/* ** ** Copyright 2020, The Android Open Source Project ** ** Licensed under the Apache License, Version 2.0 (the "License"); ** you may not use this file except in compliance with the License. ** You may obtain a copy of the License at ** ** http://www.apache.org/licenses/LICENSE-2.0 ** ** Unless required by applicable law or agreed to in writing, software ** distributed under the License is distributed on an "AS IS" BASIS, ** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. ** See the License for the specific language governing permissions and ** limitations under the License. */ /****************************************************************************** ** ** The original Work has been changed by NXP. ** ** Licensed under the Apache License, Version 2.0 (the "License"); ** you may not use this file except in compliance with the License. ** You may obtain a copy of the License at ** ** http://www.apache.org/licenses/LICENSE-2.0 ** ** Unless required by applicable law or agreed to in writing, software ** distributed under the License is distributed on an "AS IS" BASIS, ** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. ** See the License for the specific language governing permissions and ** limitations under the License. ** ** Copyright 2022-2024 NXP ** *********************************************************************************/ #if defined OMAPI_TRANSPORT #pragma once #include #include #include #include #include #include // #include #include #include #include #include #include #include "ITransport.h" #include #define APP_NOT_FOUND_SW1 0x6A #define APP_NOT_FOUND_SW2 0x82 namespace keymint::javacard { using std::shared_ptr; using std::vector; /** * OmapiTransport is derived from ITransport. This class gets the OMAPI service binder instance and uses IPC to * communicate with OMAPI service. OMAPI inturn communicates with hardware via ISecureElement. */ class OmapiTransport : public std::enable_shared_from_this, public ITransport { public: static shared_ptr make(const std::vector &mAppletAID) { return std::shared_ptr(new OmapiTransport(mAppletAID)); } virtual ~OmapiTransport(); #ifdef NXP_EXTNS /** * Sets Applet Aid */ bool setAppletAid(const vector &aid) { mSelectableAid = aid; return true; } /** * Sets state(start/finish) of crypto operation. * This is required for channel session timeout mgmt. */ void setCryptoOperationState(uint8_t state) override; #endif /** * Gets the binder instance of ISEService, gets te reader corresponding to secure element, * establishes a session and opens a basic channel. */ bool openConnection() override; /** * Transmists the data over the opened basic channel and receives the data back. */ bool sendData(const vector& inData, vector& output) override; /** * Closes the connection. */ bool closeConnection() override; /** * Returns the state of the connection status. Returns true if the connection is active, false if connection is * broken. */ bool isConnected() override; #ifdef NXP_EXTNS /** * Closes the opened channel. */ void closeChannel(); /** * set default Interval timer timeout value. */ void setDefaultTimeout(int timeout); #endif private: //AppletConnection mAppletConnection; SBAccessController& mSBAccessController; IntervalTimer mTimer; int mTimeout; std::vector mSelectableAid; std::shared_ptr omapiSeService; std::shared_ptr eSEReader; std::shared_ptr session; std::shared_ptr channel; std::map> mVSReaders; #ifdef NXP_EXTNS /* Applet ID Weaver */ const std::vector kWeaverAID = {0xA0, 0x00, 0x00, 0x03, 0x96, 0x10, 0x10}; #endif OmapiTransport(const std::vector& mAppletAID) : ITransport(mAppletAID), mSBAccessController(SBAccessController::getInstance()), mTimeout(0), mSelectableAid(mAppletAID), omapiSeService(nullptr), eSEReader(nullptr), session(nullptr), channel(nullptr), mVSReaders({}) { #ifdef NXP_EXTNS mDeathRecipient = ::ndk::ScopedAIBinder_DeathRecipient( AIBinder_DeathRecipient_new(BinderDiedCallback)); #endif } bool initialize(); bool internalTransmitApdu( std::shared_ptr reader, std::vector apdu, std::vector& transmitResponse); #ifdef NXP_EXTNS ::ndk::ScopedAIBinder_DeathRecipient mDeathRecipient; std::mutex mCookieKeysMutex; std::vector mCookieKeys; static void BinderDiedCallback(void *cookie); bool internalProtectedTransmitApdu( std::shared_ptr reader, std::vector apdu, std::vector& transmitResponse); void prepareErrorRepsponse(std::vector& resp); bool openChannelToApplet(); #endif #ifdef INTERVAL_TIMER inline uint16_t getApduStatus(std::vector &inputData) { // Last two bytes are the status SW0SW1 uint8_t SW0 = inputData.at(inputData.size() - 2); uint8_t SW1 = inputData.at(inputData.size() - 1); return (SW0 << 8 | SW1); } #endif }; } // namespace keymint::javacard #endif