FreeCalypso > hg > tcs211-c139
view g23m/condat/com/src/comlib/sec_drv.c @ 43:52325cb524a8
new README written for the UI-enabled configuration
author | Mychaela Falconia <falcon@ivan.Harhan.ORG> |
---|---|
date | Thu, 05 Nov 2015 08:09:54 +0000 |
parents | 509db1a7b7b8 |
children |
line wrap: on
line source
#include "general.h" #include "typedefs.h" #include "vsi.h" #include <stdlib.h> #include <string.h> #include "sec_drv.h" #include "sec_drv_prim.h" #ifdef FIRSTBOOT_ENABLED #include "sec_firstboot.h" #endif #define UNLOCKED(status) ((status==SEC_DRV_CAT_STAT_Unlocked)||(status==SEC_DRV_CAT_STAT_PermUnlocked)) /** * Resets the phone. */ static void reset(void) { UINT16 i; TRACE("** RESET **"); // Setup watchdog timer and let it timeout to make a reset *(volatile UINT16*) 0xfffff804 = 0xFFFF; // Timer to watchdog *(volatile UINT16*) 0xfffff800 = 0x0080; // Start timer // Apparently works it only if we read this register? i = *(volatile UINT16*) 0xfffff802; *(volatile UINT16*) 0xfffff802 = 0x0001; // Load timer } /** * Check whether or not we have valid lock data in the flash-area * Run first_boot if we've got data, but its not initialized. * * @param pNumCategories Pointer to UINT8 where the number of * categories will be stored. * @return SEC_DRV_RET_Ok if theres valid data in the secure area. */ static T_SEC_DRV_RETURN check_hdr(UINT8 *pNumCategories) { T_SEC_DRV_RETURN result = SEC_DRV_RET_Ok; T_SEC_DRV_GLOBAL_CONF hdr; TRACE("check_hdr"); if (sec_prim_get_global_conf(&hdr)) { switch (hdr.firstboot_pattern) { case SEC_PATTERN_INITIALIZED: /* Secure area seems to be initialized OK */ result = SEC_DRV_RET_Ok; if (pNumCategories) { T_SEC_DRV_CONFIGURATION conf; sec_prim_get_configuration(&conf); *pNumCategories = conf.NumCategories; } TRACE("check_hdr - OK"); break; case SEC_PATTERN_UNINITIALIZED: /* We've got new data in the secure area that needs to be processed */ #ifdef FIRSTBOOT_ENABLED first_boot(); #endif result = SEC_DRV_RET_NotPresent; TRACE("check_hdr - uninitialized"); reset(); break; default: /* Secure area seems to contain void data! */ result = SEC_DRV_RET_NotPresent; if (pNumCategories) *pNumCategories = 0; TRACE("check_hdr - void data"); break; } } else { result = SEC_DRV_RET_NotPresent; TRACE("check_hdr - void!!!"); } return result; } /** * Check if a counter is exceeded. * * @param pCount Pointer to current value - max value must follow immediately before! * @return TRUE if the failure counter has been exceeded */ static BOOL Counter_Exceeded(UINT8 *pCount) { pCount--; return ((pCount[0] != 0xFF) && (pCount[1] >= pCount[0])); } /** * Increment a counter if needed. * * @param pCount Pointer to the counter */ static void Counter_Increment(UINT8 *pCount) { if ((*pCount) < 0xFF) { (*pCount)++; } } /** * Check whether or not a given key-len is ok according to its category. * * @param rec_num The record number to check the key_length against. * @param key_len The key length to check. * @return TRUE if the key_len is within specifications for the given * record (category) - otherwise FALSE. */ static BOOL check_key_len(int rec_num, UINT8 key_len) { if (key_len > SEC_DRV_KEY_MAX_LEN) return FALSE; if ((rec_num == SEC_DRV_CAT_NUM_SIM) && (key_len < 6)) return FALSE; if ((rec_num != SEC_DRV_CAT_NUM_SIM) && (key_len < 8)) return FALSE; return TRUE; } /** * Transform an unlock key into a special lock key - for use by the * non-ETSI lock algorithm. * * @param pKey Pointer to a key to transform. This also serves as the output * buffer. Must be '\0' terminated if shorter than SEC_DRV_KEY_MAX_LEN */ void calculate_spec_lock_key(char *pKey) { int len=0; int index; while((len<SEC_DRV_KEY_MAX_LEN) && (pKey[len])) len++; len = len & 0xFE; for(index=0; index<len; index+=2) { char ch; ch = pKey[index]; pKey[index] = pKey[index+1]; pKey[index+1] = ch; } } /** * Compare 2 keys up to key_len characters, given the length constraints implied * by the category number and check_key_len(). * * @param rec_num The category number to use when validating key_len. * @param pRefKey Pointer to the key to use as reference (origin). * @param pKey Pointer to the key to compare against pRefKey. * @param key_len The maximum number of chars to use in the compare or 0 (to use all). * @return SEC_DRV_RET_KeyWrong if the length constraints are violated, SEC_DRV_RET_Ok * if the keys match, otherwise SEC_DRV_RET_KeyMismatch. */ static T_SEC_DRV_RETURN compare_keys(int rec_num, const char *pRefKey, const char *pKey, UINT8 key_len) { if (pRefKey[0] == '\0') { TRACE("compare_keys - old key not present"); return SEC_DRV_RET_Ok; } if (key_len == 0) { /* compare using full length of the keys -> to '\0' termination or max SEC_DRV_KEY_MAX_LEN chars... whichever comes first */ key_len = SEC_DRV_KEY_MAX_LEN; } /* compare using the specified number of chars */ if (!check_key_len(rec_num, key_len) || (pKey==0L) || (pKey[0]=='\0')) return SEC_DRV_RET_KeyWrong; return (strncmp(pRefKey, pKey, key_len)==0)? SEC_DRV_RET_Ok : SEC_DRV_RET_KeyMismatch; } /** * Try to set a new key on a specific category. For this to happen, the new key must * meet the length constraints implied by the category, and the current category key * must match the given oldkey within the key_len chars (again, remember length * constraints). * * @param rec_num The category number for which to set the key. * @param pOldKey Key to compare against current category key. The 2 must match * for the new key to be set. * @param pNewKey Key to set the category to, if possible. * @param key_len Length to use when comparing keys, see check_key_len(). * @return SEC_DRV_RET_Ok if the key could be set. */ static T_SEC_DRV_RETURN set_key(T_SEC_DRV_CONFIGURATION *pConf, int rec_num, const char *pOldKey, const char *pNewKey, UINT8 key_len) { T_SEC_DRV_RETURN result; T_SEC_DRV_KEY key; if (sec_prim_get_key(rec_num, &key)) { result = compare_keys(rec_num, (char *)key.digit, pOldKey, key_len); if (result == SEC_DRV_RET_Ok) { int len = strlen(pNewKey); if (check_key_len(rec_num, len)) { len++; /* convert len into a size! */ if (len > SEC_DRV_KEY_MAX_LEN) len = SEC_DRV_KEY_MAX_LEN; memcpy(key.digit, pNewKey, len); sec_prim_set_key(rec_num, &key); } else { /* key must be within specified length according to category */ result = SEC_DRV_RET_KeyWrong; } } else { Counter_Increment(&pConf->FC_Current); sec_prim_set_configuration(pConf); } } else { result = SEC_DRV_RET_NotPresent; } return result; } /** * Update all dependant categories. Scanning through a categories dependants, * set their status and key if needed. * * @param pCatHdr Pointer to the category header for the parent category. * @param pCatKey Pointer to the key for the parent category. */ static void update_dependants(const T_SEC_DRV_CAT_HDR *pCatHdr, const T_SEC_DRV_KEY *pCatKey, UINT16 dependMask) { int dependentCat = 0; int dependentBit = 1; for (; dependentCat<(sizeof(pCatHdr->Dependency)*8); dependentCat++) { if (pCatHdr->Dependency & dependentBit & dependMask) { { /* set key on dependant iff not already done, and parent has a key */ T_SEC_DRV_KEY dependentKey; if (sec_prim_get_key(dependentCat, &dependentKey)) { if (pCatKey->digit[0] != '\0' && dependentKey.digit[0] == '\0') { sec_prim_set_key(dependentCat, pCatKey); } } } { /* update status on dependant */ T_SEC_DRV_CAT_HDR dependentHdr; if (sec_prim_get_cat_header(dependentCat, &dependentHdr)) { if (dependentHdr.Status != SEC_DRV_CAT_STAT_PermUnlocked) { dependentHdr.Status = pCatHdr->Status; sec_prim_set_cat_header(dependentCat, &dependentHdr); } } } } dependentBit = dependentBit<<1; } } /** * Get the MEPD configuration. * * @param ppConfiguration Pointer to pointer where the configuration is stored. * @return SEC_DRV_RET_Ok if the configuration could be read. */ T_SEC_DRV_RETURN sec_get_CFG(T_SEC_DRV_CONFIGURATION **ppConfiguration) { T_SEC_DRV_RETURN result = check_hdr(0L); if (result == SEC_DRV_RET_Ok) { *ppConfiguration = (T_SEC_DRV_CONFIGURATION *)M_ALLOC(sizeof(T_SEC_DRV_CONFIGURATION)); sec_prim_get_configuration(*ppConfiguration); } else { *ppConfiguration = 0L; } return result; } /** * Compare a key against the one stored for a given category. * * @param rec_num The category number for which to check the key. * @param pKey The key to compare. * @param key_len The length of the keys to use in the compare. Subject to constraints. * @return SEC_DRV_RET_Ok if the keys match */ T_SEC_DRV_RETURN sec_cmp_KEY (UINT8 rec_num, const char *pKey, UINT8 key_len) { T_SEC_DRV_KEY refKey; T_SEC_DRV_CONFIGURATION conf; UINT8 numCategories=0; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Current)) { result = SEC_DRV_RET_FCExeeded; } else if (conf.Flags & SEC_DRV_HDR_FLAG_LAM_Unlock) { result = SEC_DRV_RET_Unknown; } else if (sec_prim_get_key(rec_num, &refKey)) { result = compare_keys(rec_num, (char *)refKey.digit, pKey, key_len); } else { /* requested data outside configured categories! */ result = SEC_DRV_RET_NotPresent; } return result; } /** * Try to set a key for a given category. The category must be unlocked prior * to this attempt. * * @param rec_num Category number whoose key should be set. * @param pOldKey pointer to current key of the category (or rather what the * client believes to be the current key). * @param pNewKey Pointer to the key that should be set. * @param key_len length to use during key-comparision. * @return SEC_DRV_RET_Ok if the key could be set. */ T_SEC_DRV_RETURN sec_set_KEY (UINT8 rec_num, const char *pOldKey, const char *pNewKey, UINT8 key_len) { T_SEC_DRV_CONFIGURATION conf; UINT8 numCategories=0; T_SEC_DRV_CAT_HDR catHdr; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Current)) { result = SEC_DRV_RET_FCExeeded; } else if (sec_prim_get_cat_header(rec_num, &catHdr)) { if (UNLOCKED(catHdr.Status) && !(conf.Flags & SEC_DRV_HDR_FLAG_LAM_Unlock)) { result = set_key(&conf, rec_num, pOldKey, pNewKey, key_len); } else { /* category must be unlocked prior to setting a key */ result = SEC_DRV_RET_Unknown; } } else { /* requested data outside configured categories! */ result = SEC_DRV_RET_NotPresent; } return result; } /** * Set the key for tha failure counter. * * @param pOldKey The current failure count key. Must match that stored in the * secure area for the new key to be set. * @param pNewKey The new key to set for the failure counter. * @return SEC_DRV_RET_Ok if the key could be set. */ T_SEC_DRV_RETURN sec_set_FC_KEY (const char *pOldKey, const char *pNewKey) { T_SEC_DRV_CONFIGURATION conf; T_SEC_DRV_RETURN result = check_hdr(0L); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Current)) { result = SEC_DRV_RET_FCExeeded; } else { result = set_key(&conf, -1, pOldKey, pNewKey, 0); } return result; } /** * Get the record data (both header and body) for a given category. * * @param rec_num The category number to get the data for. * @param ppCategory Pointer to where the result pointer should be stored. * @return SEC_DRV_RET_Ok if the record data could be read. */ T_SEC_DRV_RETURN sec_get_REC (UINT8 rec_num, T_SEC_DRV_CATEGORY **ppCategory) { UINT8 numCategories=0; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ *ppCategory = 0L; return result; } if (rec_num < numCategories) { *ppCategory = (T_SEC_DRV_CATEGORY *)M_ALLOC(sizeof(T_SEC_DRV_CATEGORY)); sec_prim_get_cat_header(rec_num, &(*ppCategory)->Header); if ((*ppCategory)->Header.DataLen) { (*ppCategory)->pBody = M_ALLOC((*ppCategory)->Header.DataLen); sec_prim_get_cat_body(rec_num, (*ppCategory)->pBody, (*ppCategory)->Header.DataLen); } else { (*ppCategory)->pBody = 0L; } result = SEC_DRV_RET_Ok; } else { /* requested data outside configured categories! */ *ppCategory = 0L; result = SEC_DRV_RET_NotPresent; } return result; } /** * Set the body part of a category's data. The data can only be set if the * category is unlocked. * * @param rec_num Category number whose body part should be set. * @param pBody Pointer to the body data that should be stored. * @return SEC_DRV_RET_Ok if the data could be stored. */ T_SEC_DRV_RETURN sec_set_REC (UINT8 rec_num, const T_SEC_DRV_CATEGORY *pCategory) { T_SEC_DRV_CAT_HDR header; UINT8 numCategories=0; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } if (sec_prim_get_cat_header(rec_num, &header)) { if (header.Status == SEC_DRV_CAT_STAT_Unlocked || header.Status == SEC_DRV_CAT_STAT_PermUnlocked) { sec_prim_set_cat_body(rec_num, pCategory->pBody, pCategory->Header.DataLen); result = SEC_DRV_RET_Ok; } else { /* Category must be unlocked in order to write record data */ result = SEC_DRV_RET_Unknown; } } else { /* requested data outside configured categories! */ result = SEC_DRV_RET_NotPresent; } return result; } /** * Try to unlock a category. Failure count must not have been exeeded, NAM unlock * must not be set and the category must not be linklocked. Also the given key * must match the stored key for the category before it is unlocked. * * @param rec_num Category number that should be unlocked. * @param pKey Key that should match the stored category key. * @param key_len The maximum number of chars to use in the compare or 0 (to use all). * @return SEC_DRV_RET_Ok if the category could be unlocked. */ T_SEC_DRV_RETURN sec_rec_Unlock (UINT8 rec_num, T_SEC_DRV_UNLOCK_TYPE unlockType, const char *pKey, UINT8 key_len, UINT16 dependMask) { T_SEC_DRV_CONFIGURATION conf; T_SEC_DRV_CAT_HDR catHdr; UINT8 numCategories=0; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Current)) { result = SEC_DRV_RET_FCExeeded; } else if (sec_prim_get_cat_header(rec_num, &catHdr)) { if (UNLOCKED(catHdr.Status) || (conf.Flags & SEC_DRV_HDR_FLAG_LAM_Unlock) || (catHdr.Flags & SEC_DRV_CAT_FLAG_LinkLocked)) { /* NAM or LinkLock failure */ result = SEC_DRV_RET_Unknown; } else { T_SEC_DRV_KEY catKey; sec_prim_get_key(rec_num, &catKey); result = compare_keys(rec_num, (char *)catKey.digit, pKey, key_len); if (result == SEC_DRV_RET_Ok) { /* update status */ catHdr.Status = (unlockType == TEMPORARY_UNLOCK)? SEC_DRV_CAT_STAT_Unlocked : SEC_DRV_CAT_STAT_PermUnlocked; sec_prim_set_cat_header(rec_num, &catHdr); /* update dependants */ update_dependants(&catHdr, &catKey, dependMask); /* reset failure counter */ conf.FC_Current = 0; sec_prim_set_configuration(&conf); } else { /* Failure comparing keys! - update failure counter */ Counter_Increment(&conf.FC_Current); sec_prim_set_configuration(&conf); } } } else { /* requested data outside configured categories! */ result = SEC_DRV_RET_NotPresent; } return result; } static T_SEC_DRV_RETURN lock_record( UINT8 rec_num, T_SEC_DRV_CAT_HDR *catHdr, UINT16 dependMask) { T_SEC_DRV_KEY catKey; catHdr->Status = SEC_DRV_CAT_STAT_Locked; sec_prim_get_key(rec_num, &catKey); sec_prim_set_cat_header(rec_num, catHdr); update_dependants(catHdr, &catKey, dependMask); return SEC_DRV_RET_Ok; } /** * Try to lock a category. Actual algorith depends on flags set for the individual * category. * * @param rec_num Category number that should be locked. * @param pKey Key that should match (or be set in) the stored category key. * @param key_len The maximum number of chars to use in the compare or 0 (to use all). * @return SEC_DRV_RET_Ok if the category could be locked. */ T_SEC_DRV_RETURN sec_rec_Lock (UINT8 rec_num, const char *pKey, UINT8 key_len, UINT16 dependMask) { T_SEC_DRV_CAT_HDR catHdr; UINT8 numCategories=0; T_SEC_DRV_RETURN result = check_hdr(&numCategories); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } if (sec_prim_get_cat_header(rec_num, &catHdr)) { if (catHdr.Status != SEC_DRV_CAT_STAT_Unlocked) { /* Status must be unlocked before locking! */ result = SEC_DRV_RET_Unknown; } else { if (rec_num == SEC_DRV_CAT_NUM_AP) { result = lock_record(rec_num, &catHdr, dependMask); } else { T_SEC_DRV_CONFIGURATION conf; sec_prim_get_configuration(&conf); if (conf.Flags & SEC_DRV_HDR_FLAG_ETSI_Flag) { /* ETSI Mode - set the category key */ int len = strlen(pKey); if (check_key_len(rec_num, len)) { T_SEC_DRV_KEY key; memset(key.digit, 0, SEC_DRV_KEY_MAX_LEN); memcpy(key.digit, pKey, len); sec_prim_set_key(rec_num, &key); result = lock_record(rec_num, &catHdr, dependMask); } else { /* Key has wrong length! */ result = SEC_DRV_RET_KeyWrong; } } else if (conf.Flags & SEC_DRV_HDR_FLAG_LAM_Unlock) { /* Non-ETSI, but LAM_unlock is set */ result = SEC_DRV_RET_Unknown; } else { /* Non-ETSI mode */ T_SEC_DRV_KEY key; sec_prim_get_key(rec_num, &key); if (conf.Flags & SEC_DRV_HDR_FLAG_Spec_Lock_Key) { /* Special lock key enabled */ calculate_spec_lock_key((char *)&key.digit[0]); } result = compare_keys(rec_num, (char *)key.digit, pKey, key_len); if (result == SEC_DRV_RET_Ok) { result = lock_record(rec_num, &catHdr, dependMask); } } } } } else { /* requested data outside configured categories! */ result = SEC_DRV_RET_NotPresent; } return result; } /** * reset the failure counter. The correct key must of course be given. * * @param pKey The key used to try to reset the failure counter. * @key_len Length of the key to use. * @return SEC_DRV_RET_Ok if the failure counter could be reset. */ T_SEC_DRV_RETURN sec_FC_Reset (const char *pKey, UINT8 key_len) { T_SEC_DRV_KEY refKey; T_SEC_DRV_CONFIGURATION conf; T_SEC_DRV_RETURN result = check_hdr(0L); if (result != SEC_DRV_RET_Ok) { /* data not present in secure area! */ return result; } sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Reset_Fail_Current) || Counter_Exceeded(&conf.FC_Reset_Success_Current)) { result = SEC_DRV_RET_FCExeeded; } else { sec_prim_get_key(-1, &refKey); result = compare_keys(-1, (char *)refKey.digit, pKey, key_len); if (result == SEC_DRV_RET_Ok) { Counter_Increment(&conf.FC_Reset_Success_Current); conf.FC_Current = 0; } else { Counter_Increment(&conf.FC_Reset_Fail_Current); } sec_prim_set_configuration(&conf); } return result; } T_SEC_DRV_RETURN sec_FC_Increment(void) { T_SEC_DRV_RETURN result = SEC_DRV_RET_Ok; T_SEC_DRV_CONFIGURATION conf; sec_prim_get_configuration(&conf); if (Counter_Exceeded(&conf.FC_Current)) { result = SEC_DRV_RET_FCExeeded; } else { Counter_Increment(&conf.FC_Current); sec_prim_set_configuration(&conf); } return result; }