Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge to master #108

Merged
merged 85 commits into from
Jun 28, 2024
Merged

Merge to master #108

merged 85 commits into from
Jun 28, 2024

Conversation

cedelavergne-ledger
Copy link
Contributor

apaillier-ledger and others added 30 commits October 17, 2023 15:32
@apaillier-ledger @cedelavergne-ledger
Fixed use of deprecated os_ prefixed functions
3c54f1d
@apaillier-ledger @cedelavergne-ledger
Fix implicit cast warnings
ee371da
@apaillier-ledger @cedelavergne-ledger
Fix excess elements in struct initializer warnings
eaaaa04
@apaillier-ledger @cedelavergne-ledger
Simplify LNS-specific checks
9ec1fb2
@apaillier-ledger @cedelavergne-ledger
Removed Blue specific code
7f6abae
@apaillier-ledger @cedelavergne-ledger
Now non-LNS devices only have one full OpenPGP app
719d5d2
@apaillier-ledger @cedelavergne-ledger
Fixed unused variable warnings
8f03f23
@cedelavergne-ledger
Fix linter output and formatting
91714aa
@cedelavergne-ledger
Remove aplha channel from icons
d72445d
@cedelavergne-ledger
Fix scan-build issues
1b7e959
@cedelavergne-ledger
Fix crypto deprecated warnings
e8e46d7
@cedelavergne-ledger
Use the latest SDK
bebae9b 
- Update the Makefile
- Fix glyphs and use those from sdk
- Remove hardcoded files
@cedelavergne-ledger
Activate Standard App Files; Add App manifest
ce190aa
@cedelavergne-ledger
Code refactoring
4257be0 
- Update and cleanup error codes
- Add constant defines
- Fix Select missing tag
- Add missing General Feature Management Tag
- Syntax and formatting
- Remove TRY/CATCH
- Cleanup THROW/return statements
- Remove usuless goto
- improve readability
- Use ledger_assert
- Improve popup messages
- Remove flag GPG_SHAKE256; same code for all devices
- Optimize PIN counter write and correct return code
- Cleanup ux code
  - Factorization
  - Add indication in About menu for debug build
  - Use global label constants
@cedelavergne-ledger
Code bugfix
f336a19 
- Fix APDU Set Slot to refresh the current key slot
- Fix Manage Security Environment bad parameter
- Fix set offset in APDU buffer (io buffers)
- Fix ui_info empty string
- Fix Nanos Main menu bad display
@cedelavergne-ledger
PRODUCT: Change Key slots management
9f3130e 
- Only a single slot for "Nanos"
- 3 slots for other platforms
- No more Variants to manage, only OpenPGP is a valid App Name
@cedelavergne-ledger
PRODUCT: Remove deprecated RSA1024
56c0ece
@cedelavergne-ledger
PRODUCT: Update PIN modes management
1eda578 
- Remove support of "On Host"
- Add warnning message if user select "Trust"
@cedelavergne-ledger
PRODUCT: Update SEED mode management
6d66b73 
- Set SEED mode On at startup
- Add a warning if the user disables it
@cedelavergne-ledger
Add Stax support
60bb907
@cedelavergne-ledger
Stax with future nbgl_useCaseKeypad (compilation flag)
09d1e95
@cedelavergne-ledger
Update App icons
c63b28a
@cedelavergne-ledger
Refactoring python cli tools
2a7f9ee
@cedelavergne-ledger
Add ragger tests
6b90184
@cedelavergne-ledger
Add Unit Tests
eab32ad
@cedelavergne-ledger
Add Manual Tests
a227475 
- Helper script to ease the command to
  - Generate keys
  - Encrypt / Decrypt
  - Sign / Verify
@cedelavergne-ledger
Add CI workflows
438cabf
@cedelavergne-ledger
Add pre-commit config
f082713
@cedelavergne-ledger
Refactor documentation
0908c34 
- Align README with default Boilerplate content
- Update README with Tests and Documentation details
- README few formatting
- Update OpenPGP Specifications to 3.3
- Update the Developer and User documentations (formatting, rewritting, adding new elements...)
- PDF generation of both Developer and User documents
- Provide patch file to update CCID driver with correct Ledger device Ids
- Use the renamed app-openpgp
@cedelavergne-ledger
Merge pull request #94 from LedgerHQ/cev/B2CA-969_clean-and-port-stax
e95809c 
B2CA-969: clean and port stax
cedelavergne-ledger and others added 27 commits March 13, 2024 14:49
@cedelavergne-ledger
Remove useless TODO comments
f3070bb
@cedelavergne-ledger
Replace memset by explicit_bzero
710de03
@cedelavergne-ledger
Replace memmove by strlcpy
b4a5c23
@cedelavergne-ledger
Clean magic numbers with define constants
cc8de8e
@cedelavergne-ledger
Cleanup / comment dead code
ae8d1f7
@cedelavergne-ledger
Clear return buffer in case of error
6541cf3
@cedelavergne-ledger
Fix Name display
43da863
@cedelavergne-ledger
Add few buffer checks
7b7bd27
@cedelavergne-ledger
Fix #80: set 'URL of public key' on each slot
3e98639
@cedelavergne-ledger
Add debug PRINTF
2d309b8
@cedelavergne-ledger
Improve test tools
546523a 
- Replace 'pycard' by 'ledgercomm', allowint to work also with 'speculos'
- Update 'manual-tests' allowing expert mode init with full log generation
- Improve backup meachnism
  - Add 'seed-key' option directly to 'backup.py' for easier operation
  - Adapt the document accordingly
@cedelavergne-ledger
Merge pull request #100 from LedgerHQ/cev/fix_app_secu
cd08b73 
Fix App following security Audit
@cedelavergne-ledger
Revert "Add few buffer checks"
8c60342 
Causing issue with secp256r1 curve!

This reverts commit 7b7bd27.
@cedelavergne-ledger
Fix missing curve 'secp256k1' in the menus
6a587af
@cedelavergne-ledger
Update snapshots
120bbeb
@cedelavergne-ledger
Update version
dc6b525
@cedelavergne-ledger
Merge pull request #102 from LedgerHQ/cev/fix_curves
400ff19 
Fix curves
@cedelavergne-ledger
Add inline comment for functions description
3847b06
@cedelavergne-ledger
Minor code optimization to ease readability
d97b0ea 
- Remove useless parameter for 'ui_info'
- Remove useless functions 'gpg_init_ux' and 'io_seproxyhal_display'
- Add constant definition
- Unique function 'app_reset' instead of duplicate code
@cedelavergne-ledger
Replace multiple 'if' by 'switch/case'
37f7ab8
@cedelavergne-ledger
Fix pytools ECC key attribute name
45512ca
@cedelavergne-ledger
Update version to 2.2.2
2ec0a05
@cedelavergne-ledger
Merge pull request #104 from LedgerHQ/cev/issue_101_doc
4f84034 
Issue 101: Improve doc readability
@cedelavergne-ledger
Fix DO_GEN_FEATURES empty during restore
d13a12d
@cedelavergne-ledger
Merge pull request #105 from LedgerHQ/cev/fix_hw_feature_restore
036760b 
Fix DO_GEN_FEATURES empty during restore
[auto] Update screenshot
665c893
@sgliner-ledger
Merge pull request #106 from LedgerHQ/auto-update-screenshots
74e65a4 
[auto] Update Screenshots
github-advanced-security[bot]
github-advanced-security bot found potential problems Jun 28, 2024
View reviewed changes
src/gpg_init.c
Comment on lines +162 to +182
/* Unsupported (yet) Curves
case CX_CURVE_SECP384R1:
*len = sizeof(C_OID_SECP384R1);
return (unsigned char*)PIC(C_OID_SECP384R1);

case CX_CURVE_SECP521R1:
*len = sizeof(C_OID_SECP521R1);
return (unsigned char*)PIC(C_OID_SECP521R1);

case CX_CURVE_BrainPoolP256R1:
*len = sizeof(C_OID_SECP256R1);
return (unsigned char*)PIC(C_OID_SECP256R1);

case CX_CURVE_BrainPoolP384R1:
*len = sizeof(C_OID_SECP384R1);
return (unsigned char*)PIC(C_OID_SECP384R1);

case CX_CURVE_BrainPoolP512R1:
*len = sizeof(C_OID_SECP521R1);
return (unsigned char*)PIC(C_OID_SECP521R1);
*/

Check notice

Code scanning / CodeQL

Commented-out code Note

This comment appears to contain commented-out code.
src/gpg_init.c
Comment on lines +111 to +131
/* Unsupported (yet) Curves
if ( (len == sizeof(C_OID_SECP384R1)) && (memcmp(oid, C_OID_SECP384R1, len)==0) ) {
return CX_CURVE_SECP384R1;
}
if ( (len == sizeof(C_OID_SECP521R1)) && (memcmp(oid, C_OID_SECP521R1, len)==0) ) {
return CX_CURVE_SECP521R1;
}

if ( (len == sizeof(C_OID_BRAINPOOL256T1)) && (memcmp(oid, C_OID_BRAINPOOL256T1, len)==0) ) {
return CX_CURVE_BrainPoolP256T1;
}
if ( (len == sizeof(C_OID_BRAINPOOL256R1)) && (memcmp(oid, C_OID_BRAINPOOL256R1, len)==0) ) {
return CX_CURVE_BrainPoolP256R1;
}
if ( (len == sizeof(C_OID_BRAINPOOL384R1)) && (memcmp(oid, C_OID_BRAINPOOL384R1, len)==0) ) {
return CX_CURVE_BrainPoolP384R1;
}
if ( (len == sizeof(C_OID_BRAINPOOL512R1)) && (memcmp(oid, C_OID_BRAINPOOL512R1, len)==0) ) {
return CX_CURVE_BrainPoolP512R1;
}
*/

Check notice

Code scanning / CodeQL

Commented-out code Note

This comment appears to contain commented-out code.
src/gpg_pso.c
Comment on lines +273 to +399
break;
}
gpg_io_fetch_tl(&t, &l);
if (t != 0x86) {
error = SW_WRONG_DATA;
break;
}

// --- PSO:DEC:ECDH
case 0xA6: {
cx_ecfp_private_key_t *key;
unsigned int sz;
unsigned int curve;
if (G_gpg_vstate.mse_dec->attributes.value[0] != 0x12) {
THROW(SW_CONDITIONS_NOT_SATISFIED);
return SW_CONDITIONS_NOT_SATISFIED;
}
key = &G_gpg_vstate.mse_dec->priv_key.ecfp;
gpg_io_fetch_l(&l);
gpg_io_fetch_tl(&t, &l);
if (t != 0x7f49) {
THROW(SW_WRONG_DATA);
return SW_WRONG_DATA;
}
gpg_io_fetch_tl(&t, &l);
if (t != 0x86) {
THROW(SW_WRONG_DATA);
return SW_WRONG_DATA;
}
curve = gpg_oid2curve(G_gpg_vstate.mse_dec->attributes.value + 1,
G_gpg_vstate.mse_dec->attributes.length - 1);
if (ecfp_key->curve != curve) {
error = SW_CONDITIONS_NOT_SATISFIED;
break;
}
if (curve == CX_CURVE_Curve25519) {
for (cnt = 0; cnt <= 31; cnt++) {
G_gpg_vstate.work.io_buffer[512 + cnt] =
(G_gpg_vstate.work.io_buffer + G_gpg_vstate.io_offset)[31 - cnt];
}
G_gpg_vstate.work.io_buffer[511] = 0x02;
CX_CHECK(cx_ecdh_no_throw(ecfp_key,
CX_ECDH_X,
G_gpg_vstate.work.io_buffer + 511,
65,
G_gpg_vstate.work.io_buffer + 256,
160));
CX_CHECK(cx_ecdomain_parameters_length(ecfp_key->curve, &ksz));

curve = gpg_oid2curve(G_gpg_vstate.mse_dec->attributes.value + 1, G_gpg_vstate.mse_dec->attributes.length - 1);
if (key->curve != curve) {
THROW(SW_CONDITIONS_NOT_SATISFIED);
return SW_CONDITIONS_NOT_SATISFIED;
}
if (curve == CX_CURVE_Curve25519) {
unsigned int i;
for (cnt = 0; cnt <= 31; cnt++) {
G_gpg_vstate.work.io_buffer[128 + cnt] =
G_gpg_vstate.work.io_buffer[287 - cnt];
}
ksz = 32;
} else {
CX_CHECK(
cx_ecdh_no_throw(ecfp_key,
CX_ECDH_X,
G_gpg_vstate.work.io_buffer + G_gpg_vstate.io_offset,
65,
G_gpg_vstate.work.io_buffer + 128,
160));
CX_CHECK(cx_ecdomain_parameters_length(ecfp_key->curve, &ksz));
}
// send
gpg_io_discard(0);
gpg_io_insert(G_gpg_vstate.work.io_buffer + 128, ksz);
error = SW_OK;
break;

for (i = 0; i <= 31; i++) {
G_gpg_vstate.work.io_buffer[512 + i] = (G_gpg_vstate.work.io_buffer + G_gpg_vstate.io_offset)[31 - i];
}
G_gpg_vstate.work.io_buffer[511] = 0x02;
sz = cx_ecdh(key, CX_ECDH_X, G_gpg_vstate.work.io_buffer + 511, 65, G_gpg_vstate.work.io_buffer + 256, 160);
for (i = 0; i <= 31; i++) {
G_gpg_vstate.work.io_buffer[128 + i] = G_gpg_vstate.work.io_buffer[287 - i];
}
sz = 32;
} else {
sz = cx_ecdh(key, CX_ECDH_X, G_gpg_vstate.work.io_buffer + G_gpg_vstate.io_offset, 65,
G_gpg_vstate.work.io_buffer + 128, 160);
}
// send
gpg_io_discard(0);
gpg_io_insert(G_gpg_vstate.work.io_buffer + 128, sz);
return SW_OK;
}
// --- PSO:DEC:xx NOT SUPPORTED
default:
error = SW_REFERENCED_DATA_NOT_FOUND;
break;
}

Check notice

Code scanning / CodeQL

Long switch case Note

Switch has at least one case that is too long:
0 (41 lines)
Loading
.
Switch has at least one case that is too long:
166 (59 lines)
Loading
.
@codecov-commenter
Copy link

Codecov Report

Attention: Patch coverage is 24.00000% with 133 lines in your changes missing coverage. Please review.

Please upload report for BASE (master@19153d0). Learn more about missing BASE report.

Files Patch % Lines
src/gpg_io.c 24.00% 133 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff            @@
##             master     #108   +/-   ##
=========================================
  Coverage          ?   27.01%           
=========================================
  Files             ?        1           
  Lines             ?      211           
  Branches          ?        0           
=========================================
  Hits              ?       57           
  Misses            ?      154           
  Partials          ?        0
Flag Coverage Δ
unittests 27.01% <24.00%> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@cedelavergne-ledger cedelavergne-ledger merged commit 8b59bb8 into master Jun 28, 2024
78 of 80 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@cedelavergne-ledger @codecov-commenter @apaillier-ledger @sgliner-ledger