Gitiles
Code Review Sign In
gerrit.osmocom.org / pysim / 712251a6e0ce5649b1891def13d36b7dd029663b / . / pySim / commands.py
blob: 107f0f5879a6b68e628b5f99d3732280d49b3ad8 [file] [log] [blame]
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]1# -*- coding: utf-8 -*-
2
3""" pySim: SIM Card commands according to ISO 7816-4 and TS 11.11
4"""
5
6#
7# Copyright (C) 2009-2010 Sylvain Munaut <tnt@246tNt.com>
Harald Welte917d98c2021-04-21 11:51:25 +0200[diff] [blame]8# Copyright (C) 2010-2021 Harald Welte <laforge@gnumonks.org>
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]9#
10# This program is free software: you can redistribute it and/or modify
11# it under the terms of the GNU General Public License as published by
12# the Free Software Foundation, either version 2 of the License, or
13# (at your option) any later version.
14#
15# This program is distributed in the hope that it will be useful,
16# but WITHOUT ANY WARRANTY; without even the implied warranty of
17# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18# GNU General Public License for more details.
19#
20# You should have received a copy of the GNU General Public License
21# along with this program. If not, see <http://www.gnu.org/licenses/>.
22#
23
Harald Welte15fae982021-04-10 10:22:27 +0200[diff] [blame]24from construct import *
25from pySim.construct import LV
Philipp Maier796ca3d2021-11-01 17:13:57 +0100[diff] [blame]26from pySim.utils import rpad, b2h, h2b, sw_match, bertlv_encode_len, Hexstr, h2i, str_sanitize
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]27from pySim.exceptions import SwMatchError
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]28
29class SimCardCommands(object):
30 def __init__(self, transport):
Daniel Willmann677d41b2020-10-19 10:34:31 +0200[diff] [blame]31 self._tp = transport
Harald Welte0f96c022021-05-23 14:07:23 +0200[diff] [blame]32 self.cla_byte = "a0"
Philipp Maier41460862017-03-21 12:05:30 +0100[diff] [blame]33 self.sel_ctrl = "0000"
Jan Balke14b350f2015-01-26 11:15:25 +0100[diff] [blame]34
Philipp Maiercdfdd412019-12-20 13:39:24 +0100[diff] [blame]35 # Extract a single FCP item from TLV
36 def __parse_fcp(self, fcp):
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]37 # see also: ETSI TS 102 221, chapter 11.1.1.3.1 Response for MF,
38 # DF or ADF
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]39 from pytlv.TLV import TLV
Philipp Maier91f26d72019-03-20 12:12:51 +0100[diff] [blame]40 tlvparser = TLV(['82', '83', '84', 'a5', '8a', '8b', '8c', '80', 'ab', 'c6', '81', '88'])
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]41
42 # pytlv is case sensitive!
43 fcp = fcp.lower()
44
45 if fcp[0:2] != '62':
46 raise ValueError('Tag of the FCP template does not match, expected 62 but got %s'%fcp[0:2])
47
48 # Unfortunately the spec is not very clear if the FCP length is
49 # coded as one or two byte vale, so we have to try it out by
50 # checking if the length of the remaining TLV string matches
51 # what we get in the length field.
52 # See also ETSI TS 102 221, chapter 11.1.1.3.0 Base coding.
53 exp_tlv_len = int(fcp[2:4], 16)
Vadim Yanitskiy99affe12020-02-15 05:03:09 +0700[diff] [blame]54 if len(fcp[4:]) // 2 == exp_tlv_len:
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]55 skip = 4
56 else:
57 exp_tlv_len = int(fcp[2:6], 16)
Vadim Yanitskiy99affe12020-02-15 05:03:09 +0700[diff] [blame]58 if len(fcp[4:]) // 2 == exp_tlv_len:
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]59 skip = 6
60
61 # Skip FCP tag and length
62 tlv = fcp[skip:]
Philipp Maiercdfdd412019-12-20 13:39:24 +0100[diff] [blame]63 return tlvparser.parse(tlv)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]64
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]65 # Tell the length of a record by the card response
66 # USIMs respond with an FCP template, which is different
67 # from what SIMs responds. See also:
68 # USIM: ETSI TS 102 221, chapter 11.1.1.3 Response Data
69 # SIM: GSM 11.11, chapter 9.2.1 SELECT
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]70 def __record_len(self, r) -> int:
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]71 if self.sel_ctrl == "0004":
Philipp Maiercdfdd412019-12-20 13:39:24 +0100[diff] [blame]72 tlv_parsed = self.__parse_fcp(r[-1])
73 file_descriptor = tlv_parsed['82']
74 # See also ETSI TS 102 221, chapter 11.1.1.4.3 File Descriptor
75 return int(file_descriptor[4:8], 16)
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]76 else:
77 return int(r[-1][28:30], 16)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]78
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]79 # Tell the length of a binary file. See also comment
80 # above.
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]81 def __len(self, r) -> int:
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]82 if self.sel_ctrl == "0004":
Philipp Maiercdfdd412019-12-20 13:39:24 +0100[diff] [blame]83 tlv_parsed = self.__parse_fcp(r[-1])
84 return int(tlv_parsed['80'], 16)
Denis 'GNUtoo' Carikli84d2cb32019-09-12 01:46:25 +0200[diff] [blame]85 else:
86 return int(r[-1][4:8], 16)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]87
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]88 def get_atr(self) -> str:
89 """Return the ATR of the currently inserted card."""
Alexander Chemerisd2d660a2017-07-18 16:52:25 +0300[diff] [blame]90 return self._tp.get_atr()
91
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]92 def try_select_path(self, dir_list):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]93 """ Try to select a specified path
94
95 Args:
96 dir_list : list of hex-string FIDs
97 """
98
Harald Welteca673942020-06-03 15:19:40 +0200[diff] [blame]99 rv = []
100 if type(dir_list) is not list:
101 dir_list = [dir_list]
102 for i in dir_list:
103 data, sw = self._tp.send_apdu(self.cla_byte + "a4" + self.sel_ctrl + "02" + i)
104 rv.append((data, sw))
105 if sw != '9000':
106 return rv
107 return rv
108
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]109 def select_path(self, dir_list):
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]110 """Execute SELECT for an entire list/path of FIDs.
111
112 Args:
113 dir_list: list of FIDs representing the path to select
114
115 Returns:
116 list of return values (FCP in hex encoding) for each element of the path
117 """
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]118 rv = []
Vadim Yanitskiyedf873d2020-02-27 01:40:14 +0700[diff] [blame]119 if type(dir_list) is not list:
120 dir_list = [dir_list]
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]121 for i in dir_list:
Harald Welte85484a92021-01-21 16:08:56 +0100[diff] [blame]122 data, sw = self.select_file(i)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]123 rv.append(data)
124 return rv
125
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]126 def select_file(self, fid:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]127 """Execute SELECT a given file by FID.
128
129 Args:
130 fid : file identifier as hex string
131 """
132
Harald Welte85484a92021-01-21 16:08:56 +0100[diff] [blame]133 return self._tp.send_apdu_checksw(self.cla_byte + "a4" + self.sel_ctrl + "02" + fid)
134
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]135 def select_adf(self, aid:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]136 """Execute SELECT a given Applicaiton ADF.
137
138 Args:
139 aid : application identifier as hex string
140 """
141
Vadim Yanitskiy99affe12020-02-15 05:03:09 +0700[diff] [blame]142 aidlen = ("0" + format(len(aid) // 2, 'x'))[-2:]
Philipp Maier0ad5bcf2019-12-31 17:55:47 +0100[diff] [blame]143 return self._tp.send_apdu_checksw(self.cla_byte + "a4" + "0404" + aidlen + aid)
144
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]145 def read_binary(self, ef, length:int=None, offset:int=0):
146 """Execute READD BINARY.
147
148 Args:
149 ef : string or list of strings indicating name or path of transparent EF
150 length : number of bytes to read
151 offset : byte offset in file from which to start reading
152 """
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]153 r = self.select_path(ef)
Max5491c482019-01-03 11:29:25 +0100[diff] [blame]154 if len(r[-1]) == 0:
155 return (None, None)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]156 if length is None:
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]157 length = self.__len(r) - offset
Sebastian Viviani0e9f93f2020-04-17 16:42:09 +0100[diff] [blame]158 total_data = ''
Harald Welte611dd782021-10-14 20:44:23 +0200[diff] [blame]159 chunk_offset = 0
160 while chunk_offset < length:
161 chunk_len = min(255, length-chunk_offset)
162 pdu = self.cla_byte + 'b0%04x%02x' % (offset + chunk_offset, chunk_len)
Philipp Maier796ca3d2021-11-01 17:13:57 +0100[diff] [blame]163 try:
164 data, sw = self._tp.send_apdu_checksw(pdu)
165 except Exception as e:
166 raise ValueError('%s, failed to read (offset %d)' % (str_sanitize(str(e)), offset))
167 total_data += data
168 chunk_offset += chunk_len
Sebastian Viviani0e9f93f2020-04-17 16:42:09 +0100[diff] [blame]169 return total_data, sw
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]170
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]171 def update_binary(self, ef, data:str, offset:int=0, verify:bool=False, conserve:bool=False):
172 """Execute UPDATE BINARY.
173
174 Args:
175 ef : string or list of strings indicating name or path of transparent EF
176 data : hex string of data to be written
177 offset : byte offset in file from which to start writing
178 verify : Whether or not to verify data after write
179 """
Philipp Maier38c74f62021-03-17 17:19:52 +0100[diff] [blame]180 data_length = len(data) // 2
181
182 # Save write cycles by reading+comparing before write
183 if conserve:
184 data_current, sw = self.read_binary(ef, data_length, offset)
185 if data_current == data:
186 return None, sw
187
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]188 self.select_path(ef)
andrew-ma2e6dc032021-07-31 22:18:24 -0700[diff] [blame]189 total_data = ''
Harald Welte80901d62021-10-14 19:13:08 +0200[diff] [blame]190 chunk_offset = 0
andrew-ma2e6dc032021-07-31 22:18:24 -0700[diff] [blame]191 while chunk_offset < data_length:
192 chunk_len = min(255, data_length - chunk_offset)
193 # chunk_offset is bytes, but data slicing is hex chars, so we need to multiply by 2
Harald Welte80901d62021-10-14 19:13:08 +0200[diff] [blame]194 pdu = self.cla_byte + 'd6%04x%02x' % (offset + chunk_offset, chunk_len) + data[chunk_offset*2 : (chunk_offset+chunk_len)*2]
Philipp Maier796ca3d2021-11-01 17:13:57 +0100[diff] [blame]195 try:
196 chunk_data, chunk_sw = self._tp.send_apdu_checksw(pdu)
197 except Exception as e:
198 raise ValueError('%s, failed to write chunk (chunk_offset %d, chunk_len %d)' % \
199 (str_sanitize(str(e)), chunk_offset, chunk_len))
200 total_data += data
201 chunk_offset += chunk_len
Philipp Maier30eb8ca2020-05-11 22:51:37 +0200[diff] [blame]202 if verify:
203 self.verify_binary(ef, data, offset)
Philipp Maier796ca3d2021-11-01 17:13:57 +0100[diff] [blame]204 return total_data, chunk_sw
Philipp Maier30eb8ca2020-05-11 22:51:37 +0200[diff] [blame]205
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]206 def verify_binary(self, ef, data:str, offset:int=0):
207 """Verify contents of transparent EF.
208
209 Args:
210 ef : string or list of strings indicating name or path of transparent EF
211 data : hex string of expected data
212 offset : byte offset in file from which to start verifying
213 """
Philipp Maier30eb8ca2020-05-11 22:51:37 +0200[diff] [blame]214 res = self.read_binary(ef, len(data) // 2, offset)
215 if res[0].lower() != data.lower():
216 raise ValueError('Binary verification failed (expected %s, got %s)' % (data.lower(), res[0].lower()))
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]217
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]218 def read_record(self, ef, rec_no:int):
219 """Execute READ RECORD.
220
221 Args:
222 ef : string or list of strings indicating name or path of linear fixed EF
223 rec_no : record number to read
224 """
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]225 r = self.select_path(ef)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]226 rec_length = self.__record_len(r)
Jan Balke14b350f2015-01-26 11:15:25 +0100[diff] [blame]227 pdu = self.cla_byte + 'b2%02x04%02x' % (rec_no, rec_length)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]228 return self._tp.send_apdu(pdu)
229
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]230 def update_record(self, ef, rec_no:int, data:str, force_len:bool=False, verify:bool=False,
231 conserve:bool=False):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]232 """Execute UPDATE RECORD.
233
234 Args:
235 ef : string or list of strings indicating name or path of linear fixed EF
236 rec_no : record number to read
237 data : hex string of data to be written
238 force_len : enforce record length by using the actual data length
239 verify : verify data by re-reading the record
240 conserve : read record and compare it with data, skip write on match
241 """
Philipp Maier42804d72021-04-30 11:56:23 +0200[diff] [blame]242 res = self.select_path(ef)
243
244 if force_len:
245 # enforce the record length by the actual length of the given data input
Vadim Yanitskiy99affe12020-02-15 05:03:09 +0700[diff] [blame]246 rec_length = len(data) // 2
Philipp Maier42804d72021-04-30 11:56:23 +0200[diff] [blame]247 else:
248 # determine the record length from the select response of the file and pad
249 # the input data with 0xFF if necessary. In cases where the input data
250 # exceed we throw an exception.
251 rec_length = self.__record_len(res)
252 if (len(data) // 2 > rec_length):
253 raise ValueError('Data length exceeds record length (expected max %d, got %d)' % (rec_length, len(data) // 2))
254 elif (len(data) // 2 < rec_length):
255 data = rpad(data, rec_length * 2)
Philipp Maier38c74f62021-03-17 17:19:52 +0100[diff] [blame]256
257 # Save write cycles by reading+comparing before write
258 if conserve:
259 data_current, sw = self.read_record(ef, rec_no)
260 data_current = data_current[0:rec_length*2]
261 if data_current == data:
262 return None, sw
263
Jan Balke14b350f2015-01-26 11:15:25 +0100[diff] [blame]264 pdu = (self.cla_byte + 'dc%02x04%02x' % (rec_no, rec_length)) + data
Philipp Maier30eb8ca2020-05-11 22:51:37 +0200[diff] [blame]265 res = self._tp.send_apdu_checksw(pdu)
266 if verify:
267 self.verify_record(ef, rec_no, data)
268 return res
269
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]270 def verify_record(self, ef, rec_no:int, data:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]271 """Verify record against given data
272
273 Args:
274 ef : string or list of strings indicating name or path of linear fixed EF
275 rec_no : record number to read
276 data : hex string of data to be verified
277 """
Philipp Maier30eb8ca2020-05-11 22:51:37 +0200[diff] [blame]278 res = self.read_record(ef, rec_no)
279 if res[0].lower() != data.lower():
280 raise ValueError('Record verification failed (expected %s, got %s)' % (data.lower(), res[0].lower()))
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]281
282 def record_size(self, ef):
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]283 """Determine the record size of given file.
284
285 Args:
286 ef : string or list of strings indicating name or path of linear fixed EF
287 """
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]288 r = self.select_path(ef)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]289 return self.__record_len(r)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]290
291 def record_count(self, ef):
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]292 """Determine the number of records in given file.
293
294 Args:
295 ef : string or list of strings indicating name or path of linear fixed EF
296 """
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]297 r = self.select_path(ef)
Philipp Maier0e3fcaa2018-06-13 12:34:03 +0200[diff] [blame]298 return self.__len(r) // self.__record_len(r)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]299
Philipp Maier32daaf52020-05-11 21:48:33 +0200[diff] [blame]300 def binary_size(self, ef):
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]301 """Determine the size of given transparent file.
302
303 Args:
304 ef : string or list of strings indicating name or path of transparent EF
305 """
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]306 r = self.select_path(ef)
Philipp Maier32daaf52020-05-11 21:48:33 +0200[diff] [blame]307 return self.__len(r)
308
Harald Welte917d98c2021-04-21 11:51:25 +0200[diff] [blame]309 # TS 102 221 Section 11.3.1 low-level helper
310 def _retrieve_data(self, tag:int, first:bool=True):
311 if first:
312 pdu = '80cb008001%02x' % (tag)
313 else:
314 pdu = '80cb000000'
315 return self._tp.send_apdu_checksw(pdu)
316
Harald Welte917d98c2021-04-21 11:51:25 +0200[diff] [blame]317 def retrieve_data(self, ef, tag:int):
Philipp Maier51e4cb72021-10-29 16:48:31 +0200[diff] [blame]318 """Execute RETRIEVE DATA, see also TS 102 221 Section 11.3.1.
Harald Welte917d98c2021-04-21 11:51:25 +0200[diff] [blame]319
320 Args
321 ef : string or list of strings indicating name or path of transparent EF
322 tag : BER-TLV Tag of value to be retrieved
323 """
324 r = self.select_path(ef)
325 if len(r[-1]) == 0:
326 return (None, None)
327 total_data = ''
328 # retrieve first block
329 data, sw = self._retrieve_data(tag, first=True)
330 total_data += data
331 while sw == '62f1' or sw == '62f2':
332 data, sw = self._retrieve_data(tag, first=False)
333 total_data += data
334 return total_data, sw
335
336 # TS 102 221 Section 11.3.2 low-level helper
337 def _set_data(self, data:str, first:bool=True):
338 if first:
339 p1 = 0x80
340 else:
341 p1 = 0x00
342 if isinstance(data, bytes) or isinstance(data, bytearray):
343 data = b2h(data)
344 pdu = '80db00%02x%02x%s' % (p1, len(data)//2, data)
345 return self._tp.send_apdu_checksw(pdu)
346
347 def set_data(self, ef, tag:int, value:str, verify:bool=False, conserve:bool=False):
348 """Execute SET DATA.
349
350 Args
351 ef : string or list of strings indicating name or path of transparent EF
352 tag : BER-TLV Tag of value to be stored
353 value : BER-TLV value to be stored
354 """
355 r = self.select_path(ef)
356 if len(r[-1]) == 0:
357 return (None, None)
358
359 # in case of deleting the data, we only have 'tag' but no 'value'
360 if not value:
361 return self._set_data('%02x' % tag, first=True)
362
363 # FIXME: proper BER-TLV encode
364 tl = '%02x%s' % (tag, b2h(bertlv_encode_len(len(value)//2)))
365 tlv = tl + value
366 tlv_bin = h2b(tlv)
367
368 first = True
369 total_len = len(tlv_bin)
370 remaining = tlv_bin
371 while len(remaining) > 0:
372 fragment = remaining[:255]
373 rdata, sw = self._set_data(fragment, first=first)
374 first = False
375 remaining = remaining[255:]
376 return rdata, sw
377
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]378 def run_gsm(self, rand:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]379 """Execute RUN GSM ALGORITHM.
380
381 Args:
382 rand : 16 byte random data as hex string (RAND)
383 """
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]384 if len(rand) != 32:
385 raise ValueError('Invalid rand')
Harald Weltec0499c82021-01-21 16:06:50 +0100[diff] [blame]386 self.select_path(['3f00', '7f20'])
Jan Balke14b350f2015-01-26 11:15:25 +0100[diff] [blame]387 return self._tp.send_apdu(self.cla_byte + '88000010' + rand)
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]388
Harald Welte15fae982021-04-10 10:22:27 +0200[diff] [blame]389 def authenticate(self, rand:str, autn:str, context='3g'):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]390 """Execute AUTHENTICATE (USIM/ISIM).
391
392 Args:
393 rand : 16 byte random data as hex string (RAND)
394 autn : 8 byte Autentication Token (AUTN)
395 context : 16 byte random data ('3g' or 'gsm')
396 """
Harald Welte15fae982021-04-10 10:22:27 +0200[diff] [blame]397 # 3GPP TS 31.102 Section 7.1.2.1
398 AuthCmd3G = Struct('rand'/LV, 'autn'/Optional(LV))
399 AuthResp3GSyncFail = Struct(Const(b'\xDC'), 'auts'/LV)
400 AuthResp3GSuccess = Struct(Const(b'\xDB'), 'res'/LV, 'ck'/LV, 'ik'/LV, 'kc'/Optional(LV))
401 AuthResp3G = Select(AuthResp3GSyncFail, AuthResp3GSuccess)
402 # build parameters
403 cmd_data = {'rand': rand, 'autn': autn}
404 if context == '3g':
405 p2 = '81'
406 elif context == 'gsm':
407 p2 = '80'
Harald Welte59f9a382021-05-22 00:17:26 +0200[diff] [blame]408 (data, sw) = self._tp.send_apdu_constr_checksw(self.cla_byte, '88', '00', p2, AuthCmd3G, cmd_data, AuthResp3G)
Harald Welte15fae982021-04-10 10:22:27 +0200[diff] [blame]409 if 'auts' in data:
410 ret = {'synchronisation_failure': data}
411 else:
412 ret = {'successful_3g_authentication': data}
413 return (ret, sw)
414
Harald Welte34b05d32021-05-25 22:03:13 +0200[diff] [blame]415 def status(self):
416 """Execute a STATUS command as per TS 102 221 Section 11.1.2."""
417 return self._tp.send_apdu_checksw('80F20000ff')
418
Harald Weltea4631612021-04-10 18:17:55 +0200[diff] [blame]419 def deactivate_file(self):
420 """Execute DECATIVATE FILE command as per TS 102 221 Section 11.1.14."""
421 return self._tp.send_apdu_constr_checksw(self.cla_byte, '04', '00', '00', None, None, None)
422
Harald Welte485692b2021-05-25 22:21:44 +0200[diff] [blame]423 def activate_file(self, fid):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]424 """Execute ACTIVATE FILE command as per TS 102 221 Section 11.1.15.
425
426 Args:
427 fid : file identifier as hex string
428 """
Harald Welte485692b2021-05-25 22:21:44 +0200[diff] [blame]429 return self._tp.send_apdu_checksw(self.cla_byte + '44000002' + fid)
Harald Weltea4631612021-04-10 18:17:55 +0200[diff] [blame]430
Harald Welte703f9332021-04-10 18:39:32 +0200[diff] [blame]431 def manage_channel(self, mode='open', lchan_nr=0):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]432 """Execute MANAGE CHANNEL command as per TS 102 221 Section 11.1.17.
433
434 Args:
435 mode : logical channel operation code ('open' or 'close')
436 lchan_nr : logical channel number (1-19, 0=assigned by UICC)
437 """
Harald Welte703f9332021-04-10 18:39:32 +0200[diff] [blame]438 if mode == 'close':
439 p1 = 0x80
440 else:
441 p1 = 0x00
442 pdu = self.cla_byte + '70%02x%02x00' % (p1, lchan_nr)
443 return self._tp.send_apdu_checksw(pdu)
444
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]445 def reset_card(self):
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]446 """Physically reset the card"""
Sylvain Munaut76504e02010-12-07 00:24:32 +0100[diff] [blame]447 return self._tp.reset_card()
448
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]449 def _chv_process_sw(self, op_name, chv_no, pin_code, sw):
450 if sw_match(sw, '63cx'):
451 raise RuntimeError('Failed to %s chv_no 0x%02X with code 0x%s, %i tries left.' %
452 (op_name, chv_no, b2h(pin_code).upper(), int(sw[3])))
453 elif (sw != '9000'):
454 raise SwMatchError(sw, '9000')
455
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]456 def verify_chv(self, chv_no:int, code:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]457 """Verify a given CHV (Card Holder Verification == PIN)
458
459 Args:
460 chv_no : chv number (1=CHV1, 2=CHV2, ...)
461 code : chv code as hex string
462 """
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]463 fc = rpad(b2h(code), 16)
Philipp Maiera31e9a92021-03-11 13:46:32 +0100[diff] [blame]464 data, sw = self._tp.send_apdu(self.cla_byte + '2000' + ('%02X' % chv_no) + '08' + fc)
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]465 self._chv_process_sw('verify', chv_no, code, sw)
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]466 return (data, sw)
467
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]468 def unblock_chv(self, chv_no:int, puk_code:str, pin_code:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]469 """Unblock a given CHV (Card Holder Verification == PIN)
470
471 Args:
472 chv_no : chv number (1=CHV1, 2=CHV2, ...)
473 puk_code : puk code as hex string
474 pin_code : new chv code as hex string
475 """
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]476 fc = rpad(b2h(puk_code), 16) + rpad(b2h(pin_code), 16)
477 data, sw = self._tp.send_apdu(self.cla_byte + '2C00' + ('%02X' % chv_no) + '10' + fc)
478 self._chv_process_sw('unblock', chv_no, pin_code, sw)
479 return (data, sw)
480
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]481 def change_chv(self, chv_no:int, pin_code:str, new_pin_code:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]482 """Change a given CHV (Card Holder Verification == PIN)
483
484 Args:
485 chv_no : chv number (1=CHV1, 2=CHV2, ...)
486 pin_code : current chv code as hex string
487 new_pin_code : new chv code as hex string
488 """
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]489 fc = rpad(b2h(pin_code), 16) + rpad(b2h(new_pin_code), 16)
490 data, sw = self._tp.send_apdu(self.cla_byte + '2400' + ('%02X' % chv_no) + '10' + fc)
491 self._chv_process_sw('change', chv_no, pin_code, sw)
492 return (data, sw)
493
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]494 def disable_chv(self, chv_no:int, pin_code:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]495 """Disable a given CHV (Card Holder Verification == PIN)
496
497 Args:
498 chv_no : chv number (1=CHV1, 2=CHV2, ...)
499 pin_code : current chv code as hex string
500 new_pin_code : new chv code as hex string
501 """
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]502 fc = rpad(b2h(pin_code), 16)
503 data, sw = self._tp.send_apdu(self.cla_byte + '2600' + ('%02X' % chv_no) + '08' + fc)
504 self._chv_process_sw('disable', chv_no, pin_code, sw)
505 return (data, sw)
506
Harald Welteee3501f2021-04-02 13:00:18 +0200[diff] [blame]507 def enable_chv(self, chv_no:int, pin_code:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]508 """Enable a given CHV (Card Holder Verification == PIN)
509
510 Args:
511 chv_no : chv number (1=CHV1, 2=CHV2, ...)
512 pin_code : chv code as hex string
513 """
Philipp Maier46f09af2021-03-25 20:24:27 +0100[diff] [blame]514 fc = rpad(b2h(pin_code), 16)
515 data, sw = self._tp.send_apdu(self.cla_byte + '2800' + ('%02X' % chv_no) + '08' + fc)
516 self._chv_process_sw('enable', chv_no, pin_code, sw)
517 return (data, sw)
Harald Weltef2011662021-05-24 23:19:30 +0200[diff] [blame]518
519 def envelope(self, payload:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]520 """Send one ENVELOPE command to the SIM
521
522 Args:
523 payload : payload as hex string
524 """
Harald Weltef2011662021-05-24 23:19:30 +0200[diff] [blame]525 return self._tp.send_apdu_checksw('80c20000%02x%s' % (len(payload)//2, payload))
Harald Welte846a8982021-10-08 15:47:16 +0200[diff] [blame]526
527 def terminal_profile(self, payload:str):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]528 """Send TERMINAL PROFILE to card
529
530 Args:
531 payload : payload as hex string
532 """
Harald Welte846a8982021-10-08 15:47:16 +0200[diff] [blame]533 data_length = len(payload) // 2
534 data, sw = self._tp.send_apdu(('80100000%02x' % data_length) + payload)
535 return (data, sw)
Harald Welteec950532021-10-20 13:09:00 +0200[diff] [blame]536
537 # ETSI TS 102 221 11.1.22
538 def suspend_uicc(self, min_len_secs:int=60, max_len_secs:int=43200):
Philipp Maier712251a2021-11-04 17:09:37 +0100[diff] [blame^]539 """Send SUSPEND UICC to the card.
540
541 Args:
542 min_len_secs : mimumum suspend time seconds
543 max_len_secs : maximum suspend time seconds
544 """
Harald Welteec950532021-10-20 13:09:00 +0200[diff] [blame]545 def encode_duration(secs:int) -> Hexstr:
546 if secs >= 10*24*60*60:
547 return '04%02x' % (secs // (10*24*60*60))
548 elif secs >= 24*60*60:
549 return '03%02x' % (secs // (24*60*60))
550 elif secs >= 60*60:
551 return '02%02x' % (secs // (60*60))
552 elif secs >= 60:
553 return '01%02x' % (secs // 60)
554 else:
555 return '00%02x' % secs
556 def decode_duration(enc:Hexstr) -> int:
557 time_unit = enc[:2]
558 length = h2i(enc[2:4])
559 if time_unit == '04':
560 return length * 10*24*60*60
561 elif time_unit == '03':
562 return length * 24*60*60
563 elif time_unit == '02':
564 return length * 60*60
565 elif time_unit == '01':
566 return length * 60
567 elif time_unit == '00':
568 return length
569 else:
570 raise ValueError('Time unit must be 0x00..0x04')
571 min_dur_enc = encode_duration(min_len_secs)
572 max_dur_enc = encode_duration(max_len_secs)
573 data, sw = self._tp.send_apdu_checksw('8076000004' + min_dur_enc + max_dur_enc)
574 negotiated_duration_secs = decode_duration(data[:4])
575 resume_token = data[4:]
576 return (negotiated_duration_secs, resume_token, sw)