Fix Pin Type with IDEMIA card replace command (#1372)

IB-8724

Signed-off-by: Raul Metsma <[email protected]>

Author: metsma

client/QSmartCard.cpp

@@ -30,12 +30,12 @@
 #include <QtCore/QScopedPointer>
 #include <QtNetwork/QSslKey>
 
-Q_LOGGING_CATEGORY(CLog, "qdigidoc4.QSmartCard")
+static Q_LOGGING_CATEGORY(CLog, "qdigidoc4.QSmartCard")
 
 QSmartCardData::QSmartCardData(): d(new QSmartCardDataPrivate) {}
 QSmartCardData::QSmartCardData(const QSmartCardData &other) = default;
 QSmartCardData::QSmartCardData(QSmartCardData &&other) noexcept = default;
-QSmartCardData::~QSmartCardData() = default;
+QSmartCardData::~QSmartCardData() noexcept = default;
 QSmartCardData& QSmartCardData::operator =(const QSmartCardData &other) = default;
 QSmartCardData& QSmartCardData::operator =(QSmartCardData &&other) noexcept = default;
 bool QSmartCardData::operator ==(const QSmartCardData &other) const
@@ -197,15 +197,14 @@ QPCSCReader::Result IDEMIACard::change(QPCSCReader *reader, QSmartCardData::PinT
 	QByteArray pin = pinTemplate(pin_);
 	switch (type) {
 	case QSmartCardData::Pin1Type:
-		reader->transfer(AID);
 		cmd[3] = 1;
 		break;
 	case QSmartCardData::PukType:
-		reader->transfer(AID);
 		cmd[3] = 2;
 		break;
 	case QSmartCardData::Pin2Type:
-		reader->transfer(AID_QSCD);
+		if(auto result = reader->transfer(AID_QSCD); !result)
+			return result;
 		cmd[3] = char(0x85);
 		break;
 	}
@@ -223,7 +222,8 @@ bool IDEMIACard::loadPerso(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 	if(d->data.isEmpty() && reader->transfer(APDU("00A4090C 04 3F00 5000")))
 	{
 		QByteArray cmd = APDU("00A4020C 02 5001");
-		for(char data = QSmartCardData::SurName; data <= QSmartCardData::Expiry; ++data)
+		using enum QSmartCardData::PersonalDataType;
+		for(char data = SurName; data <= Expiry; ++data)
 		{
 			cmd[6] = data;
 			if(!reader->transfer(cmd))
@@ -236,19 +236,19 @@ bool IDEMIACard::loadPerso(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 				record.clear();
 			switch(data)
 			{
-			case QSmartCardData::SurName:
-			case QSmartCardData::FirstName:
-			case QSmartCardData::Citizen:
-			case QSmartCardData::Id:
-			case QSmartCardData::DocumentId:
+			case SurName:
+			case FirstName:
+			case Citizen:
+			case Id:
+			case DocumentId:
 				d->data[QSmartCardData::PersonalDataType(data)] = record;
 				break;
-			case QSmartCardData::BirthDate:
+			case BirthDate:
 				if(!record.isEmpty())
-					d->data[QSmartCardData::BirthDate] = QDate::fromString(record.left(10), QStringLiteral("dd MM yyyy"));
+					d->data[BirthDate] = QDate::fromString(record.left(10), QStringLiteral("dd MM yyyy"));
 				break;
-			case QSmartCardData::Expiry:
-				d->data[QSmartCardData::Expiry] = QDateTime::fromString(record, QStringLiteral("dd MM yyyy")).addDays(1).addSecs(-1);
+			case Expiry:
+				d->data[Expiry] = QDateTime::fromString(record, QStringLiteral("dd MM yyyy")).addDays(1).addSecs(-1);
 				break;
 			default: break;
 			}
@@ -293,29 +293,29 @@ bool IDEMIACard::loadPerso(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 QByteArray IDEMIACard::pinTemplate(const QString &pin)
 {
 	QByteArray result = pin.toUtf8();
+#if QT_VERSION >= QT_VERSION_CHECK(6, 4, 0)
+	result.resize(12, char(0xFF));
+#else
 	result += QByteArray(12 - result.size(), char(0xFF));
+#endif
 	return result;
 }
 
 QPCSCReader::Result IDEMIACard::replace(QPCSCReader *reader, QSmartCardData::PinType type, const QString &puk_, const QString &pin_) const
 {
-	auto result = reader->transfer(AID);
-	if(!result)
-		return result;
-
 	QByteArray puk = pinTemplate(puk_);
 	QByteArray cmd = VERIFY;
 	cmd[3] = 2;
 	cmd[4] = char(puk.size());
-	result = transfer(reader, true, cmd + puk, type, 0, true);
-	if(!result)
+	if(auto result = transfer(reader, true, cmd + puk, QSmartCardData::PukType, 0, true); !result)
 		return result;
 
 	cmd = Card::REPLACE;
 	cmd[2] = 2;
 	if(type == QSmartCardData::Pin2Type)
 	{
-		reader->transfer(IDEMIACard::AID_QSCD);
+		if(auto result = reader->transfer(IDEMIACard::AID_QSCD); !result)
+			return result;
 		cmd[3] = char(0x85);
 	}
 	else
@@ -325,17 +325,6 @@ QPCSCReader::Result IDEMIACard::replace(QPCSCReader *reader, QSmartCardData::Pin
 	return transfer(reader, false, cmd + pin, type, 0, false);
 }
 
-QByteArray IDEMIACard::sign(QPCSCReader *reader, const QByteArray &dgst) const
-{
-	if(!reader->transfer(AID_OT) ||
-		!reader->transfer(APDU("002241A4 09 8004FF200800840181")))
-		return {};
-	QByteArray cmd = APDU("00880000 00 00");
-	cmd[4] = char(std::min<size_t>(size_t(dgst.size()), 0x30));
-	cmd.insert(5, dgst.left(0x30));
-	return reader->transfer(cmd).data;
-}
-
 bool IDEMIACard::updateCounters(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 {
 	reader->transfer(AID);
@@ -455,7 +444,11 @@ bool THALESCard::loadPerso(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 QByteArray THALESCard::pinTemplate(const QString &pin)
 {
 	QByteArray result = pin.toUtf8();
+#if QT_VERSION >= QT_VERSION_CHECK(6, 4, 0)
+	result.resize(12, char(0x00));
+#else
 	result += QByteArray(12 - result.size(), char(0x00));
+#endif
 	return result;
 }
 
@@ -469,22 +462,6 @@ QPCSCReader::Result THALESCard::replace(QPCSCReader *reader, QSmartCardData::Pin
 	return transfer(reader, false, cmd + puk + pin, type, quint8(puk.size()), true);
 }
 
-QByteArray THALESCard::sign(QPCSCReader *reader, const QByteArray &dgst) const
-{
-	if(!reader->transfer(APDU("002241B6 09 800154840101")))
-		return {};
-
-	QByteArray send {0x90, char(dgst.size())};
-	send.append(dgst);
-	send.insert(0, char(send.size()));
-	send.insert(0, APDU("002A90A0"));
-
-	if(!reader->transfer(send))
-		return {};
-
-	return reader->transfer(APDU("002A9E9A 00")).data;
-}
-
 bool THALESCard::updateCounters(QPCSCReader *reader, QSmartCardDataPrivate *d) const
 {
 	auto apdu = APDU("00CB00FF 05 A003830180 00");
@@ -506,18 +483,18 @@ bool THALESCard::updateCounters(QPCSCReader *reader, QSmartCardDataPrivate *d) c
 
 
 
-QSharedPointer<QPCSCReader> QSmartCard::Private::connect(const QString &reader)
+std::unique_ptr<QPCSCReader> QSmartCard::Private::connect(const QString &reader)
 {
 	qCDebug(CLog) << "Connecting to reader" << reader;
-	QSharedPointer<QPCSCReader> r(new QPCSCReader(reader, &QPCSC::instance()));
+	auto r = std::make_unique<QPCSCReader>(reader, &QPCSC::instance());
 	if(!r->connect() || !r->beginTransaction())
-		r.clear();
+		r.reset();
 	return r;
 }
 
-QSmartCard::ErrorType QSmartCard::Private::handlePinResult(QPCSCReader *reader, const QPCSCReader::Result &response, bool forceUpdate)
+QSmartCard::ErrorType QSmartCard::Private::handlePinResult(QPCSCReader *reader, const QPCSCReader::Result &response)
 {
-	if(!response || forceUpdate)
+	if(!response)
 		card->updateCounters(reader, t.d);
 	switch(response.SW)
 	{
@@ -546,90 +523,91 @@ QSmartCard::QSmartCard(QObject *parent)
 {
 }
 
-QSmartCard::~QSmartCard() = default;
-
-QSmartCard::ErrorType QSmartCard::change(QSmartCardData::PinType type, QWidget* parent, const QString &newpin, const QString &pin, const QString &title, const QString &bodyText)
-{
-	PinPopup::PinFlags flags = {};
-	switch(type)
-	{
-	case QSmartCardData::Pin1Type: flags = PinPopup::Pin1Type; break;
-	case QSmartCardData::Pin2Type: flags = PinPopup::Pin2Type; break;
-	case QSmartCardData::PukType: flags = PinPopup::PukType; break;
-	default: return UnknownError;
-	}
-	QSharedPointer<QPCSCReader> reader(d->connect(d->t.reader()));
-	if(!reader)
-		return UnknownError;
-
-	QScopedPointer<PinPopup> p;
-	if(d->t.isPinpad())
-	{
-		p.reset(new PinPopup(PinPopup::PinFlags(flags|PinPopup::PinpadChangeFlag), title, {}, parent, bodyText));
-		p->open();
-	}
-	return d->handlePinResult(reader.data(), d->card->change(reader.data(), type, pin, newpin), true);
-}
+QSmartCard::~QSmartCard() noexcept = default;
 
 QSmartCardData QSmartCard::data() const { return d->t; }
 
 QSmartCard::ErrorType QSmartCard::pinChange(QSmartCardData::PinType type, QSmartCard::PinAction action, QWidget* parent)
 {
-	QScopedPointer<PinUnblock> p;
+	std::unique_ptr<PinPopup,QScopedPointerDeleteLater> popup;
 	QByteArray oldPin, newPin;
-	QString title, textBody;
 
 	if (!d->t.isPinpad())
 	{
-		p.reset(new PinUnblock(type, action, d->t.retryCount(type), d->t.data(QSmartCardData::BirthDate).toDate(),
-			d->t.data(QSmartCardData::Id).toString(), d->t.isPUKReplacable(), parent));
-		if (!p->exec())
+		PinUnblock p(type, action, d->t.retryCount(type), d->t.data(QSmartCardData::BirthDate).toDate(),
+			d->t.data(QSmartCardData::Id).toString(), d->t.isPUKReplacable(), parent);
+		if (!p.exec())
 			return CancelError;
-		oldPin = p->firstCodeText().toUtf8();
-		newPin = p->newCodeText().toUtf8();
+		oldPin = p.firstCodeText().toUtf8();
+		newPin = p.newCodeText().toUtf8();
 	}
 	else
 	{
 		SslCertificate cert = d->t.authCert();
-		title = cert.toString(cert.showCN() ? QStringLiteral("CN, serialNumber") : QStringLiteral("GN SN, serialNumber"));
-		textBody = tr("To change %1 on a PinPad reader the old %1 code has to be entered first and then the new %1 code twice.").arg(QSmartCardData::typeString(type));
+		QString title = cert.toString(cert.showCN() ? QStringLiteral("CN, serialNumber") : QStringLiteral("GN SN, serialNumber"));
+		PinPopup::PinFlags flags = {};
+		switch(type)
+		{
+		case QSmartCardData::Pin1Type: flags = PinPopup::Pin1Type; break;
+		case QSmartCardData::Pin2Type: flags = PinPopup::Pin2Type; break;
+		case QSmartCardData::PukType: flags = PinPopup::PukType; break;
+		default: return UnknownError;
+		}
+		popup.reset(new PinPopup(PinPopup::PinFlags(flags|PinPopup::PinpadChangeFlag), title, {}, parent,
+			tr("To change %1 on a PinPad reader the old %1 code has to be entered first and then the new %1 code twice.").arg(QSmartCardData::typeString(type))));
+		popup->open();
 	}
-	return change(type, parent, newPin, oldPin, title, textBody);
+
+	if(auto reader = Private::connect(d->t.reader()))
+		return d->handlePinResult(reader.get(), d->card->change(reader.get(), type, oldPin, newPin));
+	return UnknownError;
 }
 
 QSmartCard::ErrorType QSmartCard::pinUnblock(QSmartCardData::PinType type, QSmartCard::PinAction action, QWidget* parent)
 {
-	QScopedPointer<PinUnblock> p;
-	QByteArray puk, newPin;
-	QString title, textBody;
+	std::unique_ptr<PinPopup,QScopedPointerDeleteLater> popup;
+	QByteArray puk, pin;
 
 	if (!d->t.isPinpad())
 	{
-		p.reset(new PinUnblock(type, action,
-			d->t.retryCount(QSmartCardData::PukType), d->t.data(QSmartCardData::BirthDate).toDate(), d->t.data(QSmartCardData::Id).toString(), d->t.isPUKReplacable(), parent));
-		if (!p->exec())
+		PinUnblock p(type, action, d->t.retryCount(QSmartCardData::PukType), d->t.data(QSmartCardData::BirthDate).toDate(),
+			d->t.data(QSmartCardData::Id).toString(), d->t.isPUKReplacable(), parent);
+		if (!p.exec())
 			return CancelError;
-		puk = p->firstCodeText().toUtf8();
-		newPin = p->newCodeText().toUtf8();
+		puk = p.firstCodeText().toUtf8();
+		pin = p.newCodeText().toUtf8();
 	}
 	else
 	{
 		SslCertificate cert = d->t.authCert();
-		title = cert.toString(cert.showCN() ? QStringLiteral("CN, serialNumber") : QStringLiteral("GN SN, serialNumber"));
+		QString title = cert.toString(cert.showCN() ? QStringLiteral("CN, serialNumber") : QStringLiteral("GN SN, serialNumber"));
+		QString bodyText;
 		switch(action)
 		{
 		case QSmartCard::ActivateWithPuk:
 		case QSmartCard::ChangeWithPuk:
-			textBody = tr("To change %1 code with the PUK code on a PinPad reader the PUK code has to be entered first and then the %1 code twice.").arg(QSmartCardData::typeString(type));
+			bodyText = tr("To change %1 code with the PUK code on a PinPad reader the PUK code has to be entered first and then the %1 code twice.").arg(QSmartCardData::typeString(type));
 			break;
 		case QSmartCard::UnblockWithPuk:
-			textBody = tr("To unblock the %1 code on a PinPad reader the PUK code has to be entered first and then the %1 code twice.").arg(QSmartCardData::typeString(type));
+			bodyText = tr("To unblock the %1 code on a PinPad reader the PUK code has to be entered first and then the %1 code twice.").arg(QSmartCardData::typeString(type));
 			break;
 		default:
 			break;
 		}
+		PinPopup::PinFlags flags = {};
+		switch(type)
+		{
+		case QSmartCardData::Pin1Type: flags = PinPopup::Pin1Type; break;
+		case QSmartCardData::Pin2Type: flags = PinPopup::Pin2Type; break;
+		default: return UnknownError;
+		}
+		popup.reset(new PinPopup(PinPopup::PinFlags(flags|PinPopup::PinpadChangeFlag), title, {}, parent, bodyText));
+		popup->open();
 	}
-	return unblock(type, parent, newPin, puk, title, textBody);
+
+	if(auto reader = Private::connect(d->t.reader()))
+		return d->handlePinResult(reader.get(), d->card->replace(reader.get(), type, puk, pin));
+	return UnknownError;
 }
 
 void QSmartCard::reloadCounters()
@@ -663,25 +641,24 @@ void QSmartCard::reloadCard(const TokenData &token, bool reloadCounters)
 		return;
 
 	QString reader = token.reader();
-	if(token.reader().endsWith(QStringLiteral("..."))) {
+	if(token.reader().endsWith(QLatin1String("..."))) {
 		for(const QString &test: QPCSC::instance().readers()) {
 			if(test.startsWith(token.reader().left(token.reader().size() - 3)))
 				reader = test;
 		}
 	}
 
 	qCDebug(CLog) << "Read" << reader;
-	QScopedPointer<QPCSCReader> selectedReader(new QPCSCReader(reader, &QPCSC::instance()));
-	if(!selectedReader->connect() || !selectedReader->beginTransaction())
+	auto selectedReader = Private::connect(reader);
+	if(!selectedReader)
 		return;
 
-	std::unique_ptr<Card> card;
 	if(IDEMIACard::isSupported(selectedReader->atr()))
-		card = std::make_unique<IDEMIACard>();
+		d->card = std::make_unique<IDEMIACard>();
 	else if(THALESCard::isSupported(selectedReader->atr()))
-		card = std::make_unique<THALESCard>();
+		d->card = std::make_unique<THALESCard>();
 	else {
-		qDebug() << "Unsupported card";
+		qCDebug(CLog) << "Unsupported card";
 		return;
 	}
 
@@ -690,36 +667,14 @@ void QSmartCard::reloadCard(const TokenData &token, bool reloadCounters)
 	t = d->t.d;
 	t->reader = selectedReader->name();
 	t->pinpad = selectedReader->isPinPad();
-	d->card = std::move(card);
-	if(d->card->loadPerso(selectedReader.data(), t))
+	if(d->card->loadPerso(selectedReader.get(), t))
 	{
 		d->t.d = std::move(t);
 		emit dataChanged(d->t);
 	}
 	else
-		qDebug() << "Failed to read card info, try again next round";
+		qCDebug(CLog) << "Failed to read card info, try again next round";
 }
 
 TokenData QSmartCard::tokenData() const { return d->token; }
 
-QSmartCard::ErrorType QSmartCard::unblock(QSmartCardData::PinType type, QWidget* parent, const QString &pin, const QString &puk, const QString &title, const QString &bodyText)
-{
-	PinPopup::PinFlags flags = {};
-	switch(type)
-	{
-	case QSmartCardData::Pin1Type: flags = PinPopup::Pin1Type; break;
-	case QSmartCardData::Pin2Type: flags = PinPopup::Pin2Type; break;
-	default: return UnknownError;
-	}
-	QSharedPointer<QPCSCReader> reader(d->connect(d->t.reader()));
-	if(!reader)
-		return UnknownError;
-
-	QScopedPointer<PinPopup> p;
-	if(d->t.isPinpad())
-	{
-		p.reset(new PinPopup(PinPopup::PinFlags(flags|PinPopup::PinpadChangeFlag), title, {}, parent, bodyText));
-		p->open();
-	}
-	return d->handlePinResult(reader.data(), d->card->replace(reader.data(), type, puk, pin), true);
-}