1 /*
2  * This file and its contents are supplied under the terms of the
3  * Common Development and Distribution License ("CDDL"), version 1.0.
4  * You may only use this file in accordance with the terms of version
5  * 1.0 of the CDDL.
6  *
7  * A full copy of the text of the CDDL should have accompanied this
8  * source.  A copy of the CDDL is also available via the Internet at
9  * http://www.illumos.org/license/CDDL.
10  */
11 
12 /*
13  * Copyright 2019, Joyent, Inc.
14  */
15 
16 /*
17  * Open a YubiKey class device read-only and try to get the basic information
18  * applet through an APDU, which should fail. Try to get the status, which
19  * should succeed, and attempt to power off, which should fail.
20  */
21 
22 #include <err.h>
23 #include <stdlib.h>
24 #include <sys/types.h>
25 #include <sys/stat.h>
26 #include <fcntl.h>
27 #include <strings.h>
28 #include <unistd.h>
29 #include <errno.h>
30 
31 #include <sys/usb/clients/ccid/uccid.h>
32 
33 static const uint8_t yk_req[] = {
34 	0x00, 0xa4, 0x04, 0x00, 0x07, 0xa0, 0x00, 0x00, 0x05, 0x27, 0x20, 0x01
35 };
36 
37 int
38 main(int argc, char *argv[])
39 {
40 	int fd, ret;
41 	uccid_cmd_icc_modify_t uci;
42 	uccid_cmd_txn_begin_t begin;
43 	uccid_cmd_status_t ucs;
44 	uint8_t buf[UCCID_APDU_SIZE_MAX];
45 
46 	if (argc != 2) {
47 		errx(EXIT_FAILURE, "missing required ccid path");
48 	}
49 
50 	if ((fd = open(argv[1], O_RDONLY)) < 0) {
51 		err(EXIT_FAILURE, "failed to open %s", argv[1]);
52 	}
53 
54 	bzero(&begin, sizeof (begin));
55 	begin.uct_version = UCCID_CURRENT_VERSION;
56 	if (ioctl(fd, UCCID_CMD_TXN_BEGIN, &begin) == 0) {
57 		errx(EXIT_FAILURE, "didn't fail to issue begin ioctl");
58 	}
59 
60 	if ((ret = write(fd, yk_req, sizeof (yk_req))) != -1) {
61 		errx(EXIT_FAILURE, "didn't fail to write data");
62 	}
63 
64 	if (errno != EBADF) {
65 		err(EXIT_FAILURE, "wrong errno for failed write, "
66 		    "expected EBADF");
67 	}
68 
69 	if ((ret = read(fd, buf, sizeof (buf))) != -1) {
70 		errx(EXIT_FAILURE, "didn't fail to read data");
71 	}
72 
73 	if (errno != EACCES) {
74 		err(EXIT_FAILURE, "wrong errno for failed read, "
75 		    "expected EACCES");
76 	}
77 
78 	/* get card status */
79 	bzero(&ucs, sizeof (ucs));
80 	ucs.ucs_version = UCCID_CURRENT_VERSION;
81 	if ((ret = ioctl(fd, UCCID_CMD_STATUS, &ucs)) != 0) {
82 		err(EXIT_FAILURE, "failed to get status");
83 	}
84 
85 
86 	/* try to power off the card while opened read-only */
87 	bzero(&uci, sizeof (uci));
88 	uci.uci_version = UCCID_CURRENT_VERSION;
89 	uci.uci_action = UCCID_ICC_POWER_OFF;
90 	if ((ret = ioctl(fd, UCCID_CMD_ICC_MODIFY, &uci)) == 0) {
91 		errx(EXIT_FAILURE, "didn't fail to power off ICC");
92 	}
93 
94 	if (errno != EBADF) {
95 		err(EXIT_FAILURE, "wrong errno for failed write, "
96 		    "expected EBADF");
97 	}
98 
99 	return (0);
100 }
101