public static ICCDynamicData VerifySDAD(ICCDynamicDataType iccDDType, bool isFirstGenAC, KernelDatabaseBase database, StaticDataToBeAuthenticatedList staticDataToBeAuthenticated, CAPublicKeyCertificate caPublicKey, CardResponse genACCardResponse)
{
EMVGenerateACResponse genAcResponse = (genACCardResponse.ApduResponse as EMVGenerateACResponse);
//section 6.6.2 of EMV book 2 - CDA
//1.If the Signed Dynamic Application Data has a length different from the
//length of the ICC Public Key Modulus, CDA has failed
byte[] sdadRaw = genAcResponse.SignedDynamicApplicationData.Value;
IssuerPublicKeyCertificate ipk = IssuerPublicKeyCertificate.BuildAndValidatePublicKey(database, caPublicKey.Modulus, caPublicKey.Exponent);
if (ipk == null)
{
return(null);
}
IccPublicKeyCertificate iccpk = IccPublicKeyCertificate.BuildAndValidatePublicKey(database, staticDataToBeAuthenticated, ipk.Modulus, ipk.Exponent);
if (iccpk == null)
{
return(null);
}
if (sdadRaw.Length != iccpk.Modulus.Length)
{
return(null);
}
//2.To obtain the recovered data specified in Table 22, apply the recovery
//function as specified in Annex A2.1 on the Signed Dynamic Application
//Data using the ICC Public Key in conjunction with the corresponding
//algorithm.If the Recovered Data Trailer is not equal to 'BC', CDA has
//failed
byte[] decrypted = PublicKeyCertificate.DecryptRSA(sdadRaw, iccpk.Modulus, iccpk.Exponent);
SDAD sdad = new SDAD(decrypted);
//3.Check the Recovered Data Header. If it is not '6A', CDA has failed.
if (sdad.DataHeader != 0x6A)
{
return(null);
}
//4.Check the Signed Data Format. If it is not '05', CDA has failed.
if (sdad.SignedDataFormat != 0x05)
{
return(null);
}
//5. Retrieve from the ICC Dynamic Data the data specified in Table 19
ICCDynamicData iccDD = new ICCDynamicData(database, sdad.ICCDynamicData, iccDDType);
//6.Check that the Cryptogram Information Data retrieved from the ICC
//Dynamic Data is equal to the Cryptogram Information Data obtained from
//the response to the GENERATE AC command. If this is not the case, CDA
//has failed.
if (genAcResponse.CryptogramInformationData.Value[0] != iccDD.CryptogramInformationData)
{
return(null);
}
//7.Concatenate from left to right the second to the sixth data elements in
//Table 22(that is, Signed Data Format through Pad Pattern), followed by
//the Unpredictable Number.
byte[] unpredicatbleNumber = database.Get(EMVTagsEnum.UNPREDICTABLE_NUMBER_9F37_KRN).Value;
byte[] dataForHash = sdad.Concat(unpredicatbleNumber);
//8.Apply the indicated hash algorithm (derived from the Hash Algorithm
//Indicator) to the result of the concatenation of the previous step to
//produce the hash result.
byte[] hash = SHA1.Create().ComputeHash(dataForHash);
//9.Compare the calculated hash result from the previous step with the
//recovered Hash Result.If they are not the same, CDA has failed.
if (Formatting.ByteArrayToHexString(sdad.HashResult) != Formatting.ByteArrayToHexString(hash))
{
return(null);
}
//10. Concatenate from left to right the values of the following data elements:
List <byte[]> result = new List <byte[]>();
if (isFirstGenAC)
{
//-The values of the data elements specified by, and in the order they
//appear in the PDOL, and sent by the terminal in the GET
//PROCESSING OPTIONS command.
result.Add(database.Get(EMVTagsEnum.PDOL_RELATED_DATA_DF8111_KRN2).Value);
//-The values of the data elements specified by, and in the order they
//appear in the CDOL1, and sent by the terminal in the first
//GENERATE AC command.
result.Add(database.Get(EMVTagsEnum.CDOL1_RELATED_DATA_DF8107_KRN2).Value);
//-The tags, lengths, and values of the data elements returned by the ICC
//in the response to the GENERATE AC command in the order they are
//returned, with the exception of the Signed Dynamic Application Data.
foreach (TLV tlv in genAcResponse.GetResponseTags())
{
if (tlv.Tag.TagLable != EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag)
{
result.Add(tlv.Serialize());
}
}
}
else
{
//-The values of the data elements specified by, and in the order they
//appear in the PDOL, and sent by the terminal in the GET
//PROCESSING OPTIONS command.
result.Add(database.Get(EMVTagsEnum.PDOL_RELATED_DATA_DF8111_KRN2).Value);
//-The values of the data elements specified by, and in the order they
//appear in the CDOL1, and sent by the terminal in the first
//GENERATE AC command.
result.Add(database.Get(EMVTagsEnum.CDOL1_RELATED_DATA_DF8107_KRN2).Value);
//-The values of the data elements specified by, and in the order they
//appear in the CDOL2, and sent by the terminal in the second
//GENERATE AC command.
TLV cdol2 = database.Get(EMVTagsEnum.CARD_RISK_MANAGEMENT_DATA_OBJECT_LIST_2_CDOL2_8D_KRN);
if (cdol2 != null)
{
result.Add(CommonRoutines.PackRelatedDataTag(database, cdol2));
}
//-The tags, lengths, and values of the data elements returned by the ICC
//in the response to the GENERATE AC command in the order they are
//returned, with the exception of the Signed Dynamic Application Data.
foreach (TLV tlv in genAcResponse.GetResponseTags())
{
if (tlv.Tag.TagLable != EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag)
{
result.Add(tlv.Serialize());
}
}
}
byte[] transactionHashData = result.SelectMany(a => a).ToArray();
//11.Apply the indicated hash algorithm (derived from the Hash Algorithm
//Indicator) to the result of the concatenation of the previous step to
//produce the Transaction Data Hash Code.
byte[] transactionHash = SHA1.Create().ComputeHash(transactionHashData);
//12.Compare the calculated Transaction Data Hash Code from the previous
//step with the Transaction Data Hash Code retrieved from the ICC
//Dynamic Data in Step 5.If they are not the same, CDA has failed.
if (Formatting.ByteArrayToHexString(iccDD.TransactionDataHashCode) != Formatting.ByteArrayToHexString(transactionHash))
{
return(null);
}
return(iccDD);
}
private static SignalsEnum ProcessGenACCommand(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
//remove values stored during 1st gen ac
database.RemoveFromList(database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag));
database.RemoveFromList(database.Get(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag));
//will only exist if CDA was perfomred after 1st gen ac
database.RemoveFromList(database.Get(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag));
bool parsingResult = false;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
{
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x80)
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
byte[] responseBuffer = new byte[cardResponse.ApduResponse.ResponseData.Length - 2];
Array.Copy(cardResponse.ApduResponse.ResponseData, 2, responseBuffer, 0, responseBuffer.Length);
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, new byte[] { responseBuffer[0] }));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, new byte[] { responseBuffer[1], responseBuffer[2] }));
byte[] ac = new byte[8];
Array.Copy(responseBuffer, 3, ac, 0, 8);
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, ac));
if (responseBuffer.Length > 11)
{
byte[] iad = new byte[responseBuffer.Length - 11];
Array.Copy(responseBuffer, 11, iad, 0, iad.Length);
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, iad));
}
parsingResult = true;
}
}
}
if (!parsingResult)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.PARSING_ERROR, L3Enum.NOT_SET));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
APPLICATION_INTERCHANGE_PROFILE_82_KRN aip = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcp = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
if (!
(((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 && rcp.Value.ACTypeEnum == ACTypeEnum.TC) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x80 && (rcp.Value.ACTypeEnum == ACTypeEnum.TC || rcp.Value.ACTypeEnum == ACTypeEnum.ARQC)) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00))
)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
if (aip.Value.CDASupported && tc.Value.CDACapable)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
if (capk == null)
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
if (database.IsNotEmpty(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag))
{
State_7_10_CommonProcessing.DoCDA(database, qManager, capk, cardQManager, cardResponse, emvSelectApplicationResponse, false);
}
else
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
}
return(State_7_10_CommonProcessing.EndOnTCorAAC(database, qManager, cardQManager));
}
/*
* S9.2
*/
private static SignalsEnum EntryPointRA(Kernel2Database database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, TornTransactionLogManager tornTransactionLogManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager)
{
if (!cardResponse.ApduResponse.Succeeded)
{
#region 9.17
return(State_9_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.STATUS_BYTES, L3Enum.NOT_SET));
#endregion
}
#region 9.18
bool parsingResult = false;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
#endregion
{
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x80)
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
byte[] responseBuffer = new byte[cardResponse.ApduResponse.ResponseData.Length - 2];
Array.Copy(cardResponse.ApduResponse.ResponseData, 2, responseBuffer, 0, responseBuffer.Length);
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, new byte[] { responseBuffer[0] }));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, new byte[] { responseBuffer[1], responseBuffer[2] }));
byte[] ac = new byte[8];
Array.Copy(responseBuffer, 3, ac, 0, 8);
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, ac));
if (responseBuffer.Length > 11)
{
byte[] iad = new byte[responseBuffer.Length - 11];
Array.Copy(responseBuffer, 11, iad, 0, iad.Length);
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, iad));
}
parsingResult = true;
}
}
}
#region 9.20
if (!parsingResult)
#endregion
{
return(State_9_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.PARSING_ERROR, L3Enum.NOT_SET));
}
#region 9.21
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
#endregion
{
#region 9.22
return(State_9_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
#endregion
}
#region 9.23
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcp = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
if (
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 && rcp.Value.ACTypeEnum == ACTypeEnum.TC) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x80 && (rcp.Value.ACTypeEnum == ACTypeEnum.TC || rcp.Value.ACTypeEnum == ACTypeEnum.ARQC)) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00)
)
#endregion
{
#region 9.25
SignalsEnum result = PostGenACBalanceReading_7_3.PostGenACBalanceReading(database, qManager, cardQManager);
if (result != SignalsEnum.NONE)
{
return(result);
}
#endregion
#region 9.26
if (!database.IsNotEmptyList(EMVTagsEnum.TAGS_TO_WRITE_AFTER_GEN_AC_FF8103_KRN2.Tag))
#endregion
{
#region 9.27
CommonRoutines.PostUIOnly(database, qManager, KernelMessageidentifierEnum.CLEAR_DISPLAY, KernelStatusEnum.CARD_READ_SUCCESSFULLY, true);
#endregion
}
#region 9.28
if (database.IsNotEmpty(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag))
#endregion
{
return(State_9_10_CommonProcessing.DoCDA9_10_1(database, qManager, publicKeyCertificateManager, cardQManager, cardResponse));
}
else
{
return(State_9_10_CommonProcessing.DoNOCDA9_10_30(database, qManager, publicKeyCertificateManager, cardQManager, cardResponse));
}
}
else
{
#region 9.24
return(State_9_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
#endregion
}
}
private static SignalsEnum EntryPointRA(KernelDatabase database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager, EMVSelectApplicationResponse emvSelectApplicationResponse)
{
if (!cardResponse.ApduResponse.Succeeded)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.STATUS_BYTES, L3Enum.NOT_SET));
}
bool parsingResult = false;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
{
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x80)
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
byte[] responseBuffer = new byte[cardResponse.ApduResponse.ResponseData.Length - 2];
Array.Copy(cardResponse.ApduResponse.ResponseData, 2, responseBuffer, 0, responseBuffer.Length);
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, new byte[] { responseBuffer[0] }));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, new byte[] { responseBuffer[1], responseBuffer[2] }));
byte[] ac = new byte[8];
Array.Copy(responseBuffer, 3, ac, 0, 8);
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, ac));
if (responseBuffer.Length > 11)
{
byte[] iad = new byte[responseBuffer.Length - 11];
Array.Copy(responseBuffer, 11, iad, 0, iad.Length);
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, iad));
}
parsingResult = true;
}
}
}
if (!parsingResult)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.PARSING_ERROR, L3Enum.NOT_SET));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
REFERENCE_CONTROL_PARAMETER_DF8114_KRN2 rcp = new REFERENCE_CONTROL_PARAMETER_DF8114_KRN2(database);
if (!
(((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 && rcp.Value.ACTypeEnum == ACTypeEnum.TC) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x80 && (rcp.Value.ACTypeEnum == ACTypeEnum.TC || rcp.Value.ACTypeEnum == ACTypeEnum.ARQC)) ||
((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00))
)
{
return(State_7_10_CommonProcessing.DoInvalidResponsePart_C(database, qManager, L1Enum.NOT_SET, L2Enum.CARD_DATA_MISSING, L3Enum.NOT_SET));
}
APPLICATION_INTERCHANGE_PROFILE_82_KRN aip = new APPLICATION_INTERCHANGE_PROFILE_82_KRN(database);
TERMINAL_CAPABILITIES_9F33_KRN tc = new TERMINAL_CAPABILITIES_9F33_KRN(database);
TERMINAL_VERIFICATION_RESULTS_95_KRN tvr = new TERMINAL_VERIFICATION_RESULTS_95_KRN(database);
if (aip.Value.CDASupported && tc.Value.CDACapable)
{
string aid = emvSelectApplicationResponse.GetDFName();
string rid = aid.Substring(0, 10);
RIDEnum ridEnum = (RIDEnum)Enum.Parse(typeof(RIDEnum), rid);
CAPublicKeyCertificate capk = database.PublicKeyCertificateManager.GetCAPK(ridEnum, database.Get(EMVTagsEnum.CERTIFICATION_AUTHORITY_PUBLIC_KEY_INDEX_8F_KRN).Value[0]);
if (capk == null)
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
if (database.IsNotEmpty(EMVTagsEnum.SIGNED_DYNAMIC_APPLICATION_DATA_9F4B_KRN.Tag))
{
State_7_10_CommonProcessing.DoCDA(database, qManager, capk, cardQManager, cardResponse, emvSelectApplicationResponse, true);
}
else
{
tvr.Value.CDAFailed = true;
tvr.UpdateDB();
}
}
else
{
if (aip.Value.DDAsupported && tc.Value.DDACapable)
{
//oda was done already in waiting for internal authenticate
}
else
{
if (aip.Value.SDASupported && tc.Value.SDACapable)
{
//sda was done already in card action analysis
}
}
}
//check for offline approved or declined, if so end transaction
if ((database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x40 ||
(database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN).Value[0] & 0xC0) == 0x00)
{
return(State_7_10_CommonProcessing.EndOnTCorAAC(database, qManager, cardQManager));
}
else
{
CommonRoutines.CreateEMVDataRecord(database);
CommonRoutines.CreateEMVDiscretionaryData(database);
qManager.EnqueueToOutput(new KernelOnlineResponse(database.Get(EMVTagsEnum.DATA_RECORD_FF8105_KRN2), database.Get(EMVTagsEnum.DISCRETIONARY_DATA_FF8106_KRN2)));
return(SignalsEnum.WAITING_FOR_ONLINE_RESPONSE);
}
}
private static SignalsEnum EntryPointRA(Kernel1Database database, CardResponse cardResponse, KernelQ qManager, CardQ cardQManager, Stopwatch sw, PublicKeyCertificateManager publicKeyCertificateManager)
{
if (!cardResponse.ApduResponse.Succeeded)
{
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.N_A,
KernelStatusEnum.N_A,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
cardResponse.ApduResponse.SW12,
L2Enum.STATUS_BYTES,
L3Enum.NOT_SET));
}
bool parsingResult = false;
EMVGenerateACResponse response = cardResponse.ApduResponse as EMVGenerateACResponse;
if (cardResponse.ApduResponse.ResponseData.Length > 0 && cardResponse.ApduResponse.ResponseData[0] == 0x77)
{
parsingResult = database.ParseAndStoreCardResponse(response.ResponseData);
}
else
{
if (cardResponse.ApduResponse.ResponseData.Length < 11 ||
cardResponse.ApduResponse.ResponseData.Length > 43 ||
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) ||
database.IsNotEmpty(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag) ||
(cardResponse.ApduResponse.ResponseData.Length > 11 &&
database.IsNotEmpty(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag))
)
{
parsingResult = false;
}
else
{
database.AddToList(TLV.Create(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag, response.CryptogramInformationData.Value));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag, response.ApplicationTransactionCounter.Value));
database.AddToList(TLV.Create(EMVTagsEnum.APPLICATION_CRYPTOGRAM_9F26_KRN.Tag, response.ApplicationCryptogram.Value));
database.AddToList(TLV.Create(EMVTagsEnum.ISSUER_APPLICATION_DATA_9F10_KRN.Tag, response.IssuerApplicationData.Value));
parsingResult = true;
}
}
if (!parsingResult)
{
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.N_A,
KernelStatusEnum.N_A,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
null,
L2Enum.PARSING_ERROR,
L3Enum.NOT_SET));
}
if (!(database.IsNotEmpty(EMVTagsEnum.APPLICATION_TRANSACTION_COUNTER_ATC_9F36_KRN.Tag) &&
database.IsNotEmpty(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN.Tag)))
{
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.N_A,
KernelStatusEnum.N_A,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
null,
L2Enum.CARD_DATA_MISSING,
L3Enum.NOT_SET));
}
#region 3.5.2.2
TLV cidTLV = database.Get(EMVTagsEnum.CRYPTOGRAM_INFORMATION_DATA_9F27_KRN);
byte cid = cidTLV.Value[0];
cid = (byte)(cid >> 6);
if (cid != (byte)ACTypeEnum.ARQC)
{
#region 3.10.3.1
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
KernelStatusEnum.PROCESSING_ERROR,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
null,
L2Enum.CARD_DATA_ERROR,
L3Enum.NOT_SET));
#endregion
}
#endregion
#region 3.6.1.1
CommonRoutines.PostUIOnly(database, qManager, KernelMessageidentifierEnum.CLEAR_DISPLAY, KernelStatusEnum.CARD_READ_SUCCESSFULLY, true);
#endregion
SignalsEnum result = DoProcessingRestrictions(database, qManager);
if (result != SignalsEnum.NONE)
{
return(result);
}
#region 3.9
KernelCVMEnum cvm = KernelCVMEnum.N_A;
if (database.ProcessingIndicatorsForSelected.ReaderCVMRequiredLimitExceeded)
{
DoCVMProcessing(database, (ACTypeEnum)GetEnum(typeof(ACTypeEnum), cid));
OUTCOME_PARAMETER_SET_DF8129_KRN2 ops = new OUTCOME_PARAMETER_SET_DF8129_KRN2(database);
if (ops.Value.CVM == KernelCVMEnum.NO_CVM)
{
#region 3.10.3.1
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
KernelStatusEnum.PROCESSING_ERROR,
null,
Kernel2OutcomeStatusEnum.END_APPLICATION,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.ERROR_OTHER_CARD,
L1Enum.NOT_SET,
null,
L2Enum.CARD_DATA_ERROR,
L3Enum.NOT_SET));
#endregion
}
cvm = ops.Value.CVM;
}
#endregion
#region 3.9.2
CommonRoutines.CreateEMVDataRecord(database);
CommonRoutines.CreateEMVDiscretionaryData(database);
return(CommonRoutines.PostOutcome(database, qManager,
KernelMessageidentifierEnum.AUTHORISING_PLEASE_WAIT,
KernelStatusEnum.NOT_READY,
null,
Kernel2OutcomeStatusEnum.ONLINE_REQUEST,
Kernel2StartEnum.N_A,
true,
KernelMessageidentifierEnum.N_A,
L1Enum.NOT_SET,
null,
L2Enum.NOT_SET,
L3Enum.NOT_SET,
ValueQualifierEnum.NONE,
null,
null,
false,
cvm));
#endregion
}
