From 73fb61070f78202299522fc7fa8246376f4502ec Mon Sep 17 00:00:00 2001
From: Pol Henarejos <pol.henarejos@cttc.es>
Date: Fri, 3 Jun 2022 11:30:08 +0200
Subject: [PATCH] Added kek deletion in a particular key domain.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
---
 src/hsm/sc_hsm.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/hsm/sc_hsm.c b/src/hsm/sc_hsm.c
index 4db7c0e..85a1d9d 100644
--- a/src/hsm/sc_hsm.c
+++ b/src/hsm/sc_hsm.c
@@ -775,7 +775,7 @@ static int cmd_key_domain() {
                 return SW_REFERENCE_NOT_FOUND();
         }
     }
-    else if (p1 == 0x1 || p1 == 0x3) { //key domain setup
+    else if (p1 == 0x1 || p1 == 0x3 || p1 == 0x4) { //key domain setup
         if (p1 == 0x1 && apdu.nc != 1)
             return SW_WRONG_LENGTH();
         uint8_t t[MAX_KEY_DOMAINS*2];
@@ -788,6 +788,9 @@ static int cmd_key_domain() {
             t[2*p2] = dkeks = 0xff;
             t[2*p2+1] = 0xff;
         }
+        else if (p1 == 0x4) {
+            t[2*p2+1] = current_dkeks = 0;
+        }
         if (flash_write_data_to_file(tf_kd, t, tf_kd_size) != CCID_OK)
             return SW_EXEC_ERROR();
         file_t *tf = file_new(EF_DKEK+p2);