keycard-go/lightwallet/actions/actions.go

237 lines
6.0 KiB
Go
Raw Normal View History

2018-10-24 11:42:00 +00:00
package actions
import (
2018-11-07 13:39:58 +00:00
"bytes"
2018-10-24 16:16:14 +00:00
"crypto/rand"
"crypto/sha256"
2018-10-24 11:42:00 +00:00
"errors"
2018-10-24 16:16:14 +00:00
"fmt"
2018-10-24 11:42:00 +00:00
2019-03-01 17:44:07 +00:00
"github.com/status-im/keycard-go/apdu"
"github.com/status-im/keycard-go/globalplatform"
"github.com/status-im/keycard-go/lightwallet"
"github.com/status-im/keycard-go/lightwallet/crypto"
2018-10-24 11:42:00 +00:00
)
var (
2018-11-07 13:39:58 +00:00
ErrAlreadyInitialized = errors.New("card already initialized")
ErrWrongApplicationInfoTemplate = errors.New("wrong application info template")
ErrApplicationStatusTemplateNotFound = errors.New("application status template not found")
2018-10-24 11:42:00 +00:00
)
2018-11-06 11:54:11 +00:00
func Select(c globalplatform.Channel, aid []byte) (*lightwallet.ApplicationInfo, error) {
sel := globalplatform.NewCommandSelect(aid)
resp, err := c.Send(sel)
if err != nil {
return nil, err
}
err = checkResponse(resp, globalplatform.SwOK, globalplatform.SwFileNotFound)
if err != nil {
return nil, err
}
info := &lightwallet.ApplicationInfo{}
if resp.Sw == globalplatform.SwFileNotFound {
return info, nil
}
info.Installed = true
if resp.Data[0] == lightwallet.TagSelectResponsePreInitialized {
info.PublicKey = resp.Data[2:]
return info, nil
}
info.Initialized = true
return parseApplicationInfo(resp.Data, info)
}
2018-10-24 16:16:14 +00:00
func Init(c globalplatform.Channel, cardPubKey []byte, secrets *lightwallet.Secrets, aid []byte) error {
secureChannel, err := lightwallet.NewSecureChannel(c, cardPubKey)
2018-10-24 11:42:00 +00:00
if err != nil {
return err
}
2018-10-24 16:16:14 +00:00
data, err := secureChannel.OneShotEncrypt(secrets)
if err != nil {
return err
2018-10-24 11:42:00 +00:00
}
2018-10-24 16:16:14 +00:00
init := lightwallet.NewCommandInit(data)
resp, err := c.Send(init)
2018-10-24 11:42:00 +00:00
2018-10-27 16:12:38 +00:00
return checkOKResponse(err, resp)
2018-10-24 16:16:14 +00:00
}
func Pair(c globalplatform.Channel, pairingPass string, pin string) (*lightwallet.PairingInfo, error) {
challenge := make([]byte, 32)
if _, err := rand.Read(challenge); err != nil {
return nil, err
}
cmd := lightwallet.NewCommandPairFirstStep(challenge)
resp, err := c.Send(cmd)
2018-10-27 16:12:38 +00:00
if err = checkOKResponse(err, resp); err != nil {
2018-10-24 16:16:14 +00:00
return nil, err
}
cardCryptogram := resp.Data[:32]
cardChallenge := resp.Data[32:]
secretHash, err := crypto.VerifyCryptogram(challenge, pairingPass, cardCryptogram)
if err != nil {
return nil, err
2018-10-24 16:16:14 +00:00
}
h := sha256.New()
2018-10-24 16:16:14 +00:00
h.Write(secretHash[:])
h.Write(cardChallenge)
cmd = lightwallet.NewCommandPairFinalStep(h.Sum(nil))
resp, err = c.Send(cmd)
2018-10-27 16:12:38 +00:00
if err = checkOKResponse(err, resp); err != nil {
2018-10-24 16:16:14 +00:00
return nil, err
}
h.Reset()
h.Write(secretHash[:])
h.Write(resp.Data[1:])
pairingKey := h.Sum(nil)
pairingIndex := resp.Data[0]
return &lightwallet.PairingInfo{
2018-11-06 11:54:11 +00:00
Key: pairingKey,
Index: int(pairingIndex),
2018-10-24 16:16:14 +00:00
}, nil
}
2018-10-27 16:52:39 +00:00
func OpenSecureChannel(c globalplatform.Channel, appInfo *lightwallet.ApplicationInfo, pairingIndex uint8, pairingKey []byte) (*lightwallet.SecureChannel, error) {
2018-10-24 16:16:14 +00:00
sc, err := lightwallet.NewSecureChannel(c, appInfo.PublicKey)
cmd := lightwallet.NewCommandOpenSecureChannel(pairingIndex, sc.RawPublicKey())
resp, err := c.Send(cmd)
2018-10-27 16:12:38 +00:00
if err = checkOKResponse(err, resp); err != nil {
2018-10-27 16:52:39 +00:00
return nil, err
2018-10-24 16:16:14 +00:00
}
2018-10-24 11:42:00 +00:00
2018-11-06 17:38:13 +00:00
encKey, macKey, iv := crypto.DeriveSessionKeys(sc.Secret(), pairingKey, resp.Data)
sc.Init(iv, encKey, macKey)
2018-10-27 16:52:39 +00:00
2018-11-06 17:38:13 +00:00
err = mutualAuthenticate(sc)
if err != nil {
return nil, err
}
2018-10-27 16:52:39 +00:00
2018-11-06 17:38:13 +00:00
return sc, nil
}
2018-10-27 16:52:39 +00:00
2018-11-06 17:38:13 +00:00
func mutualAuthenticate(sc *lightwallet.SecureChannel) error {
data := make([]byte, 32)
if _, err := rand.Read(data); err != nil {
return err
}
2018-10-27 16:52:39 +00:00
2018-11-06 17:38:13 +00:00
cmd := lightwallet.NewCommandMutuallyAuthenticate(data)
resp, err := sc.Send(cmd)
return checkOKResponse(err, resp)
}
2018-11-07 13:39:58 +00:00
func GetStatusApplication(c globalplatform.Channel) (*lightwallet.ApplicationStatus, error) {
cmd := lightwallet.NewCommandGetStatusApplication()
resp, err := c.Send(cmd)
if err = checkOKResponse(err, resp); err != nil {
return nil, err
}
return parseApplicationStatus(resp.Data)
2018-10-24 11:42:00 +00:00
}
2018-11-06 11:54:11 +00:00
func parseApplicationInfo(data []byte, info *lightwallet.ApplicationInfo) (*lightwallet.ApplicationInfo, error) {
if data[0] != lightwallet.TagApplicationInfoTemplate {
2018-11-07 13:39:58 +00:00
return nil, ErrWrongApplicationInfoTemplate
2018-10-24 11:42:00 +00:00
}
2018-11-06 11:54:11 +00:00
instanceUID, err := apdu.FindTag(data, lightwallet.TagApplicationInfoTemplate, uint8(0x8F))
2018-10-24 11:42:00 +00:00
if err != nil {
return nil, err
}
2018-11-06 11:54:11 +00:00
pubKey, err := apdu.FindTag(data, lightwallet.TagApplicationInfoTemplate, uint8(0x80))
2018-10-24 11:42:00 +00:00
if err != nil {
return nil, err
}
2018-11-06 11:54:11 +00:00
appVersion, err := apdu.FindTag(data, lightwallet.TagApplicationInfoTemplate, uint8(0x02))
2018-10-24 11:42:00 +00:00
if err != nil {
return nil, err
}
2018-11-06 11:54:11 +00:00
availableSlots, err := apdu.FindTagN(data, 1, lightwallet.TagApplicationInfoTemplate, uint8(0x02))
2018-10-24 11:42:00 +00:00
if err != nil {
return nil, err
}
2018-11-06 11:54:11 +00:00
keyUID, err := apdu.FindTagN(data, 0, lightwallet.TagApplicationInfoTemplate, uint8(0x8E))
2018-10-24 11:44:58 +00:00
if err != nil {
return nil, err
}
2018-11-06 11:54:11 +00:00
info.InstanceUID = instanceUID
info.PublicKey = pubKey
info.Version = appVersion
info.AvailableSlots = availableSlots
info.KeyUID = keyUID
return info, nil
2018-10-24 11:42:00 +00:00
}
2018-10-24 16:16:14 +00:00
2018-11-07 13:39:58 +00:00
func parseApplicationStatus(data []byte) (*lightwallet.ApplicationStatus, error) {
appStatus := &lightwallet.ApplicationStatus{}
tpl, err := apdu.FindTag(data, lightwallet.TagApplicationStatusTemplate)
if err != nil {
return nil, ErrApplicationStatusTemplateNotFound
}
if pinRetryCount, err := apdu.FindTag(tpl, uint8(0x02)); err == nil && len(pinRetryCount) == 1 {
appStatus.PinRetryCount = int(pinRetryCount[0])
}
if pukRetryCount, err := apdu.FindTagN(tpl, 1, uint8(0x02)); err == nil && len(pukRetryCount) == 1 {
appStatus.PUKRetryCount = int(pukRetryCount[0])
}
if keyInitialized, err := apdu.FindTag(tpl, uint8(0x01)); err == nil {
if bytes.Equal(keyInitialized, []byte{0xFF}) {
appStatus.KeyInitialized = true
}
}
if keyDerivationSupported, err := apdu.FindTagN(tpl, 1, uint8(0x01)); err == nil {
if bytes.Equal(keyDerivationSupported, []byte{0xFF}) {
appStatus.PubKeyDerivation = true
}
}
return appStatus, nil
}
2018-10-27 16:12:38 +00:00
func checkOKResponse(err error, resp *apdu.Response) error {
if err != nil {
return err
}
2018-10-24 16:16:14 +00:00
return checkResponse(resp, apdu.SwOK)
}
func checkResponse(resp *apdu.Response, allowedResponses ...uint16) error {
for _, code := range allowedResponses {
if code == resp.Sw {
return nil
}
}
return fmt.Errorf("unexpected response: %x", resp.Sw)
}