2017-10-10 20:24:14 +08:00
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
|
// Copyright (C) 2017 October, Satsuoni
|
|
|
|
|
// 2017 iceman
|
|
|
|
|
// This code is licensed to you under the terms of the GNU GPL, version 2 or,
|
|
|
|
|
// at your option, any later version. See the LICENSE.txt file for the text of
|
|
|
|
|
// the license.
|
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
|
// High frequency ISO18092 / FeliCa commands
|
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
|
#include "cmdhffelica.h"
|
|
|
|
|
|
2019-08-08 22:57:33 +08:00
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
#include <ctype.h>
|
2019-10-06 05:56:19 +08:00
|
|
|
#include <inttypes.h>
|
2019-08-08 22:57:33 +08:00
|
|
|
|
|
|
|
|
#include "cmdparser.h" // command_t
|
|
|
|
|
#include "comms.h"
|
|
|
|
|
#include "cmdtrace.h"
|
|
|
|
|
#include "crc16.h"
|
|
|
|
|
|
|
|
|
|
#include "ui.h"
|
|
|
|
|
#include "mifare.h" // felica_card_select_t struct
|
|
|
|
|
|
2017-10-10 20:24:14 +08:00
|
|
|
static int CmdHelp(const char *Cmd);
|
|
|
|
|
|
2019-08-04 01:52:03 +08:00
|
|
|
/*
|
2019-04-10 19:06:05 +08:00
|
|
|
static int usage_hf_felica_sim(void) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "\n Emulating ISO/18092 FeliCa tag \n");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica sim [h] t <type> [v]");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Options:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " h : This help");
|
|
|
|
|
PrintAndLogEx(NORMAL, " t : 1 = FeliCa");
|
|
|
|
|
PrintAndLogEx(NORMAL, " : 2 = FeliCaLiteS");
|
|
|
|
|
PrintAndLogEx(NORMAL, " v : (Optional) Verbose");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Examples:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " hf felica sim t 1 ");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
2019-08-04 01:52:03 +08:00
|
|
|
*/
|
2019-10-16 20:17:52 +08:00
|
|
|
|
2019-04-10 19:06:05 +08:00
|
|
|
static int usage_hf_felica_sniff(void) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "It get data from the field and saves it into command buffer.");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Buffer accessible from command 'hf list felica'");
|
2019-10-21 00:28:07 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica sniff <s> <t>");
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, " s samples to skip (decimal)");
|
|
|
|
|
PrintAndLogEx(NORMAL, " t triggers to skip (decimal)");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Examples:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " hf felica sniff s 1000");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-21 02:27:44 +08:00
|
|
|
}
|
2019-04-10 19:06:05 +08:00
|
|
|
static int usage_hf_felica_simlite(void) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "\n Emulating ISO/18092 FeliCa Lite tag \n");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica litesim [h] u <uid>");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Options:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " h : This help");
|
|
|
|
|
PrintAndLogEx(NORMAL, " uid : UID in hexsymbol");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Examples:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " hf felica litesim 11223344556677");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-21 02:27:44 +08:00
|
|
|
}
|
2019-04-10 19:06:05 +08:00
|
|
|
static int usage_hf_felica_dumplite(void) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "\n Dump ISO/18092 FeliCa Lite tag \n");
|
|
|
|
|
PrintAndLogEx(NORMAL, "press button to abort run, otherwise it will loop for 200sec.");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica litedump [h]");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Options:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " h : This help");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Examples:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " hf felica litedump");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
2019-04-10 19:06:05 +08:00
|
|
|
static int usage_hf_felica_raw(void) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica raw [-h] [-r] [-c] [-p] [-a] <0A 0B 0C ... hex>");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -h this help");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -r do not read response");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -c calculate and append CRC");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -p leave the signal field ON after receive");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -a active signal field ON without select");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -s active signal field ON with select");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-10-21 00:28:07 +08:00
|
|
|
static int usage_hf_felica_request_service(void) {
|
|
|
|
|
PrintAndLogEx(NORMAL, "\nInfo: Use this command to verify the existence of Area and Service, and to acquire Key Version:");
|
|
|
|
|
PrintAndLogEx(NORMAL, " - When the specified Area or Service exists, the card returns Key Version.");
|
|
|
|
|
PrintAndLogEx(NORMAL, " - When the specified Area or Service does not exist, the card returns FFFFh as Key Version.");
|
|
|
|
|
PrintAndLogEx(NORMAL, "\nUsage: hf felica rqservice [-h] <0A 0B 0C ... IDm hex> <01 Number of Node hex> <0A 0B Node Code List hex (Little Endian)> <0A 0B CRC hex>");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -h this help");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -c calculate and append CRC");
|
2019-10-21 02:26:00 +08:00
|
|
|
PrintAndLogEx(NORMAL, "\nExample: hf felica rqservice 01100910c11bc407 01 FFFF 2837\n\n");
|
2019-10-21 00:40:16 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-21 00:28:07 +08:00
|
|
|
}
|
|
|
|
|
|
2019-10-21 02:26:00 +08:00
|
|
|
/*
|
|
|
|
|
* Parses line spacing and tabs.
|
|
|
|
|
* Returns 1 if the given char is a space or tab
|
|
|
|
|
*/
|
|
|
|
|
static int parse_cmd_parameter_separator(const char *Cmd, int i){
|
|
|
|
|
return Cmd[i] == ' ' || Cmd[i] == '\t' ? 1 : 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Counts and sets the number of commands.
|
|
|
|
|
*/
|
|
|
|
|
static void strip_cmds(const char *Cmd){
|
|
|
|
|
PrintAndLogEx(NORMAL, "CMD count: %i", strlen(Cmd));
|
|
|
|
|
while (*Cmd == ' ' || *Cmd == '\t'){
|
|
|
|
|
PrintAndLogEx(NORMAL, "CMD: %s", Cmd);
|
|
|
|
|
Cmd++;
|
|
|
|
|
}
|
|
|
|
|
PrintAndLogEx(NORMAL, "CMD string: %s", Cmd);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Checks if a char is a hex value.
|
|
|
|
|
* @param Cmd
|
|
|
|
|
* @return one if it is a valid hex char. Zero if not a valid hex char.
|
|
|
|
|
*/
|
|
|
|
|
static bool is_hex_input(const char *Cmd, int i){
|
|
|
|
|
return (Cmd[i] >= '0' && Cmd[i] <= '9') || (Cmd[i] >= 'a' && Cmd[i] <= 'f') || (Cmd[i] >= 'A' && Cmd[i] <= 'F') ? 1 : 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param Extracts the data from the cmd and puts it into the data array.
|
|
|
|
|
*/
|
|
|
|
|
static void get_cmd_data(const char *Cmd, int i, uint16_t datalen, uint8_t *data, char buf[]){
|
|
|
|
|
uint32_t temp;
|
|
|
|
|
if (strlen(buf) >= 2) {
|
|
|
|
|
sscanf(buf, "%x", &temp);
|
|
|
|
|
data[datalen] = (uint8_t)(temp & 0xff);
|
|
|
|
|
*buf = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-10-16 20:17:52 +08:00
|
|
|
static int usage_hf_felica_dump(void) {
|
|
|
|
|
PrintAndLogEx(NORMAL, "Usage: hf felica dump [-h] <outputfile>");
|
|
|
|
|
PrintAndLogEx(NORMAL, " -h this help");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-16 20:17:52 +08:00
|
|
|
}
|
|
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaList(const char *Cmd) {
|
2019-04-10 18:23:40 +08:00
|
|
|
(void)Cmd; // Cmd is not used so far
|
2019-03-10 06:35:06 +08:00
|
|
|
//PrintAndLogEx(NORMAL, "Deprecated command, use 'hf list felica' instead");
|
|
|
|
|
CmdTraceList("felica");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaReader(const char *Cmd) {
|
2019-10-18 04:24:32 +08:00
|
|
|
bool verbose = !(tolower(Cmd[0]) == 's');
|
2019-10-18 03:58:57 +08:00
|
|
|
return readFelicaUid(verbose);
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-10-16 20:17:52 +08:00
|
|
|
static int CmdHFFelicaDump(const char *Cmd) {
|
|
|
|
|
if (strlen(Cmd) < 1) return usage_hf_felica_dump();
|
2019-10-18 03:58:57 +08:00
|
|
|
return dump(*Cmd);
|
2019-10-21 00:28:07 +08:00
|
|
|
clearCommandBuffer();
|
|
|
|
|
char ctmp = tolower(param_getchar(Cmd, 0));
|
|
|
|
|
if (ctmp == 'h') return usage_hf_felica_dumplite();
|
|
|
|
|
dump();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2019-10-21 02:26:00 +08:00
|
|
|
/**
|
|
|
|
|
* Command parser for rqservice.
|
|
|
|
|
* @param Cmd input data of the user.
|
|
|
|
|
* @return client result code.
|
|
|
|
|
*/
|
2019-10-21 00:28:07 +08:00
|
|
|
static int CmdHFFelicaRequestService(const char *Cmd) {
|
|
|
|
|
if (strlen(Cmd) < 2) return usage_hf_felica_request_service();
|
|
|
|
|
int i = 0;
|
|
|
|
|
uint8_t data[PM3_CMD_DATA_SIZE];
|
2019-10-21 02:26:00 +08:00
|
|
|
bool crc = false;
|
|
|
|
|
bool length = false;
|
2019-10-21 00:28:07 +08:00
|
|
|
uint16_t datalen = 0;
|
2019-10-21 02:26:00 +08:00
|
|
|
char buf[5] = "";
|
|
|
|
|
|
|
|
|
|
strip_cmds(Cmd);
|
2019-10-21 00:28:07 +08:00
|
|
|
while (Cmd[i] != '\0') {
|
2019-10-21 02:26:00 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Parse String %s: ", Cmd);
|
|
|
|
|
PrintAndLogEx(NORMAL, "i = %i: ", i);
|
2019-10-21 00:28:07 +08:00
|
|
|
if (Cmd[i] == '-') {
|
|
|
|
|
switch (Cmd[i + 1]) {
|
|
|
|
|
case 'H':
|
|
|
|
|
case 'h':
|
|
|
|
|
return usage_hf_felica_raw();
|
|
|
|
|
case 'c':
|
|
|
|
|
crc = true;
|
|
|
|
|
break;
|
2019-10-21 02:26:00 +08:00
|
|
|
case 'l':
|
|
|
|
|
length = true;
|
|
|
|
|
break;
|
2019-10-21 00:28:07 +08:00
|
|
|
default:
|
|
|
|
|
return usage_hf_felica_raw();
|
|
|
|
|
}
|
|
|
|
|
i += 2;
|
|
|
|
|
}
|
2019-10-21 02:26:00 +08:00
|
|
|
PrintAndLogEx(NORMAL, "i after single params = %i: ", i);
|
|
|
|
|
i = i + parse_cmd_parameter_separator(Cmd, i);
|
|
|
|
|
PrintAndLogEx(NORMAL, "i after cnd separator: %i", i);
|
|
|
|
|
if (is_hex_input(Cmd, i)){
|
2019-10-21 00:28:07 +08:00
|
|
|
buf[strlen(buf) + 1] = 0;
|
|
|
|
|
buf[strlen(buf)] = Cmd[i];
|
|
|
|
|
i++;
|
2019-10-21 02:26:00 +08:00
|
|
|
PrintAndLogEx(NORMAL, "i after is hex input: %i", i);
|
|
|
|
|
get_cmd_data(Cmd, i, datalen, data, buf);
|
|
|
|
|
|
|
|
|
|
}else {
|
2019-10-21 00:28:07 +08:00
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
request_service();
|
|
|
|
|
clearCommandBuffer();
|
2019-10-21 02:26:00 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-21 00:28:07 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int CmdHFFelicaNotImplementedYet(const char *Cmd) {
|
|
|
|
|
PrintAndLogEx(NORMAL, "Feature not implemented Yet!");
|
2019-10-21 02:26:00 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-16 20:17:52 +08:00
|
|
|
}
|
|
|
|
|
|
2017-10-10 20:24:14 +08:00
|
|
|
// simulate iso18092 / FeliCa tag
|
2019-08-04 01:52:03 +08:00
|
|
|
// Commented, there is no counterpart in ARM at the moment
|
|
|
|
|
/*
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaSim(const char *Cmd) {
|
2019-03-10 06:35:06 +08:00
|
|
|
bool errors = false;
|
|
|
|
|
uint8_t flags = 0;
|
|
|
|
|
uint8_t tagtype = 1;
|
|
|
|
|
uint8_t cmdp = 0;
|
2019-03-10 07:00:59 +08:00
|
|
|
uint8_t uid[10] = {0, 0, 0, 0, 0, 0, 0, 0, 0, 0};
|
2019-03-10 06:35:06 +08:00
|
|
|
int uidlen = 0;
|
|
|
|
|
bool verbose = false;
|
|
|
|
|
|
|
|
|
|
while (param_getchar(Cmd, cmdp) != 0x00 && !errors) {
|
|
|
|
|
switch (param_getchar(Cmd, cmdp)) {
|
|
|
|
|
case 'h':
|
|
|
|
|
case 'H':
|
|
|
|
|
return usage_hf_felica_sim();
|
|
|
|
|
case 't':
|
|
|
|
|
case 'T':
|
|
|
|
|
// Retrieve the tag type
|
2019-03-10 07:00:59 +08:00
|
|
|
tagtype = param_get8ex(Cmd, cmdp + 1, 0, 10);
|
2019-03-10 06:35:06 +08:00
|
|
|
if (tagtype == 0)
|
|
|
|
|
errors = true;
|
|
|
|
|
cmdp += 2;
|
|
|
|
|
break;
|
|
|
|
|
case 'u':
|
|
|
|
|
case 'U':
|
|
|
|
|
// Retrieve the full 4,7,10 byte long uid
|
2019-03-10 07:00:59 +08:00
|
|
|
param_gethex_ex(Cmd, cmdp + 1, uid, &uidlen);
|
2019-03-10 06:35:06 +08:00
|
|
|
if (!errors) {
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Emulating ISO18092/FeliCa tag with %d byte UID (%s)", uidlen >> 1, sprint_hex(uid, uidlen >> 1));
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
cmdp += 2;
|
|
|
|
|
break;
|
|
|
|
|
case 'v':
|
|
|
|
|
case 'V':
|
|
|
|
|
verbose = true;
|
|
|
|
|
cmdp++;
|
|
|
|
|
break;
|
|
|
|
|
case 'e':
|
|
|
|
|
case 'E':
|
|
|
|
|
cmdp++;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
PrintAndLogEx(WARNING, "Unknown parameter '%c'", param_getchar(Cmd, cmdp));
|
|
|
|
|
errors = true;
|
|
|
|
|
break;
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//Validations
|
|
|
|
|
if (errors || cmdp == 0) return usage_hf_felica_sim();
|
|
|
|
|
|
|
|
|
|
clearCommandBuffer();
|
2019-08-04 01:17:00 +08:00
|
|
|
SendCommandOLD(CMD_HF_FELICA_SIMULATE, tagtype, flags, 0, uid, uidlen >> 1);
|
2019-04-18 18:43:35 +08:00
|
|
|
PacketResponseNG resp;
|
2019-03-10 06:35:06 +08:00
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
if (verbose)
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Press pm3-button to abort simulation");
|
|
|
|
|
|
2019-07-11 19:01:34 +08:00
|
|
|
while (!kbd_enter_pressed()) {
|
2019-03-10 07:00:59 +08:00
|
|
|
if (!WaitForResponseTimeout(CMD_ACK, &resp, 1500)) continue;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
2019-08-04 01:52:03 +08:00
|
|
|
*/
|
2017-10-10 20:24:14 +08:00
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaSniff(const char *Cmd) {
|
2019-03-10 06:35:06 +08:00
|
|
|
uint8_t cmdp = 0;
|
|
|
|
|
uint64_t samples2skip = 0;
|
|
|
|
|
uint64_t triggers2skip = 0;
|
|
|
|
|
bool errors = false;
|
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
while (param_getchar(Cmd, cmdp) != 0x00 && !errors) {
|
|
|
|
|
switch (param_getchar(Cmd, cmdp)) {
|
|
|
|
|
case 'h':
|
|
|
|
|
case 'H':
|
|
|
|
|
return usage_hf_felica_sniff();
|
|
|
|
|
case 's':
|
|
|
|
|
case 'S':
|
|
|
|
|
samples2skip = param_get32ex(Cmd, cmdp + 1, 0, 10);
|
|
|
|
|
cmdp += 2;
|
|
|
|
|
break;
|
|
|
|
|
case 't':
|
|
|
|
|
case 'T':
|
|
|
|
|
triggers2skip = param_get32ex(Cmd, cmdp + 1, 0, 10);
|
|
|
|
|
cmdp += 2;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
PrintAndLogEx(WARNING, "Unknown parameter '%c'", param_getchar(Cmd, cmdp));
|
|
|
|
|
errors = true;
|
|
|
|
|
break;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
//Validations
|
|
|
|
|
if (errors || cmdp == 0) return usage_hf_felica_sniff();
|
|
|
|
|
|
|
|
|
|
clearCommandBuffer();
|
2019-08-04 01:17:00 +08:00
|
|
|
SendCommandMIX(CMD_HF_FELICA_SNIFF, samples2skip, triggers2skip, 0, NULL, 0);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-21 02:27:44 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// uid hex
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaSimLite(const char *Cmd) {
|
2019-03-10 06:35:06 +08:00
|
|
|
uint64_t uid = param_get64ex(Cmd, 0, 0, 16);
|
2017-10-21 02:27:44 +08:00
|
|
|
|
|
|
|
|
if (!uid)
|
2019-03-10 06:35:06 +08:00
|
|
|
return usage_hf_felica_simlite();
|
2019-03-09 15:59:13 +08:00
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
clearCommandBuffer();
|
2019-08-04 01:17:00 +08:00
|
|
|
SendCommandMIX(CMD_HF_FELICALITE_SIMULATE, uid, 0, 0, NULL, 0);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-21 02:27:44 +08:00
|
|
|
}
|
2019-03-09 15:59:13 +08:00
|
|
|
|
2019-03-10 18:20:22 +08:00
|
|
|
static void printSep() {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(NORMAL, "------------------------------------------------------------------------------------");
|
2018-01-06 00:39:04 +08:00
|
|
|
}
|
2018-02-01 22:19:47 +08:00
|
|
|
|
2019-04-14 03:54:04 +08:00
|
|
|
static uint16_t PrintFliteBlock(uint16_t tracepos, uint8_t *trace, uint16_t tracelen) {
|
2019-03-10 07:00:59 +08:00
|
|
|
if (tracepos + 19 >= tracelen)
|
2019-03-10 06:35:06 +08:00
|
|
|
return tracelen;
|
|
|
|
|
|
|
|
|
|
trace += tracepos;
|
|
|
|
|
uint8_t blocknum = trace[0];
|
|
|
|
|
uint8_t status1 = trace[1];
|
|
|
|
|
uint8_t status2 = trace[2];
|
|
|
|
|
|
|
|
|
|
char line[110] = {0};
|
|
|
|
|
for (int j = 0; j < 16; j++) {
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(line + (j * 4), sizeof(line) - 1 - (j * 4), "%02x ", trace[j + 3]);
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "block number %02x, status: %02x %02x", blocknum, status1, status2);
|
2019-03-10 06:35:06 +08:00
|
|
|
switch (blocknum) {
|
2019-03-10 07:00:59 +08:00
|
|
|
case 0x00:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD0: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x01:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD1: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x02:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD2: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x03:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD3: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x04:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD4: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x05:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD5: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x06:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD6: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x07:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD7: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x08:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD8: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x09:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD9: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x0a:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD10: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x0b:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD11: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x0c:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD12: %s", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x0d:
|
|
|
|
|
PrintAndLogEx(NORMAL, "S_PAD13: %s", line);
|
|
|
|
|
break;
|
2019-03-10 06:35:06 +08:00
|
|
|
case 0x0E: {
|
|
|
|
|
uint32_t regA = trace[3] | trace[4] << 8 | trace[5] << 16 | trace[ 6] << 24;
|
|
|
|
|
uint32_t regB = trace[7] | trace[8] << 8 | trace[9] << 16 | trace[10] << 24;
|
|
|
|
|
line[0] = 0;
|
|
|
|
|
for (int j = 0; j < 8; j++)
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(line + (j * 2), sizeof(line) - 1 - (j * 2), "%02x", trace[j + 11]);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "REG: regA: %d regB: %d regC: %s ", regA, regB, line);
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
2019-03-10 07:00:59 +08:00
|
|
|
case 0x80:
|
|
|
|
|
PrintAndLogEx(NORMAL, "Random Challenge, WO: %s ", line);
|
|
|
|
|
break;
|
|
|
|
|
case 0x81:
|
|
|
|
|
PrintAndLogEx(NORMAL, "MAC, only set on dual read: %s ", line);
|
|
|
|
|
break;
|
2019-03-10 06:35:06 +08:00
|
|
|
case 0x82: {
|
|
|
|
|
char idd[20];
|
|
|
|
|
char idm[20];
|
|
|
|
|
for (int j = 0; j < 8; j++)
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(idd + (j * 2), sizeof(idd) - 1 - (j * 2), "%02x", trace[j + 3]);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
for (int j = 0; j < 6; j++)
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(idm + (j * 2), sizeof(idm) - 1 - (j * 2), "%02x", trace[j + 13]);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "ID Block, IDd: 0x%s DFC: 0x%02x%02x Arb: %s ", idd, trace[11], trace [12], idm);
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
case 0x83: {
|
|
|
|
|
char idm[20];
|
|
|
|
|
char pmm[20];
|
|
|
|
|
for (int j = 0; j < 8; j++)
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(idm + (j * 2), sizeof(idm) - 1 - (j * 2), "%02x", trace[j + 3]);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
for (int j = 0; j < 8; j++)
|
2019-03-10 07:00:59 +08:00
|
|
|
snprintf(pmm + (j * 2), sizeof(pmm) - 1 - (j * 2), "%02x", trace[j + 11]);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "DeviceId: IDm: 0x%s PMm: 0x%s ", idm, pmm);
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
2019-03-10 07:00:59 +08:00
|
|
|
case 0x84:
|
|
|
|
|
PrintAndLogEx(NORMAL, "SER_C: 0x%02x%02x ", trace[3], trace[4]);
|
|
|
|
|
break;
|
|
|
|
|
case 0x85:
|
|
|
|
|
PrintAndLogEx(NORMAL, "SYS_Cl 0x%02x%02x ", trace[3], trace[4]);
|
|
|
|
|
break;
|
|
|
|
|
case 0x86:
|
|
|
|
|
PrintAndLogEx(NORMAL, "CKV (key version): 0x%02x%02x ", trace[3], trace[4]);
|
|
|
|
|
break;
|
|
|
|
|
case 0x87:
|
|
|
|
|
PrintAndLogEx(NORMAL, "CK (card key), WO: %s ", line);
|
|
|
|
|
break;
|
2019-03-10 06:35:06 +08:00
|
|
|
case 0x88: {
|
|
|
|
|
PrintAndLogEx(NORMAL, "Memory Configuration (MC):");
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "MAC needed to write state: %s", trace[3 + 12] ? "on" : "off");
|
2019-03-10 06:35:06 +08:00
|
|
|
//order might be off here...
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Write with MAC for S_PAD : %s ", sprint_bin(trace + 3 + 10, 2));
|
|
|
|
|
PrintAndLogEx(NORMAL, "Write with AUTH for S_PAD : %s ", sprint_bin(trace + 3 + 8, 2));
|
|
|
|
|
PrintAndLogEx(NORMAL, "Read after AUTH for S_PAD : %s ", sprint_bin(trace + 3 + 6, 2));
|
|
|
|
|
PrintAndLogEx(NORMAL, "MAC needed to write CK and CKV: %s", trace[3 + 5] ? "on" : "off");
|
|
|
|
|
PrintAndLogEx(NORMAL, "RF parameter: %02x", (trace[3 + 4] & 0x7));
|
|
|
|
|
PrintAndLogEx(NORMAL, "Compatible with NDEF: %s", trace[3 + 3] ? "yes" : "no");
|
|
|
|
|
PrintAndLogEx(NORMAL, "Memory config writable : %s", (trace[3 + 2] == 0xff) ? "yes" : "no");
|
|
|
|
|
PrintAndLogEx(NORMAL, "RW access for S_PAD : %s ", sprint_bin(trace + 3, 2));
|
|
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
case 0x90: {
|
2018-02-21 14:47:33 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Write count, RO: %02x %02x %02x ", trace[3], trace[4], trace[5]);
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
case 0x91: {
|
2018-02-21 14:47:33 +08:00
|
|
|
PrintAndLogEx(NORMAL, "MAC_A, RW (auth): %s ", line);
|
2019-03-10 07:00:59 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
case 0x92:
|
2018-02-21 14:47:33 +08:00
|
|
|
PrintAndLogEx(NORMAL, "State:");
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Polling disabled: %s", trace[3 + 8] ? "yes" : "no");
|
2018-02-21 14:47:33 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Authenticated: %s", trace[3] ? "yes" : "no");
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
case 0xa0:
|
2019-10-16 20:17:52 +08:00
|
|
|
PrintAndLogEx(NORMAL, "CRC of all blocks match : %s", (trace[3 + 2] == 0xff) ? "no" : "yes");
|
2019-03-10 06:35:06 +08:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
PrintAndLogEx(WARNING, "INVALID %d: %s", blocknum, line);
|
2019-03-10 07:00:59 +08:00
|
|
|
break;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-03-10 07:00:59 +08:00
|
|
|
return tracepos + 19;
|
2017-10-21 02:27:44 +08:00
|
|
|
}
|
2017-10-10 20:24:14 +08:00
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
static int CmdHFFelicaDumpLite(const char *Cmd) {
|
2017-10-21 02:27:44 +08:00
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
char ctmp = tolower(param_getchar(Cmd, 0));
|
2019-03-10 07:00:59 +08:00
|
|
|
if (ctmp == 'h') return usage_hf_felica_dumplite();
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
PrintAndLogEx(SUCCESS, "FeliCa lite - dump started");
|
|
|
|
|
PrintAndLogEx(SUCCESS, "press pm3-button to cancel");
|
|
|
|
|
clearCommandBuffer();
|
2019-08-04 01:17:00 +08:00
|
|
|
SendCommandNG(CMD_HF_FELICALITE_DUMP, NULL, 0);
|
2019-04-18 18:43:35 +08:00
|
|
|
PacketResponseNG resp;
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
|
uint8_t timeout = 0;
|
2019-03-10 07:00:59 +08:00
|
|
|
while (!WaitForResponseTimeout(CMD_ACK, &resp, 2000)) {
|
2019-03-10 06:35:06 +08:00
|
|
|
timeout++;
|
2019-03-10 07:00:59 +08:00
|
|
|
printf(".");
|
|
|
|
|
fflush(stdout);
|
2019-07-11 19:01:34 +08:00
|
|
|
if (kbd_enter_pressed()) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(WARNING, "\n[!] aborted via keyboard!\n");
|
|
|
|
|
DropField();
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_EOPABORTED;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
if (timeout > 100) {
|
|
|
|
|
PrintAndLogEx(WARNING, "timeout while waiting for reply.");
|
|
|
|
|
DropField();
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ETIMEOUT;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
}
|
2019-04-18 05:44:48 +08:00
|
|
|
if (resp.oldarg[0] == 0) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(WARNING, "\nButton pressed. Aborted.");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_EOPABORTED;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
|
2019-10-06 05:56:19 +08:00
|
|
|
uint32_t tracelen = resp.oldarg[1];
|
2019-10-17 19:48:34 +08:00
|
|
|
if (tracelen == 0) {
|
2019-10-16 20:17:52 +08:00
|
|
|
PrintAndLogEx(WARNING, "\nNo trace data! Maybe not a FeliCa Lite card?");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ESOFT;
|
2019-10-16 20:17:52 +08:00
|
|
|
}
|
2019-03-19 05:14:07 +08:00
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
uint8_t *trace = calloc(tracelen, sizeof(uint8_t));
|
2019-03-10 07:00:59 +08:00
|
|
|
if (trace == NULL) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(WARNING, "Cannot allocate memory for trace");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_EMALLOC;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
|
|
2019-07-24 03:33:52 +08:00
|
|
|
if (!GetFromDevice(BIG_BUF, trace, tracelen, 0, NULL, 0, NULL, 2500, false)) {
|
2019-03-19 05:14:07 +08:00
|
|
|
PrintAndLogEx(WARNING, "command execution time out");
|
|
|
|
|
free(trace);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ETIMEOUT;
|
2019-03-19 05:14:07 +08:00
|
|
|
}
|
2019-03-10 06:35:06 +08:00
|
|
|
|
2019-10-16 20:17:52 +08:00
|
|
|
PrintAndLogEx(SUCCESS, "Recorded Activity (trace len = %"PRIu64" bytes)", tracelen);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
2019-03-19 05:14:07 +08:00
|
|
|
print_hex_break(trace, tracelen, 32);
|
|
|
|
|
printSep();
|
2019-03-28 21:19:41 +08:00
|
|
|
|
2019-03-19 05:14:07 +08:00
|
|
|
uint16_t tracepos = 0;
|
|
|
|
|
while (tracepos < tracelen)
|
|
|
|
|
tracepos = PrintFliteBlock(tracepos, trace, tracelen);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
2019-03-19 05:14:07 +08:00
|
|
|
printSep();
|
2018-01-06 00:39:04 +08:00
|
|
|
|
2019-03-28 21:19:41 +08:00
|
|
|
free(trace);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
static void waitCmdFelica(uint8_t iSelect) {
|
2019-04-18 18:43:35 +08:00
|
|
|
PacketResponseNG resp;
|
2019-04-13 00:41:14 +08:00
|
|
|
if (WaitForResponseTimeout(CMD_ACK, &resp, 2000)) {
|
2019-10-16 20:17:52 +08:00
|
|
|
uint16_t len = iSelect ? (resp.oldarg[1] & 0xffff) : (resp.oldarg[0] & 0xffff);
|
2019-10-17 17:46:59 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Client Received %i octets", len);
|
2019-04-13 00:41:14 +08:00
|
|
|
if (!len)
|
|
|
|
|
return;
|
2019-04-18 05:44:48 +08:00
|
|
|
PrintAndLogEx(NORMAL, "%s", sprint_hex(resp.data.asBytes, len));
|
2019-10-21 00:28:07 +08:00
|
|
|
if(!check_crc(CRC_FELICA, resp.data.asBytes + 2, len - 2)){
|
|
|
|
|
PrintAndLogEx(ERR, "Error: CRC of received bytes are incorrect!");
|
|
|
|
|
}
|
2019-04-13 00:41:14 +08:00
|
|
|
} else {
|
2019-10-17 17:46:59 +08:00
|
|
|
PrintAndLogEx(WARNING, "Timeout while waiting for reply.");
|
2019-04-13 00:41:14 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int CmdHFFelicaCmdRaw(const char *Cmd) {
|
2017-10-10 20:24:14 +08:00
|
|
|
bool reply = 1;
|
|
|
|
|
bool crc = false;
|
|
|
|
|
bool power = false;
|
|
|
|
|
bool active = false;
|
|
|
|
|
bool active_select = false;
|
|
|
|
|
uint16_t numbits = 0;
|
2019-03-10 07:00:59 +08:00
|
|
|
char buf[5] = "";
|
2017-10-10 20:24:14 +08:00
|
|
|
int i = 0;
|
2019-05-01 03:10:11 +08:00
|
|
|
uint8_t data[PM3_CMD_DATA_SIZE];
|
2019-03-10 06:35:06 +08:00
|
|
|
uint16_t datalen = 0;
|
|
|
|
|
uint32_t temp;
|
2017-10-10 20:24:14 +08:00
|
|
|
|
2019-03-19 05:16:05 +08:00
|
|
|
if (strlen(Cmd) < 2) return usage_hf_felica_raw();
|
2017-10-10 20:24:14 +08:00
|
|
|
|
|
|
|
|
// strip
|
2019-03-19 05:16:05 +08:00
|
|
|
while (*Cmd == ' ' || *Cmd == '\t') Cmd++;
|
2017-10-10 20:24:14 +08:00
|
|
|
|
2019-03-19 05:16:05 +08:00
|
|
|
while (Cmd[i] != '\0') {
|
|
|
|
|
if (Cmd[i] == ' ' || Cmd[i] == '\t') { i++; continue; }
|
|
|
|
|
if (Cmd[i] == '-') {
|
|
|
|
|
switch (Cmd[i + 1]) {
|
2019-03-10 06:35:06 +08:00
|
|
|
case 'H':
|
|
|
|
|
case 'h':
|
|
|
|
|
return usage_hf_felica_raw();
|
2019-03-09 15:59:13 +08:00
|
|
|
case 'r':
|
2017-10-10 20:24:14 +08:00
|
|
|
reply = false;
|
|
|
|
|
break;
|
|
|
|
|
case 'c':
|
|
|
|
|
crc = true;
|
|
|
|
|
break;
|
|
|
|
|
case 'p':
|
|
|
|
|
power = true;
|
|
|
|
|
break;
|
|
|
|
|
case 'a':
|
|
|
|
|
active = true;
|
|
|
|
|
break;
|
|
|
|
|
case 's':
|
|
|
|
|
active_select = true;
|
|
|
|
|
break;
|
2019-03-09 15:59:13 +08:00
|
|
|
case 'b':
|
2019-03-19 05:16:05 +08:00
|
|
|
sscanf(Cmd + i + 2, "%d", &temp);
|
2017-10-10 20:24:14 +08:00
|
|
|
numbits = temp & 0xFFFF;
|
2019-03-10 07:00:59 +08:00
|
|
|
i += 3;
|
2019-03-19 05:16:05 +08:00
|
|
|
while (Cmd[i] != ' ' && Cmd[i] != '\0') { i++; }
|
2019-03-10 07:00:59 +08:00
|
|
|
i -= 2;
|
2017-10-10 20:24:14 +08:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return usage_hf_felica_raw();
|
|
|
|
|
}
|
|
|
|
|
i += 2;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2019-03-19 05:16:05 +08:00
|
|
|
if ((Cmd[i] >= '0' && Cmd[i] <= '9') ||
|
|
|
|
|
(Cmd[i] >= 'a' && Cmd[i] <= 'f') ||
|
|
|
|
|
(Cmd[i] >= 'A' && Cmd[i] <= 'F')) {
|
2019-03-10 07:00:59 +08:00
|
|
|
buf[strlen(buf) + 1] = 0;
|
2019-03-19 05:16:05 +08:00
|
|
|
buf[strlen(buf)] = Cmd[i];
|
2017-10-10 20:24:14 +08:00
|
|
|
i++;
|
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
if (strlen(buf) >= 2) {
|
|
|
|
|
sscanf(buf, "%x", &temp);
|
|
|
|
|
data[datalen] = (uint8_t)(temp & 0xff);
|
|
|
|
|
*buf = 0;
|
|
|
|
|
if (++datalen >= sizeof(data)) {
|
2019-03-10 06:35:06 +08:00
|
|
|
if (crc)
|
|
|
|
|
PrintAndLogEx(NORMAL, "Buffer is full, we can't add CRC to your data");
|
|
|
|
|
break;
|
|
|
|
|
}
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2018-02-21 14:47:33 +08:00
|
|
|
PrintAndLogEx(WARNING, "Invalid char on input");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_EINVARG;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
if (crc && datalen > 0 && datalen < sizeof(data) - 2) {
|
2018-02-01 22:19:47 +08:00
|
|
|
uint8_t b1, b2;
|
2019-03-10 06:35:06 +08:00
|
|
|
compute_crc(CRC_FELICA, data, datalen, &b1, &b2);
|
2018-02-01 22:19:47 +08:00
|
|
|
data[datalen++] = b2;
|
2019-10-16 20:17:52 +08:00
|
|
|
data[datalen++] = b1;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-04-19 23:03:39 +08:00
|
|
|
uint8_t flags = 0;
|
2017-10-10 20:24:14 +08:00
|
|
|
if (active || active_select) {
|
2019-04-19 23:03:39 +08:00
|
|
|
flags |= FELICA_CONNECT;
|
2019-03-10 07:00:59 +08:00
|
|
|
if (active)
|
2019-04-19 23:03:39 +08:00
|
|
|
flags |= FELICA_NO_SELECT;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (power) {
|
2019-04-19 23:03:39 +08:00
|
|
|
flags |= FELICA_NO_DISCONNECT;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-03-09 15:59:13 +08:00
|
|
|
|
2018-02-01 22:19:47 +08:00
|
|
|
if (datalen > 0) {
|
2019-04-19 23:03:39 +08:00
|
|
|
flags |= FELICA_RAW;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-03-09 15:59:13 +08:00
|
|
|
|
2019-05-01 03:10:11 +08:00
|
|
|
// Max buffer is PM3_CMD_DATA_SIZE
|
|
|
|
|
datalen = (datalen > PM3_CMD_DATA_SIZE) ? PM3_CMD_DATA_SIZE : datalen;
|
2019-03-09 15:59:13 +08:00
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
clearCommandBuffer();
|
2019-10-17 17:46:59 +08:00
|
|
|
SendCommandMIX(CMD_HF_FELICA_COMMAND, flags, (datalen & 0xFFFF) | (uint32_t)(numbits << 16), 0, data, datalen);
|
2017-10-10 20:24:14 +08:00
|
|
|
|
|
|
|
|
if (reply) {
|
2019-10-17 19:48:34 +08:00
|
|
|
if (active_select) {
|
2019-10-16 20:17:52 +08:00
|
|
|
PrintAndLogEx(NORMAL, "Active select wait for FeliCa.");
|
2017-10-10 20:59:58 +08:00
|
|
|
waitCmdFelica(1);
|
2019-10-17 17:46:59 +08:00
|
|
|
}
|
2019-10-17 19:48:34 +08:00
|
|
|
if (datalen > 0) {
|
2017-10-10 20:59:58 +08:00
|
|
|
waitCmdFelica(0);
|
2019-10-17 17:46:59 +08:00
|
|
|
}
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-10-10 20:24:14 +08:00
|
|
|
}
|
|
|
|
|
|
2019-04-13 00:41:14 +08:00
|
|
|
int readFelicaUid(bool verbose) {
|
|
|
|
|
|
|
|
|
|
clearCommandBuffer();
|
2019-08-04 01:17:00 +08:00
|
|
|
SendCommandMIX(CMD_HF_FELICA_COMMAND, FELICA_CONNECT, 0, 0, NULL, 0);
|
2019-04-18 18:43:35 +08:00
|
|
|
PacketResponseNG resp;
|
2019-04-13 00:41:14 +08:00
|
|
|
if (!WaitForResponseTimeout(CMD_ACK, &resp, 2500)) {
|
|
|
|
|
if (verbose) PrintAndLogEx(WARNING, "FeliCa card select failed");
|
2019-08-04 01:17:00 +08:00
|
|
|
//SendCommandMIX(CMD_HF_FELICA_COMMAND, 0, 0, 0, NULL, 0);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ESOFT;
|
2019-04-13 00:41:14 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
felica_card_select_t card;
|
2019-04-18 05:44:48 +08:00
|
|
|
memcpy(&card, (felica_card_select_t *)resp.data.asBytes, sizeof(felica_card_select_t));
|
|
|
|
|
uint64_t status = resp.oldarg[0];
|
2019-04-13 00:41:14 +08:00
|
|
|
|
|
|
|
|
switch (status) {
|
|
|
|
|
case 1: {
|
|
|
|
|
if (verbose)
|
|
|
|
|
PrintAndLogEx(WARNING, "card timeout");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ETIMEOUT;
|
2019-04-13 00:41:14 +08:00
|
|
|
}
|
|
|
|
|
case 2: {
|
|
|
|
|
if (verbose)
|
|
|
|
|
PrintAndLogEx(WARNING, "card answered wrong");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ESOFT;
|
2019-04-13 00:41:14 +08:00
|
|
|
}
|
|
|
|
|
case 3: {
|
|
|
|
|
if (verbose)
|
|
|
|
|
PrintAndLogEx(WARNING, "CRC check failed");
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_ESOFT;
|
2019-04-13 00:41:14 +08:00
|
|
|
}
|
|
|
|
|
case 0: {
|
2019-10-18 03:58:57 +08:00
|
|
|
PrintAndLogEx(NORMAL, "");
|
2019-04-13 00:41:14 +08:00
|
|
|
PrintAndLogEx(SUCCESS, "FeliCa tag info");
|
|
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "IDm %s", sprint_hex(card.IDm, sizeof(card.IDm)));
|
|
|
|
|
PrintAndLogEx(NORMAL, " - CODE %s", sprint_hex(card.code, sizeof(card.code)));
|
|
|
|
|
PrintAndLogEx(NORMAL, " - NFCID2 %s", sprint_hex(card.uid, sizeof(card.uid)));
|
|
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "Parameter (PAD) | %s", sprint_hex(card.PMm, sizeof(card.PMm)));
|
|
|
|
|
PrintAndLogEx(NORMAL, " - IC CODE %s", sprint_hex(card.iccode, sizeof(card.iccode)));
|
|
|
|
|
PrintAndLogEx(NORMAL, " - MRT %s", sprint_hex(card.mrt, sizeof(card.mrt)));
|
|
|
|
|
|
|
|
|
|
PrintAndLogEx(NORMAL, "SERVICE CODE %s", sprint_hex(card.servicecode, sizeof(card.servicecode)));
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-03-12 07:12:26 +08:00
|
|
|
}
|
2019-10-16 20:17:52 +08:00
|
|
|
|
2019-10-21 00:28:07 +08:00
|
|
|
int request_service() {
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-16 20:17:52 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static command_t CommandTable[] = {
|
2019-10-21 00:28:07 +08:00
|
|
|
{"----------- General -----------", CmdHelp, IfPm3Iso14443a, ""},
|
2019-10-17 19:48:34 +08:00
|
|
|
{"help", CmdHelp, AlwaysAvailable, "This help"},
|
|
|
|
|
{"list", CmdHFFelicaList, AlwaysAvailable, "List ISO 18092/FeliCa history"},
|
|
|
|
|
{"reader", CmdHFFelicaReader, IfPm3Felica, "Act like an ISO18092/FeliCa reader"},
|
2019-10-21 00:28:07 +08:00
|
|
|
{"sniff", CmdHFFelicaSniff, IfPm3Felica, "Sniff ISO 18092/FeliCa traffic"},
|
2019-10-17 19:48:34 +08:00
|
|
|
{"raw", CmdHFFelicaCmdRaw, IfPm3Felica, "Send raw hex data to tag"},
|
2019-10-21 00:28:07 +08:00
|
|
|
{"----------- FeliCa Standard (support in progress) -----------", CmdHelp, IfPm3Iso14443a, ""},
|
2019-10-21 02:26:00 +08:00
|
|
|
//{"dump", CmdHFFelicaDump, IfPm3Felica, "Wait for and try dumping FeliCa"},
|
2019-10-21 00:28:07 +08:00
|
|
|
{"rqservice", CmdHFFelicaRequestService, IfPm3Felica, "verify the existence of Area and Service, and to acquire Key Version."},
|
|
|
|
|
{"rqresponse", CmdHFFelicaNotImplementedYet, IfPm3Felica, "verify the existence of a card and its Mode."},
|
|
|
|
|
//{"rdNoEncryption", CmdHFFelicaNotImplementedYet, IfPm3Felica, "read Block Data from authentication-not-required Service."},
|
|
|
|
|
//{"wrNoEncryption", CmdHFFelicaNotImplementedYet, IfPm3Felica, "write Block Data to an authentication-required Service."},
|
|
|
|
|
//{"searchSvCode", CmdHFFelicaNotImplementedYet, IfPm3Felica, "acquire Area Code and Service Code."},
|
|
|
|
|
//{"rqSysCode", CmdHFFelicaNotImplementedYet, IfPm3Felica, "acquire System Code registered to the card."},
|
|
|
|
|
//{"auth1", CmdHFFelicaNotImplementedYet, IfPm3Felica, "authenticate a card."},
|
|
|
|
|
//{"auth2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "allow a card to authenticate a Reader/Writer."},
|
|
|
|
|
//{"read", CmdHFFelicaNotImplementedYet, IfPm3Felica, "read Block Data from authentication-required Service."},
|
|
|
|
|
//{"write", CmdHFFelicaNotImplementedYet, IfPm3Felica, "write Block Data to an authentication-required Service."},
|
|
|
|
|
//{"searchSvCodeV2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "verify the existence of Area or Service, and to acquire Key Version."},
|
|
|
|
|
//{"getSysStatus", CmdHFFelicaNotImplementedYet, IfPm3Felica, "acquire the setup information in System."},
|
|
|
|
|
//{"rqSpecVer", CmdHFFelicaNotImplementedYet, IfPm3Felica, "acquire the version of card OS."},
|
|
|
|
|
//{"resetMode", CmdHFFelicaNotImplementedYet, IfPm3Felica, "reset Mode to Mode 0."},
|
|
|
|
|
//{"auth1V2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "authenticate a card."},
|
|
|
|
|
//{"auth2V2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "allow a card to authenticate a Reader/Writer."},
|
|
|
|
|
//{"readV2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "read Block Data from authentication-required Service."},
|
|
|
|
|
//{"writeV2", CmdHFFelicaNotImplementedYet, IfPm3Felica, "write Block Data to authentication-required Service."},
|
|
|
|
|
//{"upRandomID", CmdHFFelicaNotImplementedYet, IfPm3Felica, "update Random ID (IDr)."},
|
|
|
|
|
{"----------- FeliCa Light -----------", CmdHelp, IfPm3Iso14443a, ""},
|
2019-10-17 19:48:34 +08:00
|
|
|
{"litesim", CmdHFFelicaSimLite, IfPm3Felica, "<NDEF2> - only reply to poll request"},
|
|
|
|
|
{"litedump", CmdHFFelicaDumpLite, IfPm3Felica, "Wait for and try dumping FelicaLite"},
|
2019-10-21 00:28:07 +08:00
|
|
|
// {"sim", CmdHFFelicaSim, IfPm3Felica, "<UID> -- Simulate ISO 18092/FeliCa tag"}
|
2019-10-17 19:48:34 +08:00
|
|
|
{NULL, NULL, NULL, NULL}
|
2019-10-16 20:17:52 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static int CmdHelp(const char *Cmd) {
|
|
|
|
|
(void)Cmd; // Cmd is not used so far
|
|
|
|
|
CmdsHelp(CommandTable);
|
2019-10-18 03:58:57 +08:00
|
|
|
return PM3_SUCCESS;
|
2019-10-16 20:17:52 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int CmdHFFelica(const char *Cmd) {
|
|
|
|
|
clearCommandBuffer();
|
|
|
|
|
return CmdsParse(CommandTable, Cmd);
|
|
|
|
|
}
|
