]>
git.zerfleddert.de Git - proxmark3-svn/blob - client/cmdlfhitag.c
1 //-----------------------------------------------------------------------------
2 // Copyright (C) 2012 Roel Verdult
4 // This code is licensed to you under the terms of the GNU GPL, version 2 or,
5 // at your option, any later version. See the LICENSE.txt file for the text of
7 //-----------------------------------------------------------------------------
8 // Low frequency Hitag support
9 //-----------------------------------------------------------------------------
15 #include "proxmark3.h"
17 #include "cmdparser.h"
24 static int CmdHelp(const char *Cmd
);
26 size_t nbytes(size_t nbits
) {
27 return (nbits
/8)+((nbits
%8)>0);
30 int CmdLFHitagList(const char *Cmd
)
33 GetFromBigBuf(got
,sizeof(got
),0);
34 WaitForResponse(CMD_ACK
,NULL
);
36 PrintAndLog("recorded activity:");
37 PrintAndLog(" ETU :nbits: who bytes");
38 PrintAndLog("---------+-----+----+-----------");
49 int timestamp
= *((uint32_t *)(got
+i
));
50 if (timestamp
& 0x80000000) {
51 timestamp
&= 0x7fffffff;
57 int parityBits
= *((uint32_t *)(got
+i
+4));
58 // 4 bytes of additional information...
59 // maximum of 32 additional parity bit information
62 // at each quarter bit period we can send power level (16 levels)
63 // or each half bit period in 256 levels.
66 int len
= nbytes(got
[i
+8]);
71 if (i
+ len
>= 1900) {
75 uint8_t *frame
= (got
+i
+9);
77 // Break and stick with current result if buffer was not completely full
78 if (frame
[0] == 0x44 && frame
[1] == 0x44 && frame
[3] == 0x44) { break; }
82 for (j
= 0; j
< len
; j
++) {
87 oddparity
^= (((frame
[j
] & 0xFF) >> k
) & 0x01);
90 //if((parityBits >> (len - j - 1)) & 0x01) {
91 if (isResponse
&& (oddparity
!= ((parityBits
>> (len
- j
- 1)) & 0x01))) {
92 sprintf(line
+(j
*4), "%02x! ", frame
[j
]);
95 sprintf(line
+(j
*4), "%02x ", frame
[j
]);
99 PrintAndLog(" +%7d: %3d: %s %s",
100 (prev
< 0 ? 0 : (timestamp
- prev
)),
102 (isResponse
? "TAG" : " "),
107 // fprintf(pf," +%7d: %3d: %s %s\n",
108 // (prev < 0 ? 0 : (timestamp - prev)),
110 // (isResponse ? "TAG" : " "),
122 int CmdLFHitagSnoop(const char *Cmd
) {
123 UsbCommand c
= {CMD_SNOOP_HITAG
};
128 int CmdLFHitagSim(const char *Cmd
) {
129 UsbCommand c
= {CMD_SIMULATE_HITAG
};
130 char filename
[256] = { 0x00 };
132 bool tag_mem_supplied
;
134 param_getstr(Cmd
,0,filename
);
136 if (strlen(filename
) > 0) {
137 if ((pf
= fopen(filename
,"rb+")) == NULL
) {
138 PrintAndLog("Error: Could not open file [%s]",filename
);
141 tag_mem_supplied
= true;
142 if (fread(c
.d
.asBytes
,48,1,pf
) == 0) {
143 PrintAndLog("Error: File reading error");
149 tag_mem_supplied
= false;
152 // Does the tag comes with memory
153 c
.arg
[0] = (uint32_t)tag_mem_supplied
;
159 int CmdLFHitagReader(const char *Cmd
) {
160 // UsbCommand c = {CMD_READER_HITAG};
162 // param_get32ex(Cmd,1,0,16);
163 UsbCommand c
= {CMD_READER_HITAG
};//, {param_get32ex(Cmd,0,0,10),param_get32ex(Cmd,1,0,16),param_get32ex(Cmd,2,0,16),param_get32ex(Cmd,3,0,16)}};
164 hitag_data
* htd
= (hitag_data
*)c
.d
.asBytes
;
165 hitag_function htf
= param_get32ex(Cmd
,0,0,10);
168 case RHT2F_PASSWORD
: {
169 num_to_bytes(param_get32ex(Cmd
,1,0,16),4,htd
->pwd
.password
);
171 case RHT2F_AUTHENTICATE
: {
172 num_to_bytes(param_get32ex(Cmd
,1,0,16),4,htd
->auth
.NrAr
);
173 num_to_bytes(param_get32ex(Cmd
,2,0,16),4,htd
->auth
.NrAr
+4);
176 num_to_bytes(param_get64ex(Cmd
,1,0,16),6,htd
->crypto
.key
);
177 // num_to_bytes(param_get32ex(Cmd,2,0,16),4,htd->auth.NrAr+4);
179 case RHT2F_TEST_AUTH_ATTEMPTS
: {
180 // No additional parameters needed
183 PrintAndLog("Error: unkown reader function %d",htf
);
184 PrintAndLog("Hitag reader functions");
185 PrintAndLog(" HitagS (0*)");
186 PrintAndLog(" Hitag1 (1*)");
187 PrintAndLog(" Hitag2 (2*)");
188 PrintAndLog(" 21 <password> (password mode)");
189 PrintAndLog(" 22 <nr> <ar> (authentication)");
190 PrintAndLog(" 23 <key> (authentication) key is in format: ISK high + ISK low");
191 PrintAndLog(" 25 (test recorded authentications)");
196 // Copy the hitag2 function into the first argument
199 // Send the command to the proxmark
203 WaitForResponse(CMD_ACK
,&resp
);
205 // Check the return status, stored in the first argument
206 if (resp
.arg
[0] == false) return 1;
208 uint32_t id
= bytes_to_num(resp
.d
.asBytes
,4);
212 sprintf(filename
,"%08x_%04x.ht2",id
,(rand() & 0xffff));
213 if ((pf
= fopen(filename
,"wb")) == NULL
) {
214 PrintAndLog("Error: Could not open file [%s]",filename
);
218 // Write the 48 tag memory bytes to file and finalize
219 fwrite(resp
.d
.asBytes
,1,48,pf
);
222 PrintAndLog("Succesfully saved tag memory to [%s]",filename
);
227 static command_t CommandTable
[] =
229 {"help", CmdHelp
, 1, "This help"},
230 {"list", CmdLFHitagList
, 1, "List Hitag trace history"},
231 {"reader", CmdLFHitagReader
, 1, "Act like a Hitag Reader"},
232 {"sim", CmdLFHitagSim
, 1, "Simulate Hitag transponder"},
233 {"snoop", CmdLFHitagSnoop
, 1, "Eavesdrop Hitag communication"},
234 {NULL
, NULL
, 0, NULL
}
237 int CmdLFHitag(const char *Cmd
)
239 CmdsParse(CommandTable
, Cmd
);
243 int CmdHelp(const char *Cmd
)
245 CmdsHelp(CommandTable
);