public CAPublicKeyCertificate(RIDEnum RID, byte Index, byte HashAlgorithmIndicator, byte PublicKeyAlgorithmIndicator, byte[] Modulus, byte[] Exponent, byte[] ActivationDate, byte[] ExpiryDate, byte[] Checksum)
{
this.RID = RID;
this.Index = Index;
this.HashAlgorithmIndicator = HashAlgorithmIndicator;
this.PublicKeyAlgorithmIndicator = PublicKeyAlgorithmIndicator;
this.Modulus = Modulus;
this.Exponent = Exponent;
this.ActivationDate = ActivationDate;
this.ExpiryDate = ExpiryDate;
this.Checksum = Checksum;
}
private static SignalsEnum EntryPointRA(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, PublicKeyCertificateManager pkcm, EMVSelectApplicationResponse emvSelectApplicationResponse, Stopwatch sw)
{
CARDHOLDER_VERIFICATION_METHOD_CVM_RESULTS_9F34_KRN cvr = new CARDHOLDER_VERIFICATION_METHOD_CVM_RESULTS_9F34_KRN(database);
EMVGetChallengeResponse response = (EMVGetChallengeResponse)cardResponse.ApduResponse;
if (!response.Succeeded)
{
cvr.Value.CVMResult = 0x01;//failed
cvr.UpdateDB();
return(SignalsEnum.WAITING_FOR_CVM_PROCESSING);
}
//store the challenge
byte[] pinChallenge = response.ResponseData;
if (cvr.Value.GetCVMPerformed() == CVMCode.EncipheredPINVerificationPerformedByICC ||
cvr.Value.GetCVMPerformed() == CVMCode.EncipheredPINVerificationPerformedByICCAndSignature_Paper)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = pkcm.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
if (capk == null)
{
cvr.Value.CVMResult = 0x01;//failed
cvr.UpdateDB();
return(SignalsEnum.WAITING_FOR_CVM_PROCESSING);
}
string pin = Formatting.ByteArrayToASCIIString(database.Get(EMVTagsEnum.TRANSACTION_PERSONAL_IDENTIFICATION_NUMBER_PIN_DATA_99_KRN.Tag).Value);
byte[] pinBlock = PinProcessing.BuildPlainTextPinBlock(pin);
//encrypt the pin
byte[] encipheredPin = PinProcessing.BuildPinVerifyData(database, capk, pinBlock, pinChallenge);
if (encipheredPin == null)
{
cvr.Value.CVMResult = 0x01;//failed
cvr.UpdateDB();
return(SignalsEnum.WAITING_FOR_CVM_PROCESSING);
}
//fire off verify for enciphered pin
EMVVerifyRequest request = new EMVVerifyRequest(VerifyCommandDataQualifier.Enciphered_PIN, encipheredPin);
cardQManager.EnqueueToInput(new CardRequest(request, CardinterfaceServiceRequestEnum.ADPU));
}
//verify message for plain text pin fired in waiting for pin response
return(SignalsEnum.WAITING_FOR_VERIFY);
}
private static SignalsEnum EntryPointRA(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
if (!cardResponse.ApduResponse.Succeeded)
{
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.N_A,
KernelStatusEnum.N_A,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
cardResponse.ApduResponse.SW12,
L2Enum.STATUS_BYTES,
L3Enum.NOT_SET));
}
EMVInternalAuthenticateResponse response = cardResponse.ApduResponse as EMVInternalAuthenticateResponse;
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
#region 3.8.1.1
bool ddaPassed = DoDDA(database, qManager, capk, response.GetTLVSignedApplicationData());
#endregion
if (!ddaPassed)
{
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
tvr.Value.DDAFailed = true;
tvr.UpdateDB();
}
TLV cdol1 = database.Get(EMVTagsEnum.CARD_RISK_MANAGEMENT_DATA_OBJECT_LIST_1_CDOL1_8C_KRN);
CommonRoutines.PackRelatedDataTag(database, EMVTagsEnum.CDOL1_RELATED_DATA_DF8107_KRN2, cdol1);
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcpST = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
rcpST.Value.ACTypeEnum = database.ACType.Value.DSACTypeEnum;
rcpST.Value.CDASignatureRequested = false;
rcpST.UpdateDB();
EMVGenerateACRequest request = new EMVGenerateACRequest(database.Get(EMVTagsEnum.CDOL1_RELATED_DATA_DF8107_KRN2), null, rcpST);
cardQManager.EnqueueToInput(new CardRequest(request, CardinterfaceServiceRequestEnum.ADPU));
return(SignalsEnum.WAITING_FOR_GEN_AC_1);
}
internal CAPublicKeyCertificate GetCAPK(RIDEnum ridEnum, byte authIndex)
{
CAPublicKeyCertificate capk = CAPublicKeyCertificates.Find(x => x.Index == authIndex && x.RID == ridEnum);
if (capk != null)
{
if (CheckIfCertInCertRevocationList(capk))
{
return(null);
}
Logger.Log("Certificate found for index: " + Formatting.ByteArrayToHexString(new byte[] { authIndex }));
}
else
{
Logger.Log("Certificate not found for index: " + Formatting.ByteArrayToHexString(new byte[] { authIndex }));
}
return(capk);
}
private static SignalsEnum ProcessGenACCommand(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
//remove values stored during 1st gen ac
database.RemoveFromList(database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag));
//will only exist if CDA was perfomred after 1st gen ac
database.RemoveFromList(database.Get(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag));
bool parsingResult = false;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
{
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x80)
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
byte[] responseBuffer = new byte[cardResponse.ApduResponse.ResponseData.Length - 2];
Array.Copy(cardResponse.ApduResponse.ResponseData, 2, responseBuffer, 0, responseBuffer.Length);
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, new byte[] { responseBuffer[0] }));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, new byte[] { responseBuffer[1], responseBuffer[2] }));
byte[] ac = new byte[8];
Array.Copy(responseBuffer, 3, ac, 0, 8);
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, ac));
if (responseBuffer.Length > 11)
{
byte[] iad = new byte[responseBuffer.Length - 11];
Array.Copy(responseBuffer, 11, iad, 0, iad.Length);
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, iad));
}
parsingResult = true;
}
}
}
if (!parsingResult)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.PARSING_ERROR, L3Enum.NOT_SET));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
APPLICATION_INTERCHANGE_PROFILE_82_KRN aip = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcp = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
if (!
(((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 && rcp.Value.ACTypeEnum == ACTypeEnum.TC) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x80 && (rcp.Value.ACTypeEnum == ACTypeEnum.TC || rcp.Value.ACTypeEnum == ACTypeEnum.ARQC)) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00))
)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
if (aip.Value.CDASupported && tc.Value.CDACapable)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
if (capk == null)
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
if (database.IsNotEmpty(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag))
{
State_7_10_CommonProcessing.DoCDA(database, qManager, capk, cardQManager, cardResponse, emvSelectApplicationResponse, false);
}
else
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
}
return(State_7_10_CommonProcessing.EndOnTCorAAC(database, qManager, cardQManager));
}
public RevokedCAPublicKeyCertificate(RIDEnum RID, byte Index, byte[] ExpiryDate)
{
this.Index = Index;
this.ExpiryDate = ExpiryDate;
this.RID = RID;
}
private static SignalsEnum EntryPointRA(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
if (!cardResponse.ApduResponse.Succeeded)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.STATUS_BYTES, L3Enum.NOT_SET));
}
bool parsingResult = false;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
{
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x80)
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
byte[] responseBuffer = new byte[cardResponse.ApduResponse.ResponseData.Length - 2];
Array.Copy(cardResponse.ApduResponse.ResponseData, 2, responseBuffer, 0, responseBuffer.Length);
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, new byte[] { responseBuffer[0] }));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, new byte[] { responseBuffer[1], responseBuffer[2] }));
byte[] ac = new byte[8];
Array.Copy(responseBuffer, 3, ac, 0, 8);
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, ac));
if (responseBuffer.Length > 11)
{
byte[] iad = new byte[responseBuffer.Length - 11];
Array.Copy(responseBuffer, 11, iad, 0, iad.Length);
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, iad));
}
parsingResult = true;
}
}
}
if (!parsingResult)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.PARSING_ERROR, L3Enum.NOT_SET));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcp = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
if (!
(((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 && rcp.Value.ACTypeEnum == ACTypeEnum.TC) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x80 && (rcp.Value.ACTypeEnum == ACTypeEnum.TC || rcp.Value.ACTypeEnum == ACTypeEnum.ARQC)) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00))
)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
APPLICATION_INTERCHANGE_PROFILE_82_KRN aip = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
if (aip.Value.CDASupported && tc.Value.CDACapable)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
if (capk == null)
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
if (database.IsNotEmpty(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag))
{
State_7_10_CommonProcessing.DoCDA(database, qManager, capk, cardQManager, cardResponse, emvSelectApplicationResponse, true);
}
else
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
}
else
{
if (aip.Value.DDAsupported && tc.Value.DDACapable)
{
//oda was done already in waiting for internal authenticate
}
else
{
if (aip.Value.SDASupported && tc.Value.SDACapable)
{
//sda was done already in card action analysis
}
}
}
//check for offline approved or declined, if so end transaction
if ((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 ||
(database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00)
{
return(State_7_10_CommonProcessing.EndOnTCorAAC(database, qManager, cardQManager));
}
else
{
CommonRoutines.CreateEMVDataRecord(database);
CommonRoutines.CreateEMVDiscretionaryData(database);
qManager.EnqueueToOutput(new KernelOnlineResponse(database.Get(EMVTagsEnum.DATA_RECORD_FF8105_KRN2), database.Get(EMVTagsEnum.DISCRETIONARY_DATA_FF8106_KRN2)));
return(SignalsEnum.WAITING_FOR_ONLINE_RESPONSE);
}
}
public static SignalsEnum DoCommonProcessing(string source, KernelDatabase database, KernelQ qManager, CardQ cardQManager, Stopwatch sw, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
if (database.NextCommandEnum == NextCommandEnum.READ_RECORD)
{
DoDEKIfNeeded(database, qManager);
return(SignalsEnum.WAITING_FOR_EMV_READ_RECORD_RESPONSE);
}
DoDEKIfNeeded(database, qManager);
if (database.IsEmpty(EMVTagsEnum.AMOUNT_AUTHORISED_NUMERIC_9F02_KRN.Tag))
{
CommonRoutines.CreateEMVDiscretionaryData(database);
return(CommonRoutines.PostOutcomeWithError(database, qManager, Kernel2OutcomeStatusEnum.END_APPLICATION, Kernel2StartEnum.N_A, L1Enum.NOT_SET, L2Enum.NOT_SET, L3Enum.AMOUNT_NOT_PRESENT));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_EXPIRATION_DATE_5F24_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.APPLICATION_PRIMARY_ACCOUNT_NUMBER_PAN_5A_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CARD_RISK_MANAGEMENT_DATA_OBJECT_LIST_1_CDOL1_8C_KRN.Tag)))
{
CommonRoutines.CreateEMVDiscretionaryData(database);
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
KernelStatusEnum.NOT_READY,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.N_A,
L1Enum.NOT_SET,
null,
L2Enum.CARD_DATA_MISSING,
L3Enum.NOT_SET));
}
#region Book 3 Section 10.3
APPLICATION_INTERCHANGE_PROFILE_82_KRN aipCheck = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
if ((aipCheck.Value.CDASupported && tc.Value.CDACapable) ||
aipCheck.Value.DDAsupported && tc.Value.DDACapable ||
aipCheck.Value.SDASupported && tc.Value.SDACapable)
{
if (aipCheck.Value.CDASupported && tc.Value.CDACapable)
{
//some checking in preperation for ODA is done here, ODA is done after 1st gen ac
if (!(
database.IsNotEmpty(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_PUBLIC_KEY_CERTIFICATE_90_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_PUBLIC_KEY_EXPONENT_9F32_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.INTEGRATED_CIRCUIT_CARD_ICC_PUBLIC_KEY_CERTIFICATE_9F46_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.INTEGRATED_CIRCUIT_CARD_ICC_PUBLIC_KEY_EXPONENT_9F47_KRN.Tag) //&&
//database.IsNotEmpty(EMVTagsEnum.STATIC_DATA_AUTHENTICATION_TAG_LIST_9F4A_KRN.Tag)
))
{
tvr.Value.ICCDataMissing = true;
tvr.Value.CDAFailed = true;
}
}
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
if (database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]) == null)
{
if (aipCheck.Value.CDASupported && tc.Value.CDACapable)
{
tvr.Value.CDAFailed = true;
}
if (aipCheck.Value.DDAsupported && tc.Value.DDACapable)
{
tvr.Value.DDAFailed = true;
}
if (aipCheck.Value.SDASupported && tc.Value.SDACapable)
{
tvr.Value.SDAFailed = true;
}
}
//bool aipFound = false;
//TLV aip = null;
//if (database.IsNotEmpty(EMVTagsEnum.STATIC_DATA_AUTHENTICATION_TAG_LIST_9F4A_KRN.Tag))
//{
// TLV sdal = database.Get(EMVTagsEnum.STATIC_DATA_AUTHENTICATION_TAG_LIST_9F4A_KRN);
// TLVList list = TLV.DeserializeChildrenWithNoLV(sdal.Value, 0);
// //if (list.Count == 1)
// //{
// aip = list.Get(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag);
// if (aip != null)
// {
// aipFound = true;
// }
// //}
//}
//else
//{
// if (database.IsNotEmpty(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag))
// {
// aip = database.Get(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag);
// aipFound = true;
// }
//}
//if (database.IsNotEmpty(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag))
//{
// aip = database.Get(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag);
// aipFound = true;
//}
TLV aip = database.Get(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN);
if (database.IsEmpty(EMVTagsEnum.APPLICATION_INTERCHANGE_PROFILE_82_KRN.Tag))
{
CommonRoutines.CreateEMVDiscretionaryData(database);
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
KernelStatusEnum.NOT_READY,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
null,
L2Enum.CARD_DATA_ERROR,
L3Enum.NOT_SET));
}
int length = database.StaticDataToBeAuthenticated.Serialize().Length;
if (2048 - length >= aip.Value.Length)
{
//will be removed later when the SDA is done
database.StaticDataToBeAuthenticated.AddToList(aip);
}
//else
//{
// if (aipCheck.Value.CDASupported && tc.Value.CDACapable)
// {
// tvr.Value.CDAFailed = true;
// }
// if (aipCheck.Value.DDAsupported && tc.Value.DDACapable)
// {
// tvr.Value.DDAFailed = true;
// }
// if (aipCheck.Value.SDASupported && tc.Value.SDACapable)
// {
// tvr.Value.SDAFailed = true;
// }
//}
tvr.UpdateDB();
}
#endregion
#region Book 3 Section 10.4
//using kernel 2 processing restrictions
ProcessingRestrictions_7_7.ProcessingRestrictions(database);
#endregion
return(SignalsEnum.WAITING_FOR_CVM_PROCESSING);
}
public static SignalsEnum InitiateCardActionAnalysis(KernelDatabaseBase database, KernelQ qManager, CardQ cardQManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
APPLICATION_INTERCHANGE_PROFILE_82_KRN aip = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
//time to get signature data for dda cards, in order to do oda after 1st gen ac
EMVGenerateACRequest request = null;
if (aip.Value.CDASupported && tc.Value.CDACapable)
{
//cda done after gen ac 1, call gen ac1 now with signature requested
request = CreateGenAC(database, true);
cardQManager.EnqueueToInput(new CardRequest(request, CardinterfaceServiceRequestEnum.ADPU));
return(SignalsEnum.WAITING_FOR_GEN_AC_1);
}
if (aip.Value.DDAsupported && tc.Value.DDACapable)
{
#region Book 3 Section 10.3
//do dda signature request, internal authenticate will do oda once it has the signature
TLV ddol = database.Get(EMVTagsEnum.DYNAMIC_DATA_AUTHENTICATION_DATA_OBJECT_LIST_DDOL_9F49_KRN);
byte[] ddolRelatedData;
if (ddol == null)
{
TLV unpred = database.Get(EMVTagsEnum.UNPREDICTABLE_NUMBER_9F37_KRN);
unpred.Val.PackValue(unpred.Val.GetLength());
ddolRelatedData = unpred.Value;
}
else
{
ddolRelatedData = CommonRoutines.PackRelatedDataTag(database, ddol);
}
EMVInternalAuthenticateRequest requestDDA = new EMVInternalAuthenticateRequest(ddolRelatedData);
cardQManager.EnqueueToInput(new CardRequest(requestDDA, CardinterfaceServiceRequestEnum.ADPU));
return(SignalsEnum.WAITING_FOR_INTERNAL_AUTHENTICATE);
#endregion
}
if (aip.Value.SDASupported && tc.Value.SDACapable)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
TLV ssadTLV = database.Get(EMVTagsEnum.SIGNED_STATIC_APPLICATION_DATA_93_KRN);
if (capk == null || ssadTLV == null)
{
tvr.Value.SDAFailed = true;
tvr.UpdateDB();
}
else
{
TRANSACTION_STATUS_INFORMATION_9B_KRN tsi = new TRANSACTION_STATUS_INFORMATION_9B_KRN(database);
tsi.Value.OfflineDataAuthenticationWasPerformed = true;
tsi.UpdateDB();
byte[] sdadRaw = database.Get(EMVTagsEnum.SIGNED_STATIC_APPLICATION_DATA_93_KRN).Value;
byte[] authCode = VerifySAD.VerifySSAD(ICCDynamicDataType.DYNAMIC_NUMBER_ONLY, database, capk, sdadRaw);
if (authCode == null)
{
tvr.Value.SDAFailed = true;
tvr.UpdateDB();
}
else
{
TLV dataAuthenticationCode = database.Get(EMVTagsEnum.DATA_AUTHENTICATION_CODE_9F45_KRN);
if (dataAuthenticationCode == null)
{
dataAuthenticationCode = TLV.Create(EMVTagsEnum.DATA_AUTHENTICATION_CODE_9F45_KRN.Tag, authCode);
}
else
{
dataAuthenticationCode.Value = authCode;
}
}
}
//sda done after gen ac 1, call gen ac 1 now with no signature requested
request = CreateGenAC(database, false);
cardQManager.EnqueueToInput(new CardRequest(request, CardinterfaceServiceRequestEnum.ADPU));
return(SignalsEnum.WAITING_FOR_GEN_AC_1);
}
tvr.Value.OfflineDataAuthenticationWasNotPerformed = true;
tvr.UpdateDB();
//to do: ceck this, is this correct for a card where no oda is supported
request = CreateGenAC(database, false);
cardQManager.EnqueueToInput(new CardRequest(request, CardinterfaceServiceRequestEnum.ADPU));
return(SignalsEnum.WAITING_FOR_GEN_AC_1);
}
