2019-03-09 15:49:41 +08:00
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
// Merlok, May 2011
|
|
|
|
// Many authors, that makes it possible
|
|
|
|
//
|
|
|
|
// This code is licensed to you under the terms of the GNU GPL, version 2 or,
|
|
|
|
// at your option, any later version. See the LICENSE.txt file for the text of
|
|
|
|
// the license.
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
// code for work with mifare cards.
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
|
|
|
|
#ifndef __MIFAREUTIL_H
|
|
|
|
#define __MIFAREUTIL_H
|
|
|
|
|
|
|
|
#include "proxmark3.h"
|
|
|
|
#include "apps.h"
|
|
|
|
#include "parity.h"
|
|
|
|
#include "util.h"
|
|
|
|
#include "string.h"
|
|
|
|
#include "iso14443a.h"
|
|
|
|
#include "crapto1/crapto1.h"
|
|
|
|
#include "des.h"
|
|
|
|
|
|
|
|
// mifare authentication
|
|
|
|
#define CRYPT_NONE 0
|
|
|
|
#define CRYPT_ALL 1
|
|
|
|
#define CRYPT_REQUEST 2
|
2019-03-09 15:59:13 +08:00
|
|
|
#define AUTH_FIRST 0
|
2019-03-09 15:49:41 +08:00
|
|
|
#define AUTH_NESTED 2
|
|
|
|
|
2019-03-10 03:34:41 +08:00
|
|
|
#define AUTHENTICATION_TIMEOUT 848 // card times out 1ms after wrong authentication (according to NXP documentation)
|
|
|
|
#define PRE_AUTHENTICATION_LEADTIME 400 // some (non standard) cards need a pause after select before they are ready for first authentication
|
2019-03-09 15:49:41 +08:00
|
|
|
|
2019-03-16 04:04:25 +08:00
|
|
|
// reader voltage field detector
|
|
|
|
#define MF_MINFIELDV 4000
|
2019-03-09 15:49:41 +08:00
|
|
|
|
2019-03-16 04:04:25 +08:00
|
|
|
// Mifare 4k/2k/1k/mini Max Block / Max Sector
|
|
|
|
#define MIFARE_4K_MAXBLOCK 256
|
|
|
|
#define MIFARE_2K_MAXBLOCK 128
|
|
|
|
#define MIFARE_1K_MAXBLOCK 64
|
|
|
|
#define MIFARE_MINI_MAXBLOCK 20
|
|
|
|
|
|
|
|
#define MIFARE_MINI_MAXSECTOR 5
|
|
|
|
#define MIFARE_1K_MAXSECTOR 16
|
|
|
|
#define MIFARE_2K_MAXSECTOR 32
|
|
|
|
#define MIFARE_4K_MAXSECTOR 40
|
2019-03-09 15:49:41 +08:00
|
|
|
|
|
|
|
//mifare emulator states
|
|
|
|
#define MFEMUL_NOFIELD 0
|
|
|
|
#define MFEMUL_IDLE 1
|
|
|
|
#define MFEMUL_SELECT1 2
|
|
|
|
#define MFEMUL_SELECT2 3
|
|
|
|
#define MFEMUL_SELECT3 4
|
|
|
|
#define MFEMUL_AUTH1 5
|
2019-03-10 03:34:41 +08:00
|
|
|
#define MFEMUL_WORK 7
|
2019-03-09 15:49:41 +08:00
|
|
|
#define MFEMUL_WRITEBL2 8
|
|
|
|
#define MFEMUL_INTREG_INC 9
|
|
|
|
#define MFEMUL_INTREG_DEC 10
|
|
|
|
#define MFEMUL_INTREG_REST 11
|
|
|
|
#define MFEMUL_HALTED 12
|
|
|
|
|
|
|
|
#define cardSTATE_TO_IDLE() cardSTATE = MFEMUL_IDLE; LED_B_OFF(); LED_C_OFF();
|
|
|
|
|
2019-04-05 04:17:01 +08:00
|
|
|
#ifndef MifareBlockToSector
|
|
|
|
#define MifareBlockToSector(block) (block < 128 ? block / 4 : (block - 128) / 16 + 32)
|
|
|
|
#endif
|
|
|
|
|
2013-10-11 16:43:23 +08:00
|
|
|
//functions
|
2019-03-10 07:00:59 +08:00
|
|
|
int mifare_sendcmd(uint8_t cmd, uint8_t *data, uint8_t data_size, uint8_t *answer, uint8_t *answer_parity, uint32_t *timing);
|
|
|
|
int mifare_sendcmd_short(struct Crypto1State *pcs, uint8_t crypted, uint8_t cmd, uint8_t data, uint8_t *answer, uint8_t *answer_parity, uint32_t *timing);
|
2013-10-11 16:43:23 +08:00
|
|
|
|
2019-03-09 15:49:41 +08:00
|
|
|
// mifare classic
|
|
|
|
int mifare_classic_auth(struct Crypto1State *pcs, uint32_t uid, uint8_t blockNo, uint8_t keyType, uint64_t ui64Key, uint8_t isNested);
|
2019-03-10 07:00:59 +08:00
|
|
|
int mifare_classic_authex(struct Crypto1State *pcs, uint32_t uid, uint8_t blockNo, uint8_t keyType, uint64_t ui64Key, uint8_t isNested, uint32_t *ntptr, uint32_t *timing);
|
2019-03-09 15:49:41 +08:00
|
|
|
int mifare_classic_readblock(struct Crypto1State *pcs, uint32_t uid, uint8_t blockNo, uint8_t *blockData);
|
2019-03-09 15:59:13 +08:00
|
|
|
int mifare_classic_halt(struct Crypto1State *pcs, uint32_t uid);
|
2019-03-09 15:49:41 +08:00
|
|
|
int mifare_classic_halt_ex(struct Crypto1State *pcs);
|
|
|
|
int mifare_classic_writeblock(struct Crypto1State *pcs, uint32_t uid, uint8_t blockNo, uint8_t *blockData);
|
|
|
|
|
|
|
|
// Ultralight/NTAG...
|
2019-04-07 02:35:58 +08:00
|
|
|
int mifare_ul_ev1_auth(uint8_t *keybytes, uint8_t *pack);
|
|
|
|
int mifare_ultra_auth(uint8_t *keybytes);
|
2019-03-09 15:49:41 +08:00
|
|
|
int mifare_ultra_readblock(uint8_t blockNo, uint8_t *blockData);
|
2015-05-28 05:23:46 +08:00
|
|
|
//int mifare_ultra_writeblock_compat(uint8_t blockNo, uint8_t *blockData);
|
2015-03-30 22:24:03 +08:00
|
|
|
int mifare_ultra_writeblock(uint8_t blockNo, uint8_t *blockData);
|
|
|
|
int mifare_ultra_halt();
|
2019-03-09 15:49:41 +08:00
|
|
|
|
|
|
|
// desfire
|
2019-03-10 07:00:59 +08:00
|
|
|
int mifare_sendcmd_special(struct Crypto1State *pcs, uint8_t crypted, uint8_t cmd, uint8_t *data, uint8_t *answer, uint8_t *answer_parity, uint32_t *timing);
|
|
|
|
int mifare_sendcmd_special2(struct Crypto1State *pcs, uint8_t crypted, uint8_t cmd, uint8_t *data, uint8_t *answer, uint8_t *answer_parity, uint32_t *timing);
|
2019-03-09 15:49:41 +08:00
|
|
|
int mifare_desfire_des_auth1(uint32_t uid, uint8_t *blockData);
|
|
|
|
int mifare_desfire_des_auth2(uint32_t uid, uint8_t *key, uint8_t *blockData);
|
2013-10-11 16:43:23 +08:00
|
|
|
|
|
|
|
// crypto functions
|
2019-04-07 02:35:58 +08:00
|
|
|
void mf_crypto1_decrypt(struct Crypto1State *pcs, uint8_t *data, int len);
|
2019-03-09 15:49:41 +08:00
|
|
|
void mf_crypto1_decryptEx(struct Crypto1State *pcs, uint8_t *data_in, int len, uint8_t *data_out);
|
|
|
|
void mf_crypto1_encrypt(struct Crypto1State *pcs, uint8_t *data, uint16_t len, uint8_t *par);
|
2019-04-05 04:17:01 +08:00
|
|
|
void mf_crypto1_encryptEx(struct Crypto1State *pcs, uint8_t *data_in, uint8_t *keystream, uint8_t *data_out, uint16_t len, uint8_t *par);
|
2019-03-09 15:49:41 +08:00
|
|
|
uint8_t mf_crypto1_encrypt4bit(struct Crypto1State *pcs, uint8_t data);
|
|
|
|
|
|
|
|
// Mifare memory structure
|
|
|
|
uint8_t NumBlocksPerSector(uint8_t sectorNo);
|
|
|
|
uint8_t FirstBlockOfSector(uint8_t sectorNo);
|
|
|
|
|
2019-03-16 04:04:25 +08:00
|
|
|
bool IsSectorTrailer(uint8_t blockNo);
|
|
|
|
uint8_t SectorTrailer(uint8_t blockNo);
|
|
|
|
|
2019-03-09 15:49:41 +08:00
|
|
|
// emulator functions
|
|
|
|
void emlClearMem(void);
|
|
|
|
void emlSetMem(uint8_t *data, int blockNum, int blocksCount);
|
|
|
|
void emlSetMem_xt(uint8_t *data, int blockNum, int blocksCount, int blockBtWidth);
|
|
|
|
void emlGetMem(uint8_t *data, int blockNum, int blocksCount);
|
|
|
|
void emlGetMemBt(uint8_t *data, int bytePtr, int byteCount);
|
|
|
|
uint64_t emlGetKey(int sectorNum, int keyType);
|
|
|
|
int emlGetValBl(uint32_t *blReg, uint8_t *blBlock, int blockNum);
|
2013-10-11 16:43:23 +08:00
|
|
|
int emlSetValBl(uint32_t blReg, uint8_t blBlock, int blockNum);
|
|
|
|
int emlCheckValBl(int blockNum);
|
|
|
|
|
|
|
|
#endif
|