some more stats

2025-07-16 10:03:04 -07:00 · 2020-10-16 07:49:51 +02:00 · 2020-10-16 07:49:51 +02:00 · ffffa77dd9
commit ffffa77dd9
parent d4e6a5b7a6
3 changed files with 88 additions and 6 deletions
--- a/client/src/cmdlfem4x.c
+++ b/client/src/cmdlfem4x.c
@ -1645,6 +1645,10 @@ static int CmdEM4x05Chk(const char *Cmd) {
    return PM3_SUCCESS;
 }

+typedef struct {
+    uint16_t cnt;
+    uint32_t value;    
+} em4x05_unlock_item_t;

 static int unlock_write_protect(bool use_pwd, uint32_t pwd, uint32_t data, bool verbose) {

@ -1686,6 +1690,22 @@ static int unlock_reset(bool use_pwd, uint32_t pwd, uint32_t data, bool verbose)

    return unlock_write_protect(use_pwd, pwd, data, false);
 }
+static void unlock_add_item(em4x05_unlock_item_t *array, uint8_t len, uint32_t value) {
+    
+    uint8_t i = 0;
+    for (; i < len; i++) {
+        if ( array[i].cnt == 0)
+            break;
+        
+        if ( array[i].value == value) {
+            array[i].cnt++;
+            return;
+        }
+    }
+
+    array[i].cnt++;
+    array[i].value = value;    
+}

 static int CmdEM4x05Unlock(const char *Cmd) {

@ -1804,10 +1824,12 @@ static int CmdEM4x05Unlock(const char *Cmd) {
    uint32_t tries = 0;
    uint32_t soon = 0;
    uint32_t late = 0;
+
+    em4x05_unlock_item_t flipped[64]; 
+
    //
    // main loop
    //
-    //uint32_t prev_delay = 0;
    bool success = false;
    uint64_t t1 = msclock();
    while (start <= end) {
@ -1971,12 +1993,16 @@ static int CmdEM4x05Unlock(const char *Cmd) {
                        
                        if (word14b == word15) {
                            PrintAndLogEx(INFO, "Status: confirmed                   => " _RED_("SUCCESS:   ") "14: " _CYAN_("%08X") "  15: %08X", word14b, word15b);
+
+                            unlock_add_item(flipped, 64, word14b);
                            success = true;
                            break;
                        }
                        
                        if (word14b != search_value) {
                            PrintAndLogEx(INFO, "Status: new definitive value!       => " _RED_("SUCCESS:   ") "14: " _CYAN_("%08X") "  15: %08X", word14b, word15b);
+                            
+                            unlock_add_item(flipped, 64, word14b);
                            success = true;
                            break;
                        }
@ -1993,6 +2019,9 @@ static int CmdEM4x05Unlock(const char *Cmd) {
                    }
                } else {
                    PrintAndLogEx(INFO, "Status: 15 bitflipped but inactive      => " _YELLOW_("PROMISING: ") "14: %08X  15: " _CYAN_("%08X"), word14, word15);
+                    
+                    unlock_add_item(flipped, 64, word15);
+                    
                    soon ++;
                }
            }
@ -2014,14 +2043,25 @@ static int CmdEM4x05Unlock(const char *Cmd) {
            bitstring[i] = bitflips & (0xF << ((7-i) * 4)) ? 'x' : '.';
        }
        // compute number of bits flipped
-        uint32_t i = bitflips;
-        i = i - ((i >> 1) & 0x55555555);
-        i = (i & 0x33333333) + ((i >> 2) & 0x33333333);
-        i = (((i + (i >> 4)) & 0x0F0F0F0F) * 0x01010101) >> 24;
-        PrintAndLogEx(INFO, "Bitflips: %2u events => %s", i, bitstring);
+
+        PrintAndLogEx(INFO, "Bitflips: %2u events => %s", bitcount32(bitflips), bitstring);
        PrintAndLogEx(INFO, "New protection word => " _CYAN_("%08X") "\n", word14b);
+
+   
        PrintAndLogEx(INFO, "Try " _YELLOW_("`lf em 4x05_dump`"));
    }
+
+    if (verbose) {
+        PrintAndLogEx(NORMAL, "Stats:");
+        PrintAndLogEx(INFO, " idx | value    | cnt | flipped bits");
+        PrintAndLogEx(INFO, "-----+----------+-----+------");
+        for (uint8_t i = 0; i < 64; i++) {
+            if (flipped[i].cnt == 0)
+                break;
+            
+            PrintAndLogEx(INFO, " %3u | %08X | %3u | %u", i, flipped[i].value, flipped[i].cnt, bitcount32(search_value ^ flipped[i].value));
+        }
+    }
    PrintAndLogEx(NORMAL, "");
    return exit_code;
 }
--- a/client/src/util.c
+++ b/client/src/util.c
@ -895,3 +895,40 @@ int hexstring_to_u96(uint32_t *hi2, uint32_t *hi, uint32_t *lo, const char *str)
    }
    return i - 1;
 }
+
+inline uint32_t bitcount32(uint32_t a) {
+#if defined __GNUC__
+    return __builtin_popcountl(a);
+#else
+    a = a - ((a >> 1) & 0x55555555);
+    a = (a & 0x33333333) + ((a >> 2) & 0x33333333);
+    return (((a + (a >> 4)) & 0x0f0f0f0f) * 0x01010101) >> 24;
+#endif
+}
+
+inline uint64_t bitcount64(uint64_t a) {
+#if defined __GNUC__
+    return __builtin_popcountll(a);
+#else
+    PrintAndLogEx(FAILED, "Was not compiled with fct bitcount64");
+    return 0;
+#endif
+}
+
+inline uint32_t leadingzeros32(uint32_t a) {
+#if defined __GNUC__
+    return __builtin_clzl(a);
+#else
+    PrintAndLogEx(FAILED, "Was not compiled with fct bitcount64");
+    return 0;
+#endif
+}
+
+inline uint64_t leadingzeros64(uint64_t a) {
+#if defined __GNUC__
+    return __builtin_clzll(a);
+#else
+    PrintAndLogEx(FAILED, "Was not compiled with fct bitcount64");
+    return 0;
+#endif
+}
--- a/client/src/util.h
+++ b/client/src/util.h
@ -101,4 +101,9 @@ void strcreplace(char *buf, size_t len, char from, char to);
 char *str_dup(const char *src);
 char *str_ndup(const char *src, size_t len);
 int hexstring_to_u96(uint32_t *hi2, uint32_t *hi, uint32_t *lo, const char *str);
+
+uint32_t bitcount32(uint32_t a);
+uint64_t bitcount64(uint64_t a);
+uint32_t leadingzeros32(uint32_t a);
+uint64_t leadingzeros64(uint64_t a);
 #endif