Keycard 3.1.0 support (#54)

* full keycard 3.1 support (android)

* handle empty card name

* full keycard 3.1 support (ios)

* send keyCardOnDisconnected on NFC Error 102

* temporarely keep the wallet keys in exported data

Author: bitgamma

android/src/main/java/im/status/ethereum/keycard/RNStatusKeycardModule.java

@@ -448,6 +448,35 @@ public void run() {
         }).start();
     }
 
+    @ReactMethod
+    public void getCardName(final Promise promise) {
+        new Thread(new Runnable() {
+            public void run() {
+                try {
+                    promise.resolve(smartCard.getCardName());
+                } catch (IOException | APDUException e) {
+                    Log.d(TAG, e.getMessage());
+                    promise.reject(e);
+                }
+            }
+        }).start();
+    }
+
+    @ReactMethod
+    public void setCardName(final String pin, final String name, final Promise promise) {
+        new Thread(new Runnable() {
+            public void run() {
+                try {
+                    smartCard.setCardName(pin, name);
+                    promise.resolve(true);
+                } catch (IOException | APDUException e) {
+                    Log.d(TAG, e.getMessage());
+                    promise.reject(e);
+                }
+            }
+        }).start();
+    }
+
     @ReactMethod
     public void unpairAndDelete(final String pin, final Promise promise) {
         promise.reject("E_KEYCARD", "Not implemented (unused)");

android/src/main/java/im/status/ethereum/keycard/SmartCard.java

@@ -35,6 +35,7 @@
 import im.status.keycard.applet.ApplicationStatus;
 import im.status.keycard.applet.BIP32KeyPair;
 import im.status.keycard.applet.Mnemonic;
+import im.status.keycard.applet.Metadata;
 import im.status.keycard.applet.CashCommandSet;
 import im.status.keycard.applet.KeycardCommandSet;
 import im.status.keycard.applet.Pairing;
@@ -285,8 +286,11 @@ public WritableMap getApplicationInfo() throws IOException, APDUException {
 
         if (info.isInitializedCard()) {
             String instanceUID = Hex.toHexString(info.getInstanceUID());
+            String cardName = getCardNameOrDefault(cmdSet);
+            cardInfo.putString("card-name", cardName);
 
             Log.i(TAG, "Instance UID: " + instanceUID);
+            Log.i(TAG, "Card name: " + cardName);
             Log.i(TAG, "Key UID: " + Hex.toHexString(info.getKeyUID()));
             Log.i(TAG, "Secure channel public key: " + Hex.toHexString(info.getSecureChannelPubKey()));
             Log.i(TAG, "Application version: " + info.getAppVersionString());
@@ -437,31 +441,37 @@ public WritableMap getKeys(final String pin) throws IOException, APDUException {
 
     public WritableMap importKeys(final String pin) throws IOException, APDUException {
         KeycardCommandSet cmdSet = authenticatedCommandSet(pin);
+        ApplicationInfo info = cmdSet.getApplicationInfo();
+
+        byte p2 = (info.getAppVersion() < 0x0310) ? KeycardCommandSet.EXPORT_KEY_P2_PUBLIC_ONLY : KeycardCommandSet.EXPORT_KEY_P2_EXTENDED_PUBLIC;
 
         byte[] tlvEncryption = cmdSet.exportKey(ENCRYPTION_PATH, false, false).checkOK().getData();
         BIP32KeyPair encryptionKeyPair = BIP32KeyPair.fromTLV(tlvEncryption);
 
         byte[] tlvMaster = cmdSet.exportKey(MASTER_PATH, false, true).checkOK().getData();
         BIP32KeyPair masterPair = BIP32KeyPair.fromTLV(tlvMaster);
 
-        byte[] tlvRoot = cmdSet.exportKey(ROOT_PATH, false, true).checkOK().getData();
-        BIP32KeyPair keyPair = BIP32KeyPair.fromTLV(tlvRoot);
+        byte[] tlvRoot = cmdSet.exportKey(ROOT_PATH, false, p2).checkOK().getData();
+        BIP32KeyPair rootKeyPair = BIP32KeyPair.fromTLV(tlvRoot);
 
         byte[] tlvWhisper = cmdSet.exportKey(WHISPER_PATH, false, false).checkOK().getData();
         BIP32KeyPair whisperKeyPair = BIP32KeyPair.fromTLV(tlvWhisper);
 
-        byte[] tlvWallet = cmdSet.exportKey(WALLET_PATH, false, true).checkOK().getData();
-        BIP32KeyPair walletKeyPair = BIP32KeyPair.fromTLV(tlvWallet);
-
-        ApplicationInfo info = cmdSet.getApplicationInfo();
-
         WritableMap data = Arguments.createMap();
         data.putString("address", Hex.toHexString(masterPair.toEthereumAddress()));
         data.putString("public-key", Hex.toHexString(masterPair.getPublicKey()));
-        data.putString("wallet-root-address", Hex.toHexString(keyPair.toEthereumAddress()));
-        data.putString("wallet-root-public-key", Hex.toHexString(keyPair.getPublicKey()));
-        data.putString("wallet-address", Hex.toHexString(walletKeyPair.toEthereumAddress()));
-        data.putString("wallet-public-key", Hex.toHexString(walletKeyPair.getPublicKey()));
+        data.putString("wallet-root-address", Hex.toHexString(rootKeyPair.toEthereumAddress()));
+        data.putString("wallet-root-public-key", Hex.toHexString(rootKeyPair.getPublicKey()));
+        
+        if (rootKeyPair.isExtended()) {
+            data.putString("wallet-root-chain-code", Hex.toHexString(rootKeyPair.getChainCode()));
+        } //else { (for now we return both keys, because xpub support is not yet available)
+            byte[] tlvWallet = cmdSet.exportKey(WALLET_PATH, false, true).checkOK().getData();
+            BIP32KeyPair walletKeyPair = BIP32KeyPair.fromTLV(tlvWallet);
+            data.putString("wallet-address", Hex.toHexString(walletKeyPair.toEthereumAddress()));
+            data.putString("wallet-public-key", Hex.toHexString(walletKeyPair.getPublicKey()));
+        //}
+
         data.putString("whisper-address", Hex.toHexString(whisperKeyPair.toEthereumAddress()));
         data.putString("whisper-public-key", Hex.toHexString(whisperKeyPair.getPublicKey()));
         data.putString("whisper-private-key", Hex.toHexString(whisperKeyPair.getPrivateKey()));
@@ -474,14 +484,15 @@ public WritableMap importKeys(final String pin) throws IOException, APDUExceptio
 
     public WritableMap generateAndLoadKey(final String mnemonic, final String pin) throws IOException, APDUException {
         KeycardCommandSet cmdSet = authenticatedCommandSet(pin);
+        byte p2 = (cmdSet.getApplicationInfo().getAppVersion() < 0x0310) ? KeycardCommandSet.EXPORT_KEY_P2_PUBLIC_ONLY : KeycardCommandSet.EXPORT_KEY_P2_EXTENDED_PUBLIC;
 
         byte[] seed = Mnemonic.toBinarySeed(mnemonic, "");
         BIP32KeyPair keyPair = BIP32KeyPair.fromBinarySeed(seed);
 
         cmdSet.loadKey(keyPair).checkOK();
         log("keypair loaded to card");
 
-        byte[] tlvRoot = cmdSet.exportKey(ROOT_PATH, false, true).checkOK().getData();
+        byte[] tlvRoot = cmdSet.exportKey(ROOT_PATH, false, p2).checkOK().getData();
         Log.i(TAG, "Derived " + ROOT_PATH);
         BIP32KeyPair rootKeyPair = BIP32KeyPair.fromTLV(tlvRoot);
 
@@ -493,23 +504,28 @@ public WritableMap generateAndLoadKey(final String mnemonic, final String pin) t
         Log.i(TAG, "Derived " + ENCRYPTION_PATH);
         BIP32KeyPair encryptionKeyPair = BIP32KeyPair.fromTLV(tlvEncryption);
 
-        byte[] tlvWallet = cmdSet.exportKey(WALLET_PATH, false, true).checkOK().getData();
-        Log.i(TAG, "Derived " + WALLET_PATH);
-        BIP32KeyPair walletKeyPair = BIP32KeyPair.fromTLV(tlvWallet);
-
-        ApplicationInfo info = new ApplicationInfo(cmdSet.select().checkOK().getData());
-
         WritableMap data = Arguments.createMap();
         data.putString("address", Hex.toHexString(keyPair.toEthereumAddress()));
         data.putString("public-key", Hex.toHexString(keyPair.getPublicKey()));
         data.putString("wallet-root-address", Hex.toHexString(rootKeyPair.toEthereumAddress()));
         data.putString("wallet-root-public-key", Hex.toHexString(rootKeyPair.getPublicKey()));
-        data.putString("wallet-address", Hex.toHexString(walletKeyPair.toEthereumAddress()));
-        data.putString("wallet-public-key", Hex.toHexString(walletKeyPair.getPublicKey()));
+
+        if (rootKeyPair.isExtended()) {
+            data.putString("wallet-root-chain-code", Hex.toHexString(rootKeyPair.getChainCode()));
+        } //else { (see note above)
+            byte[] tlvWallet = cmdSet.exportKey(WALLET_PATH, false, true).checkOK().getData();
+            BIP32KeyPair walletKeyPair = BIP32KeyPair.fromTLV(tlvWallet);
+            data.putString("wallet-address", Hex.toHexString(walletKeyPair.toEthereumAddress()));
+            data.putString("wallet-public-key", Hex.toHexString(walletKeyPair.getPublicKey()));
+        //}
+
         data.putString("whisper-address", Hex.toHexString(whisperKeyPair.toEthereumAddress()));
         data.putString("whisper-public-key", Hex.toHexString(whisperKeyPair.getPublicKey()));
         data.putString("whisper-private-key", Hex.toHexString(whisperKeyPair.getPrivateKey()));
         data.putString("encryption-public-key", Hex.toHexString(encryptionKeyPair.getPublicKey()));
+
+        ApplicationInfo info = new ApplicationInfo(cmdSet.select().checkOK().getData());
+
         data.putString("instance-uid", Hex.toHexString(info.getInstanceUID()));
         data.putString("key-uid", Hex.toHexString(info.getKeyUID()));
 
@@ -662,6 +678,19 @@ public String signPinless(final String message) throws IOException, APDUExceptio
         return sig;
     }
 
+    public String getCardName() throws IOException, APDUException {
+        KeycardCommandSet cmdSet = new KeycardCommandSet(this.cardChannel);
+        cmdSet.select().checkOK();
+        return getCardNameOrDefault(cmdSet);
+    } 
+
+    public void setCardName(final String pin, final String name) throws IOException, APDUException {
+        KeycardCommandSet cmdSet = authenticatedCommandSet(pin);
+
+        Metadata m = new Metadata(name);
+        cmdSet.storeData(m.toByteArray(), KeycardCommandSet.STORE_DATA_P1_PUBLIC).checkOK();
+    }    
+
     public WritableMap verifyCard(final String challenge) throws IOException, APDUException {
         KeycardCommandSet cmdSet = new KeycardCommandSet(this.cardChannel);
         cmdSet.select().checkOK();
@@ -714,6 +743,17 @@ private KeycardCommandSet securedCommandSet() throws IOException, APDUException
         return cmdSet;
     }
 
+    private String getCardNameOrDefault(KeycardCommandSet cmdSet) throws IOException, APDUException {
+        byte[] data = cmdSet.getData(KeycardCommandSet.STORE_DATA_P1_PUBLIC).checkOK().getData();
+
+        try {
+            Metadata m = Metadata.fromData(data);
+            return m.getCardName();
+        } catch(Exception e) {
+            return "";
+        }
+    }
+
     private void openSecureChannel(KeycardCommandSet cmdSet) throws IOException, APDUException {
         String instanceUID = Hex.toHexString(cmdSet.getApplicationInfo().getInstanceUID());
         String pairingBase64 = pairings.get(instanceUID);

ios/SmartCard.swift

@@ -54,33 +54,42 @@ class SmartCard {
 
     func generateAndLoadKey(channel: CardChannel, mnemonic: String, pin: String, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
       let cmdSet = try authenticatedCommandSet(channel: channel, pin: pin)
+      let exportOption = cmdSet.info!.appVersion < 0x0310 ? KeycardCommandSet.ExportOption.publicOnly : .extendedPublic
+        
       let seed = Mnemonic.toBinarySeed(mnemonicPhrase: mnemonic)
       let keyPair = BIP32KeyPair(fromSeed: seed)
 
       try cmdSet.loadKey(keyPair: keyPair).checkOK()
       os_log("keypair loaded to card")
 
-      let rootKeyPair = try exportKey(cmdSet: cmdSet, path: .rootPath, makeCurrent: false, publicOnly: true)
+      let rootKeyPair = try exportKey(cmdSet: cmdSet, path: .rootPath, makeCurrent: false, exportOption: exportOption)
       let whisperKeyPair = try exportKey(cmdSet: cmdSet, path: .whisperPath, makeCurrent: false, publicOnly: false)
       let encryptionKeyPair = try exportKey(cmdSet: cmdSet, path: .encryptionPath, makeCurrent: false, publicOnly: false)
-      let walletKeyPair = try exportKey(cmdSet: cmdSet, path: .walletPath, makeCurrent: false, publicOnly: true)
-
-      let info = try ApplicationInfo(cmdSet.select().checkOK().data)
 
-      resolve([
+      var keys = [
         "address": bytesToHex(keyPair.toEthereumAddress()),
         "public-key": bytesToHex(keyPair.publicKey),
         "wallet-root-address": bytesToHex(rootKeyPair.toEthereumAddress()),
         "wallet-root-public-key": bytesToHex(rootKeyPair.publicKey),
-        "wallet-address": bytesToHex(walletKeyPair.toEthereumAddress()),
-        "wallet-public-key": bytesToHex(walletKeyPair.publicKey),
         "whisper-address": bytesToHex(whisperKeyPair.toEthereumAddress()),
         "whisper-public-key": bytesToHex(whisperKeyPair.publicKey),
         "whisper-private-key": bytesToHex(whisperKeyPair.privateKey!),
-        "encryption-public-key": bytesToHex(encryptionKeyPair.publicKey),
-        "instance-uid": bytesToHex(info.instanceUID),
-        "key-uid": bytesToHex(info.keyUID)
-      ])
+        "encryption-public-key": bytesToHex(encryptionKeyPair.publicKey)
+      ]
+        
+      if rootKeyPair.isExtended {
+        keys["wallet-root-chain-code"] = bytesToHex(rootKeyPair.chainCode!)
+      } //else { (for now we return both keys, because xpub support is not yet available)
+        let walletKeyPair = try exportKey(cmdSet: cmdSet, path: .walletPath, makeCurrent: false, publicOnly: true)
+        keys["wallet-address"] = bytesToHex(walletKeyPair.toEthereumAddress())
+        keys["wallet-public-key"] = bytesToHex(walletKeyPair.publicKey)
+      //}
+        
+      let info = try ApplicationInfo(cmdSet.select().checkOK().data)
+      keys["instance-uid"] = bytesToHex(info.instanceUID)
+      keys["key-uid"] = bytesToHex(info.keyUID)
+    
+      resolve(keys)
     }
 
     func saveMnemonic(channel: CardChannel, mnemonic: String, pin: String, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
@@ -186,6 +195,9 @@ class SmartCard {
 
       if (info.initializedCard) {
         logAppInfo(info)
+        let cardName = try cardNameOrDefault(cmdSet: cmdSet)
+        cardInfo["card-name"] = cardName
+        
         var isPaired = false
         var isAuthentic = false
         let instanceUID = bytesToHex(info.instanceUID)
@@ -262,29 +274,36 @@ class SmartCard {
 
     func importKeys(channel: CardChannel, pin: String, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
       let cmdSet = try authenticatedCommandSet(channel: channel, pin: pin)
+      let info = cmdSet.info!
+      let exportOption = info.appVersion < 0x0310 ? KeycardCommandSet.ExportOption.publicOnly : .extendedPublic
 
       let encryptionKeyPair = try exportKey(cmdSet: cmdSet, path: .encryptionPath, makeCurrent: false, publicOnly: false)
       let masterPair = try exportKey(cmdSet: cmdSet, path: .masterPath, makeCurrent: false, publicOnly: true)
-      let rootKeyPair = try exportKey(cmdSet: cmdSet, path: .rootPath, makeCurrent: false, publicOnly: true)
+      let rootKeyPair = try exportKey(cmdSet: cmdSet, path: .rootPath, makeCurrent: false, exportOption: exportOption)
       let whisperKeyPair = try exportKey(cmdSet: cmdSet, path: .whisperPath, makeCurrent: false, publicOnly: false)
-      let walletKeyPair = try exportKey(cmdSet: cmdSet, path: .walletPath, makeCurrent: false, publicOnly: true)
 
-      let info = cmdSet.info!
-
-      resolve([
+      var keys = [
         "address": bytesToHex(masterPair.toEthereumAddress()),
         "public-key": bytesToHex(masterPair.publicKey),
         "wallet-root-address": bytesToHex(rootKeyPair.toEthereumAddress()),
         "wallet-root-public-key": bytesToHex(rootKeyPair.publicKey),
-        "wallet-address": bytesToHex(walletKeyPair.toEthereumAddress()),
-        "wallet-public-key": bytesToHex(walletKeyPair.publicKey),
         "whisper-address": bytesToHex(whisperKeyPair.toEthereumAddress()),
         "whisper-public-key": bytesToHex(whisperKeyPair.publicKey),
         "whisper-private-key": bytesToHex(whisperKeyPair.privateKey!),
         "encryption-public-key": bytesToHex(encryptionKeyPair.publicKey),
         "instance-uid": bytesToHex(info.instanceUID),
         "key-uid": bytesToHex(info.keyUID)
-      ])
+      ]
+        
+      if rootKeyPair.isExtended {
+        keys["wallet-root-chain-code"] = bytesToHex(rootKeyPair.chainCode!)
+      } //else { (see note above)
+        let walletKeyPair = try exportKey(cmdSet: cmdSet, path: .walletPath, makeCurrent: false, publicOnly: true)
+        keys["wallet-address"] = bytesToHex(walletKeyPair.toEthereumAddress())
+        keys["wallet-public-key"] = bytesToHex(walletKeyPair.publicKey)
+      //}
+        
+      resolve(keys)
     }
 
     func getKeys(channel: CardChannel, pin: String, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
@@ -404,6 +423,19 @@ class SmartCard {
 
       resolve(true)
     }
+    
+    func getCardName(channel: CardChannel, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
+      let cmdSet = KeycardCommandSet(cardChannel: channel)
+      try cmdSet.select().checkOK()
+      resolve(try cardNameOrDefault(cmdSet: cmdSet))
+    }
+    
+    func setCardName(channel: CardChannel, pin: String, name: String, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) throws -> Void {
+      let cmdSet = try authenticatedCommandSet(channel: channel, pin: pin)
+      let m = Metadata(name)
+      try cmdSet.storeData(data: m.serialize(), type: Keycard.StoreDataP1.publicData.rawValue).checkOK()
+      resolve(true)
+    }
 
     func randomPUK() -> String {
       return String(format: "%012ld", Int64.random(in: 0..<999999999999))
@@ -416,10 +448,27 @@ class SmartCard {
     }
 
     func exportKey(cmdSet: KeycardCommandSet, path: DerivationPath, makeCurrent: Bool, publicOnly: Bool) throws -> BIP32KeyPair {
-      let tlvRoot = try cmdSet.exportKey(path: path.rawValue, makeCurrent: makeCurrent, publicOnly: publicOnly).checkOK().data
+      let option = publicOnly ? KeycardCommandSet.ExportOption.publicOnly : KeycardCommandSet.ExportOption.privateAndPublic
+      return try exportKey(cmdSet: cmdSet, path: path, makeCurrent: makeCurrent, exportOption: option)
+    }
+    
+    func exportKey(cmdSet: KeycardCommandSet, path: DerivationPath, makeCurrent: Bool, exportOption: KeycardCommandSet.ExportOption) throws -> BIP32KeyPair {
+      let tlvRoot = try cmdSet.exportKey(path: path.rawValue, makeCurrent: makeCurrent, exportOption: exportOption).checkOK().data
       os_log("Derived %@", path.rawValue)
       return try BIP32KeyPair(fromTLV: tlvRoot)
     }
+    
+    func cardNameOrDefault(cmdSet: KeycardCommandSet) throws -> String {
+      let data = try cmdSet.getData(type: Keycard.StoreDataP1.publicData.rawValue).checkOK().data
+      
+      if data.count > 0 {
+        do {
+          return try Metadata.fromData(data).cardName
+        } catch _ {}
+      }
+      
+      return ""
+    }
 
     func setPairings(newPairings: NSDictionary, resolve: RCTPromiseResolveBlock, reject: RCTPromiseRejectBlock) -> Void {
       self.pairings.removeAll()

ios/StatusKeycard.m

@@ -33,6 +33,8 @@ @interface RCT_EXTERN_REMAP_MODULE(RNStatusKeycard, StatusKeycard, RCTEventEmitt
 RCT_EXTERN_METHOD(delete:(RCTPromiseResolveBlock)resolve reject: (RCTPromiseRejectBlock)reject)
 RCT_EXTERN_METHOD(removeKey:(NSString *)pin resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject)
 RCT_EXTERN_METHOD(removeKeyWithUnpair:(NSString *)pin resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject)
+RCT_EXTERN_METHOD(getCardName:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject)
+RCT_EXTERN_METHOD(setCardName:(NSString *)pin name:(NSString *)name resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject)
 RCT_EXTERN_METHOD(unpairAndDelete:(NSString *)pin resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject)
 RCT_EXTERN_METHOD(startNFC:(NSString *)prompt resolve:(RCTPromiseResolveBlock)resolve reject: (RCTPromiseRejectBlock)reject)
 RCT_EXTERN_METHOD(stopNFC:(NSString *)err resolve:(RCTPromiseResolveBlock)resolve reject: (RCTPromiseRejectBlock)reject)