style

client/mifare/mifarehost.c

@@ -15,8 +15,6 @@ int mfDarkside(uint8_t blockno, uint8_t key_type, uint64_t *key) {
     uint32_t nt = 0, nr = 0, ar = 0;
     uint64_t par_list = 0, ks_list = 0;
     uint64_t *keylist = NULL, *last_keylist = NULL;
-    uint32_t keycount = 0;
-    int16_t isOK = 0;
 
     UsbCommand c = {CMD_READER_MIFARE, {true, blockno, key_type}};
 
@@ -49,7 +47,7 @@ int mfDarkside(uint8_t blockno, uint8_t key_type, uint64_t *key) {
 
             UsbCommand resp;
             if (WaitForResponseTimeout(CMD_ACK, &resp, 2000)) {
-                isOK  = resp.arg[0];
+                int16_t isOK  = resp.arg[0];
                 if (isOK < 0)
                     return isOK;
 
@@ -69,7 +67,7 @@ int mfDarkside(uint8_t blockno, uint8_t key_type, uint64_t *key) {
         }
         c.arg[0] = false;
 
-        keycount = nonce2key(uid, nt, nr, ar, par_list, ks_list, &keylist);
+        uint32_t keycount = nonce2key(uid, nt, nr, ar, par_list, ks_list, &keylist);
 
         if (keycount == 0) {
             PrintAndLogEx(FAILED, "key not found (lfsr_common_prefix list is null). Nt=%08x", nt);
@@ -502,14 +500,13 @@ int mfCSetUID(uint8_t *uid, uint8_t *atqa, uint8_t *sak, uint8_t *oldUID, uint8_
 
 int mfCSetBlock(uint8_t blockNo, uint8_t *data, uint8_t *uid, uint8_t params) {
 
-    uint8_t isOK = 0;
     UsbCommand c = {CMD_MIFARE_CSETBLOCK, {params, blockNo, 0}};
     memcpy(c.d.asBytes, data, 16);
     clearCommandBuffer();
     SendCommand(&c);
     UsbCommand resp;
     if (WaitForResponseTimeout(CMD_ACK, &resp, 1500)) {
-        isOK  = resp.arg[0] & 0xff;
+        uint8_t isOK  = resp.arg[0] & 0xff;
         if (uid != NULL)
             memcpy(uid, resp.d.asBytes, 4);
         if (!isOK)
@@ -522,13 +519,12 @@ int mfCSetBlock(uint8_t blockNo, uint8_t *data, uint8_t *uid, uint8_t params) {
 }
 
 int mfCGetBlock(uint8_t blockNo, uint8_t *data, uint8_t params) {
-    uint8_t isOK = 0;
     UsbCommand c = {CMD_MIFARE_CGETBLOCK, {params, blockNo, 0}};
     clearCommandBuffer();
     SendCommand(&c);
     UsbCommand resp;
     if (WaitForResponseTimeout(CMD_ACK, &resp, 1500)) {
-        isOK  = resp.arg[0] & 0xff;
+        uint8_t isOK  = resp.arg[0] & 0xff;
         if (!isOK)
             return 2;
         memcpy(data, resp.d.asBytes, 16);
@@ -555,15 +551,8 @@ static uint8_t traceCurKey = 0;
 
 struct Crypto1State *traceCrypto1 = NULL;
 struct Crypto1State *revstate = NULL;
-uint64_t key = 0;
-uint32_t ks2 = 0;
-uint32_t ks3 = 0;
 
 uint32_t cuid = 0;    // uid part used for crypto1.
-uint32_t nt = 0;      // tag challenge
-uint32_t nr_enc = 0;  // encrypted reader challenge
-uint32_t ar_enc = 0;  // encrypted reader response
-uint32_t at_enc = 0;  // encrypted tag response
 
 int isTraceCardEmpty(void) {
     return ((traceCard[0] == 0) && (traceCard[1] == 0) && (traceCard[2] == 0) && (traceCard[3] == 0));
@@ -605,18 +594,14 @@ int loadTraceCard(uint8_t *tuid, uint8_t uidlen) {
         memset(buf, 0, sizeof(buf));
         if (fgets(buf, sizeof(buf), f) == NULL) {
             PrintAndLogEx(FAILED, "No trace file found or reading error.");
-            if (f) {
-                fclose(f);
-            }
+            fclose(f);
             return 2;
         }
 
         if (strlen(buf) < 32) {
             if (feof(f)) break;
             PrintAndLogEx(FAILED, "File content error. Block data must include 32 HEX symbols");
-            if (f) {
-                fclose(f);
-            }
+            fclose(f);
             return 2;
         }
         for (i = 0; i < 32; i += 2) {
@@ -628,9 +613,7 @@ int loadTraceCard(uint8_t *tuid, uint8_t uidlen) {
 
         blockNum++;
     }
-    if (f) {
-        fclose(f);
-    }
+    fclose(f);
     return 0;
 }
 
@@ -677,14 +660,11 @@ int mfTraceInit(uint8_t *tuid, uint8_t uidlen, uint8_t *atqa, uint8_t sak, bool
 }
 
 void mf_crypto1_decrypt(struct Crypto1State *pcs, uint8_t *data, int len, bool isEncrypted) {
-    uint8_t bt = 0;
-    int i;
-
     if (len != 1) {
-        for (i = 0; i < len; i++)
+        for (int i = 0; i < len; i++)
             data[i] = crypto1_byte(pcs, 0x00, isEncrypted) ^ data[i];
     } else {
-        bt = 0;
+        uint8_t bt = 0;
         bt |= (crypto1_bit(pcs, 0, isEncrypted) ^ BIT(data[0], 0)) << 0;
         bt |= (crypto1_bit(pcs, 0, isEncrypted) ^ BIT(data[0], 1)) << 1;
         bt |= (crypto1_bit(pcs, 0, isEncrypted) ^ BIT(data[0], 2)) << 2;
@@ -694,7 +674,10 @@ void mf_crypto1_decrypt(struct Crypto1State *pcs, uint8_t *data, int len, bool i
 }
 
 int mfTraceDecode(uint8_t *data_src, int len, bool wantSaveToEmlFile) {
-
+    uint32_t nt = 0;      // tag challenge
+    uint32_t nr_enc = 0;  // encrypted reader challenge
+    uint32_t ar_enc = 0;  // encrypted reader response
+    uint32_t at_enc = 0;  // encrypted tag response
     if (traceState == TRACE_ERROR)
         return 1;
 
@@ -813,11 +796,13 @@ int mfTraceDecode(uint8_t *data_src, int len, bool wantSaveToEmlFile) {
         case TRACE_AUTH_OK:
             if (len == 4) {
                 traceState = TRACE_IDLE;
+                // encrypted tag response
                 at_enc = bytes_to_num(data, 4);
 
                 //  mfkey64 recover key.
-                ks2 = ar_enc ^ prng_successor(nt, 64);
-                ks3 = at_enc ^ prng_successor(nt, 96);
+                uint64_t key = 0;
+                uint32_t ks2 = ar_enc ^ prng_successor(nt, 64);
+                uint32_t ks3 = at_enc ^ prng_successor(nt, 96);
                 revstate = lfsr_recovery64(ks2, ks3);
                 lfsr_rollback_word(revstate, 0, 0);
                 lfsr_rollback_word(revstate, 0, 0);
@@ -865,8 +850,8 @@ int mfTraceDecode(uint8_t *data_src, int len, bool wantSaveToEmlFile) {
 int tryDecryptWord(uint32_t nt, uint32_t ar_enc, uint32_t at_enc, uint8_t *data, int len) {
     PrintAndLogEx(SUCCESS, "\nencrypted data: [%s]", sprint_hex(data, len));
     struct Crypto1State *s;
-    ks2 = ar_enc ^ prng_successor(nt, 64);
-    ks3 = at_enc ^ prng_successor(nt, 96);
+    uint32_t ks2 = ar_enc ^ prng_successor(nt, 64);
+    uint32_t ks3 = at_enc ^ prng_successor(nt, 96);
     s = lfsr_recovery64(ks2, ks3);
     mf_crypto1_decrypt(s, data, len, false);
     PrintAndLogEx(SUCCESS, "decrypted data: [%s]", sprint_hex(data, len));

client/mifare/mifarehost.h

@@ -70,7 +70,7 @@ typedef struct {
 extern char logHexFileName[FILE_PATH_SIZE];
 
 extern int mfDarkside(uint8_t blockno, uint8_t key_type, uint64_t *key);
-extern int mfnested(uint8_t blockNo, uint8_t keyType, uint8_t *key, uint8_t trgBlockNo, uint8_t trgKeyType, uint8_t *ResultKeys, bool calibrate);
+extern int mfnested(uint8_t blockNo, uint8_t keyType, uint8_t *key, uint8_t trgBlockNo, uint8_t trgKeyType, uint8_t *resultKeys, bool calibrate);
 extern int mfCheckKeys(uint8_t blockNo, uint8_t keyType, bool clear_trace, uint8_t keycnt, uint8_t *keyBlock, uint64_t *key);
 extern int mfCheckKeys_fast(uint8_t sectorsCnt, uint8_t firstChunk, uint8_t lastChunk,
                             uint8_t strategy, uint32_t size, uint8_t *keyBlock, sector_t *e_sector, bool use_flashmemory);

tools/nonce2key/crapto1.c

@@ -77,10 +77,9 @@ static void bucket_sort_intersect(uint32_t *const estart, uint32_t *const estop,
 
     // write back intersecting buckets as sorted list.
     // fill in bucket_info with head and tail of the bucket contents in the list and number of non-empty buckets.
-    uint32_t nonempty_bucket;
     for (uint32_t i = 0; i < 2; i++) {
         p1 = start[i];
-        nonempty_bucket = 0;
+        uint32_t nonempty_bucket = 0;
         for (uint32_t j = 0x00; j <= 0xff; j++) {
             if (bucket[0][j].bp != bucket[0][j].head && bucket[1][j].bp != bucket[1][j].head) { // non-empty intersecting buckets only
                 bucket_info->bucket_info[i][nonempty_bucket].head = p1;
@@ -146,13 +145,12 @@ static struct Crypto1State *
 recover(uint32_t *o_head, uint32_t *o_tail, uint32_t oks,
         uint32_t *e_head, uint32_t *e_tail, uint32_t eks, int rem,
         struct Crypto1State *sl, uint32_t in, bucket_array_t bucket) {
-    uint32_t *o, *e;
     bucket_info_t bucket_info;
 
     if (rem == -1) {
-        for (e = e_head; e <= e_tail; ++e) {
-            *e = *e << 1 ^ parity(*e & LF_POLY_EVEN) ^ !!(in & 4);
-            for (o = o_head; o <= o_tail; ++o, ++sl) {
+        for (uint32_t *e = e_head; e <= e_tail; ++e) {
+            *e = *e << 1 ^ parity(*e & LF_POLY_EVEN) ^ (!!(in & 4));
+            for (uint32_t *o = o_head; o <= o_tail; ++o, ++sl) {
                 sl->even = *o;
                 sl->odd = *e ^ parity(*o & LF_POLY_ODD);
                 sl[1].odd = sl[1].even = 0;
@@ -193,12 +191,11 @@ struct Crypto1State *lfsr_recovery32(uint32_t ks2, uint32_t in) {
     struct Crypto1State *statelist;
     uint32_t *odd_head = 0, *odd_tail = 0, oks = 0;
     uint32_t *even_head = 0, *even_tail = 0, eks = 0;
-    int i;
 
     // split the keystream into an odd and even part
-    for (i = 31; i >= 0; i -= 2)
+    for (int i = 31; i >= 0; i -= 2)
         oks = oks << 1 | BEBIT(ks2, i);
-    for (i = 30; i >= 0; i -= 2)
+    for (int i = 30; i >= 0; i -= 2)
         eks = eks << 1 | BEBIT(ks2, i);
 
     odd_head = odd_tail = malloc(sizeof(uint32_t) << 21);
@@ -225,7 +222,7 @@ struct Crypto1State *lfsr_recovery32(uint32_t ks2, uint32_t in) {
     }
 
     // initialize statelists: add all possible states which would result into the rightmost 2 bits of the keystream
-    for (i = 1 << 20; i >= 0; --i) {
+    for (int i = 1 << 20; i >= 0; --i) {
         if (filter(i) == (oks & 1))
             *++odd_tail = i;
         if (filter(i) == (eks & 1))
@@ -233,7 +230,7 @@ struct Crypto1State *lfsr_recovery32(uint32_t ks2, uint32_t in) {
     }
 
     // extend the statelists. Look at the next 8 Bits of the keystream (4 Bit each odd and even):
-    for (i = 0; i < 4; i++) {
+    for (uint8_t i = 0; i < 4; i++) {
         extend_table_simple(odd_head,  &odd_tail, (oks >>= 1) & 1);
         extend_table_simple(even_head, &even_tail, (eks >>= 1) & 1);
     }
@@ -362,7 +359,7 @@ uint8_t lfsr_rollback_bit(struct Crypto1State *s, uint32_t in, int fb) {
     out ^= LF_POLY_EVEN & (s->even >>= 1);
     out ^= LF_POLY_ODD & s->odd;
     out ^= !!in;
-    out ^= (ret = filter(s->odd)) & !!fb;
+    out ^= (ret = filter(s->odd)) & (!!fb);
 
     s->even |= parity(out) << 23;
     return ret;
@@ -498,21 +495,21 @@ uint32_t *lfsr_prefix_ks(uint8_t ks[8], int isodd) {
  * helper function which eliminates possible secret states using parity bits
  */
 static struct Crypto1State *check_pfx_parity(uint32_t prefix, uint32_t rresp, uint8_t parities[8][8], uint32_t odd, uint32_t even, struct Crypto1State *sl) {
-    uint32_t ks1, nr, ks2, rr, ks3, c, good = 1;
+    uint32_t good = 1;
 
-    for (c = 0; good && c < 8; ++c) {
+    for (uint32_t c = 0; good && c < 8; ++c) {
         sl->odd = odd ^ fastfwd[1][c];
         sl->even = even ^ fastfwd[0][c];
 
         lfsr_rollback_bit(sl, 0, 0);
         lfsr_rollback_bit(sl, 0, 0);
 
-        ks3 = lfsr_rollback_bit(sl, 0, 0);
-        ks2 = lfsr_rollback_word(sl, 0, 0);
-        ks1 = lfsr_rollback_word(sl, prefix | c << 5, 1);
+        uint32_t ks3 = lfsr_rollback_bit(sl, 0, 0);
+        uint32_t ks2 = lfsr_rollback_word(sl, 0, 0);
+        uint32_t ks1 = lfsr_rollback_word(sl, prefix | c << 5, 1);
 
-        nr = ks1 ^ (prefix | c << 5);
-        rr = ks2 ^ rresp;
+        uint32_t nr = ks1 ^ (prefix | c << 5);
+        uint32_t rr = ks2 ^ rresp;
 
         good &= parity(nr & 0x000000ff) ^ parities[c][3] ^ BIT(ks2, 24);
         good &= parity(rr & 0xff000000) ^ parities[c][4] ^ BIT(ks2, 16);

tools/nonce2key/crypto1.c

@@ -49,7 +49,7 @@ uint8_t crypto1_bit(struct Crypto1State *s, uint8_t in, int is_encrypted) {
     uint32_t tmp;
     uint8_t ret = filter(s->odd);
 
-    feedin  = ret & !!is_encrypted;
+    feedin  = ret & (!!is_encrypted);
     feedin ^= !!in;
     feedin ^= LF_POLY_ODD & s->odd;
     feedin ^= LF_POLY_EVEN & s->even;