first cut at displaying access conditions for each block from trailer data

[perl-Mifare-MAD.git] / mifare-mad.pl

#!/usr/bin/perl

use warnings;
use strict;

# based on AN10787
# MIFARE Application Directory (MAD)
# http://www.nxp.com/acrobat_download2/other/identification/MAD_overview.pdf

use Data::Dump qw(dump);

my $debug = $ENV{DEBUG} || 0;

my $function_clusters;
my $mad_id;

while(<DATA>) {
        chomp;
        next if m/^#?\s*$/;
        my ( $code, $function ) = split(/\s+/,$_,2);
        my $h = '[0-9A-F]';
        if ( $code =~ m/^($h{2})-($h{2})$/ ) {
                foreach my $c ( hex($1) .. hex($2) ) {
                        $function_clusters->{ unpack('HH',$c) } = $function;
                }
        } elsif ( $code =~ m/^($h{2})$/ ) {
                $function_clusters->{ lc $code } = $function;
        } elsif ( $code =~ m/^($h{4})$/ ) {
                $mad_id->{ lc $1 } = $function;
        } else {
                die "can't parse __DATA__ line $.\n$_\n";
        }
}

my $access_condition_data = {
0b000 => 'R:AB W:AB I:AB DTR:AB',
0b010 => 'R:AB W:-- I:-- DTR:--',
0b100 => 'R:AB W:-B I:-- DTR:--', 
0b110 => 'R:AB W:-B I:-B DTR:AB',
0b001 => 'R:AB W:-- I:-- DTR:AB',
0b011 => 'R:-B W:-B I:-- DTR:--',
0b101 => 'R:-B W:-- I:-- DTR:--',
0b111 => 'R:-- W:-- I:-- DTR:--',
};

my $access_condition_trailer = {
0b000 => 'R/W: KEYSECXA:-/A ACCESS COND:A-/- KEYSECXB:A/A',
0b010 => 'R/W: KEYSECXA:-/- ACCESS COND:A-/- KEYSECXB:A/-',
0b100 => 'R/W: KEYSECXA:-/B ACCESS COND:AB/- KEYSECXB:-/B',
0b110 => 'R/W: KEYSECXA:-/- ACCESS COND:AB/- KEYSECXB:-/-',
0b001 => 'R/W: KEYSECXA:-/A ACCESS COND:A-/A KEYSECXB:A/A',
0b011 => 'R/W: KEYSECXA:-/B ACCESS COND:AB/B KEYSECXB:-/B',
0b101 => 'R/W: KEYSECXA:-/- ACCESS COND:AB/B KEYSECXB:-/-',
0b111 => 'R/W: KEYSECXA:-/- ACCESS COND:AB/- KEYSECXB:-/-',
};


if ( $debug ) {
        warn "# function_clusters ",dump($function_clusters);
        warn "# mad_id ", dump($mad_id);
}

local $/ = undef;
my $card = <>;

die "expected 4096 bytes, got ",length($card), " bytes\n"
        unless length $card == 4096;

foreach my $i ( 0 .. 15 ) {
        my $v = unpack('v',(substr($card, 0x10 + ( $i * 2 ), 2)));
        my $cluster_id = unpack('HH', (( $v & 0xff00 ) >> 8) );
        my $full_id = sprintf "%04x",$v;
        printf "MAD sector %-2d %04x [%s]\n%s\n", $i, $v
                , $function_clusters->{ $cluster_id }
                , $mad_id->{$full_id} || "FIXME: add $full_id from MAD_overview.pdf to __DATA__ at end of $0"
                ;

        my $pos = 0x40 * $i;

        my $c1 = ( ord(substr($card,$pos+0x37,1)) & 0xf0 ) >> 4;
        my $c2 = ( ord(substr($card,$pos+0x38,1)) & 0x0f );
        my $c3 = ( ord(substr($card,$pos+0x38,1)) & 0xf0 ) >> 4;

        foreach my $j ( 0 .. 3 ) {
                my $offset = $pos + $j * 0x10;
                my $block = substr($card, $offset, 0x10);
                my $mask = 1 << $j;
                my $cond
                        = ( ( $c1 & $mask ) * 4 )
                        + ( ( $c2 & $mask ) * 2 )
                        + ( ( $c3 & $mask ) * 1 )
                        ;
                $cond >>= $j;

                printf "%04x %s %03b %s\n", $offset, unpack('H*',$block)
                        , $cond
                        , $j < 3 ? $access_condition_data->{$cond} : $access_condition_trailer->{$cond}
                        ;
        }


        printf "KEY A:%s | %s | B:%s\n"
                ,unpack('H*',substr($card,$pos+0x30   ,6))
                ,unpack('H*',substr($card,$pos+0x30+6 ,4))
                ,unpack('H*',substr($card,$pos+0x30+10,6))
                ;

        if ( $v == 0x0004 ) {
                # RLE encoded card holder information
                my $data = substr( $card, $pos, 0x30);
                my $o = 0;
                my $types = {
                        0b00 => 'surname',
                        0b01 => 'given name',
                        0b10 => 'sex',
                        0b11 => 'any',
                };
                while ( substr($data,$o,1) ne "\x00" ) {
                        my $len = ord(substr($data,$o,1));
                        my $type = ( $len & 0b11000000 ) >> 6;
                        $len     =   $len & 0b00111111;
                        my $dump = substr($data,$o+1,$len-1);
                        $dump = '0x' . unpack('H*', $dump) if $type == 0b11; # any
                        printf "%-10s %2d %s\n", $types->{$type}, $len, $dump;
                        $o += $len + 1;
                }
        } elsif ( $v == 0x0015 ) {
                printf "Card number: %s\n", unpack('h*',substr($card,$pos + 0x04,6));
        }

        print "\n";

}

__DATA__
00    card administration
01-07 miscellaneous applications
08    airlines
09    ferry trafic
10    railway services
12    transport
18    city traffic
19    Czech Railways
20    bus services
21    multi modal transit
28    taxi
30    road toll
38    company services
40    city card services
47-48 access control & security
49    VIGIK
4A    Ministry of Defence, Netherlands
4B    Bosch Telecom, Germany
4A    Ministry of Defence, Netherlands
4C    European Union Institutions
50    ski ticketing
51-54 access control & security
58    academic services
60    food
68    non food trade
70    hotel
75    airport services
78    car rental
79    Dutch government
80    administration services
88    electronic purse
90    television
91    cruise ship
95    IOPTA
97    Metering
98    telephone
A0    health services
A8    warehouse
B0    electronic trade
B8    banking
C0    entertainment & sports
C8    car parking
C9    Fleet Management
D0    fuel, gasoline
D8    info services
E0    press
E1    NFC Forum
E8    computer
F0    mail
F8-FF miscellaneous applications

0000    sector free
0001    sector defective
0002    sector reserved
0003    DIR continuted
0004    card holder

0015 - card administration MIKROELEKTRONIKA spol.s.v.MIKROELEKTRONIKA spol.s.v.o. worldwide 1 01.02.2007 Card publisher info
0016 - card administration Mikroelektronika spol.s.r.o., Kpt.Mikroelektronika spol.s.r.o., Kpt. PoEurope    1 10.10.2007 Issuer information

071C - miscellaneous applications MIKROELEKTRONIKA spol.s.r. MIKROELEKTRONIKA spol.s.r.o., Europe       1 01.12.2008 Customer profile
071D - miscellaneous applications ZAGREBACKI Holding d.o.o. MIKROELEKTRONIKA spol.s.r.o. EUROPE,Croatia 1 01.04.2009 Customer profile
071E - miscellaneous applications ZAGREBACKI Holding d.o.o. MIKROELEKTRONIKA spol.s.r.o. EUROPE,Croatia 1 01.04.2009 Bonus counter

1835 - city traffic KORID LK, spol.s.r.o.       KORID LK, spol.s.r.o.        Europe         2 08.09.2008 Eticket
1836 - city traffic MIKROELEKTRONIKA spol.s.r. MIKROELEKTRONIKA spol.s.r.o., Europe         1 01.12.2008 Prepaid coupon 1S
1837 - city traffic ZAGREBACKI Holding d.o.o. MIKROELEKTRONIKA spol.s.r.o.   EUROPE,Croatia 1 01.04.2009 Prepaid coupon
1838 - city traffic MIKROELEKTRONIKA spol.s.r. MIKROELEKTRONIKA spol.s.r.o.  Europe         1 01.05.2009 Prepaid coupon
1839 - city traffic Mikroelektronika spol.s r.o Mikroelektronika spol.s r.o  EUROPE,Czech R 1 01.08.2009 Prepaid coupon
183B - city traffic UNICARD S.A.                UNICARD S.A.                 Poland        15 01.01.2010 city traffic services

2061 - bus services Mikroelektronika spol.s r.o. Mikroelektronika spol.s r.o. Europe     1 01.08.2008 Electronic ticket
2062 - bus services ZAGREBACKI Holding d.o.o. MIKROELEKTRONIKA spol.s.r.o EUROPE,Croatia 1 01.04.2009 Electronic tiicket
2063 - bus services MIKROELEKTRONIKA spol.s.r. MIKROELEKTRONIKA spol.s.r.o. Europe       3 01.05.2009 electronic ticket

887B - electronic purse ZAGREBACKI Holding d.o.o. MIKROELEKTRONIKA spol.s.r.o. EUROPE,Croatia  4 01.04.2009 Electronic purse
887C - electronic purse MIKROELEKTRONIKA spol.s.r. MIKROELEKTRONIKA spol.s.r.o. Europe         4 01.05.2009 electronic purse
887D - electronic purse Mikroelektronika spol.s r.o Mikroelektronika spol.s r.o EUROPE,Czech R 4 01.08.2009 Electronic purse