proxmark3/client/cmdlft55xx.h

//-----------------------------------------------------------------------------
//
// This code is licensed to you under the terms of the GNU GPL, version 2 or,
// at your option, any later version. See the LICENSE.txt file for the text of
// the license.
//-----------------------------------------------------------------------------
// Low frequency T55xx commands
//-----------------------------------------------------------------------------

#ifndef CMDLFT55XX_H__
#define CMDLFT55XX_H__

#include <stdio.h>
#include <string.h>
#include <inttypes.h>
#include <time.h>
#include <ctype.h>
#include "proxmark3.h"
#include "ui.h"
#include "graph.h"
#include "comms.h"
#include "cmdparser.h"
#include "cmddata.h"
#include "cmdlf.h"
#include "util.h"
#include "lfdemod.h"
#include "cmdhf14a.h" //for getTagInfo


#define T55x7_CONFIGURATION_BLOCK 0x00
#define T55x7_PAGE0 0x00
#define T55x7_PAGE1 0x01
#define T55x7_PWD	0x00000010
#define REGULAR_READ_MODE_BLOCK 0xFF

// config blocks
#define T55X7_DEFAULT_CONFIG_BLOCK      0x000880E8      // ASK, compat mode, data rate 32, manchester, STT, 7 data blocks
#define T55X7_RAW_CONFIG_BLOCK          0x000880E0      // ASK, compat mode, data rate 32, manchester, 7 data blocks
#define T55X7_EM_UNIQUE_CONFIG_BLOCK    0x00148040      // ASK, emulate em4x02/unique - compat mode, manchester, data rate 64, 2 data blocks
// FDXB requires data inversion and BiPhase 57 is simply BiPhase 50 inverted, so we can either do it using the modulation scheme or the inversion flag
// we've done both below to prove that it works either way, and the modulation value for BiPhase 50 in the Atmel data sheet of binary "10001" (17) is a typo,
// and it should actually be "10000" (16)
// #define T55X7_FDXB_CONFIG_BLOCK         903F8080  // emulate fdx-b - xtended mode, BiPhase ('57), data rate 32, 4 data blocks
#define T55X7_FDXB_CONFIG_BLOCK         0x903F0082  // emulate fdx-b - xtended mode, BiPhase ('50), invert data, data rate 32, 4 data blocks
#define T55X7_HID_26_CONFIG_BLOCK       0x00107060  // hid 26 bit - compat mode, FSK2a, data rate 50, 3 data blocks
#define T55X7_PYRAMID_CONFIG_BLOCK		0x00107080  // Pyramid 26 bit - compat mode, FSK2a, data rate 50, 4 data blocks
#define T55X7_INDALA_64_CONFIG_BLOCK    0x00081040  // emulate indala 64 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 2
#define T55X7_INDALA_224_CONFIG_BLOCK   0x000810E0  // emulate indala 224 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 7
#define T55X7_GUARDPROXII_CONFIG_BLOCK	0x00150060	// bitrate 64pcb, Direct modulation, Biphase, 3 data blocks
#define T55X7_VIKING_CONFIG_BLOCK		0x00088040	// ASK, compat mode, data rate 32, Manchester, 2 data blocks
#define T55X7_NORALYS_CONFIG_BLOCK		0x00088C6A	// ASK, compat mode,   (NORALYS - KCP3000)
#define T55X7_IOPROX_CONFIG_BLOCK		0x00147040  // ioprox - FSK2a, data rate 64, 2 data blocks
#define T55X7_PRESCO_CONFIG_BLOCK		0x00088088  // ASK, data rate 32, Manchester, 5 data blocks, STT
#define T55X7_NEDAP_64_CONFIG_BLOCK		0x907f0042  // BiPhase,  data rate 64, 3 data blocks
#define T55X7_NEDAP_128_CONFIG_BLOCK	0x907f0082  // BiPhase,  data rate 64, 5 data blocks
#define T55X7_bin 0b0010

#define T5555_DEFAULT_CONFIG_BLOCK		0x6001F004  // data rate 64 , ask, manchester, 2 data blocks?
enum {
	T55x7_RAW = 0x00,
	T55x7_DEFAULT = 0x00,
	T5555_DEFAULT = 0x01,
	EM_UNIQUE  = 0x0,
	FDBX = 0x02,
	HID_26 = 0x03,
	INDALA_64 = 0x04,
	INDALA_224 = 0x05,
	GUARDPROXXII = 0x06,
	VIKING = 0x07,
	NORALSYS = 0x08,
	IOPROX = 0x09,
	NEDAP_64 = 0x0A,
	NEDAP_128 = 0x0B,
} t55xx_tag;

typedef struct {
	uint32_t bl1;
	uint32_t bl2; 
	uint32_t acl; 
	uint32_t mfc; 
	uint32_t cid; 
	uint32_t year; 
	uint32_t quarter; 
	uint32_t icr;
	uint32_t lotid; 
	uint32_t wafer; 
	uint32_t dw;
} t55x7_tracedata_t;

typedef struct {
	uint32_t bl1;
	uint32_t bl2;
	uint32_t icr;
	char lotidc;
	uint32_t lotid;
	uint32_t wafer;
	uint32_t dw;
} t5555_tracedata_t;

typedef struct {
	enum {
		DEMOD_NRZ  = 0x00,    
		DEMOD_PSK1 = 0x01,
		DEMOD_PSK2 = 0x02,
		DEMOD_PSK3 = 0x03,
		DEMOD_FSK1  = 0x04,     
		DEMOD_FSK1a = 0x05,     
		DEMOD_FSK2  = 0x06,     
		DEMOD_FSK2a = 0x07, 
		DEMOD_FSK   = 0xF0, //generic FSK (auto detect FCs)    
		DEMOD_ASK  = 0x08,
		DEMOD_BI   = 0x10,
		DEMOD_BIa  = 0x18,		
	}  modulation;
	bool inverted;
	uint8_t offset;
	uint32_t block0;
	enum {
		RF_8 = 0x00,
		RF_16 = 0x01,
		RF_32 = 0x02,
		RF_40 = 0x03,
		RF_50 = 0x04,
		RF_64 = 0x05,
		RF_100 = 0x06,
		RF_128 = 0x07,
	} bitrate;
	bool Q5;
	bool ST;
} t55xx_conf_block_t;

t55xx_conf_block_t Get_t55xx_Config(void);
void Set_t55xx_Config(t55xx_conf_block_t conf);

extern int CmdLFT55XX(const char *Cmd);
extern int CmdT55xxChk(const char *Cmd);
extern int CmdT55xxBruteForce(const char *Cmd);
extern int CmdT55xxSetConfig(const char *Cmd);
extern int CmdT55xxReadBlock(const char *Cmd);
extern int CmdT55xxWriteBlock(const char *Cmd);
extern int CmdT55xxReadTrace(const char *Cmd);
extern int CmdT55xxInfo(const char *Cmd);
extern int CmdT55xxDetect(const char *Cmd);
extern int CmdResetRead(const char *Cmd);
extern int CmdT55xxWipe(const char *Cmd);

char * GetBitRateStr(uint32_t id, bool xmode);
char * GetSaferStr(uint32_t id);
char * GetModulationStr( uint32_t id);
char * GetModelStrFromCID(uint32_t cid);
char * GetSelectedModulationStr( uint8_t id);
uint32_t PackBits(uint8_t start, uint8_t len, uint8_t *bitstream);
void printT5xxHeader(uint8_t page);
void printT55xxBlock(const char *demodStr);
int printConfiguration( t55xx_conf_block_t b);

bool DecodeT55xxBlock(void);
bool tryDetectModulation(void);
bool testKnownConfigBlock(uint32_t block0);
extern bool tryDetectP1(bool getData);
bool test(uint8_t mode, uint8_t *offset, int *fndBitRate, uint8_t clk, bool *Q5);
int special(const char *Cmd);
bool AquireData( uint8_t page, uint8_t block, bool pwdmode, uint32_t password );
bool AquireDataEx( uint8_t page, uint8_t block, bool pwdmode, uint32_t password, uint32_t timing ) ;

bool detectPassword(int password);

void printT55x7Trace( t55x7_tracedata_t data, uint8_t repeat );
void printT5555Trace( t5555_tracedata_t data, uint8_t repeat );

#endif
Added block command for T55xx and support for cloning HID long format 2013-01-16 18:42:29 +08:00			`//-----------------------------------------------------------------------------`
			`//`
			`// This code is licensed to you under the terms of the GNU GPL, version 2 or,`
			`// at your option, any later version. See the LICENSE.txt file for the text of`
			`// the license.`
			`//-----------------------------------------------------------------------------`
			`// Low frequency T55xx commands`
			`//-----------------------------------------------------------------------------`

			`#ifndef CMDLFT55XX_H__`
			`#define CMDLFT55XX_H__`

CHG: moved definition and includes into header file 2017-01-19 03:19:42 +08:00			`#include <stdio.h>`
			`#include <string.h>`
			`#include <inttypes.h>`
some time_t issues 2017-07-28 07:35:49 +08:00			`#include <time.h>`
fix: ref to <ctype.h> for isxdigit() 2017-12-05 04:18:08 +08:00			`#include <ctype.h>`
CHG: moved definition and includes into header file 2017-01-19 03:19:42 +08:00			`#include "proxmark3.h"`
			`#include "ui.h"`
			`#include "graph.h"`
CHG: the thread comms refactoring from offical pm3 repo chg: FPC com speed limited to 115200 when compiled with FPC chg: USART remake (@drandreas) 2018-09-07 03:43:20 +08:00			`#include "comms.h"`
CHG: moved definition and includes into header file 2017-01-19 03:19:42 +08:00			`#include "cmdparser.h"`
			`#include "cmddata.h"`
			`#include "cmdlf.h"`
			`#include "util.h"`
			`#include "lfdemod.h"`
			`#include "cmdhf14a.h" //for getTagInfo`


			`#define T55x7_CONFIGURATION_BLOCK 0x00`
			`#define T55x7_PAGE0 0x00`
			`#define T55x7_PAGE1 0x01`
			`#define T55x7_PWD 0x00000010`
			`#define REGULAR_READ_MODE_BLOCK 0xFF`

A lot of changes... .. ntag simulation stuff from @marshmellows branch "ntag/sim" .. hf mf mifare fixes from @pwpivi. .. hw status command .. speedtest function from @pwpivi .. Viking Functionalities, (not a proper DEMOD, but a start) .. GetCountUS better precision from @pwpivi .. bin2hex, hex2bin from @holiman ... starting with getting the T55x7 CONFIGURATION_BLOCK for different clone situations. Ripped from Adam Lauries RFidler, nothing working or finished.. ... Started working with the T55x7 read command with password actually performs a write block... See Issue #136 https://github.com/Proxmark/proxmark3/issues/136 Not solved yet. ... Started add SHA256.. not working yet.. 2015-10-05 00:01:33 +08:00			`// config blocks`
updated commments 2017-08-16 05:09:39 +08:00			`#define T55X7_DEFAULT_CONFIG_BLOCK 0x000880E8 // ASK, compat mode, data rate 32, manchester, STT, 7 data blocks`
			`#define T55X7_RAW_CONFIG_BLOCK 0x000880E0 // ASK, compat mode, data rate 32, manchester, 7 data blocks`
			`#define T55X7_EM_UNIQUE_CONFIG_BLOCK 0x00148040 // ASK, emulate em4x02/unique - compat mode, manchester, data rate 64, 2 data blocks`
			`// FDXB requires data inversion and BiPhase 57 is simply BiPhase 50 inverted, so we can either do it using the modulation scheme or the inversion flag`
A lot of changes... .. ntag simulation stuff from @marshmellows branch "ntag/sim" .. hf mf mifare fixes from @pwpivi. .. hw status command .. speedtest function from @pwpivi .. Viking Functionalities, (not a proper DEMOD, but a start) .. GetCountUS better precision from @pwpivi .. bin2hex, hex2bin from @holiman ... starting with getting the T55x7 CONFIGURATION_BLOCK for different clone situations. Ripped from Adam Lauries RFidler, nothing working or finished.. ... Started working with the T55x7 read command with password actually performs a write block... See Issue #136 https://github.com/Proxmark/proxmark3/issues/136 Not solved yet. ... Started add SHA256.. not working yet.. 2015-10-05 00:01:33 +08:00			`// we've done both below to prove that it works either way, and the modulation value for BiPhase 50 in the Atmel data sheet of binary "10001" (17) is a typo,`
			`// and it should actually be "10000" (16)`
I just merged @marshmellow's branch "iclass" and that was a lot of new functionality. great work Things like the ICLASS, tryDecryptWord, -- My other stuff like default keys, some new Mifare EV1 commands 0x40, 0x43 for the logging annotation, start of the T55x7 configblock helper functionality (ripped from Adam Lauries RFIdler code) Changes to the PCF7931 functions written, which has a lousy input check.. 2015-10-08 05:00:46 +08:00			`// #define T55X7_FDXB_CONFIG_BLOCK 903F8080 // emulate fdx-b - xtended mode, BiPhase ('57), data rate 32, 4 data blocks`
			`#define T55X7_FDXB_CONFIG_BLOCK 0x903F0082 // emulate fdx-b - xtended mode, BiPhase ('50), invert data, data rate 32, 4 data blocks`
			`#define T55X7_HID_26_CONFIG_BLOCK 0x00107060 // hid 26 bit - compat mode, FSK2a, data rate 50, 3 data blocks`
ADD: added a valid pyramid T55x7 configblock. 2016-02-10 20:07:04 +08:00			`#define T55X7_PYRAMID_CONFIG_BLOCK 0x00107080 // Pyramid 26 bit - compat mode, FSK2a, data rate 50, 4 data blocks`
I just merged @marshmellow's branch "iclass" and that was a lot of new functionality. great work Things like the ICLASS, tryDecryptWord, -- My other stuff like default keys, some new Mifare EV1 commands 0x40, 0x43 for the logging annotation, start of the T55x7 configblock helper functionality (ripped from Adam Lauries RFIdler code) Changes to the PCF7931 functions written, which has a lousy input check.. 2015-10-08 05:00:46 +08:00			`#define T55X7_INDALA_64_CONFIG_BLOCK 0x00081040 // emulate indala 64 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 2`
			`#define T55X7_INDALA_224_CONFIG_BLOCK 0x000810E0 // emulate indala 224 bit - compat mode, PSK1, psk carrier FC * 2, data rate 32, maxblock 7`
			`#define T55X7_GUARDPROXII_CONFIG_BLOCK 0x00150060 // bitrate 64pcb, Direct modulation, Biphase, 3 data blocks`
updated commments 2017-08-16 05:09:39 +08:00			`#define T55X7_VIKING_CONFIG_BLOCK 0x00088040 // ASK, compat mode, data rate 32, Manchester, 2 data blocks`
			`#define T55X7_NORALYS_CONFIG_BLOCK 0x00088C6A // ASK, compat mode, (NORALYS - KCP3000)`
			`#define T55X7_IOPROX_CONFIG_BLOCK 0x00147040 // ioprox - FSK2a, data rate 64, 2 data blocks`
			`#define T55X7_PRESCO_CONFIG_BLOCK 0x00088088 // ASK, data rate 32, Manchester, 5 data blocks, STT`
chg: added some nedap blocks 2018-04-20 22:09:40 +08:00			`#define T55X7_NEDAP_64_CONFIG_BLOCK 0x907f0042 // BiPhase, data rate 64, 3 data blocks`
			`#define T55X7_NEDAP_128_CONFIG_BLOCK 0x907f0082 // BiPhase, data rate 64, 5 data blocks`
A lot of changes... .. ntag simulation stuff from @marshmellows branch "ntag/sim" .. hf mf mifare fixes from @pwpivi. .. hw status command .. speedtest function from @pwpivi .. Viking Functionalities, (not a proper DEMOD, but a start) .. GetCountUS better precision from @pwpivi .. bin2hex, hex2bin from @holiman ... starting with getting the T55x7 CONFIGURATION_BLOCK for different clone situations. Ripped from Adam Lauries RFidler, nothing working or finished.. ... Started working with the T55x7 read command with password actually performs a write block... See Issue #136 https://github.com/Proxmark/proxmark3/issues/136 Not solved yet. ... Started add SHA256.. not working yet.. 2015-10-05 00:01:33 +08:00			`#define T55X7_bin 0b0010`

ADD: added a Q5 parameter for "lf t55xx wipe", the default config blocks is: t55x7 : 000880E0 t5555 (Q5) : 6001F004 2016-01-04 17:13:38 +08:00			`#define T5555_DEFAULT_CONFIG_BLOCK 0x6001F004 // data rate 64 , ask, manchester, 2 data blocks?`
			`enum {`
			`T55x7_RAW = 0x00,`
			`T55x7_DEFAULT = 0x00,`
			`T5555_DEFAULT = 0x01,`
			`EM_UNIQUE = 0x0,`
			`FDBX = 0x02,`
			`HID_26 = 0x03,`
			`INDALA_64 = 0x04,`
			`INDALA_224 = 0x05,`
			`GUARDPROXXII = 0x06,`
			`VIKING = 0x07,`
			`NORALSYS = 0x08,`
			`IOPROX = 0x09,`
chg: added some nedap blocks 2018-04-20 22:09:40 +08:00			`NEDAP_64 = 0x0A,`
			`NEDAP_128 = 0x0B,`
ADD: added a Q5 parameter for "lf t55xx wipe", the default config blocks is: t55x7 : 000880E0 t5555 (Q5) : 6001F004 2016-01-04 17:13:38 +08:00			`} t55xx_tag;`

added @broken_bad's imp of showing T555/Q5 trace data. (with my modifications ;) ) 2016-01-04 00:16:06 +08:00			`typedef struct {`
			`uint32_t bl1;`
			`uint32_t bl2;`
			`uint32_t acl;`
			`uint32_t mfc;`
			`uint32_t cid;`
			`uint32_t year;`
			`uint32_t quarter;`
			`uint32_t icr;`
			`uint32_t lotid;`
			`uint32_t wafer;`
			`uint32_t dw;`
ADD: Added @marshmellow42 's new ST (sequence terminator detection) 2016-02-20 05:30:19 +08:00			`} t55x7_tracedata_t;`
added @broken_bad's imp of showing T555/Q5 trace data. (with my modifications ;) ) 2016-01-04 00:16:06 +08:00
			`typedef struct {`
			`uint32_t bl1;`
			`uint32_t bl2;`
			`uint32_t icr;`
			`char lotidc;`
			`uint32_t lotid;`
			`uint32_t wafer;`
			`uint32_t dw;`
			`} t5555_tracedata_t;`
A lot of changes... .. ntag simulation stuff from @marshmellows branch "ntag/sim" .. hf mf mifare fixes from @pwpivi. .. hw status command .. speedtest function from @pwpivi .. Viking Functionalities, (not a proper DEMOD, but a start) .. GetCountUS better precision from @pwpivi .. bin2hex, hex2bin from @holiman ... starting with getting the T55x7 CONFIGURATION_BLOCK for different clone situations. Ripped from Adam Lauries RFidler, nothing working or finished.. ... Started working with the T55x7 read command with password actually performs a write block... See Issue #136 https://github.com/Proxmark/proxmark3/issues/136 Not solved yet. ... Started add SHA256.. not working yet.. 2015-10-05 00:01:33 +08:00
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00			`typedef struct {`
			`enum {`
			`DEMOD_NRZ = 0x00,`
			`DEMOD_PSK1 = 0x01,`
			`DEMOD_PSK2 = 0x02,`
			`DEMOD_PSK3 = 0x03,`
			`DEMOD_FSK1 = 0x04,`
			`DEMOD_FSK1a = 0x05,`
			`DEMOD_FSK2 = 0x06,`
			`DEMOD_FSK2a = 0x07,`
			`DEMOD_FSK = 0xF0, //generic FSK (auto detect FCs)`
			`DEMOD_ASK = 0x08,`
			`DEMOD_BI = 0x10,`
			`DEMOD_BIa = 0x18,`
			`} modulation;`
			`bool inverted;`
			`uint8_t offset;`
			`uint32_t block0;`
			`enum {`
			`RF_8 = 0x00,`
			`RF_16 = 0x01,`
			`RF_32 = 0x02,`
			`RF_40 = 0x03,`
			`RF_50 = 0x04,`
			`RF_64 = 0x05,`
			`RF_100 = 0x06,`
			`RF_128 = 0x07,`
			`} bitrate;`
@marshmellows last LF changes. - wipe a t55x7 tag - stable demods - 2015-11-20 23:56:43 +08:00			`bool Q5;`
ADD: Added @marshmellow42 's new ST (sequence terminator detection) 2016-02-20 05:30:19 +08:00			`bool ST;`
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00			`} t55xx_conf_block_t;`
monster merge... all those changes marshmellow did.. and more... 2017-07-30 15:17:48 +08:00
			`t55xx_conf_block_t Get_t55xx_Config(void);`
ADD: @marshmellow42 's fixex and resetread t55x7 2015-11-03 03:46:17 +08:00			`void Set_t55xx_Config(t55xx_conf_block_t conf);`

fixes.. to bool 2017-07-12 00:31:10 +08:00			`extern int CmdLFT55XX(const char *Cmd);`
Refactored 'lf t55xx brute', split it up into two commands. - lf t55xx brute (tries bruteforcing a range of pwds - lf t55xx chk (uses dictionary file or RDV4 flashmem) FIX: adjust lf sim (@marshmellow42) see https://github.com/marshmellow42/proxmark3/commit/7008cf9c15a135a066227635e64f59285eb73a80 "attempt to speed up the loops waiting for carrier signal to go high or low by only checking for a halt (button press or usbpol) every 256th loop iteration. some users were experiencing modulating reactions to be too slow. ADD: 'lf t55xx chk' It uses @marshmellows42 idea behind commit (https://github.com/marshmellow42/proxmark3/commit/6178b085a0374e656cce3849e481fa5800403c2b) With calculating a baseline (read block0 32times and average the signal-ish) and sampling only 1024 signal data. The algo then proceeds to calc the average and keep track of the candidate which is given the most difference in signal data average value. I do some squaring and shifting for this. The candidate is then send back to client to be tested properly with trymodulation like before. This seems to work good on t55xx card which has a ASK configuration. WORK-IN-PROGRESS 2019-01-11 21:46:27 +08:00			`extern int CmdT55xxChk(const char *Cmd);`
monster merge... all those changes marshmellow did.. and more... 2017-07-30 15:17:48 +08:00			`extern int CmdT55xxBruteForce(const char *Cmd);`
fixes.. to bool 2017-07-12 00:31:10 +08:00			`extern int CmdT55xxSetConfig(const char *Cmd);`
			`extern int CmdT55xxReadBlock(const char *Cmd);`
			`extern int CmdT55xxWriteBlock(const char *Cmd);`
			`extern int CmdT55xxReadTrace(const char *Cmd);`
			`extern int CmdT55xxInfo(const char *Cmd);`
			`extern int CmdT55xxDetect(const char *Cmd);`
			`extern int CmdResetRead(const char *Cmd);`
			`extern int CmdT55xxWipe(const char *Cmd);`
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00
monster merge... all those changes marshmellow did.. and more... 2017-07-30 15:17:48 +08:00			`char * GetBitRateStr(uint32_t id, bool xmode);`
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00			`char * GetSaferStr(uint32_t id);`
			`char * GetModulationStr( uint32_t id);`
			`char * GetModelStrFromCID(uint32_t cid);`
			`char * GetSelectedModulationStr( uint8_t id);`
update t5 detection test() missed this file in last commit... sorry. 2015-04-08 22:12:24 +08:00			`uint32_t PackBits(uint8_t start, uint8_t len, uint8_t *bitstream);`
@marshmellows last LF changes. - wipe a t55x7 tag - stable demods - 2015-11-20 23:56:43 +08:00			`void printT5xxHeader(uint8_t page);`
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00			`void printT55xxBlock(const char *demodStr);`
ADD: 'LF T55X7 WAKEUP' command. For tags with AOR bit set, send this command with password to wake tag up and be able to do a "LF SEARCH" etc on it. CHG: Minor code changes on T55X7 code. Default password is back to 'FF FF FF FF', REM: removed @marshmellow42 's wakeup option in "lf t55x7 read", --- BASICALLY: if a T55X7 tag has following bits set: AOR - send wakeup command with pwd, to enable LF interacting with it. PWD - send read/write/trace/info command with pwd. No need to send wakeup. 2015-10-21 15:12:33 +08:00			`int printConfiguration( t55xx_conf_block_t b);`
Added block command for T55xx and support for cloning HID long format 2013-01-16 18:42:29 +08:00
fixes.. to bool 2017-07-12 00:31:10 +08:00			`bool DecodeT55xxBlock(void);`
			`bool tryDetectModulation(void);`
ADD: 'lf t55xx detect' - added a search for known config blocks, if found it will select it. Usually when indala (psk) configured tags generates serveral possible configblocks. The found config block is set, not need to manually set it anymore. :) 2017-01-18 05:07:40 +08:00			`bool testKnownConfigBlock(uint32_t block0);`
monster merge... all those changes marshmellow did.. and more... 2017-07-30 15:17:48 +08:00			`extern bool tryDetectP1(bool getData);`
@marshmellows last LF changes. - wipe a t55x7 tag - stable demods - 2015-11-20 23:56:43 +08:00			`bool test(uint8_t mode, uint8_t offset, int fndBitRate, uint8_t clk, bool *Q5);`
lf t5 read plus lf demod adjustments lf t5xx commands updated from ICEMAN lf em410x commands updated lf search bug fix for 2 args test scripts from iceman lf demod: better ask clock detection with Strong fully clipped waves better ask raw demod with strong fully clipped waves fsk demod add back in skipped bits during demod nrz demod add back in skipped bits during demod 2015-03-23 03:28:48 +08:00			`int special(const char *Cmd);`
CHG: 'lf search' - hitag/cotag wrong return values CHG: is_justnoise - safety checks CHG: 'hitag reader' - debug printing 2017-10-31 05:20:08 +08:00			`bool AquireData( uint8_t page, uint8_t block, bool pwdmode, uint32_t password );`
ADD: 'lf t55xx deviceconfig' - command that allows for setting t55xx timings via the client. If run on a RDV40, it also saves the config to flashmemory. This gives you option to have custom timings for your custom antenna in order for your RDV40 to work optimal against a t55xx tag and with your custom antenna. (@iceman) 2018-09-12 00:35:07 +08:00			`bool AquireDataEx( uint8_t page, uint8_t block, bool pwdmode, uint32_t password, uint32_t timing ) ;`
Added block command for T55xx and support for cloning HID long format 2013-01-16 18:42:29 +08:00
ADD: @go_tus simple bruteforce for t55xx, refactored a bit. ADD: @pwpiwi 's implementation of Hardnested 2015-11-27 23:24:00 +08:00			`bool detectPassword(int password);`
added @broken_bad's imp of showing T555/Q5 trace data. (with my modifications ;) ) 2016-01-04 00:16:06 +08:00
ADD: Added @marshmellow42 's new ST (sequence terminator detection) 2016-02-20 05:30:19 +08:00			`void printT55x7Trace( t55x7_tracedata_t data, uint8_t repeat );`
added @broken_bad's imp of showing T555/Q5 trace data. (with my modifications ;) ) 2016-01-04 00:16:06 +08:00			`void printT5555Trace( t5555_tracedata_t data, uint8_t repeat );`

Added block command for T55xx and support for cloning HID long format 2013-01-16 18:42:29 +08:00			`#endif`