- Added new Makefile.linux in bootrom directory

[proxmark3-svn] / winsrc / command.cpp

//-----------------------------------------------------------------------------\r
// The actual command interpeter for what the user types at the command line.\r
// Jonathan Westhues, Sept 2005\r
// Edits by Gerhard de Koning Gans, Sep 2007 (##)\r
//-----------------------------------------------------------------------------\r
#include <windows.h>\r
#include <stdlib.h>\r
#include <string.h>\r
#include <stdio.h>\r
#include <limits.h>\r
#include <math.h>\r
\r
#include "prox.h"\r
#include "../common/iso14443_crc.c"\r
\r
#define arraylen(x) (sizeof(x)/sizeof((x)[0]))\r
\r
static int CmdHisamplest(char *str, int nrlow);\r
\r
static void GetFromBigBuf(BYTE *dest, int bytes)\r
{\r
	int n = bytes/4;\r
\r
	if(n % 48 != 0) {\r
		PrintToScrollback("bad len in GetFromBigBuf");\r
		return;\r
	}\r
\r
	int i;\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
\r
		memcpy(dest+(i*4), c.d.asBytes, 48);\r
	}\r
}\r
\r
static void CmdQuit(char *str)\r
{\r
	exit(0);\r
}\r
\r
static void CmdHIDdemodFSK(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_HID_DEMOD_FSK;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdTune(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_MEASURE_ANTENNA_TUNING;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi15read(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_ISO_15693;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14read(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_ISO_14443;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r


/* New command to read the contents of a SRI512 tag
 * SRI512 tags are ISO14443-B modulated memory tags,
 * this command just dumps the contents of the memory/
 */
static void CmdSri512read(char *str)
{
	UsbCommand c;\r
	c.cmd = CMD_READ_SRI512_TAG;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);
}
\r
// ## New command\r
static void CmdHi14areader(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_READER_ISO_14443a;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r
\r
// ## New command\r
static void CmdHi15reader(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_READER_ISO_15693;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r
\r
// ## New command\r
static void CmdHi15tag(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SIMTAG_ISO_15693;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14read_sim(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_ISO_14443_SIM;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14readt(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_ISO_14443;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
\r
	//CmdHisamplest(str);\r
	while(CmdHisamplest(str,atoi(str))==0) {\r
		c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_ISO_14443;\r
		c.ext1 = atoi(str);\r
		SendCommand(&c, FALSE);\r
	}\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdHisimlisten(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SIMULATE_TAG_HF_LISTEN;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14sim(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SIMULATE_TAG_ISO_14443;\r
	SendCommand(&c, FALSE);\r
}\r


\r
static void CmdHi14asim(char *str)	// ## simulate iso14443a tag\r
{					// ## greg - added ability to specify tag UID\r
\r
	unsigned int hi=0, lo=0;\r
	int n=0, i=0;\r
	UsbCommand c;\r
\r
	while (sscanf(&str[i++], "%1x", &n ) == 1) {\r
		hi=(hi<<4)|(lo>>28);\r
		lo=(lo<<4)|(n&0xf);\r
	}\r
\r
	c.cmd = CMD_SIMULATE_TAG_ISO_14443a;\r
	// c.ext should be set to *str or convert *str to the correct format for a uid\r
	c.ext1 = hi;\r
	c.ext2 = lo;\r
	PrintToScrollback("Emulating 14443A TAG with UID %x%16x", hi, lo);\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14snoop(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SNOOP_ISO_14443;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdHi14asnoop(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SNOOP_ISO_14443a;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdFPGAOff(char *str)		// ## FPGA Control\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_FPGA_MAJOR_MODE_OFF;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdLosim(char *str)\r
{\r
	int i;\r
\r
	for(i = 0; i < GraphTraceLen; i += 48) {\r
		UsbCommand c;\r
		int j;\r
		for(j = 0; j < 48; j++) {\r
			c.d.asBytes[j] = GraphBuffer[i+j];\r
		}\r
		c.cmd = CMD_DOWNLOADED_SIM_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
	}\r
\r
	UsbCommand c;\r
	c.cmd = CMD_SIMULATE_TAG_125K;\r
	c.ext1 = GraphTraceLen;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdLoread(char *str)\r
{\r
	UsbCommand c;\r
	// 'h' means higher-low-frequency, 134 kHz\r
	if(*str == 'h') {\r
		c.ext1 = 1;\r
	} else if (*str == '\0') {\r
		c.ext1 = 0;\r
	} else {\r
		PrintToScrollback("use 'loread' or 'loread h'");\r
		return;\r
	}\r
	c.cmd = CMD_ACQUIRE_RAW_ADC_SAMPLES_125K;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdLosamples(char *str)\r
{\r
	int cnt = 0;\r
	int i;\r
	int n;\r
\r
	n=atoi(str);\r
	if (n==0) n=128;\r
	if (n>16000) n=16000;\r
\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j;\r
		for(j = 0; j < 48; j++) {\r
			GraphBuffer[cnt++] = ((int)c.d.asBytes[j]) - 128;\r
		}\r
	}\r
	GraphTraceLen = n*4;\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdBitsamples(char *str)\r
{\r
	int cnt = 0;\r
	int i;\r
	int n;\r
\r
	n = 3072;\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j, k;\r
		for(j = 0; j < 48; j++) {\r
			for(k = 0; k < 8; k++) {\r
				if(c.d.asBytes[j] & (1 << (7 - k))) {\r
					GraphBuffer[cnt++] = 1;\r
				} else {\r
					GraphBuffer[cnt++] = 0;\r
				}\r
			}\r
		}\r
	}\r
	GraphTraceLen = cnt;\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdHisamples(char *str)\r
{\r
	int cnt = 0;\r
	int i;\r
	int n;\r
	n = 1000;\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j;\r
		for(j = 0; j < 48; j++) {\r
			GraphBuffer[cnt++] = (int)((BYTE)c.d.asBytes[j]);\r
		}\r
	}\r
	GraphTraceLen = n*4;\r
\r
	RepaintGraphWindow();\r
}\r
\r
\r
static int CmdHisamplest(char *str, int nrlow)\r
{\r
	int cnt = 0;\r
	int t1, t2;\r
	int i;\r
	int n;\r
	int hasbeennull;\r
	int show;\r
\r
\r
	n = 1000;\r
	hasbeennull = 0;\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return 0;\r
		}\r
		int j;\r
		for(j = 0; j < 48; j++) {\r
			t2 = (int)((BYTE)c.d.asBytes[j]);\r
			if((t2 ^ 0xC0) & 0xC0) { hasbeennull++; }\r
\r
			show = 0;\r
			switch(show) {\r
				case 0:\r
					// combined\r
					t1 = (t2 & 0x80) ^ (t2 & 0x20);\r
					t2 = ((t2 << 1) & 0x80) ^ ((t2 << 1) & 0x20);\r
					break;\r
\r
				case 1:\r
					// only reader\r
					t1 = (t2 & 0x80);\r
					t2 = ((t2 << 1) & 0x80);\r
					break;\r
\r
				case 2:\r
					// only tag\r
					t1 = (t2 & 0x20);\r
					t2 = ((t2 << 1) & 0x20);\r
					break;\r
\r
				case 3:\r
					// both, but tag with other algorithm\r
					t1 = (t2 & 0x80) ^ (t2 & 0x08);\r
					t2 = ((t2 << 1) & 0x80) ^ ((t2 << 1) & 0x08);\r
					break;\r
			}\r
\r
			GraphBuffer[cnt++] = t1;\r
			GraphBuffer[cnt++] = t2;\r
		}\r
	}\r
	GraphTraceLen = n*4;\r
// 1130\r
	if(hasbeennull>nrlow || nrlow==0) {\r
		PrintToScrollback("hasbeennull=%d", hasbeennull);\r
		return 1;\r
	}\r
	else {\r
		return 0;\r
	}\r
}\r
\r
\r
static void CmdHexsamples(char *str)\r
{\r
	int i;\r
	int n;\r
\r
	if(atoi(str) == 0) {\r
		n = 12;\r
	} else {\r
		n = atoi(str)/4;\r
	}\r
\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j;\r
		for(j = 0; j < 48; j += 8) {\r
			PrintToScrollback("%02x %02x %02x %02x %02x %02x %02x %02x",\r
				c.d.asBytes[j+0],\r
				c.d.asBytes[j+1],\r
				c.d.asBytes[j+2],\r
				c.d.asBytes[j+3],\r
				c.d.asBytes[j+4],\r
				c.d.asBytes[j+5],\r
				c.d.asBytes[j+6],\r
				c.d.asBytes[j+7],\r
				c.d.asBytes[j+8]\r
			);\r
		}\r
	}\r
}\r
\r
static void CmdHisampless(char *str)\r
{\r
	int cnt = 0;\r
	int i;\r
	int n;\r
\r
	if(atoi(str) == 0) {\r
		n = 1000;\r
	} else {\r
		n = atoi(str)/4;\r
	}\r
\r
	for(i = 0; i < n; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_ADC_SAMPLES_125K;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_ADC_SAMPLES_125K) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j;\r
		for(j = 0; j < 48; j++) {\r
			GraphBuffer[cnt++] = (int)((signed char)c.d.asBytes[j]);\r
		}\r
	}\r
	GraphTraceLen = cnt;\r
\r
	RepaintGraphWindow();\r
}\r
\r
static WORD Iso15693Crc(BYTE *v, int n)\r
{\r
	DWORD reg;\r
	int i, j;\r
\r
	reg = 0xffff;\r
	for(i = 0; i < n; i++) {\r
		reg = reg ^ ((DWORD)v[i]);\r
		for (j = 0; j < 8; j++) {\r
			if (reg & 0x0001) {\r
				reg = (reg >> 1) ^ 0x8408;\r
			} else {\r
				reg = (reg >> 1);\r
			}\r
		}\r
	}\r
\r
	return (WORD)~reg;\r
}\r
\r
static void CmdHi14bdemod(char *str)\r
{\r
	int i, j, iold;\r
	int isum, qsum;\r
	int outOfWeakAt;\r
	BOOL negateI, negateQ;\r
\r
	BYTE data[256];\r
	int dataLen=0;\r
\r
	// As received, the samples are pairs, correlations against I and Q\r
	// square waves. So estimate angle of initial carrier (or just\r
	// quadrant, actually), and then do the demod.\r
\r
	// First, estimate where the tag starts modulating.\r
	for(i = 0; i < GraphTraceLen; i += 2) {\r
		if(abs(GraphBuffer[i]) + abs(GraphBuffer[i+1]) > 40) {\r
			break;\r
		}\r
	}\r
	if(i >= GraphTraceLen) {\r
		PrintToScrollback("too weak to sync");\r
		return;\r
	}\r
	PrintToScrollback("out of weak at %d", i);\r
	outOfWeakAt = i;\r
\r
	// Now, estimate the phase in the initial modulation of the tag\r
	isum = 0;\r
	qsum = 0;\r
	for(; i < (outOfWeakAt + 16); i += 2) {\r
		isum += GraphBuffer[i+0];\r
		qsum += GraphBuffer[i+1];\r
	}\r
	negateI = (isum < 0);\r
	negateQ = (qsum < 0);\r
\r
	// Turn the correlation pairs into soft decisions on the bit.\r
	j = 0;\r
	for(i = 0; i < GraphTraceLen/2; i++) {\r
		int si = GraphBuffer[j];\r
		int sq = GraphBuffer[j+1];\r
		if(negateI) si = -si;\r
		if(negateQ) sq = -sq;\r
		GraphBuffer[i] = si + sq;\r
		j += 2;\r
	}\r
	GraphTraceLen = i;\r
\r
	i = outOfWeakAt/2;\r
	while(GraphBuffer[i] > 0 && i < GraphTraceLen)\r
		i++;\r
	if(i >= GraphTraceLen) goto demodError;\r
\r
	iold = i;\r
	while(GraphBuffer[i] < 0 && i < GraphTraceLen)\r
		i++;\r
	if(i >= GraphTraceLen) goto demodError;\r
	if((i - iold) > 23) goto demodError;\r
\r
	PrintToScrollback("make it to demod loop");\r
\r
	for(;;) {\r
		iold = i;\r
		while(GraphBuffer[i] >= 0 && i < GraphTraceLen)\r
			i++;\r
		if(i >= GraphTraceLen) goto demodError;\r
		if((i - iold) > 6) goto demodError;\r
\r
		WORD shiftReg = 0;\r
		if(i + 20 >= GraphTraceLen) goto demodError;\r
\r
		for(j = 0; j < 10; j++) {\r
			int soft = GraphBuffer[i] + GraphBuffer[i+1];\r
\r
			if(abs(soft) < ((abs(isum) + abs(qsum))/20)) {\r
				PrintToScrollback("weak bit");\r
			}\r
\r
			shiftReg >>= 1;\r
			if(GraphBuffer[i] + GraphBuffer[i+1] >= 0) {\r
				shiftReg |= 0x200;\r
			}\r
\r
			i+= 2;\r
		}\r
\r
		if( (shiftReg & 0x200) &&\r
			!(shiftReg & 0x001))\r
		{\r
			// valid data byte, start and stop bits okay\r
			PrintToScrollback("   %02x", (shiftReg >> 1) & 0xff);\r
			data[dataLen++] = (shiftReg >> 1) & 0xff;\r
			if(dataLen >= sizeof(data)) {\r
				return;\r
			}\r
		} else if(shiftReg == 0x000) {\r
			// this is EOF\r
			break;\r
		} else {\r
			goto demodError;\r
		}\r
	}\r
\r
	BYTE first, second;\r
	ComputeCrc14443(CRC_14443_B, data, dataLen-2, &first, &second);\r
	PrintToScrollback("CRC: %02x %02x (%s)\n", first, second,\r
		(first == data[dataLen-2] && second == data[dataLen-1]) ?\r
			"ok" : "****FAIL****");\r
\r
	RepaintGraphWindow();\r
	return;\r
\r
demodError:\r
	PrintToScrollback("demod error");\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdHi14list(char *str)\r
{\r
	BYTE got[960];\r
	GetFromBigBuf(got, sizeof(got));\r
\r
	PrintToScrollback("recorded activity:");\r
	PrintToScrollback(" time	:rssi: who bytes");\r
	PrintToScrollback("---------+----+----+-----------");\r
\r
	int i = 0;\r
	int prev = -1;\r
\r
	for(;;) {\r
		if(i >= 900) {\r
			break;\r
		}\r
\r
		BOOL isResponse;\r
		int timestamp = *((DWORD *)(got+i));\r
		if(timestamp & 0x80000000) {\r
			timestamp &= 0x7fffffff;\r
			isResponse = 1;\r
		} else {\r
			isResponse = 0;\r
		}\r
		int metric = *((DWORD *)(got+i+4));\r
\r
		int len = got[i+8];\r
\r
		if(len > 100) {\r
			break;\r
		}\r
		if(i + len >= 900) {\r
			break;\r
		}\r
\r
		BYTE *frame = (got+i+9);\r
\r
		char line[1000] = "";\r
		int j;\r
		for(j = 0; j < len; j++) {\r
			sprintf(line+(j*3), "%02x  ", frame[j]);\r
		}\r
\r
		char *crc;\r
		if(len > 2) {\r
			BYTE b1, b2;\r
			ComputeCrc14443(CRC_14443_B, frame, len-2, &b1, &b2);\r
			if(b1 != frame[len-2] || b2 != frame[len-1]) {\r
				crc = "**FAIL CRC**";\r
			} else {\r
				crc = "";\r
			}\r
		} else {\r
			crc = "(SHORT)";\r
		}\r
\r
		char metricString[100];\r
		if(isResponse) {\r
			sprintf(metricString, "%3d", metric);\r
		} else {\r
			strcpy(metricString, "   ");\r
		}\r
\r
		PrintToScrollback(" +%7d: %s: %s %s %s",\r
			(prev < 0 ? 0 : timestamp - prev),\r
			metricString,\r
			(isResponse ? "TAG" : "   "), line, crc);\r
\r
		prev = timestamp;\r
		i += (len + 9);\r
	}\r
}\r
\r
static void CmdHi14alist(char *str)\r
{\r
	BYTE got[1920];\r
	GetFromBigBuf(got, sizeof(got));\r
\r
	PrintToScrollback("recorded activity:");\r
	PrintToScrollback(" ETU     :rssi: who bytes");\r
	PrintToScrollback("---------+----+----+-----------");\r
\r
	int i = 0;\r
	int prev = -1;\r
\r
	for(;;) {\r
		if(i >= 1900) {\r
			break;\r
		}\r
\r
		BOOL isResponse;\r
		int timestamp = *((DWORD *)(got+i));\r
		if(timestamp & 0x80000000) {\r
			timestamp &= 0x7fffffff;\r
			isResponse = 1;\r
		} else {\r
			isResponse = 0;\r
		}\r
\r
		int metric = 0;\r
		int parityBits = *((DWORD *)(got+i+4));\r
		// 4 bytes of additional information...\r
		// maximum of 32 additional parity bit information\r
		//\r
		// TODO:\r
		// at each quarter bit period we can send power level (16 levels)\r
		// or each half bit period in 256 levels.\r
\r
\r
		int len = got[i+8];\r
\r
		if(len > 100) {\r
			break;\r
		}\r
		if(i + len >= 1900) {\r
			break;\r
		}\r
\r
		BYTE *frame = (got+i+9);\r
\r
		// Break and stick with current result if buffer was not completely full\r
		if(frame[0] == 0x44 && frame[1] == 0x44 && frame[3] == 0x44) { break; }\r
\r
		char line[1000] = "";\r
		int j;\r
		for(j = 0; j < len; j++) {\r
			int oddparity = 0x01;\r
			int k;\r
\r
			for(k=0;k<8;k++) {\r
				oddparity ^= (((frame[j] & 0xFF) >> k) & 0x01);\r
			}\r
\r
			//if((parityBits >> (len - j - 1)) & 0x01) {\r
			if(isResponse && (oddparity != ((parityBits >> (len - j - 1)) & 0x01))) {\r
				sprintf(line+(j*4), "%02x!  ", frame[j]);\r
			}\r
			else {\r
				sprintf(line+(j*4), "%02x   ", frame[j]);\r
			}\r
		}\r
\r
		char *crc;\r
		crc = "";\r
		if(len > 2) {\r
			BYTE b1, b2;\r
			for(j = 0; j < (len - 1); j++) {\r
				// gives problems... search for the reason..\r
				/*if(frame[j] == 0xAA) {\r
					switch(frame[j+1]) {\r
						case 0x01:\r
							crc = "[1] Two drops close after each other";\r
						break;\r
						case 0x02:\r
							crc = "[2] Potential SOC with a drop in second half of bitperiod";\r
							break;\r
						case 0x03:\r
							crc = "[3] Segment Z after segment X is not possible";\r
							break;\r
						case 0x04:\r
							crc = "[4] Parity bit of a fully received byte was wrong";\r
							break;\r
						default:\r
							crc = "[?] Unknown error";\r
							break;\r
					}\r
					break;\r
				}*/\r
			}\r
\r
			if(strlen(crc)==0) {\r
				ComputeCrc14443(CRC_14443_A, frame, len-2, &b1, &b2);\r
				if(b1 != frame[len-2] || b2 != frame[len-1]) {\r
					crc = (isResponse & (len < 6)) ? "" : "	!crc";\r
				} else {\r
					crc = "";\r
				}\r
			}\r
		} else {\r
			crc = ""; // SHORT\r
		}\r
\r
		char metricString[100];\r
		if(isResponse) {\r
			sprintf(metricString, "%3d", metric);\r
		} else {\r
			strcpy(metricString, "   ");\r
		}\r
\r
		PrintToScrollback(" +%7d: %s: %s %s %s",\r
			(prev < 0 ? 0 : (timestamp - prev)),\r
			metricString,\r
			(isResponse ? "TAG" : "   "), line, crc);\r
\r
		prev = timestamp;\r
		i += (len + 9);\r
	}\r
	CommandFinished = 1;\r
}\r
\r
static void CmdHi15demod(char *str)\r
{\r
	// The sampling rate is 106.353 ksps/s, for T = 18.8 us\r
\r
	// SOF defined as \r
	// 1) Unmodulated time of 56.64us\r
	// 2) 24 pulses of 423.75khz\r
	// 3) logic '1' (unmodulated for 18.88us followed by 8 pulses of 423.75khz)\r
\r
	static const int FrameSOF[] = {\r
		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		 1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		 1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		-1, -1, -1, -1,\r
		-1, -1, -1, -1,\r
		 1,  1,  1,  1,\r
		 1,  1,  1,  1\r
	};\r
	static const int Logic0[] = {\r
		 1,  1,  1,  1,\r
		 1,  1,  1,  1,\r
		-1, -1, -1, -1,\r
		-1, -1, -1, -1\r
	};\r
	static const int Logic1[] = {\r
		-1, -1, -1, -1,\r
		-1, -1, -1, -1,\r
		 1,  1,  1,  1,\r
		 1,  1,  1,  1\r
	};\r
\r
	// EOF defined as \r
	// 1) logic '0' (8 pulses of 423.75khz followed by unmodulated for 18.88us)\r
	// 2) 24 pulses of 423.75khz\r
	// 3) Unmodulated time of 56.64us\r
\r
	static const int FrameEOF[] = {\r
		 1,  1,  1,  1,\r
		 1,  1,  1,  1,\r
		-1, -1, -1, -1,\r
		-1, -1, -1, -1,\r
		 1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		 1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1\r
	};\r
\r
	int i, j;\r
	int max = 0, maxPos;\r
\r
	int skip = 4;\r
\r
	if(GraphTraceLen < 1000) return;\r
\r
	// First, correlate for SOF\r
	for(i = 0; i < 100; i++) {\r
		int corr = 0;\r
		for(j = 0; j < arraylen(FrameSOF); j += skip) {\r
			corr += FrameSOF[j]*GraphBuffer[i+(j/skip)];\r
		}\r
		if(corr > max) {\r
			max = corr;\r
			maxPos = i;\r
		}\r
	}\r
	PrintToScrollback("SOF at %d, correlation %d", maxPos,\r
		max/(arraylen(FrameSOF)/skip));\r
\r
	i = maxPos + arraylen(FrameSOF)/skip;\r
	int k = 0;\r
	BYTE outBuf[20];\r
	memset(outBuf, 0, sizeof(outBuf));\r
	BYTE mask = 0x01;\r
	for(;;) {\r
		int corr0 = 0, corr1 = 0, corrEOF = 0;\r
		for(j = 0; j < arraylen(Logic0); j += skip) {\r
			corr0 += Logic0[j]*GraphBuffer[i+(j/skip)];\r
		}\r
		for(j = 0; j < arraylen(Logic1); j += skip) {\r
			corr1 += Logic1[j]*GraphBuffer[i+(j/skip)];\r
		}\r
		for(j = 0; j < arraylen(FrameEOF); j += skip) {\r
			corrEOF += FrameEOF[j]*GraphBuffer[i+(j/skip)];\r
		}\r
		// Even things out by the length of the target waveform.\r
		corr0 *= 4;\r
		corr1 *= 4;\r
\r
		if(corrEOF > corr1 && corrEOF > corr0) {\r
			PrintToScrollback("EOF at %d", i);\r
			break;\r
		} else if(corr1 > corr0) {\r
			i += arraylen(Logic1)/skip;\r
			outBuf[k] |= mask;\r
		} else {\r
			i += arraylen(Logic0)/skip;\r
		}\r
		mask <<= 1;\r
		if(mask == 0) {\r
			k++;\r
			mask = 0x01;\r
		}\r
		if((i+(int)arraylen(FrameEOF)) >= GraphTraceLen) {\r
			PrintToScrollback("ran off end!");\r
			break;\r
		}\r
	}\r
	if(mask != 0x01) {\r
		PrintToScrollback("error, uneven octet! (discard extra bits!)");\r
		PrintToScrollback("   mask=%02x", mask);\r
	}\r
	PrintToScrollback("%d octets", k);\r
\r
	for(i = 0; i < k; i++) {\r
		PrintToScrollback("# %2d: %02x ", i, outBuf[i]);\r
	}\r
	PrintToScrollback("CRC=%04x", Iso15693Crc(outBuf, k-2));\r
}\r
\r
static void CmdTiread(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_ACQUIRE_RAW_BITS_TI_TYPE;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdTibits(char *str)\r
{\r
	int cnt = 0;\r
	int i;\r
	for(i = 0; i < 1536; i += 12) {\r
		UsbCommand c;\r
		c.cmd = CMD_DOWNLOAD_RAW_BITS_TI_TYPE;\r
		c.ext1 = i;\r
		SendCommand(&c, FALSE);\r
		ReceiveCommand(&c);\r
		if(c.cmd != CMD_DOWNLOADED_RAW_BITS_TI_TYPE) {\r
			PrintToScrollback("bad resp\n");\r
			return;\r
		}\r
		int j;\r
		for(j = 0; j < 12; j++) {\r
			int k;\r
			for(k = 31; k >= 0; k--) {\r
				if(c.d.asDwords[j] & (1 << k)) {\r
					GraphBuffer[cnt++] = 1;\r
				} else {\r
					GraphBuffer[cnt++] = -1;\r
				}\r
			}\r
		}\r
	}\r
	GraphTraceLen = 1536*32;\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdTidemod(char *cmdline)\r
{\r
	/* MATLAB as follows:\r
f_s = 2000000;  % sampling frequency\r
f_l = 123200;   % low FSK tone\r
f_h = 134200;   % high FSK tone\r
\r
T_l = 119e-6;   % low bit duration\r
T_h = 130e-6;   % high bit duration\r
\r
l = 2*pi*ones(1, floor(f_s*T_l))*(f_l/f_s);\r
h = 2*pi*ones(1, floor(f_s*T_h))*(f_h/f_s);\r
\r
l = sign(sin(cumsum(l)));\r
h = sign(sin(cumsum(h)));\r
	*/\r
	static const int LowTone[] = {\r
		1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1,\r
		1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1,\r
		-1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1,\r
		-1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1,\r
		-1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1,\r
		1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1,\r
		1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1,\r
		-1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1,\r
		-1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1,\r
		-1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1,\r
		1, 1, 1, 1, 1, 1, 1, -1, -1, -1,\r
	};\r
	static const int HighTone[] = {\r
		1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1,\r
		-1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1,\r
		-1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1,\r
		1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, -1, -1,\r
		-1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1,\r
		-1, -1, -1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1,\r
		-1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1,\r
		-1, -1, 1, 1, 1, 1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, 1, 1,\r
		1, 1, 1, 1, 1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, 1, 1, 1, 1, 1, 1, 1,\r
	};\r
\r
	int convLen = max(arraylen(HighTone), arraylen(LowTone));\r
\r
	int i;\r
	for(i = 0; i < GraphTraceLen - convLen; i++) {\r
		int j;\r
		int lowSum = 0, highSum = 0;;\r
		int lowLen = arraylen(LowTone);\r
		int highLen = arraylen(HighTone);\r
\r
		for(j = 0; j < lowLen; j++) {\r
			lowSum += LowTone[j]*GraphBuffer[i+j];\r
		}\r
		for(j = 0; j < highLen; j++) {\r
			highSum += HighTone[j]*GraphBuffer[i+j];\r
		}\r
		lowSum = abs((100*lowSum) / lowLen);\r
		highSum = abs((100*highSum) / highLen);\r
		GraphBuffer[i] = (highSum << 16) | lowSum;\r
	}\r
\r
	for(i = 0; i < GraphTraceLen - convLen - 16; i++) {\r
		int j;\r
		int lowTot = 0, highTot = 0;\r
		// 16 and 15 are f_s divided by f_l and f_h, rounded\r
		for(j = 0; j < 16; j++) {\r
			lowTot += (GraphBuffer[i+j] & 0xffff);\r
		}\r
		for(j = 0; j < 15; j++) {\r
			highTot += (GraphBuffer[i+j] >> 16);\r
		}\r
		GraphBuffer[i] = lowTot - highTot;\r
	}\r
\r
	GraphTraceLen -= (convLen + 16);\r
\r
	RepaintGraphWindow();\r
\r
	// Okay, so now we have unsliced soft decisions; find bit-sync, and then\r
	// get some bits.\r
\r
	int max = 0, maxPos = 0;\r
	for(i = 0; i < 6000; i++) {\r
		int j;\r
		int dec = 0;\r
		for(j = 0; j < 8*arraylen(LowTone); j++) {\r
			dec -= GraphBuffer[i+j];\r
		}\r
		for(; j < 8*arraylen(LowTone) + 8*arraylen(HighTone); j++) {\r
			dec += GraphBuffer[i+j];\r
		}\r
		if(dec > max) {\r
			max = dec;\r
			maxPos = i;\r
		}\r
	}\r
	GraphBuffer[maxPos] = 800;\r
	GraphBuffer[maxPos+1] = -800;\r
\r
	maxPos += 8*arraylen(LowTone);\r
	GraphBuffer[maxPos] = 800;\r
	GraphBuffer[maxPos+1] = -800;\r
	maxPos += 8*arraylen(HighTone);\r
\r
	GraphBuffer[maxPos] = 800;\r
	GraphBuffer[maxPos+1] = -800;\r
\r
	PrintToScrollback("actual data bits start at sample %d", maxPos);\r
\r
	PrintToScrollback("length %d/%d", arraylen(HighTone), arraylen(LowTone));\r
\r
	GraphBuffer[maxPos] = 800;\r
	GraphBuffer[maxPos+1] = -800;\r
\r
	BYTE bits[64+16+8+1];\r
	bits[sizeof(bits)-1] = '\0';\r
\r
	for(i = 0; i < arraylen(bits); i++) {\r
		int high = 0;\r
		int low = 0;\r
		int j;\r
		for(j = 0; j < arraylen(LowTone); j++) {\r
			low -= GraphBuffer[maxPos+j];\r
		}\r
		for(j = 0; j < arraylen(HighTone); j++) {\r
			high += GraphBuffer[maxPos+j];\r
		}\r
		if(high > low) {\r
			bits[i] = '1';\r
			maxPos += arraylen(HighTone);\r
		} else {\r
			bits[i] = '.';\r
			maxPos += arraylen(LowTone);\r
		}\r
		GraphBuffer[maxPos] = 800;\r
		GraphBuffer[maxPos+1] = -800;\r
	}\r
	PrintToScrollback("bits: '%s'", bits);\r
\r
	DWORD h = 0, l = 0;\r
	for(i = 0; i < 32; i++) {\r
		if(bits[i] == '1') {\r
			l |= (1<<i);\r
		}\r
	}\r
	for(i = 32; i < 64; i++) {\r
		if(bits[i] == '1') {\r
			h |= (1<<(i-32));\r
		}\r
	}\r
	PrintToScrollback("hex: %08x %08x", h, l);\r
}\r
\r
static void CmdNorm(char *str)\r
{\r
	int i;\r
	int max = INT_MIN, min = INT_MAX;\r
	for(i = 10; i < GraphTraceLen; i++) {\r
		if(GraphBuffer[i] > max) {\r
			max = GraphBuffer[i];\r
		}\r
		if(GraphBuffer[i] < min) {\r
			min = GraphBuffer[i];\r
		}\r
	}\r
	if(max != min) {\r
		for(i = 0; i < GraphTraceLen; i++) {\r
			GraphBuffer[i] = (GraphBuffer[i] - ((max + min)/2))*1000/\r
				(max - min);\r
		}\r
	}\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdDec(char *str)\r
{\r
	int i;\r
	for(i = 0; i < (GraphTraceLen/2); i++) {\r
		GraphBuffer[i] = GraphBuffer[i*2];\r
	}\r
	GraphTraceLen /= 2;\r
	PrintToScrollback("decimated by 2");\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdHpf(char *str)\r
{\r
	int i;\r
	int accum = 0;\r
	for(i = 10; i < GraphTraceLen; i++) {\r
		accum += GraphBuffer[i];\r
	}\r
	accum /= (GraphTraceLen - 10);\r
	for(i = 0; i < GraphTraceLen; i++) {\r
		GraphBuffer[i] -= accum;\r
	}\r
\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdZerocrossings(char *str)\r
{\r
	int i;\r
	// Zero-crossings aren't meaningful unless the signal is zero-mean.\r
	CmdHpf("");\r
\r
	int sign = 1;\r
	int zc = 0;\r
	int lastZc = 0;\r
	for(i = 0; i < GraphTraceLen; i++) {\r
		if(GraphBuffer[i]*sign >= 0) {\r
			// No change in sign, reproduce the previous sample count.\r
			zc++;\r
			GraphBuffer[i] = lastZc;\r
		} else {\r
			// Change in sign, reset the sample count.\r
			sign = -sign;\r
			GraphBuffer[i] = lastZc;\r
			if(sign > 0) {\r
				lastZc = zc;\r
				zc = 0;\r
			}\r
		}\r
	}\r
\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdLtrim(char *str)\r
{\r
	int i;\r
	int ds = atoi(str);\r
\r
	for(i = ds; i < GraphTraceLen; i++) {\r
		GraphBuffer[i-ds] = GraphBuffer[i];\r
	}\r
	GraphTraceLen -= ds;\r
\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdAutoCorr(char *str)\r
{\r
	static int CorrelBuffer[MAX_GRAPH_TRACE_LEN];\r
\r
	int window = atoi(str);\r
\r
	if(window == 0) {\r
		PrintToScrollback("needs a window");\r
		return;\r
	}\r
\r
	if(window >= GraphTraceLen) {\r
		PrintToScrollback("window must be smaller than trace (%d samples)",\r
			GraphTraceLen);\r
		return;\r
	}\r
\r
	PrintToScrollback("performing %d correlations", GraphTraceLen - window);\r
\r
	int i;\r
	for(i = 0; i < GraphTraceLen - window; i++) {\r
		int sum = 0;\r
		int j;\r
		for(j = 0; j < window; j++) {\r
			sum += (GraphBuffer[j]*GraphBuffer[i+j]) / 256;\r
		}\r
		CorrelBuffer[i] = sum;\r
	}\r
	GraphTraceLen = GraphTraceLen - window;\r
	memcpy(GraphBuffer, CorrelBuffer, GraphTraceLen*sizeof(int));\r
\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdVchdemod(char *str)\r
{\r
	// Is this the entire sync pattern, or does this also include some\r
	// data bits that happen to be the same everywhere? That would be\r
	// lovely to know.\r
	static const int SyncPattern[] = {\r
		1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
		1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,  1,\r
		1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,\r
	};\r
\r
	// So first, we correlate for the sync pattern, and mark that.\r
	int bestCorrel = 0, bestPos = 0;\r
	int i;\r
	// It does us no good to find the sync pattern, with fewer than\r
	// 2048 samples after it...\r
	for(i = 0; i < (GraphTraceLen-2048); i++) {\r
		int sum = 0;\r
		int j;\r
		for(j = 0; j < arraylen(SyncPattern); j++) {\r
			sum += GraphBuffer[i+j]*SyncPattern[j];\r
		}\r
		if(sum > bestCorrel) {\r
			bestCorrel = sum;\r
			bestPos = i;\r
		}\r
	}\r
	PrintToScrollback("best sync at %d [metric %d]", bestPos, bestCorrel);\r
\r
	char bits[257];\r
	bits[256] = '\0';\r
\r
	int worst = INT_MAX;\r
	int worstPos;\r
\r
	for(i = 0; i < 2048; i += 8) {\r
		int sum = 0;\r
		int j;\r
		for(j = 0; j < 8; j++) {\r
			sum += GraphBuffer[bestPos+i+j];\r
		}\r
		if(sum < 0) {\r
			bits[i/8] = '.';\r
		} else {\r
			bits[i/8] = '1';\r
		}\r
		if(abs(sum) < worst) {\r
			worst = abs(sum);\r
			worstPos = i;\r
		}\r
	}\r
	PrintToScrollback("bits:");\r
	PrintToScrollback("%s", bits);\r
	PrintToScrollback("worst metric: %d at pos %d", worst, worstPos);\r
\r
	if(strcmp(str, "clone")==0) {\r
		GraphTraceLen = 0;\r
		char *s;\r
		for(s = bits; *s; s++) {\r
			int j;\r
			for(j = 0; j < 16; j++) {\r
				GraphBuffer[GraphTraceLen++] = (*s == '1') ? 1 : 0;\r
			}\r
		}\r
		RepaintGraphWindow();\r
	}\r
}\r
\r
static void CmdIndalademod(char *str)\r
{\r
	// Usage: recover 64bit UID by default, specify "224" as arg to recover a 224bit UID\r
\r
	int state = -1;\r
	int count = 0;\r
	int i, j;\r
	// worst case with GraphTraceLen=64000 is < 4096\r
	// under normal conditions it's < 2048\r
	BYTE rawbits[4096];\r
	int rawbit = 0;\r
	int worst = 0, worstPos = 0;\r
	PrintToScrollback("Expecting a bit less than %d raw bits", GraphTraceLen/32);\r
	for(i = 0; i < GraphTraceLen-1; i += 2) {\r
		count+=1;\r
		if((GraphBuffer[i] > GraphBuffer[i + 1]) && (state != 1)) {\r
			if (state == 0) {\r
				for(j = 0; j <  count - 8; j += 16) {\r
					rawbits[rawbit++] = 0;\r
				}\r
				if ((abs(count - j)) > worst) {\r
					worst = abs(count - j);\r
					worstPos = i;\r
				}\r
			}\r
			state = 1;\r
			count=0;\r
		} else if((GraphBuffer[i] < GraphBuffer[i + 1]) && (state != 0)) {\r
			if (state == 1) {\r
				for(j = 0; j <  count - 8; j += 16) {\r
					rawbits[rawbit++] = 1;\r
				}\r
				if ((abs(count - j)) > worst) {\r
					worst = abs(count - j);\r
					worstPos = i;\r
				}\r
			}\r
			state = 0;\r
			count=0;\r
		}\r
	}\r
	PrintToScrollback("Recovered %d raw bits", rawbit);\r
	PrintToScrollback("worst metric (0=best..7=worst): %d at pos %d", worst, worstPos);\r
\r
	// Finding the start of a UID\r
	int uidlen, long_wait;\r
	if(strcmp(str, "224") == 0) {\r
		uidlen=224;\r
		long_wait=30;\r
	} else {\r
		uidlen=64;\r
		long_wait=29;\r
	}\r
	int start;\r
	int first = 0;\r
	for(start = 0; start <= rawbit - uidlen; start++) {\r
		first = rawbits[start];\r
		for(i = start; i < start + long_wait; i++) {\r
			if(rawbits[i] != first) {\r
				break;\r
			}\r
		}\r
		if(i == (start + long_wait)) {\r
			break;\r
		}\r
	}\r
	if(start == rawbit - uidlen + 1) {\r
		PrintToScrollback("nothing to wait for");\r
		return;\r
	}\r
\r
	// Inverting signal if needed\r
	if(first == 1) {\r
		for(i = start; i < rawbit; i++) {\r
			rawbits[i] = !rawbits[i];\r
		}\r
	}\r
\r
	// Dumping UID\r
	BYTE bits[224];\r
	char showbits[225];\r
	showbits[uidlen]='\0';\r
	int bit;\r
	i = start;\r
	int times = 0;\r
	if(uidlen > rawbit) {\r
		PrintToScrollback("Warning: not enough raw bits to get a full UID");\r
		for(bit = 0; bit < rawbit; bit++) {\r
			bits[bit] = rawbits[i++];\r
			// As we cannot know the parity, let's use "." and "/"\r
			showbits[bit] = '.' + bits[bit];\r
		}\r
		showbits[bit+1]='\0';\r
		PrintToScrollback("Partial UID=%s", showbits);\r
		return;\r
	} else {\r
		for(bit = 0; bit < uidlen; bit++) {\r
			bits[bit] = rawbits[i++];\r
			showbits[bit] = '0' + bits[bit];\r
		}\r
		times = 1;\r
	}\r
	PrintToScrollback("UID=%s", showbits);\r
\r
	// Checking UID against next occurences\r
	for(; i + uidlen <= rawbit;) {\r
		int failed = 0;\r
		for(bit = 0; bit < uidlen; bit++) {\r
			if(bits[bit] != rawbits[i++]) {\r
				failed = 1;\r
				break;\r
			}\r
		}\r
		if (failed == 1) {\r
			break;\r
		}\r
		times += 1;\r
	}\r
	PrintToScrollback("Occurences: %d (expected %d)", times, (rawbit - start) / uidlen);\r
\r
	// Remodulating for tag cloning\r
	GraphTraceLen = 32*uidlen;\r
	i = 0;\r
	int phase = 0;\r
	for(bit = 0; bit < uidlen; bit++) {\r
		if(bits[bit] == 0) {\r
			phase = 0;\r
		} else {\r
			phase = 1;\r
		}\r
		int j;\r
		for(j = 0; j < 32; j++) {\r
			GraphBuffer[i++] = phase;\r
			phase = !phase;\r
		}\r
	}\r
\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdFlexdemod(char *str)\r
{\r
	int i;\r
	for(i = 0; i < GraphTraceLen; i++) {\r
		if(GraphBuffer[i] < 0) {\r
			GraphBuffer[i] = -1;\r
		} else {\r
			GraphBuffer[i] = 1;\r
		}\r
	}\r
\r
#define LONG_WAIT 100\r
	int start;\r
	for(start = 0; start < GraphTraceLen - LONG_WAIT; start++) {\r
		int first = GraphBuffer[start];\r
		for(i = start; i < start + LONG_WAIT; i++) {\r
			if(GraphBuffer[i] != first) {\r
				break;\r
			}\r
		}\r
		if(i == (start + LONG_WAIT)) {\r
			break;\r
		}\r
	}\r
	if(start == GraphTraceLen - LONG_WAIT) {\r
		PrintToScrollback("nothing to wait for");\r
		return;\r
	}\r
\r
	GraphBuffer[start] = 2;\r
	GraphBuffer[start+1] = -2;\r
\r
	BYTE bits[64];\r
\r
	int bit;\r
	i = start;\r
	for(bit = 0; bit < 64; bit++) {\r
		int j;\r
		int sum = 0;\r
		for(j = 0; j < 16; j++) {\r
			sum += GraphBuffer[i++];\r
		}\r
		if(sum > 0) {\r
			bits[bit] = 1;\r
		} else {\r
			bits[bit] = 0;\r
		}\r
		PrintToScrollback("bit %d sum %d", bit, sum);\r
	}\r
\r
	for(bit = 0; bit < 64; bit++) {\r
		int j;\r
		int sum = 0;\r
		for(j = 0; j < 16; j++) {\r
			sum += GraphBuffer[i++];\r
		}\r
		if(sum > 0 && bits[bit] != 1) {\r
			PrintToScrollback("oops1 at %d", bit);\r
		}\r
		if(sum < 0 && bits[bit] != 0) {\r
			PrintToScrollback("oops2 at %d", bit);\r
		}\r
	}\r
\r
	GraphTraceLen = 32*64;\r
	i = 0;\r
	int phase = 0;\r
	for(bit = 0; bit < 64; bit++) {\r
		if(bits[bit] == 0) {\r
			phase = 0;\r
		} else {\r
			phase = 1;\r
		}\r
		int j;\r
		for(j = 0; j < 32; j++) {\r
			GraphBuffer[i++] = phase;\r
			phase = !phase;\r
		}\r
	}\r
\r
	RepaintGraphWindow();\r
}\r

/*
 * Generic command to demodulate ASK. bit length in argument.
 * Giving the bit length helps discriminate ripple effects
 * upon zero crossing for noisy traces.
 *
 * Second is convention: positive or negative (High mod means zero
 * or high mod means one)
 *
 * Updates the Graph trace with 0/1 values
 *
 * Arguments:
 * sl : bit length in terms of number of samples per bit
 *      (use yellow/purple markers to compute).
 * c : 0 or 1
 */

static void Cmdaskdemod(char *str) {
	int i;
	int sign = 1;
	int n = 0;
	int c = 0;\r
	int t1 = 0;

	// TODO: complain if we do not give 2 arguments here !
	sscanf(str, "%i %i", &n, &c);
	if (c == 0) {
		c = 1 ;
	} else {
		c = -1;
	}

	if (GraphBuffer[0]*c > 0) {
		GraphBuffer[0] = 1;
	} else {
		GraphBuffer[0] = 0;
	}
	for(i=1;i<GraphTraceLen;i++) {
		/* Analyse signal within the symbol length */
		/* Decide if we crossed a zero */
		if (GraphBuffer[i]*sign < 0) {
			 /* Crossed a zero, check if this is a ripple or not */
			if ( (i-t1) > n/4 ) {
				sign = -sign;
				t1=i;
				if (GraphBuffer[i]*c > 0){
					GraphBuffer[i]=1;
				} else {
					GraphBuffer[i]=0;
				}
			} else {
			/* This is a ripple, set the current sample value
			   to the same as previous */
				GraphBuffer[i] = GraphBuffer[i-1];
			}
		} else {
			GraphBuffer[i] = GraphBuffer[i-1];
		}
	}
	RepaintGraphWindow();
}


/*
 * Manchester demodulate a bitstream. The bitstream needs to be already in
 * the GraphBuffer as 0 and 1 values
 *
 * Give the clock rate as argument in order to help the sync - the algorithm
 * resyncs at each pulse anyway.
 *
 * Not optimized by any means, this is the 1st time I'm writing this type of
 * routine, feel free to improve...
 *
 * 1st argument: clock rate (as number of samples per clock rate)
 *               Typical values can be 64, 32, 128...
 */
static void Cmdmanchesterdemod(char *str) {
	int i;
	int clock;
	int lastval;
	int lc = 0;
	int bitidx = 0;
	int bit2idx = 0;


	sscanf(str, "%i", &clock);

	int tolerance = clock/4;
	/* Holds the decoded bitstream: each clock period contains 2 bits       */
	/* later simplified to 1 bit after manchester decoding.                 */
	/* Add 10 bits to allow for noisy / uncertain traces without aborting   */
	/* int BitStream[GraphTraceLen*2/clock+10]; */

	/* But it does not work if compiling on WIndows: therefore we just allocate a */
	/* large array */
	int BitStream[MAX_GRAPH_TRACE_LEN];

	/* Detect first transition */
	/* Lo-Hi (arbitrary)       */
	for(i=1;i<GraphTraceLen;i++) {
		if (GraphBuffer[i-1]<GraphBuffer[i]) {
		lastval = i;
		BitStream[0]=0; // Previous state = 0;
		break;
		}
	}

	/* Then detect duration between 2 successive transitions */
	for(bitidx = 1 ;i<GraphTraceLen;i++) {
		if (GraphBuffer[i-1] != GraphBuffer[i]) {
			lc = i-lastval;
			lastval = i;
			// Error check: if bitidx becomes too large, we do not
			// have a Manchester encoded bitstream or the clock is really
			// wrong!
			if (bitidx > (GraphTraceLen*2/clock+8) ) {
				PrintToScrollback("Error: the clock you gave is probably wrong, aborting.");
				return;
			}
			// Then switch depending on lc length:
			// Tolerance is 1/4 of clock rate (arbitrary)
			if (abs(lc-clock/2) < tolerance) {
				// Short pulse : either "1" or "0"
				BitStream[bitidx++]=GraphBuffer[i-1];
			} else if (abs(lc-clock) < tolerance) {
				// Long pulse: either "11" or "00"
				BitStream[bitidx++]=GraphBuffer[i-1];
				BitStream[bitidx++]=GraphBuffer[i-1];
			} else {
				// Error
				PrintToScrollback("Warning: Manchester decode error for pulse width detection.");				
				PrintToScrollback("(too many of those messages mean either the stream is not Manchester encoded, or clock is wrong)");
			}
		}
	}

	// At this stage, we now have a bitstream of "01" ("1") or "10" ("0"), parse it into final decoded bitstream
	// Actually, we overwrite BitStream with the new decoded bitstream, we just need to be careful
	// to stop output at the final bitidx2 value, not bitidx
	for (i = 0; i < bitidx; i += 2) {
		if ((BitStream[i] == 0) && (BitStream[i+1] == 1)) {
			BitStream[bit2idx++] = 1;
		} else if ((BitStream[i] == 1) && (BitStream[i+1] == 0)) {
			BitStream[bit2idx++] = 0;
		} else {
			// We cannot end up in this state, this means we are unsynchronized,
			// move up 1 bit:
			i++;
			PrintToScrollback("Unsynchronized, resync...");
			PrintToScrollback("(too many of those messages mean the stream is not Manchester encoded)");
		}
	}
	PrintToScrollback("Manchester decoded bitstream \n---------");
	// Now output the bitstream to the scrollback by line of 16 bits
	for (i = 0; i < (bit2idx-16); i+=16) {
		PrintToScrollback("%i %i %i %i %i %i %i %i %i %i %i %i %i %i %i %i",
			BitStream[i],
			BitStream[i+1],
			BitStream[i+2],
			BitStream[i+3],
			BitStream[i+4],
			BitStream[i+5],
			BitStream[i+6],
			BitStream[i+7],
			BitStream[i+8],
			BitStream[i+9],
			BitStream[i+10],
			BitStream[i+11],
			BitStream[i+12],
			BitStream[i+13],
			BitStream[i+14],
			BitStream[i+15]);
	}
}



/*
 * Usage ???
 */\r
static void CmdHiddemod(char *str)\r
{\r
	if(GraphTraceLen < 4800) {\r
		PrintToScrollback("too short; need at least 4800 samples");\r
		return;\r
	}\r
\r
	GraphTraceLen = 4800;\r
	int i;\r
	for(i = 0; i < GraphTraceLen; i++) {\r
		if(GraphBuffer[i] < 0) {\r
			GraphBuffer[i] = 0;\r
		} else {\r
			GraphBuffer[i] = 1;\r
		}\r
	}\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdPlot(char *str)\r
{\r
	ShowGraphWindow();\r
}\r
\r
static void CmdHide(char *str)\r
{\r
	HideGraphWindow();\r
}\r
\r
static void CmdScale(char *str)\r
{\r
	CursorScaleFactor = atoi(str);\r
	if(CursorScaleFactor == 0) {\r
		PrintToScrollback("bad, can't have zero scale");\r
		CursorScaleFactor = 1;\r
	}\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdSave(char *str)\r
{\r
	FILE *f = fopen(str, "w");\r
	if(!f) {\r
		PrintToScrollback("couldn't open '%s'", str);\r
		return;\r
	}\r
	int i;\r
	for(i = 0; i < GraphTraceLen; i++) {\r
		fprintf(f, "%d\n", GraphBuffer[i]);\r
	}\r
	fclose(f);\r
	PrintToScrollback("saved to '%s'", str);\r
}\r
\r
static void CmdLoad(char *str)\r
{\r
	FILE *f = fopen(str, "r");\r
	if(!f) {\r
		PrintToScrollback("couldn't open '%s'", str);\r
		return;\r
	}\r
\r
	GraphTraceLen = 0;\r
	char line[80];\r
	while(fgets(line, sizeof(line), f)) {\r
		GraphBuffer[GraphTraceLen] = atoi(line);\r
		GraphTraceLen++;\r
	}\r
	fclose(f);\r
	PrintToScrollback("loaded %d samples", GraphTraceLen);\r
	RepaintGraphWindow();\r
}\r
\r
static void CmdHIDsimTAG(char *str)\r
{\r
	unsigned int hi=0, lo=0;\r
	int n=0, i=0;\r
	UsbCommand c;\r
\r
	while (sscanf(&str[i++], "%1x", &n ) == 1) {\r
		hi=(hi<<4)|(lo>>28);\r
		lo=(lo<<4)|(n&0xf);\r
	}\r
\r
	PrintToScrollback("Emulating tag with ID %x%16x", hi, lo);\r
\r
	c.cmd = CMD_HID_SIM_TAG;\r
	c.ext1 = hi;\r
	c.ext2 = lo;\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdLcdReset(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_LCD_RESET;\r
	c.ext1 = atoi(str);\r
	SendCommand(&c, FALSE);\r
}\r
\r
static void CmdLcd(char *str)\r
{\r
	int i, j;\r
	UsbCommand c;\r
	c.cmd = CMD_LCD;\r
	sscanf(str, "%x %d", &i, &j);\r
	while (j--) {\r
		c.ext1 = i&0x1ff;\r
		SendCommand(&c, FALSE);\r
	}\r
}\r
\r
static void CmdTest(char *str)\r
{\r
}\r

/*
 * Sets the divisor for LF frequency clock: lets the user choose any LF frequency below
 * 600kHz.
 */
static void CmdSetDivisor(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SET_LF_DIVISOR;\r
	c.ext1 = atoi(str);\r
	if (( c.ext1<0) || (c.ext1>255)) {\r
			PrintToScrollback("divisor must be between 19 and 255");\r
	} else {\r
			SendCommand(&c, FALSE);\r
			PrintToScrollback("Divisor set, expected freq=%dHz", 12000000/(c.ext1+1));\r
	}\r
}\r
\r
static void CmdSweepLF(char *str)\r
{\r
	UsbCommand c;\r
	c.cmd = CMD_SWEEP_LF;\r
	SendCommand(&c, FALSE);\r
}\r


typedef void HandlerFunction(char *cmdline);\r
\r
static struct {\r
	char		*name;\r
	HandlerFunction	*handler;\r
	int		offline;  // 1 if the command can be used when in offline mode\r
	char		*docString;
} CommandTable[] = {\r
	"tune",			CmdTune,0,		"measure antenna tuning",\r
	"tiread",		CmdTiread,0,		"read a TI-type 134 kHz tag",\r
	"tibits",		CmdTibits,0,		"get raw bits for TI-type LF tag",\r
	"tidemod",		CmdTidemod,0,		"demod raw bits for TI-type LF tag",\r
	"vchdemod",		CmdVchdemod,0,		"demod samples for VeriChip",\r
	"plot",			CmdPlot,1,		"show graph window",\r
	"hide",			CmdHide,1,		"hide graph window",\r
	"losim",		CmdLosim,0,		"simulate LF tag",\r
	"loread",		CmdLoread,0,		"read (125/134 kHz) LF ID-only tag",\r
	"losamples",		CmdLosamples,0,		"get raw samples for LF tag",\r
	"hisamples",		CmdHisamples,0,		"get raw samples for HF tag",\r
	"hisampless",		CmdHisampless,0,	"get signed raw samples, HF tag",\r
	"hisamplest",		CmdHi14readt,0,		"get samples HF, for testing",\r
	"higet",		CmdHi14read_sim,0,	"get samples HF, 'analog'",\r
	"bitsamples",		CmdBitsamples,0,	"get raw samples as bitstring",\r
	"hexsamples",		CmdHexsamples,0,	"dump big buffer as hex bytes",\r
	"hi15read",		CmdHi15read,0,		"read HF tag (ISO 15693)",\r
	"hi15reader",		CmdHi15reader,0,	"act like an ISO15693 reader", // new command greg\r
	"hi15sim",		CmdHi15tag,0,		"fake an ISO15693 tag", // new command greg\r
	"hi14read",		CmdHi14read,0,		"read HF tag (ISO 14443)",\r
	"sri512read",		CmdSri512read,0,	"Read contents of a SRI512 tag",\r
	"hi14areader",		CmdHi14areader,0,	"act like an ISO14443 Type A reader",	// ## New reader command\r
	"hi15demod",		CmdHi15demod,1,		"demod ISO15693 from tag",\r
	"hi14bdemod",		CmdHi14bdemod,1,	"demod ISO14443 Type B from tag",\r
	"autocorr",		CmdAutoCorr,1,		"autocorrelation over window",\r
	"norm",			CmdNorm,1,		"normalize max/min to +/-500",\r
	"dec",			CmdDec,1,		"decimate",\r
	"hpf",			CmdHpf,1,		"remove DC offset from trace",\r
	"zerocrossings",	CmdZerocrossings,1,	"count time between zero-crossings",\r
	"ltrim",		CmdLtrim,1,		"trim from left of trace",\r
	"scale",		CmdScale,1,		"set cursor display scale",\r
	"flexdemod",		CmdFlexdemod,1,		"demod samples for FlexPass",\r
	"save",			CmdSave,1,		"save trace (from graph window)",\r
	"load",			CmdLoad,1,		"load trace (to graph window",\r
	"hisimlisten",		CmdHisimlisten,0,	"get HF samples as fake tag",\r
	"hi14sim",		CmdHi14sim,0,		"fake ISO 14443 tag",\r
	"hi14asim",		CmdHi14asim,0,		"fake ISO 14443a tag",					// ## Simulate 14443a tag\r
	"hi14snoop",		CmdHi14snoop,0,		"eavesdrop ISO 14443",\r
	"hi14asnoop",		CmdHi14asnoop,0,	"eavesdrop ISO 14443 Type A",			// ## New snoop command\r
	"hi14list",		CmdHi14list,0,		"list ISO 14443 history",\r
	"hi14alist",		CmdHi14alist,0,		"list ISO 14443a history",				// ## New list command\r
	"hiddemod",		CmdHiddemod,1,		"HID Prox Card II (not optimal)",\r
	"hidfskdemod",		CmdHIDdemodFSK,0,	"HID FSK demodulator",\r
	"askdemod",		Cmdaskdemod,1,		"Attempt to demodulate simple ASK tags",\r
	"hidsimtag",		CmdHIDsimTAG,0,		"HID tag simulator",\r
	"mandemod",		Cmdmanchesterdemod,1,	"Try a Manchester demodulation on a binary stream",\r
	"fpgaoff",		CmdFPGAOff,0,		"set FPGA off",							// ## FPGA Control\r
	"lcdreset",		CmdLcdReset,0,		"Hardware reset LCD",\r
	"lcd",			CmdLcd,0,		"Send command/data to LCD",\r
	"setlfdivisor",		CmdSetDivisor,0,	"Drive LF antenna at 12Mhz/(divisor+1)",\r
	"sweeplf",		CmdSweepLF,0,		"Sweep through LF freq range and store results in buffer",\r
	"quit",			CmdQuit,0,		"quit program"\r
};\r
\r
\r
//-----------------------------------------------------------------------------\r
// Entry point into our code: called whenever the user types a command and\r
// then presses Enter, which the full command line that they typed.\r
//-----------------------------------------------------------------------------\r
void CommandReceived(char *cmd)\r
{\r
	int i;\r
\r
	PrintToScrollback("> %s", cmd);\r
\r
	if(strcmp(cmd, "help")==0) {\r
		PrintToScrollback("\r\nAvailable commands:");\r
		for(i = 0; i < sizeof(CommandTable) / sizeof(CommandTable[0]); i++) {\r
			char line[256];\r
			memset(line, ' ', sizeof(line));\r
			strcpy(line+2, CommandTable[i].name);\r
			line[strlen(line)] = ' ';\r
			sprintf(line+15, " -- %s", CommandTable[i].docString);\r
			PrintToScrollback("%s", line);\r
		}\r
		PrintToScrollback("");\r
		PrintToScrollback("and also: help, cls");\r
		return;\r
	}\r
\r
	for(i = 0; i < sizeof(CommandTable) / sizeof(CommandTable[0]); i++) {\r
		char *name = CommandTable[i].name;\r
		if(memcmp(cmd, name, strlen(name))==0 &&\r
			(cmd[strlen(name)] == ' ' || cmd[strlen(name)] == '\0'))\r
		{\r
			cmd += strlen(name);\r
			while(*cmd == ' ') {\r
				cmd++;\r
			}\r
			(CommandTable[i].handler)(cmd);\r
			return;\r
		}\r
	}\r
	PrintToScrollback(">> bad command '%s'", cmd);\r
}\r
\r
//-----------------------------------------------------------------------------\r
// Entry point into our code: called whenever we received a packet over USB\r
// that we weren't necessarily expecting, for example a debug print.\r
//-----------------------------------------------------------------------------\r
void UsbCommandReceived(UsbCommand *c)\r
{\r
	switch(c->cmd) {\r
		case CMD_DEBUG_PRINT_STRING: {\r
			char s[100];\r
			if(c->ext1 > 70 || c->ext1 < 0) {\r
				c->ext1 = 0;\r
			}\r
			memcpy(s, c->d.asBytes, c->ext1);\r
			s[c->ext1] = '\0';\r
			PrintToScrollback("#db# %s", s);\r
			break;
		}\r
\r
		case CMD_DEBUG_PRINT_INTEGERS:\r
			PrintToScrollback("#db# %08x, %08x, %08x\r\n", c->ext1, c->ext2, c->ext3);\r
			break;\r
\r
		case CMD_MEASURED_ANTENNA_TUNING: {\r
			int zLf, zHf;\r
			int vLf125, vLf134, vHf;\r
			vLf125 = c->ext1 & 0xffff;\r
			vLf134 = c->ext1 >> 16;\r
			vHf = c->ext2;\r
			zLf = c->ext3 & 0xffff;\r
			zHf = c->ext3 >> 16;\r
			PrintToScrollback("# LF antenna @ %3d mA / %5d mV [%d ohms] 125Khz",\r
				vLf125/zLf, vLf125, zLf);\r
			PrintToScrollback("# LF antenna @ %3d mA / %5d mV [%d ohms] 134Khz",\r
				vLf134/((zLf*125)/134), vLf134, (zLf*125)/134);\r
			PrintToScrollback("# HF antenna @ %3d mA / %5d mV [%d ohms] 13.56Mhz",\r
				vHf/zHf, vHf, zHf);\r
			break;\r
		}\r
		default:\r
			PrintToScrollback("unrecognized command %08x\n", c->cmd);\r
			break;\r
	}\r
}\r