github/RRG-Proxmark3
1
0
Fork 0
mirror of https://github.com/RfidResearchGroup/proxmark3.git synced 2025-08-26 16:15:25 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

emrtd: Verify rnd_ifd

Browse source
This commit is contained in:
Ave 2020-12-11 06:27:47 +03:00
commit 70ecfdf502
1 changed files with 23 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

23
client/src/cmdhfemrtd.c
View file

@ -184,6 +184,20 @@ static void des3_encrypt_cbc(uint8_t *iv, uint8_t *key, uint8_t *input, int inpu
mbedtls_des3_free(&ctx); mbedtls_des3_free(&ctx);
} }
static void des3_decrypt_cbc(uint8_t *iv, uint8_t *key, uint8_t *input, int inputlen, uint8_t *output) {
mbedtls_des3_context ctx;
mbedtls_des3_set2key_dec(&ctx, key);
mbedtls_des3_crypt_cbc(&ctx // des3_context
, MBEDTLS_DES_DECRYPT // int mode
, inputlen // length
, iv // iv[8]
, input // input
, output // output
);
mbedtls_des3_free(&ctx);
}
static void retail_mac(uint8_t *key, uint8_t *input, uint8_t *output) { static void retail_mac(uint8_t *key, uint8_t *input, uint8_t *output) {
// This code assumes blocklength (n) = 8, and input len of 32 chars // This code assumes blocklength (n) = 8, and input len of 32 chars
// This code takes inspirations from https://github.com/devinvenable/iso9797algorithm3 // This code takes inspirations from https://github.com/devinvenable/iso9797algorithm3
@ -424,6 +438,15 @@ int infoHF_EMRTD(char *documentnumber, char *dob, char *expiry) {
} }
PrintAndLogEx(INFO, "External authentication successful."); PrintAndLogEx(INFO, "External authentication successful.");
uint8_t dec_output[32] = { 0x00 };
des3_decrypt_cbc(iv, kenc, response, 32, dec_output);
if (memcmp(rnd_ifd, dec_output + 8, 8) != 0) {
PrintAndLogEx(ERR, "Challenge failed, rnd_ifd does not match.");
DropField();
return PM3_ESOFT;
}
DropField(); DropField();
return PM3_SUCCESS; return PM3_SUCCESS;
} }