Bug fixes

Chirag Pathak · Chirag Pathak · commit 70c0106d67e2 · 2021-08-02T20:37:36.000Z
diff --git a/Applet/src/com/android/javacard/keymaster/KMKeymasterApplet.java b/Applet/src/com/android/javacard/keymaster/KMKeymasterApplet.java
@@ -691,8 +691,8 @@ private void processGetHmacSharingParamCmd(APDU apdu) {
     short seed = KMByteBlob.instance((short) 0);
     KMHmacSharingParameters.cast(params).setNonce(nonce);
     KMHmacSharingParameters.cast(params).setSeed(seed);
-    print(KMByteBlob.cast(nonce).getBuffer(), KMByteBlob.cast(nonce).getStartOff(),
-        KMByteBlob.cast(nonce).length());
+    //print(KMByteBlob.cast(nonce).getBuffer(), KMByteBlob.cast(nonce).getStartOff(),
+    //    KMByteBlob.cast(nonce).length());
     // prepare the response
     short resp = KMArray.instance((short) 2);
     KMArray.cast(resp).add((short) 0, KMInteger.uint_16(KMError.OK));
@@ -771,9 +771,9 @@ private void processComputeSharedHmacCmd(APDU apdu) {
     short found = 0;
     //tmpVariables[9]
     short nonce = repository.getHmacNonce();
-    print(KMByteBlob.cast(nonce).getBuffer(),
-        KMByteBlob.cast(nonce).getStartOff(),
-        KMByteBlob.cast(nonce).length());
+    //print(KMByteBlob.cast(nonce).getBuffer(),
+    //    KMByteBlob.cast(nonce).getStartOff(),
+    //    KMByteBlob.cast(nonce).length());
 
     while (paramIndex < paramsLen) {
       // read HmacSharingParam
@@ -816,11 +816,11 @@ private void processComputeSharedHmacCmd(APDU apdu) {
       // Check if the nonce generated here is present in the hmacSharingParameters array.
       // Otherwise throw INVALID_ARGUMENT error.
       if (found == 1) {
-        print(repository.getHeap(),
-            (short) (concateBuffer + bufferIndex),nonceLen);
-        print(KMByteBlob.cast(nonce).getBuffer(),
-            KMByteBlob.cast(nonce).getStartOff(),
-            nonceLen);
+        //print(repository.getHeap(),
+        //    (short) (concateBuffer + bufferIndex),nonceLen);
+        //print(KMByteBlob.cast(nonce).getBuffer(),
+        //    KMByteBlob.cast(nonce).getStartOff(),
+        //    nonceLen);
         if (0
             == Util.arrayCompare(
             repository.getHeap(),
@@ -1344,20 +1344,10 @@ protected short getBootKey(byte[] scratchPad){
     short len = seProvider.getVerifiedBootHash(scratchPad,(short)0);
     if(len != VERIFIED_BOOT_KEY_SIZE) {
       KMException.throwIt(KMError.UNKNOWN_ERROR);
+    }
     return KMByteBlob.instance(scratchPad,(short)0, VERIFIED_BOOT_KEY_SIZE);
   }
-  
-  private boolean isEmpty(byte[] buf, short offset, short len) {
-    boolean empty = true;
-    short index = 0;
-    while (index < len) {
-      if (buf[(short) (index + offset)] != 0) {
-        empty = false;
-        break;
-      }
-      index++;
-  }
-      
+
   protected short getVerifiedBootHash(byte[] scratchPad){
     Util.arrayFillNonAtomic(scratchPad, (short)0, VERIFIED_BOOT_HASH_SIZE, (byte)0);
     short len = seProvider.getVerifiedBootHash(scratchPad,(short)0);
@@ -3023,6 +3013,18 @@ private void processInitStrongBoxCmd(APDU apdu) {
     setOsVersion(osVersion);
     setOsPatchLevel(osPatchLevel);
     setVendorPatchLevel(vendorPatchLevel);
+    System.out.println("============ OS Version et al ==========");
+   // print(KMInteger.cast(osVersion).getBuffer(),
+   //     KMInteger.cast(osVersion).getStartOff(),
+   //     KMInteger.cast(osVersion).length());
+
+   // print(KMInteger.cast(osPatchLevel).getBuffer(),
+   //     KMInteger.cast(osPatchLevel).getStartOff(),
+   //     KMInteger.cast(osPatchLevel).length());
+
+   // print(KMInteger.cast(vendorPatchLevel).getBuffer(),
+   //     KMInteger.cast(vendorPatchLevel).getStartOff(),
+   //     KMInteger.cast(vendorPatchLevel).length());
   }
 
   public void reboot(){
@@ -3052,14 +3054,14 @@ protected void setOsVersion(short version){
         KMInteger.cast(version).length());
   }
 
-  protected void setVendorPatchLevel(short patch){
+  protected void setOsPatchLevel(short patch){
     repository.setOsPatch(
         KMInteger.cast(patch).getBuffer(),
         KMInteger.cast(patch).getStartOff(),
         KMInteger.cast(patch).length());
   }
 
-  protected void setOsPatchLevel(short patch){
+  protected void setVendorPatchLevel(short patch){
     repository.setVendorPatchLevel(
         KMInteger.cast(patch).getBuffer(),
         KMInteger.cast(patch).getStartOff(),
@@ -3129,15 +3131,15 @@ private void processGenerateKey(APDU apdu) {
     KMArray.cast(resp).add((short) 3, data[CERTIFICATE]);
     sendOutgoing(apdu, resp);
   }
-
+/*
   private static void print(byte[] buf, short start, short length){
     StringBuilder sb = new StringBuilder(length * 2);
     for(short i = start; i < (start+length); i ++){
       sb.append(String.format("%02x", buf[i]));
     }
     System.out.println( sb.toString());
   }
-
+*/
   private  void generateAttestation(byte[] scratchPad){
     KMAttestationCert cert = makeCert(scratchPad);
     if(cert == null) {// No certificate
@@ -3155,9 +3157,9 @@ private  void generateAttestation(byte[] scratchPad){
     KMByteBlob.cast(certData).setStartOff(cert.getCertStart());
     KMByteBlob.cast(certData).setLength(cert.getCertLength());
 
-    print(KMByteBlob.cast(certData).getBuffer(),
-        KMByteBlob.cast(certData).getStartOff(),
-        KMByteBlob.cast(certData).length());
+    //print(KMByteBlob.cast(certData).getBuffer(),
+    //    KMByteBlob.cast(certData).getStartOff(),
+    //    KMByteBlob.cast(certData).length());
     // Initialize the certificate as array of blob
     data[CERTIFICATE] = KMArray.instance((short)1);
     KMArray.cast(data[CERTIFICATE]).add((short)0, certData);
diff --git a/Applet/src/com/android/javacard/keymaster/KMRepository.java b/Applet/src/com/android/javacard/keymaster/KMRepository.java
@@ -59,7 +59,6 @@ public class KMRepository implements KMUpgradable {
   public static final short DEVICE_LOCK_FLAG_SIZE = 1;
 
   // Class Attributes
- // private Object[] operationStateTable;
   private byte[] heap;
   private short heapIndex;
   private byte[] dataTable;
@@ -288,48 +287,6 @@ public short getOsPatch() {
     }
   }
 
-/*
-  public void deleteAttIds() {
-    clearDataEntry(ATT_ID_BRAND);
-    clearDataEntry(ATT_ID_MEID);
-    clearDataEntry(ATT_ID_DEVICE);
-    clearDataEntry(ATT_ID_IMEI);
-    clearDataEntry(ATT_ID_MODEL);
-    clearDataEntry(ATT_ID_PRODUCT);
-    clearDataEntry(ATT_ID_SERIAL);
-    clearDataEntry(ATT_ID_MANUFACTURER);
-  }
-
-
-  public short getBootPatchLevel() {
-    short blob = readData(BOOT_PATCH_LEVEL);
-    if (blob != 0) {
-      return KMInteger.uint_32(
-          KMByteBlob.cast(blob).getBuffer(), KMByteBlob.cast(blob).getStartOff());
-    } else {
-      return KMInteger.uint_32(zero, (short) 0);
-    }
-  }
-
-  public short getVerifiedBootKey() {
-    return readData(BOOT_VERIFIED_BOOT_KEY);
-  }
-
-  public short getVerifiedBootHash() {
-    return readData(BOOT_VERIFIED_BOOT_HASH);
-  }
-
-  public boolean getBootLoaderLock() {
-    short blob = readData(BOOT_DEVICE_LOCKED_STATUS);
-    return (byte) ((getHeap())[KMByteBlob.cast(blob).getStartOff()] & 0xFE) != 0;
-  }
-
-  public byte getBootState() {
-    short blob = readData(BOOT_VERIFIED_BOOT_STATE);
-    return (getHeap())[KMByteBlob.cast(blob).getStartOff()];
-  }
-*/
-
   public boolean getDeviceLock() {
     short blob = readData(DEVICE_LOCKED);
     return (byte) ((getHeap())[KMByteBlob.cast(blob).getStartOff()] & 0xFE) != 0;
@@ -401,46 +358,6 @@ public void setOsPatch(byte[] buf, short start, short len) {
     }
     writeDataEntry(BOOT_OS_PATCH, buf, start, len);
   }
-/*
-
-  public void setBootPatchLevel(byte[] buf, short start, short len) {
-    if (len != BOOT_PATCH_SIZE) {
-      KMException.throwIt(KMError.INVALID_INPUT_LENGTH);
-    }
-    writeDataEntry(BOOT_PATCH_LEVEL, buf, start, len);
-  }
-
-  public void setBootloaderLocked(boolean flag) {
-    short start = alloc(DEVICE_LOCK_FLAG_SIZE);
-    if (flag) {
-      (getHeap())[start] = (byte) ((getHeap())[start] | 0x01);
-    } else {
-      (getHeap())[start] = (byte) ((getHeap())[start] & 0xFE);
-    }
-    writeDataEntry(BOOT_DEVICE_LOCKED_STATUS, getHeap(), start, DEVICE_LOCK_FLAG_SIZE);
-  }
-
-  public void setVerifiedBootKey(byte[] buf, short start, short len) {
-    if (len > BOOT_KEY_MAX_SIZE) {
-      KMException.throwIt(KMError.INVALID_INPUT_LENGTH);
-    }
-    writeDataEntry(BOOT_VERIFIED_BOOT_KEY, buf, start, len);
-  }
-
-
-  public void setVerifiedBootHash(byte[] buf, short start, short len) {
-    if (len > BOOT_HASH_MAX_SIZE) {
-      KMException.throwIt(KMError.INVALID_INPUT_LENGTH);
-    }
-    writeDataEntry(BOOT_VERIFIED_BOOT_HASH, buf, start, len);
-  }
-
-  public void setBootState(byte state) {
-    short start = alloc(BOOT_STATE_SIZE);
-    (getHeap())[start] = state;
-    writeDataEntry(BOOT_VERIFIED_BOOT_STATE, getHeap(), start, BOOT_STATE_SIZE);
-  }
-*/
   @Override
   public void onSave(Element ele) {
     ele.write(dataIndex);
