Example 6 with SALProtocol
use of org.openecard.addon.sal.SALProtocol in project open-ecard by ecsec.
the class TinySAL method sign.
/**
* The Sign function signs a transmitted message.
* See BSI-TR-03112-4, version 1.1.2, section 3.5.5.
*
* @param request Sign
* @return SignResponse
*/
@Override
public SignResponse sign(Sign request) {
SignResponse response = WSHelper.makeResponse(SignResponse.class, WSHelper.makeResultOK());
CardStateEntry cardStateEntry = null;
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
cardStateEntry = SALUtils.getCardStateEntry(states, connectionHandle, false);
byte[] applicationID = cardStateEntry.getCurrentCardApplication().getApplicationIdentifier();
String didName = SALUtils.getDIDName(request);
byte[] message = request.getMessage();
Assert.assertIncorrectParameter(message, "The parameter Message is empty.");
DIDScopeType didScope = request.getDIDScope();
if (didScope == null) {
didScope = DIDScopeType.LOCAL;
}
if (didScope.equals(DIDScopeType.LOCAL)) {
byte[] necessarySelectedApp = cardStateEntry.getInfo().getApplicationIdByDidName(didName, didScope);
if (!Arrays.equals(necessarySelectedApp, applicationID)) {
String msg = "Wrong application selected for the execution of Sign with the DID " + didName + ".";
throw new SecurityConditionNotSatisfiedException(msg);
}
}
DIDStructureType didStructure = cardStateEntry.getDIDStructure(didName, didScope);
Assert.assertNamedEntityNotFound(didStructure, "The given DIDName cannot be found.");
String protocolURI = didStructure.getDIDMarker().getProtocol();
SALProtocol protocol = getProtocol(connectionHandle, request.getDIDScope(), protocolURI);
if (protocol.hasNextStep(FunctionType.Sign)) {
response = protocol.sign(request);
removeFinishedProtocol(connectionHandle, protocolURI, protocol);
} else {
throw new InappropriateProtocolForActionException("Sign", protocol.toString());
}
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
// TODO: remove when PIN state tracking is implemented
setPinNotAuth(cardStateEntry);
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
ECardException(org.openecard.common.ECardException)
CardStateEntry(org.openecard.common.sal.state.CardStateEntry)
SignResponse(iso.std.iso_iec._24727.tech.schema.SignResponse)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
SALProtocol(org.openecard.addon.sal.SALProtocol)
DIDScopeType(iso.std.iso_iec._24727.tech.schema.DIDScopeType)
DIDStructureType(iso.std.iso_iec._24727.tech.schema.DIDStructureType)
PrerequisitesNotSatisfiedException(org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)
NameExistsException(org.openecard.common.sal.exception.NameExistsException)
AddonNotFoundException(org.openecard.addon.AddonNotFoundException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
ECardException(org.openecard.common.ECardException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
TLVException(org.openecard.common.tlv.TLVException)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
UnknownConnectionHandleException(org.openecard.common.sal.exception.UnknownConnectionHandleException)
Example 7 with SALProtocol
use of org.openecard.addon.sal.SALProtocol in project open-ecard by ecsec.
the class TinySAL method didAuthenticate.
/**
* The DIDAuthenticate function can be used to execute an authentication protocol using a DID addressed by DIDName.
* See BSI-TR-03112-4, version 1.1.2, section 3.6.6.
*
* @param request DIDAuthenticate
* @return DIDAuthenticateResponse
*/
@Publish
@Override
public DIDAuthenticateResponse didAuthenticate(DIDAuthenticate request) {
DIDAuthenticateResponse response = WSHelper.makeResponse(DIDAuthenticateResponse.class, WSHelper.makeResultOK());
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
DIDAuthenticationDataType didAuthenticationData = request.getAuthenticationProtocolData();
Assert.assertIncorrectParameter(didAuthenticationData, "The parameter AuthenticationProtocolData is empty.");
String protocolURI = didAuthenticationData.getProtocol();
// FIXME: workaround for missing protocol URI from eID-Servers
if (protocolURI == null) {
LOG.warn("ProtocolURI was null");
protocolURI = ECardConstants.Protocol.EAC_GENERIC;
} else if (protocolURI.equals("urn:oid:1.0.24727.3.0.0.7.2")) {
LOG.warn("ProtocolURI was urn:oid:1.0.24727.3.0.0.7.2");
protocolURI = ECardConstants.Protocol.EAC_GENERIC;
}
didAuthenticationData.setProtocol(protocolURI);
SALProtocol protocol = getProtocol(connectionHandle, request.getDIDScope(), protocolURI);
if (protocol.hasNextStep(FunctionType.DIDAuthenticate)) {
response = protocol.didAuthenticate(request);
removeFinishedProtocol(connectionHandle, protocolURI, protocol);
} else {
throw new InappropriateProtocolForActionException("DIDAuthenticate", protocol.toString());
}
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
ECardException(org.openecard.common.ECardException)
DIDAuthenticateResponse(iso.std.iso_iec._24727.tech.schema.DIDAuthenticateResponse)
SALProtocol(org.openecard.addon.sal.SALProtocol)
DIDAuthenticationDataType(iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)
PrerequisitesNotSatisfiedException(org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)
NameExistsException(org.openecard.common.sal.exception.NameExistsException)
AddonNotFoundException(org.openecard.addon.AddonNotFoundException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
ECardException(org.openecard.common.ECardException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
TLVException(org.openecard.common.tlv.TLVException)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
UnknownConnectionHandleException(org.openecard.common.sal.exception.UnknownConnectionHandleException)
Publish(org.openecard.common.interfaces.Publish)
Example 8 with SALProtocol
use of org.openecard.addon.sal.SALProtocol in project open-ecard by ecsec.
the class TinySAL method hash.
/**
* The Hash function calculates the hash value of a transmitted message.
* See BSI-TR-03112-4, version 1.1.2, section 3.5.4.
*
* @param request Hash
* @return HashResponse
*/
@Publish
@Override
public HashResponse hash(Hash request) {
HashResponse response = WSHelper.makeResponse(HashResponse.class, WSHelper.makeResultOK());
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
CardStateEntry cardStateEntry = SALUtils.getCardStateEntry(states, connectionHandle, false);
byte[] applicationID = cardStateEntry.getCurrentCardApplication().getApplicationIdentifier();
String didName = SALUtils.getDIDName(request);
byte[] message = request.getMessage();
Assert.assertIncorrectParameter(message, "The parameter Message is empty.");
DIDScopeType didScope = request.getDIDScope();
if (didScope == null) {
didScope = DIDScopeType.LOCAL;
}
if (didScope.equals(DIDScopeType.LOCAL)) {
byte[] necesssaryApp = cardStateEntry.getInfo().getApplicationIdByDidName(didName, didScope);
if (!Arrays.equals(necesssaryApp, applicationID)) {
String msg = "Wrong application for executing Hash with the specified DID " + didName + ".";
throw new SecurityConditionNotSatisfiedException(msg);
}
}
DIDStructureType didStructure = cardStateEntry.getDIDStructure(didName, didScope);
Assert.assertNamedEntityNotFound(didStructure, "The given DIDName cannot be found.");
String protocolURI = didStructure.getDIDMarker().getProtocol();
SALProtocol protocol = getProtocol(connectionHandle, request.getDIDScope(), protocolURI);
if (protocol.hasNextStep(FunctionType.Hash)) {
response = protocol.hash(request);
removeFinishedProtocol(connectionHandle, protocolURI, protocol);
} else {
throw new InappropriateProtocolForActionException("Hash", protocol.toString());
}
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
ECardException(org.openecard.common.ECardException)
CardStateEntry(org.openecard.common.sal.state.CardStateEntry)
HashResponse(iso.std.iso_iec._24727.tech.schema.HashResponse)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
SALProtocol(org.openecard.addon.sal.SALProtocol)
DIDScopeType(iso.std.iso_iec._24727.tech.schema.DIDScopeType)
DIDStructureType(iso.std.iso_iec._24727.tech.schema.DIDStructureType)
PrerequisitesNotSatisfiedException(org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)
NameExistsException(org.openecard.common.sal.exception.NameExistsException)
AddonNotFoundException(org.openecard.addon.AddonNotFoundException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
ECardException(org.openecard.common.ECardException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
TLVException(org.openecard.common.tlv.TLVException)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
UnknownConnectionHandleException(org.openecard.common.sal.exception.UnknownConnectionHandleException)
Publish(org.openecard.common.interfaces.Publish)
Example 9 with SALProtocol
use of org.openecard.addon.sal.SALProtocol in project open-ecard by ecsec.
the class TinySAL method getRandom.
/**
* The GetRandom function returns a random number which is suitable for authentication with the DID addressed with
* DIDName.
* See BSI-TR-03112-4, version 1.1.2, section 3.5.3.
*
* @param request GetRandom
* @return GetRandomResponse
*/
@Publish
@Override
public GetRandomResponse getRandom(GetRandom request) {
GetRandomResponse response = WSHelper.makeResponse(GetRandomResponse.class, WSHelper.makeResultOK());
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
CardStateEntry cardStateEntry = SALUtils.getCardStateEntry(states, connectionHandle, false);
byte[] applicationID = cardStateEntry.getCurrentCardApplication().getApplicationIdentifier();
String didName = SALUtils.getDIDName(request);
DIDScopeType didScope = request.getDIDScope();
if (didScope == null) {
didScope = DIDScopeType.LOCAL;
}
if (didScope.equals(DIDScopeType.LOCAL)) {
byte[] necessaryApp = cardStateEntry.getInfo().getApplicationIdByDidName(didName, didScope);
if (!Arrays.equals(necessaryApp, applicationID)) {
throw new SecurityConditionNotSatisfiedException("The wrong application is selected for getRandom()");
}
}
DIDStructureType didStructure = cardStateEntry.getDIDStructure(didName, didScope);
Assert.assertNamedEntityNotFound(didStructure, "The given DIDName cannot be found.");
String protocolURI = didStructure.getDIDMarker().getProtocol();
SALProtocol protocol = getProtocol(connectionHandle, request.getDIDScope(), protocolURI);
if (protocol.hasNextStep(FunctionType.GetRandom)) {
response = protocol.getRandom(request);
removeFinishedProtocol(connectionHandle, protocolURI, protocol);
} else {
throw new InappropriateProtocolForActionException("GetRandom", protocol.toString());
}
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
ECardException(org.openecard.common.ECardException)
CardStateEntry(org.openecard.common.sal.state.CardStateEntry)
GetRandomResponse(iso.std.iso_iec._24727.tech.schema.GetRandomResponse)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
SALProtocol(org.openecard.addon.sal.SALProtocol)
DIDScopeType(iso.std.iso_iec._24727.tech.schema.DIDScopeType)
DIDStructureType(iso.std.iso_iec._24727.tech.schema.DIDStructureType)
PrerequisitesNotSatisfiedException(org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)
NameExistsException(org.openecard.common.sal.exception.NameExistsException)
AddonNotFoundException(org.openecard.addon.AddonNotFoundException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
ECardException(org.openecard.common.ECardException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
TLVException(org.openecard.common.tlv.TLVException)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
UnknownConnectionHandleException(org.openecard.common.sal.exception.UnknownConnectionHandleException)
Publish(org.openecard.common.interfaces.Publish)
Example 10 with SALProtocol
use of org.openecard.addon.sal.SALProtocol in project open-ecard by ecsec.
the class TinySAL method cardApplicationEndSession.
/**
* The CardApplicationEndSession function closes the session between the client application and the card application.
* See BSI-TR-03112-4, version 1.1.2, section 3.2.4.
*
* @param request CardApplicationEndSession
* @return CardApplicationEndSessionResponse
*/
@Publish
@Override
public CardApplicationEndSessionResponse cardApplicationEndSession(CardApplicationEndSession request) {
CardApplicationEndSessionResponse response = WSHelper.makeResponse(CardApplicationEndSessionResponse.class, WSHelper.makeResultOK());
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
CardStateEntry cardStateEntry = SALUtils.getCardStateEntry(states, connectionHandle);
byte[] cardApplicationID = connectionHandle.getCardApplication();
String didName = SALUtils.getDIDName(request);
DIDStructureType didStructure = cardStateEntry.getDIDStructure(didName, cardApplicationID);
Assert.assertNamedEntityNotFound(didStructure, "The given DIDName cannot be found.");
Assert.securityConditionApplication(cardStateEntry, cardApplicationID, ConnectionServiceActionName.CARD_APPLICATION_END_SESSION);
String protocolURI = didStructure.getDIDMarker().getProtocol();
SALProtocol protocol = getProtocol(connectionHandle, null, protocolURI);
if (protocol.hasNextStep(FunctionType.CardApplicationEndSession)) {
response = protocol.cardApplicationEndSession(request);
removeFinishedProtocol(connectionHandle, protocolURI, protocol);
} else {
throw new InappropriateProtocolForActionException("CardApplicationEndSession", protocol.toString());
}
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
ECardException(org.openecard.common.ECardException)
CardStateEntry(org.openecard.common.sal.state.CardStateEntry)
CardApplicationEndSessionResponse(iso.std.iso_iec._24727.tech.schema.CardApplicationEndSessionResponse)
SALProtocol(org.openecard.addon.sal.SALProtocol)
DIDStructureType(iso.std.iso_iec._24727.tech.schema.DIDStructureType)
PrerequisitesNotSatisfiedException(org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)
NameExistsException(org.openecard.common.sal.exception.NameExistsException)
AddonNotFoundException(org.openecard.addon.AddonNotFoundException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
ECardException(org.openecard.common.ECardException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
InappropriateProtocolForActionException(org.openecard.common.sal.exception.InappropriateProtocolForActionException)
TLVException(org.openecard.common.tlv.TLVException)
SecurityConditionNotSatisfiedException(org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)
UnknownConnectionHandleException(org.openecard.common.sal.exception.UnknownConnectionHandleException)
Publish(org.openecard.common.interfaces.Publish)
Aggregations
SALProtocol (org.openecard.addon.sal.SALProtocol)15
AddonNotFoundException (org.openecard.addon.AddonNotFoundException)13
UnknownProtocolException (org.openecard.common.sal.exception.UnknownProtocolException)13
ConnectionHandleType (iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)12
ECardException (org.openecard.common.ECardException)12
ThreadTerminateException (org.openecard.common.ThreadTerminateException)12
InappropriateProtocolForActionException (org.openecard.common.sal.exception.InappropriateProtocolForActionException)12
IncorrectParameterException (org.openecard.common.sal.exception.IncorrectParameterException)12
NameExistsException (org.openecard.common.sal.exception.NameExistsException)12
NamedEntityNotFoundException (org.openecard.common.sal.exception.NamedEntityNotFoundException)12
PrerequisitesNotSatisfiedException (org.openecard.common.sal.exception.PrerequisitesNotSatisfiedException)12
SecurityConditionNotSatisfiedException (org.openecard.common.sal.exception.SecurityConditionNotSatisfiedException)12
UnknownConnectionHandleException (org.openecard.common.sal.exception.UnknownConnectionHandleException)12
CardStateEntry (org.openecard.common.sal.state.CardStateEntry)12
TLVException (org.openecard.common.tlv.TLVException)12
DIDStructureType (iso.std.iso_iec._24727.tech.schema.DIDStructureType)11
DIDScopeType (iso.std.iso_iec._24727.tech.schema.DIDScopeType)7
Publish (org.openecard.common.interfaces.Publish)6
DIDAuthenticationDataType (iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)2
SALProtocolProxy (org.openecard.addon.sal.SALProtocolProxy)2
