applets

Author: stepansnigirev

.gitignore

@@ -0,0 +1,5 @@
+build/
+__pycache__
+.venv
+.vscode
+.DS_Store

.gitmodules

@@ -0,0 +1,3 @@
+[submodule "sdks"]
+	path = sdks
+	url = https://github.com/martinpaljak/oracle_javacard_sdks.git

README.md

@@ -1,2 +1,142 @@
-# specter-javacard
-JavaCard applets for Specter-DIY secrets storage
+# Specter-Javacard
+
+This is a collection of JavaCardOS applets for [Specter-DIY](https://github.com/cryptoadvance/specter-diy) secrets storage.
+
+Documentation for classes and applets is in the [`docs/`](./docs) folder.
+
+Currently all the applets are tested on [NXP JCOP3 J3H145 card](https://www.smartcardfocus.com/shop/ilp/id~879/nxp-j3h145-dual-interface-java-card-144k/p/index.shtml), but we plan to add support of `Infineon SLE78` and `G&D SmartCafe 7.0` soon.
+
+## Applets
+
+- [`Teapot`](./docs/Teapot.md) — a very simple "Hello world" class that doesn't use any PIN protection or secure communication. It can only store up to `255` bytes of data and give it back on request. Perfect for testing communication with the card.
+- [`SecureApplet`](./docs/SecureApplet.md) — base class with PIN protection and secure communication.
+- [`MemoryCard`](./docs/MemoryCard.md) — extends `SecureApplet`, allows arbitrary data storage.
+- [`BlindOracle`](./docs/BlindOracle.md) — extends `SecureApplet`, stores root xprv and supports bip32 key derivation and signing.
+- [`SingleUseKey`](./docs/SingleUseKey.md) — extends `SecureApplet`, generates a temporary key on the card that can be used only once to sign a single hash. After that the key is deleted. Can be used for proposals like Bob's and Bryan's presigned transactions stuff.
+
+# Toolchain installation
+
+Instructions are for MacOS only at the moment.
+
+JDK8 works. The most recent one doesn't.
+
+Big thanks to https://adoptopenjdk.net/ for all old versions of jdk!
+
+Install deps:
+
+```sh
+brew tap adoptopenjdk/openjdk
+brew cask install adoptopenjdk/openjdk/adoptopenjdk8
+brew install [email protected]
+```
+
+Add to your path (maybe put into `.bash_profile`):
+
+```sh
+export PATH="/Library/Java/JavaVirtualMachines/adoptopenjdk-8.jdk/Contents/Home/bin/:$PATH"
+export PATH="/usr/local/opt/[email protected]/bin:$PATH"
+export JAVA_HOME="/Library/Java/JavaVirtualMachines/adoptopenjdk-8.jdk/Contents/Home"
+```
+
+# Tools
+
+- `gp.jar` - a working and easy to use tool for applets management, by [martinpaljak](https://github.com/martinpaljak/GlobalPlatformPro) (LGPL3)
+- `ant-javacard.jar` - ant task to build javacard applet, by [martinpaljak](https://github.com/martinpaljak/ant-javacard) (MIT)
+- `sdks` folder - submodule with JavaCard SDKs of different versions (Oracle-owns-you-and-your-grandma license)
+
+It's convenient to make an alias for `gp.jar`:
+
+```sh
+alias gp="java -jar $PWD/gp.jar"
+```
+
+# How to build
+
+Run to compile all applets:
+
+```sh
+ant all
+```
+
+You should get `.cap` files for all the applets in the `build/cap` folder.
+
+Run to compile a specific applet:
+
+```sh
+ant Teapot
+```
+
+To see the build targets:
+
+```sh
+ant -projecthelp
+```
+
+Now upload applet to the card:
+
+```sh
+gp --install build/cap/TeapotApplet.cap
+```
+
+Check that it appeared in the list of applets (should appear with aid `B00B5111CA01`):
+
+```sh
+gp -l
+```
+
+Now you can communicate with the applet.
+
+Jupyter notebook with some examples for applets are in [`jupyter/`](jupyter/) folder.
+
+# Simulator
+
+Example how to run `BlindOracle` on port `21111` with AID `B00B5111CE01`:
+
+```sh
+java -jar "simulator.jar" -p 21111 -a "B00B5111CE01" -c "toys.BlindOracleApplet" -u "file://$PWD/build/classes/BlindOracle/"
+```
+
+# Useful links
+
+- https://github.com/OpenCryptoProject/JCMathLib - library for arbitrary elliptic curve operations on javacard
+- https://opencryptojc.org/ - making JavaCards open
+- https://pyscard.sourceforge.io/ - python tool to talk to smartcards
+- https://smartcard-atr.apdu.fr/ - ATR (Answer To Reset) parser
+- [keycard.tech](https://keycard.tech/) - JavaCard applet with BIP-32 support
+- https://www.youtube.com/watch?v=vd0-Uhx2OoQ - nice talk about JavaCards and open-source ecosystem
+
+# Cards that make sense
+
+Compatibility table: https://www.fi.muni.cz/~xsvenda/jcalgtest/table.html
+
+## Algorithms
+
+`ALG_EC_SVDP_DH_PLAIN` should be there. Many cards support it. Not necessarily `ALG_EC_SVDP_DH_PLAIN_XY`. Required for point multiplication (other than G, i.e. for Schnorr)
+
+`ALG_EC_PACE_GM` is a nice one - allows point addition. AFAIK available only on NXP JCOP3 J3H145 and NXP JCOP4 series.
+
+`TYPE_EC_FP_PRIVATE_TRANSIENT` - useful for bip32 derivation
+Infineon SLE78 JCard, G&D Smartcafe 7.0, NXP JCOP4 P71D321, NXP JCOP4 J3R200
+Taisys SIMoME Vault
+
+`ALG_HMAC_SHA512` - useful for fast PBKDF2 in BIP-39
+Taisys SIMoME Vault
+
+# Don't write your own crypto
+
+But sometimes we have to... 
+Here we have modulo addition for bip32 key derivation, this one is critical.
+For public key uncompression we can use fast functions as no secrets are involved there.
+
+For finite field ariphmetics we are abusing `RSA` encryption coprocessor where we set modulo to `FP` or `N` of `secp256k1` curve and public key to the exponent we need.
+
+Point addition is implemented using `ALG_EC_PACE_GM`, but can be also done manually with a few simple equations over `FP`.
+
+## Rules for crypto
+
+- No branching - `if/switch` statements can leak information through side channels
+- Don't do case-via-offset - access time to elements with different indexes can be different
+- Use transient arrays when possible - it's orders of magnitude faster than EEPROM
+- Use `Key` class when possible, JC platforms secures them better than simple arrays
+- Encrypt-then-hmac is the right way to build the secure communiaction channel
+- Use ephimerial keys or random nonces when possible, they help against replay attacks

ant-javacard.jar

@@ -0,0 +1,105 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project basedir="." default="all" name="JavaCardPlayground build">
+  <!-- Applet building dependencies -->
+  <property name="JC211" value="sdks/jc211_kit"/>
+  <property name="JC212" value="sdks/jc212_kit"/>
+  <property name="JC221" value="sdks/jc221_kit"/>
+  <property name="JC222" value="sdks/jc222_kit"/>
+  <property name="JC303" value="sdks/jc303_kit"/>
+  <property name="JC304" value="sdks/jc304_kit"/>
+  <property name="JC305" value="sdks/jc305u3_kit"/>
+  <property name="JCKIT" value="${JC304}"/>
+
+  <property name="src.dir"    value="src/main/java"/>
+  <property name="build.dir"  value="build"/>
+  <property name="cap.dir"    value="${build.dir}/cap"/>
+  <property name="class.dir"  value="${build.dir}/classes"/>
+  <property name="exp.dir"    value="${build.dir}/exp"/>
+  <property name="deps.crypto" value="Crypto*,HMAC*,Secp*,Transient*,Finite*"/>
+  <property name="deps.secureapplet" value="Secure*,${deps.crypto},PinCode.java"/>
+
+  <!-- ant-javacard task from javacard.pro -->
+  <taskdef name="javacard" classname="pro.javacard.ant.JavaCard" classpath="ant-javacard.jar"/>
+  <!-- All included applets -->
+  <target name="Teapot" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/TeapotApplet.cap" 
+           sources="${src.dir}/toys"
+           classes="${class.dir}/Teapot"
+           includes="TeapotApplet.java,DataEntry.java"
+      >
+        <applet class="toys.TeapotApplet"       aid="B00B5111CA01"/>
+      </cap>
+    </javacard>
+  </target>
+  <target name="SecureApplet" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/SecureApplet.cap" 
+           sources="${src.dir}/toys" 
+           classes="${class.dir}/SecureApplet"
+           includes="${deps.secureapplet}"
+           >
+        <applet class="toys.SecureApplet"       aid="B00B5111FF01"/>
+      </cap>
+    </javacard>
+  </target>
+  <target name="MemoryCard" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/MemoryCardApplet.cap" 
+           sources="${src.dir}/toys"
+           classes="${class.dir}/MemoryCard"
+           includes="${deps.secureapplet},DataEntry.java,MemoryCardApplet.java"
+        >
+        <applet class="toys.MemoryCardApplet"   aid="B00B5111CB01"/>
+      </cap>
+    </javacard>
+  </target>
+  <target name="SingleUseKey" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/SingleUseKeyApplet.cap"
+           sources="${src.dir}/toys"
+           classes="${class.dir}/SingleUseKey"
+           includes="${deps.secureapplet},SingleUseKeyApplet.java"
+      >
+        <applet class="toys.SingleUseKeyApplet" aid="B00B5111CD01"/>
+      </cap>
+    </javacard>
+  </target>
+  <target name="BlindOracle" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/BlindOracleApplet.cap"
+           sources="${src.dir}/toys"
+           classes="${class.dir}/BlindOracle"
+           includes="${deps.secureapplet},BlindOracleApplet.java"
+      >
+        <applet class="toys.BlindOracleApplet"  aid="B00B5111CE01"/>
+      </cap>
+    </javacard>
+  </target>
+  <target name="Bundle" depends="init">
+    <javacard jckit="${JCKIT}">
+      <cap output="${cap.dir}/Bundle.cap" sources="${src.dir}/toys" classes="${class.dir}/Bundle">
+        <applet class="toys.TeapotApplet"       aid="B00B5111CF01"/>
+        <applet class="toys.SecureApplet"       aid="B00B5111CF02"/>
+        <applet class="toys.MemoryCardApplet"   aid="B00B5111CF03"/>
+        <applet class="toys.BlindOracleApplet"  aid="B00B5111CF04"/>
+        <applet class="toys.SingleUseKeyApplet" aid="B00B5111CF05"/>
+      </cap>
+    </javacard>
+  </target>
+
+  <target name="all" depends="Teapot,SecureApplet,MemoryCard,SingleUseKey,BlindOracle,Bundle"/>
+
+  <target name="init">
+    <mkdir dir="${build.dir}"/>
+    <mkdir dir="${cap.dir}"/>
+    <mkdir dir="${class.dir}"/>
+  </target>
+
+  <target name="clean">
+    <delete dir="${build.dir}"/>
+  </target>
+
+  <target name="clean-build" depends="clean,all"/>
+
+</project>

build.xml

@@ -0,0 +1,126 @@
+# `BlindOracle`
+
+Allows storage of bitcoin secrets on the card, deriving keys according to bip32 and signing arbitrary messages with these keys.
+
+Applet can:
+- import bip32 seed or master private key
+- generate a unique xprv internally (careful with this mode, no backup possible)
+- derive child keys from the root key and return corresponding xpubs
+- sign arbitrary messages with a derived key
+
+Instead of the full hd key serialization we use a stripped-down version where only `chain code` and the `public key` is transmitted. Because for the full hd key you need ripemd160 hash function to calculate parent fingerprint. This hash function is not available on javacards and software implementation requires plenty of storage space. But the host can calculate the parent fingerprint by asking for the parent xpub first.
+
+## APDUs
+
+Applet ID: `B00B5111CE01`
+
+To select applet use `SELECT` APDU: `00A4040006B00B5111CE0100`
+
+## SC commands
+
+All commands defined in the [`SecureApplet`](./SecureApplet.md) are available. On top of that we have two more commands:
+
+All commands are **PIN protected** - the card should be unlocked first.
+
+### Key management
+
+Loads or generates the root key on the card.
+
+#### Set seed
+
+Calculates root key from bip32 seed (64 bytes)
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x10`                                   |
+| SUBCMD | `0x00`                                   |
+| DATA   | 64-byte seed                             |
+| RETURN | Responce code: `0x9000`, `DATA`: root xpub: `<chain_code><pubkey>` |
+
+#### Set root key
+
+Sets root key directly, format: `<chain_code><00><private_key>`
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x10`                                   |
+| SUBCMD | `0x01`                                   |
+| DATA   | 65-byte root key: `<chain_code><00><private_key>` |
+| RETURN | Responce code: `0x9000`, `DATA`: root xpub: `<chain_code><pubkey>` |
+
+#### Generate random key
+
+Generates a random key, this key never leaves the device so it can't be backed up. Be careful with it - add some kind of backup mechanism to your script, otherwise if the card dies you will lose your funds.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x10`                                   |
+| SUBCMD | `0x7D`                                   |
+| DATA   | ignored                                  |
+| RETURN | Responce code: `0x9000`, `DATA`: root xpub: `<chain_code><pubkey>` |
+
+### Key derivation and signing
+
+#### Get root xpub
+
+Returns xpub of the root key stored on the card.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x11`                                   |
+| SUBCMD | `0x00`                                   |
+| DATA   | ignored                                  |
+| RETURN | Responce code: `0x9000`, `DATA`: root xpub: `<chain_code><pubkey>` |
+
+#### Derive child
+
+Derives a child from root and temporary stores it in RAM. This cached child is available until reset or next call of this method.
+
+You can derive a child from the root (`keyid = 0x00`) or from currently derived child (`keyid = 0x01`). Currently derived child is replaced by the result of the function for all subsequent commands.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x11`                                   |
+| SUBCMD | `0x01`                                   |
+| DATA   | 1-byte keyid, derivation path: sequence of 4-byte big endian encoded indexes. `<keyid><index><index><index>` |
+| RETURN | Responce code: `0x9000`, `DATA`: xpub of the derived child: `<chain_code><pubkey>` |
+
+#### Get current child
+
+Returns currently derived xpub.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x11`                                   |
+| SUBCMD | `0x02`                                   |
+| DATA   | ignored                                  |
+| RETURN | Responce code: `0x9000`, `DATA`: current child xpub: `<chain_code><pubkey>` |
+
+#### Sign
+
+Signs a 32-byte message hash with one of current keys - root or derived.
+
+Use `keyid = 0x00` to sign with root and `keyid = 0x01` to sign with current child.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x11`                                   |
+| SUBCMD | `0x03`                                   |
+| DATA   | 32-byte message, keyid                   |
+| RETURN | Responce code: `0x9000`, `DATA`: der-encoded ecdsa signature |
+
+
+#### Derive and sign
+
+Derives a key, signs a message hash with this key. Doesn't store the key in the `01` slot, so the card state is unchanged.
+
+Use `keyid = 0x00` to derive from root and `keyid = 0x01` to derive from current child.
+
+Derivation path is a sequence of 4-byte big-endian indexes of the derivation paths.
+
+| Field  | Value                                    |
+| ------ | ---------------------------------------- |
+| CMD    | `0x11`                                   |
+| SUBCMD | `0x04`                                   |
+| DATA   | 32-byte message, keyid, derivation path  |
+| RETURN | Responce code: `0x9000`, `DATA`: der-encoded ecdsa signature |