Issue #MOCCA-746 - QuoVadis SuisseID integration

git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@788 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4

1 files changed, 0 insertions, 303 deletions

diff --git a/smcc/src/main/java/at/gv/egiz/smcc/SwissSignIDCard.java b/smcc/src/main/java/at/gv/egiz/smcc/SwissSignIDCard.java
deleted file mode 100644
index f2eea0ae..00000000
--- a/smcc/src/main/java/at/gv/egiz/smcc/SwissSignIDCard.java
+++ /dev/null
@@ -1,303 +0,0 @@
-/*
-* Copyright 2008 Federal Chancellery Austria and
-* Graz University of Technology
-*
-* Licensed under the Apache License, Version 2.0 (the "License");
-* you may not use this file except in compliance with the License.
-* You may obtain a copy of the License at
-*
-*     http://www.apache.org/licenses/LICENSE-2.0
-*
-* Unless required by applicable law or agreed to in writing, software
-* distributed under the License is distributed on an "AS IS" BASIS,
-* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-* See the License for the specific language governing permissions and
-* limitations under the License.
-*/
-
-
-package at.gv.egiz.smcc;
-
-import at.gv.egiz.smcc.pin.gui.PINGUI;
-
-import java.io.ByteArrayOutputStream;
-import java.io.IOException;
-import java.io.InputStream;
-import java.security.MessageDigest;
-import java.security.NoSuchAlgorithmException;
-
-import javax.smartcardio.CardChannel;
-import javax.smartcardio.CardException;
-import javax.smartcardio.CommandAPDU;
-import javax.smartcardio.ResponseAPDU;
-
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-import at.gv.egiz.smcc.util.ISO7816Utils;
-import at.gv.egiz.smcc.util.SMCCHelper;
-
-public class SwissSignIDCard extends AbstractSignatureCard implements SignatureCard {
-  
-  /**
-   * Logging facility.
-   */
-  private final Logger log = LoggerFactory.getLogger(SwissSignIDCard.class);
-
-  public static final byte[] MF = new byte[] { (byte) 0x3F, (byte) 0x00 };
-
-  public static final byte[] AID_SIG = new byte[] { (byte) 0xd2, (byte) 0x76,
-      (byte) 0x00, (byte) 0x00, (byte) 0x66, (byte) 0x01 };
-
-  public static final byte[] PATH_SIGN_CERT = new byte[] { (byte) 0x3F,
-      (byte) 0x00, (byte) 0x50, (byte) 0x15, (byte) 0x43, (byte) 0x04,
-      (byte) 0x43, (byte) 0x05 };
-
-  public static final byte KID = (byte) 0x81;
-
-  protected PinInfo pinInfo =
-    new PinInfo(5, 12, "[0-9]",
-      "at/gv/egiz/smcc/SwissSignIDCard", "pin", KID, AID_SIG, PinInfo.UNKNOWN_RETRIES);
-    
-  /**
-   * Creates a new instance.
-   */
-  public SwissSignIDCard() {
-    super("at/gv/egiz/smcc/SwissSignIDCard");
-  }
-
-  @Override
-  @Exclusive
-  public byte[] getCertificate(KeyboxName keyboxName)
-      throws SignatureCardException {
-
-    if (keyboxName != KeyboxName.SECURE_SIGNATURE_KEYPAIR) {
-      throw new IllegalArgumentException("Keybox " + keyboxName
-          + " not supported");
-    }
-
-    try {
-      CardChannel channel = getCardChannel();
-      // SELECT MF
-      execSELECT_PATH(channel, PATH_SIGN_CERT);
-      // READ BINARY
-      byte[] certificate = ISO7816Utils.readTransparentFileTLV(channel, -1, (byte) 0x30);
-      if (certificate == null) {
-        throw new NotActivatedException();
-      }
-      return certificate;
-    } catch (FileNotFoundException e) {
-      throw new NotActivatedException();
-    } catch (CardException e) {
-      log.info("Failed to get certificate.", e);
-      throw new SignatureCardException(e);
-    }
-
-  }
-
-  @Override
-  @Exclusive
-  public byte[] getInfobox(String infobox, PINGUI provider, String domainId)
-      throws SignatureCardException, InterruptedException {
-      
-    throw new IllegalArgumentException("Infobox '" + infobox
-        + "' not supported.");
-  }
-
-  @Override
-  @Exclusive
-  public byte[] createSignature(InputStream input, KeyboxName keyboxName,
-      PINGUI provider, String alg) throws SignatureCardException, InterruptedException, IOException {
-    
-    if (KeyboxName.SECURE_SIGNATURE_KEYPAIR != keyboxName) {
-      throw new SignatureCardException("Card does not support key " + keyboxName + ".");
-    }
-    if (!"http://www.w3.org/2000/09/xmldsig#rsa-sha1".equals(alg)) {
-      throw new SignatureCardException("Card does not support algorithm " + alg + ".");
-    }
-    
-    MessageDigest md;
-    try {
-      md = MessageDigest.getInstance("SHA-1");
-    } catch (NoSuchAlgorithmException e) {
-      log.error("Failed to get MessageDigest.", e);
-      throw new SignatureCardException(e);
-    }
-    // calculate message digest
-    byte[] digest = new byte[md.getDigestLength()];
-    for (int l; (l = input.read(digest)) != -1;) {
-      md.update(digest, 0, l);
-    }
-    digest = md.digest();
-
-    byte[] oid = new byte[] { (byte) 0x30, (byte) 0x21, (byte) 0x30,
-        (byte) 0x09, (byte) 0x06, (byte) 0x05, (byte) 0x2b,
-        (byte) 0x0e, (byte) 0x03, (byte) 0x02, (byte) 0x1a,
-        (byte) 0x05, (byte) 0x00, (byte) 0x04, (byte) 0x14 };
-    
-    ByteArrayOutputStream data = new ByteArrayOutputStream();
-    
-    try {
-      // oid
-      data.write(oid);
-      // hash
-      data.write(digest);
-    } catch (IOException e) {
-      throw new SignatureCardException(e);
-    }
-    
-    try {
-      
-      CardChannel channel = getCardChannel();
-
-      // SELECT AID
-      execSELECT_AID(channel, AID_SIG);
-      // MANAGE SECURITY ENVIRONMENT : RESTORE SE
-      execMSE_RESOTRE(channel, 0x01);
-      // VERIFY
-      verifyPINLoop(channel, pinInfo, provider);
-      // PERFORM SECURITY OPERATION : COMPUTE DIGITAL SIGNATURE
-      return execPSO_COMPUTE_DIGITAL_SIGNATURE(channel, data.toByteArray());
-
-    } catch (CardException e) {
-      log.warn("Failed to execute command.", e);
-      throw new SignatureCardException("Failed to access card.", e);
-    }
-
-  }
-
-  public String toString() {
-    return "Belpic Card";
-  }
-  
-  protected void verifyPINLoop(CardChannel channel, PinInfo spec,
-      PINGUI provider) throws LockedException, NotActivatedException,
-      SignatureCardException, InterruptedException, CardException {
-    
-    int retries = -1; //verifyPIN(channel, spec, null, -1);
-    do {
-      retries = verifyPIN(channel, spec, provider, retries);
-    } while (retries > 0);
-  }
-
-  protected int verifyPIN(CardChannel channel, PinInfo pinSpec,
-      PINGUI provider, int retries) throws SignatureCardException,
-      LockedException, NotActivatedException, InterruptedException,
-      CardException {
-    
-    VerifyAPDUSpec apduSpec = new VerifyAPDUSpec(
-        new byte[] {
-            (byte) 0x00, (byte) 0x20, (byte) 0x00, pinSpec.getKID()},
-        0, VerifyAPDUSpec.PIN_FORMAT_ASCII, 0);
-    
-    ResponseAPDU resp = reader.verify(channel, apduSpec, provider, pinSpec, retries);
-    
-    if (resp.getSW() == 0x9000) {
-      return -1;
-    }
-    if (resp.getSW() >> 4 == 0x63c) {
-      return 0x0f & resp.getSW();
-    }
-    
-    switch (resp.getSW()) {
-    case 0x6983:
-      // authentication method blocked
-      throw new LockedException();
-    case 0x6984:
-      // reference data not usable
-      throw new NotActivatedException();
-    case 0x6985:
-      // conditions of use not satisfied
-      throw new NotActivatedException();
-  
-    default:
-      String msg = "VERIFY failed. SW=" + Integer.toHexString(resp.getSW()); 
-      log.info(msg);
-      throw new SignatureCardException(msg);
-    }
-    
-  }
-  
-  protected byte[] execSELECT_AID(CardChannel channel, byte[] aid)
-      throws SignatureCardException, CardException {
-    
-    ResponseAPDU resp = channel.transmit(
-        new CommandAPDU(0x00, 0xA4, 0x04, 0x00, aid, 256));
-    
-    if (resp.getSW() == 0x6A82) {
-      String msg = "File or application not found AID="
-          + SMCCHelper.toString(aid) + " SW="
-          + Integer.toHexString(resp.getSW()) + ".";
-      log.info(msg);
-      throw new FileNotFoundException(msg);
-    } else if (resp.getSW() != 0x9000) {
-      String msg = "Failed to select application FID="
-          + SMCCHelper.toString(aid) + " SW="
-          + Integer.toHexString(resp.getSW()) + ".";
-      log.error(msg);
-      throw new SignatureCardException(msg);
-    } else {
-      return resp.getBytes();
-    }
-    
-  }
-
-  protected byte[] execSELECT_PATH(CardChannel channel, byte[] path)
-  throws SignatureCardException, CardException {
-
-    int p1 = (path.length > 1 && path[0] == 0x3F && path[1] == 0x00) ? 0x08 : 0x09; 
-    
-    ResponseAPDU resp = channel.transmit(
-        new CommandAPDU(0x00, 0xA4, p1, 0x00, path, 256));
-    
-    if (resp.getSW() == 0x6A82) {
-      String msg = "File or application not found PATH="
-          + SMCCHelper.toString(path) + " SW="
-          + Integer.toHexString(resp.getSW()) + ".";
-      log.info(msg);
-      throw new FileNotFoundException(msg);
-    } else if (resp.getSW() != 0x9000) {
-      String msg = "Failed to select PATH="
-          + SMCCHelper.toString(path) + " SW="
-          + Integer.toHexString(resp.getSW()) + ".";
-      log.error(msg);
-      throw new SignatureCardException(msg);
-    } else {
-      return resp.getBytes();
-    }
-
-  }
-  
-  
-  protected void execMSE_RESOTRE(CardChannel channel, int seid)
-      throws CardException, SignatureCardException {
-    ResponseAPDU resp = channel.transmit(
-        new CommandAPDU(0x00, 0x22, 0xf3, seid));
-    if (resp.getSW() != 0x9000) {
-      throw new SignatureCardException("MSE:RESTORE failed: SW="
-          + Integer.toHexString(resp.getSW()));
-    }
-  }
-
-  protected byte[] execPSO_COMPUTE_DIGITAL_SIGNATURE(CardChannel channel, byte[] hash)
-      throws CardException, SignatureCardException {
-    ResponseAPDU resp;
-    resp = channel.transmit(
-        new CommandAPDU(0x00, 0x2A, 0x9E, 0x9A, hash, 256));
-    if (resp.getSW() == 0x6982) {
-      throw new SecurityStatusNotSatisfiedException();
-    } else if (resp.getSW() == 0x6983) {
-      throw new LockedException();
-    } else if (resp.getSW() != 0x9000) {
-      throw new SignatureCardException(
-          "PSO: COMPUTE DIGITAL SIGNATRE failed: SW="
-              + Integer.toHexString(resp.getSW()));
-    } else {
-      return resp.getData();
-    }
-  }
-
-
-
-    
-}