/* * * oFono - Open Source Telephony * * Copyright (C) 2008-2011 Intel Corporation. All rights reserved. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as * published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA * */ #ifdef HAVE_CONFIG_H #include #endif #include #include #include #include #include "simutil.h" #include "util.h" #include "smsutil.h" struct sim_eons { struct sim_eons_operator_info *pnn_list; GSList *opl_list; gboolean pnn_valid; int pnn_max; }; struct spdi_operator { char mcc[OFONO_MAX_MCC_LENGTH + 1]; char mnc[OFONO_MAX_MNC_LENGTH + 1]; }; struct opl_operator { char mcc[OFONO_MAX_MCC_LENGTH + 1]; char mnc[OFONO_MAX_MNC_LENGTH + 1]; guint16 lac_tac_low; guint16 lac_tac_high; guint8 id; }; #define MF 1 #define DF 2 #define EF 4 #define BINARY 0 #define RECORD 1 #define CYCLIC 3 #define ALW 0 #define PIN 1 #define PIN2 2 #define ADM 4 #define NEV 15 #define ROOTMF 0x3F00 static struct sim_ef_info ef_db[] = { { 0x2F05, ROOTMF, ROOTMF, EF, BINARY, 0, ALW, PIN }, { 0x2FE2, ROOTMF, ROOTMF, EF, BINARY, 10, ALW, NEV }, { 0x4F20, 0x5F50, 0x5F50, EF, BINARY, 0, PIN, ADM }, { 0x5F50, 0x7F10, 0x7F10, DF, 0, 0, PIN, ADM }, { 0x6F05, 0x7F20, 0x7FFF, EF, BINARY, 0, ALW, PIN }, { 0x6F07, 0x7F20, 0x7FFF, EF, BINARY, 9, PIN, ADM }, { 0x6F11, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, PIN }, { 0x6F13, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, PIN }, { 0x6F14, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, ADM }, { 0x6F15, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, PIN }, { 0x6F16, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, ADM }, { 0x6F17, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6F18, 0x7F20, 0x7FFF, EF, BINARY, 10, PIN, ADM }, { 0x6F19, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6F38, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, ADM }, { 0x6F3A, 0x7F10, 0x7F10, EF, RECORD, 0, PIN, PIN }, { 0x6F3B, 0x7F10, 0x7FFF, EF, RECORD, 0, PIN, PIN2 }, { 0x6F40, 0x7F10, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6F45, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, PIN }, { 0x6F46, 0x7F20, 0x7FFF, EF, BINARY, 17, ALW, ADM }, { 0x6F48, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, ADM }, { 0x6F49, 0x7F10, 0x7FFF, EF, RECORD, 0, PIN, ADM }, { 0x6F4D, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN2 }, { 0x6F50, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, PIN }, { 0x6F56, 0x0000, 0x7FFF, EF, BINARY, 0, PIN, PIN2 }, { 0x6FAD, 0x7F20, 0x7FFF, EF, BINARY, 0, ALW, ADM }, { 0x6FAE, 0x7F20, 0x0000, EF, BINARY, 1, ALW, ADM }, { 0x6FB7, 0x7F20, 0x7FFF, EF, BINARY, 0, ALW, ADM }, { 0x6FC5, 0x7F20, 0x7FFF, EF, RECORD, 0, ALW, ADM }, { 0x6FC6, 0x7F20, 0x7FFF, EF, RECORD, 0, ALW, ADM }, { 0x6FC7, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6FC9, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6FCA, 0x7F20, 0x7FFF, EF, RECORD, 0, PIN, PIN }, { 0x6FCB, 0x7F20, 0x7FFF, EF, RECORD, 16, PIN, PIN }, { 0x6FCD, 0x7F20, 0x7FFF, EF, BINARY, 0, PIN, ADM }, { 0x6FDE, 0x7F20, 0x7FFF, EF, BINARY, 0, ALW, ADM }, { 0x7F10, ROOTMF, ROOTMF, DF, 0, 0, 0, 0 }, { 0x7F20, ROOTMF, ROOTMF, DF, 0, 0, 0, 0 }, { 0x7FFF, 0x0000, ROOTMF, DF, 0, 0, 0, 0 } }; void simple_tlv_iter_init(struct simple_tlv_iter *iter, const unsigned char *pdu, unsigned int len) { iter->pdu = pdu; iter->max = len; iter->pos = 0; iter->tag = 0; iter->len = 0; iter->data = NULL; } gboolean simple_tlv_iter_next(struct simple_tlv_iter *iter) { const unsigned char *pdu = iter->pdu + iter->pos; const unsigned char *end = iter->pdu + iter->max; unsigned char tag; unsigned short len; if (pdu == end) return FALSE; tag = *pdu; pdu++; /* * ISO 7816-4, Section 5.2.1: * * The tag field consists of a single byte encoding a tag number from * 1 to 254. The values 00 and FF are invalid for tag fields. * * The length field consists of one or three consecutive bytes. * - If the first byte is not set to FF, then the length field * consists of a single byte encoding a number from zero to * 254 and denoted N. * - If the first byte is set to FF, then the length field * continues on the subsequent two bytes with any value * encoding a number from zero to 65535 and denoted N * * If N is zero, there is no value field, i.e. data object is empty. */ if (pdu == end) return FALSE; len = *pdu++; if (len == 0xFF) { if ((pdu + 2) > end) return FALSE; len = (pdu[0] << 8) | pdu[1]; pdu += 2; } if (pdu + len > end) return FALSE; iter->tag = tag; iter->len = len; iter->data = pdu; iter->pos = pdu + len - iter->pdu; return TRUE; } unsigned char simple_tlv_iter_get_tag(struct simple_tlv_iter *iter) { return iter->tag; } unsigned short simple_tlv_iter_get_length(struct simple_tlv_iter *iter) { return iter->len; } const unsigned char *simple_tlv_iter_get_data(struct simple_tlv_iter *iter) { return iter->data; } void comprehension_tlv_iter_init(struct comprehension_tlv_iter *iter, const unsigned char *pdu, unsigned int len) { iter->pdu = pdu; iter->max = len; iter->pos = 0; iter->tag = 0; iter->cr = FALSE; iter->data = 0; } /* Comprehension TLVs defined in Section 7 of ETSI TS 101.220 */ gboolean comprehension_tlv_iter_next(struct comprehension_tlv_iter *iter) { const unsigned char *pdu = iter->pdu + iter->pos; const unsigned char *end = iter->pdu + iter->max; unsigned short tag; unsigned short len; gboolean cr; if (pdu == end) return FALSE; if (*pdu == 0x00 || *pdu == 0xFF || *pdu == 0x80) return FALSE; cr = bit_field(*pdu, 7, 1); tag = bit_field(*pdu, 0, 7); pdu++; /* * ETSI TS 101.220, Section 7.1.1.2 * * If byte 1 of the tag is equal to 0x7F, then the tag is encoded * on the following two bytes, with bit 8 of the 2nd byte of the tag * being the CR flag. */ if (tag == 0x7F) { if ((pdu + 2) > end) return FALSE; cr = bit_field(pdu[0], 7, 1); tag = ((pdu[0] & 0x7f) << 8) | pdu[1]; if (tag < 0x0001 || tag > 0x7fff) return FALSE; pdu += 2; } if (pdu == end) return FALSE; len = *pdu++; if (len >= 0x80) { unsigned int extended_bytes = len - 0x80; unsigned int i; if (extended_bytes == 0 || extended_bytes > 3) return FALSE; if ((pdu + extended_bytes) > end) return FALSE; if (pdu[0] == 0) return FALSE; for (len = 0, i = 0; i < extended_bytes; i++) len = (len << 8) | *pdu++; } if (pdu + len > end) return FALSE; iter->tag = tag; iter->cr = cr; iter->len = len; iter->data = pdu; iter->pos = pdu + len - iter->pdu; return TRUE; } unsigned short comprehension_tlv_iter_get_tag( struct comprehension_tlv_iter *iter) { return iter->tag; } gboolean comprehension_tlv_get_cr(struct comprehension_tlv_iter *iter) { return iter->cr; } unsigned int comprehension_tlv_iter_get_length( struct comprehension_tlv_iter *iter) { return iter->len; } const unsigned char *comprehension_tlv_iter_get_data( struct comprehension_tlv_iter *iter) { return iter->data; } void comprehension_tlv_iter_copy(struct comprehension_tlv_iter *from, struct comprehension_tlv_iter *to) { to->max = from->max; to->pos = from->pos; to->pdu = from->pdu; to->tag = from->tag; to->cr = from->cr; to->len = from->len; to->data = from->data; } void ber_tlv_iter_init(struct ber_tlv_iter *iter, const unsigned char *pdu, unsigned int len) { iter->pdu = pdu; iter->max = len; iter->pos = 0; } unsigned int ber_tlv_iter_get_tag(struct ber_tlv_iter *iter) { return iter->tag; } enum ber_tlv_data_type ber_tlv_iter_get_class(struct ber_tlv_iter *iter) { return iter->class; } enum ber_tlv_data_encoding_type ber_tlv_iter_get_encoding(struct ber_tlv_iter *iter) { return iter->encoding; } unsigned char ber_tlv_iter_get_short_tag(struct ber_tlv_iter *iter) { if (iter->tag > 30) return 0; return iter->tag | (iter->encoding << 5) | (iter->class << 6); } unsigned int ber_tlv_iter_get_length(struct ber_tlv_iter *iter) { return iter->len; } const unsigned char *ber_tlv_iter_get_data(struct ber_tlv_iter *iter) { return iter->data; } /* BER TLV structure is defined in ISO/IEC 7816-4 */ gboolean ber_tlv_iter_next(struct ber_tlv_iter *iter) { const unsigned char *pdu = iter->pdu + iter->pos; const unsigned char *end = iter->pdu + iter->max; unsigned int tag; unsigned int len; enum ber_tlv_data_type class; enum ber_tlv_data_encoding_type encoding; while ((pdu < end) && (*pdu == 0x00 || *pdu == 0xff)) pdu++; if (pdu == end) return FALSE; class = bit_field(*pdu, 6, 2); encoding = bit_field(*pdu, 5, 1); tag = bit_field(*pdu, 0, 5); pdu++; /* * ISO 7816-4, Section 5.2.2.1: * "If bits 5 to 1 of the first byte of the tag are not * all set to 1, then they encode a tag number from zero * to thirty and the tag field consists of a single byte. * * Otherwise, the tag field continues on one or more * subsequent bytes * - Bit 8 of each subsequent byte shall be set to 1, * unless it is the last subsequent byte * - Bits 7 to 1 of the first subsequent byte shall not be * all set to 0 * - Bits 7 to 1 of the first subsequent byte, followed by * bits 7 to 1 of each further subsequent byte, up to * and including bits 7 to 1 of the last subsequent * byte encode a tag number. */ if (tag == 0x1f) { if (pdu == end) return FALSE; /* First byte of the extended tag cannot contain 0 */ if ((*pdu & 0x7f) == 0) return FALSE; tag = 0; while ((pdu < end) && (*pdu & 0x80)) { tag = (tag << 7) | (*pdu & 0x7f); pdu++; } if (pdu == end) return FALSE; tag = (tag << 7) | *pdu; pdu++; } if (pdu == end) return FALSE; len = *pdu++; if (len >= 0x80) { unsigned int extended_bytes = len - 0x80; unsigned int i; if (extended_bytes == 0 || extended_bytes > 4) return FALSE; if ((pdu + extended_bytes) > end) return FALSE; if (pdu[0] == 0) return FALSE; for (len = 0, i = 0; i < extended_bytes; i++) len = (len << 8) | *pdu++; } if (pdu + len > end) return FALSE; iter->tag = tag; iter->class = class; iter->encoding = encoding; iter->len = len; iter->data = pdu; iter->pos = pdu + len - iter->pdu; return TRUE; } void ber_tlv_iter_recurse(struct ber_tlv_iter *iter, struct ber_tlv_iter *recurse) { recurse->pdu = iter->data; recurse->max = iter->len; recurse->pos = 0; } void ber_tlv_iter_recurse_simple(struct ber_tlv_iter *iter, struct simple_tlv_iter *container) { simple_tlv_iter_init(container, iter->data, iter->len); } void ber_tlv_iter_recurse_comprehension(struct ber_tlv_iter *iter, struct comprehension_tlv_iter *recurse) { comprehension_tlv_iter_init(recurse, iter->data, iter->len); } static const guint8 *ber_tlv_find_by_tag(const guint8 *pdu, guint8 in_tag, int in_len, int *out_len) { struct ber_tlv_iter iter; ber_tlv_iter_init(&iter, pdu, in_len); while (ber_tlv_iter_next(&iter)) { if (ber_tlv_iter_get_short_tag(&iter) != in_tag) continue; if (out_len) *out_len = ber_tlv_iter_get_length(&iter); return ber_tlv_iter_get_data(&iter); } return NULL; } #define MAX_BER_TLV_HEADER 8 gboolean ber_tlv_builder_init(struct ber_tlv_builder *builder, unsigned char *pdu, unsigned int size) { if (size < MAX_BER_TLV_HEADER) return FALSE; builder->pdu = pdu; builder->pos = 0; builder->max = size; builder->parent = NULL; builder->tag = 0xff; builder->len = 0; return TRUE; } #define BTLV_LEN_FIELD_SIZE_NEEDED(a) \ ((a) <= 0x7f ? 1 : \ ((a) <= 0xff ? 2 : \ ((a) <= 0xffff ? 3 : \ ((a) <= 0xffffff ? 4 : 5)))) #define BTLV_TAG_FIELD_SIZE_NEEDED(a) \ ((a) <= 0x1e ? 1 : \ ((a) <= 0x7f ? 2 : 3)) static void ber_tlv_builder_write_header(struct ber_tlv_builder *builder) { int tag_size = BTLV_TAG_FIELD_SIZE_NEEDED(builder->tag); int len_size = BTLV_LEN_FIELD_SIZE_NEEDED(builder->len); int offset = MAX_BER_TLV_HEADER - tag_size - len_size; unsigned char *pdu = builder->pdu + builder->pos; /* Pad with stuff bytes */ memset(pdu, 0xff, offset); /* Write the tag */ pdu[offset++] = (builder->class << 6) | (builder->encoding << 5) | (tag_size == 1 ? builder->tag : 0x1f); if (tag_size == 3) pdu[offset++] = 0x80 | (builder->tag >> 7); if (tag_size > 2) pdu[offset++] = builder->tag & 0x7f; /* Write the length */ if (len_size > 1) { int i; pdu[offset++] = 0x80 + len_size - 1; for (i = len_size - 2; i >= 0; i--) pdu[offset++] = (builder->len >> (i * 8)) & 0xff; } else pdu[offset++] = builder->len; } gboolean ber_tlv_builder_next(struct ber_tlv_builder *builder, enum ber_tlv_data_type class, enum ber_tlv_data_encoding_type encoding, unsigned int new_tag) { if (builder->tag != 0xff) { ber_tlv_builder_write_header(builder); builder->pos += MAX_BER_TLV_HEADER + builder->len; } if (ber_tlv_builder_set_length(builder, 0) == FALSE) return FALSE; builder->class = class; builder->encoding = encoding; builder->tag = new_tag; return TRUE; } /* * Resize the TLV because the content of Value field needs more space. * If this TLV is part of another TLV, resize that one too. */ gboolean ber_tlv_builder_set_length(struct ber_tlv_builder *builder, unsigned int new_len) { unsigned int new_pos = builder->pos + MAX_BER_TLV_HEADER + new_len; if (new_pos > builder->max) return FALSE; if (builder->parent) ber_tlv_builder_set_length(builder->parent, new_pos); builder->len = new_len; return TRUE; } unsigned char *ber_tlv_builder_get_data(struct ber_tlv_builder *builder) { return builder->pdu + builder->pos + MAX_BER_TLV_HEADER; } gboolean ber_tlv_builder_recurse(struct ber_tlv_builder *builder, struct ber_tlv_builder *recurse) { unsigned char *end = builder->pdu + builder->max; unsigned char *data = ber_tlv_builder_get_data(builder); if (ber_tlv_builder_init(recurse, data, end - data) == FALSE) return FALSE; recurse->parent = builder; return TRUE; } gboolean ber_tlv_builder_recurse_comprehension(struct ber_tlv_builder *builder, struct comprehension_tlv_builder *recurse) { unsigned char *end = builder->pdu + builder->max; unsigned char *data = ber_tlv_builder_get_data(builder); if (comprehension_tlv_builder_init(recurse, data, end - data) == FALSE) return FALSE; recurse->parent = builder; return TRUE; } void ber_tlv_builder_optimize(struct ber_tlv_builder *builder, unsigned char **out_pdu, unsigned int *out_len) { unsigned int len; unsigned char *pdu; ber_tlv_builder_write_header(builder); len = builder->pos + MAX_BER_TLV_HEADER + builder->len; for (pdu = builder->pdu; *pdu == 0xff; pdu++) len--; if (out_pdu) *out_pdu = pdu; if (out_len) *out_len = len; } gboolean comprehension_tlv_builder_init( struct comprehension_tlv_builder *builder, unsigned char *pdu, unsigned int size) { if (size < 2) return FALSE; builder->pdu = pdu; builder->pos = 0; builder->max = size; builder->parent = NULL; builder->len = 0; builder->pdu[0] = 0; return TRUE; } #define CTLV_TAG_FIELD_SIZE(a) \ bit_field((a), 0, 7) == 0x7f ? 3 : 1 \ #define CTLV_LEN_FIELD_SIZE(a) \ (a) >= 0x80 ? (a) - 0x7f : 1 \ gboolean comprehension_tlv_builder_next( struct comprehension_tlv_builder *builder, gboolean cr, unsigned short tag) { unsigned char *tlv = builder->pdu + builder->pos; unsigned int prev_size = 0; unsigned int new_size; /* Tag is invalid when we start, means we've just been inited */ if (tlv[0] != 0) { unsigned int tag_size = CTLV_TAG_FIELD_SIZE(tlv[0]); prev_size = builder->len + tag_size; prev_size += CTLV_LEN_FIELD_SIZE(tlv[tag_size]); } new_size = (tag < 0x7f ? 1 : 3) + 1; if (builder->pos + prev_size + new_size > builder->max) return FALSE; builder->pos += prev_size; if (tag >= 0x7f) { builder->pdu[builder->pos + 0] = 0x7f; builder->pdu[builder->pos + 1] = (cr ? 0x80 : 0) | (tag >> 8); builder->pdu[builder->pos + 2] = tag & 0xff; } else builder->pdu[builder->pos + 0] = (cr ? 0x80 : 0x00) | tag; builder->len = 0; builder->pdu[builder->pos + new_size - 1] = 0; /* Length */ return TRUE; } /* * Resize the TLV because the content of Value field needs more space. * If this TLV is part of another TLV, resize that one too. */ gboolean comprehension_tlv_builder_set_length( struct comprehension_tlv_builder *builder, unsigned int new_len) { unsigned char *tlv = builder->pdu + builder->pos; unsigned int tag_size = CTLV_TAG_FIELD_SIZE(tlv[0]); unsigned int len_size, new_len_size; unsigned int new_ctlv_len; unsigned int len; len_size = CTLV_LEN_FIELD_SIZE(tlv[tag_size]); new_len_size = BTLV_LEN_FIELD_SIZE_NEEDED(new_len); new_ctlv_len = tag_size + new_len_size + new_len; /* Check there is enough space */ if (builder->pos + new_ctlv_len > builder->max) return FALSE; if (builder->parent) ber_tlv_builder_set_length(builder->parent, builder->pos + new_ctlv_len); len = MIN(builder->len, new_len); if (len > 0 && new_len_size != len_size) memmove(tlv + tag_size + new_len_size, tlv + tag_size + len_size, len); builder->len = new_len; /* Write new length */ if (new_len_size > 1) { int i; unsigned int offset = tag_size; tlv[offset++] = 0x80 + new_len_size - 1; for (i = new_len_size - 2; i >= 0; i--) tlv[offset++] = (builder->len >> (i * 8)) & 0xff; } else tlv[tag_size] = builder->len; return TRUE; } unsigned char *comprehension_tlv_builder_get_data( struct comprehension_tlv_builder *builder) { unsigned char *tlv = builder->pdu + builder->pos; unsigned int tag_size = CTLV_TAG_FIELD_SIZE(*tlv); unsigned int len_size = CTLV_LEN_FIELD_SIZE(tlv[tag_size]); return tlv + tag_size + len_size; } static char *sim_network_name_parse(const unsigned char *buffer, int length, gboolean *add_ci) { char *ret = NULL; unsigned char *endp; unsigned char dcs; int i; gboolean ci = FALSE; if (length < 1) return NULL; dcs = *buffer++; length--; /* * "The MS should add the letters for the Country's Initials and a * separator (e.g. a space)" */ if (is_bit_set(dcs, 4)) ci = TRUE; switch (dcs & (7 << 4)) { case 0x00: endp = memchr(buffer, 0xff, length); if (endp) length = endp - buffer; ret = convert_gsm_to_utf8(buffer, length, NULL, NULL, 0xff); break; case 0x10: if ((length % 2) == 1) { if (buffer[length - 1] != 0xff) return NULL; length = length - 1; } for (i = 0; i < length; i += 2) if (buffer[i] == 0xff && buffer[i + 1] == 0xff) break; ret = g_convert((const char *) buffer, length, "UTF-8//TRANSLIT", "UCS-2BE", NULL, NULL, NULL); break; } if (add_ci) *add_ci = ci; return ret; } void sim_parse_mcc_mnc(const guint8 *bcd, char *mcc, char *mnc) { static const char digit_lut[] = "0123456789*#abd\0"; guint8 digit; digit = (bcd[0] >> 0) & 0xf; *mcc++ = digit_lut[digit]; digit = (bcd[0] >> 4) & 0xf; *mcc++ = digit_lut[digit]; digit = (bcd[1] >> 0) & 0xf; *mcc++ = digit_lut[digit]; digit = (bcd[2] >> 0) & 0xf; *mnc++ = digit_lut[digit]; digit = (bcd[2] >> 4) & 0xf; *mnc++ = digit_lut[digit]; digit = (bcd[1] >> 4) & 0xf; *mnc++ = digit_lut[digit]; } static inline int to_semi_oct(char in) { int digit; switch (in) { case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': case '8': case '9': digit = in - '0'; break; case '*': digit = 10; break; case '#': digit = 11; break; case 'C': case 'c': digit = 12; break; case '?': digit = 13; break; case 'E': case 'e': digit = 14; break; default: digit = -1; break; } return digit; } void sim_encode_mcc_mnc(guint8 *out, const char *mcc, const char *mnc) { out[0] = to_semi_oct(mcc[0]); out[0] |= to_semi_oct(mcc[1]) << 4; out[1] = mcc[2] ? to_semi_oct(mcc[2]) : 0xf; out[1] |= (mnc[2] ? to_semi_oct(mnc[2]) : 0xf) << 4; out[2] = to_semi_oct(mnc[0]); out[2] |= to_semi_oct(mnc[1]) << 4; } static gint spdi_operator_compare(gconstpointer a, gconstpointer b) { const struct spdi_operator *opa = a; const struct spdi_operator *opb = b; gint r = strcmp(opa->mcc, opb->mcc); if (r) return r; return strcmp(opa->mnc, opb->mnc); } struct sim_spdi { GSList *operators; }; struct sim_spdi *sim_spdi_new(const guint8 *tlv, int length) { const guint8 *plmn_list_tlv; const guint8 *plmn_list; struct sim_spdi *spdi; struct spdi_operator *oper; int tlv_length; int list_length; if (length < 7) return NULL; plmn_list_tlv = ber_tlv_find_by_tag(tlv, 0xA3, length, &tlv_length); if (plmn_list_tlv == NULL) return NULL; plmn_list = ber_tlv_find_by_tag(plmn_list_tlv, 0x80, tlv_length, &list_length); if (plmn_list == NULL) return NULL; spdi = g_new0(struct sim_spdi, 1); for (list_length /= 3; list_length--; plmn_list += 3) { if ((plmn_list[0] & plmn_list[1] & plmn_list[2]) == 0xff) continue; oper = g_new0(struct spdi_operator, 1); sim_parse_mcc_mnc(plmn_list, oper->mcc, oper->mnc); spdi->operators = g_slist_insert_sorted(spdi->operators, oper, spdi_operator_compare); } return spdi; } gboolean sim_spdi_lookup(struct sim_spdi *spdi, const char *mcc, const char *mnc) { struct spdi_operator spdi_op; if (spdi == NULL) return FALSE; g_strlcpy(spdi_op.mcc, mcc, sizeof(spdi_op.mcc)); g_strlcpy(spdi_op.mnc, mnc, sizeof(spdi_op.mnc)); return g_slist_find_custom(spdi->operators, &spdi_op, spdi_operator_compare) != NULL; } void sim_spdi_free(struct sim_spdi *spdi) { if (spdi == NULL) return; g_slist_foreach(spdi->operators, (GFunc)g_free, NULL); g_slist_free(spdi->operators); g_free(spdi); } static void pnn_operator_free(struct sim_eons_operator_info *oper) { if (oper == NULL) return; g_free(oper->info); g_free(oper->shortname); g_free(oper->longname); } struct sim_eons *sim_eons_new(int pnn_records) { struct sim_eons *eons = g_new0(struct sim_eons, 1); eons->pnn_list = g_new0(struct sim_eons_operator_info, pnn_records); eons->pnn_max = pnn_records; return eons; } gboolean sim_eons_pnn_is_empty(struct sim_eons *eons) { return !eons->pnn_valid; } void sim_eons_add_pnn_record(struct sim_eons *eons, int record, const guint8 *tlv, int length) { const unsigned char *name; int namelength; struct sim_eons_operator_info *oper = &eons->pnn_list[record-1]; name = ber_tlv_find_by_tag(tlv, 0x43, length, &namelength); if (name == NULL || !namelength) return; oper->longname = sim_network_name_parse(name, namelength, &oper->long_ci); name = ber_tlv_find_by_tag(tlv, 0x45, length, &namelength); if (name && namelength) oper->shortname = sim_network_name_parse(name, namelength, &oper->short_ci); name = ber_tlv_find_by_tag(tlv, 0x80, length, &namelength); if (name && namelength) oper->info = sim_string_to_utf8(name, namelength); eons->pnn_valid = TRUE; } static struct opl_operator *opl_operator_alloc(const guint8 *record) { struct opl_operator *oper = g_new0(struct opl_operator, 1); sim_parse_mcc_mnc(record, oper->mcc, oper->mnc); record += 3; oper->lac_tac_low = (record[0] << 8) | record[1]; record += 2; oper->lac_tac_high = (record[0] << 8) | record[1]; record += 2; oper->id = record[0]; return oper; } void sim_eons_add_opl_record(struct sim_eons *eons, const guint8 *contents, int length) { struct opl_operator *oper; oper = opl_operator_alloc(contents); if (oper->id > eons->pnn_max) { g_free(oper); return; } eons->opl_list = g_slist_prepend(eons->opl_list, oper); } void sim_eons_optimize(struct sim_eons *eons) { eons->opl_list = g_slist_reverse(eons->opl_list); } void sim_eons_free(struct sim_eons *eons) { int i; if (eons == NULL) return; for (i = 0; i < eons->pnn_max; i++) pnn_operator_free(eons->pnn_list + i); g_free(eons->pnn_list); g_slist_foreach(eons->opl_list, (GFunc)g_free, NULL); g_slist_free(eons->opl_list); g_free(eons); } static const struct sim_eons_operator_info * sim_eons_lookup_common(struct sim_eons *eons, const char *mcc, const char *mnc, gboolean have_lac, guint16 lac) { GSList *l; const struct opl_operator *opl; int i; for (l = eons->opl_list; l; l = l->next) { opl = l->data; for (i = 0; i < OFONO_MAX_MCC_LENGTH; i++) if (mcc[i] != opl->mcc[i] && !(opl->mcc[i] == 'b' && mcc[i])) break; if (i < OFONO_MAX_MCC_LENGTH) continue; for (i = 0; i < OFONO_MAX_MNC_LENGTH; i++) if (mnc[i] != opl->mnc[i] && !(opl->mnc[i] == 'b' && mnc[i])) break; if (i < OFONO_MAX_MNC_LENGTH) continue; if (opl->lac_tac_low == 0 && opl->lac_tac_high == 0xfffe) break; if (have_lac == FALSE) continue; if ((lac >= opl->lac_tac_low) && (lac <= opl->lac_tac_high)) break; } if (l == NULL) return NULL; opl = l->data; /* 0 is not a valid record id */ if (opl->id == 0) return NULL; return &eons->pnn_list[opl->id - 1]; } const struct sim_eons_operator_info *sim_eons_lookup(struct sim_eons *eons, const char *mcc, const char *mnc) { return sim_eons_lookup_common(eons, mcc, mnc, FALSE, 0); } const struct sim_eons_operator_info *sim_eons_lookup_with_lac( struct sim_eons *eons, const char *mcc, const char *mnc, guint16 lac) { return sim_eons_lookup_common(eons, mcc, mnc, TRUE, lac); } /* * Extract extended BCD format defined in 3GPP 11.11, 31.102. The format * is different from what is defined in 3GPP 24.008 and 23.040 (sms). * * Here the digits with values 'C', 'D' and 'E' are treated differently, * for more details see 31.102 Table 4.4 * * 'C' - DTMF Control Digit Separator, represented as 'c' by this function * 'D' - Wild Value, represented as a '?' by this function * 'E' - RFU, used to be used as a Shift Operator in 11.11 * 'F' - Endmark * * Note that a second or subsequent 'C' BCD value will be interpreted as a * 3 second pause. */ void sim_extract_bcd_number(const unsigned char *buf, int len, char *out) { static const char digit_lut[] = "0123456789*#c?e\0"; unsigned char oct; int i; for (i = 0; i < len; i++) { oct = buf[i]; out[i*2] = digit_lut[oct & 0x0f]; out[i*2+1] = digit_lut[(oct & 0xf0) >> 4]; } out[i*2] = '\0'; } void sim_encode_bcd_number(const char *number, unsigned char *out) { while (number[0] != '\0' && number[1] != '\0') { *out = to_semi_oct(*number++); *out++ |= to_semi_oct(*number++) << 4; } if (*number) *out = to_semi_oct(*number) | 0xf0; } gboolean sim_adn_parse(const unsigned char *data, int length, struct ofono_phone_number *ph, char **identifier) { int number_len; int ton_npi; const unsigned char *alpha; int alpha_length; if (length < 14) return FALSE; alpha = data; alpha_length = length - 14; data += alpha_length; number_len = *data++; ton_npi = *data++; if (number_len > 11 || ton_npi == 0xff) return FALSE; ph->type = ton_npi; /* BCD coded, however the TON/NPI is given by the first byte */ number_len -= 1; sim_extract_bcd_number(data, number_len, ph->number); if (identifier == NULL) return TRUE; /* Alpha-Identifier field */ if (alpha_length > 0) *identifier = sim_string_to_utf8(alpha, alpha_length); else *identifier = NULL; return TRUE; } void sim_adn_build(unsigned char *data, int length, const struct ofono_phone_number *ph, const char *identifier) { int number_len = strlen(ph->number); unsigned char *alpha = NULL; int alpha_written = 0; int alpha_length; alpha_length = length - 14; /* Alpha-Identifier field */ if (alpha_length > 0) { if (identifier) alpha = utf8_to_sim_string(identifier, alpha_length, &alpha_written); if (alpha) { memcpy(data, alpha, alpha_written); g_free(alpha); } memset(data + alpha_written, 0xff, alpha_length - alpha_written); data += alpha_length; } number_len = (number_len + 1) / 2; *data++ = number_len + 1; *data++ = ph->type; sim_encode_bcd_number(ph->number, data); memset(data + number_len, 0xff, 10 - number_len); data += 10; /* CCP1 unused */ *data++ = 0xff; /* Ext1 unused */ *data++ = 0xff; } static int find_ef_by_id(const void *key, const void *value) { unsigned short id = GPOINTER_TO_UINT(key); const struct sim_ef_info *info = value; return id - info->id; } struct sim_ef_info *sim_ef_db_lookup(unsigned short id) { struct sim_ef_info *result; unsigned int nelem = sizeof(ef_db) / sizeof(struct sim_ef_info); result = bsearch(GUINT_TO_POINTER((unsigned int) id), ef_db, nelem, sizeof(struct sim_ef_info), find_ef_by_id); return result; } unsigned int sim_ef_db_get_path_2g(unsigned short id, unsigned char out_path[]) { struct sim_ef_info *info; unsigned int nelem = sizeof(ef_db) / sizeof(struct sim_ef_info); unsigned char path[6]; int i = 0; int j; info = bsearch(GUINT_TO_POINTER((unsigned int) id), ef_db, nelem, sizeof(struct sim_ef_info), find_ef_by_id); if (info == NULL) return 0; path[i++] = info->parent2g & 0xff; path[i++] = info->parent2g >> 8; while (info->parent2g != ROOTMF) { info = bsearch(GUINT_TO_POINTER((unsigned int) info->parent2g), ef_db, nelem, sizeof(struct sim_ef_info), find_ef_by_id); if (info == NULL) return 0; path[i++] = info->parent2g & 0xff; path[i++] = info->parent2g >> 8; } for (j = 0; j < i; j++) out_path[j] = path[i - j - 1]; return i; } unsigned int sim_ef_db_get_path_3g(unsigned short id, unsigned char out_path[]) { struct sim_ef_info *info; unsigned int nelem = sizeof(ef_db) / sizeof(struct sim_ef_info); unsigned char path[6]; int i = 0; int j; info = bsearch(GUINT_TO_POINTER((unsigned int) id), ef_db, nelem, sizeof(struct sim_ef_info), find_ef_by_id); if (info == NULL) return 0; path[i++] = info->parent3g & 0xff; path[i++] = info->parent3g >> 8; while (info->parent3g != ROOTMF) { info = bsearch(GUINT_TO_POINTER((unsigned int) info->parent3g), ef_db, nelem, sizeof(struct sim_ef_info), find_ef_by_id); if (info == NULL) return 0; path[i++] = info->parent3g & 0xff; path[i++] = info->parent3g >> 8; } for (j = 0; j < i; j++) out_path[j] = path[i - j - 1]; return i; } gboolean sim_parse_3g_get_response(const unsigned char *data, int len, int *file_len, int *record_len, int *structure, unsigned char *access, unsigned short *efid) { const unsigned char *fcp; int fcp_length; const unsigned char *tlv; int tlv_length; int i; int flen, rlen, str; unsigned short id; unsigned char acc[3]; struct sim_ef_info *info; fcp = ber_tlv_find_by_tag(data, 0x62, len, &fcp_length); if (fcp == NULL) return FALSE; /* * Find the file size tag 0x80 according to * ETSI 102.221 Section 11.1.1.3.2 */ tlv = ber_tlv_find_by_tag(fcp, 0x80, fcp_length, &tlv_length); if (tlv == NULL || tlv_length < 2) return FALSE; flen = tlv[0]; for (i = 1; i < tlv_length; i++) flen = (flen << 8) | tlv[i]; tlv = ber_tlv_find_by_tag(fcp, 0x83, fcp_length, &tlv_length); if (tlv == NULL || tlv_length != 2) return FALSE; id = (tlv[0] << 8) | tlv[1]; tlv = ber_tlv_find_by_tag(fcp, 0x82, fcp_length, &tlv_length); if (tlv == NULL || (tlv_length != 2 && tlv_length != 5)) return FALSE; if (tlv[1] != 0x21) return FALSE; switch (tlv[0] & 0x3) { case 1: /* Transparent */ str = 0x00; break; case 2: /* Linear Fixed */ str = 0x01; break; case 6: /* Cyclic */ str = 0x03; break; default: return FALSE; }; /* For cyclic or linear fixed we need record size & num records */ if (str != 0x00 && tlv_length != 5) return FALSE; /* * strictly speaking the record length is 16 bit, but the valid * range is 0x01 to 0xFF according to 102.221 */ if (str != 0x00) rlen = tlv[3]; else rlen = 0; /* * The 3G response data contains references to EFarr which actually * contains the security attributes. These are usually not carried * along with the response data unlike in 2G. Instead of querying * this, we simply look it up in our database. We fudge it somewhat * and guess if the file isn't found. */ info = sim_ef_db_lookup(id); if (str == 0x03) acc[1] = 0x1f; else acc[1] = 0xff; acc[2] = 0x44; if (info == NULL) acc[0] = 0x11; else acc[0] = (info->perm_read << 4) | info->perm_update; if (file_len) *file_len = flen; if (record_len) *record_len = rlen; if (efid) *efid = id; if (structure) *structure = str; if (access) memcpy(access, acc, 3); return TRUE; } gboolean sim_parse_2g_get_response(const unsigned char *response, int len, int *file_len, int *record_len, int *structure, unsigned char *access, unsigned char *file_status) { if (len < 14 || response[6] != 0x04) return FALSE; if ((response[13] == 0x01 || response[13] == 0x03) && len < 15) return FALSE; *file_len = (response[2] << 8) | response[3]; *structure = response[13]; access[0] = response[8]; access[1] = response[9]; access[2] = response[10]; *file_status = response[11]; if (response[13] == 0x01 || response[13] == 0x03) *record_len = response[14]; else *record_len = 0; return TRUE; } gboolean sim_ust_is_available(unsigned char *efust, unsigned char len, enum sim_ust_service index) { if (index >= len * 8u) return FALSE; return (efust[index / 8] >> (index % 8)) & 1; } gboolean sim_est_is_active(unsigned char *efest, unsigned char len, enum sim_est_service index) { if (index >= len * 8u) return FALSE; return (efest[index / 8] >> (index % 8)) & 1; } gboolean sim_sst_is_available(unsigned char *efsst, unsigned char len, enum sim_sst_service index) { if (index >= len * 4u) return FALSE; return (efsst[index / 4] >> ((index % 4) * 2)) & 1; } gboolean sim_sst_is_active(unsigned char *efsst, unsigned char len, enum sim_sst_service index) { if (index >= len * 4u) return FALSE; return (efsst[index / 4] >> (((index % 4) * 2) + 1)) & 1; } gboolean sim_cphs_is_active(unsigned char *cphs, enum sim_cphs_service index) { if (index >= 2 * 4u) return FALSE; return ((cphs[index / 4] >> ((index % 4) * 2)) & 3) == 3; } GSList *sim_parse_app_template_entries(const unsigned char *buffer, int len) { GSList *ret = NULL; const unsigned char *dataobj; int dataobj_len; /* Find all the application entries */ while ((dataobj = ber_tlv_find_by_tag(buffer, 0x61, len, &dataobj_len)) != NULL) { struct sim_app_record app; const unsigned char *aid, *label; int label_len; /* Find the aid (mandatory) */ aid = ber_tlv_find_by_tag(dataobj, 0x4f, dataobj_len, &app.aid_len); if (!aid || app.aid_len < 0x01 || app.aid_len > 0x10) goto error; memcpy(app.aid, aid, app.aid_len); /* Find the label (optional) */ label = ber_tlv_find_by_tag(dataobj, 0x50, dataobj_len, &label_len); if (label) { /* * Label field uses the extra complicated * encoding in 102.221 Annex A */ app.label = sim_string_to_utf8(label, label_len); if (app.label == NULL) goto error; } else app.label = NULL; ret = g_slist_prepend(ret, g_memdup(&app, sizeof(app))); len -= (dataobj - buffer) + dataobj_len; buffer = dataobj + dataobj_len; } return ret; error: while (ret) { GSList *t = ret; struct sim_app_record *app = ret->data; g_free(app->label); g_free(app); ret = ret->next; g_slist_free_1(t); } return NULL; }