Thales cards do not return Card NR anymore

IB-8696

Signed-off-by: Raul Metsma <[email protected]>

Author: metsma

client/Diagnostics.cpp

@@ -109,14 +109,7 @@ void Diagnostics::generalInfo(QTextStream &s)
 		if( !reader.isPresent() )
 			continue;
 
-		reader.reconnect( QPCSCReader::UnpowerCard );
-		QString cold = reader.atr();
-		reader.reconnect( QPCSCReader::ResetCard );
-		QString warm = reader.atr();
-
-		s << "ATR cold - " << cold << "<br />"
-		  << "ATR warm - " << warm << "<br />";
-
+		s << "ATR - " << reader.atr() << "<br />";
 		reader.beginTransaction();
 		constexpr auto APDU = &QByteArray::fromHex;
 		auto printAID = [&](const QLatin1String &label, const QByteArray &apdu)

client/MainWindow.cpp

@@ -86,18 +86,16 @@ MainWindow::MainWindow( QWidget *parent )
 
 	// Refresh ID card info in card widget
 	connect(qApp->signer(), &QSigner::cacheChanged, this, &MainWindow::updateSelector);
-	connect(&QPCSC::instance(), &QPCSC::statusChanged, this, &MainWindow::updateSelector);
 	connect(qApp->signer(), &QSigner::signDataChanged, this, [this](const TokenData &token) {
-		updateSelectorData(token);
+		updateSelector();
 		updateMyEID(token);
 		ui->signContainerPage->cardChanged(token.cert(), token.data(QStringLiteral("blocked")).toBool());
 	});
 	connect(qApp->signer(), &QSigner::authDataChanged, this, [this](const TokenData &token) {
-		updateSelectorData(token);
+		updateSelector();
 		updateMyEID(token);
 		ui->cryptoContainerPage->cardChanged(token.cert(), token.data(QStringLiteral("blocked")).toBool());
 	});
-	QPCSC::instance().start();
 
 	// Refresh card info on "My EID" page
 	connect(qApp->signer()->smartcard(), &QSmartCard::dataChanged, this, &MainWindow::updateMyEid);
@@ -124,7 +122,7 @@ MainWindow::MainWindow( QWidget *parent )
 	connect(ui->accordion, &Accordion::changePinClicked, this, &MainWindow::changePinClicked);
 	connect(ui->cardInfo, &CardWidget::selected, ui->selector, &QToolButton::toggle);
 
-	updateSelectorData(qApp->signer()->tokensign());
+	updateSelector();
 	updateMyEID(qApp->signer()->tokensign());
 	ui->signContainerPage->cardChanged(qApp->signer()->tokensign().cert());
 	ui->cryptoContainerPage->cardChanged(qApp->signer()->tokenauth().cert());
@@ -885,11 +883,7 @@ bool MainWindow::wrapContainer(bool signing)
 
 void MainWindow::updateSelector()
 {
-	updateSelectorData({});
-}
-
-void MainWindow::updateSelectorData(TokenData data)
-{
+	TokenData selected;
 	enum Filter: uint8_t {
 		Signing,
 		Decrypting,
@@ -899,24 +893,24 @@ void MainWindow::updateSelectorData(TokenData data)
 	{
 	case SignIntro:
 	case SignDetails:
-		if(data.isNull()) data = qApp->signer()->tokensign();
+		selected = qApp->signer()->tokensign();
 		filter = Signing;
 		break;
 	case CryptoIntro:
 	case CryptoDetails:
-		if(data.isNull()) data = qApp->signer()->tokenauth();
+		selected = qApp->signer()->tokenauth();
 		filter = Decrypting;
 		break;
 	case MyEid:
 	default:
-		if(data.isNull()) data = qApp->signer()->smartcard()->tokenData();
+		selected = qApp->signer()->smartcard()->tokenData();
 		filter = MyEID;
 		break;
 	}
 	QVector<TokenData> list;
 	for(const TokenData &token: qApp->signer()->cache())
 	{
-		if(token.card() == data.card())
+		if(token.card() == selected.card())
 			continue;
 		if(std::any_of(list.cbegin(), list.cend(), [token](const TokenData &item) { return token.card() == item.card(); }))
 			continue;
@@ -935,7 +929,7 @@ void MainWindow::updateSelectorData(TokenData data)
 	ui->selector->setChecked(false);
 	ui->cardInfo->setVisible(ui->noCardInfo->isHidden());
 	ui->cardInfo->setCursor(ui->selector->isVisible() ? Qt::PointingHandCursor : Qt::ArrowCursor);
-	ui->cardInfo->update(data, list.size() > 1);
+	ui->cardInfo->update(selected, list.size() > 1);
 	if (!QPCSC::instance().serviceRunning())
 		ui->noCardInfo->update(NoCardInfo::NoPCSC);
 	else if(QPCSC::instance().readers().isEmpty())

client/MainWindow.h

@@ -85,7 +85,6 @@ class MainWindow final : public QWidget
 	bool validateFiles(const QString &container, const QStringList &files);
 	void showPinBlockedWarning(const QSmartCardData &data);
 	void updateSelector();
-	void updateSelectorData(TokenData data);
 	void updateMyEID(const TokenData &t);
 	void updateMyEid(const QSmartCardData &data);
 	bool wrap(const QString& wrappedFile, bool enclose);

client/QCNG.cpp

@@ -23,6 +23,7 @@
 #include "SslCertificate.h"
 #include "TokenData.h"
 
+#include <QtCore/QUuid>
 #include <QtCore/QLoggingCategory>
 #include <QtNetwork/QSslKey>
 
@@ -220,7 +221,8 @@ QList<TokenData> QCNG::tokens() const
 				if(QByteArray tmp = prop(key, NCRYPT_READER_PROPERTY); !tmp.isEmpty())
 					reader = QString::fromUtf16((const char16_t*)tmp.data());
 			}
-			QString guid = prop(h, NCRYPT_SMARTCARD_GUID_PROPERTY).trimmed();
+			QByteArray guidData = prop(h, NCRYPT_SMARTCARD_GUID_PROPERTY);
+			QString guid = guidData[0] >= 0x20 && guidData[0] < 0x7F ? guidData.trimmed() : QUuid(*((GUID*)guidData.data())).toString(QUuid::WithBraces);
 			TokenData &t = result.emplaceBack();
 			t.setReader(reader);
 			t.setCard(cert.type() & SslCertificate::EstEidType || cert.type() & SslCertificate::DigiIDType ?
@@ -232,7 +234,8 @@ QList<TokenData> QCNG::tokens() const
 			qCWarning(CNG) << "key" << t.data(u"provider"_s)
 				<< "spec" << t.data(u"spec"_s)
 				<< "alg" << QStringView(keyname->pszAlgid)
-				<< "flags" << keyname->dwFlags;
+				<< "flags" << keyname->dwFlags
+				<< t.card();
 			if(cert.publicKey().algorithm() != QSsl::Rsa || reader.isEmpty())
 				continue;
 

client/QPCSC.cpp

@@ -27,8 +27,8 @@
 #include <array>
 #include <cstring>
 
-Q_LOGGING_CATEGORY(APDU,"QPCSC.APDU")
-Q_LOGGING_CATEGORY(SCard,"QPCSC.SCard")
+static Q_LOGGING_CATEGORY(APDU,"QPCSC.APDU")
+static Q_LOGGING_CATEGORY(SCard,"QPCSC.SCard")
 
 static quint16 toUInt16(const QByteArray &data, int size)
 {
@@ -94,10 +94,12 @@ QPCSC::QPCSC()
 QPCSC::~QPCSC()
 {
 	requestInterruption();
+	d->sleepCond.wakeAll();
+	if(d->thread)
+		SC(Cancel, d->thread);
 	wait();
-	if( d->context )
+	if(d->context)
 		SC(ReleaseContext, d->context);
-	qDeleteAll(d->lock);
 	delete d;
 }
 
@@ -138,23 +140,30 @@ void QPCSC::run()
 	std::vector<SCARD_READERSTATE> list;
 	while(!isInterruptionRequested())
 	{
-		if(!pcsc.serviceRunning())
-		{
-			sleep(5);
-			continue;
-		}
 		// "\\?PnP?\Notification" does not work on macOS
 		QByteArray data = pcsc.rawReaders();
 		if(data.isEmpty())
 		{
-			sleep(5);
+			QMutexLocker locker(&d->sleepMutex);
+			if (isInterruptionRequested())
+				break;
+			d->sleepCond.wait(&d->sleepMutex, 5000);
 			continue;
 		}
 		for(const char *name = data.constData(); *name; name += strlen(name) + 1)
 		{
 			if(std::none_of(list.cbegin(), list.cend(), [&name](const SCARD_READERSTATE &state) { return strcmp(state.szReader, name) == 0; }))
 				list.push_back({ strdup(name), nullptr, 0, 0, 0, {} });
 		}
+		if(list.empty())
+		{
+			QMutexLocker locker(&d->sleepMutex);
+			if (isInterruptionRequested())
+				break;
+			d->sleepCond.wait(&d->sleepMutex, 5000);
+			continue;
+		}
+		d->thread = pcsc.d->context;
 		if(SC(GetStatusChange, pcsc.d->context, 5*1000U, list.data(), DWORD(list.size())) != SCARD_S_SUCCESS)
 			continue;
 		for(auto i = list.begin(); i != list.end(); )
@@ -176,6 +185,7 @@ void QPCSC::run()
 				++i;
 		}
 	}
+	d->thread = {};
 }
 
 bool QPCSC::serviceRunning() const
@@ -191,9 +201,6 @@ bool QPCSC::serviceRunning() const
 QPCSCReader::QPCSCReader( const QString &reader, QPCSC *parent )
 	: d(new Private)
 {
-	if(!parent->d->lock.contains(reader))
-		parent->d->lock[reader] = new QMutex();
-	parent->d->lock[reader]->lock();
 	d->d = parent->d;
 	d->reader = reader.toUtf8();
 	d->state.szReader = d->reader.constData();
@@ -203,7 +210,6 @@ QPCSCReader::QPCSCReader( const QString &reader, QPCSC *parent )
 QPCSCReader::~QPCSCReader()
 {
 	disconnect();
-	d->d->lock[d->reader]->unlock();
 	delete d;
 }
 
@@ -218,15 +224,10 @@ bool QPCSCReader::beginTransaction()
 }
 
 bool QPCSCReader::connect(Connect connect, Mode mode)
-{
-	return connectEx(connect, mode) == SCARD_S_SUCCESS;
-}
-
-quint32 QPCSCReader::connectEx(Connect connect, Mode mode)
 {
 	LONG err = SC(Connect, d->d->context, d->state.szReader, connect, mode, &d->card, &d->io.dwProtocol);
 	updateState();
-	return quint32(err);
+	return err == SCARD_S_SUCCESS;
 }
 
 void QPCSCReader::disconnect( Reset reset )
@@ -290,15 +291,6 @@ QHash<QPCSCReader::Properties, int> QPCSCReader::properties() const
 	return properties;
 }
 
-bool QPCSCReader::reconnect( Reset reset, Mode mode )
-{
-	if( !d->card )
-		return false;
-	LONG err = SC(Reconnect, d->card, DWORD(SCARD_SHARE_SHARED), mode, reset, &d->io.dwProtocol);
-	updateState();
-	return err == SCARD_S_SUCCESS;
-}
-
 QStringList QPCSCReader::state() const
 {
 	return stateToString(d->state.dwEventState);

client/QPCSC.h

@@ -44,7 +44,7 @@ class QPCSC final: public QThread
 	QByteArray rawReaders() const;
 	void run() final;
 
-	class Private;
+	struct Private;
 	Private *d;
 
 	friend class QPCSCReader;
@@ -61,7 +61,7 @@ class QPCSCReader final: public QObject
 		constexpr operator bool() const { return SW == 0x9000; }
 	};
 
-	enum Properties {
+	enum Properties : quint8 {
 		wLcdLayout					= 0x01,
 		bEntryValidationCondition	= 0x02,
 		bTimeOut2					= 0x03,
@@ -76,21 +76,20 @@ class QPCSCReader final: public QObject
 		wIdProduct					= 0x0C
 	};
 
-	enum Connect {
+	enum Connect : quint8 {
 		Exclusive = 1,
 		Shared = 2,
 		Direct = 3
 	};
 
-	enum Reset
-	{
+	enum Reset : quint8 {
 		LeaveCard = 0,
 		ResetCard = 1,
 		UnpowerCard = 2,
 		EjectCard = 3
 	};
 
-	enum Mode {
+	enum Mode : quint8 {
 		Undefined = 0,
 		T0 = 1,
 		T1 = 2
@@ -105,20 +104,19 @@ class QPCSCReader final: public QObject
 	QString name() const;
 	QHash<Properties,int> properties() const;
 	QStringList state() const;
-	bool updateState( quint32 msec = 0 );
 
 	bool connect( Connect connect = Shared, Mode mode = Mode(T0|T1) );
-	quint32 connectEx( Connect connect = Shared, Mode mode = Mode(T0|T1) );
 	void disconnect( Reset reset = LeaveCard );
-	bool reconnect( Reset reset = LeaveCard, Mode mode = Mode(T0|T1) );
 	bool beginTransaction();
 	bool endTransaction( Reset reset = LeaveCard );
 	Result transfer( const QByteArray &apdu ) const;
 	Result transferCTL(const QByteArray &apdu, bool verify, quint16 lang = 0,
 		quint8 minlen = 4, quint8 newPINOffset = 0, bool requestCurrentPIN = true) const;
 
 private:
+	bool updateState( quint32 msec = 0 );
+
 	Q_DISABLE_COPY(QPCSCReader)
-	class Private;
+	struct Private;
 	Private *d;
 };

client/QPCSC_p.h

@@ -23,6 +23,7 @@
 
 #include <QtCore/QHash>
 #include <QtCore/QMutex>
+#include <QtCore/QWaitCondition>
 
 #ifdef Q_OS_WIN
 #undef UNICODE
@@ -178,16 +179,16 @@ struct DISPLAY_PROPERTIES_STRUCTURE
 
 #pragma pack(pop)
 
-class QPCSC::Private
+struct QPCSC::Private
 {
-public:
 	SCARDCONTEXT context {};
-	QHash<QString,QMutex*> lock;
+	SCARDCONTEXT thread {};
+	QMutex			sleepMutex;
+	QWaitCondition	sleepCond;
 };
 
-class QPCSCReader::Private
+struct QPCSCReader::Private
 {
-public:
 	QHash<DRIVER_FEATURES,quint32> features();
 
 	QPCSC::Private *d {};