Главная Обзор Помощь
Вход
torambo.com
/
Momentum-Apps
2
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Ветка: dev
Ветки Метки
Momentum-Apps
/
portal_of_flipper
/
xsm3
/
usbdsec.c

usbdsec.c 6.2 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 
  1. /*
    2. 

  2.     usbdsec.c - part of libxsm3
    3. 

  3.     Copyright (C) 2013 oct0xor
    4. 

  4.     Copyright (C) 2022 InvoxiPlayGames
    5. 

  5. 

  6.     This library is free software; you can redistribute it and/or
    7. 

  7.     modify it under the terms of the GNU Lesser General Public
    8. 

  8.     License as published by the Free Software Foundation; either
    9. 

  9.     version 2.1 of the License, or (at your option) any later version.
    10. 

  10. 

  11.     This library is distributed in the hope that it will be useful,
    12. 

  12.     but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    14. 

  14.     Lesser General Public License for more details.
    15. 

  15. 

  16.     You should have received a copy of the GNU Lesser General Public
    17. 

  17.     License along with this library; if not, write to the Free Software
    18. 

  18.     Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
    19. 

  19. */
    20. 

  20. 

  21. #include <string.h>
    22. 

  22. #include <stdio.h>
    23. 

  23. #include "excrypt.h"
    24. 

  24. 

  25. static uint8_t UsbdSecSboxData[256] __attribute__ ((aligned(4))) = {
    26. 

  26. 	0xB0, 0x3D, 0x9B, 0x70, 0xF3, 0xC7, 0x80, 0x60,
    27. 

  27. 	0x73, 0x9F, 0x6C, 0xC0, 0xF1, 0x3D, 0xBB, 0x40,
    28. 

  28. 	0xB3, 0xC8, 0x37, 0x14, 0xDF, 0x49, 0xDA, 0xD4,
    29. 

  29. 	0x48, 0x22, 0x78, 0x80, 0x6E, 0xCD, 0xE7, 0x00,
    30. 

  30. 	0x81, 0x86, 0x68, 0xE1, 0x5D, 0x7C, 0x54, 0x2C,
    31. 

  31. 	0x55, 0x7B, 0xEF, 0x48, 0x42, 0x7B, 0x3B, 0x68,
    32. 

  32. 	0xE3, 0xDB, 0xAA, 0xC0, 0x0F, 0xA9, 0x96, 0x20,
    33. 

  33. 	0x95, 0x05, 0x93, 0x94, 0x9A, 0xF6, 0xA3, 0x64,
    34. 

  34. 	0x5D, 0xCC, 0x76, 0x00, 0xE5, 0x08, 0x19, 0xE8,
    35. 

  35. 	0x8D, 0x29, 0xD7, 0x4C, 0x21, 0x91, 0x17, 0xF4,
    36. 

  36. 	0xBC, 0x6A, 0xB3, 0x80, 0x83, 0xC6, 0xD4, 0x90,
    37. 

  37. 	0x9B, 0xAE, 0x0E, 0xFE, 0x2E, 0x4A, 0xF2, 0x00,
    38. 

  38. 	0x73, 0x88, 0xD9, 0x40, 0x66, 0xC5, 0xD4, 0x08,
    39. 

  39. 	0x57, 0xB1, 0x89, 0x48, 0xDC, 0x54, 0xFC, 0x43,
    40. 

  40. 	0x6A, 0x26, 0x87, 0xB8, 0x09, 0x5F, 0xCE, 0x80,
    41. 

  41. 	0xE4, 0x0B, 0x05, 0x9C, 0x24, 0xF3, 0xDE, 0xE2,
    42. 

  42. 	0x3E, 0xEC, 0x38, 0x8A, 0xA2, 0x55, 0xA4, 0x50,
    43. 

  43. 	0x4E, 0x4B, 0xE9, 0x58, 0x7F, 0x9F, 0x7D, 0x80,
    44. 

  44. 	0x23, 0x0C, 0x4D, 0x80, 0x05, 0x44, 0x26, 0xB8,
    45. 

  45. 	0xE9, 0xD8, 0xBC, 0xE6, 0x76, 0x3A, 0x6E, 0xA4,
    46. 

  46. 	0x19, 0xDE, 0xC2, 0xD0, 0xC4, 0xBC, 0xC3, 0x5C,
    47. 

  47. 	0x59, 0xDF, 0x16, 0x46, 0x39, 0x70, 0xF4, 0xEE,
    48. 

  48. 	0x2D, 0x58, 0x5A, 0xA8, 0x17, 0x86, 0x6B, 0x60,
    49. 

  49. 	0x29, 0x58, 0x4D, 0xD2, 0x5F, 0x28, 0x7A, 0xD8,
    50. 

  50. 	0x8E, 0x79, 0xEA, 0x82, 0x94, 0x33, 0x31, 0x81,
    51. 

  51. 	0xD9, 0x22, 0xD5, 0x10, 0xDA, 0x92, 0xA0, 0x7D,
    52. 

  52. 	0x3D, 0xDA, 0xAC, 0x1C, 0xA2, 0x53, 0x31, 0xB8,
    53. 

  53. 	0x3C, 0x96, 0x52, 0x00, 0x82, 0x6B, 0x56, 0xA0,
    54. 

  54. 	0xD3, 0xC2, 0x40, 0xC7, 0x1B, 0x7F, 0xDC, 0x01,
    55. 

  55. 	0x72, 0x70, 0xB1, 0x8C, 0x01, 0x09, 0x09, 0x36,
    56. 

  56. 	0xFC, 0x97, 0xEA, 0xDE, 0xE3, 0x0D, 0xAE, 0x7E,
    57. 

  57. 	0xE3, 0x0D, 0xAE, 0x7E, 0x33, 0x69, 0x80, 0x40
    58. 

  58. };
    59. 

  59. 

  60. static uint8_t UsbdSecPlainTextData[128] __attribute__ ((aligned(4))) = {
    61. 

  61. 	0xD1, 0xD2, 0xF2, 0x80, 0x6E, 0xBA, 0x0C, 0xC0,
    62. 

  62. 	0xB6, 0xC4, 0xC9, 0xD8, 0x61, 0x75, 0x1D, 0x1A,
    63. 

  63. 	0x3F, 0x95, 0x58, 0xBE, 0xD8, 0x0D, 0xE2, 0xC0,
    64. 

  64. 	0xD0, 0x21, 0x79, 0x20, 0x65, 0x2D, 0x99, 0x40,
    65. 

  65. 	0x3C, 0x96, 0x52, 0x00, 0x1B, 0x7F, 0xDC, 0x01,
    66. 

  66. 	0x82, 0x1C, 0x13, 0xD8, 0x33, 0x69, 0x80, 0x40,
    67. 

  67. 	0xFC, 0x97, 0xEA, 0xDE, 0x08, 0xEA, 0x14, 0xDC,
    68. 

  68. 	0xEB, 0x0F, 0x6A, 0x18, 0x6F, 0x78, 0x2C, 0xB0,
    69. 

  69. 	0xD3, 0xC2, 0x40, 0xC7, 0x82, 0x6B, 0x56, 0xA0,
    70. 

  70. 	0x19, 0x09, 0x36, 0xE0, 0x72, 0x70, 0xB1, 0x8C,
    71. 

  71. 	0xE3, 0x0D, 0xAE, 0x7E, 0x50, 0xA5, 0x2B, 0xE2,
    72. 

  72. 	0xC9, 0xAF, 0xC7, 0x70, 0x1C, 0x29, 0x80, 0x56,
    73. 

  73. 	0x24, 0xF0, 0x66, 0xFA, 0x02, 0x2B, 0x58, 0x98,
    74. 

  74. 	0x8F, 0xE4, 0xD1, 0x3C, 0x6E, 0x38, 0x2A, 0xFF,
    75. 

  75. 	0xB8, 0xFA, 0x35, 0xB0, 0x52, 0x49, 0xC5, 0xB4,
    76. 

  76. 	0x66, 0xFA, 0x47, 0x55, 0x6C, 0x8D, 0x40, 0x08
    77. 

  77. };
    78. 

  78. 

  79. void UsbdSecXSM3AuthenticationCrypt(const uint8_t *key, const uint8_t *input, size_t length, uint8_t *output, uint8_t encrypt) {
    80. 

  80. 	EXCRYPT_DES3_STATE des;
    81. 

  81. 	uint64_t sk[3];
    82. 

  82. 	uint8_t iv[8];
    83. 

  83. 

  84. 	// clear local variables
    85. 

  85.     memset(iv, 0, sizeof(iv));
    86. 

  86. 	// run parity on the key
    87. 

  87. 	ExCryptDesParity(key, 0x10, (uint8_t *)sk);
    88. 

  88. 	sk[2] = sk[0];
    89. 

  89. 	// set the key in the state and run triple-des cbc en/decryption on it
    90. 

  90. 	ExCryptDes3Key(&des, sk);
    91. 

  91. 	ExCryptDes3Cbc(&des, input, length, output, iv, encrypt);
    92. 

  92. }
    93. 

  93. 

  94. void UsbdSecXSM3AuthenticationMac(const uint8_t *key, uint8_t *salt, uint8_t *input, size_t length, uint8_t *output) {
    95. 

  95. 	EXCRYPT_DES3_STATE des3;
    96. 

  96. 	EXCRYPT_DES_STATE des;
    97. 

  97. 	uint64_t sk[3];
    98. 

  98. 	uint8_t iv[8];
    99. 

  99. 	uint8_t temp[8];
    100. 

  100. 	uint64_t input_temp;
    101. 

  101. 	size_t i;
    102. 

  102. 

  103. 	// clear iv + temp value of stack junk
    104. 

  104. 	memset(iv, 0, sizeof(iv));
    105. 

  105. 	memset(temp, 0, sizeof(temp));
    106. 

  106. 	// run parity on the key
    107. 

  107. 	ExCryptDesParity(key, 0x10, (uint8_t *)sk);
    108. 

  108. 	sk[2] = sk[0];
    109. 

  109. 	// set the key in our initial des state
    110. 

  110. 	ExCryptDesKey(&des, (uint8_t *)&sk[0]);
    111. 

  111. 	// if we have a salt, encrypt it into the temp value
    112. 

  112. 	if (salt) {
    113. 

  113. 		memcpy(&input_temp, salt, sizeof(input_temp));
    114. 

  114. 		input_temp = SWAP64(SWAP64(input_temp) + 1);
    115. 

  115. 		memcpy(salt, &input_temp, sizeof(input_temp)); // no idea what this does
    116. 

  116. 		ExCryptDesEcb(&des, salt, temp, 1);
    117. 

  117. 	}
    118. 

  118. 	// for every 8 byte input block, xor the temp value with it and encrypt over itself
    119. 

  119. 	for (i = 0; i < length; i += 8) {
    120. 

  120. 		memcpy(&input_temp, input+i, sizeof(input_temp));
    121. 

  121. 		*(uint64_t *)temp ^= input_temp;
    122. 

  122. 		
    123. 

  123. 		ExCryptDesEcb(&des, temp, temp, 1);
    124. 

  124. 	}
    125. 

  125. 	// xor the highest bit of the temp value
    126. 

  126. 	temp[0] ^= 0x80;
    127. 

  127. 	// set the key and perform the final triple-des encryption
    128. 

  128. 	ExCryptDes3Key(&des3, sk);
    129. 

  129. 	ExCryptDes3Cbc(&des3, temp, 8, output, iv, 1);
    130. 

  130. 	// real kernel does the following, but the above works:
    131. 

  131. 	// XeCryptDesEcb(des_state_1, temp, temp, 1);
    132. 

  132. 	// XeCryptDesEcb(des_state_2, temp, temp, 0);
    133. 

  133. 	// XeCryptDesEcb(des_state_1, temp, output, 1);
    134. 

  134. }
    135. 

  135. 

  136. void UsbdSecXSMAuthenticationAcr(const uint8_t *console_id, const uint8_t *input, const uint8_t *key, uint8_t *output) {
    137. 

  137. 	uint8_t block[8];
    138. 

  138. 	uint8_t iv[8];
    139. 

  139. 	uint8_t ab[8];
    140. 

  140. 	uint8_t cd[8];
    141. 

  141. 

  142. 	// fill in the input block with the first 4 bytes of input data and the first 4 bytes of the console ID
    143. 

  143. 	// *(uint32_t *)block = *(uint32_t *)input;
    144. 

  144. 	// *(uint32_t *)(block + 4) = *(uint32_t *)console_id;
    145. 

  145. 	memcpy(block, input, 4);
    146. 

  146. 	memcpy(block+4, console_id, 4);
    147. 

  147. 	// run custom "parve" crypto algorithms. idk whar they do
    148. 

  148. 	ExCryptParveEcb(key, UsbdSecSboxData, input + 0x10, iv);
    149. 

  149. 	ExCryptParveEcb(key, UsbdSecSboxData, block, cd);
    150. 

  150. 	ExCryptParveCbcMac(key, UsbdSecSboxData, iv, UsbdSecPlainTextData, 0x80, ab);
    151. 

  151. 	ExCryptChainAndSumMac((uint32_t *)cd, (uint32_t *)ab, (uint32_t *)UsbdSecPlainTextData, 0x20, (uint32_t *)output);
    152. 

  152. 	uint64_t current;
    153. 

  153. 	memcpy(&current, output, sizeof(current));
    154. 

  154. 	current ^= *(uint64_t *)ab;
    155. 

  155. 	// *(uint64_t *)output ^= *(uint64_t *)ab;
    156. 

  156. 	memcpy(output, &current, sizeof(current));
    157. 

  157. }
    158.