#include #include #include #include "ta_logger.h" #include "tzWrappers/TzwMemory.h" #include "tzWrappers/TzwString.h" #include "tzWrappers/TzwAuth.h" #include "ifaa_ta_biz.h" #include "ifaa_ta_common.h" #include "ifaa_ta_vendor.h" #include "ifaa_mem_utils.h" #include "ifaa_version_number.h" #include "ifaa_fingerprint_id_table.h" #define EXTRACT_DATA(data) \ vlb_t data = {NULL,0}; \ if (in_len < sizeof(uint32_t)) { \ LOG_E("**NO data available**"); \ ret = IFAA_ERR_BUF_TOO_SHORT; \ break; \ } \ { \ uint32_t total_len; \ data.len = read32(in_ptr); \ total_len = sizeof(uint32_t) + data.len; \ if (in_len < total_len) { \ LOG_E("*IFAA_ERR_BUF_TOO_SHORT*"); \ ret = IFAA_ERR_BUF_TOO_SHORT; \ break; \ } \ data.buf = in_ptr + sizeof(uint32_t); \ in_ptr += total_len; \ in_len -= total_len; \ logByteArrayHex(data.buf, data.len, #data); \ } IFAA_Result IFAA_TaInvokeCmd(uint8_t *in, uint32_t in_len, uint8_t *out, uint32_t *out_len) { IFAA_Result ret = IFAA_ERR_UNKNOWN; vlb_t res = {0, }; uint8_t *in_ptr = in; uint32_t cmd_id = 0; if (in == NULL || out == NULL || in_len == 0 || out_len == NULL) { ret = IFAA_ERR_BAD_PARAM; LOG_E("Invalid parameters"); goto exit; } #ifdef __DEV_DEBUG__ logByteArrayHex(in, in_len, "request data"); #endif in_ptr += sizeof(uint32_t); do { EXTRACT_DATA(signature); EXTRACT_DATA(package_name); } while (false); if (ret == IFAA_ERR_BUF_TOO_SHORT) { LOG_E("input parameters is too short, in_len is : 0x%08x", in_len); goto exit; } else { if (in_len >= sizeof(uint32_t)) { LOG_D("in_len is : 0x%08x", in_len); cmd_id = read32(in_ptr); in_ptr += sizeof(uint32_t); } else { LOG_E("input parameters is less than uint32, in_len is : 0x%08x", in_len); goto exit; } } LOG_I("cmd_id: 0x%08x(%s)", cmd_id, IFAA_getCmdString(cmd_id)); #ifdef __IFAA_TEST_MODE // TODO: memory MIGHT leakage in some case(DO NOT CARE) do{ uint32_t shrink_size = *out_len - 0x8; res.buf = (uint8_t *) tzwMalloc(shrink_size); if (NULL == res.buf) { LOG_E("malloc failed."); return IFAA_ERR_OUT_OF_MEM; } res.len = shrink_size; LOG_D("out_len is : 0x%08x, res.len: 0x%08x", *out_len, res.len); }while(0); #endif switch (cmd_id) { case IFAA_TA_CMD_GET_DEVICE_ID: { ret = ifaa_tz_get_device_id(&res); if (ret != IFAA_ERR_SUCCESS) { LOG_E("failed to get deviceid"); res.len = 0; } break; } case IFAA_TA_CMD_REGISTER: { EXTRACT_DATA(req); ret = ifaa_tz_register(&req, &res); if (ret != IFAA_ERR_SUCCESS) { LOG_E("failed to register"); res.len = 0; } break; } case IFAA_TA_CMD_AUTHENTICATE: { EXTRACT_DATA(req); ret = ifaa_tz_authenticate(&req, &res); if (ret != IFAA_ERR_SUCCESS) { LOG_E("failed to authenticate"); res.len = 0; } break; } case IFAA_TA_CMD_DEREGISTER: { EXTRACT_DATA(req); ret = ifaa_tz_deregister(&req); res.len = 0; break; } case IFAA_TA_CMD_QUERY_STATUS: { EXTRACT_DATA(token); ret = ifaa_tz_query_status(&token, &res); if (ret != IFAA_ERR_SUCCESS) { LOG_E("failed to get status"); res.len = 0; } break; } case IFAA_TA_CMD_GET_PROTOCOL_VERSION: { ret = ifaa_tz_get_version(&res); if (ret != IFAA_ERR_SUCCESS) { LOG_E("failed to get version"); res.len = 0; } break; } case IFAA_TA_CMD_GET_SKPM_INJECT_STATE: { ret = ifaa_tz_get_skpm_inject_state(); res.len = 0; res.buf = NULL; } break; case IFAA_TA_CMD_PROVISIONING_KEY_HANDLE: { LOG_D("cmd : IFAA_TA_CMD_PROVISIONING_KEY_HANDLE"); uint32_t skpm_key_handle_length = read32(in_ptr); LOG_D("skpm_key_handle_length:%d", skpm_key_handle_length); skpm_key_handle_length += sizeof(uint32_t); LOG_D("skpm_key_handle_length:%d", skpm_key_handle_length); ret = ifaa_tz_get_skpm_inject_state(); if (ret != IFAA_ERR_SUCCESS) { ret = ifaa_tz_skpm_provision_operation(skpm_key_handle_length, in_ptr); } // ret =-1; res.len = 0; res.buf = NULL; break; } case IFAA_TA_CMD_SET_ID_LIST: { LOG_D("cmd: set id list"); EXTRACT_DATA(idlist); ret = ifaa_tz_update_fid(&idlist); if(ret != IFAA_ERR_SUCCESS) { LOG_E("IFAA_TA_CMD_SET_ID_LIST failed ret = 0x%08x", ret); } res.len = 0; res.buf = NULL; break; } case IFAA_TA_CMD_GET_ID_LIST: { LOG_D("cmd : IFAA_TA_CMD_GET_ID_LIST, in_len = %d", in_len); EXTRACT_DATA(idlist); ret = ifaa_tz_update_fid(&idlist); if(ret != IFAA_ERR_SUCCESS) { LOG_E("IFAA_TA_CMD_GET_ID_LIST failed ret = 0x%08x", ret); } res.buf = (uint8_t *) tzwMalloc(8*FID_TABLE_MAX); if(res.buf == NULL) { res.len = 0; ret = IFAA_ERR_MALLOC_FAILED; break; } ret = IFAA_GetFpEnrolledIdList(res.buf, &res.len); if (ret != IFAA_ERR_SUCCESS || res.len % 8 != 0) { LOG_E("IFAA_TA_CMD_GET_ID_LIST get idlist failed., ret = 0x%08x, len = %d", ret, res.len); ret = IFAA_ERR_GET_ID_LIST; res.len = 0; } else { #ifdef __DEV_DEBUG__ int cnt = res.len/8; LOG_D("enrolled id cnt = %d", cnt); for(int i = 0; i *out_len) { LOG_E("out_len is too short: %d, actual response len: %d", *out_len, res.len + 8); ret = IFAA_ERR_BUF_TOO_SHORT; res.len = *out_len - 8; } *out_len = res.len + 8; write32(out, ret); /* FOR IFAA TA ERROR LOG * +-------------+---------------+-------------+----------------------+-------------------- * | ret | taErrorLogLen | cmd_id | IFAA_VERSION_NUMBER | Device_id | --- * +---4bytes----+-----4bytes----+---4bytes----+--------12bytes-------+----48bytes---+---- */ if (IFAA_ERR_SUCCESS != ret) { uint32_t taErrorLogLen = res.len + 64 ; write32(out + 4, taErrorLogLen); LOG_D("IFAA_PRINT_ERROR_LOG ret is: 0x%08x",ret); write32(out + 8,cmd_id); for(int i = 0; i < IFAA_VERSION_NUMBER_MEM_SIZE; i++){ *(out + 12 + i) = IFAA_VERSION_NUMBER [i]; } //get DeviceID ifaa_tz_get_device_id(&res); uint8_t *tempResBuf = res.buf ; for(int j = 0;j < 8; j = j + 2){ *(out + 24 + j) = tempResBuf [j + 1]; *(out + 24 + j + 1) = tempResBuf [j]; } memcpy(out + 24 + 8, res.buf + 8, 40); /*for(int i = 0; i < 48; i++){ LOG_D("IFAA_PRINT_ERROR_LOG *(out +24 + %d ) is %08x",i,*(out + 24 + i)); }*/ *out_len += taErrorLogLen; }else{ write32(out + 4, res.len); } if ((res.buf != NULL) && (IFAA_ERR_SUCCESS == ret)) { memcpy(out + 8, res.buf, res.len); LOG_D("res.len :%d", res.len); tzwFree(res.buf); res.buf = NULL; } LOG_D("Output buffer length: %d", *out_len); exit: return ret; }