torambo.com
/
Momentum-Apps


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185
							#include "../weebo_i.h"
#include <nfc/protocols/mf_ultralight/mf_ultralight_poller.h>

#define TAG "SceneWrite"

static uint8_t SLB[] = {0x00, 0x00, 0x0F, 0xE0};
static uint8_t CC[] = {0xf1, 0x10, 0xff, 0xee};
static uint8_t DLB[] = {0x01, 0x00, 0x0f, 0xbd};
static uint8_t CFG0[] = {0x00, 0x00, 0x00, 0x04};
static uint8_t CFG1[] = {0x5f, 0x00, 0x00, 0x00};
static uint8_t PACKRFUI[] = {0x80, 0x80, 0x00, 0x00};

enum NTAG215Pages {
    staticLockBits = 2,
    capabilityContainer = 3,
    userMemoryFirst = 4,
    userMemoryLast = 129,
    dynamicLockBits = 130,
    cfg0 = 131,
    cfg1 = 132,
    pwd = 133,
    pack = 134,
    total = 135
};

void weebo_scene_write_calculate_pwd(uint8_t* uid, uint8_t* pwd) {
    pwd[0] = uid[1] ^ uid[3] ^ 0xAA;
    pwd[1] = uid[2] ^ uid[4] ^ 0x55;
    pwd[2] = uid[3] ^ uid[5] ^ 0xAA;
    pwd[3] = uid[4] ^ uid[6] ^ 0x55;
}

NfcCommand weebo_scene_write_poller_callback(NfcGenericEvent event, void* context) {
    furi_assert(event.protocol == NfcProtocolMfUltralight);
    Weebo* weebo = context;
    NfcCommand ret = NfcCommandContinue;

    const MfUltralightPollerEvent* mf_ultralight_event = event.event_data;

    if(mf_ultralight_event->type == MfUltralightPollerEventTypeRequestMode) {
        // This is called after the successful read, so we don't need to do anything special
        mf_ultralight_event->data->poller_mode = MfUltralightPollerModeWrite;
    } else if(mf_ultralight_event->type == MfUltralightPollerEventTypeAuthRequest) {
        mf_ultralight_event->data->auth_context.skip_auth = true;
    } else if(mf_ultralight_event->type == MfUltralightPollerEventTypeReadSuccess) {
        nfc_device_set_data(
            weebo->nfc_device, NfcProtocolMfUltralight, nfc_poller_get_data(weebo->poller));
        const MfUltralightData* data =
            nfc_device_get_data(weebo->nfc_device, NfcProtocolMfUltralight);

        if(!mf_ultralight_is_all_data_read(data)) {
            view_dispatcher_send_custom_event(weebo->view_dispatcher, WeeboCustomEventWrongCard);
            ret = NfcCommandStop;
            return ret;
        }
        if(data->type != MfUltralightTypeNTAG215) {
            view_dispatcher_send_custom_event(weebo->view_dispatcher, WeeboCustomEventWrongCard);
            ret = NfcCommandStop;
            return ret;
        }
        view_dispatcher_send_custom_event(weebo->view_dispatcher, WeeboCustomEventCardDetected);

        FURI_LOG_D(
            TAG,
            "UID: %02X%02X%02X%02X%02X%02X",
            data->iso14443_3a_data->uid[0],
            data->iso14443_3a_data->uid[1],
            data->iso14443_3a_data->uid[2],
            data->iso14443_3a_data->uid[3],
            data->iso14443_3a_data->uid[4],
            data->iso14443_3a_data->uid[5]);

        /*
        MfUltralightAuth* mf_ul_auth;
        mf_ul_auth = mf_ultralight_auth_alloc();
        mf_ultralight_generate_amiibo_pass(
            mf_ul_auth, data->iso14443_3a_data->uid, data->iso14443_3a_data->uid_len);
        mf_ultralight_auth_free(weebo->mf_ul_auth);
        */
        uint8_t PWD[4];
        weebo_scene_write_calculate_pwd(data->iso14443_3a_data->uid, PWD);
        FURI_LOG_D(TAG, "PWD: %02X%02X%02X%02X", PWD[0], PWD[1], PWD[2], PWD[3]);

        for(size_t p = 0; p < 2; p++) {
            for(size_t i = 0; i < MF_ULTRALIGHT_PAGE_SIZE; i++) {
                weebo->figure[NFC3D_UID_OFFSET + p * MF_ULTRALIGHT_PAGE_SIZE + i] =
                    data->page[p].data[i];
            }
        }

        uint8_t modified[NTAG215_SIZE];
        nfc3d_amiibo_pack(&weebo->amiiboKeys, weebo->figure, modified);

        MfUltralightData* newdata = mf_ultralight_alloc();
        nfc_device_copy_data(weebo->nfc_device, NfcProtocolMfUltralight, newdata);

        // If I were writing these by hand, I'd order them to do the least damage first so they can be re-run

        // user data
        for(size_t i = userMemoryFirst; i <= userMemoryLast; i++) {
            newdata->page[i / MF_ULTRALIGHT_PAGE_SIZE].data[i % MF_ULTRALIGHT_PAGE_SIZE] =
                modified[i];
        }
        // pwd
        memcpy(newdata->page[pwd].data, PWD, sizeof(PWD));
        // pack
        memcpy(newdata->page[pack].data, PACKRFUI, sizeof(PACKRFUI));
        // capability container
        memcpy(newdata->page[capabilityContainer].data, CC, sizeof(CC));
        // cfg0
        memcpy(newdata->page[cfg0].data, CFG0, sizeof(CFG0));
        // cfg1
        memcpy(newdata->page[cfg1].data, CFG1, sizeof(CFG1));
        // dynamic lock bits
        memcpy(newdata->page[dynamicLockBits].data, DLB, sizeof(DLB));
        // static lock bits
        memcpy(newdata->page[staticLockBits].data, SLB, sizeof(SLB));

        nfc_device_set_data(weebo->nfc_device, NfcProtocolMfUltralight, newdata);

        mf_ultralight_free(newdata);
    } else if(mf_ultralight_event->type == MfUltralightPollerEventTypeRequestWriteData) {
        // NOTE: Consider saving the first 2 pages of the data (UID + BCC) and then doing all the calculations and setting up the data in this block.
        mf_ultralight_event->data->write_data =
            nfc_device_get_data(weebo->nfc_device, NfcProtocolMfUltralight);

    } else if(mf_ultralight_event->type == MfUltralightPollerEventTypeWriteSuccess) {
        view_dispatcher_send_custom_event(weebo->view_dispatcher, WeeboCustomEventWriteSuccess);
        ret = NfcCommandStop;
    } else if(mf_ultralight_event->type == MfUltralightPollerEventTypeWriteFail) {
        ret = NfcCommandStop;
    } else {
        FURI_LOG_D(TAG, "Unhandled event type: %d", mf_ultralight_event->type);
    }
    return ret;
}

void weebo_scene_write_on_enter(void* context) {
    Weebo* weebo = context;
    Popup* popup = weebo->popup;

    popup_set_header(popup, "Present NTAG215", 58, 28, AlignCenter, AlignCenter);

    weebo->poller = nfc_poller_alloc(weebo->nfc, NfcProtocolMfUltralight);
    nfc_poller_start(weebo->poller, weebo_scene_write_poller_callback, weebo);

    weebo_blink_start(weebo);

    view_dispatcher_switch_to_view(weebo->view_dispatcher, WeeboViewPopup);
}

bool weebo_scene_write_on_event(void* context, SceneManagerEvent event) {
    Weebo* weebo = context;
    bool consumed = false;

    if(event.type == SceneManagerEventTypeCustom) {
        scene_manager_set_scene_state(weebo->scene_manager, WeeboSceneWrite, event.event);
        if(event.event == WeeboCustomEventCardDetected) {
            popup_set_text(weebo->popup, "Card detected", 64, 36, AlignCenter, AlignTop);
            consumed = true;
        } else if(event.event == WeeboCustomEventWriteSuccess) {
            popup_set_text(weebo->popup, "Write success", 64, 36, AlignCenter, AlignTop);
            consumed = true;
            scene_manager_next_scene(weebo->scene_manager, WeeboSceneWriteCardSuccess);
        } else if(event.event == WeeboCustomEventWrongCard) {
            popup_set_text(weebo->popup, "Wrong card", 64, 36, AlignCenter, AlignTop);
            consumed = true;
        }
    }

    return consumed;
}

void weebo_scene_write_on_exit(void* context) {
    Weebo* weebo = context;

    if(weebo->poller) {
        nfc_poller_stop(weebo->poller);
        nfc_poller_free(weebo->poller);
        weebo->poller = NULL;
    }

    popup_reset(weebo->popup);
    weebo_blink_stop(weebo);
}