]> git.zerfleddert.de Git - proxmark3-svn/blame - client/cmdlft55xx.h
FIX: Coverity, out-of-bounds read ...
[proxmark3-svn] / client / cmdlft55xx.h
CommitLineData
e98300f2 1//-----------------------------------------------------------------------------\r
2//\r
3// This code is licensed to you under the terms of the GNU GPL, version 2 or,\r
4// at your option, any later version. See the LICENSE.txt file for the text of\r
5// the license.\r
6//-----------------------------------------------------------------------------\r
7// Low frequency T55xx commands\r
8//-----------------------------------------------------------------------------\r
9\r
10#ifndef CMDLFT55XX_H__\r
11#define CMDLFT55XX_H__\r
12\r
0de8e387 13// config blocks\r
14#define T55X7_DEFAULT_CONFIG_BLOCK 0x000880E8 // compat mode, data rate 32, manchester, ST, 7 data blocks\r
15#define T55X7_RAW_CONFIG_BLOCK 0x000880E0 // compat mode, data rate 32, manchester, 7 data blocks\r
16\r
17#define T55X7_EM_UNIQUE_CONFIG_BLOCK 0x00148040 // emulate em4x02/unique - compat mode, manchester, data rate 64, 2 data blocks\r
18\r
19\r
20// FDXB requires data inversion and BiPhase 57 is simply BipHase 50 inverted, so we can either do it using the modulation scheme or the inversion flag\r
21// we've done both below to prove that it works either way, and the modulation value for BiPhase 50 in the Atmel data sheet of binary "10001" (17) is a typo,\r
22// and it should actually be "10000" (16)\r
e98572a1 23// #define T55X7_FDXB_CONFIG_BLOCK 903F8080 // emulate fdx-b - xtended mode, BiPhase ('57), data rate 32, 4 data blocks\r
24#define T55X7_FDXB_CONFIG_BLOCK 0x903F0082 // emulate fdx-b - xtended mode, BiPhase ('50), invert data, data rate 32, 4 data blocks\r
25#define T55X7_HID_26_CONFIG_BLOCK 0x00107060 // hid 26 bit - compat mode, FSK2a, data rate 50, 3 data blocks\r
26#define T55X7_INDALA_64_CONFIG_BLOCK 0x00081040 // emulate indala 64 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 2\r
27#define T55X7_INDALA_224_CONFIG_BLOCK 0x000810E0 // emulate indala 224 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 7\r
28#define T55X7_GUARDPROXII_CONFIG_BLOCK 0x00150060 // bitrate 64pcb, Direct modulation, Biphase, 3 data blocks\r
29#define T55X7_VIKING_CONFIG_BLOCK 0x00088040 // compat mode, data rate 32, Manchester, 2 data blocks\r
30#define T55X7_NORALYS_CONFIG_BLOCK 0x00088C6A // compat mode, (NORALYS - KCP3000)\r
52f2df61 31#define T55X7_IOPROX_CONFIG_BLOCK 0x00147040 // maxblock 2\r
0de8e387 32#define T55X7_bin 0b0010\r
33\r
69e312af 34#define T5555_DEFAULT_CONFIG_BLOCK 0x6001F004 // data rate 64 , ask, manchester, 2 data blocks?\r
35enum {\r
36 T55x7_RAW = 0x00,\r
37 T55x7_DEFAULT = 0x00,\r
38 T5555_DEFAULT = 0x01,\r
39 EM_UNIQUE = 0x0,\r
40 FDBX = 0x02,\r
41 HID_26 = 0x03,\r
42 INDALA_64 = 0x04,\r
43 INDALA_224 = 0x05,\r
44 GUARDPROXXII = 0x06,\r
45 VIKING = 0x07,\r
46 NORALSYS = 0x08,\r
47 IOPROX = 0x09,\r
48} t55xx_tag;\r
49\r
58962d4c 50typedef struct {\r
51 uint32_t bl1;\r
52 uint32_t bl2; \r
53 uint32_t acl; \r
54 uint32_t mfc; \r
55 uint32_t cid; \r
56 uint32_t year; \r
57 uint32_t quarter; \r
58 uint32_t icr;\r
59 uint32_t lotid; \r
60 uint32_t wafer; \r
61 uint32_t dw;\r
62} t55xx_tracedata_t;\r
63\r
64typedef struct {\r
65 uint32_t bl1;\r
66 uint32_t bl2;\r
67 uint32_t icr;\r
68 char lotidc;\r
69 uint32_t lotid;\r
70 uint32_t wafer;\r
71 uint32_t dw;\r
72} t5555_tracedata_t;\r
0de8e387 73\r
13d77ef9 74typedef struct {\r
75 enum {\r
76 DEMOD_NRZ = 0x00, \r
77 DEMOD_PSK1 = 0x01,\r
78 DEMOD_PSK2 = 0x02,\r
79 DEMOD_PSK3 = 0x03,\r
80 DEMOD_FSK1 = 0x04, \r
81 DEMOD_FSK1a = 0x05, \r
82 DEMOD_FSK2 = 0x06, \r
83 DEMOD_FSK2a = 0x07, \r
84 DEMOD_FSK = 0xF0, //generic FSK (auto detect FCs) \r
85 DEMOD_ASK = 0x08,\r
86 DEMOD_BI = 0x10,\r
87 DEMOD_BIa = 0x18, \r
88 } modulation;\r
89 bool inverted;\r
90 uint8_t offset;\r
91 uint32_t block0;\r
92 enum {\r
93 RF_8 = 0x00,\r
94 RF_16 = 0x01,\r
95 RF_32 = 0x02,\r
96 RF_40 = 0x03,\r
97 RF_50 = 0x04,\r
98 RF_64 = 0x05,\r
99 RF_100 = 0x06,\r
100 RF_128 = 0x07,\r
101 } bitrate;\r
6426f6ba 102 bool Q5;\r
13d77ef9 103} t55xx_conf_block_t;\r
94422fa2 104t55xx_conf_block_t Get_t55xx_Config();\r
105void Set_t55xx_Config(t55xx_conf_block_t conf);\r
106\r
13d77ef9 107\r
e98300f2 108int CmdLFT55XX(const char *Cmd);\r
13d77ef9 109int CmdT55xxSetConfig(const char *Cmd);\r
110int CmdT55xxReadBlock(const char *Cmd);\r
111int CmdT55xxWriteBlock(const char *Cmd);\r
112int CmdT55xxReadTrace(const char *Cmd);\r
113int CmdT55xxInfo(const char *Cmd);\r
114int CmdT55xxDetect(const char *Cmd);\r
94422fa2 115int CmdResetRead(const char *Cmd);\r
6426f6ba 116int CmdT55xxWipe(const char *Cmd);\r
c188b1b9 117int CmdT55xxBruteForce(const char *Cmd);\r
13d77ef9 118\r
119char * GetBitRateStr(uint32_t id);\r
120char * GetSaferStr(uint32_t id);\r
121char * GetModulationStr( uint32_t id);\r
122char * GetModelStrFromCID(uint32_t cid);\r
123char * GetSelectedModulationStr( uint8_t id);\r
9632ecbe 124uint32_t PackBits(uint8_t start, uint8_t len, uint8_t *bitstream);\r
6426f6ba 125void printT5xxHeader(uint8_t page);\r
13d77ef9 126void printT55xxBlock(const char *demodStr);\r
1c8fbeb9 127int printConfiguration( t55xx_conf_block_t b);\r
e98300f2 128\r
13d77ef9 129bool DecodeT55xxBlock();\r
130bool tryDetectModulation();\r
6426f6ba 131bool test(uint8_t mode, uint8_t *offset, int *fndBitRate, uint8_t clk, bool *Q5);\r
13d77ef9 132int special(const char *Cmd);\r
1d0ccbe0 133int AquireData( uint8_t page, uint8_t block, bool pwdmode, uint32_t password );\r
e98300f2 134\r
c188b1b9 135bool detectPassword(int password);\r
58962d4c 136\r
137void printT55xxTrace( t55xx_tracedata_t data, uint8_t repeat );\r
138void printT5555Trace( t5555_tracedata_t data, uint8_t repeat );\r
139\r
e98300f2 140#endif\r
Impressum, Datenschutz