Skip to content

Commit

Permalink
Stashing in progress changes to the DESFire LibNFC test code ; Adding…
Browse files Browse the repository at this point in the history
… incomplete documentation for custom build targets
  • Loading branch information
maxieds committed Jul 17, 2022
1 parent 3d19776 commit e07823e
Show file tree
Hide file tree
Showing 4 changed files with 144 additions and 19 deletions.
108 changes: 108 additions & 0 deletions Doc/BuilingFromSource.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,108 @@
# Building the Chameleon Mini RevG firmware from source

Users that are preparing to reflash their older generation RevE devices should
see [this software]()
for the latest sources to compile fresh binaries to flash onto their Chameleon Mini.
Because the AVR chips on the Chameleon Mini RevE devices have less memory, the configurations
such as for [DESFire tags]()
will (most likely) not work if the firmware binaries are built
using the source code in this repository.

## Prerequisites

Users need to install ``avr-gcc`` developer packages and GNU ``make`` to compile the sources.
To flash the firmware onto the Chameleon over USB, users will need to install software such as
``avrdude``. On Linux and Unix systems, users will likely need to setup extra ``udev`` rules on their
system so the Chameleon Mini is recognized as a USB device in bootloader (flash) and runtime modes.
Details on this configuration are found on the
[getting started WIKI]().

## Cloning

```bash
$ git clone ttps://@github.com/emsec/ChameleonMini.git
$ cd ChameleonMini/Firmware/ChameleonMini
```
If you are working from an older cloned source, make sure to update to the latest by running
```bash
$ git pull
```

## Customizing the build

The complexity and memory requirements needed to have all possible
[configurations]()
enabled for use on the Chameleon are too demanding for the onboard AVR chip.
Users will have to choose a subset that includes support for only a few configurations at
a time (reflash to use firmware built with others).
There are several custom targets that make building specialized firmware possible.
They include one of the following strings (henceforth ``BUILD_TARGET``):
```bash
mifare, mifare-classic, desfire, desfire-dev, iso-modes, ntag215, vicinity, sls2s2002, tagatit, em4233
```
Precise up-to-date information about which configurations are supported by each build variant are found by reviewing the
[build script source]().
The per-build configuration lists are currently as follows:

* ``mifare``: TODO
* ``mifare-classic``: TODO
* ``desfire``, ``desfire-dev``: TODO
* ``iso-modes``: TODO
* ``ntag215``: TODO
* ``vicinity``: TODO
* ``sl2s2002``: TODO
* ``tagatit``: TODO
* ``em4233``: TODO

### Choosing prepacakaged firmware binaries

Latest builds supporting ISO14443A, ISO1593 and DESFire (non development) are generated automatically on the
main Chameleon Mini firmware repository
(see [this directory]()).

### More customized builds

Users that wish to build a hybrid of any of the above ``make`` targets may edit the
``Makefile`` in the current working directory (as set in the cloning step above) and set the
``BUILD_TARGET`` varaible to empty (i.e., build the source by just running ``make`` below).
*Caveat emptor*: the warning is again that enabling too much functionality in the firmware build may cause
errors due to memory restrictions.

## Compiling the source

Build the source by running
```bash
$ make $BUILD_TARGET
```
For example, to build the firmware with DESFire support and extra printing of debugging information that
can be printed with ``LOGMODE=LIVE`` and viewed with the
[Chameleon Mini Live Debugger]()
application for Android phones, we run
```bash
$ make desfire-dev
```

## Flashing the firmware

See the [getting started documentation]()
for more information. The flash command using ``avrdude`` on Linux is the following:
```bash
$ export FIRMWARE_TARGET=Chameleon-Mini
$ sudo avrdude -c flip2 -p ATXMega128A4U -B 60 -P usb -U application:w:$FIRMWARE_TARGET.hex:i -U eeprom:w:$FIRMWARE_TARGET.eep:i
```
More information about flashing Chameleon devices on odd platforms and hardware setups is
[found here]().

## Getting up and running with the Chameleon Mini over serial USB

Users can install ``minicom`` to interface to the Chameleon Mini.
Configuration details are OS specific and are found elsewhere.
Alternately, if users wish to use a portable interface and log viewer on their
Android device with Google Play Store, see the
[CMLD application WIKI]().
Python-based software to download and view the logs on the Chameleon is located
[in this directory]().
Sample dumps for several configuration types that can be uploaded onto the running
Chameleon device are
[located here]()
(the list is not complrehensive).
Original file line number Diff line number Diff line change
Expand Up @@ -1756,7 +1756,7 @@ uint16_t DesfireCmdAuthenticate3KTDEA1(uint8_t *Buffer, uint16_t ByteCount) {
DesfireLogEntry(LOG_APP_AUTH_KEY, (const void *) Key, keySize);

/* Generate the nonce B (RndB / Challenge response) */
if (DesfireDebuggingOn) {
if (!DesfireDebuggingOn) {
RandomGetBuffer(DesfireCommandState.RndB, CryptoChallengeResponseBytesSize);
} else {
/* Fixed nonce for testing */
Expand All @@ -1781,11 +1781,9 @@ uint16_t DesfireCmdAuthenticate3KTDEA1(uint8_t *Buffer, uint16_t ByteCount) {

/* Encrypt RndB with the selected key and transfer it back to the PCD */
if (cryptoKeyType == CRYPTO_TYPE_DES || cryptoKeyType == CRYPTO_TYPE_3K3DES || cryptoKeyType == CRYPTO_TYPE_ANY) {
Encrypt3DESBuffer(CryptoChallengeResponseBytesSize, DesfireCommandState.RndB,
&Buffer[1], IV, Key);
Encrypt3DESBuffer(CryptoChallengeResponseBytesSize, DesfireCommandState.RndB, &Buffer[1], IV, Key);
} else {
Encrypt2K3DESBuffer(CryptoChallengeResponseBytesSize, DesfireCommandState.RndB,
&Buffer[1], IV, Key);
Encrypt2K3DESBuffer(CryptoChallengeResponseBytesSize, DesfireCommandState.RndB, &Buffer[1], IV, Key);
}
DesfireLogEntry(LOG_INFO_DESFIRE_STATUS_INFO, (void *) IV, CryptoChallengeResponseBytesSize);

Expand Down
41 changes: 33 additions & 8 deletions Software/DESFireLibNFCTesting/LocalInclude/DesfireUtils.h
Original file line number Diff line number Diff line change
Expand Up @@ -16,10 +16,21 @@
#include "LibNFCUtils.h"
#include "GeneralUtils.h"

static uint8_t ActiveCryptoIVBuffer[CRYPTO_CHALLENGE_RESPONSE_SIZE] = { 0x00 };

static inline void InvalidateAuthenticationStatus(void) {
AUTHENTICATED = false;
AUTHENTICATED_PROTO = 0;
memset(ActiveCryptoIVBuffer, 0x00, CRYPTO_CHALLENGE_RESPONSE_SIZE);
}

static inline int AuthenticateAES128(nfc_device *nfcConnDev, uint8_t keyIndex, const uint8_t *keyData) {

if (nfcConnDev == NULL || keyData == NULL) {
InvalidateAuthenticationStatus();
return INVALID_PARAMS_ERROR;
} else if (!AUTHENTICATED) {
InvalidateAuthenticationStatus();
}

// Start AES authentication (default key, blank setting of all zeros):
Expand All @@ -43,6 +54,7 @@ static inline int AuthenticateAES128(nfc_device *nfcConnDev, uint8_t keyIndex, c
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -51,7 +63,7 @@ static inline int AuthenticateAES128(nfc_device *nfcConnDev, uint8_t keyIndex, c
// encrypt this result, and send it forth to the PICC:
uint8_t encryptedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], plainTextRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], rotatedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t rndA[CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponse[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponseCipherText[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE];
int8_t IVBuf[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t *IVBuf = ActiveCryptoIVBuffer;
memcpy(encryptedRndB, rxDataStorage->rxDataBuf, CRYPTO_CHALLENGE_RESPONSE_SIZE);
CryptoData_t aesCryptoData = { 0 };
aesCryptoData.keySize = 16;
Expand Down Expand Up @@ -92,6 +104,7 @@ static inline int AuthenticateAES128(nfc_device *nfcConnDev, uint8_t keyIndex, c
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -117,14 +130,18 @@ static inline int AuthenticateAES128(nfc_device *nfcConnDev, uint8_t keyIndex, c
print_hex(decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}
}

static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, const uint8_t *keyData) {

if (nfcConnDev == NULL || keyData == NULL) {
InvalidateAuthenticationStatus();
return INVALID_PARAMS_ERROR;
} else if (!AUTHENTICATED) {
InvalidateAuthenticationStatus();
}

// Start 3K3DES authentication (default key, blank setting of all zeros):
Expand All @@ -148,6 +165,7 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -156,10 +174,10 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
// encrypt this result, and send it forth to the PICC:
uint8_t encryptedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], plainTextRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], rotatedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t rndA[CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponse[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponseCipherText[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE];
int8_t IVBuf[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t *IVBuf = ActiveCryptoIVBuffer;
memcpy(encryptedRndB, rxDataStorage->rxDataBuf, CRYPTO_CHALLENGE_RESPONSE_SIZE);
//memset(IVBuf, 0x00, CRYPTO_CHALLENGE_RESPONSE_SIZE);
memcpy(IVBuf, &encryptedRndB[CRYPTO_3KTDEA_BLOCK_SIZE], CRYPTO_3KTDEA_BLOCK_SIZE);
memset(IVBuf, 0x00, CRYPTO_CHALLENGE_RESPONSE_SIZE);
//memcpy(IVBuf, &encryptedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE - CRYPTO_3KTDEA_BLOCK_SIZE], CRYPTO_3KTDEA_BLOCK_SIZE);
CryptoData_t desCryptoData = { 0 };
desCryptoData.keySize = 3 * 8;
desCryptoData.keyData = keyData;
Expand All @@ -171,7 +189,7 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
}
RotateArrayRight(plainTextRndB, rotatedRndB, CRYPTO_CHALLENGE_RESPONSE_SIZE);
//memset(IVBuf, 0x00, CRYPTO_CHALLENGE_RESPONSE_SIZE);
//memcpy(IVBuf, &encryptedRndB[CRYPTO_3KTDEA_BLOCK_SIZE], CRYPTO_3KTDEA_BLOCK_SIZE);
memcpy(IVBuf, &encryptedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE - CRYPTO_3KTDEA_BLOCK_SIZE], CRYPTO_3KTDEA_BLOCK_SIZE);
desCryptoData.ivData = IVBuf;
GenerateRandomBytes(rndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
ConcatByteArrays(rndA, CRYPTO_CHALLENGE_RESPONSE_SIZE, rotatedRndB, CRYPTO_CHALLENGE_RESPONSE_SIZE, challengeResponse);
Expand Down Expand Up @@ -208,6 +226,7 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -222,7 +241,7 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
fprintf(stdout, " -- IV = ");
print_hex(IVBuf, CRYPTO_3KTDEA_BLOCK_SIZE);
}
//RotateArrayLeft(decryptedRndAFromPICCRotated, decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
RotateArrayLeft(decryptedRndAFromPICCRotated, decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
memcpy(decryptedRndA, decryptedRndAFromPICCRotated, CRYPTO_CHALLENGE_RESPONSE_SIZE);
if (!memcmp(rndA, decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE)) {
if (PRINT_STATUS_EXCHANGE_MESSAGES) {
Expand All @@ -240,14 +259,18 @@ static inline int AuthenticateISO(nfc_device *nfcConnDev, uint8_t keyIndex, cons
print_hex(decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}
}

static inline int AuthenticateLegacy(nfc_device *nfcConnDev, uint8_t keyIndex, const uint8_t *keyData) {

if (nfcConnDev == NULL || keyData == NULL) {
InvalidateAuthenticationStatus();
return INVALID_PARAMS_ERROR;
} else if (!AUTHENTICATED) {
InvalidateAuthenticationStatus();
}

// Start 3K3DES authentication (default key, blank setting of all zeros):
Expand All @@ -271,6 +294,7 @@ static inline int AuthenticateLegacy(nfc_device *nfcConnDev, uint8_t keyIndex, c
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -279,7 +303,7 @@ static inline int AuthenticateLegacy(nfc_device *nfcConnDev, uint8_t keyIndex, c
// encrypt this result, and send it forth to the PICC:
uint8_t encryptedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], plainTextRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE], rotatedRndB[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t rndA[CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponse[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE], challengeResponseCipherText[2 * CRYPTO_CHALLENGE_RESPONSE_SIZE];
int8_t IVBuf[CRYPTO_CHALLENGE_RESPONSE_SIZE];
uint8_t *IVBuf = ActiveCryptoIVBuffer;
memcpy(encryptedRndB, rxDataStorage->rxDataBuf, CRYPTO_CHALLENGE_RESPONSE_SIZE);
CryptoData_t desCryptoData = { 0 };
desCryptoData.keySize = 3 * 8;
Expand Down Expand Up @@ -319,6 +343,7 @@ static inline int AuthenticateLegacy(nfc_device *nfcConnDev, uint8_t keyIndex, c
fprintf(stdout, " -- !! Unable to transfer bytes !!\n");
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}

Expand All @@ -344,11 +369,11 @@ static inline int AuthenticateLegacy(nfc_device *nfcConnDev, uint8_t keyIndex, c
print_hex(decryptedRndA, CRYPTO_CHALLENGE_RESPONSE_SIZE);
}
FreeRxDataStruct(rxDataStorage, true);
InvalidateAuthenticationStatus();
return EXIT_FAILURE;
}
}
static inline int Authenticate(nfc_device *nfcConnDev, int authType, uint8_t keyIndex, const uint8_t *keyData) {
InvalidateAuthState();
if (nfcConnDev == NULL || keyData == NULL) {
return INVALID_PARAMS_ERROR;
}
Expand Down
6 changes: 0 additions & 6 deletions Software/DESFireLibNFCTesting/LocalInclude/GeneralUtils.h
Original file line number Diff line number Diff line change
Expand Up @@ -12,12 +12,6 @@
#define ASBITS(byteCount) ((byteCount) * BITS_PER_BYTE)
#define ASBYTES(bitCount) ((bitCount + BITS_PER_BYTE - 1) / BITS_PER_BYTE)

static inline void InvalidateAuthState(void) {
memset(CRYPTO_RNDB_STATE, 0x00, 8);
AUTHENTICATED = false;
AUTHENTICATED_PROTO = 0;
}

static inline void Int32ToByteBuffer(uint8_t *byteBuffer, int32_t int32Value) {
if (byteBuffer == NULL) {
return;
Expand Down

0 comments on commit e07823e

Please sign in to comment.