search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
fix one too small
[RRG-proxmark3.git] / client / src / emv / emv_pki_priv.c
blob5fb3ed620ef2d81c28cdad3fc175761e7e5b9427
1 //-----------------------------------------------------------------------------
2 // Borrowed initially from https://github.com/lumag/emv-tools/
3 // Copyright (C) 2012, 2015 Dmitry Eremin-Solenikov
4 // Copyright (C) Proxmark3 contributors. See AUTHORS.md for details.
5 //
6 // This program is free software: you can redistribute it and/or modify
7 // it under the terms of the GNU General Public License as published by
8 // the Free Software Foundation, either version 3 of the License, or
9 // (at your option) any later version.
10 //
11 // This program is distributed in the hope that it will be useful,
12 // but WITHOUT ANY WARRANTY; without even the implied warranty of
13 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 // GNU General Public License for more details.
15 //
16 // See LICENSE.txt for the text of the license.
17 //-----------------------------------------------------------------------------
18 // libopenemv - a library to work with EMV family of smart cards
19 //-----------------------------------------------------------------------------
20
21 #ifdef HAVE_CONFIG_H
22 #include <config.h>
23 #endif
24
25 #include "emv_pki_priv.h"
26
27 #include <stdlib.h>
28 #include <string.h>
29 #include <stdarg.h>
30
31 struct emv_pk *emv_pki_make_ca(const struct crypto_pk *cp,
32 const unsigned char *rid, unsigned char index,
33 unsigned int expire, enum crypto_algo_hash hash_algo) {
34 size_t modlen, explen;
35 unsigned char *mod, *exp;
36
37 if (!rid)
38 return NULL;
39
40 mod = crypto_pk_get_parameter(cp, 0, &modlen);
41 exp = crypto_pk_get_parameter(cp, 1, &explen);
42
43 if (!mod || !modlen || !exp || !explen) {
44 free(mod);
45 free(exp);
46
47 return NULL;
48 }
49
50 struct emv_pk *pk = emv_pk_new(modlen, explen);
51 memcpy(pk->rid, rid, 5);
52 pk->index = index;
53 pk->expire = expire;
54 pk->pk_algo = crypto_pk_get_algo(cp);
55 pk->hash_algo = hash_algo;
56 memcpy(pk->modulus, mod, modlen);
57 memcpy(pk->exp, exp, explen);
58
59 free(mod);
60 free(exp);
61
62 struct crypto_hash *ch = crypto_hash_open(pk->hash_algo);
63 if (!ch) {
64 emv_pk_free(pk);
65 return NULL;
66 }
67
68 crypto_hash_write(ch, pk->rid, sizeof(pk->rid));
69 crypto_hash_write(ch, &pk->index, 1);
70 crypto_hash_write(ch, pk->modulus, pk->mlen);
71 crypto_hash_write(ch, pk->exp, pk->elen);
72
73 unsigned char *h = crypto_hash_read(ch);
74 if (!h) {
75 crypto_hash_close(ch);
76 emv_pk_free(pk);
77
78 return NULL;
79 }
80
81 memcpy(pk->hash, h, crypto_hash_get_size(ch));
82 crypto_hash_close(ch);
83
84 return pk;
85 }
86
87 static struct tlvdb *emv_pki_sign_message(const struct crypto_pk *cp,
88 tlv_tag_t cert_tag, tlv_tag_t rem_tag,
89 const unsigned char *msg, size_t msg_len,
90 ... /* A list of tlv pointers, end with NULL */
91 ) {
92 size_t tmp_len = (crypto_pk_get_nbits(cp) + 7) / 8;
93 unsigned char *tmp = calloc(1, tmp_len);
94 if (!tmp) {
95 return NULL;
96 }
97
98 // XXX
99 struct crypto_hash *ch = crypto_hash_open(HASH_SHA_1);
100 if (!ch) {
101 free(tmp);
102 return NULL;
103 }
104
105 tmp[0] = 0x6a;
106 tmp[tmp_len - 1] = 0xbc;
107
108 const unsigned char *rem;
109 size_t rem_len;
110 size_t hash_len = crypto_hash_get_size(ch);
111 size_t part_len = tmp_len - 2 - hash_len;
112 if (part_len < msg_len) {
113 memcpy(tmp + 1, msg, part_len);
114 rem = msg + part_len;
115 rem_len = msg_len - part_len;
116 } else {
117 memcpy(tmp + 1, msg, msg_len);
118 memset(tmp + 1 + msg_len, 0xbb, part_len - msg_len);
119 rem = NULL;
120 rem_len = 0;
121 }
122 crypto_hash_write(ch, tmp + 1, part_len);
123 crypto_hash_write(ch, rem, rem_len);
124
125 va_list vl;
126 va_start(vl, msg_len);
127 while (true) {
128 const struct tlv *add_tlv = va_arg(vl, const struct tlv *);
129 if (!add_tlv)
130 break;
131
132 crypto_hash_write(ch, add_tlv->value, add_tlv->len);
133 }
134 va_end(vl);
135
136 unsigned char *h = crypto_hash_read(ch);
137 if (!h) {
138 crypto_hash_close(ch);
139 free(tmp);
140
141 return NULL;
142 }
143
144 memcpy(tmp + 1 + part_len, h, hash_len);
145 crypto_hash_close(ch);
146
147 size_t cert_len;
148 unsigned char *cert = crypto_pk_decrypt(cp, tmp, tmp_len, &cert_len);
149 free(tmp);
150
151 if (!cert)
152 return NULL;
153
154 struct tlvdb *db = tlvdb_fixed(cert_tag, cert_len, cert);
155 free(cert);
156 if (!db)
157 return NULL;
158
159 if (rem) {
160 struct tlvdb *rdb = tlvdb_fixed(rem_tag, rem_len, rem);
161 if (!rdb) {
162 tlvdb_free(db);
163
164 return NULL;
165 }
166 tlvdb_add(db, rdb);
167 }
168
169 return db;
170 }
171
172 static struct tlvdb *emv_pki_sign_key(const struct crypto_pk *cp,
173 struct emv_pk *ipk,
174 unsigned char msgtype,
175 size_t pan_len,
176 tlv_tag_t cert_tag,
177 tlv_tag_t exp_tag,
178 tlv_tag_t rem_tag,
179 const struct tlv *add_tlv
180 ) {
181 unsigned pos = 0;
182 unsigned char *msg = calloc(1, 1 + pan_len + 2 + 3 + 1 + 1 + 1 + 1 + ipk->mlen);
183
184 if (!msg)
185 return NULL;
186
187 msg[pos++] = msgtype;
188 memcpy(msg + pos, ipk->pan, pan_len);
189 pos += pan_len;
190 msg[pos++] = (ipk->expire >> 8) & 0xff;
191 msg[pos++] = (ipk->expire >> 16) & 0xff;
192 memcpy(msg + pos, ipk->serial, 3);
193 pos += 3;
194 msg[pos++] = ipk->hash_algo;
195 msg[pos++] = ipk->pk_algo;
196 msg[pos++] = ipk->mlen;
197 msg[pos++] = ipk->elen;
198 memcpy(msg + pos, ipk->modulus, ipk->mlen);
199 pos += ipk->mlen;
200
201 struct tlvdb *exp_db = tlvdb_fixed(exp_tag, ipk->elen, ipk->exp);
202 if (!exp_db) {
203 free(msg);
204 return NULL;
205 }
206
207 struct tlvdb *db = emv_pki_sign_message(cp,
208 cert_tag, rem_tag,
209 msg, pos,
210 tlvdb_get(exp_db, exp_tag, NULL),
211 add_tlv,
212 (uint8_t *)NULL);
213 free(msg);
214 if (!db) {
215 free(exp_db);
216 return NULL;
217 }
218
219 tlvdb_add(db, exp_db);
220
221 return db;
222 }
223
224 struct tlvdb *emv_pki_sign_issuer_cert(const struct crypto_pk *cp, struct emv_pk *issuer_pk) {
225 return emv_pki_sign_key(cp, issuer_pk, 2, 4, 0x90, 0x9f32, 0x92, NULL);
226 }
227
228 struct tlvdb *emv_pki_sign_icc_cert(const struct crypto_pk *cp, struct emv_pk *icc_pk, const struct tlv *sda_tlv) {
229 return emv_pki_sign_key(cp, icc_pk, 4, 10, 0x9f46, 0x9f47, 0x9f48, sda_tlv);
230 }
231
232 struct tlvdb *emv_pki_sign_icc_pe_cert(const struct crypto_pk *cp, struct emv_pk *icc_pe_pk) {
233 return emv_pki_sign_key(cp, icc_pe_pk, 4, 10, 0x9f2d, 0x9f2e, 0x9f2f, NULL);
234 }
235
236 struct tlvdb *emv_pki_sign_dac(const struct crypto_pk *cp, const struct tlv *dac_tlv, const struct tlv *sda_tlv) {
237 unsigned pos = 0;
238 unsigned char *msg = calloc(1, 1 + 1 + dac_tlv->len);
239
240 if (!msg)
241 return NULL;
242
243 msg[pos++] = 3;
244 msg[pos++] = HASH_SHA_1;
245 memcpy(msg + pos, dac_tlv->value, dac_tlv->len);
246 pos += dac_tlv->len;
247
248 struct tlvdb *db = emv_pki_sign_message(cp,
249 0x93, 0,
250 msg, pos,
251 sda_tlv,
252 (uint8_t *)NULL);
253
254 free(msg);
255
256 return db;
257 }
258
259 struct tlvdb *emv_pki_sign_idn(const struct crypto_pk *cp, const struct tlv *idn_tlv, const struct tlv *dyn_tlv) {
260 unsigned pos = 0;
261 unsigned char *msg = calloc(1, 1 + 1 + 1 + 1 + idn_tlv->len);
262
263 if (!msg)
264 return NULL;
265
266 msg[pos++] = 5;
267 msg[pos++] = HASH_SHA_1;
268 msg[pos++] = idn_tlv->len + 1;
269 msg[pos++] = idn_tlv->len;
270 memcpy(msg + pos, idn_tlv->value, idn_tlv->len);
271 pos += idn_tlv->len;
272
273 struct tlvdb *db = emv_pki_sign_message(cp,
274 0x9f4b, 0,
275 msg, pos,
276 dyn_tlv,
277 (uint8_t *)NULL);
278
279 free(msg);
280
281 return db;
282 }
Proxmark3 - the RFID research Swiss army knife. Iceman firmware