dearsky/pico-hsm
1
0
Fork 0
Code Issues 17 Pull Requests 4 Actions Packages Projects Releases 26 Wiki Activity

Adding check for device options whether it can reset retry counter with PIN or without.

Browse Source 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
This commit is contained in:
Pol Henarejos
2022-04-03 20:40:16 +02:00
parent b1121718db
commit 85ff92c4de
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/hsm/sc_hsm.c
View File

@@ -478,6 +478,7 @@ static int cmd_verify() {
} }
static int cmd_reset_retry() { static int cmd_reset_retry() {
uint16_t opts = get_device_options();
if (P1(apdu) == 0x0) { if (P1(apdu) == 0x0) {
if (P2(apdu) == 0x81) { if (P2(apdu) == 0x81) {
if (!file_sopin || !file_pin1) { if (!file_sopin || !file_pin1) {
@@ -488,6 +489,8 @@ static int cmd_reset_retry() {
} }
if (apdu.cmd_apdu_data_len <= 8) if (apdu.cmd_apdu_data_len <= 8)
return SW_WRONG_LENGTH(); return SW_WRONG_LENGTH();
if (!(opts & HSM_OPT_RRC))
return SW_COMMAND_NOT_ALLOWED();
uint16_t r = check_pin(file_sopin, apdu.cmd_apdu_data, 8); uint16_t r = check_pin(file_sopin, apdu.cmd_apdu_data, 8);
if (r != 0x9000) if (r != 0x9000)
return r; return r;
@@ -513,6 +516,8 @@ static int cmd_reset_retry() {
} }
if (apdu.cmd_apdu_data_len != 8) if (apdu.cmd_apdu_data_len != 8)
return SW_WRONG_LENGTH(); return SW_WRONG_LENGTH();
if (!(opts & HSM_OPT_RRC) || !(opts & HSM_OPT_RRC_RESET_ONLY))
return SW_COMMAND_NOT_ALLOWED();
uint16_t r = check_pin(file_sopin, apdu.cmd_apdu_data, 8); uint16_t r = check_pin(file_sopin, apdu.cmd_apdu_data, 8);
if (r != 0x9000) if (r != 0x9000)
return r; return r;