mirror of
https://github.com/RfidResearchGroup/proxmark3.git
synced 2025-08-20 21:33:47 -07:00
Fixes
This commit is contained in:
Bjoern Kerler
parent
f71e7438f7
commit
637103224d
4 changed files with 88 additions and 102 deletions
|
|
@ -19,6 +19,7 @@
|
||||||
|
|
||||||
#include "desfire_key.h"
|
#include "desfire_key.h"
|
||||||
#include "string.h"
|
#include "string.h"
|
||||||
|
#include "dbprint.h"
|
||||||
|
|
||||||
static inline void update_key_schedules(desfirekey_t key);
|
static inline void update_key_schedules(desfirekey_t key);
|
||||||
|
|
||||||
|
|
@ -147,8 +148,8 @@ void Desfire_session_key_new(const uint8_t rnda[], const uint8_t rndb[], desfire
|
||||||
case T_2K3DES:
|
case T_2K3DES:
|
||||||
memcpy(buffer, rnda, 4);
|
memcpy(buffer, rnda, 4);
|
||||||
memcpy(buffer + 4, rndb, 4);
|
memcpy(buffer + 4, rndb, 4);
|
||||||
memcpy(buffer + 8, rnda+4, 4);
|
memcpy(buffer + 8, rnda + 4, 4);
|
||||||
memcpy(buffer + 12, rndb+4, 4);
|
memcpy(buffer + 12, rndb + 4, 4);
|
||||||
Desfire_2k3des_key_new_with_version(buffer, key);
|
Desfire_2k3des_key_new_with_version(buffer, key);
|
||||||
break;
|
break;
|
||||||
case T_3K3DES:
|
case T_3K3DES:
|
||||||
|
|
|
||||||
|
|
@ -52,6 +52,11 @@ bool InitDesfireCard() {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
typedef struct {
|
||||||
|
uint8_t len;
|
||||||
|
uint8_t data[RECEIVE_SIZE];
|
||||||
|
} cmdres_t;
|
||||||
|
|
||||||
void MifareSendCommand(uint8_t *datain) {
|
void MifareSendCommand(uint8_t *datain) {
|
||||||
struct p {
|
struct p {
|
||||||
uint8_t flags;
|
uint8_t flags;
|
||||||
|
|
@ -92,15 +97,12 @@ void MifareSendCommand(uint8_t *datain) {
|
||||||
|
|
||||||
//reply_mix(CMD_ACK, 1, len, 0, resp, len);
|
//reply_mix(CMD_ACK, 1, len, 0, resp, len);
|
||||||
LED_B_ON();
|
LED_B_ON();
|
||||||
struct r {
|
|
||||||
uint8_t len;
|
|
||||||
uint8_t data[RECEIVE_SIZE];
|
|
||||||
} PACKED;
|
|
||||||
|
|
||||||
struct r rpayload;
|
|
||||||
|
cmdres_t rpayload;
|
||||||
rpayload.len = len;
|
rpayload.len = len;
|
||||||
memcpy(rpayload.data, resp, rpayload.len);
|
memcpy(rpayload.data, resp, rpayload.len);
|
||||||
reply_ng(CMD_HF_DESFIRE_COMMAND, PM3_SUCCESS, (uint8_t *)&rpayload, sizeof(payload));
|
reply_ng(CMD_HF_DESFIRE_COMMAND, PM3_SUCCESS, (uint8_t *)&rpayload, sizeof(rpayload));
|
||||||
LED_B_OFF();
|
LED_B_OFF();
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -203,20 +205,10 @@ void MifareDesfireGetInformation() {
|
||||||
OnSuccess();
|
OnSuccess();
|
||||||
}
|
}
|
||||||
|
|
||||||
typedef enum {
|
typedef struct {
|
||||||
MFDES_AUTH_DES = 1,
|
uint8_t sessionkeylen;
|
||||||
MFDES_AUTH_ISO = 2,
|
uint8_t sessionkey[24];
|
||||||
MFDES_AUTH_AES = 3,
|
} authres_t;
|
||||||
MFDES_AUTH_PICC = 4
|
|
||||||
} mifare_des_authmode_t;
|
|
||||||
|
|
||||||
typedef enum {
|
|
||||||
MFDES_ALGO_DES = 1,
|
|
||||||
MFDES_ALGO_3DES = 2,
|
|
||||||
MFDES_ALGO_2K3DES = 3,
|
|
||||||
MFDES_ALGO_3K3DES = 4,
|
|
||||||
MFDES_ALGO_AES = 5
|
|
||||||
} mifare_des_authalgo_t;
|
|
||||||
|
|
||||||
void MifareDES_Auth1(uint8_t *datain) {
|
void MifareDES_Auth1(uint8_t *datain) {
|
||||||
int len = 0;
|
int len = 0;
|
||||||
|
|
@ -224,8 +216,8 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
uint8_t mode;
|
uint8_t mode;
|
||||||
uint8_t algo;
|
uint8_t algo;
|
||||||
uint8_t keyno;
|
uint8_t keyno;
|
||||||
uint8_t key[24];
|
|
||||||
uint8_t keylen;
|
uint8_t keylen;
|
||||||
|
uint8_t key[24];
|
||||||
} PACKED;
|
} PACKED;
|
||||||
struct p *payload = (struct p *) datain;
|
struct p *payload = (struct p *) datain;
|
||||||
|
|
||||||
|
|
@ -370,13 +362,13 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
}
|
}
|
||||||
mbedtls_aes_crypt_cbc(&ctx, MBEDTLS_AES_DECRYPT, 16, IV, encRndB, RndB);
|
mbedtls_aes_crypt_cbc(&ctx, MBEDTLS_AES_DECRYPT, 16, IV, encRndB, RndB);
|
||||||
} else if (payload->algo == MFDES_ALGO_3DES)
|
} else if (payload->algo == MFDES_ALGO_3DES)
|
||||||
tdes_dec(&RndB, &encRndB, key->data);
|
tdes_dec(RndB, encRndB, key->data);
|
||||||
else if (payload->algo == MFDES_ALGO_DES)
|
else if (payload->algo == MFDES_ALGO_DES)
|
||||||
des_dec(&RndB, &encRndB, key->data);
|
des_dec(RndB, encRndB, key->data);
|
||||||
else if (payload->algo == MFDES_ALGO_2K3DES)
|
else if (payload->algo == MFDES_ALGO_2K3DES)
|
||||||
tdes_2key_dec(&RndB, &encRndB, 8, key->data, IV);
|
tdes_2key_dec(RndB, encRndB, 8, key->data, IV);
|
||||||
else if (payload->algo == MFDES_ALGO_3K3DES)
|
else if (payload->algo == MFDES_ALGO_3K3DES)
|
||||||
tdes_3key_dec(&RndB, &encRndB, 16, key->data, IV);
|
tdes_3key_dec(RndB, encRndB, 16, key->data, IV);
|
||||||
|
|
||||||
// - Rotate RndB by 8 bits
|
// - Rotate RndB by 8 bits
|
||||||
memcpy(rotRndB, RndB, payload->keylen);
|
memcpy(rotRndB, RndB, payload->keylen);
|
||||||
|
|
@ -387,16 +379,16 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
// - Encrypt our response
|
// - Encrypt our response
|
||||||
if (payload->mode == MFDES_AUTH_DES || payload->mode == MFDES_AUTH_ISO || payload->mode == MFDES_AUTH_PICC) {
|
if (payload->mode == MFDES_AUTH_DES || payload->mode == MFDES_AUTH_ISO || payload->mode == MFDES_AUTH_PICC) {
|
||||||
if (payload->algo == MFDES_ALGO_3DES) {
|
if (payload->algo == MFDES_ALGO_3DES) {
|
||||||
tdes_dec(&encRndA, &RndA, key->data);
|
tdes_dec(encRndA, RndA, key->data);
|
||||||
memcpy(both, encRndA, 8);
|
memcpy(both, encRndA, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_DES) {
|
} else if (payload->algo == MFDES_ALGO_DES) {
|
||||||
des_dec(&encRndA, &RndA, key->data);
|
des_dec(encRndA, RndA, key->data);
|
||||||
memcpy(both, encRndA, 8);
|
memcpy(both, encRndA, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_2K3DES) {
|
} else if (payload->algo == MFDES_ALGO_2K3DES) {
|
||||||
tdes_2key_dec(&encRndA, &RndA, 8, key->data, IV);
|
tdes_2key_dec(encRndA, RndA, 8, key->data, IV);
|
||||||
memcpy(both, encRndA, 8);
|
memcpy(both, encRndA, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_3K3DES) {
|
} else if (payload->algo == MFDES_ALGO_3K3DES) {
|
||||||
tdes_3key_dec(&encRndA, &RndA, 16, key->data, IV);
|
tdes_3key_dec(encRndA, RndA, 16, key->data, IV);
|
||||||
memcpy(both, encRndA, 16);
|
memcpy(both, encRndA, 16);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -406,16 +398,16 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
}
|
}
|
||||||
|
|
||||||
if (payload->algo == MFDES_ALGO_3DES) {
|
if (payload->algo == MFDES_ALGO_3DES) {
|
||||||
tdes_dec(&encRndB, &rotRndB, key->data);
|
tdes_dec(encRndB, rotRndB, key->data);
|
||||||
memcpy(both + 8, encRndB, 8);
|
memcpy(both + 8, encRndB, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_DES) {
|
} else if (payload->algo == MFDES_ALGO_DES) {
|
||||||
des_dec(&encRndB, &rotRndB, key->data);
|
des_dec(encRndB, rotRndB, key->data);
|
||||||
memcpy(both + 8, encRndB, 8);
|
memcpy(both + 8, encRndB, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_2K3DES) {
|
} else if (payload->algo == MFDES_ALGO_2K3DES) {
|
||||||
tdes_2key_dec(&encRndB, &rotRndB, 8, key->data, IV);
|
tdes_2key_dec(encRndB, rotRndB, 8, key->data, IV);
|
||||||
memcpy(both + 8, encRndB, 8);
|
memcpy(both + 8, encRndB, 8);
|
||||||
} else if (payload->algo == MFDES_ALGO_3K3DES) {
|
} else if (payload->algo == MFDES_ALGO_3K3DES) {
|
||||||
tdes_3key_dec(&encRndB, &rotRndB, 16, key->data, IV);
|
tdes_3key_dec(encRndB, rotRndB, 16, key->data, IV);
|
||||||
memcpy(both + 16, encRndB, 16);
|
memcpy(both + 16, encRndB, 16);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -481,7 +473,7 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
desfirekey_t skey = &sessionKey;
|
desfirekey_t skey = &sessionKey;
|
||||||
Desfire_session_key_new(RndA, RndB, key, skey);
|
Desfire_session_key_new(RndA, RndB, key, skey);
|
||||||
if (DBGLEVEL >= DBG_EXTENDED)
|
if (DBGLEVEL >= DBG_EXTENDED)
|
||||||
print_result("SESSIONKEY : ", skey->data, payload->keylen);
|
print_result("SESSIONKEY : ", sessionKey.data, payload->keylen);
|
||||||
|
|
||||||
if (payload->mode != MFDES_AUTH_PICC) {
|
if (payload->mode != MFDES_AUTH_PICC) {
|
||||||
memcpy(encRndA, resp + 1, payload->keylen);
|
memcpy(encRndA, resp + 1, payload->keylen);
|
||||||
|
|
@ -491,13 +483,13 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
|
|
||||||
if (payload->mode == MFDES_AUTH_DES || payload->mode == MFDES_AUTH_PICC) {
|
if (payload->mode == MFDES_AUTH_DES || payload->mode == MFDES_AUTH_PICC) {
|
||||||
if (payload->algo == MFDES_ALGO_3DES)
|
if (payload->algo == MFDES_ALGO_3DES)
|
||||||
tdes_dec(&encRndA, &encRndA, key->data);
|
tdes_dec(encRndA, encRndA, key->data);
|
||||||
else if (payload->algo == MFDES_ALGO_DES)
|
else if (payload->algo == MFDES_ALGO_DES)
|
||||||
des_dec(&encRndA, &encRndA, key->data);
|
des_dec(encRndA, encRndA, key->data);
|
||||||
else if (payload->algo == MFDES_ALGO_2K3DES)
|
else if (payload->algo == MFDES_ALGO_2K3DES)
|
||||||
tdes_2key_dec(&encRndA, &encRndA, 8, key->data, IV);
|
tdes_2key_dec(encRndA, encRndA, 8, key->data, IV);
|
||||||
else if (payload->algo == MFDES_ALGO_3K3DES)
|
else if (payload->algo == MFDES_ALGO_3K3DES)
|
||||||
tdes_3key_dec(&encRndA, &encRndA, 16, key->data, IV);
|
tdes_3key_dec(encRndA, encRndA, 16, key->data, IV);
|
||||||
} else if (payload->mode == MFDES_AUTH_AES) {
|
} else if (payload->mode == MFDES_AUTH_AES) {
|
||||||
if (mbedtls_aes_setkey_dec(&ctx, key->data, 128) != 0) {
|
if (mbedtls_aes_setkey_dec(&ctx, key->data, 128) != 0) {
|
||||||
if (DBGLEVEL >= DBG_EXTENDED) {
|
if (DBGLEVEL >= DBG_EXTENDED) {
|
||||||
|
|
@ -512,6 +504,7 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
rol(RndA, payload->keylen);
|
rol(RndA, payload->keylen);
|
||||||
if (DBGLEVEL >= DBG_EXTENDED) {
|
if (DBGLEVEL >= DBG_EXTENDED) {
|
||||||
print_result("RndA : ", RndA, payload->keylen);
|
print_result("RndA : ", RndA, payload->keylen);
|
||||||
|
print_result("RndB: ", RndB, payload->keylen);
|
||||||
print_result("encRndA : ", encRndA, payload->keylen);
|
print_result("encRndA : ", encRndA, payload->keylen);
|
||||||
}
|
}
|
||||||
for (int x = 0; x < payload->keylen; x++) {
|
for (int x = 0; x < payload->keylen; x++) {
|
||||||
|
|
@ -618,15 +611,10 @@ void MifareDES_Auth1(uint8_t *datain) {
|
||||||
//reply_mix(CMD_ACK, 1, len, 0, resp, len);
|
//reply_mix(CMD_ACK, 1, len, 0, resp, len);
|
||||||
|
|
||||||
LED_B_ON();
|
LED_B_ON();
|
||||||
struct r {
|
authres_t rpayload;
|
||||||
uint8_t sessionkeylen;
|
|
||||||
uint8_t sessionkey[24];
|
|
||||||
} PACKED;
|
|
||||||
|
|
||||||
struct r rpayload;
|
|
||||||
rpayload.sessionkeylen = payload->keylen;
|
rpayload.sessionkeylen = payload->keylen;
|
||||||
memcpy(rpayload.sessionkey, skey->data, rpayload.sessionkeylen);
|
memcpy(rpayload.sessionkey, sessionKey.data, rpayload.sessionkeylen);
|
||||||
reply_ng(CMD_HF_DESFIRE_AUTH1, PM3_SUCCESS, (uint8_t *)&rpayload, sizeof(payload));
|
reply_ng(CMD_HF_DESFIRE_AUTH1, PM3_SUCCESS, (uint8_t *)&rpayload, sizeof(rpayload));
|
||||||
LED_B_OFF();
|
LED_B_OFF();
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -34,23 +34,21 @@ uint8_t key_ones_data[16] = { 0x01 };
|
||||||
uint8_t key_defa_data[16] = { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f };
|
uint8_t key_defa_data[16] = { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f };
|
||||||
uint8_t key_picc_data[16] = { 0x40, 0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47, 0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f };
|
uint8_t key_picc_data[16] = { 0x40, 0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47, 0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f };
|
||||||
|
|
||||||
|
typedef struct {
|
||||||
|
uint8_t mode;
|
||||||
|
uint8_t algo;
|
||||||
|
uint8_t keyno;
|
||||||
|
uint8_t keylen;
|
||||||
|
uint8_t key[24];
|
||||||
|
} mfdes_authinput_t;
|
||||||
|
|
||||||
|
typedef struct mfdes_auth_res {
|
||||||
|
uint8_t sessionkeylen;
|
||||||
|
uint8_t sessionkey[24];
|
||||||
|
} mfdes_auth_res_t;
|
||||||
|
|
||||||
#define status(x) ( ((uint16_t)(0x91<<8)) + x )
|
#define status(x) ( ((uint16_t)(0x91<<8)) + x )
|
||||||
|
|
||||||
typedef enum {
|
|
||||||
MFDES_AUTH_DES = 1,
|
|
||||||
MFDES_AUTH_ISO = 2,
|
|
||||||
MFDES_AUTH_AES = 3,
|
|
||||||
MFDES_AUTH_PICC = 4
|
|
||||||
} mifare_des_authmode_t;
|
|
||||||
|
|
||||||
typedef enum {
|
|
||||||
MFDES_ALGO_DES = 1,
|
|
||||||
MFDES_ALGO_3DES = 2,
|
|
||||||
MFDES_ALGO_2K3DES = 3,
|
|
||||||
MFDES_ALGO_3K3DES = 4,
|
|
||||||
MFDES_ALGO_AES = 5
|
|
||||||
} mifare_des_authalgo_t;
|
|
||||||
|
|
||||||
typedef enum {
|
typedef enum {
|
||||||
UNKNOWN = 0,
|
UNKNOWN = 0,
|
||||||
DESFIRE_MF3ICD40,
|
DESFIRE_MF3ICD40,
|
||||||
|
|
@ -949,27 +947,27 @@ static int CmdHF14ADesCreateApp(const char *Cmd) {
|
||||||
|
|
||||||
if (aidlength < 3) {
|
if (aidlength < 3) {
|
||||||
PrintAndLogEx(ERR, "AID must have 3 bytes length.");
|
PrintAndLogEx(ERR, "AID must have 3 bytes length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (fidlength < 2) {
|
if (fidlength < 2) {
|
||||||
PrintAndLogEx(ERR, "FID must have 2 bytes length.");
|
PrintAndLogEx(ERR, "FID must have 2 bytes length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (keylen1 < 1) {
|
if (keylen1 < 1) {
|
||||||
PrintAndLogEx(ERR, "Keysetting1 must have 1 byte length.");
|
PrintAndLogEx(ERR, "Keysetting1 must have 1 byte length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (keylen1 < 1) {
|
if (keylen1 < 1) {
|
||||||
PrintAndLogEx(ERR, "Keysetting2 must have 1 byte length.");
|
PrintAndLogEx(ERR, "Keysetting2 must have 1 byte length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (namelen > 16) {
|
if (namelen > 16) {
|
||||||
PrintAndLogEx(ERR, "Name has a max. of 16 bytes length.");
|
PrintAndLogEx(ERR, "Name has a max. of 16 bytes length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
//90 ca 00 00 0e 3cb849 09 22 10e1 d27600 00850101 00
|
//90 ca 00 00 0e 3cb849 09 22 10e1 d27600 00850101 00
|
||||||
|
|
@ -1018,7 +1016,7 @@ static int CmdHF14ADesDeleteApp(const char *Cmd) {
|
||||||
|
|
||||||
if (aidlength < 3) {
|
if (aidlength < 3) {
|
||||||
PrintAndLogEx(ERR, "AID must have 3 bytes length.");
|
PrintAndLogEx(ERR, "AID must have 3 bytes length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (memcmp(aid, "\x00\x00\x00", 3) == 0) {
|
if (memcmp(aid, "\x00\x00\x00", 3) == 0) {
|
||||||
|
|
@ -1054,20 +1052,15 @@ static int CmdHF14ADesFormatPICC(const char *Cmd) {
|
||||||
|
|
||||||
if ((keylen < 8) || (keylen > 8)) {
|
if ((keylen < 8) || (keylen > 8)) {
|
||||||
PrintAndLogEx(ERR, "Specified key must have 8 bytes length.");
|
PrintAndLogEx(ERR, "Specified key must have 8 bytes length.");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
DropField();
|
DropField();
|
||||||
uint8_t aid[3] = {0};
|
uint8_t aid[3] = {0};
|
||||||
int res = get_desfire_select_application(aid);
|
int res = get_desfire_select_application(aid);
|
||||||
if (res != PM3_SUCCESS) return res;
|
if (res != PM3_SUCCESS) return res;
|
||||||
struct {
|
|
||||||
uint8_t mode;
|
mfdes_authinput_t payload;
|
||||||
uint8_t algo;
|
|
||||||
uint8_t keyno;
|
|
||||||
uint8_t key[24];
|
|
||||||
uint8_t keylen;
|
|
||||||
} PACKED payload;
|
|
||||||
payload.keylen = keylen;
|
payload.keylen = keylen;
|
||||||
memcpy(payload.key, key, keylen);
|
memcpy(payload.key, key, keylen);
|
||||||
payload.mode = MFDES_AUTH_PICC;
|
payload.mode = MFDES_AUTH_PICC;
|
||||||
|
|
@ -1496,7 +1489,7 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
CLIParserInit("hf mfdes auth",
|
CLIParserInit("hf mfdes auth",
|
||||||
"Authenticates Mifare DESFire using Key",
|
"Authenticates Mifare DESFire using Key",
|
||||||
"Usage:\n\t-m Auth type (1=normal, 2=iso, 3=aes)\n\t-t Crypt algo (1=DES, 2=3DES, 3=2K3DES, 4=3K3DES, 5=AES)\n\t-a aid (3 bytes)\n\t-n keyno\n\t-k key (8-24 bytes)\n\n"
|
"Usage:\n\t-m Auth type (1=normal, 2=iso, 3=aes)\n\t-t Crypt algo (1=DES, 2=3DES, 3=2K3DES, 4=3K3DES, 5=AES)\n\t-a aid (3 bytes)\n\t-n keyno\n\t-k key (8-24 bytes)\n\n"
|
||||||
"Example:\n\thf mfdes auth -m 3 -t 5 -a 018380 -n 0 -k 00000000000000000000000000000000\n"
|
"Example:\n\thf mfdes auth -m 3 -t 5 -a 838001 -n 0 -k 00000000000000000000000000000000\n"
|
||||||
);
|
);
|
||||||
|
|
||||||
void *argtable[] = {
|
void *argtable[] = {
|
||||||
|
|
@ -1516,7 +1509,7 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
int aidlength = 3;
|
int aidlength = 3;
|
||||||
uint8_t aid[3] = {0};
|
uint8_t aid[3] = {0};
|
||||||
CLIGetHexWithReturn(3, aid, &aidlength);
|
CLIGetHexWithReturn(3, aid, &aidlength);
|
||||||
swap16(aid);
|
swap24(aid);
|
||||||
uint8_t cmdKeyNo = arg_get_int_def(4, 0);
|
uint8_t cmdKeyNo = arg_get_int_def(4, 0);
|
||||||
|
|
||||||
uint8_t key[24] = {0};
|
uint8_t key[24] = {0};
|
||||||
|
|
@ -1526,43 +1519,43 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
|
|
||||||
if ((keylen < 8) || (keylen > 24)) {
|
if ((keylen < 8) || (keylen > 24)) {
|
||||||
PrintAndLogEx(ERR, "Specified key must have %d bytes length.", keylen);
|
PrintAndLogEx(ERR, "Specified key must have %d bytes length.", keylen);
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
// AID
|
// AID
|
||||||
if (aidlength != 3) {
|
if (aidlength != 3) {
|
||||||
PrintAndLogEx(WARNING, "aid must include %d HEX symbols", 3);
|
PrintAndLogEx(WARNING, "aid must include %d HEX symbols", 3);
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
switch (cmdAuthMode) {
|
switch (cmdAuthMode) {
|
||||||
case MFDES_AUTH_DES:
|
case MFDES_AUTH_DES:
|
||||||
if (cmdAuthAlgo != MFDES_ALGO_DES && cmdAuthAlgo != MFDES_ALGO_3DES) {
|
if (cmdAuthAlgo != MFDES_ALGO_DES && cmdAuthAlgo != MFDES_ALGO_3DES) {
|
||||||
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth des mode");
|
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth des mode");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case MFDES_AUTH_ISO:
|
case MFDES_AUTH_ISO:
|
||||||
if (cmdAuthAlgo != MFDES_ALGO_2K3DES && cmdAuthAlgo != MFDES_ALGO_3K3DES) {
|
if (cmdAuthAlgo != MFDES_ALGO_2K3DES && cmdAuthAlgo != MFDES_ALGO_3K3DES) {
|
||||||
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth iso mode");
|
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth iso mode");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case MFDES_AUTH_AES:
|
case MFDES_AUTH_AES:
|
||||||
if (cmdAuthAlgo != MFDES_ALGO_AES) {
|
if (cmdAuthAlgo != MFDES_ALGO_AES) {
|
||||||
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth aes mode");
|
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth aes mode");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case MFDES_AUTH_PICC:
|
case MFDES_AUTH_PICC:
|
||||||
if (cmdAuthAlgo != MFDES_AUTH_DES) {
|
if (cmdAuthAlgo != MFDES_AUTH_DES) {
|
||||||
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth picc mode");
|
PrintAndLogEx(NORMAL, "Crypto algo not valid for the auth picc mode");
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
default:
|
default:
|
||||||
PrintAndLogEx(WARNING, "Wrong Auth mode (%d) -> (1=normal, 2=iso, 3=aes)", cmdAuthMode);
|
PrintAndLogEx(WARNING, "Wrong Auth mode (%d) -> (1=normal, 2=iso, 3=aes)", cmdAuthMode);
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
switch (cmdAuthAlgo) {
|
switch (cmdAuthAlgo) {
|
||||||
|
|
@ -1592,7 +1585,7 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
// KEY
|
// KEY
|
||||||
if (keylen != keylength) {
|
if (keylen != keylength) {
|
||||||
PrintAndLogEx(WARNING, "Key must include %d HEX symbols", keylength);
|
PrintAndLogEx(WARNING, "Key must include %d HEX symbols", keylength);
|
||||||
return PM3_SNONCES;
|
return PM3_EINVARG;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
@ -1606,13 +1599,7 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
if (res != PM3_SUCCESS) return res;
|
if (res != PM3_SUCCESS) return res;
|
||||||
}
|
}
|
||||||
|
|
||||||
struct {
|
mfdes_authinput_t payload;
|
||||||
uint8_t mode;
|
|
||||||
uint8_t algo;
|
|
||||||
uint8_t keyno;
|
|
||||||
uint8_t key[24];
|
|
||||||
uint8_t keylen;
|
|
||||||
} PACKED payload;
|
|
||||||
payload.keylen = keylength;
|
payload.keylen = keylength;
|
||||||
memcpy(payload.key, key, keylength);
|
memcpy(payload.key, key, keylength);
|
||||||
payload.mode = cmdAuthMode;
|
payload.mode = cmdAuthMode;
|
||||||
|
|
@ -1630,15 +1617,9 @@ static int CmdHF14ADesAuth(const char *Cmd) {
|
||||||
|
|
||||||
uint8_t isOK = (resp.status == PM3_SUCCESS);
|
uint8_t isOK = (resp.status == PM3_SUCCESS);
|
||||||
if (isOK) {
|
if (isOK) {
|
||||||
struct r {
|
struct mfdes_auth_res *rpayload = (struct mfdes_auth_res *)&resp.data.asBytes;
|
||||||
uint8_t sessionkeylen;
|
|
||||||
uint8_t sessionkey[24];
|
|
||||||
} PACKED;
|
|
||||||
|
|
||||||
struct r *rpayload = (struct r *)&resp.data.asBytes;
|
|
||||||
uint8_t *session_key = rpayload->sessionkey;
|
|
||||||
PrintAndLogEx(SUCCESS, " Key : " _GREEN_("%s"), sprint_hex(key, keylength));
|
PrintAndLogEx(SUCCESS, " Key : " _GREEN_("%s"), sprint_hex(key, keylength));
|
||||||
PrintAndLogEx(SUCCESS, " SESSION : " _GREEN_("%s"), sprint_hex(session_key, keylength));
|
PrintAndLogEx(SUCCESS, " SESSION : " _GREEN_("%s"), sprint_hex(rpayload->sessionkey, keylength));
|
||||||
PrintAndLogEx(INFO, "-------------------------------------------------------------");
|
PrintAndLogEx(INFO, "-------------------------------------------------------------");
|
||||||
} else {
|
} else {
|
||||||
PrintAndLogEx(WARNING, _RED_("Auth command failed, reason: %d."), resp.status);
|
PrintAndLogEx(WARNING, _RED_("Auth command failed, reason: %d."), resp.status);
|
||||||
|
|
|
||||||
|
|
@ -80,6 +80,22 @@ typedef enum DESFIRE_COMMAND {
|
||||||
BAR = 0x10,
|
BAR = 0x10,
|
||||||
} desfire_command_t;
|
} desfire_command_t;
|
||||||
|
|
||||||
|
typedef enum {
|
||||||
|
MFDES_AUTH_DES = 1,
|
||||||
|
MFDES_AUTH_ISO = 2,
|
||||||
|
MFDES_AUTH_AES = 3,
|
||||||
|
MFDES_AUTH_PICC = 4
|
||||||
|
} mifare_des_authmode_t;
|
||||||
|
|
||||||
|
typedef enum {
|
||||||
|
MFDES_ALGO_DES = 1,
|
||||||
|
MFDES_ALGO_3DES = 2,
|
||||||
|
MFDES_ALGO_2K3DES = 3,
|
||||||
|
MFDES_ALGO_3K3DES = 4,
|
||||||
|
MFDES_ALGO_AES = 5
|
||||||
|
} mifare_des_authalgo_t;
|
||||||
|
|
||||||
|
|
||||||
//-----------------------------------------------------------------------------
|
//-----------------------------------------------------------------------------
|
||||||
// ISO 14443B
|
// ISO 14443B
|
||||||
//-----------------------------------------------------------------------------
|
//-----------------------------------------------------------------------------
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue