2017-07-14 21:51:12 +08:00
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
//
|
|
|
|
// This code is licensed to you under the terms of the GNU GPL, version 2 or,
|
|
|
|
// at your option, any later version. See the LICENSE.txt file for the text of
|
|
|
|
// the license.
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
// Low frequency Securakey tag commands
|
|
|
|
// ASK/Manchester, RF/40, 96 bits long (unknown cs)
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
#include "cmdlfsecurakey.h"
|
|
|
|
|
|
|
|
static int CmdHelp(const char *Cmd);
|
|
|
|
|
|
|
|
//see ASKDemod for what args are accepted
|
2019-04-12 08:07:11 +08:00
|
|
|
static int CmdSecurakeyDemod(const char *Cmd) {
|
2019-04-10 18:23:40 +08:00
|
|
|
(void)Cmd; // Cmd is not used so far
|
2017-07-14 21:51:12 +08:00
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
//ASK / Manchester
|
|
|
|
bool st = false;
|
2019-05-22 20:32:30 +08:00
|
|
|
if (ASKDemod_ext("40 0 0", false, false, 1, &st) != PM3_SUCCESS) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error - Securakey: ASK/Manchester Demod failed");
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_ESOFT;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-06-08 03:40:33 +08:00
|
|
|
if (st)
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_ESOFT;
|
|
|
|
|
2019-03-10 06:35:06 +08:00
|
|
|
size_t size = DemodBufferLen;
|
|
|
|
int ans = detectSecurakey(DemodBuffer, &size);
|
|
|
|
if (ans < 0) {
|
|
|
|
if (ans == -1)
|
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error - Securakey: too few bits found");
|
|
|
|
else if (ans == -2)
|
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error - Securakey: preamble not found");
|
|
|
|
else if (ans == -3)
|
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error - Securakey: Size not correct: %d", size);
|
|
|
|
else
|
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error - Securakey: ans: %d", ans);
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_ESOFT;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
2019-04-07 03:46:00 +08:00
|
|
|
setDemodBuff(DemodBuffer, 96, ans);
|
2019-03-10 07:00:59 +08:00
|
|
|
setClockGrid(g_DemodClock, g_DemodStartIdx + (ans * g_DemodClock));
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
//got a good demod
|
2019-03-10 07:00:59 +08:00
|
|
|
uint32_t raw1 = bytebits_to_byte(DemodBuffer, 32);
|
|
|
|
uint32_t raw2 = bytebits_to_byte(DemodBuffer + 32, 32);
|
|
|
|
uint32_t raw3 = bytebits_to_byte(DemodBuffer + 64, 32);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
// 26 bit format
|
|
|
|
// preamble ??bitlen reserved EPx xxxxxxxy yyyyyyyy yyyyyyyOP CS? CS2?
|
|
|
|
// 0111111111 0 01011010 0 00000000 0 00000010 0 00110110 0 00111110 0 01100010 0 00001111 0 01100000 0 00000000 0 0000
|
|
|
|
|
|
|
|
// 32 bit format
|
|
|
|
// preamble ??bitlen reserved EPxxxxxxx xxxxxxxy yyyyyyyy yyyyyyyOP CS? CS2?
|
|
|
|
// 0111111111 0 01100000 0 00000000 0 10000100 0 11001010 0 01011011 0 01010110 0 00010110 0 11100000 0 00000000 0 0000
|
|
|
|
|
|
|
|
// x = FC?
|
|
|
|
// y = card #
|
|
|
|
// standard wiegand parities.
|
|
|
|
// unknown checksum 11 bits? at the end
|
|
|
|
uint8_t bits_no_spacer[85];
|
|
|
|
memcpy(bits_no_spacer, DemodBuffer + 11, 85);
|
|
|
|
|
|
|
|
// remove marker bits (0's every 9th digit after preamble) (pType = 3 (always 0s))
|
|
|
|
size = removeParity(bits_no_spacer, 0, 9, 3, 85);
|
2019-03-10 07:00:59 +08:00
|
|
|
if (size != 85 - 9) {
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error removeParity: %d", size);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
uint8_t bitLen = (uint8_t)bytebits_to_byte(bits_no_spacer + 2, 6);
|
|
|
|
uint32_t fc = 0, lWiegand = 0, rWiegand = 0;
|
2019-03-10 06:35:06 +08:00
|
|
|
if (bitLen > 40) { //securakey's max bitlen is 40 bits...
|
|
|
|
PrintAndLogEx(DEBUG, "DEBUG: Error bitLen too long: %u", bitLen);
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_ESOFT;
|
2019-03-10 06:35:06 +08:00
|
|
|
}
|
|
|
|
// get left 1/2 wiegand & right 1/2 wiegand (for parity test and wiegand print)
|
2019-03-10 07:00:59 +08:00
|
|
|
lWiegand = bytebits_to_byte(bits_no_spacer + 48 - bitLen, bitLen / 2);
|
|
|
|
rWiegand = bytebits_to_byte(bits_no_spacer + 48 - bitLen + bitLen / 2, bitLen / 2);
|
2019-03-10 06:35:06 +08:00
|
|
|
// get FC
|
2019-03-10 07:00:59 +08:00
|
|
|
fc = bytebits_to_byte(bits_no_spacer + 49 - bitLen, bitLen - 2 - 16);
|
2019-03-10 06:35:06 +08:00
|
|
|
|
|
|
|
// test bitLen
|
|
|
|
if (bitLen != 26 && bitLen != 32)
|
|
|
|
PrintAndLogEx(NORMAL, "***unknown securakey bitLen - share with forum***");
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
uint32_t cardid = bytebits_to_byte(bits_no_spacer + 8 + 23, 16);
|
2019-03-10 06:35:06 +08:00
|
|
|
// test parities - evenparity32 looks to add an even parity returns 0 if already even...
|
|
|
|
bool parity = !evenparity32(lWiegand) && !oddparity32(rWiegand);
|
|
|
|
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(SUCCESS, "Securakey Tag Found--BitLen: %u, Card ID: %u, FC: 0x%X, Raw: %08X%08X%08X", bitLen, cardid, fc, raw1, raw2, raw3);
|
2019-03-10 06:35:06 +08:00
|
|
|
if (bitLen <= 32)
|
2019-03-10 07:00:59 +08:00
|
|
|
PrintAndLogEx(SUCCESS, "Wiegand: %08X, Parity: %s", (lWiegand << (bitLen / 2)) | rWiegand, parity ? "Passed" : "Failed");
|
2019-03-10 06:35:06 +08:00
|
|
|
PrintAndLogEx(INFO, "\nHow the FC translates to printed FC is unknown");
|
|
|
|
PrintAndLogEx(INFO, "How the checksum is calculated is unknown");
|
|
|
|
PrintAndLogEx(INFO, "Help the community identify this format further\n by sharing your tag on the pm3 forum or with forum members");
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-07-14 21:51:12 +08:00
|
|
|
}
|
|
|
|
|
2019-04-12 08:07:11 +08:00
|
|
|
static int CmdSecurakeyRead(const char *Cmd) {
|
2019-03-10 06:35:06 +08:00
|
|
|
lf_read(true, 8000);
|
|
|
|
return CmdSecurakeyDemod(Cmd);
|
2017-07-14 21:51:12 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
static command_t CommandTable[] = {
|
2019-05-02 06:02:38 +08:00
|
|
|
{"help", CmdHelp, AlwaysAvailable, "This help"},
|
2019-05-02 02:48:15 +08:00
|
|
|
{"demod", CmdSecurakeyDemod, AlwaysAvailable, "Demodulate an Securakey tag from the GraphBuffer"},
|
2019-05-02 06:02:38 +08:00
|
|
|
{"read", CmdSecurakeyRead, IfPm3Lf, "Attempt to read and extract tag data from the antenna"},
|
|
|
|
//{"clone", CmdSecurakeyClone, IfPm3Lf, "clone Securakey tag"},
|
|
|
|
//{"sim", CmdSecurakeydSim, IfPm3Lf, "simulate Securakey tag"},
|
2019-05-02 02:48:15 +08:00
|
|
|
{NULL, NULL, NULL, NULL}
|
2017-07-14 21:51:12 +08:00
|
|
|
};
|
|
|
|
|
2019-04-12 08:07:11 +08:00
|
|
|
static int CmdHelp(const char *Cmd) {
|
|
|
|
(void)Cmd; // Cmd is not used so far
|
|
|
|
CmdsHelp(CommandTable);
|
2019-05-22 20:32:30 +08:00
|
|
|
return PM3_SUCCESS;
|
2017-07-14 21:51:12 +08:00
|
|
|
}
|
|
|
|
|
2019-04-12 08:07:11 +08:00
|
|
|
int CmdLFSecurakey(const char *Cmd) {
|
|
|
|
clearCommandBuffer();
|
2019-04-19 06:47:51 +08:00
|
|
|
return CmdsParse(CommandTable, Cmd);
|
2017-07-14 21:51:12 +08:00
|
|
|
}
|
2019-04-12 06:38:54 +08:00
|
|
|
|
|
|
|
// by marshmellow
|
|
|
|
// find Securakey preamble in already demoded data
|
|
|
|
int detectSecurakey(uint8_t *dest, size_t *size) {
|
|
|
|
if (*size < 96) return -1; //make sure buffer has data
|
|
|
|
size_t startIdx = 0;
|
|
|
|
uint8_t preamble[] = {0, 1, 1, 1, 1, 1, 1, 1, 1, 1, 0, 0, 1};
|
|
|
|
if (!preambleSearch(dest, preamble, sizeof(preamble), size, &startIdx))
|
|
|
|
return -2; //preamble not found
|
|
|
|
if (*size != 96) return -3; //wrong demoded size
|
|
|
|
//return start position
|
|
|
|
return (int)startIdx;
|
|
|
|
}
|
|
|
|
|
|
|
|
int demodSecurakey(void) {
|
|
|
|
return CmdSecurakeyDemod("");
|
|
|
|
}
|
|
|
|
|