]> cvs.zerfleddert.de Git - proxmark3-svn/blob - client/cmdlfvisa2000.c
projects / proxmark3-svn / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge remote-tracking branch 'upstream/master'
[proxmark3-svn] / client / cmdlfvisa2000.c
1 //-----------------------------------------------------------------------------
2 //
3 // This code is licensed to you under the terms of the GNU GPL, version 2 or,
4 // at your option, any later version. See the LICENSE.txt file for the text of
5 // the license.
6 //-----------------------------------------------------------------------------
7 // Low frequency visa 200 tag commands
8 // by iceman
9 //-----------------------------------------------------------------------------
10
11 #include "cmdlfvisa2000.h"
12
13 #include <stdio.h>
14 #include <string.h>
15 #include "proxmark3.h"
16 #include "ui.h"
17 #include "util.h"
18 #include "graph.h"
19 #include "cmddata.h" // for ASKDemod_ext, g_debugMode, DemodBuffer ...
20 #include "cmdmain.h" // for clearCommandBuffer and WaitForResponseTimeout
21 #include "cmdlf.h"
22 #include "protocols.h" // for T55xx config register definitions
23 #include "lfdemod.h" // for Visa2kDemod_AM
24
25 #define BL0CK1 0x56495332
26
27 static int CmdHelp(const char *Cmd);
28
29 int usage_lf_visa2k_clone(void){
30 PrintAndLog("clone a Visa2000 tag to a T55x7 tag.");
31 PrintAndLog("Usage: lf visa2k clone [h] <card ID> <Q5>");
32 PrintAndLog("Options:");
33 PrintAndLog(" h : This help");
34 PrintAndLog(" <card ID> : Visa2k card ID");
35 PrintAndLog(" <Q5> : specify write to Q5 (t5555 instead of t55x7)");
36 PrintAndLog("");
37 PrintAndLog("Sample: lf visa2k clone 112233");
38 return 0;
39 }
40
41 int usage_lf_visa2k_sim(void) {
42 PrintAndLog("Enables simulation of visa2k card with specified card number.");
43 PrintAndLog("Simulation runs until the button is pressed or another USB command is issued.");
44 PrintAndLog("");
45 PrintAndLog("Usage: lf visa2k sim [h] <card ID>");
46 PrintAndLog("Options:");
47 PrintAndLog(" h : This help");
48 PrintAndLog(" <card ID> : Visa2k card ID");
49 PrintAndLog("");
50 PrintAndLog("Sample: lf visa2k sim 112233");
51 return 0;
52 }
53
54 static uint8_t visa_chksum( uint32_t id ) {
55 uint8_t sum = 0;
56 for (uint8_t i = 0; i < 32; i += 4)
57 sum ^= (id >> i) & 0xF;
58
59 return sum;
60 }
61
62 static uint8_t visa_parity( uint32_t id) {
63 // 4bit parity LUT
64 uint8_t par_lut[] = {
65 0,1,1,0
66 ,1,0,0,1
67 ,1,0,0,1
68 ,0,1,1,0
69 };
70 uint8_t par = 0;
71 par |= par_lut[ (id >> 28) & 0xF ] << 7;
72 par |= par_lut[ (id >> 24) & 0xF ] << 6;
73 par |= par_lut[ (id >> 20) & 0xF ] << 5;
74 par |= par_lut[ (id >> 16) & 0xF ] << 4;
75 par |= par_lut[ (id >> 12) & 0xF ] << 3;
76 par |= par_lut[ (id >> 8) & 0xF ] << 2;
77 par |= par_lut[ (id >> 4) & 0xF ] << 1;
78 par |= par_lut[ (id & 0xF) ];
79 return par;
80 }
81
82
83 /**
84 *
85 * 56495332 00096ebd 00000077 —> tag id 618173
86 * aaaaaaaa iiiiiiii -----..c
87 *
88 * a = fixed value ascii 'VIS2'
89 * i = card id
90 * c = checksum (xor of card id)
91 * . = unknown
92 *
93 **/
94 //see ASKDemod for what args are accepted
95 int CmdVisa2kDemod(const char *Cmd) {
96
97 //sCmdAskEdgeDetect("");
98
99 //ASK / Manchester
100 bool st = true;
101 if (!ASKDemod_ext("64 0 0", false, false, 1, &st)) {
102 if (g_debugMode) PrintAndLog("DEBUG: Error - Visa2k: ASK/Manchester Demod failed");
103 return 0;
104 }
105 size_t size = DemodBufferLen;
106 int ans = Visa2kDemod_AM(DemodBuffer, &size);
107 if (ans < 0){
108 if (g_debugMode){
109 if (ans == -1)
110 PrintAndLog("DEBUG: Error - Visa2k: too few bits found");
111 else if (ans == -2)
112 PrintAndLog("DEBUG: Error - Visa2k: preamble not found");
113 else if (ans == -3)
114 PrintAndLog("DEBUG: Error - Visa2k: Size not correct: %d", size);
115 else
116 PrintAndLog("DEBUG: Error - Visa2k: ans: %d", ans);
117 }
118 return 0;
119 }
120 setDemodBuf(DemodBuffer, 96, ans);
121 //setGrid_Clock(64);
122
123 //got a good demod
124 uint32_t raw1 = bytebits_to_byte(DemodBuffer, 32);
125 uint32_t raw2 = bytebits_to_byte(DemodBuffer+32, 32);
126 uint32_t raw3 = bytebits_to_byte(DemodBuffer+64, 32);
127
128 // chksum
129 uint8_t calc = visa_chksum(raw2);
130 uint8_t chk = raw3 & 0xF;
131
132 // test checksums
133 if ( chk != calc ) {
134 printf("DEBUG: error: Visa2000 checksum failed %x - %x\n", chk, calc);
135 return 0;
136 }
137 // parity
138 uint8_t calc_par = visa_parity(raw2);
139 uint8_t chk_par = (raw3 & 0xFF0) >> 4;
140 if ( calc_par != chk_par) {
141 printf("DEBUG: error: Visa2000 parity failed %x - %x\n", chk_par, calc_par);
142 return 0;
143 }
144 PrintAndLog("Visa2000 Tag Found: Card ID %u, Raw: %08X%08X%08X", raw2, raw1 ,raw2, raw3);
145 return 1;
146 }
147
148 int CmdVisa2kRead(const char *Cmd) {
149 CmdLFRead("s");
150 //64*96*2=12288 samples just in case we just missed the first preamble we can still catch 2 of them
151 getSamples("12500",true);
152 return CmdVisa2kDemod(Cmd);
153 }
154
155 int CmdVisa2kClone(const char *Cmd) {
156
157 uint64_t id = 0;
158 uint32_t blocks[4] = {T55x7_MODULATION_MANCHESTER | T55x7_BITRATE_RF_64 | T55x7_ST_TERMINATOR | 3 << T55x7_MAXBLOCK_SHIFT, BL0CK1, 0};
159
160 char cmdp = param_getchar(Cmd, 0);
161 if (strlen(Cmd) == 0 || cmdp == 'h' || cmdp == 'H') return usage_lf_visa2k_clone();
162
163 id = param_get32ex(Cmd, 0, 0, 10);
164
165 //Q5
166 if (param_getchar(Cmd, 1) == 'Q' || param_getchar(Cmd, 1) == 'q') {
167 //t5555 (Q5) BITRATE = (RF-2)/2 (iceman)
168 blocks[0] = T5555_MODULATION_MANCHESTER | ((64-2)>>1) << T5555_BITRATE_SHIFT | T5555_ST_TERMINATOR | 3 << T5555_MAXBLOCK_SHIFT;
169 }
170
171 blocks[2] = id;
172 blocks[3] = (visa_parity(id) << 4) | visa_chksum(id);
173
174 PrintAndLog("Preparing to clone Visa2000 to T55x7 with CardId: %u", id);
175 PrintAndLog("Blk | Data ");
176 PrintAndLog("----+------------");
177 for(int i = 0; i<4; ++i)
178 PrintAndLog(" %02d | 0x%08x", i , blocks[i]);
179
180 UsbCommand resp;
181 UsbCommand c = {CMD_T55XX_WRITE_BLOCK, {0,0,0}};
182
183 for (int i = 3; i >= 0; --i) {
184 c.arg[0] = blocks[i];
185 c.arg[1] = i;
186 clearCommandBuffer();
187 SendCommand(&c);
188 if (!WaitForResponseTimeout(CMD_ACK, &resp, T55XX_WRITE_TIMEOUT)){
189 PrintAndLog("Error occurred, device did not respond during write operation.");
190 return -1;
191 }
192 }
193 return 0;
194 }
195
196 int CmdVisa2kSim(const char *Cmd) {
197
198 uint32_t id = 0;
199 char cmdp = param_getchar(Cmd, 0);
200 if (strlen(Cmd) == 0 || cmdp == 'h' || cmdp == 'H') return usage_lf_visa2k_sim();
201
202 id = param_get32ex(Cmd, 0, 0, 10);
203
204 uint8_t clk = 64, encoding = 1, separator = 1, invert = 0;
205 uint16_t arg1, arg2;
206 size_t size = 96;
207 arg1 = clk << 8 | encoding;
208 arg2 = invert << 8 | separator;
209
210 PrintAndLog("Simulating Visa2000 - CardId: %u", id);
211
212 UsbCommand c = {CMD_ASK_SIM_TAG, {arg1, arg2, size}};
213
214 uint32_t blocks[3] = { BL0CK1, id, (visa_parity(id) << 4) | visa_chksum(id) };
215
216 for(int i=0; i<3; ++i)
217 num_to_bytebits(blocks[i], 32, c.d.asBytes + i*32);
218
219 clearCommandBuffer();
220 SendCommand(&c);
221 return 0;
222 }
223
224 static command_t CommandTable[] = {
225 {"help", CmdHelp, 1, "This help"},
226 {"demod", CmdVisa2kDemod, 1, "Attempt to demod from GraphBuffer"},
227 {"read", CmdVisa2kRead, 0, "Attempt to read and extract tag data"},
228 {"clone", CmdVisa2kClone, 0, "clone Visa2000 tag"},
229 {"sim", CmdVisa2kSim, 0, "simulate Visa2000 tag"},
230 {NULL, NULL, 0, NULL}
231 };
232
233 int CmdLFVisa2k(const char *Cmd) {
234 clearCommandBuffer();
235 CmdsParse(CommandTable, Cmd);
236 return 0;
237 }
238
239 int CmdHelp(const char *Cmd) {
240 CmdsHelp(CommandTable);
241 return 0;
242 }
Proxmark3 GIT tracking
Impressum, Datenschutz