V 1.1

Author: GtechGovind

.idea/.name

@@ -1,15 +1,15 @@
 cmake_minimum_required(VERSION 3.25)
-project(DesfireCMAC)
+project(DesfireCrypto)
 
 set(CMAKE_CXX_STANDARD 17)
 
-add_executable(DesfireCMAC
+add_executable(DesfireCrypto
 
         # INCLUDE
         include/aes/AES.cpp
         include/aes/AES.h
-        include/cmac/CMAC.cpp
-        include/cmac/CMAC.h
+        include/desfire_crypto/DesfireCrypto.cpp
+        include/desfire_crypto/DesfireCrypto.h
 
         # MAIN
         src/main.cpp

CMakeLists.txt

@@ -0,0 +1,56 @@
+# DesfireCrypto
+
+DesfireCrypto is a C++ class that provides cryptographic functionalities for DESFire cards. It includes encryption, decryption, initialization of the Cipher-based Message Authentication Code (CMAC), and other utility functions.
+
+## Functions
+
+### generateSubkeys
+```cpp
+void generateSubkeys();
+```
+This function generates key0, key1, and key2 for DESFire. It performs the following steps:
+1. Generate key0, key1, and key2.
+2. Encrypt 16 bytes of 0x00 with the key.
+3. Left shift key0 by 1 bit and store it in key1.
+4. If the Most Significant Bit (MSB) of key0 is 0x80, then key1 = (key0 << 1) ^ 0x87.
+5. Left shift key1 by 1 bit and store it in key2.
+6. If the MSB of key1 is 0x80, then key2 = (key1 << 1) ^ 0x87.
+
+### setIv
+```cpp
+void setIv(const vector<uint8_t> &_iv);
+```
+This function sets the Initialization Vector (IV) for encryption and decryption. The IV is obtained during authentication.
+
+### encryptAes
+```cpp
+vector<uint8_t> encryptAes(vector<uint8_t> &data, const vector<uint8_t> &key, const vector<uint8_t> &iv);
+```
+This function encrypts the provided data using AES-128 algorithm. It takes the data, encryption key, and IV as inputs and returns the encrypted data as a vector of bytes.
+
+### decryptAes
+```cpp
+vector<uint8_t> decryptAes(vector<uint8_t> &data, const vector<uint8_t> &key, const vector<uint8_t> &iv);
+```
+This function decrypts the provided data using AES-128 algorithm. It takes the data, decryption key, and IV as inputs and returns the decrypted data as a vector of bytes.
+
+### initCMAC
+```cpp
+void initCMAC(const vector<uint8_t> &_key, const vector<uint8_t> &_iv);
+```
+This function initializes the Cipher-based Message Authentication Code (CMAC) with the provided key and IV. It is called during the authentication process.
+
+### getCMAC
+```cpp
+vector<uint8_t> getCMAC(const vector<uint8_t> &_data);
+```
+This function calculates the CMAC for the provided data. It performs the following steps:
+1. Checks if padding is required (`isPaddingRequired = dataLen % AES_BLOCK_SIZE != 0`).
+2. Calculates the number of blocks (`numberOfBlocks = isPaddingRequired ? dataLen / AES_BLOCK_SIZE + 1 : dataLen / AES_BLOCK_SIZE`).
+3. Splits the data into blocks, each of size 16 bytes (for AES).
+4. If padding is required, adds padding to the last block (`lastBlock.push_back(0x80); lastBlock.resize(AES_BLOCK_SIZE, 0x00);`).
+5. If `isPaddingRequired` is true, XORs the last block with key2; otherwise, XORs it with key1.
+6. For each block, XORs it with the previous IV obtained in the last process (`xorVec(blocks[i], iv, blocks[i]);`).
+7. Encrypts the XORed block with AES-128 using the key and IV (`aes.EncryptCBC(blocks[i], key, iv);`). The IV used for encryption should be all zeros.
+8. Updates the IV with the encrypted block.
+9. Returns the last block of the IV as DesfireCrypto, as only the first 8

README.md

@@ -1,26 +1,30 @@
-#include "CMAC.h"
+#include "DesfireCrypto.h"
 
-void CMAC::initCMAC(const vector<uint8_t>& _key, const vector<uint8_t>& _iv) {
+void DesfireCrypto::initCMAC(const vector<uint8_t>& _key, const vector<uint8_t>& _iv) {
     aes = AES(AESKeyLength::AES_128);
     key = _key;
     iv = _iv;
-    generateSubkeys();
 }
 
-void CMAC::generateSubkeys() {
+void DesfireCrypto::generateSubkeys() {
 
     vector<uint8_t> zero(16, 0x00);
-    vector<unsigned char> key0 = aes.EncryptCBC(zero, key, zero);
+    vector<unsigned char> key0 = encryptAes(zero, key, zero);
 
     leftShift(key0, key1);
     if (key0[0] & 0x80) key1[key1.size() - 1] ^= 0x87U;
 
     leftShift(key1, key2);
     if (key1[0] & 0x80) key2[key2.size() - 1] ^= 0x87U;
 
+    vecPrint("key0", key0);
+    vecPrint("key1", key1);
+    vecPrint("key2", key2);
+
 }
 
-vector<uint8_t> CMAC::getCMAC(const vector<uint8_t>& data) {
+vector<uint8_t> DesfireCrypto::getCMAC(const vector<uint8_t>& data) {
+
     const int AES_BLOCK_SIZE = 16;
     bool isPaddingRequired = (data.size() % AES_BLOCK_SIZE != 0);
     int numberOfBlocks = isPaddingRequired ? data.size() / AES_BLOCK_SIZE + 1 : data.size() / AES_BLOCK_SIZE;
@@ -52,12 +56,24 @@ vector<uint8_t> CMAC::getCMAC(const vector<uint8_t>& data) {
         vector<unsigned char> temp = blocks[offset];
         vector<unsigned char> xorTemp(AES_BLOCK_SIZE, 0x00);
         xorVec(iv, temp, xorTemp);
-        temp = aes.EncryptCBC(xorTemp, key, tempIv);
+        temp = encryptAes(xorTemp, key, tempIv);
         iv = temp;
         offset += AES_BLOCK_SIZE;
     }
 
     cmac = {iv.begin(), iv.begin() + AES_BLOCK_SIZE / 2};
 
     return cmac;
-}
+}
+
+void DesfireCrypto::setIv(const vector<uint8_t> &_iv) {
+    iv = _iv;
+}
+
+vector<uint8_t> DesfireCrypto::encryptAes(vector<uint8_t> &data, const vector<uint8_t> &_key, const vector<uint8_t> &_iv) {
+    return aes.EncryptCBC(data, _key, _iv);
+}
+
+vector<uint8_t> DesfireCrypto::decryptAes(vector<uint8_t> &data, const vector<uint8_t> &_key, const vector<uint8_t> &_iv) {
+    return aes.DecryptCBC(data, _key, _iv);
+}

include/cmac/CMAC.cpp renamed to include/desfire_crypto/DesfireCrypto.cpp

@@ -4,7 +4,12 @@
 
 using namespace std;
 
-class CMAC {
+#define CRC32_POLY     0x04C11DB7
+#define CRC32_POLY_REV 0xEDB88320
+#define CRC32_NUMBYTES 4
+#define CRC32_NUMBITS  (8 * CRC32_NUMBYTES)
+
+class DesfireCrypto {
 
     private:
     AES aes;
@@ -13,6 +18,8 @@ class CMAC {
     vector<uint8_t> key2;
     vector<uint8_t> iv;
 
+    public:
+
     /**
      * @name generateSubkeys
      * @details 1. Generate key0, key1, key2
@@ -25,7 +32,29 @@ class CMAC {
     */
     void generateSubkeys();
 
-    public:
+    /**
+     * @name setKey
+     * @details Set IV
+     * @param _iv = Session obtained during authentication
+     * @return void
+    */
+    void setIv(const vector<uint8_t> &_iv);
+
+    /**
+     * @name encryptAes
+     * @details Encrypt data using AES-128
+     * @param data = Data to be encrypted
+     * @return Encrypted data
+    */
+    vector<uint8_t> encryptAes(vector<uint8_t> &data, const vector<uint8_t> &key, const vector<uint8_t> &iv);
+
+    /**
+     * @name decryptAes
+     * @details Decrypt data using AES-128
+     * @param data = Data to be decrypted
+     * @return Decrypted data
+    */
+    vector<uint8_t> decryptAes(vector<uint8_t> &data, const vector<uint8_t> &key, const vector<uint8_t> &iv);
 
     /**
      * @name initCMAC
@@ -35,7 +64,7 @@ class CMAC {
      * @param _iv = IV obtained during authentication
      * @return void
     */
-    void initCMAC(const vector<uint8_t>& _key, const vector<uint8_t>& _iv);
+    void initCMAC(const vector<uint8_t> &_key, const vector<uint8_t> &_iv);
 
     /**
      * @name getCMAC
@@ -47,11 +76,11 @@ class CMAC {
      * @details 6. For each block, xor with previous IV obtain in last process. [ xorVec(blocks[i], iv, blocks[i]); ]
      * @details 7. Encrypt xor'ed block with AES-128 [ aes.EncryptCBC(blocks[i], key, iv); ] iv used for encryption should be all zero's
      * @details 8. Update iv with encrypted block
-     * @details 9. Return last block of iv as CMAC only first 8 bytes are required
+     * @details 9. Return last block of iv as DesfireCrypto only first 8 bytes are required
      * @param _data
-     * @return cmac.
+     * @return desfire_crypto.
     */
-    vector<uint8_t> getCMAC(const vector<uint8_t>& _data);
+    vector<uint8_t> getCMAC(const vector<uint8_t> &_data);
 
     /**
      * @name leftShift
@@ -61,7 +90,7 @@ class CMAC {
      * @param outputBuffer = Output buffer
      * @return void
     */
-    static void leftShift(const vector<uint8_t>& inputBuffer, vector<uint8_t>& outputBuffer) {
+    static void leftShift(const vector<uint8_t> &inputBuffer, vector<uint8_t> &outputBuffer) {
         outputBuffer.clear();
         outputBuffer.resize(inputBuffer.size());
         uint8_t overflow = 0;
@@ -79,9 +108,9 @@ class CMAC {
      * @param data = Vector to be printed
      * @return void
     */
-    static void vecPrint(const string& message, const vector<unsigned char>& data) {
+    static void vecPrint(const string &message, const vector<unsigned char> &data) {
         cout << message << " -> \t\t";
-        for (unsigned char i : data) {
+        for (unsigned char i: data) {
             printf("%02X", i);
         }
         cout << " | " << data.size() << endl;
@@ -95,7 +124,7 @@ class CMAC {
      * @param vector2 = Second vector
      * @param result = Resultant vector
     */
-    static void xorVec(const vector<uint8_t>& vector1, const vector<uint8_t>& vector2, vector<uint8_t>& result) {
+    static void xorVec(const vector<uint8_t> &vector1, const vector<uint8_t> &vector2, vector<uint8_t> &result) {
         size_t size = min(vector1.size(), vector2.size());
         result.clear();
         result.reserve(size);
@@ -104,4 +133,46 @@ class CMAC {
         }
     }
 
+    /**
+     * @name Crc32
+     * @brief Generate a CRC checksum of width 32 for the given data array.
+     * @param data Pointer to the data block.
+     * @param len Length of the data block.
+     * @param result Pointer to the CRC checksum array, in big endian format [modified].
+     * @return void
+     * @details Operation:
+     * - Load the register with 0 bits.
+     * - For each byte in the data block:
+     *     - Shift the register left by 8 bits, reading the next byte into the register.
+     *     - For each bit in the current byte (from MSB to LSB):
+     *         - If the MSB of the register is 1, perform an XOR operation with the polynomial (0x04C11DB7).
+     *         - Shift the register left by 1 bit.
+     * - The register now contains the CRC checksum, which is stored in the result array in big endian format.
+     */
+    static void crc32(uint8_t *data, size_t len, uint8_t *crc) {
+
+        uint32_t reg = 0;
+        int current_bit;
+        uint8_t current_byte;
+        int byte;
+        uint8_t popped_bit;
+
+        len += CRC32_NUMBYTES;
+
+        while (len--) {
+            current_byte = *data++;
+            for (current_bit = 8; current_bit > 0; current_bit--) {
+                popped_bit = reg >> (CRC32_NUMBITS - 1);
+                reg = (reg << 1) | ((len < CRC32_NUMBYTES) ? 0 : (current_byte >> 7));
+                current_byte <<= 1;
+                if (popped_bit) reg ^= CRC32_POLY;
+            }
+        }
+
+        for (byte = 0; byte < CRC32_NUMBYTES; byte++) {
+            crc[byte] = reg >> (8 * (CRC32_NUMBYTES - 1 - byte)) & 0xFF;
+        }
+
+    }
+
 };

include/cmac/CMAC.h renamed to include/desfire_crypto/DesfireCrypto.h

@@ -1,19 +1,19 @@
 #include <iostream>
-#include "../include/cmac/CMAC.h"
+#include "../include/desfire_crypto/DesfireCrypto.h"
 
 int main() {
 
-    CMAC cmac;
+    DesfireCrypto desfireCrypto;
 
-    vector<unsigned char> key = {0x22, 0x7E, 0xAC, 0x50, 0x8F, 0xB2, 0xD1, 0x30, 0xE0, 0x45, 0x19, 0x88, 0xD5, 0x1F, 0x8D, 0xD0};
-    vector<unsigned char> iv = {0xB9, 0x87, 0x07, 0x4D, 0x3F, 0x60, 0xEE, 0xF6, 0xC1, 0x80, 0x34, 0x55, 0x1A, 0xA7, 0x9E, 0x09};
-    vector<unsigned char> message = {0xBD, 0x02, 0x00, 0x00, 0x00, 0x0F, 0x00, 0x00};
+    vector<unsigned char> key = {0x32, 0x01, 0x9B, 0xE4, 0xBC, 0x09, 0xA5, 0x20, 0x7A, 0xC7, 0xC6, 0x38, 0x65, 0xC2, 0x02, 0xA4, };
+    vector<unsigned char> iv = vector<unsigned char>(16, 0x00);
+    vector<unsigned char> message = {0x6C, 0x00};
 
-    cmac.initCMAC(key, iv);
-    //cmac.getCMAC(message);
+    desfireCrypto.initCMAC(key, iv);
+    desfireCrypto.generateSubkeys();
 
-    cout << "CMAC: ";
-    for (auto &i : cmac.getCMAC(message)) {
+    cout << "DesfireCrypto: ";
+    for (auto &i : desfireCrypto.getCMAC(message)) {
         cout << hex << uppercase << (int) i << " ";
     }