crewID/libnfc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

nfc-anticol: Cascade based on SAK rather than CT, better for educational purpose

Browse source
This commit is contained in:
Philippe Teuwen 2010-10-25 13:48:01 +00:00
parent 56e37ec309
commit 1963bb65e4
1 changed files with 58 additions and 29 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

81
examples/nfc-anticol.c
View file

@ -45,7 +45,7 @@
static byte_t abtRx[MAX_FRAME_LEN]; static byte_t abtRx[MAX_FRAME_LEN];
static size_t szRxBits; static size_t szRxBits;
static size_t szRx; static size_t szRx;
static byte_t abtUid[10]; static byte_t abtRawUid[12];
static byte_t abtAtqa[2]; static byte_t abtAtqa[2];
static byte_t abtSak; static byte_t abtSak;
static size_t szCL = 1;//Always start with Cascade Level 1 (CL1) static size_t szCL = 1;//Always start with Cascade Level 1 (CL1)
@ -59,6 +59,7 @@ byte_t abtSelectAll[2] = { 0x93, 0x20 };
byte_t abtSelectTag[9] = { 0x93, 0x70, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; byte_t abtSelectTag[9] = { 0x93, 0x70, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
byte_t abtRats[4] = { 0xe0, 0x50, 0xbc, 0xa5 }; byte_t abtRats[4] = { 0xe0, 0x50, 0xbc, 0xa5 };
byte_t abtHalt[4] = { 0x50, 0x00, 0x57, 0xcd }; byte_t abtHalt[4] = { 0x50, 0x00, 0x57, 0xcd };
#define CASCADE_BIT 0x04
static bool static bool
transmit_bits (const byte_t * pbtTx, const size_t szTxBits) transmit_bits (const byte_t * pbtTx, const size_t szTxBits)
@ -194,56 +195,77 @@ main (int argc, char *argv[])
// Anti-collision // Anti-collision
transmit_bytes (abtSelectAll, 2); transmit_bytes (abtSelectAll, 2);
// Test if we are dealing with a 4 bytes uid(CL1) // Check answer
if (abtRx[0] != 0x88) { if ((abtRx[0] ^ abtRx[1] ^ abtRx[2] ^ abtRx[3] ^ abtRx[4]) != 0) {
// Save the UID printf("WARNING: BCC check failed!\n");
memcpy (abtUid, abtRx, 4);
} else {
// Save the first 3 bytes of UID
memcpy (abtUid, abtRx+1, 3);
szCL = 2;//or more
} }
// Save the UID CL1
memcpy (abtRawUid, abtRx, 4);
//Prepare and send CL1 Select-Command //Prepare and send CL1 Select-Command
memcpy (abtSelectTag + 2, abtRx, 5); memcpy (abtSelectTag + 2, abtRx, 5);
append_iso14443a_crc (abtSelectTag, 7); append_iso14443a_crc (abtSelectTag, 7);
transmit_bytes (abtSelectTag, 9); transmit_bytes (abtSelectTag, 9);
abtSak = abtRx[0]; abtSak = abtRx[0];
// Test if we are dealing with a CL2
if (abtSak & CASCADE_BIT) {
szCL = 2;//or more
// Check answer
if (abtRawUid[0] != 0x88) {
printf("WARNING: Cascade bit set but CT != 0x88!\n");
}
}
if(szCL == 2) { if(szCL == 2) {
// We have to do the anti-collision for cascade level 2 // We have to do the anti-collision for cascade level 2
// Prepare CL2 commands // Prepare CL2 commands
abtSelectAll[0] = 0x95; abtSelectAll[0] = 0x95;
abtSelectTag[0] = 0x95;
// Anti-collision // Anti-collision
transmit_bytes (abtSelectAll, 2); transmit_bytes (abtSelectAll, 2);
if(abtRx[0] != 0x88) { // Check answer
// Save the second part of UID if ((abtRx[0] ^ abtRx[1] ^ abtRx[2] ^ abtRx[3] ^ abtRx[4]) != 0) {
memcpy (abtUid + 3, abtRx, 4); printf("WARNING: BCC check failed!\n");
} else {
memcpy (abtUid + 3, abtRx + 1, 3);
szCL = 3;
} }
// Save UID CL2
memcpy (abtRawUid + 4, abtRx, 4);
// Selection // Selection
abtSelectTag[0] = 0x95;
memcpy (abtSelectTag + 2, abtRx, 5); memcpy (abtSelectTag + 2, abtRx, 5);
append_iso14443a_crc (abtSelectTag, 7); append_iso14443a_crc (abtSelectTag, 7);
transmit_bytes (abtSelectTag, 9); transmit_bytes (abtSelectTag, 9);
abtSak = abtRx[0]; abtSak = abtRx[0];
if ( szCL == 3) { // Test if we are dealing with a CL3
// Do last CL if (abtSak & CASCADE_BIT) {
szCL = 3;
// Check answer
if (abtRawUid[0] != 0x88) {
printf("WARNING: Cascade bit set but CT != 0x88!\n");
}
}
// Save the last part of UID if ( szCL == 3) {
memcpy (abtUid + 6, abtRx, 4); // We have to do the anti-collision for cascade level 3
// Prepare and send CL3 AC-Command // Prepare and send CL3 AC-Command
abtSelectAll[0] = 0x97; abtSelectAll[0] = 0x97;
transmit_bytes (abtSelectAll, 2); transmit_bytes (abtSelectAll, 2);
// Check answer
if ((abtRx[0] ^ abtRx[1] ^ abtRx[2] ^ abtRx[3] ^ abtRx[4]) != 0) {
printf("WARNING: BCC check failed!\n");
}
// Save UID CL3
memcpy (abtRawUid + 8, abtRx, 4);
// Prepare and send final Select-Command // Prepare and send final Select-Command
abtSelectTag[0] = 0x97; abtSelectTag[0] = 0x97;
memcpy (abtSelectTag + 2, abtRx, 5); memcpy (abtSelectTag + 2, abtRx, 5);
@ -261,12 +283,19 @@ main (int argc, char *argv[])
transmit_bytes (abtHalt, 4); transmit_bytes (abtHalt, 4);
printf ("\nFound tag with\n UID: "); printf ("\nFound tag with\n UID: ");
printf ("%02x%02x%02x%02x", abtUid[0], abtUid[1], abtUid[2], abtUid[3]); switch (szCL) {
if (szCL > 1) { case 1:
printf ("%02x%02x%02x", abtUid[4], abtUid[5], abtUid[6]); printf ("%02x%02x%02x%02x", abtRawUid[0], abtRawUid[1], abtRawUid[2], abtRawUid[3]);
if (szCL > 2) { break;
printf("%02x%02x%02x", abtUid[7], abtUid[8], abtUid[9]); case 2:
} printf ("%02x%02x%02x", abtRawUid[1], abtRawUid[2], abtRawUid[3]);
printf ("%02x%02x%02x%02x", abtRawUid[4], abtRawUid[5], abtRawUid[6], abtRawUid[7]);
break;
case 3:
printf ("%02x%02x%02x", abtRawUid[1], abtRawUid[2], abtRawUid[3]);
printf ("%02x%02x%02x", abtRawUid[5], abtRawUid[6], abtRawUid[7]);
printf ("%02x%02x%02x%02x", abtRawUid[8], abtRawUid[9], abtRawUid[10], abtRawUid[11]);
break;
} }
printf("\n"); printf("\n");
printf("ATQA: %02x%02x\n SAK: %02x\n", abtAtqa[1], abtAtqa[0], abtSak); printf("ATQA: %02x%02x\n SAK: %02x\n", abtAtqa[1], abtAtqa[0], abtSak);