
|
{ DO_AUTH, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
|
|
|
|
{ DO_AUTH_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
|
|
|
|
{ DO_SIGN, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
|
|
|
|
{ DO_SIGN_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
|
|
|
|
{ DO_ENCR, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
|
|
|
|
{ DO_ENCR_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0, 0, 0, NULL, NULL },
|
|
|
|
|
};
|
|
|
|
|
|
2018-06-10 10:35:37 +00:00
|
|
|
static struct do_info pgp33_objects[] = { /* OpenPGP card spec 3.3 */
|
|
|
|
|
{ 0x00f9, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
/* OpenPGP card spec 3.0 - 3.2 */
|
|
|
|
|
{ 0x00d6, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d7, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d8, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
/* DO 7F66 is CONSTRUCTED in spec; we treat it as SIMPLE: no need to parse TLV */
|
|
|
|
|
{ 0x7f66, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, sc_put_data },
|
|
|
|
|
/* DO 7F74 is CONSTRUCTED in spec; we treat it as SIMPLE for the time being */
|
|
|
|
|
{ 0x7f74, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, sc_put_data },
|
|
|
|
|
/* OpenPGP card spec 2.1 & 2.2 */
|
2018-06-09 15:18:42 +00:00
|
|
|
{ 0x00d5, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
/* OpenPGP card spec 2.0 */
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x004d, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x004f, SIMPLE, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x005b, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x005e, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
|
|
|
|
{ 0x0065, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x006e, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x0073, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x007a, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
|
|
|
|
{ 0x0081, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x0082, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x0093, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c0, SIMPLE, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x00c1, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c2, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c3, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c4, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
|
|
|
|
{ 0x00c5, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c6, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c7, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c8, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00c9, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00ca, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cb, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cc, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cd, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00ce, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00cf, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d0, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d1, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d2, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00d3, SIMPLE, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x00f4, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
2012-05-25 16:56:12 +00:00
|
|
|
{ 0x0101, SIMPLE, READ_ALWAYS | WRITE_PIN2, sc_get_data, sc_put_data },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x0102, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
2012-05-25 16:56:12 +00:00
|
|
|
{ 0x0103, SIMPLE, READ_PIN2 | WRITE_PIN2, sc_get_data, sc_put_data },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x0104, SIMPLE, READ_PIN3 | WRITE_PIN3, sc_get_data, sc_put_data },
|
2011-06-01 11:33:23 +00:00
|
|
|
{ 0x3f00, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x5f2d, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x5f35, SIMPLE, READ_ALWAYS | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x5f48, CONSTRUCTED, READ_NEVER | WRITE_PIN3, NULL, sc_put_data },
|
|
|
|
|
{ 0x5f50, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
|
|
|
|
{ 0x5f52, SIMPLE, READ_ALWAYS | WRITE_NEVER, sc_get_data, NULL },
|
2018-06-10 18:11:34 +00:00
|
|
|
/* DO 7F21 is CONSTRUCTED in spec; we treat it as SIMPLE: no need to parse TLV */
|
2014-11-09 08:58:40 +00:00
|
|
|
{ DO_CERT, SIMPLE, READ_ALWAYS | WRITE_PIN3, sc_get_data, sc_put_data },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0x7f48, CONSTRUCTED, READ_NEVER | WRITE_NEVER, NULL, NULL },
|
|
|
|
|
{ 0x7f49, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, NULL, NULL },
|
2014-11-09 08:58:40 +00:00
|
|
|
{ DO_AUTH, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
2018-06-10 18:11:34 +00:00
|
|
|
/* The DOs 0xA401, 0xB601, 0xB801 are virtual DOs, they do not represent any real DO.
|
2012-06-21 08:22:44 +00:00
|
|
|
* However, their R/W access condition may block the process of importing key in pkcs15init.
|
2012-08-08 03:12:11 +00:00
|
|
|
* So we set their accesses condition as WRITE_PIN3 (writable). */
|
2014-11-09 08:58:40 +00:00
|
|
|
{ DO_AUTH_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
|
|
|
|
{ DO_SIGN, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
|
|
|
|
{ DO_SIGN_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
|
|
|
|
{ DO_ENCR, CONSTRUCTED, READ_ALWAYS | WRITE_NEVER, pgp_get_pubkey, NULL },
|
|
|
|
|
{ DO_ENCR_SYM, SIMPLE, READ_ALWAYS | WRITE_PIN3, pgp_get_pubkey_pem, NULL },
|
2011-05-23 17:32:54 +00:00
|
|
|
{ 0, 0, 0, NULL, NULL },
|
2003-10-31 16:01:00 +00:00
|
|
|
};
|
|
|
|
|
|
2018-06-10 10:35:37 +00:00
|
|
|
static struct do_info *pgp30_objects = pgp33_objects + 1;
|
|
|
|
|
static struct do_info *pgp21_objects = pgp33_objects + 6;
|
|
|
|
|
static struct do_info *pgp20_objects = pgp33_objects + 7;
|
2018-06-09 15:18:42 +00:00
|
|
|
|
|
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
#define DRVDATA(card) ((struct pgp_priv_data *) ((card)->drv_data))
|
2018-06-10 11:09:13 +00:00
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
struct pgp_priv_data {
|
2018-06-10 11:09:13 +00:00
|
|
|
pgp_blob_t *mf;
|
|
|
|
|
pgp_blob_t *current; /* currently selected file */
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2011-05-23 17:32:49 +00:00
|
|
|
enum _version bcd_version;
|
2011-05-23 17:32:54 +00:00
|
|
|
struct do_info *pgp_objects;
|
2011-05-23 17:32:49 +00:00
|
|
|
|
2012-05-26 20:27:58 +00:00
|
|
|
enum _card_state state; /* card state */
|
|
|
|
|
enum _ext_caps ext_caps; /* extended capabilities */
|
|
|
|
|
|
2018-06-10 11:09:13 +00:00
|
|
|
enum _sm_algo sm_algo; /* Secure Messaging algorithm */
|
|
|
|
|
|
2012-05-26 20:27:58 +00:00
|
|
|
size_t max_challenge_size;
|
|
|
|
|
size_t max_cert_size;
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
sc_security_env_t sec_env;
|
2003-10-30 17:04:22 +00:00
|
|
|
};
|
|
|
|
|
|
2018-06-10 11:09:13 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: get OpenPGP application identifier from AID DO 004F
|
|
|
|
|
*/
|
2018-04-04 19:41:39 +00:00
|
|
|
static int
|
|
|
|
|
get_full_pgp_aid(sc_card_t *card, sc_file_t *file)
|
|
|
|
|
{
|
2018-06-16 17:34:39 +00:00
|
|
|
int r = SC_ERROR_INVALID_ARGUMENTS;
|
|
|
|
|
|
|
|
|
|
if (file != NULL) {
|
|
|
|
|
/* explicitly get the full aid */
|
|
|
|
|
r = sc_get_data(card, 0x004F, file->name, sizeof file->name);
|
|
|
|
|
file->namelen = MAX(r, 0);
|
|
|
|
|
}
|
2018-04-04 19:41:39 +00:00
|
|
|
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
|
2018-06-16 18:04:27 +00:00
|
|
|
#define BCD2UCHAR(x) (((((x) & 0xF0) >> 4) * 10) + ((x) & 0x0F))
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* ABI: check if card's ATR matches one of driver's
|
2018-06-16 13:54:17 +00:00
|
|
|
* or if the OpenPGP application is present on the card.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_match_card(sc_card_t *card)
|
|
|
|
|
{
|
2005-02-04 20:29:35 +00:00
|
|
|
int i;
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2018-06-16 13:57:43 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2005-02-10 10:07:13 +00:00
|
|
|
i = _sc_match_atr(card, pgp_atrs, &card->type);
|
2011-01-09 10:17:16 +00:00
|
|
|
if (i >= 0) {
|
|
|
|
|
card->name = pgp_atrs[i].name;
|
2018-04-04 19:41:39 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, 1);
|
2015-09-20 18:36:40 +00:00
|
|
|
}
|
|
|
|
|
else {
|
2015-07-28 22:26:19 +00:00
|
|
|
sc_path_t partial_aid;
|
2018-01-05 11:37:20 +00:00
|
|
|
sc_file_t *file = NULL;
|
2015-07-28 22:26:19 +00:00
|
|
|
|
|
|
|
|
/* select application "OpenPGP" */
|
|
|
|
|
sc_format_path("D276:0001:2401", &partial_aid);
|
|
|
|
|
partial_aid.type = SC_PATH_TYPE_DF_NAME;
|
2018-01-05 11:37:20 +00:00
|
|
|
/* OpenPGP card only supports selection *with* requested FCI */
|
|
|
|
|
i = iso_ops->select_file(card, &partial_aid, &file);
|
|
|
|
|
if (SC_SUCCESS == i) {
|
2018-01-05 10:08:14 +00:00
|
|
|
card->type = SC_CARD_TYPE_OPENPGP_BASE;
|
2018-06-16 18:04:27 +00:00
|
|
|
card->name = default_cardname;
|
|
|
|
|
|
2018-04-04 19:41:39 +00:00
|
|
|
if (file->namelen != 16)
|
|
|
|
|
(void) get_full_pgp_aid(card, file);
|
2018-01-05 10:08:14 +00:00
|
|
|
if (file->namelen == 16) {
|
2018-06-16 18:04:27 +00:00
|
|
|
unsigned char major = BCD2UCHAR(file->name[6]);
|
|
|
|
|
|
2018-01-05 10:08:14 +00:00
|
|
|
switch (major) {
|
|
|
|
|
case 1:
|
|
|
|
|
card->type = SC_CARD_TYPE_OPENPGP_V1;
|
2018-06-16 18:04:27 +00:00
|
|
|
card->name = default_cardname_v1;
|
2018-01-05 10:08:14 +00:00
|
|
|
break;
|
|
|
|
|
case 2:
|
|
|
|
|
card->type = SC_CARD_TYPE_OPENPGP_V2;
|
2018-06-16 18:04:27 +00:00
|
|
|
card->name = default_cardname_v2;
|
2018-01-05 10:08:14 +00:00
|
|
|
break;
|
|
|
|
|
case 3:
|
|
|
|
|
card->type = SC_CARD_TYPE_OPENPGP_V3;
|
2018-06-16 18:04:27 +00:00
|
|
|
card->name = default_cardname_v3;
|
2018-01-05 10:08:14 +00:00
|
|
|
break;
|
2018-04-04 19:41:39 +00:00
|
|
|
default:
|
|
|
|
|
break;
|
2015-09-20 18:36:40 +00:00
|
|
|
}
|
2015-07-28 22:26:19 +00:00
|
|
|
}
|
2018-01-05 10:08:14 +00:00
|
|
|
sc_file_free(file);
|
2018-06-16 13:57:43 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, 1);
|
2015-07-28 22:26:19 +00:00
|
|
|
}
|
2011-01-09 10:17:16 +00:00
|
|
|
}
|
2018-06-16 13:57:43 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, 0);
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: initialize driver & allocate private data.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_init(sc_card_t *card)
|
|
|
|
|
{
|
2012-06-14 02:17:28 +00:00
|
|
|
struct pgp_priv_data *priv;
|
2018-01-16 20:03:30 +00:00
|
|
|
sc_path_t path;
|
2003-10-31 16:01:00 +00:00
|
|
|
sc_file_t *file = NULL;
|
2003-11-20 15:41:28 +00:00
|
|
|
struct do_info *info;
|
2003-10-31 16:01:00 +00:00
|
|
|
int r;
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2013-02-20 04:54:30 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
priv = calloc (1, sizeof *priv);
|
2003-10-30 17:04:22 +00:00
|
|
|
if (!priv)
|
2018-06-16 13:57:43 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_OUT_OF_MEMORY);
|
2011-05-23 17:32:31 +00:00
|
|
|
card->drv_data = priv;
|
|
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
card->cla = 0x00;
|
|
|
|
|
|
2011-05-23 17:31:18 +00:00
|
|
|
/* select application "OpenPGP" */
|
2018-01-16 20:03:30 +00:00
|
|
|
sc_format_path("D276:0001:2401", &path);
|
|
|
|
|
path.type = SC_PATH_TYPE_DF_NAME;
|
|
|
|
|
if ((r = iso_ops->select_file(card, &path, &file)) < 0) {
|
2011-05-23 17:32:31 +00:00
|
|
|
pgp_finish(card);
|
2018-05-18 21:49:29 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_CARD);
|
2011-05-23 17:31:55 +00:00
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2015-03-29 13:55:10 +00:00
|
|
|
/* defensive programming check */
|
|
|
|
|
if (!file) {
|
|
|
|
|
pgp_finish(card);
|
2018-05-18 21:49:29 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_CARD);
|
2015-03-29 13:55:10 +00:00
|
|
|
}
|
|
|
|
|
|
2015-07-28 22:26:19 +00:00
|
|
|
if (file->namelen != 16) {
|
|
|
|
|
/* explicitly get the full aid */
|
2018-04-04 19:41:39 +00:00
|
|
|
r = get_full_pgp_aid(card, file);
|
2015-07-28 22:26:19 +00:00
|
|
|
if (r < 0) {
|
|
|
|
|
pgp_finish(card);
|
2018-06-16 13:57:43 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_CARD);
|
2015-07-28 22:26:19 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:49 +00:00
|
|
|
/* read information from AID */
|
2015-03-29 13:55:10 +00:00
|
|
|
if (file->namelen == 16) {
|
2018-06-23 15:11:17 +00:00
|
|
|
static char card_name[SC_MAX_APDU_BUFFER_SIZE] = "OpenPGP card";
|
|
|
|
|
|
2018-06-10 09:58:51 +00:00
|
|
|
/* OpenPGP card spec 1.1, 2.x & 3.x, section 4.2.1 & 4.1.2.1 */
|
2011-05-23 17:32:49 +00:00
|
|
|
priv->bcd_version = bebytes2ushort(file->name + 6);
|
2018-06-16 18:04:27 +00:00
|
|
|
card->version.fw_major = card->version.hw_major = BCD2UCHAR(file->name[6]);
|
|
|
|
|
card->version.fw_minor = card->version.hw_minor = BCD2UCHAR(file->name[7]);
|
|
|
|
|
|
2018-06-23 15:11:17 +00:00
|
|
|
/* for "standard" cards, include detailed card version & serial no. in card name */
|
2018-06-16 18:04:27 +00:00
|
|
|
if (card->name == default_cardname_v1 ||
|
|
|
|
|
card->name == default_cardname_v2 ||
|
|
|
|
|
card->name == default_cardname_v3) {
|
2018-06-23 15:11:17 +00:00
|
|
|
snprintf(card_name, sizeof(card_name),
|
|
|
|
|
"OpenPGP card v%u.%u (%04X %08lX)",
|
|
|
|
|
card->version.hw_major, card->version.hw_minor,
|
|
|
|
|
bebytes2ushort(file->name + 8),
|
|
|
|
|
bebytes2ulong(file->name + 10));
|
|
|
|
|
}
|
|
|
|
|
else if (card->name != NULL) {
|
|
|
|
|
/* for other cards, append serial number to the card name */
|
|
|
|
|
snprintf(card_name, sizeof(card_name),
|
|
|
|
|
"%s (%04X %08lX)",
|
|
|
|
|
card->name,
|
|
|
|
|
bebytes2ushort(file->name + 8),
|
|
|
|
|
bebytes2ulong(file->name + 10));
|
2018-06-16 18:04:27 +00:00
|
|
|
}
|
2018-06-23 15:11:17 +00:00
|
|
|
card->name = card_name;
|
2015-10-12 19:40:18 +00:00
|
|
|
|
2018-06-23 15:11:17 +00:00
|
|
|
/* GPG compatibility: set card's serial number to manufacturer ID + serial number */
|
2011-05-23 17:32:00 +00:00
|
|
|
memcpy(card->serialnr.value, file->name + 8, 6);
|
|
|
|
|
card->serialnr.len = 6;
|
2018-01-05 10:08:14 +00:00
|
|
|
} else {
|
|
|
|
|
/* set detailed card version */
|
|
|
|
|
switch (card->type) {
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_V3:
|
|
|
|
|
priv->bcd_version = OPENPGP_CARD_3_0;
|
|
|
|
|
break;
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_GNUK:
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_V2:
|
|
|
|
|
priv->bcd_version = OPENPGP_CARD_2_0;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
priv->bcd_version = OPENPGP_CARD_1_1;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* set pointer to correct list of card objects */
|
2018-06-09 15:18:42 +00:00
|
|
|
priv->pgp_objects = (priv->bcd_version < OPENPGP_CARD_2_0) ? pgp1x_objects
|
|
|
|
|
: (priv->bcd_version < OPENPGP_CARD_2_1) ? pgp20_objects
|
2018-06-10 10:35:37 +00:00
|
|
|
: (priv->bcd_version < OPENPGP_CARD_3_0) ? pgp21_objects
|
|
|
|
|
: (priv->bcd_version < OPENPGP_CARD_3_3) ? pgp30_objects
|
|
|
|
|
: pgp33_objects;
|
2011-05-23 17:32:00 +00:00
|
|
|
|
2011-05-31 16:34:41 +00:00
|
|
|
/* change file path to MF for re-use in MF */
|
2003-10-31 16:01:00 +00:00
|
|
|
sc_format_path("3f00", &file->path);
|
|
|
|
|
|
2011-05-31 16:34:41 +00:00
|
|
|
/* set up the root of our fake file tree */
|
|
|
|
|
priv->mf = pgp_new_blob(card, NULL, 0x3f00, file);
|
|
|
|
|
if (!priv->mf) {
|
|
|
|
|
pgp_finish(card);
|
2015-09-20 19:31:46 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_OUT_OF_MEMORY);
|
2011-05-31 16:34:41 +00:00
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:32:36 +00:00
|
|
|
/* select MF */
|
2011-05-23 17:30:56 +00:00
|
|
|
priv->current = priv->mf;
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* populate MF - add matching blobs listed in the pgp_objects table */
|
2011-05-23 17:32:54 +00:00
|
|
|
for (info = priv->pgp_objects; (info != NULL) && (info->id > 0); info++) {
|
2018-06-16 14:03:41 +00:00
|
|
|
if (((info->access & READ_MASK) != READ_NEVER) && (info->get_fn != NULL)) {
|
|
|
|
|
pgp_blob_t *child = NULL;
|
|
|
|
|
|
2011-05-31 19:00:42 +00:00
|
|
|
child = pgp_new_blob(card, priv->mf, info->id, sc_file_new());
|
|
|
|
|
|
2011-05-23 17:32:54 +00:00
|
|
|
/* catch out of memory condition */
|
2011-06-01 11:41:25 +00:00
|
|
|
if (child == NULL) {
|
|
|
|
|
pgp_finish(card);
|
2015-09-20 19:31:46 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_OUT_OF_MEMORY);
|
2011-06-01 11:41:25 +00:00
|
|
|
}
|
2011-05-23 17:32:54 +00:00
|
|
|
}
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
2011-05-23 17:31:31 +00:00
|
|
|
|
2011-05-23 17:33:04 +00:00
|
|
|
/* get card_features from ATR & DOs */
|
|
|
|
|
pgp_get_card_features(card);
|
|
|
|
|
|
2018-09-30 15:49:18 +00:00
|
|
|
/* if algorithm attributes can be changed,
|
|
|
|
|
* add supported algorithms based on specification for pkcs15-init */
|
|
|
|
|
if ((priv->ext_caps & EXT_CAP_ALG_ATTR_CHANGEABLE) &&
|
|
|
|
|
(strcmp(card->ctx->app_name, "pkcs15-init") == 0)) {
|
|
|
|
|
/* OpenPGP card spec 1.1 & 2.x, section 7.2.9 & 7.2.10 / v3.x section 7.2.11 & 7.2.12 */
|
|
|
|
|
unsigned long flags = SC_ALGORITHM_RSA_PAD_PKCS1 |
|
|
|
|
|
SC_ALGORITHM_RSA_HASH_NONE |
|
|
|
|
|
SC_ALGORITHM_ONBOARD_KEY_GEN; /* key gen. on card */
|
2018-08-31 12:38:14 +00:00
|
|
|
|
|
|
|
|
switch (card->type) {
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_V3:
|
|
|
|
|
/* RSA 1024 was removed for v3+ */
|
|
|
|
|
_sc_card_add_rsa_alg(card, 2048, flags, 0);
|
|
|
|
|
_sc_card_add_rsa_alg(card, 3072, flags, 0);
|
|
|
|
|
_sc_card_add_rsa_alg(card, 4096, flags, 0);
|
|
|
|
|
/* TODO add ECC
|
|
|
|
|
* v3.0+ supports: [RFC 4880 & 6637] 0x12 = ECDH, 0x13 = ECDSA */
|
|
|
|
|
break;
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_GNUK:
|
|
|
|
|
_sc_card_add_rsa_alg(card, 2048, flags, 0);
|
|
|
|
|
/* TODO add ECC for more recent Gnuk (1.2.x)
|
|
|
|
|
* these are not include in SC_CARD_TYPE_OPENPGP_GNUK, but
|
|
|
|
|
* are treated like SC_CARD_TYPE_OPENPGP_V2
|
|
|
|
|
* Gnuk supports NIST, SECG and Curve25519 from version 1.2.x on */
|
|
|
|
|
break;
|
|
|
|
|
case SC_CARD_TYPE_OPENPGP_V2:
|
|
|
|
|
default:
|
|
|
|
|
_sc_card_add_rsa_alg(card, 1024, flags, 0);
|
|
|
|
|
_sc_card_add_rsa_alg(card, 2048, flags, 0);
|
|
|
|
|
_sc_card_add_rsa_alg(card, 3072, flags, 0);
|
|
|
|
|
_sc_card_add_rsa_alg(card, 4096, flags, 0);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-20 19:31:46 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
2011-05-23 17:33:04 +00:00
|
|
|
}
|
|
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
|
2018-04-22 12:38:23 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* Internal: parse historic bytes to get card capabilities.
|
2018-04-22 12:38:23 +00:00
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
pgp_parse_hist_bytes(sc_card_t *card, u8 *ctlv, size_t ctlv_len)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2018-06-08 06:17:13 +00:00
|
|
|
const u8 *ptr;
|
|
|
|
|
|
|
|
|
|
/* IS07816-4 hist bytes: 3rd function table */
|
|
|
|
|
if ((ptr = sc_compacttlv_find_tag(ctlv, ctlv_len, 0x73, NULL)) != NULL) {
|
|
|
|
|
/* bit 0x40 in byte 3 of TL 0x73 means "extended Le/Lc" */
|
|
|
|
|
if (ptr[2] & 0x40) {
|
|
|
|
|
card->caps |= SC_CARD_CAP_APDU_EXT;
|
|
|
|
|
priv->ext_caps |= EXT_CAP_APDU_EXT;
|
2018-04-22 12:38:23 +00:00
|
|
|
}
|
2018-06-08 06:17:13 +00:00
|
|
|
/* bit 0x80 in byte 3 of TL 0x73 means "Command chaining" */
|
|
|
|
|
if ((ptr[2] & 0x80) &&
|
|
|
|
|
(priv->bcd_version >= OPENPGP_CARD_3_0)) {
|
|
|
|
|
priv->ext_caps |= EXT_CAP_CHAINING;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ((priv->bcd_version >= OPENPGP_CARD_3_0) &&
|
|
|
|
|
((ptr = sc_compacttlv_find_tag(ctlv, ctlv_len, 0x31, NULL)) != NULL)) {
|
|
|
|
|
// ToDo ...
|
2018-04-22 12:38:23 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-05-23 17:31:39 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
|
2018-10-06 13:32:27 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: parse an algorithm attributes DO
|
|
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_parse_algo_attr_blob(const pgp_blob_t *blob, sc_cardctl_openpgp_keygen_info_t *key_info)
|
|
|
|
|
{
|
|
|
|
|
if (blob == NULL || blob->data == NULL || blob->len == 0 ||
|
|
|
|
|
blob->id < 0x00c1 || blob->id > 0x00c3 || key_info == NULL)
|
|
|
|
|
return SC_ERROR_INCORRECT_PARAMETERS;
|
|
|
|
|
|
|
|
|
|
key_info->key_id = blob->id - 0x00c0; /* attribute algorithm blobs are C1 - C3 */
|
|
|
|
|
|
|
|
|
|
switch (blob->data[0]) {
|
|
|
|
|
case SC_OPENPGP_KEYALGO_RSA:
|
|
|
|
|
if (blob->len < 5)
|
|
|
|
|
return SC_ERROR_INCORRECT_PARAMETERS;
|
|
|
|
|
|
|
|
|
|
key_info->algorithm = SC_OPENPGP_KEYALGO_RSA;
|
|
|
|
|
key_info->rsa.modulus_len = bebytes2ushort(blob->data + 1);
|
|
|
|
|
key_info->rsa.exponent_len = bebytes2ushort(blob->data + 3);
|
|
|
|
|
|
|
|
|
|
key_info->rsa.keyformat = (blob->len > 5)
|
|
|
|
|
? blob->data[5]
|
|
|
|
|
: SC_OPENPGP_KEYFORMAT_RSA_STD;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return SC_ERROR_NOT_IMPLEMENTED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return SC_SUCCESS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: get features of the card: capabilities, ...
|
|
|
|
|
*/
|
2011-05-23 17:33:04 +00:00
|
|
|
static int
|
|
|
|
|
pgp_get_card_features(sc_card_t *card)
|
|
|
|
|
{
|
2015-09-19 14:52:51 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2015-10-17 16:58:29 +00:00
|
|
|
u8 *hist_bytes = card->reader->atr_info.hist_bytes;
|
|
|
|
|
size_t hist_bytes_len = card->reader->atr_info.hist_bytes_len;
|
2015-09-20 06:49:20 +00:00
|
|
|
size_t i;
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob, *blob6e, *blob73;
|
2011-05-23 17:33:04 +00:00
|
|
|
|
2018-04-22 12:38:23 +00:00
|
|
|
/* parse card capabilities from historical bytes in ATR */
|
2015-10-17 16:58:29 +00:00
|
|
|
if (hist_bytes_len > 0) {
|
2018-04-22 12:38:23 +00:00
|
|
|
/* category indicator 0x00, 0x10 or 0x80 => compact TLV (ISO) */
|
|
|
|
|
switch (hist_bytes[0]) {
|
|
|
|
|
case 0x00:
|
2018-07-03 07:36:21 +00:00
|
|
|
if (hist_bytes_len > 4) {
|
|
|
|
|
pgp_parse_hist_bytes(card, hist_bytes+1, hist_bytes_len-4);
|
|
|
|
|
}
|
2018-04-22 12:38:23 +00:00
|
|
|
break;
|
|
|
|
|
case 0x80:
|
2018-07-03 07:36:21 +00:00
|
|
|
if (hist_bytes_len > 1) {
|
|
|
|
|
pgp_parse_hist_bytes(card, hist_bytes+1, hist_bytes_len-1);
|
|
|
|
|
}
|
2018-04-22 12:38:23 +00:00
|
|
|
break;
|
|
|
|
|
case 0x10:
|
2018-07-03 07:36:21 +00:00
|
|
|
if (hist_bytes_len > 2) {
|
|
|
|
|
pgp_parse_hist_bytes(card, hist_bytes+2, hist_bytes_len-2);
|
|
|
|
|
}
|
2018-04-22 12:38:23 +00:00
|
|
|
break;
|
2012-05-26 20:27:58 +00:00
|
|
|
}
|
2011-05-23 17:31:39 +00:00
|
|
|
}
|
2015-09-20 06:49:20 +00:00
|
|
|
|
2018-06-10 20:06:53 +00:00
|
|
|
/* v1.1 does not support lifecycle via ACTIVATE & TERMINATE: set default */
|
|
|
|
|
priv->ext_caps &= ~EXT_CAP_LCS;
|
|
|
|
|
|
2012-05-26 20:27:58 +00:00
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_2_0) {
|
2011-05-23 17:33:04 +00:00
|
|
|
/* get card capabilities from "historical bytes" DO */
|
|
|
|
|
if ((pgp_get_blob(card, priv->mf, 0x5f52, &blob) >= 0) &&
|
|
|
|
|
(blob->data != NULL) && (blob->data[0] == 0x00)) {
|
2015-09-20 06:49:20 +00:00
|
|
|
|
2018-07-03 07:36:21 +00:00
|
|
|
if (hist_bytes_len > 4) {
|
|
|
|
|
pgp_parse_hist_bytes(card, hist_bytes+1, hist_bytes_len-4);
|
|
|
|
|
}
|
2012-05-26 20:27:58 +00:00
|
|
|
|
|
|
|
|
/* get card status from historical bytes status indicator */
|
2018-06-10 20:06:53 +00:00
|
|
|
if ((blob->data[0] == 0x00) && (blob->len >= 4)) {
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->state = blob->data[blob->len-3];
|
2018-06-10 20:06:53 +00:00
|
|
|
/* state not CARD_STATE_UNKNOWN => LCS supported */
|
|
|
|
|
if (priv->state != CARD_STATE_UNKNOWN)
|
|
|
|
|
priv->ext_caps |= EXT_CAP_LCS;
|
|
|
|
|
}
|
2011-05-23 17:33:04 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-05-23 17:31:39 +00:00
|
|
|
|
2018-01-17 20:11:16 +00:00
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_1) {
|
|
|
|
|
card->caps |= SC_CARD_CAP_ISO7816_PIN_INFO;
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:33:15 +00:00
|
|
|
if ((pgp_get_blob(card, priv->mf, 0x006e, &blob6e) >= 0) &&
|
|
|
|
|
(pgp_get_blob(card, blob6e, 0x0073, &blob73) >= 0)) {
|
|
|
|
|
|
|
|
|
|
/* get "extended capabilities" DO */
|
|
|
|
|
if ((pgp_get_blob(card, blob73, 0x00c0, &blob) >= 0) &&
|
|
|
|
|
(blob->data != NULL) && (blob->len > 0)) {
|
2018-06-10 09:58:51 +00:00
|
|
|
/* v2.0+: bit 0x04 in first byte means "algorithm attributes changeable" */
|
2013-02-20 04:54:30 +00:00
|
|
|
if ((blob->data[0] & 0x04) &&
|
2018-01-05 10:08:14 +00:00
|
|
|
(priv->bcd_version >= OPENPGP_CARD_2_0))
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->ext_caps |= EXT_CAP_ALG_ATTR_CHANGEABLE;
|
|
|
|
|
/* bit 0x08 in first byte means "support for private use DOs" */
|
|
|
|
|
if (blob->data[0] & 0x08)
|
|
|
|
|
priv->ext_caps |= EXT_CAP_PRIVATE_DO;
|
|
|
|
|
/* bit 0x10 in first byte means "support for CHV status byte changeable" */
|
|
|
|
|
if (blob->data[0] & 0x10)
|
|
|
|
|
priv->ext_caps |= EXT_CAP_C4_CHANGEABLE;
|
|
|
|
|
/* bit 0x20 in first byte means "support for Key Import" */
|
|
|
|
|
if (blob->data[0] & 0x20)
|
|
|
|
|
priv->ext_caps |= EXT_CAP_KEY_IMPORT;
|
|
|
|
|
/* bit 0x40 in first byte means "support for Get Challenge" */
|
|
|
|
|
if (blob->data[0] & 0x40) {
|
2011-05-23 17:33:15 +00:00
|
|
|
card->caps |= SC_CARD_CAP_RNG;
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->ext_caps |= EXT_CAP_GET_CHALLENGE;
|
|
|
|
|
}
|
2018-06-10 09:58:51 +00:00
|
|
|
/* v2.0+: bit 0x80 in first byte means "support Secure Messaging" */
|
2013-02-20 04:54:30 +00:00
|
|
|
if ((blob->data[0] & 0x80) &&
|
2018-01-05 10:08:14 +00:00
|
|
|
(priv->bcd_version >= OPENPGP_CARD_2_0))
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->ext_caps |= EXT_CAP_SM;
|
2011-05-23 17:33:15 +00:00
|
|
|
|
|
|
|
|
if ((priv->bcd_version >= OPENPGP_CARD_2_0) && (blob->len >= 10)) {
|
2018-06-10 09:58:51 +00:00
|
|
|
/* v2.0+: max. challenge size is at bytes 3-4 */
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->max_challenge_size = bebytes2ushort(blob->data + 2);
|
2018-06-10 09:58:51 +00:00
|
|
|
/* v2.0+: max. cert size it at bytes 5-6 */
|
2012-05-26 20:27:58 +00:00
|
|
|
priv->max_cert_size = bebytes2ushort(blob->data + 4);
|
2018-06-10 11:09:13 +00:00
|
|
|
|
2018-02-07 15:40:03 +00:00
|
|
|
if (priv->bcd_version < OPENPGP_CARD_3_0) {
|
2018-06-10 11:09:13 +00:00
|
|
|
/* v2.x: SM algorithm is at byte 2: 0 == 3DES */
|
2018-08-31 13:56:57 +00:00
|
|
|
priv->sm_algo = blob->data[1];
|
2018-06-10 11:09:13 +00:00
|
|
|
if ((priv->sm_algo == SM_ALGO_NONE) && (priv->ext_caps & EXT_CAP_SM))
|
|
|
|
|
priv->sm_algo = SM_ALGO_3DES;
|
|
|
|
|
|
2018-06-10 09:58:51 +00:00
|
|
|
/* v2.x: max. send/receive sizes are at bytes 7-8 resp. 9-10 */
|
2018-02-07 15:40:03 +00:00
|
|
|
card->max_send_size = bebytes2ushort(blob->data + 6);
|
|
|
|
|
card->max_recv_size = bebytes2ushort(blob->data + 8);
|
|
|
|
|
}
|
2018-06-10 11:09:13 +00:00
|
|
|
else {
|
|
|
|
|
/* v3.0+: SM algorithm is at byte 2: 0 == UNKNOWN */
|
2018-08-31 13:56:57 +00:00
|
|
|
priv->sm_algo = blob->data[1];
|
2018-06-10 11:09:13 +00:00
|
|
|
if ((priv->sm_algo == SM_ALGO_NONE) && (priv->ext_caps & EXT_CAP_SM))
|
|
|
|
|
priv->sm_algo = SM_ALGO_UNKNOWN;
|
|
|
|
|
}
|
2018-09-06 08:57:23 +00:00
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_3 && (blob->len >= 10)) {
|
|
|
|
|
/* v3.3+: MSE for key numbers 2(DEC) and 3(AUT) supported */
|
|
|
|
|
if (blob->data[9])
|
|
|
|
|
priv->ext_caps |= EXT_CAP_MSE;
|
|
|
|
|
}
|
2011-05-23 17:33:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* get max. PIN length from "CHV status bytes" DO */
|
|
|
|
|
if ((pgp_get_blob(card, blob73, 0x00c4, &blob) >= 0) &&
|
2015-07-03 16:21:38 +00:00
|
|
|
(blob->data != NULL) && (blob->len > 1)) {
|
2011-05-23 17:33:15 +00:00
|
|
|
/* 2nd byte in "CHV status bytes" DO means "max. PIN length" */
|
|
|
|
|
card->max_pin_len = blob->data[1];
|
|
|
|
|
}
|
2011-05-23 17:33:27 +00:00
|
|
|
|
2018-08-31 12:38:14 +00:00
|
|
|
/* get _current_ algorithms & key lengths from "algorithm attributes" DOs
|
|
|
|
|
*
|
|
|
|
|
* All available algorithms should be already provided by pgp_init. However, if another
|
|
|
|
|
* algorithm is found in the "algorithm attributes" DOs, it is supported by the card as
|
|
|
|
|
* well and therefore added
|
|
|
|
|
* see OpenPGP card spec 1.1 & 2.x section 4.3.3.6 / v3.x section 4.4.3.7 */
|
2015-09-20 06:49:20 +00:00
|
|
|
for (i = 0x00c1; i <= 0x00c3; i++) {
|
2018-10-06 15:28:15 +00:00
|
|
|
sc_cardctl_openpgp_keygen_info_t key_info;
|
2018-06-10 09:58:51 +00:00
|
|
|
/* OpenPGP card spec 1.1 & 2.x, section 7.2.9 & 7.2.10 / v3.x section 7.2.11 & 7.2.12 */
|
2018-09-30 09:57:24 +00:00
|
|
|
unsigned long flags = SC_ALGORITHM_RSA_PAD_PKCS1 |
|
|
|
|
|
SC_ALGORITHM_RSA_HASH_NONE |
|
|
|
|
|
SC_ALGORITHM_ONBOARD_KEY_GEN; /* key gen on card */
|
2011-05-23 17:33:27 +00:00
|
|
|
|
2018-06-24 08:15:36 +00:00
|
|
|
/* OpenPGP card spec 1.1 & 2.x section 4.3.3.6 / v3.x section 4.4.3.7 */
|
2018-10-06 15:28:15 +00:00
|
|
|
if ((pgp_get_blob(card, blob73, i, &blob) >= 0) &&
|
|
|
|
|
(pgp_parse_algo_attr_blob(blob, &key_info) >= 0)) {
|
2011-05-23 17:33:27 +00:00
|
|
|
|
2018-10-06 15:28:15 +00:00
|
|
|
if (key_info.algorithm == SC_OPENPGP_KEYALGO_RSA) /* RFC 4880: RSA */
|
|
|
|
|
_sc_card_add_rsa_alg(card, key_info.rsa.modulus_len, flags, 0);
|
|
|
|
|
|
|
|
|
|
/* TODO v3.0+: [RFC 4880 & 6637] 0x12 = ECDH, 0x13 = ECDSA */
|
2011-05-23 17:33:27 +00:00
|
|
|
}
|
|
|
|
|
}
|
2018-06-10 12:03:06 +00:00
|
|
|
|
|
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_0) {
|
|
|
|
|
/* v3.0+: get length info from "extended length information" DO */
|
|
|
|
|
if ((pgp_get_blob(card, blob6e, 0x7f66, &blob) >= 0) &&
|
|
|
|
|
(blob->data != NULL) && (blob->len >= 8)) {
|
|
|
|
|
/* kludge: treat as SIMPLE DO and use appropriate offsets */
|
|
|
|
|
card->max_send_size = bebytes2ushort(blob->data + 2);
|
|
|
|
|
card->max_recv_size = bebytes2ushort(blob->data + 6);
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-05-23 17:33:15 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: terminate driver & free private data.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_finish(sc_card_t *card)
|
|
|
|
|
{
|
2011-05-23 17:32:26 +00:00
|
|
|
if (card != NULL) {
|
2015-09-19 14:52:51 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2011-05-23 17:32:26 +00:00
|
|
|
if (priv != NULL) {
|
|
|
|
|
/* delete fake file hierarchy */
|
|
|
|
|
pgp_iterate_blobs(priv->mf, 99, pgp_free_blob);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:32:26 +00:00
|
|
|
/* delete private data */
|
|
|
|
|
free(priv);
|
|
|
|
|
}
|
|
|
|
|
card->drv_data = NULL;
|
|
|
|
|
}
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: fill a blob's data.
|
|
|
|
|
*/
|
2003-11-20 15:41:28 +00:00
|
|
|
static int
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_set_blob(pgp_blob_t *blob, const u8 *data, size_t len)
|
2003-11-20 15:41:28 +00:00
|
|
|
{
|
|
|
|
|
if (blob->data)
|
|
|
|
|
free(blob->data);
|
2011-05-23 17:31:09 +00:00
|
|
|
blob->data = NULL;
|
|
|
|
|
blob->len = 0;
|
2003-11-20 15:41:28 +00:00
|
|
|
blob->status = 0;
|
|
|
|
|
|
2011-05-23 17:31:09 +00:00
|
|
|
if (len > 0) {
|
2012-06-08 09:00:18 +00:00
|
|
|
void *tmp = calloc(len, 1);
|
2011-05-23 17:31:09 +00:00
|
|
|
|
|
|
|
|
if (tmp == NULL)
|
|
|
|
|
return SC_ERROR_OUT_OF_MEMORY;
|
|
|
|
|
|
|
|
|
|
blob->data = tmp;
|
2015-08-08 06:17:12 +00:00
|
|
|
blob->len = (unsigned int)len;
|
2012-06-08 09:00:18 +00:00
|
|
|
if (data != NULL)
|
|
|
|
|
memcpy(blob->data, data, len);
|
2011-05-23 17:31:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (blob->file)
|
|
|
|
|
blob->file->size = len;
|
|
|
|
|
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-01 18:00:13 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: implement Access Control List for emulated file.
|
2012-06-01 18:00:13 +00:00
|
|
|
* The Access Control is derived from the DO access permission.
|
|
|
|
|
**/
|
2012-06-11 16:48:37 +00:00
|
|
|
static void
|
2012-06-01 18:00:13 +00:00
|
|
|
pgp_attach_acl(sc_card_t *card, sc_file_t *file, struct do_info *info)
|
|
|
|
|
{
|
|
|
|
|
unsigned int method = SC_AC_NONE;
|
2012-06-21 08:22:44 +00:00
|
|
|
unsigned long key_ref = SC_AC_KEY_REF_NONE;
|
2012-06-01 18:00:13 +00:00
|
|
|
|
|
|
|
|
/* Write access */
|
2012-06-02 06:13:55 +00:00
|
|
|
switch (info->access & WRITE_MASK) {
|
|
|
|
|
case WRITE_NEVER:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_NEVER;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
|
|
|
|
case WRITE_PIN1:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-02 06:13:55 +00:00
|
|
|
key_ref = 0x01;
|
|
|
|
|
break;
|
|
|
|
|
case WRITE_PIN2:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-03 04:01:19 +00:00
|
|
|
key_ref = 0x02;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
|
|
|
|
case WRITE_PIN3:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-03 04:01:19 +00:00
|
|
|
key_ref = 0x03;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
2012-06-01 18:00:13 +00:00
|
|
|
}
|
|
|
|
|
|
2012-06-21 08:22:44 +00:00
|
|
|
if (method != SC_AC_NONE || key_ref != SC_AC_KEY_REF_NONE) {
|
2012-06-01 18:00:13 +00:00
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_WRITE, method, key_ref);
|
|
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_UPDATE, method, key_ref);
|
|
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_DELETE, method, key_ref);
|
|
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_CREATE, method, key_ref);
|
|
|
|
|
}
|
2012-06-21 08:22:44 +00:00
|
|
|
else {
|
|
|
|
|
/* When SC_AC_OP_DELETE is absent, we need to provide
|
|
|
|
|
* SC_AC_OP_DELETE_SELF for sc_pkcs15init_delete_by_path() */
|
|
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_DELETE_SELF, method, key_ref);
|
|
|
|
|
}
|
2012-06-01 18:00:13 +00:00
|
|
|
|
|
|
|
|
method = SC_AC_NONE;
|
2012-06-21 08:22:44 +00:00
|
|
|
key_ref = SC_AC_KEY_REF_NONE;
|
2012-06-01 18:00:13 +00:00
|
|
|
/* Read access */
|
2012-06-02 06:13:55 +00:00
|
|
|
switch (info->access & READ_MASK) {
|
|
|
|
|
case READ_NEVER:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_NEVER;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
|
|
|
|
case READ_PIN1:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-02 06:13:55 +00:00
|
|
|
key_ref = 0x01;
|
|
|
|
|
break;
|
|
|
|
|
case READ_PIN2:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-03 04:01:19 +00:00
|
|
|
key_ref = 0x02;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
|
|
|
|
case READ_PIN3:
|
2012-06-01 18:00:13 +00:00
|
|
|
method = SC_AC_CHV;
|
2012-06-03 04:01:19 +00:00
|
|
|
key_ref = 0x03;
|
2012-06-02 06:13:55 +00:00
|
|
|
break;
|
2012-06-01 18:00:13 +00:00
|
|
|
}
|
2012-06-02 06:13:55 +00:00
|
|
|
|
2012-06-21 08:22:44 +00:00
|
|
|
if (method != SC_AC_NONE || key_ref != SC_AC_KEY_REF_NONE) {
|
2012-06-02 09:51:10 +00:00
|
|
|
sc_file_add_acl_entry(file, SC_AC_OP_READ, method, key_ref);
|
2012-06-01 18:00:13 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Internal: append a blob to the list of children of a given parent blob.
|
|
|
|
|
*/
|
2014-07-13 11:41:36 +00:00
|
|
|
static pgp_blob_t *
|
|
|
|
|
pgp_new_blob(sc_card_t *card, pgp_blob_t *parent, unsigned int file_id,
|
2011-05-31 19:00:42 +00:00
|
|
|
sc_file_t *file)
|
2003-10-31 16:01:00 +00:00
|
|
|
{
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob = NULL;
|
2011-05-31 19:00:42 +00:00
|
|
|
|
|
|
|
|
if (file == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2014-07-13 11:41:36 +00:00
|
|
|
if ((blob = calloc(1, sizeof(pgp_blob_t))) != NULL) {
|
2015-09-19 14:52:51 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2011-05-31 19:00:42 +00:00
|
|
|
struct do_info *info;
|
|
|
|
|
|
|
|
|
|
blob->file = file;
|
|
|
|
|
|
|
|
|
|
blob->file->type = SC_FILE_TYPE_WORKING_EF; /* default */
|
|
|
|
|
blob->file->ef_structure = SC_FILE_EF_TRANSPARENT;
|
|
|
|
|
blob->file->id = file_id;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:31:31 +00:00
|
|
|
blob->id = file_id;
|
2011-05-31 19:00:42 +00:00
|
|
|
blob->parent = parent;
|
|
|
|
|
|
|
|
|
|
if (parent != NULL) {
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t **p;
|
2011-05-31 19:00:42 +00:00
|
|
|
|
|
|
|
|
/* set file's path = parent's path + file's id */
|
|
|
|
|
blob->file->path = parent->file->path;
|
|
|
|
|
sc_append_file_id(&blob->file->path, file_id);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-31 19:00:42 +00:00
|
|
|
/* append blob to list of parent's children */
|
|
|
|
|
for (p = &parent->files; *p != NULL; p = &(*p)->next)
|
|
|
|
|
;
|
|
|
|
|
*p = blob;
|
|
|
|
|
}
|
|
|
|
|
else {
|
2018-06-16 19:07:37 +00:00
|
|
|
char path[10] = "0000"; /* long enough */
|
2011-05-31 19:00:42 +00:00
|
|
|
|
|
|
|
|
/* no parent: set file's path = file's id */
|
2018-06-16 19:07:37 +00:00
|
|
|
if (4 != snprintf(path, sizeof(path), "%04X", file_id & 0xFFFF)) {
|
|
|
|
|
free(blob);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sc_format_path(path, &blob->file->path);
|
2011-05-31 19:00:42 +00:00
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-31 19:00:42 +00:00
|
|
|
/* find matching DO info: set file type depending on it */
|
|
|
|
|
for (info = priv->pgp_objects; (info != NULL) && (info->id > 0); info++) {
|
|
|
|
|
if (info->id == file_id) {
|
|
|
|
|
blob->info = info;
|
|
|
|
|
blob->file->type = blob->info->type;
|
2012-06-01 18:00:13 +00:00
|
|
|
pgp_attach_acl(card, blob->file, info);
|
2011-05-31 19:00:42 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-05-23 17:31:31 +00:00
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
|
|
|
|
|
return blob;
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: free a blob including its content.
|
|
|
|
|
*/
|
2011-05-23 17:30:56 +00:00
|
|
|
static void
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_free_blob(pgp_blob_t *blob)
|
2011-05-23 17:30:56 +00:00
|
|
|
{
|
|
|
|
|
if (blob) {
|
2011-06-02 08:10:48 +00:00
|
|
|
if (blob->parent) {
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t **p;
|
2011-06-02 08:10:48 +00:00
|
|
|
|
|
|
|
|
/* remove blob from list of parent's children */
|
|
|
|
|
for (p = &blob->parent->files; *p != NULL && *p != blob; p = &(*p)->next)
|
|
|
|
|
;
|
|
|
|
|
if (*p == blob)
|
|
|
|
|
*p = blob->next;
|
|
|
|
|
}
|
|
|
|
|
|
2017-01-05 19:21:44 +00:00
|
|
|
sc_file_free(blob->file);
|
2011-05-23 17:30:56 +00:00
|
|
|
if (blob->data)
|
|
|
|
|
free(blob->data);
|
|
|
|
|
free(blob);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: iterate through the blob tree, calling a function for each blob.
|
|
|
|
|
*/
|
2011-05-23 17:30:56 +00:00
|
|
|
static void
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_iterate_blobs(pgp_blob_t *blob, int level, void (*func)())
|
2011-05-23 17:30:56 +00:00
|
|
|
{
|
|
|
|
|
if (blob) {
|
|
|
|
|
if (level > 0) {
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *child = blob->files;
|
2011-05-23 17:30:56 +00:00
|
|
|
|
|
|
|
|
while (child != NULL) {
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *next = child->next;
|
2011-05-23 17:30:56 +00:00
|
|
|
|
|
|
|
|
pgp_iterate_blobs(child, level-1, func);
|
|
|
|
|
child = next;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
func(blob);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: read a blob's contents from card.
|
|
|
|
|
*/
|
2003-11-20 15:41:28 +00:00
|
|
|
static int
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_read_blob(sc_card_t *card, pgp_blob_t *blob)
|
2003-11-20 15:41:28 +00:00
|
|
|
{
|
2015-09-19 14:52:51 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2013-04-11 04:47:51 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if (blob->data != NULL)
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-11-20 15:41:28 +00:00
|
|
|
if (blob->info == NULL)
|
|
|
|
|
return blob->status;
|
|
|
|
|
|
2011-05-23 17:32:59 +00:00
|
|
|
if (blob->info->get_fn) { /* readable, top-level DO */
|
|
|
|
|
u8 buffer[2048];
|
2015-08-01 09:25:31 +00:00
|
|
|
size_t buf_len = sizeof(buffer);
|
2013-05-08 09:51:21 +00:00
|
|
|
int r = SC_SUCCESS;
|
2013-04-05 10:18:50 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* buffer length for certificate */
|
2013-04-11 04:47:51 +00:00
|
|
|
if (blob->id == DO_CERT && priv->max_cert_size > 0) {
|
|
|
|
|
buf_len = MIN(priv->max_cert_size, sizeof(buffer));
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* buffer length for Gnuk pubkey */
|
2013-04-05 10:18:50 +00:00
|
|
|
if (card->type == SC_CARD_TYPE_OPENPGP_GNUK &&
|
2015-09-14 19:48:48 +00:00
|
|
|
(blob->id == DO_AUTH ||
|
|
|
|
|
blob->id == DO_SIGN ||
|
|
|
|
|
blob->id == DO_ENCR ||
|
|
|
|
|
blob->id == DO_AUTH_SYM ||
|
|
|
|
|
blob->id == DO_SIGN_SYM ||
|
|
|
|
|
blob->id == DO_ENCR_SYM)) {
|
2018-10-13 19:36:48 +00:00
|
|
|
buf_len = MIN(MAXLEN_RESP_PUBKEY_GNUK, sizeof(buffer));
|
2013-04-05 10:18:50 +00:00
|
|
|
}
|
|
|
|
|
|
2013-05-08 09:51:21 +00:00
|
|
|
r = blob->info->get_fn(card, blob->id, buffer, buf_len);
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2011-05-23 17:32:59 +00:00
|
|
|
if (r < 0) { /* an error occurred */
|
|
|
|
|
blob->status = r;
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2011-05-23 17:32:59 +00:00
|
|
|
return pgp_set_blob(blob, buffer, r);
|
|
|
|
|
}
|
2012-06-02 09:51:51 +00:00
|
|
|
else { /* un-readable DO or part of a constructed DO */
|
2011-05-23 17:32:59 +00:00
|
|
|
return SC_SUCCESS;
|
|
|
|
|
}
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: enumerate contents of a data blob.
|
2011-05-23 17:30:49 +00:00
|
|
|
* The OpenPGP card has a TLV encoding according ASN.1 BER-encoding rules.
|
2003-10-30 17:04:22 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_enumerate_blob(sc_card_t *card, pgp_blob_t *blob)
|
2003-10-31 16:01:00 +00:00
|
|
|
{
|
2011-05-23 17:30:49 +00:00
|
|
|
const u8 *in;
|
2003-11-20 15:41:28 +00:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
if (blob->files != NULL)
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-11-20 15:41:28 +00:00
|
|
|
|
|
|
|
|
if ((r = pgp_read_blob(card, blob)) < 0)
|
|
|
|
|
return r;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
|
|
|
|
in = blob->data;
|
|
|
|
|
|
2011-05-27 08:49:43 +00:00
|
|
|
while ((int) blob->len > (in - blob->data)) {
|
2011-05-23 17:30:49 +00:00
|
|
|
unsigned int cla, tag, tmptag;
|
|
|
|
|
size_t len;
|
|
|
|
|
const u8 *data = in;
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *new;
|
2011-05-23 17:30:49 +00:00
|
|
|
|
2018-05-25 12:54:47 +00:00
|
|
|
if (!in)
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
|
2011-05-23 17:30:49 +00:00
|
|
|
r = sc_asn1_read_tag(&data, blob->len - (in - blob->data),
|
|
|
|
|
&cla, &tag, &len);
|
2018-03-19 14:25:14 +00:00
|
|
|
if (r < 0 || data == NULL) {
|
2018-11-22 08:31:29 +00:00
|
|
|
sc_log(card->ctx,
|
2011-05-23 17:30:49 +00:00
|
|
|
"Unexpected end of contents\n");
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2018-05-25 12:54:47 +00:00
|
|
|
if (data + len > blob->data + blob->len)
|
|
|
|
|
return SC_ERROR_OBJECT_NOT_VALID;
|
|
|
|
|
|
2011-05-23 17:30:49 +00:00
|
|
|
/* undo ASN1's split of tag & class */
|
|
|
|
|
for (tmptag = tag; tmptag > 0x0FF; tmptag >>= 8) {
|
|
|
|
|
cla <<= 8;
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
2011-05-23 17:30:49 +00:00
|
|
|
tag |= cla;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2015-08-01 09:25:31 +00:00
|
|
|
/* Awful hack for composite DOs that have
|
|
|
|
|
* a TLV with the DO's id encompassing the
|
|
|
|
|
* entire blob. Example: Yubikey Neo */
|
|
|
|
|
if (tag == blob->id) {
|
|
|
|
|
in = data;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-31 19:00:42 +00:00
|
|
|
/* create fake file system hierarchy by
|
|
|
|
|
* using constructed DOs as DF */
|
|
|
|
|
if ((new = pgp_new_blob(card, blob, tag, sc_file_new())) == NULL)
|
2011-05-23 17:30:49 +00:00
|
|
|
return SC_ERROR_OUT_OF_MEMORY;
|
|
|
|
|
pgp_set_blob(new, data, len);
|
|
|
|
|
in = data + len;
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:31:24 +00:00
|
|
|
return SC_SUCCESS;
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: find a blob by ID below a given parent, filling its contents when necessary.
|
|
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_get_blob(sc_card_t *card, pgp_blob_t *blob, unsigned int id,
|
|
|
|
|
pgp_blob_t **ret)
|
2003-10-31 16:01:00 +00:00
|
|
|
{
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *child;
|
2003-10-31 16:01:00 +00:00
|
|
|
int r;
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if ((r = pgp_enumerate_blob(card, blob)) < 0)
|
|
|
|
|
return r;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
for (child = blob->files; child; child = child->next) {
|
2011-05-23 17:33:33 +00:00
|
|
|
if (child->id == id) {
|
|
|
|
|
(void) pgp_read_blob(card, child);
|
|
|
|
|
*ret = child;
|
|
|
|
|
return SC_SUCCESS;
|
|
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2013-03-25 04:58:38 +00:00
|
|
|
/* This part is for "NOT FOUND" cases */
|
|
|
|
|
|
|
|
|
|
/* Special case:
|
|
|
|
|
* Gnuk does not have default value for children of DO 65 (DOs 5B, 5F2D, 5F35)
|
|
|
|
|
* So, if these blob was not found, we create it. */
|
2014-11-11 15:16:15 +00:00
|
|
|
if (blob->id == DO_CARDHOLDER && (id == DO_NAME || id == DO_LANG_PREF || id == DO_SEX)) {
|
2013-03-25 04:58:38 +00:00
|
|
|
sc_log(card->ctx, "Create blob %X under %X", id, blob->id);
|
|
|
|
|
child = pgp_new_blob(card, blob, id, sc_file_new());
|
|
|
|
|
if (child) {
|
|
|
|
|
pgp_set_blob(child, NULL, 0);
|
|
|
|
|
*ret = child;
|
|
|
|
|
return SC_SUCCESS;
|
|
|
|
|
}
|
|
|
|
|
else
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Not enough memory to create blob for DO %X",
|
|
|
|
|
id);
|
2013-03-25 04:58:38 +00:00
|
|
|
}
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
return SC_ERROR_FILE_NOT_FOUND;
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Internal: search recursively for a blob by ID below a given root.
|
|
|
|
|
*/
|
2012-06-01 15:45:12 +00:00
|
|
|
static int
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_seek_blob(sc_card_t *card, pgp_blob_t *root, unsigned int id,
|
|
|
|
|
pgp_blob_t **ret)
|
2012-06-01 15:45:12 +00:00
|
|
|
{
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *child;
|
2012-06-01 15:45:12 +00:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
if ((r = pgp_get_blob(card, root, id, ret)) == 0)
|
2015-09-19 14:52:51 +00:00
|
|
|
/* the sought blob is right under root */
|
2012-06-01 15:45:12 +00:00
|
|
|
return r;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* not found, seek deeper */
|
2012-06-01 15:45:12 +00:00
|
|
|
for (child = root->files; child; child = child->next) {
|
|
|
|
|
/* The DO of SIMPLE type or the DO holding certificate
|
|
|
|
|
* does not contain children */
|
2018-01-05 10:08:14 +00:00
|
|
|
if ((child->info && child->info->type == SIMPLE) || child->id == DO_CERT)
|
2012-06-01 15:45:12 +00:00
|
|
|
continue;
|
|
|
|
|
r = pgp_seek_blob(card, child, id, ret);
|
|
|
|
|
if (r == 0)
|
|
|
|
|
return r;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return SC_ERROR_FILE_NOT_FOUND;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Internal: find a blob by tag - pgp_seek_blob with optimizations.
|
|
|
|
|
*/
|
2014-07-13 11:41:36 +00:00
|
|
|
static pgp_blob_t *
|
2012-06-02 06:51:09 +00:00
|
|
|
pgp_find_blob(sc_card_t *card, unsigned int tag)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob = NULL;
|
2012-06-02 06:51:09 +00:00
|
|
|
int r;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* check if current selected blob is which we want to test */
|
2012-06-02 06:51:09 +00:00
|
|
|
if (priv->current->id == tag) {
|
|
|
|
|
return priv->current;
|
|
|
|
|
}
|
2015-09-19 14:52:51 +00:00
|
|
|
/* look for the blob representing the DO */
|
2012-06-02 06:51:09 +00:00
|
|
|
r = pgp_seek_blob(card, priv->mf, tag, &blob);
|
|
|
|
|
if (r < 0) {
|
|
|
|
|
sc_log(card->ctx, "Failed to seek the blob representing the tag %04X. Error %d.", tag, r);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
return blob;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Internal: get info for a specific tag.
|
|
|
|
|
*/
|
2012-06-14 02:05:16 +00:00
|
|
|
static struct do_info *
|
|
|
|
|
pgp_get_info_by_tag(sc_card_t *card, unsigned int tag)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
struct do_info *info;
|
|
|
|
|
|
|
|
|
|
for (info = priv->pgp_objects; (info != NULL) && (info->id > 0); info++)
|
|
|
|
|
if (tag == info->id)
|
|
|
|
|
return info;
|
|
|
|
|
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-01 15:57:36 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: strip out the parts of PKCS15 file layout in the path.
|
|
|
|
|
* Get the reduced version which is understood by the OpenPGP card driver.
|
2012-06-01 15:57:36 +00:00
|
|
|
* Return the index whose preceding part will be ignored.
|
|
|
|
|
**/
|
2015-09-19 14:52:51 +00:00
|
|
|
static unsigned int
|
|
|
|
|
pgp_strip_path(sc_card_t *card, const sc_path_t *path)
|
2012-06-01 15:57:36 +00:00
|
|
|
{
|
|
|
|
|
unsigned int start_point = 0;
|
|
|
|
|
/* start_point will move through the path string */
|
2015-01-28 06:39:35 +00:00
|
|
|
if (path->len == 0)
|
2012-06-01 15:57:36 +00:00
|
|
|
return 0;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* ignore 3F00 (MF) at the beginning */
|
2012-06-01 15:57:36 +00:00
|
|
|
start_point = (memcmp(path->value, "\x3f\x00", 2) == 0) ? 2 : 0;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* strip path of PKCS15-App DF (5015) */
|
2012-06-01 15:57:36 +00:00
|
|
|
start_point += (memcmp(path->value + start_point, "\x50\x15", 2) == 0) ? 2 : 0;
|
|
|
|
|
return start_point;
|
|
|
|
|
}
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 SELECT FILE - search given file & make it the currently selected one.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
|
|
|
|
pgp_select_file(sc_card_t *card, const sc_path_t *path, sc_file_t **ret)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob;
|
2012-06-01 15:57:36 +00:00
|
|
|
unsigned int path_start = 0;
|
2003-10-31 16:01:00 +00:00
|
|
|
unsigned int n;
|
2012-07-05 09:49:01 +00:00
|
|
|
sc_path_t dummy_path;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
if (path->type == SC_PATH_TYPE_DF_NAME)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, iso_ops->select_file(card, path, ret));
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
if (path->len < 2 || (path->len & 1))
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid path length");
|
|
|
|
|
|
2012-06-01 15:57:36 +00:00
|
|
|
if (path->type == SC_PATH_TYPE_FILE_ID && path->len != 2)
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid path type");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Due to pkcs15init implementation, sometimes a file at path "11001101"
|
|
|
|
|
* need to be written (one use case is when importing key&cert from p12 file).
|
2012-07-05 09:49:01 +00:00
|
|
|
* This file does not exist in OpenPGP but pkcs15 requires that
|
2015-09-19 14:52:51 +00:00
|
|
|
* writing this file must be successful.
|
2012-07-05 09:49:01 +00:00
|
|
|
* So, we pretend that selecting & writing this file is successful.
|
|
|
|
|
* The "11001101"is defined in sc_pkcs15emu_get_df() function, pkcs15-sync.c file. */
|
|
|
|
|
sc_format_path("11001101", &dummy_path);
|
|
|
|
|
if (sc_compare_path(path, &dummy_path)) {
|
2012-07-17 13:24:42 +00:00
|
|
|
if (ret != NULL) {
|
|
|
|
|
*ret = sc_file_new();
|
|
|
|
|
/* One use case of this dummy file is after writing certificate in pkcs15init.
|
|
|
|
|
* So we set its size to be the same as max certificate size the card supports. */
|
|
|
|
|
(*ret)->size = priv->max_cert_size;
|
|
|
|
|
}
|
2012-07-05 09:49:01 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
|
|
|
|
}
|
|
|
|
|
|
2018-04-14 17:38:34 +00:00
|
|
|
/* ignore explicitly mentioned MF at the path's beginning */
|
2012-06-01 15:57:36 +00:00
|
|
|
path_start = pgp_strip_path(card, path);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:32:43 +00:00
|
|
|
/* starting with the MF ... */
|
2011-05-23 17:30:56 +00:00
|
|
|
blob = priv->mf;
|
2011-05-23 17:32:43 +00:00
|
|
|
/* ... recurse through the tree following the path */
|
|
|
|
|
for (n = path_start; n < path->len; n += 2) {
|
|
|
|
|
unsigned int id = bebytes2ushort(path->value + n);
|
|
|
|
|
int r = pgp_get_blob(card, blob, id, &blob);
|
|
|
|
|
|
2018-04-14 17:38:34 +00:00
|
|
|
/* This file ID is referred when importing key&certificate via pkcs15init, like above.
|
2012-07-17 13:24:42 +00:00
|
|
|
* We pretend to successfully find this inexistent file. */
|
|
|
|
|
if (id == 0x4402 || id == 0x5f48) {
|
|
|
|
|
if (ret == NULL)
|
|
|
|
|
/* No need to return file */
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
|
|
|
|
|
|
|
|
|
/* Else, need to return file */
|
|
|
|
|
*ret = sc_file_new();
|
|
|
|
|
(*ret)->size = priv->max_cert_size;
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:43 +00:00
|
|
|
if (r < 0) { /* failure */
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:43 +00:00
|
|
|
/* success: select file = set "current" pointer to blob found */
|
2003-10-31 16:01:00 +00:00
|
|
|
priv->current = blob;
|
|
|
|
|
|
|
|
|
|
if (ret)
|
|
|
|
|
sc_file_dup(ret, blob->file);
|
2011-05-23 17:32:21 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 LIST FILES - enumerate all files in current DF.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
|
|
|
|
pgp_list_files(sc_card_t *card, u8 *buf, size_t buflen)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob;
|
2003-10-31 16:01:00 +00:00
|
|
|
unsigned int k;
|
|
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2011-05-23 17:32:36 +00:00
|
|
|
/* jump to selected file */
|
2003-11-20 15:41:28 +00:00
|
|
|
blob = priv->current;
|
2011-05-23 17:32:36 +00:00
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
if (blob->file->type != SC_FILE_TYPE_DF)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_OBJECT_NOT_VALID,
|
|
|
|
|
"invalid file type");
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if ((r = pgp_enumerate_blob(card, blob)) < 0)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-06-01 11:17:26 +00:00
|
|
|
for (k = 0, blob = blob->files; blob != NULL; blob = blob->next) {
|
|
|
|
|
if (blob->info != NULL && (blob->info->access & READ_MASK) != READ_NEVER) {
|
|
|
|
|
if (k + 2 > buflen)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_BUFFER_TOO_SMALL);
|
|
|
|
|
|
|
|
|
|
ushort2bebytes(buf + k, blob->id);
|
|
|
|
|
k += 2;
|
|
|
|
|
}
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, k);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* ABI: ISO 7816-4 GET CHALLENGE - generate random byte sequence.
|
|
|
|
|
*/
|
2018-01-18 11:33:34 +00:00
|
|
|
static int
|
|
|
|
|
pgp_get_challenge(struct sc_card *card, u8 *rnd, size_t len)
|
|
|
|
|
{
|
2018-01-23 12:53:23 +00:00
|
|
|
struct pgp_priv_data *priv;
|
2018-01-18 11:33:34 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2018-01-23 12:53:23 +00:00
|
|
|
priv = DRVDATA(card);
|
2018-01-18 11:33:34 +00:00
|
|
|
if (0 == (priv->ext_caps & EXT_CAP_GET_CHALLENGE)) {
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (priv->max_challenge_size > 0 && len > priv->max_challenge_size) {
|
2018-01-23 12:53:23 +00:00
|
|
|
len = priv->max_challenge_size;
|
2018-01-18 11:33:34 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, iso_ops->get_challenge(card, rnd, len));
|
|
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 READ BINARY - read data from currently selected EF.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
|
|
|
|
pgp_read_binary(sc_card_t *card, unsigned int idx,
|
|
|
|
|
u8 *buf, size_t count, unsigned long flags)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob;
|
2003-11-20 15:41:28 +00:00
|
|
|
int r;
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2011-05-23 17:32:36 +00:00
|
|
|
/* jump to selected file */
|
|
|
|
|
blob = priv->current;
|
|
|
|
|
|
|
|
|
|
if (blob == NULL)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_FILE_NOT_FOUND);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
|
|
|
|
if (blob->file->type != SC_FILE_TYPE_WORKING_EF)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_FILE_NOT_FOUND);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if ((r = pgp_read_blob(card, blob)) < 0)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
if (idx > blob->len)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INCORRECT_PARAMETERS);
|
2003-10-31 16:01:00 +00:00
|
|
|
|
|
|
|
|
if (idx + count > blob->len)
|
|
|
|
|
count = blob->len - idx;
|
|
|
|
|
memcpy(buf, blob->data + idx, count);
|
2011-05-23 17:32:21 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)count);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 WRITE BINARY - write data to currently selected EF.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
|
|
|
|
pgp_write_binary(sc_card_t *card, unsigned int idx,
|
|
|
|
|
const u8 *buf, size_t count, unsigned long flags)
|
|
|
|
|
{
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* Internal: get public key from card - as DF + sub-wEFs.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-31 16:01:00 +00:00
|
|
|
static int
|
|
|
|
|
pgp_get_pubkey(sc_card_t *card, unsigned int tag, u8 *buf, size_t buf_len)
|
|
|
|
|
{
|
|
|
|
|
sc_apdu_t apdu;
|
2015-09-14 20:01:00 +00:00
|
|
|
u8 apdu_case = (card->type == SC_CARD_TYPE_OPENPGP_GNUK)
|
|
|
|
|
? SC_APDU_CASE_4_SHORT : SC_APDU_CASE_4;
|
2003-10-31 16:01:00 +00:00
|
|
|
u8 idbuf[2];
|
|
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
sc_log(card->ctx, "called, tag=%04x\n", tag);
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x47, 0x81, 0);
|
2003-10-31 16:01:00 +00:00
|
|
|
apdu.lc = 2;
|
2011-05-23 17:33:50 +00:00
|
|
|
apdu.data = ushort2bebytes(idbuf, tag);
|
2003-10-31 16:01:00 +00:00
|
|
|
apdu.datalen = 2;
|
2011-05-23 17:31:45 +00:00
|
|
|
apdu.le = ((buf_len >= 256) && !(card->caps & SC_CARD_CAP_APDU_EXT)) ? 256 : buf_len;
|
2003-10-31 16:01:00 +00:00
|
|
|
apdu.resp = buf;
|
|
|
|
|
apdu.resplen = buf_len;
|
|
|
|
|
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
|
2003-10-31 16:01:00 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
2003-10-31 16:01:00 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)apdu.resplen);
|
2003-10-31 16:01:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* Internal: get public key from card - as one wEF.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-11-20 15:41:28 +00:00
|
|
|
static int
|
|
|
|
|
pgp_get_pubkey_pem(sc_card_t *card, unsigned int tag, u8 *buf, size_t buf_len)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob, *mod_blob, *exp_blob;
|
2003-11-20 15:41:28 +00:00
|
|
|
sc_pkcs15_pubkey_t pubkey;
|
|
|
|
|
u8 *data;
|
|
|
|
|
size_t len;
|
|
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
sc_log(card->ctx, "called, tag=%04x\n", tag);
|
2012-06-02 09:51:51 +00:00
|
|
|
|
2011-05-23 17:30:56 +00:00
|
|
|
if ((r = pgp_get_blob(card, priv->mf, tag & 0xFFFE, &blob)) < 0
|
2015-07-03 16:21:38 +00:00
|
|
|
|| (r = pgp_get_blob(card, blob, 0x7F49, &blob)) < 0
|
|
|
|
|
|| (r = pgp_get_blob(card, blob, 0x0081, &mod_blob)) < 0
|
|
|
|
|
|| (r = pgp_get_blob(card, blob, 0x0082, &exp_blob)) < 0
|
|
|
|
|
|| (r = pgp_read_blob(card, mod_blob)) < 0
|
|
|
|
|
|| (r = pgp_read_blob(card, exp_blob)) < 0)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "error getting elements");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
|
|
|
|
memset(&pubkey, 0, sizeof(pubkey));
|
|
|
|
|
pubkey.algorithm = SC_ALGORITHM_RSA;
|
|
|
|
|
pubkey.u.rsa.modulus.data = mod_blob->data;
|
|
|
|
|
pubkey.u.rsa.modulus.len = mod_blob->len;
|
|
|
|
|
pubkey.u.rsa.exponent.data = exp_blob->data;
|
|
|
|
|
pubkey.u.rsa.exponent.len = exp_blob->len;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
r = sc_pkcs15_encode_pubkey(card->ctx, &pubkey, &data, &len);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "public key encoding failed");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
|
|
|
|
if (len > buf_len)
|
|
|
|
|
len = buf_len;
|
|
|
|
|
memcpy(buf, data, len);
|
|
|
|
|
free(data);
|
2011-05-23 17:32:21 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)len);
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 GET DATA - get contents of a DO.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_get_data(sc_card_t *card, unsigned int tag, u8 *buf, size_t buf_len)
|
|
|
|
|
{
|
|
|
|
|
sc_apdu_t apdu;
|
|
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2011-05-23 17:31:50 +00:00
|
|
|
sc_format_apdu(card, &apdu, SC_APDU_CASE_2, 0xCA, tag >> 8, tag);
|
|
|
|
|
apdu.le = ((buf_len >= 256) && !(card->caps & SC_CARD_CAP_APDU_EXT)) ? 256 : buf_len;
|
2003-10-30 17:04:22 +00:00
|
|
|
apdu.resp = buf;
|
|
|
|
|
apdu.resplen = buf_len;
|
|
|
|
|
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2013-03-25 04:58:38 +00:00
|
|
|
|
2018-10-13 19:36:48 +00:00
|
|
|
/* Gnuk returns an error instead of empty data if there is no certificate or private DO.
|
2013-03-25 04:58:38 +00:00
|
|
|
* So, for this case, we ignore error and consider success */
|
2018-10-13 19:36:48 +00:00
|
|
|
if (card->type == SC_CARD_TYPE_OPENPGP_GNUK &&
|
|
|
|
|
(tag == DO_CERT ||
|
|
|
|
|
tag == DO_PRIV1 ||
|
|
|
|
|
tag == DO_PRIV2 ||
|
|
|
|
|
tag == DO_PRIV3 ||
|
|
|
|
|
tag == DO_PRIV4)) {
|
|
|
|
|
if (r == SC_ERROR_DATA_OBJECT_NOT_FOUND) {
|
|
|
|
|
r = SC_SUCCESS;
|
|
|
|
|
apdu.resplen = 0;
|
|
|
|
|
}
|
2013-03-25 04:58:38 +00:00
|
|
|
}
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)apdu.resplen);
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2013-04-11 04:47:51 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: write certificate for Gnuk.
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
gnuk_write_certificate(sc_card_t *card, const u8 *buf, size_t length)
|
2003-10-30 17:04:22 +00:00
|
|
|
{
|
2013-04-11 04:47:51 +00:00
|
|
|
size_t i = 0;
|
2012-06-01 15:40:39 +00:00
|
|
|
sc_apdu_t apdu;
|
2013-04-11 04:47:51 +00:00
|
|
|
int r = SC_SUCCESS;
|
|
|
|
|
|
2015-09-14 20:27:43 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2013-04-11 04:47:51 +00:00
|
|
|
|
|
|
|
|
/* If null data is passed, delete certificate */
|
|
|
|
|
if (buf == NULL || length == 0) {
|
|
|
|
|
sc_format_apdu(card, &apdu, SC_APDU_CASE_1, 0xD6, 0x85, 0);
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
/* Check response */
|
2013-04-16 09:02:17 +00:00
|
|
|
LOG_TEST_RET(card->ctx, sc_check_sw(card, apdu.sw1, apdu.sw2), "Certificate writing failed");
|
2013-04-11 04:47:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Ref: gnuk_put_binary_libusb.py and gnuk_token.py in Gnuk source tree */
|
|
|
|
|
/* Split data to segments of 256 bytes. Send each segment via command chaining,
|
|
|
|
|
* with particular P1 byte for each segment */
|
2015-09-14 20:27:43 +00:00
|
|
|
for (i = 0; i*256 < length; i++) {
|
|
|
|
|
u8 *part = (u8 *)buf + i*256;
|
|
|
|
|
size_t plen = MIN(length - i*256, 256);
|
|
|
|
|
u8 roundbuf[256]; /* space to build APDU data with even length for Gnuk */
|
2013-04-11 04:47:51 +00:00
|
|
|
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Write part %"SC_FORMAT_LEN_SIZE_T"u from offset 0x%"SC_FORMAT_LEN_SIZE_T"X, len %"SC_FORMAT_LEN_SIZE_T"u",
|
|
|
|
|
i+1, i*256, plen);
|
2013-04-11 04:47:51 +00:00
|
|
|
|
2015-09-14 20:27:43 +00:00
|
|
|
/* 1st chunk: P1 = 0x85, further chunks: P1 = chunk no */
|
|
|
|
|
sc_format_apdu(card, &apdu, SC_APDU_CASE_3_SHORT, 0xD6, (i == 0) ? 0x85 : i, 0);
|
2013-04-11 04:47:51 +00:00
|
|
|
apdu.flags |= SC_APDU_FLAGS_CHAINING;
|
2015-09-14 20:27:43 +00:00
|
|
|
apdu.data = part;
|
|
|
|
|
apdu.datalen = apdu.lc = plen;
|
2013-04-11 09:18:31 +00:00
|
|
|
|
|
|
|
|
/* If the last part has odd length, we add zero padding to make it even.
|
|
|
|
|
* Gnuk does not allow data with odd length */
|
|
|
|
|
if (plen < 256 && (plen % 2) != 0) {
|
|
|
|
|
memcpy(roundbuf, part, plen);
|
2015-09-14 20:27:43 +00:00
|
|
|
roundbuf[plen++] = 0;
|
2013-04-11 09:18:31 +00:00
|
|
|
apdu.data = roundbuf;
|
|
|
|
|
apdu.datalen = apdu.lc = plen;
|
|
|
|
|
}
|
2013-04-11 04:47:51 +00:00
|
|
|
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
/* Check response */
|
2013-04-16 09:02:17 +00:00
|
|
|
LOG_TEST_RET(card->ctx, sc_check_sw(card, apdu.sw1, apdu.sw2), "UPDATE BINARY returned error");
|
2013-04-11 04:47:51 +00:00
|
|
|
}
|
2015-09-14 20:27:43 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)length);
|
2013-04-11 04:47:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
|
|
|
|
* Internal: use PUT DATA command to write.
|
|
|
|
|
*/
|
2013-04-11 04:47:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_put_data_plain(sc_card_t *card, unsigned int tag, const u8 *buf, size_t buf_len)
|
|
|
|
|
{
|
2012-06-01 15:40:39 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2013-04-11 04:47:51 +00:00
|
|
|
sc_apdu_t apdu;
|
2012-05-30 10:31:39 +00:00
|
|
|
u8 ins = 0xDA;
|
|
|
|
|
u8 p1 = tag >> 8;
|
2012-06-07 17:31:02 +00:00
|
|
|
u8 p2 = tag & 0xFF;
|
2015-09-14 20:01:00 +00:00
|
|
|
u8 apdu_case = (card->type == SC_CARD_TYPE_OPENPGP_GNUK)
|
|
|
|
|
? SC_APDU_CASE_3_SHORT : SC_APDU_CASE_3;
|
2012-06-01 15:40:39 +00:00
|
|
|
int r;
|
|
|
|
|
|
2015-09-14 20:59:19 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2012-05-30 10:13:36 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/* Extended Header list (DO 004D) needs a variant of PUT DATA command */
|
2012-05-30 10:31:39 +00:00
|
|
|
if (tag == 0x004D) {
|
|
|
|
|
ins = 0xDB;
|
|
|
|
|
p1 = 0x3F;
|
|
|
|
|
p2 = 0xFF;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* build APDU */
|
2012-06-07 17:31:02 +00:00
|
|
|
if (buf != NULL && buf_len > 0) {
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, ins, p1, p2);
|
2012-06-07 17:31:02 +00:00
|
|
|
|
|
|
|
|
/* if card/reader does not support extended APDUs, but chaining, then set it */
|
|
|
|
|
if (((card->caps & SC_CARD_CAP_APDU_EXT) == 0) && (priv->ext_caps & EXT_CAP_CHAINING))
|
|
|
|
|
apdu.flags |= SC_APDU_FLAGS_CHAINING;
|
|
|
|
|
|
2013-02-20 04:54:30 +00:00
|
|
|
apdu.data = (u8 *)buf;
|
2012-06-07 17:31:02 +00:00
|
|
|
apdu.datalen = buf_len;
|
|
|
|
|
apdu.lc = buf_len;
|
2012-06-01 15:40:39 +00:00
|
|
|
}
|
2012-06-01 17:57:26 +00:00
|
|
|
else {
|
2013-04-11 04:47:51 +00:00
|
|
|
/* This case is to empty DO */
|
2012-06-07 17:31:02 +00:00
|
|
|
sc_format_apdu(card, &apdu, SC_APDU_CASE_1, ins, p1, p2);
|
2012-06-01 17:57:26 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* send APDU to card */
|
2012-06-01 15:40:39 +00:00
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2015-09-14 20:59:19 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* check response */
|
2012-06-01 15:40:39 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2018-10-28 10:35:32 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
2013-04-11 04:47:51 +00:00
|
|
|
|
2015-09-14 20:59:19 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)buf_len);
|
2013-04-11 04:47:51 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 PUT DATA - write contents of a DO.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2013-04-11 04:47:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_put_data(sc_card_t *card, unsigned int tag, const u8 *buf, size_t buf_len)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *affected_blob = NULL;
|
2013-04-11 04:47:51 +00:00
|
|
|
struct do_info *dinfo = NULL;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* check if the tag is writable */
|
2013-04-11 04:47:51 +00:00
|
|
|
if (priv->current->id != tag)
|
|
|
|
|
affected_blob = pgp_find_blob(card, tag);
|
|
|
|
|
|
|
|
|
|
/* Non-readable DOs have no represented blob, we have to check from pgp_get_info_by_tag */
|
|
|
|
|
if (affected_blob == NULL)
|
|
|
|
|
dinfo = pgp_get_info_by_tag(card, tag);
|
|
|
|
|
else
|
|
|
|
|
dinfo = affected_blob->info;
|
|
|
|
|
|
|
|
|
|
if (dinfo == NULL) {
|
|
|
|
|
sc_log(card->ctx, "The DO %04X does not exist.", tag);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
else if ((dinfo->access & WRITE_MASK) == WRITE_NEVER) {
|
|
|
|
|
sc_log(card->ctx, "DO %04X is not writable.", tag);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_ALLOWED);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Check data size.
|
|
|
|
|
* We won't check other DOs than 7F21 (certificate), because their capacity
|
2015-09-19 14:52:51 +00:00
|
|
|
* is hard-coded and may change in various version of the card.
|
|
|
|
|
* If we check here, the driver may be stuck to a limit version number of card.
|
2013-04-11 04:47:51 +00:00
|
|
|
* 7F21 size is soft-coded, so we can check it. */
|
|
|
|
|
if (tag == DO_CERT && buf_len > priv->max_cert_size) {
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Data size %"SC_FORMAT_LEN_SIZE_T"u exceeds DO size limit %"SC_FORMAT_LEN_SIZE_T"u.",
|
|
|
|
|
buf_len, priv->max_cert_size);
|
2013-04-11 04:47:51 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_WRONG_LENGTH);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (tag == DO_CERT && card->type == SC_CARD_TYPE_OPENPGP_GNUK) {
|
|
|
|
|
/* Gnuk need a special way to write certificate. */
|
|
|
|
|
r = gnuk_write_certificate(card, buf, buf_len);
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
r = pgp_put_data_plain(card, tag, buf, buf_len);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* instruct more in case of error */
|
2012-06-01 15:40:39 +00:00
|
|
|
if (r == SC_ERROR_SECURITY_STATUS_NOT_SATISFIED) {
|
|
|
|
|
sc_debug(card->ctx, SC_LOG_DEBUG_VERBOSE, "Please verify PIN first.");
|
|
|
|
|
}
|
2012-06-07 17:31:02 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "PUT DATA returned error");
|
2012-06-01 15:40:39 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
if (affected_blob) {
|
2015-09-19 14:52:51 +00:00
|
|
|
/* update the corresponding file */
|
2012-06-14 02:05:16 +00:00
|
|
|
sc_log(card->ctx, "Updating the corresponding blob data");
|
|
|
|
|
r = pgp_set_blob(affected_blob, buf, buf_len);
|
|
|
|
|
if (r < 0)
|
|
|
|
|
sc_log(card->ctx, "Failed to update blob %04X. Error %d.", affected_blob->id, r);
|
|
|
|
|
/* pgp_set_blob()'s failures do not impact pgp_put_data()'s result */
|
|
|
|
|
}
|
2012-06-01 15:40:39 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)buf_len);
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-9 PIN CMD - verify/change/unblock a PIN.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_pin_cmd(sc_card_t *card, struct sc_pin_cmd_data *data, int *tries_left)
|
|
|
|
|
{
|
2016-08-13 23:46:55 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2003-10-30 17:04:22 +00:00
|
|
|
if (data->pin_type != SC_AC_CHV)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid PIN type");
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* In general, the PIN Reference is extracted from the key-id,
|
|
|
|
|
* for example, CHV0 -> Ref=0, CHV1 -> Ref=1.
|
2012-06-01 15:41:17 +00:00
|
|
|
* However, in the case of OpenGPG, the PIN Ref to compose APDU
|
|
|
|
|
* must be 81, 82, 83.
|
|
|
|
|
* So, if we receive Ref=1, Ref=2, we must convert to 81, 82...
|
2015-09-19 14:52:51 +00:00
|
|
|
* In OpenPGP v1, the PINs are named CHV1, CHV2, CHV3.
|
|
|
|
|
* In v2, they are named PW1, PW3 (PW1 operates in 2 modes).
|
2016-08-13 23:46:55 +00:00
|
|
|
*
|
|
|
|
|
* The PIN references (P2 in APDU) for "VERIFY" are the same in both versions:
|
|
|
|
|
* 81 (CHV1 or PW1), 82 (CHV2 or PW1-mode 2), 83 (CHV3 or PW3),
|
|
|
|
|
* On the other hand from version 2.0 "CHANGE REFERENCE DATA" and
|
|
|
|
|
* "RESET RETRY COUNTER" don't support PW1-mode 2 (82) and need this
|
|
|
|
|
* value changed to PW1 (81).
|
|
|
|
|
* Both of these commands also differ between card versions in that
|
|
|
|
|
* v1 cards can use only implicit old PIN or CHV3 test for both commands
|
|
|
|
|
* whereas v2 can use both implicit (for PW3) and explicit
|
|
|
|
|
* (for special "Resetting Code") PIN test for "RESET RETRY COUNTER"
|
|
|
|
|
* and only explicit test for "CHANGE REFERENCE DATA".
|
2012-06-01 15:41:17 +00:00
|
|
|
*
|
|
|
|
|
* Note that if this function is called from sc_pkcs15_verify_pin() in pkcs15-pin.c,
|
|
|
|
|
* the Ref is already 81, 82, 83.
|
|
|
|
|
*/
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* convert the PIN Reference if needed */
|
2012-06-01 15:41:17 +00:00
|
|
|
data->pin_reference |= 0x80;
|
2016-08-13 23:46:55 +00:00
|
|
|
|
|
|
|
|
/* check version-dependent constraints */
|
|
|
|
|
if (data->cmd == SC_PIN_CMD_CHANGE || data->cmd == SC_PIN_CMD_UNBLOCK) {
|
|
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_2_0) {
|
|
|
|
|
if (data->pin_reference == 0x82)
|
|
|
|
|
data->pin_reference = 0x81;
|
|
|
|
|
|
|
|
|
|
if (data->cmd == SC_PIN_CMD_CHANGE) {
|
|
|
|
|
if (data->pin1.len == 0 &&
|
|
|
|
|
!(data->flags & SC_PIN_CMD_USE_PINPAD))
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"v2 cards don't support implicit old PIN for PIN change.");
|
|
|
|
|
|
|
|
|
|
data->flags &= ~SC_PIN_CMD_IMPLICIT_CHANGE;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (data->pin1.len != 0) {
|
|
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"v1 cards don't support explicit old or CHV3 PIN, PIN ignored.");
|
|
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"please make sure that you have verified the relevant PIN first.");
|
|
|
|
|
data->pin1.len = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
data->flags |= SC_PIN_CMD_IMPLICIT_CHANGE;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (data->cmd == SC_PIN_CMD_UNBLOCK && data->pin2.len == 0 &&
|
|
|
|
|
!(data->flags & SC_PIN_CMD_USE_PINPAD))
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"new PIN must be provided for unblock operation.");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* ensure pin_reference is 81, 82, 83 */
|
2012-06-01 15:41:17 +00:00
|
|
|
if (!(data->pin_reference == 0x81 || data->pin_reference == 0x82 || data->pin_reference == 0x83)) {
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"key-id should be 1, 2, 3.");
|
|
|
|
|
}
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, iso_ops->pin_cmd(card, data, tries_left));
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/**
|
|
|
|
|
* ABI: ISO 7816-8 LOGOUT - reset all access rights gained.
|
|
|
|
|
*/
|
2018-01-17 20:11:16 +00:00
|
|
|
int pgp_logout(struct sc_card *card)
|
|
|
|
|
{
|
|
|
|
|
int r = SC_SUCCESS;
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
|
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_1) {
|
|
|
|
|
unsigned char pin_reference;
|
|
|
|
|
for (pin_reference = 0x81; pin_reference <= 0x83; pin_reference++) {
|
|
|
|
|
int tmp = iso7816_logout(card, pin_reference);
|
|
|
|
|
if (r == SC_SUCCESS) {
|
|
|
|
|
r = tmp;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
sc_path_t path;
|
|
|
|
|
sc_file_t *file = NULL;
|
|
|
|
|
|
|
|
|
|
/* select application "OpenPGP" */
|
|
|
|
|
sc_format_path("D276:0001:2401", &path);
|
|
|
|
|
path.type = SC_PATH_TYPE_DF_NAME;
|
|
|
|
|
r = iso_ops->select_file(card, &path, &file);
|
|
|
|
|
sc_file_free(file);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-8 SET SECURITY ENVIRONMENT.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_set_security_env(sc_card_t *card,
|
2003-11-20 15:41:28 +00:00
|
|
|
const sc_security_env_t *env, int se_num)
|
2003-10-30 17:04:22 +00:00
|
|
|
{
|
2003-11-20 15:41:28 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
|
|
|
|
if ((env->flags & SC_SEC_ENV_ALG_PRESENT) && (env->algorithm != SC_ALGORITHM_RSA))
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"only RSA algorithm supported");
|
|
|
|
|
|
|
|
|
|
if (!(env->flags & SC_SEC_ENV_KEY_REF_PRESENT) || (env->key_ref_len != 1))
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"exactly one key reference required");
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if (env->flags & SC_SEC_ENV_FILE_REF_PRESENT)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"passing file references not supported");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2012-07-17 13:24:42 +00:00
|
|
|
sc_log(card->ctx, "Key ref %d", env->key_ref[0]);
|
2003-11-20 15:41:28 +00:00
|
|
|
switch (env->operation) {
|
|
|
|
|
case SC_SEC_OPERATION_SIGN:
|
2012-07-17 13:24:42 +00:00
|
|
|
sc_log(card->ctx, "Operation: Sign.");
|
2011-05-23 17:32:21 +00:00
|
|
|
if (env->key_ref[0] != 0x00 && env->key_ref[0] != 0x02) {
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_NOT_SUPPORTED,
|
2003-11-20 15:41:28 +00:00
|
|
|
"Key reference not compatible with "
|
2011-05-23 17:32:21 +00:00
|
|
|
"requested usage");
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case SC_SEC_OPERATION_DECIPHER:
|
2012-07-17 13:24:42 +00:00
|
|
|
sc_log(card->ctx, "Operation: Decipher.");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* we allow key ref 2 (auth key) to be used for deciphering */
|
2012-07-17 13:24:42 +00:00
|
|
|
if (env->key_ref[0] != 0x01 && env->key_ref[0] != 0x02) {
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_NOT_SUPPORTED,
|
2003-11-20 15:41:28 +00:00
|
|
|
"Key reference not compatible with "
|
2011-05-23 17:32:21 +00:00
|
|
|
"requested usage");
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid operation");
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
priv->sec_env = *env;
|
2011-05-23 17:32:21 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2018-09-06 08:57:23 +00:00
|
|
|
/**
|
|
|
|
|
* set MANAGE SECURITY ENVIRONMENT as documented in 7.2.18 since OpenPGP Card v3.3
|
|
|
|
|
*
|
|
|
|
|
* "This optional command (announced in Extended Capabilities) assigns a specific key to a
|
|
|
|
|
* command. The DEC-key (Key-Ref 2) can be assigned to the command INTERNAL AUTHENTICATE
|
|
|
|
|
* and the AUT-Key (Key.Ref 3) can be linked to the command PSO:DECIPHER also."
|
|
|
|
|
*
|
|
|
|
|
* key: Key-Ref to change (2 for DEC-Key or 3 for AUT-Key)
|
|
|
|
|
* p2: Usage to set (0xb8 for PSO:DECIPHER or 0xa4 for INTERNAL AUTHENTICATE)
|
|
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_set_MSE(sc_card_t *card, int key, u8 p2)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
sc_apdu_t apdu;
|
|
|
|
|
u8 apdu_case = SC_APDU_CASE_3;
|
|
|
|
|
u8 apdu_data[3];
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
|
|
|
|
// check if MSE is supported
|
|
|
|
|
if (!(priv->ext_caps & EXT_CAP_MSE))
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
|
|
|
|
// create apdu
|
|
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x22, 0x41, p2);
|
|
|
|
|
apdu.lc = 3;
|
|
|
|
|
apdu_data[0] = 0x83;
|
|
|
|
|
apdu_data[1] = 0x01;
|
|
|
|
|
apdu_data[2] = key;
|
|
|
|
|
apdu.data = apdu_data;
|
|
|
|
|
apdu.datalen = 3;
|
|
|
|
|
|
|
|
|
|
// transmit apdu
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
|
|
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-8 COMPUTE DIGITAL SIGNATURE.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-10-30 17:04:22 +00:00
|
|
|
static int
|
|
|
|
|
pgp_compute_signature(sc_card_t *card, const u8 *data,
|
|
|
|
|
size_t data_len, u8 * out, size_t outlen)
|
|
|
|
|
{
|
2003-11-20 15:41:28 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
sc_security_env_t *env = &priv->sec_env;
|
|
|
|
|
sc_apdu_t apdu;
|
2015-09-14 20:01:00 +00:00
|
|
|
u8 apdu_case = (card->type == SC_CARD_TYPE_OPENPGP_GNUK)
|
|
|
|
|
? SC_APDU_CASE_4_SHORT : SC_APDU_CASE_4;
|
2003-11-20 15:41:28 +00:00
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
if (env->operation != SC_SEC_OPERATION_SIGN)
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid operation");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
|
|
|
|
switch (env->key_ref[0]) {
|
|
|
|
|
case 0x00: /* signature key */
|
|
|
|
|
/* PSO SIGNATURE */
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x2A, 0x9E, 0x9A);
|
2003-11-20 15:41:28 +00:00
|
|
|
break;
|
|
|
|
|
case 0x02: /* authentication key */
|
|
|
|
|
/* INTERNAL AUTHENTICATE */
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x88, 0, 0);
|
2003-11-20 15:41:28 +00:00
|
|
|
break;
|
|
|
|
|
case 0x01:
|
|
|
|
|
default:
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid key reference");
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2015-08-01 09:25:31 +00:00
|
|
|
/* if card/reader does not support extended APDUs, but chaining, then set it */
|
|
|
|
|
if (((card->caps & SC_CARD_CAP_APDU_EXT) == 0) && (priv->ext_caps & EXT_CAP_CHAINING))
|
|
|
|
|
apdu.flags |= SC_APDU_FLAGS_CHAINING;
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.lc = data_len;
|
2013-02-20 04:54:30 +00:00
|
|
|
apdu.data = (u8 *)data;
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.datalen = data_len;
|
2011-05-23 17:31:50 +00:00
|
|
|
apdu.le = ((outlen >= 256) && !(card->caps & SC_CARD_CAP_APDU_EXT)) ? 256 : outlen;
|
2006-05-05 10:06:38 +00:00
|
|
|
apdu.resp = out;
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.resplen = outlen;
|
|
|
|
|
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)apdu.resplen);
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-8 DECIPHER - perform deciphering operation.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2003-11-20 15:41:28 +00:00
|
|
|
static int
|
|
|
|
|
pgp_decipher(sc_card_t *card, const u8 *in, size_t inlen,
|
|
|
|
|
u8 *out, size_t outlen)
|
|
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
|
|
|
|
sc_security_env_t *env = &priv->sec_env;
|
|
|
|
|
sc_apdu_t apdu;
|
2013-02-20 04:54:30 +00:00
|
|
|
u8 apdu_case = SC_APDU_CASE_4;
|
2003-11-20 15:41:28 +00:00
|
|
|
u8 *temp = NULL;
|
|
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2018-06-10 09:58:51 +00:00
|
|
|
/* padding according to OpenPGP card spec 1.1 & 2.x section 7.2.9 / 3.x section 7.2.11 */
|
Do not cast the return value of malloc(3) and calloc(3)
From http://en.wikipedia.org/wiki/Malloc#Casting_and_type_safety
" Casting and type safety
malloc returns a void pointer (void *), which indicates that it is a
pointer to a region of unknown data type. One may "cast" (see type
conversion) this pointer to a specific type, as in
int *ptr = (int*)malloc(10 * sizeof (int));
When using C, this is considered bad practice; it is redundant under the
C standard. Moreover, putting in a cast may mask failure to include the
header stdlib.h, in which the prototype for malloc is found. In the
absence of a prototype for malloc, the C compiler will assume that
malloc returns an int, and will issue a warning in a context such as the
above, provided the error is not masked by a cast. On certain
architectures and data models (such as LP64 on 64 bit systems, where
long and pointers are 64 bit and int is 32 bit), this error can actually
result in undefined behavior, as the implicitly declared malloc returns
a 32 bit value whereas the actually defined function returns a 64 bit
value. Depending on calling conventions and memory layout, this may
result in stack smashing.
The returned pointer need not be explicitly cast to a more specific
pointer type, since ANSI C defines an implicit conversion between the
void pointer type and other pointers to objects. An explicit cast of
malloc's return value is sometimes performed because malloc originally
returned a char *, but this cast is unnecessary in standard C
code.[4][5] Omitting the cast, however, creates an incompatibility with
C++, which does require it.
The lack of a specific pointer type returned from malloc is type-unsafe
behaviour: malloc allocates based on byte count but not on type. This
distinguishes it from the C++ new operator that returns a pointer whose
type relies on the operand. (see C Type Safety). "
See also
http://www.opensc-project.org/pipermail/opensc-devel/2010-August/014586.html
git-svn-id: https://www.opensc-project.org/svnp/opensc/trunk@4636 c6295689-39f2-0310-b995-f0e70906c6a9
2010-08-18 15:08:51 +00:00
|
|
|
if (!(temp = malloc(inlen + 1)))
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_OUT_OF_MEMORY);
|
2018-06-09 15:52:23 +00:00
|
|
|
/* padding byte: 0x00 = RSA; 0x02 = AES [v2.1+ only] */
|
|
|
|
|
temp[0] = 0x00;
|
2005-12-05 21:39:58 +00:00
|
|
|
memcpy(temp + 1, in, inlen);
|
|
|
|
|
in = temp;
|
|
|
|
|
inlen += 1;
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2005-12-05 21:39:58 +00:00
|
|
|
if (env->operation != SC_SEC_OPERATION_DECIPHER) {
|
|
|
|
|
free(temp);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid operation");
|
2005-12-05 21:39:58 +00:00
|
|
|
}
|
2003-11-20 15:41:28 +00:00
|
|
|
|
|
|
|
|
switch (env->key_ref[0]) {
|
|
|
|
|
case 0x01: /* Decryption key */
|
2012-07-17 13:24:42 +00:00
|
|
|
case 0x02: /* authentication key */
|
2003-11-20 15:41:28 +00:00
|
|
|
/* PSO DECIPHER */
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x2A, 0x80, 0x86);
|
2003-11-20 15:41:28 +00:00
|
|
|
break;
|
|
|
|
|
case 0x00: /* signature key */
|
|
|
|
|
default:
|
2005-12-05 21:39:58 +00:00
|
|
|
free(temp);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_INVALID_ARGUMENTS,
|
|
|
|
|
"invalid key reference");
|
2003-11-20 15:41:28 +00:00
|
|
|
}
|
|
|
|
|
|
2013-02-20 04:54:30 +00:00
|
|
|
/* Gnuk only supports short APDU, so we need to use command chaining */
|
|
|
|
|
if (card->type == SC_CARD_TYPE_OPENPGP_GNUK) {
|
|
|
|
|
apdu.flags |= SC_APDU_FLAGS_CHAINING;
|
|
|
|
|
}
|
2015-08-01 09:25:31 +00:00
|
|
|
/* if card/reader does not support extended APDUs, but chaining, then set it */
|
|
|
|
|
if (((card->caps & SC_CARD_CAP_APDU_EXT) == 0) && (priv->ext_caps & EXT_CAP_CHAINING))
|
|
|
|
|
apdu.flags |= SC_APDU_FLAGS_CHAINING;
|
2013-02-20 04:54:30 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.lc = inlen;
|
2013-02-20 04:54:30 +00:00
|
|
|
apdu.data = (u8 *)in;
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.datalen = inlen;
|
2011-05-23 17:31:50 +00:00
|
|
|
apdu.le = ((outlen >= 256) && !(card->caps & SC_CARD_CAP_APDU_EXT)) ? 256 : outlen;
|
2003-11-20 15:41:28 +00:00
|
|
|
apdu.resp = out;
|
|
|
|
|
apdu.resplen = outlen;
|
|
|
|
|
|
2018-09-06 08:57:23 +00:00
|
|
|
/* For OpenPGP Card >=v3.3, key slot 3 instead of 2 can be used for deciphering,
|
|
|
|
|
* but this has to be set via MSE beforehand on every usage (slot 2 is used by default)
|
|
|
|
|
* see section 7.2.18 of the specification of OpenPGP Card v3.3 */
|
|
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_3 && env->key_ref[0] == 0x02){
|
|
|
|
|
pgp_set_MSE(card, 3, 0xb8);
|
|
|
|
|
}
|
|
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2005-12-05 21:39:58 +00:00
|
|
|
free(temp);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "APDU transmit failed");
|
2005-12-05 21:39:58 +00:00
|
|
|
|
2003-11-20 15:41:28 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Card returned error");
|
2003-11-20 15:41:28 +00:00
|
|
|
|
2018-09-06 08:57:23 +00:00
|
|
|
/* For OpenPGP Card >=v3.3, use key slot 2 for deciphering again (set to default) */
|
|
|
|
|
if (priv->bcd_version >= OPENPGP_CARD_3_3 && env->key_ref[0] == 0x02){
|
|
|
|
|
pgp_set_MSE(card, 2, 0xb8);
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-08 06:17:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, (int)apdu.resplen);
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
#ifdef ENABLE_OPENSSL
|
2012-06-02 10:09:12 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: update algorithm attribute for new key size (before generating key).
|
2012-06-02 10:09:12 +00:00
|
|
|
**/
|
|
|
|
|
static int
|
2012-06-14 02:05:16 +00:00
|
|
|
pgp_update_new_algo_attr(sc_card_t *card, sc_cardctl_openpgp_keygen_info_t *key_info)
|
2012-06-02 10:09:12 +00:00
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *algo_blob;
|
2015-09-19 14:52:51 +00:00
|
|
|
unsigned int old_modulus_len; /* measured in bits */
|
2012-06-14 02:05:16 +00:00
|
|
|
unsigned int old_exponent_len;
|
2018-09-29 17:25:36 +00:00
|
|
|
const unsigned int tag = 0x00C0 | key_info->key_id;
|
2012-06-14 02:05:16 +00:00
|
|
|
u8 changed = 0;
|
|
|
|
|
int r = SC_SUCCESS;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2018-09-30 09:34:10 +00:00
|
|
|
|
|
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* get old algorithm attributes */
|
2018-09-30 09:57:24 +00:00
|
|
|
r = pgp_seek_blob(card, priv->mf, tag, &algo_blob);
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot get old algorithm attributes");
|
2015-09-19 14:52:51 +00:00
|
|
|
old_modulus_len = bebytes2ushort(algo_blob->data + 1); /* modulus length is coded in byte 2 & 3 */
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Old modulus length %d, new %"SC_FORMAT_LEN_SIZE_T"u.",
|
2018-09-30 08:08:47 +00:00
|
|
|
old_modulus_len, key_info->rsa.modulus_len);
|
2015-09-19 14:52:51 +00:00
|
|
|
old_exponent_len = bebytes2ushort(algo_blob->data + 3); /* exponent length is coded in byte 3 & 4 */
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Old exponent length %d, new %"SC_FORMAT_LEN_SIZE_T"u.",
|
2018-09-30 08:08:47 +00:00
|
|
|
old_exponent_len, key_info->rsa.exponent_len);
|
2012-06-14 02:05:16 +00:00
|
|
|
|
|
|
|
|
/* Modulus */
|
|
|
|
|
/* If passed modulus_len is zero, it means using old key size */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.modulus_len == 0) {
|
2012-06-14 02:05:16 +00:00
|
|
|
sc_log(card->ctx, "Use old modulus length (%d).", old_modulus_len);
|
2018-09-30 08:08:47 +00:00
|
|
|
key_info->rsa.modulus_len = old_modulus_len;
|
2012-06-14 02:05:16 +00:00
|
|
|
}
|
|
|
|
|
/* To generate key with new key size */
|
2018-09-30 08:08:47 +00:00
|
|
|
else if (old_modulus_len != key_info->rsa.modulus_len) {
|
|
|
|
|
algo_blob->data[1] = (unsigned char)(key_info->rsa.modulus_len >> 8);
|
|
|
|
|
algo_blob->data[2] = (unsigned char)key_info->rsa.modulus_len;
|
2012-06-14 02:05:16 +00:00
|
|
|
changed = 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Exponent */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.exponent_len == 0) {
|
2012-06-14 02:05:16 +00:00
|
|
|
sc_log(card->ctx, "Use old exponent length (%d).", old_exponent_len);
|
2018-09-30 08:08:47 +00:00
|
|
|
key_info->rsa.exponent_len = old_exponent_len;
|
2012-06-14 02:05:16 +00:00
|
|
|
}
|
2018-09-30 08:08:47 +00:00
|
|
|
else if (old_exponent_len != key_info->rsa.exponent_len) {
|
|
|
|
|
algo_blob->data[3] = (unsigned char)(key_info->rsa.exponent_len >> 8);
|
|
|
|
|
algo_blob->data[4] = (unsigned char)key_info->rsa.exponent_len;
|
2012-06-14 02:05:16 +00:00
|
|
|
changed = 1;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* If the key to-be-generated has different size,
|
|
|
|
|
* set this new value for GENERATE ASYMMETRIC KEY PAIR to work */
|
2012-06-14 02:05:16 +00:00
|
|
|
if (changed) {
|
|
|
|
|
r = pgp_put_data(card, tag, algo_blob->data, 6);
|
|
|
|
|
/* Note: Don't use pgp_set_blob to set data, because it won't touch the real DO */
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot set new algorithm attributes");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: store creation time of key.
|
2012-06-18 02:43:25 +00:00
|
|
|
* Pass non-zero outtime to use predefined time.
|
|
|
|
|
* Pass zero/null outtime to calculate current time. outtime then will be output.
|
|
|
|
|
* Pass null outtime to not receive output.
|
2012-06-14 02:05:16 +00:00
|
|
|
**/
|
2015-09-19 14:52:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_store_creationtime(sc_card_t *card, u8 key_id, time_t *outtime)
|
2012-06-14 02:05:16 +00:00
|
|
|
{
|
2012-06-02 10:09:12 +00:00
|
|
|
int r;
|
2012-06-18 02:43:25 +00:00
|
|
|
time_t createtime = 0;
|
|
|
|
|
const size_t timestrlen = 64;
|
2012-07-17 13:24:42 +00:00
|
|
|
char timestring[65];
|
2012-06-14 02:05:16 +00:00
|
|
|
u8 buf[4];
|
2012-06-02 10:09:12 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2012-06-14 02:05:16 +00:00
|
|
|
if (key_id == 0 || key_id > 3) {
|
|
|
|
|
sc_log(card->ctx, "Invalid key ID %d.", key_id);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_DATA);
|
|
|
|
|
}
|
|
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
if (outtime != NULL && *outtime != 0)
|
|
|
|
|
createtime = *outtime;
|
|
|
|
|
else if (outtime != NULL)
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set output */
|
2012-06-18 02:43:25 +00:00
|
|
|
*outtime = createtime = time(NULL);
|
|
|
|
|
|
|
|
|
|
strftime(timestring, timestrlen, "%c %Z", gmtime(&createtime));
|
|
|
|
|
sc_log(card->ctx, "Creation time %s.", timestring);
|
2012-06-14 02:05:16 +00:00
|
|
|
/* Code borrowed from GnuPG */
|
2015-08-08 06:17:12 +00:00
|
|
|
ulong2bebytes(buf, (unsigned long)createtime);
|
2012-06-14 02:05:16 +00:00
|
|
|
r = pgp_put_data(card, 0x00CD + key_id, buf, 4);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot write to DO");
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: calculate PGP fingerprints.
|
2012-06-14 02:05:16 +00:00
|
|
|
* Reference: GnuPG, app-openpgp.c.
|
|
|
|
|
* modulus and exponent are passed separately from key_info
|
|
|
|
|
* because key_info->exponent may be null.
|
|
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_calculate_and_store_fingerprint(sc_card_t *card, time_t ctime,
|
2012-06-18 02:43:25 +00:00
|
|
|
u8* modulus, u8* exponent,
|
|
|
|
|
sc_cardctl_openpgp_keygen_info_t *key_info)
|
2012-06-14 02:05:16 +00:00
|
|
|
{
|
|
|
|
|
u8 fingerprint[SHA_DIGEST_LENGTH];
|
2018-09-30 08:08:47 +00:00
|
|
|
size_t mlen = key_info->rsa.modulus_len >> 3; /* 1/8 */
|
|
|
|
|
size_t elen = key_info->rsa.exponent_len >> 3; /* 1/8 */
|
2015-09-19 14:52:51 +00:00
|
|
|
u8 *fp_buffer = NULL; /* fingerprint buffer, not hashed */
|
2012-06-14 02:05:16 +00:00
|
|
|
size_t fp_buffer_len;
|
2015-09-19 14:52:51 +00:00
|
|
|
u8 *p; /* use this pointer to set fp_buffer content */
|
2012-06-14 02:05:16 +00:00
|
|
|
size_t pk_packet_len;
|
2018-09-30 09:57:24 +00:00
|
|
|
unsigned int tag = 0x00C6 + key_info->key_id;
|
2018-10-28 11:08:33 +00:00
|
|
|
pgp_blob_t *fpseq_blob = NULL;
|
|
|
|
|
u8 *newdata = NULL;
|
2012-06-14 02:05:16 +00:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2018-09-30 09:34:10 +00:00
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
if (modulus == NULL || exponent == NULL || mlen == 0 || elen == 0) {
|
|
|
|
|
sc_log(card->ctx, "Null data (modulus or exponent)");
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/* http://tools.ietf.org/html/rfc4880 page 41, 72 */
|
2015-09-19 14:52:51 +00:00
|
|
|
pk_packet_len = 1 /* version number */
|
|
|
|
|
+ 4 /* creation time */
|
|
|
|
|
+ 1 /* algorithm */
|
|
|
|
|
+ 2 /* algorithm-specific fields: RSA modulus+exponent */
|
2012-06-18 02:43:25 +00:00
|
|
|
+ mlen
|
|
|
|
|
+ 2
|
|
|
|
|
+ elen;
|
2012-06-14 02:05:16 +00:00
|
|
|
|
|
|
|
|
fp_buffer_len = 3 + pk_packet_len;
|
|
|
|
|
p = fp_buffer = calloc(fp_buffer_len, 1);
|
2018-10-28 11:08:33 +00:00
|
|
|
if (p == NULL)
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_ENOUGH_MEMORY);
|
|
|
|
|
|
|
|
|
|
p[0] = 0x99; /* http://tools.ietf.org/html/rfc4880 page 71 */
|
2015-08-08 06:17:12 +00:00
|
|
|
ushort2bebytes(++p, (unsigned short)pk_packet_len);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* start pk_packet */
|
2012-06-14 02:05:16 +00:00
|
|
|
p += 2;
|
|
|
|
|
*p = 4; /* Version 4 key */
|
2015-08-08 06:17:12 +00:00
|
|
|
ulong2bebytes(++p, (unsigned long)ctime); /* Creation time */
|
2012-06-14 02:05:16 +00:00
|
|
|
p += 4;
|
|
|
|
|
*p = 1; /* RSA */
|
2015-09-19 14:52:51 +00:00
|
|
|
/* algorithm-specific fields */
|
2018-09-30 08:08:47 +00:00
|
|
|
ushort2bebytes(++p, (unsigned short)key_info->rsa.modulus_len);
|
2012-06-14 02:05:16 +00:00
|
|
|
p += 2;
|
|
|
|
|
memcpy(p, modulus, mlen);
|
|
|
|
|
p += mlen;
|
2018-09-30 08:08:47 +00:00
|
|
|
ushort2bebytes(++p, (unsigned short)key_info->rsa.exponent_len);
|
2012-06-14 02:05:16 +00:00
|
|
|
p += 2;
|
|
|
|
|
memcpy(p, exponent, elen);
|
|
|
|
|
p = NULL;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* hash with SHA-1 */
|
2012-06-14 02:05:16 +00:00
|
|
|
SHA1(fp_buffer, fp_buffer_len, fingerprint);
|
|
|
|
|
free(fp_buffer);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* store to DO */
|
2018-09-30 09:57:24 +00:00
|
|
|
sc_log(card->ctx, "Writing to DO %04X.", tag);
|
|
|
|
|
r = pgp_put_data(card, tag, fingerprint, SHA_DIGEST_LENGTH);
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot write to DO.");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* update the blob containing fingerprints (00C5) */
|
2018-09-30 09:57:24 +00:00
|
|
|
sc_log(card->ctx, "Updating fingerprint blob 00C5.");
|
2012-06-14 02:05:16 +00:00
|
|
|
fpseq_blob = pgp_find_blob(card, 0x00C5);
|
2018-10-28 11:08:33 +00:00
|
|
|
if (fpseq_blob == NULL)
|
|
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, SC_ERROR_OUT_OF_MEMORY, "Cannot find blob 00C5");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* save the fingerprints sequence */
|
2012-06-14 02:05:16 +00:00
|
|
|
newdata = malloc(fpseq_blob->len);
|
2018-10-28 11:08:33 +00:00
|
|
|
if (newdata == NULL)
|
|
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, SC_ERROR_OUT_OF_MEMORY,
|
|
|
|
|
"Not enough memory to update fingerprint blob 00C5");
|
|
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
memcpy(newdata, fpseq_blob->data, fpseq_blob->len);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* move p to the portion holding the fingerprint of the current key */
|
2018-09-29 17:25:36 +00:00
|
|
|
p = newdata + 20 * (key_info->key_id - 1);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* copy new fingerprint value */
|
2012-06-14 02:05:16 +00:00
|
|
|
memcpy(p, fingerprint, 20);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set blob's data */
|
2012-06-14 02:05:16 +00:00
|
|
|
pgp_set_blob(fpseq_blob, newdata, fpseq_blob->len);
|
|
|
|
|
free(newdata);
|
|
|
|
|
|
2018-10-28 11:08:33 +00:00
|
|
|
err:
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: update pubkey blob.
|
2012-06-18 02:43:25 +00:00
|
|
|
* Note that modulus_len, exponent_len is measured in bit.
|
2012-06-14 02:05:16 +00:00
|
|
|
**/
|
|
|
|
|
static int
|
2012-06-18 02:43:25 +00:00
|
|
|
pgp_update_pubkey_blob(sc_card_t *card, u8* modulus, size_t modulus_len,
|
|
|
|
|
u8* exponent, size_t exponent_len, u8 key_id)
|
2012-06-14 02:05:16 +00:00
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *pk_blob;
|
2012-06-14 02:05:16 +00:00
|
|
|
unsigned int blob_id;
|
2012-06-18 02:43:25 +00:00
|
|
|
sc_pkcs15_pubkey_t pubkey;
|
|
|
|
|
u8 *data = NULL;
|
|
|
|
|
size_t len;
|
2012-06-14 02:05:16 +00:00
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
|
|
|
|
if (key_id == SC_OPENPGP_KEY_SIGN)
|
2014-11-09 08:58:40 +00:00
|
|
|
blob_id = DO_SIGN_SYM;
|
2012-06-14 02:05:16 +00:00
|
|
|
else if (key_id == SC_OPENPGP_KEY_ENCR)
|
2014-11-09 08:58:40 +00:00
|
|
|
blob_id = DO_ENCR_SYM;
|
2012-06-14 02:05:16 +00:00
|
|
|
else if (key_id == SC_OPENPGP_KEY_AUTH)
|
2014-11-09 08:58:40 +00:00
|
|
|
blob_id = DO_AUTH_SYM;
|
2012-06-14 02:05:16 +00:00
|
|
|
else {
|
|
|
|
|
sc_log(card->ctx, "Unknown key id %X.", key_id);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-30 09:57:24 +00:00
|
|
|
sc_log(card->ctx, "Retrieving blob %04X.", blob_id);
|
2012-06-14 02:05:16 +00:00
|
|
|
r = pgp_get_blob(card, priv->mf, blob_id, &pk_blob);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot get the blob.");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* encode pubkey */
|
2012-06-18 02:43:25 +00:00
|
|
|
memset(&pubkey, 0, sizeof(pubkey));
|
|
|
|
|
pubkey.algorithm = SC_ALGORITHM_RSA;
|
|
|
|
|
pubkey.u.rsa.modulus.data = modulus;
|
|
|
|
|
pubkey.u.rsa.modulus.len = modulus_len >> 3; /* 1/8 */
|
|
|
|
|
pubkey.u.rsa.exponent.data = exponent;
|
|
|
|
|
pubkey.u.rsa.exponent.len = exponent_len >> 3;
|
|
|
|
|
|
|
|
|
|
r = sc_pkcs15_encode_pubkey(card->ctx, &pubkey, &data, &len);
|
2017-06-16 09:29:20 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot encode pubkey.");
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2018-09-30 09:57:24 +00:00
|
|
|
sc_log(card->ctx, "Updating blob %04X's content.", blob_id);
|
2012-06-18 02:43:25 +00:00
|
|
|
r = pgp_set_blob(pk_blob, data, len);
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot update blob content.");
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: parse response data and set output
|
2012-06-14 02:05:16 +00:00
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_parse_and_set_pubkey_output(sc_card_t *card, u8* data, size_t data_len,
|
2012-06-18 02:43:25 +00:00
|
|
|
sc_cardctl_openpgp_keygen_info_t *key_info)
|
2012-06-14 02:05:16 +00:00
|
|
|
{
|
2012-06-18 02:43:25 +00:00
|
|
|
time_t ctime = 0;
|
2012-06-14 02:05:16 +00:00
|
|
|
u8 *in = data;
|
2013-05-27 14:44:32 +00:00
|
|
|
u8 *modulus = NULL;
|
|
|
|
|
u8 *exponent = NULL;
|
2012-06-14 02:05:16 +00:00
|
|
|
int r;
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* store creation time */
|
2018-09-29 17:25:36 +00:00
|
|
|
r = pgp_store_creationtime(card, key_info->key_id, &ctime);
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot store creation time");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* parse response. Ref: pgp_enumerate_blob() */
|
2014-02-25 08:07:09 +00:00
|
|
|
while (data_len > (size_t) (in - data)) {
|
2012-06-02 10:09:12 +00:00
|
|
|
unsigned int cla, tag, tmptag;
|
|
|
|
|
size_t len;
|
|
|
|
|
u8 *part = in;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* parse TLV structure */
|
2012-06-02 10:09:12 +00:00
|
|
|
r = sc_asn1_read_tag((const u8**)&part,
|
|
|
|
|
data_len - (in - data),
|
|
|
|
|
&cla, &tag, &len);
|
2018-03-19 14:25:14 +00:00
|
|
|
if (part == NULL)
|
|
|
|
|
r = SC_ERROR_ASN1_OBJECT_NOT_FOUND;
|
2012-06-02 10:09:12 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Unexpected end of contents.");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* undo ASN1's split of tag & class */
|
2012-06-02 10:09:12 +00:00
|
|
|
for (tmptag = tag; tmptag > 0x0FF; tmptag >>= 8) {
|
|
|
|
|
cla <<= 8;
|
|
|
|
|
}
|
|
|
|
|
tag |= cla;
|
|
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
if (tag == 0x0081) {
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set the output data */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.modulus) {
|
|
|
|
|
memcpy(key_info->rsa.modulus, part, len);
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
2015-09-19 14:52:51 +00:00
|
|
|
/* always set output for modulus_len */
|
2018-09-30 08:08:47 +00:00
|
|
|
key_info->rsa.modulus_len = len*8;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* remember the modulus to calculate fingerprint later */
|
2012-06-14 02:05:16 +00:00
|
|
|
modulus = part;
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
|
|
|
|
else if (tag == 0x0082) {
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set the output data */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.exponent) {
|
|
|
|
|
memcpy(key_info->rsa.exponent, part, len);
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
2015-09-19 14:52:51 +00:00
|
|
|
/* always set output for exponent_len */
|
2018-09-30 08:08:47 +00:00
|
|
|
key_info->rsa.exponent_len = len*8;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* remember the exponent to calculate fingerprint later */
|
2012-06-14 02:05:16 +00:00
|
|
|
exponent = part;
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* go to next part to parse */
|
2012-06-14 02:05:16 +00:00
|
|
|
/* This will be different from pgp_enumerate_blob() a bit */
|
|
|
|
|
in = part + ((tag != 0x7F49) ? len : 0);
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
2012-06-14 02:05:16 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* calculate and store fingerprint */
|
2012-06-14 02:05:16 +00:00
|
|
|
sc_log(card->ctx, "Calculate and store fingerprint");
|
|
|
|
|
r = pgp_calculate_and_store_fingerprint(card, ctime, modulus, exponent, key_info);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot store fingerprint.");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* update pubkey blobs (B601,B801, A401) */
|
2012-06-14 02:05:16 +00:00
|
|
|
sc_log(card->ctx, "Update blobs holding pubkey info.");
|
2018-09-30 08:08:47 +00:00
|
|
|
r = pgp_update_pubkey_blob(card, modulus, key_info->rsa.modulus_len,
|
|
|
|
|
exponent, key_info->rsa.exponent_len, key_info->key_id);
|
2012-06-02 10:09:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-02 10:09:12 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: update card->algorithms
|
2012-06-14 02:05:16 +00:00
|
|
|
*/
|
2015-09-19 14:52:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_update_card_algorithms(sc_card_t *card, sc_cardctl_openpgp_keygen_info_t *key_info)
|
2012-06-14 02:05:16 +00:00
|
|
|
{
|
|
|
|
|
sc_algorithm_info_t *algo;
|
2018-09-29 17:25:36 +00:00
|
|
|
u8 id = key_info->key_id;
|
2012-06-14 02:05:16 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2018-09-30 09:34:10 +00:00
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
if (id > card->algorithm_count) {
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"This key ID %u is out of the card's algorithm list.",
|
|
|
|
|
(unsigned int)id);
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* get the algorithm corresponding to the key ID */
|
2012-06-14 02:05:16 +00:00
|
|
|
algo = card->algorithms + (id - 1);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* update new key length attribute */
|
2018-09-30 08:08:47 +00:00
|
|
|
algo->key_length = (unsigned int)key_info->rsa.modulus_len;
|
2012-06-14 02:05:16 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* ABI (card ctl): GENERATE ASYMMETRIC KEY PAIR
|
2012-06-14 02:05:16 +00:00
|
|
|
* Set key_info->modulus_len to zero if want to use old key size.
|
|
|
|
|
* Similarly for exponent length.
|
|
|
|
|
* key_info->modulus_len and key_info->exponent_len will be returned with new values.
|
2012-06-02 10:09:12 +00:00
|
|
|
**/
|
2015-09-19 14:52:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_gen_key(sc_card_t *card, sc_cardctl_openpgp_keygen_info_t *key_info)
|
2012-06-02 10:09:12 +00:00
|
|
|
{
|
|
|
|
|
sc_apdu_t apdu;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* temporary variables to hold APDU params */
|
2012-06-02 10:09:12 +00:00
|
|
|
u8 apdu_case;
|
2012-06-13 11:31:33 +00:00
|
|
|
u8 *apdu_data;
|
|
|
|
|
size_t apdu_le;
|
2013-04-05 10:18:50 +00:00
|
|
|
size_t resplen = 0;
|
2012-06-02 10:09:12 +00:00
|
|
|
int r = SC_SUCCESS;
|
|
|
|
|
|
2012-06-17 08:49:00 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2018-09-30 09:34:10 +00:00
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* FIXME the compilers don't assure that the buffers set here as
|
2013-05-25 02:22:28 +00:00
|
|
|
* apdu_data are present until the end of the function */
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set Control Reference Template for key */
|
2018-09-29 17:25:36 +00:00
|
|
|
if (key_info->key_id == SC_OPENPGP_KEY_SIGN)
|
2013-05-27 14:44:32 +00:00
|
|
|
apdu_data = (unsigned char *) "\xb6";
|
2015-09-19 14:52:51 +00:00
|
|
|
/* as a string, apdu_data will end with '\0' (B6 00) */
|
2018-09-29 17:25:36 +00:00
|
|
|
else if (key_info->key_id == SC_OPENPGP_KEY_ENCR)
|
2013-05-27 14:44:32 +00:00
|
|
|
apdu_data = (unsigned char *) "\xb8";
|
2018-09-29 17:25:36 +00:00
|
|
|
else if (key_info->key_id == SC_OPENPGP_KEY_AUTH)
|
2013-05-27 14:44:32 +00:00
|
|
|
apdu_data = (unsigned char *) "\xa4";
|
2012-06-02 10:09:12 +00:00
|
|
|
else {
|
2018-09-29 17:25:36 +00:00
|
|
|
sc_log(card->ctx, "Unknown key type %X.", key_info->key_id);
|
2012-06-02 10:09:12 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-30 08:08:47 +00:00
|
|
|
if (card->type == SC_CARD_TYPE_OPENPGP_GNUK && key_info->rsa.modulus_len != 2048) {
|
2013-02-20 04:54:30 +00:00
|
|
|
sc_log(card->ctx, "Gnuk does not support other key length than 2048.");
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set attributes for new-generated key */
|
2012-06-14 02:05:16 +00:00
|
|
|
r = pgp_update_new_algo_attr(card, key_info);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot set attributes for new-generated key");
|
2012-06-02 10:09:12 +00:00
|
|
|
|
2012-06-13 11:31:33 +00:00
|
|
|
/* Test whether we will need extended APDU. 1900 is an
|
2012-06-14 02:17:28 +00:00
|
|
|
* arbitrary modulus length which for sure fits into a short APDU.
|
|
|
|
|
* This idea is borrowed from GnuPG code. */
|
2013-02-20 04:54:30 +00:00
|
|
|
if (card->caps & SC_CARD_CAP_APDU_EXT
|
2018-09-30 08:08:47 +00:00
|
|
|
&& key_info->rsa.modulus_len > 1900
|
2015-07-03 16:21:38 +00:00
|
|
|
&& card->type != SC_CARD_TYPE_OPENPGP_GNUK) {
|
2012-06-13 11:31:33 +00:00
|
|
|
/* We won't store to apdu variable yet, because it will be reset in
|
|
|
|
|
* sc_format_apdu() */
|
|
|
|
|
apdu_le = card->max_recv_size;
|
2012-06-02 10:09:12 +00:00
|
|
|
apdu_case = SC_APDU_CASE_4_EXT;
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
apdu_case = SC_APDU_CASE_4_SHORT;
|
2013-04-05 10:18:50 +00:00
|
|
|
apdu_le = 256;
|
|
|
|
|
resplen = MAXLEN_RESP_PUBKEY;
|
|
|
|
|
}
|
|
|
|
|
if (card->type == SC_CARD_TYPE_OPENPGP_GNUK) {
|
|
|
|
|
resplen = MAXLEN_RESP_PUBKEY_GNUK;
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* prepare APDU */
|
2013-04-05 10:18:50 +00:00
|
|
|
sc_format_apdu(card, &apdu, apdu_case, 0x47, 0x80, 0);
|
2012-06-13 11:31:33 +00:00
|
|
|
apdu.data = apdu_data;
|
|
|
|
|
apdu.datalen = 2; /* Data = B600 */
|
|
|
|
|
apdu.lc = 2;
|
|
|
|
|
apdu.le = apdu_le;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* buffer to receive response */
|
2013-04-05 10:18:50 +00:00
|
|
|
apdu.resplen = (resplen > 0) ? resplen : apdu_le;
|
|
|
|
|
apdu.resp = calloc(apdu.resplen, 1);
|
2012-06-02 10:09:12 +00:00
|
|
|
if (apdu.resp == NULL) {
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_ENOUGH_MEMORY);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* send */
|
2012-06-13 11:31:33 +00:00
|
|
|
sc_log(card->ctx, "Waiting for the card to generate key...");
|
2012-06-02 10:09:12 +00:00
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
2012-06-13 11:31:33 +00:00
|
|
|
sc_log(card->ctx, "Card has done key generation.");
|
2018-10-28 10:43:53 +00:00
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, r, "APDU transmit failed");
|
2012-06-02 10:09:12 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* check response */
|
2012-06-02 10:09:12 +00:00
|
|
|
r = sc_check_sw(card, apdu.sw1, apdu.sw2);
|
2015-09-19 14:52:51 +00:00
|
|
|
/* instruct more in case of error */
|
2012-06-02 10:09:12 +00:00
|
|
|
if (r == SC_ERROR_SECURITY_STATUS_NOT_SATISFIED) {
|
|
|
|
|
sc_debug(card->ctx, SC_LOG_DEBUG_VERBOSE, "Please verify PIN first.");
|
2018-10-28 10:43:53 +00:00
|
|
|
goto err;
|
2012-06-02 10:09:12 +00:00
|
|
|
}
|
2018-10-28 10:43:53 +00:00
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, r, "Card returned error");
|
2012-06-02 10:09:12 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* parse response data and set output */
|
2012-06-14 02:05:16 +00:00
|
|
|
pgp_parse_and_set_pubkey_output(card, apdu.resp, apdu.resplen, key_info);
|
|
|
|
|
pgp_update_card_algorithms(card, key_info);
|
2012-06-02 10:09:12 +00:00
|
|
|
|
2018-10-28 10:43:53 +00:00
|
|
|
err:
|
2012-06-02 10:09:12 +00:00
|
|
|
free(apdu.resp);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: build TLV.
|
2015-10-09 21:11:03 +00:00
|
|
|
*
|
|
|
|
|
* FIXME use `sc_asn1_put_tag` or similar instead
|
|
|
|
|
*
|
2012-06-18 02:43:25 +00:00
|
|
|
* @param[in] data The data ("value") part to build TLV.
|
|
|
|
|
* @param[in] len Data length
|
|
|
|
|
* @param[out] out The buffer of overall TLV. This buffer should be freed later.
|
|
|
|
|
* @param[out] outlen The length of buffer out.
|
|
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_build_tlv(sc_context_t *ctx, unsigned int tag, u8 *data, size_t len, u8 **out, size_t *outlen)
|
|
|
|
|
{
|
|
|
|
|
u8 highest_order = 0;
|
|
|
|
|
int r;
|
2015-09-19 16:14:44 +00:00
|
|
|
|
2012-07-29 10:56:03 +00:00
|
|
|
r = sc_asn1_write_element(ctx, tag, data, len, out, outlen);
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_TEST_RET(ctx, r, "Failed to write ASN.1 element");
|
2015-09-19 16:14:44 +00:00
|
|
|
|
2012-07-29 10:56:03 +00:00
|
|
|
/* Restore class bits stripped by sc_asn1_write_element */
|
2015-09-19 14:52:51 +00:00
|
|
|
/* determine the leftmost byte of tag, which contains class bits */
|
2015-09-19 16:14:44 +00:00
|
|
|
while ((tag >> 8*highest_order) != 0) {
|
2012-06-18 02:43:25 +00:00
|
|
|
highest_order++;
|
|
|
|
|
}
|
|
|
|
|
highest_order--;
|
2015-09-19 16:14:44 +00:00
|
|
|
|
|
|
|
|
/* restore class bits in output */
|
|
|
|
|
if (highest_order < 4)
|
|
|
|
|
*out[0] |= (tag >> 8*highest_order);
|
|
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
return SC_SUCCESS;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: set Tag & Length components for TLV, store them in buffer.
|
2015-10-09 21:11:03 +00:00
|
|
|
*
|
|
|
|
|
* FIXME use `sc_asn1_put_tag` or similar instead
|
|
|
|
|
*
|
2012-06-18 02:43:25 +00:00
|
|
|
* Return the total length of Tag + Length.
|
|
|
|
|
* Note that the Value components is not counted.
|
|
|
|
|
* Ref: add_tlv() of GnuPG code.
|
|
|
|
|
**/
|
|
|
|
|
static size_t
|
|
|
|
|
set_taglength_tlv(u8 *buffer, unsigned int tag, size_t length)
|
|
|
|
|
{
|
|
|
|
|
u8 *p = buffer;
|
|
|
|
|
|
|
|
|
|
assert(tag <= 0xffff);
|
|
|
|
|
if (tag > 0xff)
|
|
|
|
|
*p++ = (tag >> 8) & 0xFF;
|
|
|
|
|
*p++ = tag;
|
|
|
|
|
if (length < 128)
|
2015-08-08 06:17:12 +00:00
|
|
|
*p++ = (u8)length;
|
2012-06-18 02:43:25 +00:00
|
|
|
else if (length < 256) {
|
|
|
|
|
*p++ = 0x81;
|
2015-08-08 06:17:12 +00:00
|
|
|
*p++ = (u8)length;
|
2012-06-18 02:43:25 +00:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
if (length > 0xffff)
|
|
|
|
|
length = 0xffff;
|
|
|
|
|
*p++ = 0x82;
|
|
|
|
|
*p++ = (length >> 8) & 0xFF;
|
|
|
|
|
*p++ = length & 0xFF;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return p - buffer;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* Internal: build Extended Header list (sec 4.3.3.7 - OpenPGP card spec v.2)
|
2012-06-18 02:43:25 +00:00
|
|
|
**/
|
|
|
|
|
static int
|
|
|
|
|
pgp_build_extended_header_list(sc_card_t *card, sc_cardctl_openpgp_keystore_info_t *key_info,
|
|
|
|
|
u8 **result, size_t *resultlen)
|
|
|
|
|
{
|
|
|
|
|
sc_context_t *ctx = card->ctx;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* Cardholder private key template (7F48) part */
|
2012-06-18 02:43:25 +00:00
|
|
|
const size_t max_prtem_len = 7*(1 + 3); /* 7 components */
|
|
|
|
|
/* 1 for tag name (91, 92... 97)
|
|
|
|
|
* 3 for storing length */
|
2012-07-17 13:24:42 +00:00
|
|
|
u8 pritemplate[7*(1 + 3)];
|
2012-06-18 02:43:25 +00:00
|
|
|
size_t tpl_len = 0; /* Actual size of pritemplate */
|
|
|
|
|
/* Concatenation of key data */
|
|
|
|
|
u8 kdata[3 + 256 + 256 + 512]; /* Exponent is stored in 3 bytes
|
|
|
|
|
* With maximum 4096-bit key,
|
|
|
|
|
* p and q can be stored in 256 bytes (2048 bits).
|
|
|
|
|
* Maximum 4096-bit modulus is stored in 512 bytes */
|
|
|
|
|
size_t kdata_len = 0; /* Actual size of kdata */
|
|
|
|
|
u8 *tlvblock = NULL;
|
|
|
|
|
size_t tlvlen = 0;
|
|
|
|
|
u8 *tlv_5f48 = NULL;
|
|
|
|
|
size_t tlvlen_5f48 = 0;
|
|
|
|
|
u8 *tlv_7f48 = NULL;
|
|
|
|
|
size_t tlvlen_7f48 = 0;
|
|
|
|
|
u8 *data = NULL;
|
|
|
|
|
size_t len = 0;
|
|
|
|
|
u8 *p = NULL;
|
2018-09-30 08:08:47 +00:00
|
|
|
u8 *components[] = {key_info->rsa.e, key_info->rsa.p, key_info->rsa.q, key_info->rsa.n};
|
|
|
|
|
size_t componentlens[] = {key_info->rsa.e_len, key_info->rsa.p_len,
|
|
|
|
|
key_info->rsa.q_len, key_info->rsa.n_len};
|
2013-03-04 11:14:51 +00:00
|
|
|
unsigned int componenttags[] = {0x91, 0x92, 0x93, 0x97};
|
2012-06-18 02:43:25 +00:00
|
|
|
char *componentnames[] = {
|
|
|
|
|
"public exponent",
|
|
|
|
|
"prime p",
|
|
|
|
|
"prime q",
|
|
|
|
|
"modulus"
|
|
|
|
|
};
|
|
|
|
|
size_t comp_to_add = 3;
|
|
|
|
|
size_t req_e_len = 0; /* The exponent length specified in Algorithm Attributes */
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *alat_blob;
|
2012-06-18 02:43:25 +00:00
|
|
|
u8 i;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(ctx);
|
|
|
|
|
|
2018-09-30 09:34:10 +00:00
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
|
|
|
|
LOG_FUNC_RETURN(ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.keyformat == SC_OPENPGP_KEYFORMAT_RSA_STDN
|
|
|
|
|
|| key_info->rsa.keyformat == SC_OPENPGP_KEYFORMAT_RSA_CRTN)
|
2012-06-18 02:43:25 +00:00
|
|
|
comp_to_add = 4;
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* validate */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (comp_to_add == 4 && (key_info->rsa.n == NULL || key_info->rsa.n_len == 0)){
|
2012-06-18 02:43:25 +00:00
|
|
|
sc_log(ctx, "Error: Modulus required!");
|
|
|
|
|
LOG_FUNC_RETURN(ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Cardholder private key template's data part */
|
|
|
|
|
memset(pritemplate, 0, max_prtem_len);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* get required exponent length */
|
2018-09-29 17:25:36 +00:00
|
|
|
alat_blob = pgp_find_blob(card, 0x00C0 | key_info->key_id);
|
2012-06-18 02:43:25 +00:00
|
|
|
if (!alat_blob) {
|
|
|
|
|
sc_log(ctx, "Cannot read Algorithm Attributes.");
|
|
|
|
|
LOG_FUNC_RETURN(ctx, SC_ERROR_OBJECT_NOT_FOUND);
|
|
|
|
|
}
|
|
|
|
|
req_e_len = bebytes2ushort(alat_blob->data + 3) >> 3; /* 1/8 */
|
2018-09-30 08:08:47 +00:00
|
|
|
assert(key_info->rsa.e_len <= req_e_len);
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* We need to right justify the exponent with required length,
|
|
|
|
|
* e.g. from '01 00 01' to '00 01 00 01' */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.e_len < req_e_len) {
|
2015-09-19 14:52:51 +00:00
|
|
|
/* create new buffer */
|
2012-06-18 02:43:25 +00:00
|
|
|
p = calloc(req_e_len, 1);
|
2015-09-17 18:07:46 +00:00
|
|
|
if (!p)
|
|
|
|
|
LOG_FUNC_RETURN(ctx, SC_ERROR_NOT_ENOUGH_MEMORY);
|
2018-09-30 08:08:47 +00:00
|
|
|
memcpy(p + req_e_len - key_info->rsa.e_len, key_info->rsa.e, key_info->rsa.e_len);
|
|
|
|
|
key_info->rsa.e_len = req_e_len;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set key_info->e to new buffer */
|
2018-09-30 08:08:47 +00:00
|
|
|
free(key_info->rsa.e);
|
|
|
|
|
key_info->rsa.e = p;
|
2012-06-18 02:43:25 +00:00
|
|
|
components[0] = p;
|
|
|
|
|
componentlens[0] = req_e_len;
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* start from beginning of pritemplate */
|
2012-06-18 02:43:25 +00:00
|
|
|
p = pritemplate;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < comp_to_add; i++) {
|
|
|
|
|
sc_log(ctx, "Set Tag+Length for %s (%X).", componentnames[i], componenttags[i]);
|
|
|
|
|
len = set_taglength_tlv(p, componenttags[i], componentlens[i]);
|
|
|
|
|
tpl_len += len;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* <-- kdata_len --><-- Copy here -->
|
|
|
|
|
* kdata |===============|___________________
|
|
|
|
|
*/
|
|
|
|
|
memcpy(kdata + kdata_len, components[i], componentlens[i]);
|
|
|
|
|
kdata_len += componentlens[i];
|
|
|
|
|
|
|
|
|
|
/* Move p to next part and build */
|
|
|
|
|
p += len;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* TODO: Components for CRT format */
|
|
|
|
|
|
|
|
|
|
/* TLV block for 7F48 */
|
|
|
|
|
r = pgp_build_tlv(ctx, 0x7F48, pritemplate, tpl_len, &tlv_7f48, &tlvlen_7f48);
|
|
|
|
|
LOG_TEST_RET(ctx, r, "Failed to build TLV for 7F48.");
|
|
|
|
|
tlv_7f48[0] |= 0x7F;
|
|
|
|
|
r = pgp_build_tlv(ctx, 0x5f48, kdata, kdata_len, &tlv_5f48, &tlvlen_5f48);
|
2018-10-28 11:04:19 +00:00
|
|
|
LOG_TEST_GOTO_ERR(ctx, r, "Failed to build TLV for 5F48");
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* data part's length for Extended Header list */
|
2012-06-18 02:43:25 +00:00
|
|
|
len = 2 + tlvlen_7f48 + tlvlen_5f48;
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set data part content */
|
2012-06-18 02:43:25 +00:00
|
|
|
data = calloc(len, 1);
|
2018-10-28 11:04:19 +00:00
|
|
|
if (data == NULL)
|
|
|
|
|
LOG_TEST_GOTO_ERR(ctx, SC_ERROR_NOT_ENOUGH_MEMORY, "Not enough memory.");
|
|
|
|
|
|
2018-09-29 17:25:36 +00:00
|
|
|
switch (key_info->key_id) {
|
2012-06-18 02:43:25 +00:00
|
|
|
case SC_OPENPGP_KEY_SIGN:
|
|
|
|
|
data[0] = 0xB6;
|
|
|
|
|
break;
|
|
|
|
|
case SC_OPENPGP_KEY_ENCR:
|
|
|
|
|
data[0] = 0xB8;
|
|
|
|
|
break;
|
|
|
|
|
case SC_OPENPGP_KEY_AUTH:
|
|
|
|
|
data[0] = 0xA4;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2018-09-29 17:25:36 +00:00
|
|
|
sc_log(ctx, "Unknown key type %d.", key_info->key_id);
|
2012-06-18 02:43:25 +00:00
|
|
|
r = SC_ERROR_INVALID_ARGUMENTS;
|
2018-10-28 11:04:19 +00:00
|
|
|
goto err;
|
2012-06-18 02:43:25 +00:00
|
|
|
}
|
|
|
|
|
memcpy(data + 2, tlv_7f48, tlvlen_7f48);
|
|
|
|
|
memcpy(data + 2 + tlvlen_7f48, tlv_5f48, tlvlen_5f48);
|
|
|
|
|
r = pgp_build_tlv(ctx, 0x4D, data, len, &tlvblock, &tlvlen);
|
2018-10-28 11:04:19 +00:00
|
|
|
LOG_TEST_GOTO_ERR(ctx, r, "Cannot build TLV for Extended Header list");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set output */
|
2012-06-18 02:43:25 +00:00
|
|
|
if (result != NULL) {
|
|
|
|
|
*result = tlvblock;
|
|
|
|
|
*resultlen = tlvlen;
|
2012-08-23 22:10:01 +00:00
|
|
|
} else {
|
|
|
|
|
free(tlvblock);
|
2012-06-18 02:43:25 +00:00
|
|
|
}
|
|
|
|
|
|
2018-10-28 11:04:19 +00:00
|
|
|
err:
|
2012-06-18 02:43:25 +00:00
|
|
|
free(data);
|
|
|
|
|
free(tlv_5f48);
|
2015-10-09 21:11:03 +00:00
|
|
|
free(tlv_7f48);
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_FUNC_RETURN(ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* ABI (card ctl): store key
|
2012-06-18 02:43:25 +00:00
|
|
|
**/
|
2015-09-19 14:52:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_store_key(sc_card_t *card, sc_cardctl_openpgp_keystore_info_t *key_info)
|
2012-06-18 02:43:25 +00:00
|
|
|
{
|
|
|
|
|
sc_cardctl_openpgp_keygen_info_t pubkey;
|
2018-03-13 20:56:32 +00:00
|
|
|
u8 *data = NULL;
|
|
|
|
|
size_t len = 0;
|
2012-06-18 02:43:25 +00:00
|
|
|
int r;
|
|
|
|
|
|
2018-10-28 10:57:32 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2018-09-30 09:34:10 +00:00
|
|
|
/* temporary workaround: protect v3 cards against non-RSA */
|
|
|
|
|
if (key_info->algorithm != SC_OPENPGP_KEYALGO_RSA)
|
2018-10-28 10:57:32 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
2018-09-30 09:34:10 +00:00
|
|
|
|
2012-06-18 02:43:25 +00:00
|
|
|
/* Validate */
|
2018-09-29 17:25:36 +00:00
|
|
|
if (key_info->key_id < 1 || key_info->key_id > 3) {
|
2018-10-28 10:57:32 +00:00
|
|
|
sc_log(card->ctx, "Unknown key type %d.", key_info->key_id);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
2012-06-18 02:43:25 +00:00
|
|
|
}
|
2015-09-19 14:52:51 +00:00
|
|
|
/* we just support standard key format */
|
2018-09-30 08:08:47 +00:00
|
|
|
switch (key_info->rsa.keyformat) {
|
2018-09-29 17:25:36 +00:00
|
|
|
case SC_OPENPGP_KEYFORMAT_RSA_STD:
|
|
|
|
|
case SC_OPENPGP_KEYFORMAT_RSA_STDN:
|
2012-06-18 02:43:25 +00:00
|
|
|
break;
|
|
|
|
|
|
2018-09-29 17:25:36 +00:00
|
|
|
case SC_OPENPGP_KEYFORMAT_RSA_CRT:
|
|
|
|
|
case SC_OPENPGP_KEYFORMAT_RSA_CRTN:
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* we only support exponent of maximum 32 bits */
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.e_len > 4) {
|
2017-03-14 19:02:30 +00:00
|
|
|
sc_log(card->ctx,
|
|
|
|
|
"Exponent %"SC_FORMAT_LEN_SIZE_T"u-bit (>32) is not supported.",
|
2018-09-30 08:08:47 +00:00
|
|
|
key_info->rsa.e_len * 8);
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* set algorithm attributes */
|
2012-06-18 02:43:25 +00:00
|
|
|
memset(&pubkey, 0, sizeof(pubkey));
|
2018-09-29 17:25:36 +00:00
|
|
|
pubkey.key_id = key_info->key_id;
|
2018-09-30 08:08:47 +00:00
|
|
|
if (key_info->rsa.n && key_info->rsa.n_len) {
|
|
|
|
|
pubkey.rsa.modulus = key_info->rsa.n;
|
|
|
|
|
pubkey.rsa.modulus_len = 8*key_info->rsa.n_len;
|
2012-06-18 02:43:25 +00:00
|
|
|
/* We won't update exponent length, because smaller exponent length
|
|
|
|
|
* will be padded later */
|
|
|
|
|
}
|
|
|
|
|
r = pgp_update_new_algo_attr(card, &pubkey);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Failed to update new algorithm attributes");
|
2018-10-28 10:57:32 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* build Extended Header list */
|
2012-06-18 02:43:25 +00:00
|
|
|
r = pgp_build_extended_header_list(card, key_info, &data, &len);
|
2018-10-28 10:57:32 +00:00
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, r, "Failed to build Extended Header list");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* write to DO */
|
2012-06-18 02:43:25 +00:00
|
|
|
r = pgp_put_data(card, 0x4D, data, len);
|
2018-10-28 10:57:32 +00:00
|
|
|
LOG_TEST_GOTO_ERR(card->ctx, r, "Failed to write to DO 004D");
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* store creation time */
|
2018-09-29 17:25:36 +00:00
|
|
|
r = pgp_store_creationtime(card, key_info->key_id, &key_info->creationtime);
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot store creation time");
|
|
|
|
|
|
2018-10-28 10:57:32 +00:00
|
|
|
/* calculate and store fingerprint */
|
2012-06-18 02:43:25 +00:00
|
|
|
sc_log(card->ctx, "Calculate and store fingerprint");
|
2018-09-30 08:08:47 +00:00
|
|
|
r = pgp_calculate_and_store_fingerprint(card, key_info->creationtime,
|
|
|
|
|
key_info->rsa.n, key_info->rsa.e, &pubkey);
|
2012-06-18 02:43:25 +00:00
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot store fingerprint.");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* update pubkey blobs (B601,B801, A401) */
|
2012-06-18 02:43:25 +00:00
|
|
|
sc_log(card->ctx, "Update blobs holding pubkey info.");
|
2018-09-30 08:08:47 +00:00
|
|
|
r = pgp_update_pubkey_blob(card, key_info->rsa.n, 8*key_info->rsa.n_len,
|
|
|
|
|
key_info->rsa.e, 8*key_info->rsa.e_len, key_info->key_id);
|
2012-06-18 02:43:25 +00:00
|
|
|
|
2018-10-28 10:57:32 +00:00
|
|
|
sc_log(card->ctx, "Update card algorithms.");
|
2012-07-05 09:49:01 +00:00
|
|
|
pgp_update_card_algorithms(card, &pubkey);
|
|
|
|
|
|
2018-10-28 10:57:32 +00:00
|
|
|
err:
|
|
|
|
|
if (data != NULL)
|
2012-06-18 02:43:25 +00:00
|
|
|
free(data);
|
2018-10-28 10:57:32 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2012-06-18 02:43:25 +00:00
|
|
|
}
|
|
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
#endif /* ENABLE_OPENSSL */
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
2013-03-04 04:28:08 +00:00
|
|
|
/**
|
2015-09-19 14:52:51 +00:00
|
|
|
* ABI (card ctl): erase card
|
2013-03-04 04:28:08 +00:00
|
|
|
**/
|
2015-09-19 14:52:51 +00:00
|
|
|
static int
|
|
|
|
|
pgp_erase_card(sc_card_t *card)
|
2013-03-04 04:28:08 +00:00
|
|
|
{
|
2014-07-13 09:37:59 +00:00
|
|
|
/* Special series of commands to erase OpenPGP card,
|
|
|
|
|
* according to https://www.crypto-stick.com/en/faq
|
|
|
|
|
* (How to reset a Crypto Stick? question).
|
|
|
|
|
* Gnuk is known not to support this feature. */
|
2018-01-09 13:55:48 +00:00
|
|
|
const char *apdu_hex[] = {
|
2015-09-19 15:40:57 +00:00
|
|
|
/* block PIN1 */
|
|
|
|
|
"00:20:00:81:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:81:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:81:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:81:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
/* block PIN3 */
|
|
|
|
|
"00:20:00:83:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:83:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:83:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
"00:20:00:83:08:40:40:40:40:40:40:40:40",
|
|
|
|
|
/* TERMINATE */
|
|
|
|
|
"00:e6:00:00",
|
|
|
|
|
NULL
|
2013-03-04 04:28:08 +00:00
|
|
|
};
|
2018-01-09 13:55:48 +00:00
|
|
|
sc_apdu_t apdu;
|
2015-09-19 15:40:57 +00:00
|
|
|
int i;
|
|
|
|
|
int r = SC_SUCCESS;
|
2018-01-09 13:55:48 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2013-03-04 04:28:08 +00:00
|
|
|
|
2015-09-19 15:40:57 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
2013-03-04 04:28:08 +00:00
|
|
|
|
2018-06-10 20:06:53 +00:00
|
|
|
if ((priv->ext_caps & EXT_CAP_LCS) == 0) {
|
2018-01-09 13:55:48 +00:00
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_NO_CARD_SUPPORT,
|
|
|
|
|
"Card does not offer life cycle management");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (priv->state) {
|
|
|
|
|
case CARD_STATE_ACTIVATED:
|
|
|
|
|
/* iterate over the commands above */
|
|
|
|
|
for (i = 0; apdu_hex[i] != NULL; i++) {
|
|
|
|
|
u8 apdu_bin[25]; /* large enough to convert apdu_hex */
|
|
|
|
|
size_t apdu_bin_len = sizeof(apdu_bin);
|
|
|
|
|
u8 rbuf[SC_MAX_APDU_BUFFER_SIZE];
|
|
|
|
|
|
|
|
|
|
/* convert hex array to bin array */
|
|
|
|
|
r = sc_hex_to_bin(apdu_hex[i], apdu_bin, &apdu_bin_len);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Failed to convert APDU bytes");
|
|
|
|
|
|
|
|
|
|
/* build APDU from binary array */
|
|
|
|
|
r = sc_bytes2apdu(card->ctx, apdu_bin, apdu_bin_len, &apdu);
|
|
|
|
|
if (r) {
|
|
|
|
|
sc_log(card->ctx, "Failed to build APDU");
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INTERNAL);
|
|
|
|
|
}
|
2015-09-19 15:40:57 +00:00
|
|
|
|
2018-01-09 13:55:48 +00:00
|
|
|
apdu.resp = rbuf;
|
|
|
|
|
apdu.resplen = sizeof(rbuf);
|
2013-03-04 04:28:08 +00:00
|
|
|
|
2018-01-09 13:55:48 +00:00
|
|
|
/* send APDU to card */
|
|
|
|
|
sc_log(card->ctx, "Sending APDU%d %s", i, apdu_hex[i]);
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Transmitting APDU failed");
|
|
|
|
|
}
|
|
|
|
|
/* fall through */
|
|
|
|
|
case CARD_STATE_INITIALIZATION:
|
|
|
|
|
sc_format_apdu(card, &apdu, SC_APDU_CASE_1, 0x44, 0, 0);
|
|
|
|
|
r = sc_transmit_apdu(card, &apdu);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Transmitting APDU failed");
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
LOG_TEST_RET(card->ctx, SC_ERROR_NO_CARD_SUPPORT,
|
|
|
|
|
"Card does not offer life cycle management");
|
2013-03-04 04:28:08 +00:00
|
|
|
}
|
2015-09-19 15:40:57 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2013-03-04 04:28:08 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
|
|
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-9 CARD CTL - perform special card-specific operations.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
pgp_card_ctl(sc_card_t *card, unsigned long cmd, void *ptr)
|
2011-05-23 17:32:00 +00:00
|
|
|
{
|
2012-06-02 10:09:12 +00:00
|
|
|
int r;
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2011-05-23 17:32:00 +00:00
|
|
|
switch(cmd) {
|
|
|
|
|
case SC_CARDCTL_GET_SERIALNR:
|
|
|
|
|
memmove((sc_serial_number_t *) ptr, &card->serialnr, sizeof(card->serialnr));
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_SUCCESS);
|
2011-05-23 17:32:00 +00:00
|
|
|
break;
|
2012-06-02 10:09:12 +00:00
|
|
|
|
2012-06-14 02:05:16 +00:00
|
|
|
#ifdef ENABLE_OPENSSL
|
2012-06-02 10:09:12 +00:00
|
|
|
case SC_CARDCTL_OPENPGP_GENERATE_KEY:
|
|
|
|
|
r = pgp_gen_key(card, (sc_cardctl_openpgp_keygen_info_t *) ptr);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2012-06-18 02:43:25 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case SC_CARDCTL_OPENPGP_STORE_KEY:
|
|
|
|
|
r = pgp_store_key(card, (sc_cardctl_openpgp_keystore_info_t *) ptr);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
break;
|
2012-06-14 02:05:16 +00:00
|
|
|
#endif /* ENABLE_OPENSSL */
|
2013-03-04 04:28:08 +00:00
|
|
|
case SC_CARDCTL_ERASE_CARD:
|
|
|
|
|
r = pgp_erase_card(card);
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
break;
|
2011-05-23 17:32:00 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-23 17:32:21 +00:00
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
2011-05-23 17:32:00 +00:00
|
|
|
}
|
|
|
|
|
|
2013-04-12 08:33:31 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* Internal: delete key (GnuK only).
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2013-04-12 08:33:31 +00:00
|
|
|
static int
|
|
|
|
|
gnuk_delete_key(sc_card_t *card, u8 key_id)
|
|
|
|
|
{
|
|
|
|
|
sc_context_t *ctx = card->ctx;
|
|
|
|
|
int r = SC_SUCCESS;
|
2014-12-09 19:59:54 +00:00
|
|
|
char *data = NULL;
|
2013-04-12 08:33:31 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(ctx);
|
|
|
|
|
|
2013-04-16 03:19:34 +00:00
|
|
|
if (key_id < 1 || key_id > 3) {
|
|
|
|
|
sc_log(ctx, "Key ID %d is invalid. Should be 1, 2 or 3.", key_id);
|
|
|
|
|
LOG_FUNC_RETURN(ctx, SC_ERROR_INVALID_ARGUMENTS);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* delete fingerprint */
|
2013-04-12 08:33:31 +00:00
|
|
|
sc_log(ctx, "Delete fingerprints");
|
|
|
|
|
r = pgp_put_data(card, 0xC6 + key_id, NULL, 0);
|
|
|
|
|
LOG_TEST_RET(ctx, r, "Failed to delete fingerprints");
|
2015-09-19 14:52:51 +00:00
|
|
|
/* delete creation time */
|
2013-04-12 08:33:31 +00:00
|
|
|
sc_log(ctx, "Delete creation time");
|
|
|
|
|
r = pgp_put_data(card, 0xCD + key_id, NULL, 0);
|
|
|
|
|
LOG_TEST_RET(ctx, r, "Failed to delete creation time");
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* rewrite Extended Header List */
|
2013-04-12 08:33:31 +00:00
|
|
|
sc_log(ctx, "Rewrite Extended Header List");
|
|
|
|
|
|
|
|
|
|
if (key_id == 1)
|
|
|
|
|
data = "\x4D\x02\xB6";
|
|
|
|
|
else if (key_id == 2)
|
|
|
|
|
data = "\x4D\x02\xB8";
|
|
|
|
|
else if (key_id == 3)
|
|
|
|
|
data = "\x4D\x02\xA4";
|
|
|
|
|
|
2014-12-09 19:59:54 +00:00
|
|
|
r = pgp_put_data(card, 0x4D, (const u8 *)data, strlen((const char *)data) + 1);
|
2013-04-12 08:33:31 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-9 DELETE FILE - delete EF or DF given.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2012-06-07 18:31:44 +00:00
|
|
|
static int
|
|
|
|
|
pgp_delete_file(sc_card_t *card, const sc_path_t *path)
|
2012-06-01 15:59:20 +00:00
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob;
|
2012-06-01 15:59:20 +00:00
|
|
|
sc_file_t *file;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/* sc_pkcs15init_delete_by_path() sets the path type to SC_PATH_TYPE_FILE_ID */
|
2012-06-01 15:59:20 +00:00
|
|
|
r = pgp_select_file(card, path, &file);
|
|
|
|
|
LOG_TEST_RET(card->ctx, r, "Cannot select file.");
|
|
|
|
|
|
2012-06-07 18:31:44 +00:00
|
|
|
/* save "current" blob */
|
|
|
|
|
blob = priv->current;
|
2012-06-01 15:59:20 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/* don't try to delete MF */
|
2012-06-07 18:31:44 +00:00
|
|
|
if (blob == priv->mf)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_NOT_SUPPORTED);
|
|
|
|
|
|
2013-04-12 08:33:31 +00:00
|
|
|
if (card->type != SC_CARD_TYPE_OPENPGP_GNUK &&
|
2015-07-03 16:21:38 +00:00
|
|
|
(file->id == DO_SIGN_SYM || file->id == DO_ENCR_SYM || file->id == DO_AUTH_SYM)) {
|
2015-09-19 14:52:51 +00:00
|
|
|
/* These tags are just symbolic. We don't really delete them. */
|
2012-06-21 08:22:44 +00:00
|
|
|
r = SC_SUCCESS;
|
|
|
|
|
}
|
2014-11-09 08:58:40 +00:00
|
|
|
else if (card->type == SC_CARD_TYPE_OPENPGP_GNUK && file->id == DO_SIGN_SYM) {
|
2013-04-12 08:33:31 +00:00
|
|
|
r = gnuk_delete_key(card, 1);
|
|
|
|
|
}
|
2014-11-09 08:58:40 +00:00
|
|
|
else if (card->type == SC_CARD_TYPE_OPENPGP_GNUK && file->id == DO_ENCR_SYM) {
|
2013-04-12 08:33:31 +00:00
|
|
|
r = gnuk_delete_key(card, 2);
|
|
|
|
|
}
|
2014-11-09 08:58:40 +00:00
|
|
|
else if (card->type == SC_CARD_TYPE_OPENPGP_GNUK && file->id == DO_AUTH_SYM) {
|
2013-04-12 08:33:31 +00:00
|
|
|
r = gnuk_delete_key(card, 3);
|
|
|
|
|
}
|
2012-06-21 08:22:44 +00:00
|
|
|
else {
|
|
|
|
|
/* call pgp_put_data() with zero-sized NULL-buffer to zap the DO contents */
|
|
|
|
|
r = pgp_put_data(card, file->id, NULL, 0);
|
|
|
|
|
}
|
2012-06-07 18:31:44 +00:00
|
|
|
|
|
|
|
|
/* set "current" blob to parent */
|
|
|
|
|
priv->current = blob->parent;
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2012-06-01 15:59:20 +00:00
|
|
|
}
|
2011-05-23 17:32:10 +00:00
|
|
|
|
2012-06-07 18:31:44 +00:00
|
|
|
|
2015-09-19 14:52:51 +00:00
|
|
|
/**
|
2018-06-16 13:54:17 +00:00
|
|
|
* ABI: ISO 7816-4 UPDATE BINARY - update data in current EF.
|
2015-09-19 14:52:51 +00:00
|
|
|
*/
|
2012-06-07 17:55:21 +00:00
|
|
|
static int
|
|
|
|
|
pgp_update_binary(sc_card_t *card, unsigned int idx,
|
|
|
|
|
const u8 *buf, size_t count, unsigned long flags)
|
2012-05-29 09:20:08 +00:00
|
|
|
{
|
|
|
|
|
struct pgp_priv_data *priv = DRVDATA(card);
|
2014-07-13 11:41:36 +00:00
|
|
|
pgp_blob_t *blob = priv->current;
|
2012-07-05 09:49:01 +00:00
|
|
|
int r = SC_SUCCESS;
|
2012-05-29 09:20:08 +00:00
|
|
|
|
2012-06-07 17:55:21 +00:00
|
|
|
LOG_FUNC_CALLED(card->ctx);
|
|
|
|
|
|
2012-05-29 09:20:08 +00:00
|
|
|
/* We will use PUT DATA to write to DO.
|
2012-06-08 08:18:46 +00:00
|
|
|
* As PUT DATA does not support idx, we don't either */
|
|
|
|
|
if (idx > 0)
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, SC_ERROR_INCORRECT_PARAMETERS);
|
2012-05-29 09:20:08 +00:00
|
|
|
|
2012-07-05 09:49:01 +00:00
|
|
|
/* When a dummy file, e.g "11001101", is selected, the current blob
|
|
|
|
|
* is set to NULL. We don't really put data to dummy file. */
|
|
|
|
|
if (blob != NULL) {
|
|
|
|
|
r = pgp_put_data(card, blob->id, buf, count);
|
|
|
|
|
}
|
2012-06-07 17:55:21 +00:00
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
2012-05-29 09:20:08 +00:00
|
|
|
}
|
|
|
|
|
|
2012-06-07 17:55:21 +00:00
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/**
|
|
|
|
|
* ABI: card reader lock obtained - re-select card applet if necessary.
|
|
|
|
|
*/
|
2018-01-16 20:03:30 +00:00
|
|
|
static int pgp_card_reader_lock_obtained(sc_card_t *card, int was_reset)
|
|
|
|
|
{
|
2018-01-19 22:55:35 +00:00
|
|
|
struct pgp_priv_data *priv = DRVDATA(card); /* may be null during initialization */
|
2018-01-16 20:03:30 +00:00
|
|
|
int r = SC_SUCCESS;
|
|
|
|
|
|
|
|
|
|
SC_FUNC_CALLED(card->ctx, SC_LOG_DEBUG_VERBOSE);
|
|
|
|
|
|
2018-01-19 22:55:35 +00:00
|
|
|
if (card->flags & SC_CARD_FLAG_KEEP_ALIVE
|
|
|
|
|
&& was_reset <= 0
|
|
|
|
|
&& priv != NULL && priv->mf && priv->mf->file) {
|
|
|
|
|
/* check whether applet is still selected */
|
|
|
|
|
unsigned char aid[16];
|
|
|
|
|
|
|
|
|
|
r = sc_get_data(card, 0x004F, aid, sizeof aid);
|
|
|
|
|
if ((size_t) r != priv->mf->file->namelen
|
|
|
|
|
|| 0 != memcmp(aid, priv->mf->file->name, r)) {
|
|
|
|
|
/* reselect is required */
|
|
|
|
|
was_reset = 1;
|
|
|
|
|
}
|
2018-02-07 15:41:52 +00:00
|
|
|
r = SC_SUCCESS;
|
2018-01-19 22:55:35 +00:00
|
|
|
}
|
|
|
|
|
|
2018-01-16 20:03:30 +00:00
|
|
|
if (was_reset > 0) {
|
|
|
|
|
sc_file_t *file = NULL;
|
|
|
|
|
sc_path_t path;
|
|
|
|
|
/* select application "OpenPGP" */
|
|
|
|
|
sc_format_path("D276:0001:2401", &path);
|
|
|
|
|
path.type = SC_PATH_TYPE_DF_NAME;
|
|
|
|
|
r = iso_ops->select_file(card, &path, &file);
|
|
|
|
|
sc_file_free(file);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LOG_FUNC_RETURN(card->ctx, r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2018-06-16 13:54:17 +00:00
|
|
|
/**
|
|
|
|
|
* API: integrate OpenPGP driver into OpenSC's driver list.
|
|
|
|
|
*/
|
2018-01-16 20:03:30 +00:00
|
|
|
struct sc_card_driver *
|
|
|
|
|
sc_get_openpgp_driver(void)
|
2003-10-30 17:04:22 +00:00
|
|
|
{
|
|
|
|
|
struct sc_card_driver *iso_drv = sc_get_iso7816_driver();
|
|
|
|
|
|
|
|
|
|
iso_ops = iso_drv->ops;
|
|
|
|
|
|
|
|
|
|
pgp_ops = *iso_ops;
|
2003-10-31 16:01:00 +00:00
|
|
|
pgp_ops.match_card = pgp_match_card;
|
|
|
|
|
pgp_ops.init = pgp_init;
|
|
|
|
|
pgp_ops.finish = pgp_finish;
|
|
|
|
|
pgp_ops.select_file = pgp_select_file;
|
|
|
|
|
pgp_ops.list_files = pgp_list_files;
|
2018-01-18 11:33:34 +00:00
|
|
|
pgp_ops.get_challenge = pgp_get_challenge;
|
2003-10-31 16:01:00 +00:00
|
|
|
pgp_ops.read_binary = pgp_read_binary;
|
|
|
|
|
pgp_ops.write_binary = pgp_write_binary;
|
|
|
|
|
pgp_ops.pin_cmd = pgp_pin_cmd;
|
2018-01-17 20:11:16 +00:00
|
|
|
pgp_ops.logout = pgp_logout;
|
2003-10-31 16:01:00 +00:00
|
|
|
pgp_ops.get_data = pgp_get_data;
|
|
|
|
|
pgp_ops.put_data = pgp_put_data;
|
|
|
|
|
pgp_ops.set_security_env= pgp_set_security_env;
|
|
|
|
|
pgp_ops.compute_signature= pgp_compute_signature;
|
2003-11-20 15:41:28 +00:00
|
|
|
pgp_ops.decipher = pgp_decipher;
|
2011-05-23 17:32:00 +00:00
|
|
|
pgp_ops.card_ctl = pgp_card_ctl;
|
2012-06-01 15:59:20 +00:00
|
|
|
pgp_ops.delete_file = pgp_delete_file;
|
2012-06-07 17:55:21 +00:00
|
|
|
pgp_ops.update_binary = pgp_update_binary;
|
2018-01-16 20:03:30 +00:00
|
|
|
pgp_ops.card_reader_lock_obtained = pgp_card_reader_lock_obtained;
|
2003-10-30 17:04:22 +00:00
|
|
|
|
2006-06-17 12:24:04 +00:00
|
|
|
return &pgp_drv;
|
2003-10-30 17:04:22 +00:00
|
|
|
}
|
