armsrc/cmd.c

   1 //-----------------------------------------------------------------------------
   2 // Copyright (C) Proxmark3 contributors. See AUTHORS.md for details.
   3 //
   4 // This program is free software: you can redistribute it and/or modify
   5 // it under the terms of the GNU General Public License as published by
   6 // the Free Software Foundation, either version 3 of the License, or
   7 // (at your option) any later version.
   8 //
   9 // This program is distributed in the hope that it will be useful,
  10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
  11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12 // GNU General Public License for more details.
  13 //
  14 // See LICENSE.txt for the text of the license.
  15 //-----------------------------------------------------------------------------
  16 #include "cmd.h"
  17 #include "usb_cdc.h"
  18 #include "usart.h"
  19 #include "crc16.h"
  20 #include "string.h"
  21
  22 // Flags to tell where to add CRC on sent replies
  23 bool g_reply_with_crc_on_usb = false;
  24 bool g_reply_with_crc_on_fpc = true;
  25 // "Session" flag, to tell via which interface next msgs should be sent: USB or FPC USART
  26 bool g_reply_via_fpc = false;
  27 bool g_reply_via_usb = false;
  28
  29 int reply_old(uint64_t cmd, uint64_t arg0, uint64_t arg1, uint64_t arg2, void *data, size_t len) {
  30     PacketResponseOLD txcmd = {CMD_UNKNOWN, {0, 0, 0}, {{0}}};
  31
  32 //    for (size_t i = 0; i < sizeof(PacketResponseOLD); i++)
  33 //        ((uint8_t *)&txcmd)[i] = 0x00;
  34
  35     // Compose the outgoing command frame
  36     txcmd.cmd = cmd;
  37     txcmd.arg[0] = arg0;
  38     txcmd.arg[1] = arg1;
  39     txcmd.arg[2] = arg2;
  40
  41     // Add the (optional) content to the frame, with a maximum size of PM3_CMD_DATA_SIZE
  42     if (data && len) {
  43         len = MIN(len, PM3_CMD_DATA_SIZE);
  44         for (size_t i = 0; i < len; i++) {
  45             txcmd.d.asBytes[i] = ((uint8_t *)data)[i];
  46         }
  47     }
  48
  49 #ifdef WITH_FPC_USART_HOST
  50     int resultfpc = PM3_EUNDEF;
  51 #endif
  52     int resultusb = PM3_EUNDEF;
  53     // Send frame and make sure all bytes are transmitted
  54
  55     if (g_reply_via_usb) {
  56         resultusb = usb_write((uint8_t *)&txcmd, sizeof(PacketResponseOLD));
  57     }
  58
  59     if (g_reply_via_fpc) {
  60 #ifdef WITH_FPC_USART_HOST
  61         resultfpc = usart_writebuffer_sync((uint8_t *)&txcmd, sizeof(PacketResponseOLD));
  62 #else
  63         return PM3_EDEVNOTSUPP;
  64 #endif
  65     }
  66     // we got two results, let's prioritize the faulty one and USB over FPC.
  67     if (g_reply_via_usb && (resultusb != PM3_SUCCESS)) return resultusb;
  68 #ifdef WITH_FPC_USART_HOST
  69     if (g_reply_via_fpc && (resultfpc != PM3_SUCCESS)) return resultfpc;
  70 #endif
  71     return PM3_SUCCESS;
  72 }
  73
  74 static int reply_ng_internal(uint16_t cmd, int16_t status, const uint8_t *data, size_t len, bool ng) {
  75     PacketResponseNGRaw txBufferNG;
  76     size_t txBufferNGLen;
  77
  78     // Compose the outgoing command frame
  79     txBufferNG.pre.magic = RESPONSENG_PREAMBLE_MAGIC;
  80     txBufferNG.pre.cmd = cmd;
  81     txBufferNG.pre.status = status;
  82     txBufferNG.pre.ng = ng;
  83     if (len > PM3_CMD_DATA_SIZE) {
  84         len = PM3_CMD_DATA_SIZE;
  85         // overwrite status
  86         txBufferNG.pre.status = PM3_EOVFLOW;
  87     }
  88
  89     // length is only 15bit (32768)
  90     txBufferNG.pre.length = (len & 0x7FFF);
  91
  92     // Add the (optional) content to the frame, with a maximum size of PM3_CMD_DATA_SIZE
  93     if (data && len) {
  94         for (size_t i = 0; i < len; i++) {
  95             txBufferNG.data[i] = data[i];
  96         }
  97     }
  98
  99     PacketResponseNGPostamble *tx_post = (PacketResponseNGPostamble *)((uint8_t *)&txBufferNG + sizeof(PacketResponseNGPreamble) + len);
 100     // Note: if we send to both FPC & USB, we'll set CRC for both if any of them require CRC
 101     if ((g_reply_via_fpc && g_reply_with_crc_on_fpc) || ((g_reply_via_usb) && g_reply_with_crc_on_usb)) {
 102         uint8_t first, second;
 103         compute_crc(CRC_14443_A, (uint8_t *)&txBufferNG, sizeof(PacketResponseNGPreamble) + len, &first, &second);
 104         tx_post->crc = ((first << 8) | second);
 105     } else {
 106         tx_post->crc = RESPONSENG_POSTAMBLE_MAGIC;
 107     }
 108     txBufferNGLen = sizeof(PacketResponseNGPreamble) + len + sizeof(PacketResponseNGPostamble);
 109
 110 #ifdef WITH_FPC_USART_HOST
 111     int resultfpc = PM3_EUNDEF;
 112 #endif
 113     int resultusb = PM3_EUNDEF;
 114     // Send frame and make sure all bytes are transmitted
 115
 116     if (g_reply_via_usb) {
 117         resultusb = usb_write((uint8_t *)&txBufferNG, txBufferNGLen);
 118     }
 119     if (g_reply_via_fpc) {
 120 #ifdef WITH_FPC_USART_HOST
 121         resultfpc = usart_writebuffer_sync((uint8_t *)&txBufferNG, txBufferNGLen);
 122 #else
 123         return PM3_EDEVNOTSUPP;
 124 #endif
 125     }
 126     // we got two results, let's prioritize the faulty one and USB over FPC.
 127     if (g_reply_via_usb && (resultusb != PM3_SUCCESS)) return resultusb;
 128 #ifdef WITH_FPC_USART_HOST
 129     if (g_reply_via_fpc && (resultfpc != PM3_SUCCESS)) return resultfpc;
 130 #endif
 131     return PM3_SUCCESS;
 132 }
 133
 134 int reply_ng(uint16_t cmd, int16_t status, uint8_t *data, size_t len) {
 135     return reply_ng_internal(cmd, status, data, len, true);
 136 }
 137
 138 int reply_mix(uint64_t cmd, uint64_t arg0, uint64_t arg1, uint64_t arg2, void *data, size_t len) {
 139     int16_t status = PM3_SUCCESS;
 140     uint64_t arg[3] = {arg0, arg1, arg2};
 141     if (len > PM3_CMD_DATA_SIZE - sizeof(arg)) {
 142         len = PM3_CMD_DATA_SIZE - sizeof(arg);
 143         status = PM3_EOVFLOW;
 144     }
 145     uint8_t cmddata[PM3_CMD_DATA_SIZE];
 146     memcpy(cmddata, arg, sizeof(arg));
 147     if (len && data)
 148         memcpy(cmddata + sizeof(arg), data, (int)len);
 149
 150     return reply_ng_internal((cmd & 0xFFFF), status, cmddata, len + sizeof(arg), false);
 151 }
 152
 153 static int receive_ng_internal(PacketCommandNG *rx, uint32_t read_ng(uint8_t *data, size_t len), bool usb, bool fpc) {
 154     PacketCommandNGRaw rx_raw;
 155     size_t bytes = read_ng((uint8_t *)&rx_raw.pre, sizeof(PacketCommandNGPreamble));
 156
 157     if (bytes == 0)
 158         return PM3_ENODATA;
 159
 160     if (bytes != sizeof(PacketCommandNGPreamble))
 161         return PM3_EIO;
 162
 163     rx->magic = rx_raw.pre.magic;
 164     rx->ng = rx_raw.pre.ng;
 165     uint16_t length = rx_raw.pre.length;
 166     rx->cmd = rx_raw.pre.cmd;
 167
 168     if (rx->magic == COMMANDNG_PREAMBLE_MAGIC) { // New style NG command
 169         if (length > PM3_CMD_DATA_SIZE)
 170             return PM3_EOVFLOW;
 171
 172         // Get the core and variable length payload
 173         bytes = read_ng((uint8_t *)&rx_raw.data, length);
 174         if (bytes != length)
 175             return PM3_EIO;
 176
 177         if (rx->ng) {
 178             memcpy(rx->data.asBytes, rx_raw.data, length);
 179             rx->length = length;
 180         } else {
 181             uint64_t arg[3];
 182             if (length < sizeof(arg))
 183                 return PM3_EIO;
 184
 185             memcpy(arg, rx_raw.data, sizeof(arg));
 186             rx->oldarg[0] = arg[0];
 187             rx->oldarg[1] = arg[1];
 188             rx->oldarg[2] = arg[2];
 189             memcpy(rx->data.asBytes, rx_raw.data + sizeof(arg), length - sizeof(arg));
 190             rx->length = length - sizeof(arg);
 191         }
 192         // Get the postamble
 193         bytes = read_ng((uint8_t *)&rx_raw.foopost, sizeof(PacketCommandNGPostamble));
 194         if (bytes != sizeof(PacketCommandNGPostamble))
 195             return PM3_EIO;
 196
 197         // Check CRC, accept MAGIC as placeholder
 198         rx->crc = rx_raw.foopost.crc;
 199         if (rx->crc != COMMANDNG_POSTAMBLE_MAGIC) {
 200             uint8_t first, second;
 201             compute_crc(CRC_14443_A, (uint8_t *)&rx_raw, sizeof(PacketCommandNGPreamble) + length, &first, &second);
 202             if ((first << 8) + second != rx->crc)
 203                 return PM3_EIO;
 204         }
 205         g_reply_via_usb = usb;
 206         g_reply_via_fpc = fpc;
 207     } else {                               // Old style command
 208         PacketCommandOLD rx_old;
 209         memcpy(&rx_old, &rx_raw.pre, sizeof(PacketCommandNGPreamble));
 210         bytes = read_ng(((uint8_t *)&rx_old) + sizeof(PacketCommandNGPreamble), sizeof(PacketCommandOLD) - sizeof(PacketCommandNGPreamble));
 211         if (bytes != sizeof(PacketCommandOLD) - sizeof(PacketCommandNGPreamble))
 212             return PM3_EIO;
 213
 214         g_reply_via_usb = usb;
 215         g_reply_via_fpc = fpc;
 216         rx->ng = false;
 217         rx->magic = 0;
 218         rx->crc = 0;
 219         rx->cmd = (rx_old.cmd & 0xFFFF);
 220         rx->oldarg[0] = rx_old.arg[0];
 221         rx->oldarg[1] = rx_old.arg[1];
 222         rx->oldarg[2] = rx_old.arg[2];
 223         rx->length = PM3_CMD_DATA_SIZE;
 224         memcpy(&rx->data, &rx_old.d.asBytes, rx->length);
 225     }
 226     return PM3_SUCCESS;
 227 }
 228
 229 int receive_ng(PacketCommandNG *rx) {
 230
 231     // Check if there is a packet available
 232     if (usb_poll_validate_length())
 233         return receive_ng_internal(rx, usb_read_ng, true, false);
 234
 235 #ifdef WITH_FPC_USART_HOST
 236     // Check if there is a FPC packet available
 237     if (usart_rxdata_available() > 0)
 238         return receive_ng_internal(rx, usart_read_ng, false, true);
 239 #endif
 240     return PM3_ENODATA;
 241 }