mirror of
https://gitlab.com/fabinfra/fabaccess/borepin.git
synced 2025-03-13 15:21:45 +01:00
361 lines
11 KiB
C#
361 lines
11 KiB
C#
using NFC.Crypto;
|
|
using NFC.Mifare_DESFire.Enums;
|
|
using PCSC.Iso7816;
|
|
using System;
|
|
using System.Collections.Generic;
|
|
using System.IO;
|
|
using System.Linq;
|
|
using System.Net.Http;
|
|
using System.Text;
|
|
|
|
namespace NFC.Mifare_DESFire
|
|
{
|
|
|
|
public class MifareDESFire
|
|
{
|
|
public byte[] GenerateDefaultKey(int size)
|
|
{
|
|
List<byte> key = new List<byte>();
|
|
for (int i = 0; i < size; i++)
|
|
{
|
|
key.Add(0);
|
|
}
|
|
|
|
return key.ToArray();
|
|
}
|
|
|
|
private ICard _Card;
|
|
|
|
public MifareDESFire(ICard card)
|
|
{
|
|
_Card = card;
|
|
}
|
|
|
|
/// <summary>
|
|
/// Create new Application with AID
|
|
/// </summary>
|
|
/// <param name="aid">Appilication ID</param>
|
|
public APDUCommand CreateApplication(UInt64 aid)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public APDUCommand GetApplicationIDs()
|
|
{
|
|
APDUCommand cmd = new APDUCommand(IsoCase.Case2Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)APDUInstructions.GET_APPLICATION_IDS
|
|
};
|
|
|
|
return cmd;
|
|
}
|
|
|
|
public UInt32[] ConvertApplicationIDs(APDUResponse response)
|
|
{
|
|
if(response.Body.Length % 3 != 0)
|
|
{
|
|
throw new Exception("Invalid Body Length.");
|
|
}
|
|
|
|
List<UInt32> applicationIDs = new List<UInt32>();
|
|
|
|
for(int i = 0; i < response.Body.Length; i += 3)
|
|
{
|
|
UInt32 new_applicationID = 0;
|
|
new_applicationID = (UInt32)((response.Body[i] << 16) + (response.Body[i + 1] << 8) + response.Body[i + 2]);
|
|
applicationIDs.Add(new_applicationID);
|
|
}
|
|
|
|
return applicationIDs.ToArray();
|
|
}
|
|
|
|
public void Format()
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
/// <summary>
|
|
/// Authenticate to Card
|
|
/// </summary>
|
|
/// <param name="key_id">0x01 - 0x0D</param>
|
|
/// <param name="key"></param>
|
|
public void Authenticate(byte key_id, byte[] key)
|
|
{
|
|
APDUCommand cmd_challange_request = new APDUCommand(IsoCase.Case4Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)0x1A,
|
|
Data = new byte[]
|
|
{
|
|
key_id
|
|
}
|
|
};
|
|
APDUResponse response = _Card.Transmit(cmd_challange_request);
|
|
|
|
byte[] rndB_enc = response.Body;
|
|
Console.WriteLine("rndB_enc: {0}", toHexString(rndB_enc));
|
|
|
|
DES des = new DES();
|
|
byte[] rndB = des.Decrypt(rndB_enc, key, GenerateDefaultKey(8));
|
|
Console.WriteLine("rndB: {0}", toHexString(rndB));
|
|
|
|
byte[] iv = new byte[8];
|
|
rndB.CopyTo(iv, 0);
|
|
|
|
byte[] rndB_rl = rotateLeft(rndB);
|
|
Console.WriteLine("rndB_enc: {0}", toHexString(rndB_rl));
|
|
|
|
byte[] rndA = new byte[]
|
|
{
|
|
0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08
|
|
};
|
|
Console.WriteLine("rndA: {0}", toHexString(rndA));
|
|
|
|
byte[] rndAB = concatenate(rndA, rndB_rl);
|
|
Console.WriteLine("rndAB: {0}", toHexString(rndAB));
|
|
|
|
byte[] rndAB_enc = des.Encrypt(rndAB, key, rndB_enc);
|
|
Console.WriteLine("rndA_rndB_enc: {0}", toHexString(rndAB_enc));
|
|
iv = lastBlock(rndAB_enc);
|
|
|
|
APDUCommand cmd_challange_response = new APDUCommand(IsoCase.Case4Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)0xAF,
|
|
Data = rndAB_enc
|
|
};
|
|
Console.WriteLine("cmd_challange_response: {0}", toHexString(cmd_challange_response.ToArray()));
|
|
|
|
response = _Card.Transmit(cmd_challange_response);
|
|
|
|
byte[] encryptedRndAFromCard = response.Body;
|
|
Console.WriteLine("encryptedRndAFromCard: {0}", toHexString(encryptedRndAFromCard));
|
|
|
|
byte[] rotatedRndAFromCard = des.Decrypt(encryptedRndAFromCard, key, iv);
|
|
Console.WriteLine("rotatedRndAFromCard: {0}", toHexString(rotatedRndAFromCard));
|
|
|
|
byte[] rndAFromCard = rotateRight(rotatedRndAFromCard);
|
|
Console.WriteLine("rndAFromCard: {0}", toHexString(rndAFromCard));
|
|
|
|
if (!rndA.SequenceEqual(rndAFromCard))
|
|
{
|
|
throw new Exception("???");
|
|
}
|
|
}
|
|
|
|
public byte[] lastBlock(byte[] data)
|
|
{
|
|
byte[] block = new byte[8];
|
|
|
|
for(int i = 0; i < block.Length; i++)
|
|
{
|
|
block[i] = data[data.Length - block.Length + i];
|
|
}
|
|
|
|
return block;
|
|
}
|
|
public byte[] exclusiveOR(byte[] a, byte[] b)
|
|
{
|
|
byte[] c = new byte[a.Length];
|
|
|
|
for (int i = 0; i < a.Length; i++)
|
|
{
|
|
c[i] = (byte)(a[i] ^ b[i]);
|
|
}
|
|
|
|
return c;
|
|
}
|
|
|
|
private String toHexString(byte[] data)
|
|
{
|
|
return BitConverter.ToString(data).Replace("-", string.Empty);
|
|
}
|
|
|
|
public byte[] rotateLeft(byte[] data)
|
|
{
|
|
byte[] rotate = new byte[data.Length];
|
|
data.CopyTo(rotate, 0);
|
|
|
|
byte temp = rotate[0];
|
|
for (var i = 0; i < rotate.Length - 1; i++)
|
|
{
|
|
rotate[i] = rotate[i + 1];
|
|
}
|
|
rotate[rotate.Length - 1] = temp;
|
|
|
|
return rotate;
|
|
}
|
|
|
|
public byte[] rotateRight(byte[] data)
|
|
{
|
|
byte[] rotate = new byte[data.Length];
|
|
data.CopyTo(rotate, 0);
|
|
|
|
byte temp = rotate[rotate.Length - 1];
|
|
for (var i = rotate.Length - 1; i > 0; i--)
|
|
{
|
|
rotate[i] = rotate[i - 1];
|
|
}
|
|
rotate[0] = temp;
|
|
|
|
return rotate;
|
|
}
|
|
|
|
public byte[] concatenate(byte[] a, byte[] b)
|
|
{
|
|
byte[] c = new byte[a.Length + b.Length];
|
|
a.CopyTo(c, 0);
|
|
b.CopyTo(c, a.Length);
|
|
|
|
return c;
|
|
}
|
|
|
|
/// <summary>
|
|
/// Select Application by ID
|
|
/// </summary>
|
|
/// <param name="id">3 Byte ID</param>
|
|
public APDUCommand SelectApplication(UInt32 id)
|
|
{
|
|
byte[] id_byte = BitConverter.GetBytes(id);
|
|
|
|
APDUCommand cmd = new APDUCommand(IsoCase.Case4Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)APDUInstructions.SELECT_APPLICATION,
|
|
Data = new byte[]
|
|
{
|
|
id_byte[0],
|
|
id_byte[1],
|
|
id_byte[2]
|
|
},
|
|
Le = 0x00
|
|
};
|
|
|
|
return cmd;
|
|
}
|
|
|
|
public void ChangeApplicationMasterKey(byte[] aPP_MasterKey)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
/// <summary>
|
|
/// Delete Application by ID
|
|
/// </summary>
|
|
/// <param name="id">3 Byte ID</param>
|
|
public APDUCommand DeleteApplication(UInt32 id)
|
|
{
|
|
byte[] id_byte = BitConverter.GetBytes(id);
|
|
|
|
APDUCommand cmd = new APDUCommand(IsoCase.Case4Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)APDUInstructions.DELETE_APPLICATION,
|
|
Data = new byte[]
|
|
{
|
|
id_byte[0],
|
|
id_byte[1],
|
|
id_byte[2]
|
|
},
|
|
Le = 0x00
|
|
};
|
|
|
|
return cmd;
|
|
}
|
|
|
|
public void ChangeApplicationKey(int v, byte[] aPP_Key_1)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
/// <summary>
|
|
/// Select Application by ID
|
|
/// </summary>
|
|
/// <param name="id">3 Byte ID</param>
|
|
public APDUCommand CreateApplication(UInt32 id, byte keysetting1, byte keysetting2)
|
|
{
|
|
byte[] id_byte = BitConverter.GetBytes(id);
|
|
|
|
APDUCommand cmd = new APDUCommand(IsoCase.Case4Short)
|
|
{
|
|
CLA = 0x90,
|
|
INS = (byte)APDUInstructions.CREATE_APPLICATION,
|
|
Data = new byte[]
|
|
{
|
|
id_byte[0],
|
|
id_byte[1],
|
|
id_byte[2],
|
|
keysetting1,
|
|
keysetting2
|
|
},
|
|
Le = 0x00
|
|
};
|
|
|
|
return cmd;
|
|
}
|
|
|
|
public void CreateFile(byte fabAccessIdentFileID, FileCommunication pLAIN, ushort fileAccessRight, UInt32 v)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public ushort GenerateFileAccessRight(AccessRights fREE, int v1, int v2, int v3)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public void WirteData(byte fabAccessIdentFileID, int v1, int v2, byte[] vs)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public void CreateFile(byte fabAccessIdentFileID, object plain, AccessRights fREE, int v1, int v2, int v3)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public byte[] ReadData(byte identFileID, int v1, int v2)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
/// <summary>
|
|
/// Genearte KeySetting1 for Application Settings or PICC Setting
|
|
/// </summary>
|
|
public byte GenerateKeySetting1(ChangeApplicationKey changeKey, ChangeMasterKeySettings changeMasterKeySettings, CreateDeleteFile createDeleteFile, FileDirectoryAccess fileDirectoryAccess, ChangeMasterKey changeMasterKey)
|
|
{
|
|
return (byte)(((byte)changeKey << 4) | (byte)changeMasterKeySettings | (byte)createDeleteFile | (byte)fileDirectoryAccess | (byte)changeMasterKey);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Genearte KeySetting1 for Application Settings or PICC Setting
|
|
/// </summary>
|
|
/// <param name="changeKey">ID of Key for changing Application Keys</param>
|
|
/// <returns></returns>
|
|
public byte GenerateKeySetting1(byte changeKey, ChangeMasterKeySettings changeMasterKeySettings, CreateDeleteFile createDeleteFile, FileDirectoryAccess fileDirectoryAccess, ChangeMasterKey changeMasterKey)
|
|
{
|
|
if(changeKey < 0x01 || changeKey >= 0x0E)
|
|
{
|
|
throw new ArgumentOutOfRangeException();
|
|
}
|
|
return GenerateKeySetting1(changeKey, changeMasterKeySettings, createDeleteFile, fileDirectoryAccess, changeMasterKey);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Genearte KeySetting2 for Application Creation
|
|
/// </summary>
|
|
/// <param name="numberOfKeys">Number of keys that can be stored within the application (0x01-0x0D)</param>
|
|
/// <returns></returns>
|
|
public byte GenerateKeySetting2(CryptoOperationsType cryptoOperations, FileIdentifies fileIdentifies, byte numberOfKeys)
|
|
{
|
|
if(numberOfKeys < 0x01 || numberOfKeys >= 0x0D)
|
|
{
|
|
throw new ArgumentOutOfRangeException();
|
|
}
|
|
|
|
return (byte)((byte)cryptoOperations | (byte)fileIdentifies | numberOfKeys);
|
|
}
|
|
}
|
|
}
|