From 502ab9112a7624dbd7c1c90c2e12ed45512b8b3c Mon Sep 17 00:00:00 2001
From: mmauv <99472743+mmauv@users.noreply.github.com>
Date: Wed, 28 Jun 2023 22:51:43 +0200
Subject: Add EMV functionality (#1080)

* Add basic strcture needed for EMV implementation

* Add demo EMV functionality with C code pasted in a very dirty and unsafe way. NOT FINAL

* Refactor IccExtractor Structure

* Fix Makefile

* fix include file

* move global variables from h to c

* revert to memcpy

* fix icc data recovery functions

* Add EMV functionalities on windows

* Make EMVToken structures like SecurityToken

* Define constants instead of hard coded values

* Token structures created with inheritance

* refactor TokenKeyfile to use inherit. + polymor.

* add Token.h + Token.cpp in modules in VS2010

* Add a comment at each use of SecurityToken class or objects

* SecurityTokenKeyfilesDialog preparation

* Implemennt GetAvailableTokens in Token class on windows

* merge

* up (patching for Windows)

* foreach Token.cpp corrected

* Display EMV keyfiles on first window in graphic interface

* Add token to Windows UI

* EMVToken selection on OKButton on Linux

* Keyfile.cpp optimization

* Move getKeyfileData in the token class

* EMV::Token GetAvailableKeyfiles() base

* Move getKeyfileData in the token class on unix

* Remove test comments

* Warnings resolved

* RemoveeSecurityTokenLibraryNotInitialized exception if at least one emv token is detected

* Adding new files

* Remove old files and add the new version to the windows project

* Change make_shared to shared_ptr constructor

* IccExtractor integration working on linux

* Throwing card not EMV execption

* catch error when not EMV type in EMVToken::GetAvailableKeyfiles

* Change types to compile on windows

* list all keyfiles, security keyfiles and emv keyfiles in command line

* Change type to be coherent and remove old todo comments

* Remove todo comments

* Change indentation and resolve a bug from previous commit

* Use polymorphism for GetKeyfileData and add export option for EMVTokens on Linux

* Linux : Allow to export EMV Tokens in command lines, Windows : Disable the delete button when EMV Keyfiles are selected

* Remove SlotId from TokenInfo as it is already in Token

* Correct errors on Linux

* Disable delete option if one EMV Token is selected on Linux

* Fix bug enabling delete button if nothing is selected

* emv data used as reference then burnt

* use of normal files in linux corrected

* help updated

* help updated for export functionnality

* option EMV added to graphic interface but not yet working

* Bug fix : Allow to use multiple EMV on windows

* EMV Option added to UserPreferences

* EMV Option working for Linux

* EMV option added to Windows (not working yet)

* [NOT TESTED] EMV option for Windows

* Working EMV option on Windows

* EMV Option for data extraction working for volume creation

* EMV Option for data extraction working for Mount

* EMV Option for data extraction working for mounting favorites volumes

* EMV Option for extraction working for Changing volume password, Set Derivation Key Algorithm and Add or remove keyfile from volume

* Windows : re-checking EMV Option when getting data

* Removing error catches in the IccDataExtractor classe (It only throws error now). Changing GetPan signature to resemble the other functions signatures more

* Changing EMV errors

- Only throwing ICCExtractionException from outside of the ICC module.
- Catching all TLVExceptions and PCSCExceptions to throw the right ICCExtractionException

- Deleting APDU exceptions.

* First version of the documentation

* Adding function pointers for winscard library (but it crashes VeraCrypt)

* Debugging function pointers

* The import of the library on windows work as expected now

* Reverting EMVToken.cpp changes used to test to library import

* Searching for the System32 path instead of hard codding it

* Fixing the bug were VeraCrypt crashes if there is no readers when  "add Token files" is clicked

* Winscard library not initialized in object constructor anymore to delay it after EMVOption check

* Remove winscard lib from windows dependencies

* Properly displaying errors

* Adding a dot in Language.xml

* Catching TLVException

* Removing unused code

* Remove unusefull comments

* Trying to fix 0x1f error

* Update IccDataExtractor.cpp

* Delete History.xml

* Fix get data without get pan

* Cleanup code

* changes for linux compilation but linking not working

* error handling for linux

* erasing emv data

* Burn PAN

* Burn PAN from memory

* Uncomment selfcheck before merging master

* burn corrected

* EMV errors handling for Linux

* EMV working for Linux CLI

* Doc : Winscard Linux package and VeraCrypt versions

---------

Co-authored-by: doriandu45 <d45.poubelle@gmail.com>
Co-authored-by: red4game <redemgaiming@gmail.com>
Co-authored-by: Brice.Namy <brice.namy@insa-rennes.fr>
Co-authored-by: vocthor <pieceo108@gmail.com>
Co-authored-by: vocthor <67202139+vocthor@users.noreply.github.com>
Co-authored-by: Andrei COCAN <andrei.cocan@insa-rennes.fr>
Co-authored-by: AndreiCocan <95496161+AndreiCocan@users.noreply.github.com>
Co-authored-by: francoisLEROUX <francois3443@gmail.com>
---
 src/Volume/Keyfile.cpp | 84 ++++++++++++++++++++++++--------------------------
 1 file changed, 40 insertions(+), 44 deletions(-)

(limited to 'src/Volume/Keyfile.cpp')

diff --git a/src/Volume/Keyfile.cpp b/src/Volume/Keyfile.cpp
index d171458c..9527fd11 100644
--- a/src/Volume/Keyfile.cpp
+++ b/src/Volume/Keyfile.cpp
@@ -12,13 +12,13 @@
 
 #include "Platform/Serializer.h"
 #include "Common/SecurityToken.h"
+#include "Common/EMVToken.h"
 #include "Crc32.h"
 #include "Keyfile.h"
 #include "VolumeException.h"
-
 namespace VeraCrypt
 {
-	void Keyfile::Apply (const BufferPtr &pool) const
+	void Keyfile::Apply (const BufferPtr &pool, bool EMVOption) const
 	{
 		if (Path.IsDirectory())
 			throw ParameterIncorrect (SRC_POS);
@@ -32,61 +32,57 @@ namespace VeraCrypt
 
 		SecureBuffer keyfileBuf (File::GetOptimalReadSize());
 
-		if (SecurityToken::IsKeyfilePathValid (Path))
-		{
-			// Apply keyfile generated by a security token
-			vector <byte> keyfileData;
-			SecurityToken::GetKeyfileData (SecurityTokenKeyfile (wstring (Path)), keyfileData);
+        std::wcout << wstring (Path) << std::endl;
+        if (Token::IsKeyfilePathValid (Path, EMVOption)) {
+            // Apply keyfile generated by a security token
+            vector <byte> keyfileData;
+            Token::getTokenKeyfile(wstring(Path))->GetKeyfileData(keyfileData);
 
-			if (keyfileData.size() < MinProcessedLength)
-				throw InsufficientData (SRC_POS, Path);
+            if (keyfileData.size() < MinProcessedLength)
+                throw InsufficientData(SRC_POS, Path);
 
-			for (size_t i = 0; i < keyfileData.size(); i++)
-			{
-				uint32 crc = crc32.Process (keyfileData[i]);
+            for (size_t i = 0; i < keyfileData.size(); i++) {
+                uint32 crc = crc32.Process(keyfileData[i]);
 
-				pool[poolPos++] += (byte) (crc >> 24);
-				pool[poolPos++] += (byte) (crc >> 16);
-				pool[poolPos++] += (byte) (crc >> 8);
-				pool[poolPos++] += (byte) crc;
+                pool[poolPos++] += (byte)(crc >> 24);
+                pool[poolPos++] += (byte)(crc >> 16);
+                pool[poolPos++] += (byte)(crc >> 8);
+                pool[poolPos++] += (byte) crc;
 
-				if (poolPos >= pool.Size())
-					poolPos = 0;
-
-				if (++totalLength >= MaxProcessedLength)
-					break;
-			}
+                if (poolPos >= pool.Size())
+                    poolPos = 0;
 
-			burn (&keyfileData.front(), keyfileData.size());
-			goto done;
-		}
+                if (++totalLength >= MaxProcessedLength)
+                    break;
+            }
 
-		file.Open (Path, File::OpenRead, File::ShareRead);
 
-		while ((readLength = file.Read (keyfileBuf)) > 0)
-		{
-			for (size_t i = 0; i < readLength; i++)
-			{
-				uint32 crc = crc32.Process (keyfileBuf[i]);
+            burn(&keyfileData.front(), keyfileData.size());
+            goto  done;
+        }
 
-				pool[poolPos++] += (byte) (crc >> 24);
-				pool[poolPos++] += (byte) (crc >> 16);
-				pool[poolPos++] += (byte) (crc >> 8);
-				pool[poolPos++] += (byte) crc;
+        file.Open (Path, File::OpenRead, File::ShareRead);
 
-				if (poolPos >= pool.Size())
-					poolPos = 0;
+        while ((readLength = file.Read (keyfileBuf)) > 0) {
+            for (size_t i = 0; i < readLength; i++) {
+                uint32 crc = crc32.Process(keyfileBuf[i]);
+                pool[poolPos++] += (byte)(crc >> 24);
+                pool[poolPos++] += (byte)(crc >> 16);
+                pool[poolPos++] += (byte)(crc >> 8);
+                pool[poolPos++] += (byte) crc;
+                if (poolPos >= pool.Size())
+                    poolPos = 0;
+                if (++totalLength >= MaxProcessedLength)
+                    goto done;
+            }
+        }
+        done:
 
-				if (++totalLength >= MaxProcessedLength)
-					goto done;
-			}
-		}
-done:
 		if (totalLength < MinProcessedLength)
 			throw InsufficientData (SRC_POS, Path);
 	}
 
-	shared_ptr <VolumePassword> Keyfile::ApplyListToPassword (shared_ptr <KeyfileList> keyfiles, shared_ptr <VolumePassword> password)
+	shared_ptr <VolumePassword> Keyfile::ApplyListToPassword (shared_ptr <KeyfileList> keyfiles, shared_ptr <VolumePassword> password, bool EMVOption)
 	{
 		if (!password)
 			password.reset (new VolumePassword);
@@ -143,7 +139,7 @@ done:
 			// Apply all keyfiles
 			foreach_ref (const Keyfile &k, keyfilesExp)
 			{
-				k.Apply (keyfilePool);
+				k.Apply (keyfilePool, EMVOption);
 			}
 
 			newPassword->Set (keyfilePool);
-- 
cgit v1.2.3