Closed T0py closed 2 years ago
iceman1001
commented
2 years ago As a side note, I notice you haven't followed the installation guide for your RDV4.
lets see, on discord you said you tried without the btaddon.
However now I get the feeling you are using latest repo with the rfid app. That will not work if you are.
The rfid app needs its own older firmware version.
Please verify running with usb cable against latest source here, that 4x50 doesn't work.
T0py
commented
2 years ago I can confirm that all of the tests I have performed so far are via the USB cable against the latest source, Release v4.9237 and Release v4.13441 and the current release v4.14831.
What part of the installation guide did I not follow? These are the instructions I followed:
With regards to the BT addon, that appears to be an issue with me not setting up the client correctly, not the compilation/building of the firmware and mac client.
T0py
commented
2 years ago Just adding a picture of the EM tag I'm using:
As well as images of the readers this tag works with (two of which are clearly Indala/ASP readers).
I can confirm that I've been able to use those readers since this issue has come up.
Also of note, 1) I repeatedly got the same em4x50 dumps/info output previously. 2) I am not seeing anything in the data plot to indicate the tag is energizing. 3) The tag isn't being detected as Indala either.
I've included the output of:
data plot
lf read
data save -f xxxxxxHere:
And this is the saved data data-read-1.pm3.zip
I can confirm that the PM is reading T55xx cards reliably
And I've also tried (just for fun) switching the Q and F values on the antenna and re-running those tests. In case it's magically at 134kHz or something. No change. I'm also no longer compiling with the BT addon. I've got two RDV4's with me. Both are functioning the same way. So I don't believe it's a device/hardware specific issue either. Nor does it seem to be exclusive to Ubuntu/Mac OS as I've compiled and flashed from both. I've also tried using different USB cables in case there was something wrong.
Let me know if there's anything else I can do to test. I'm working on getting a second tag to test with, as well as multiple blank EM4x50 tags.
iceman1001
commented
2 years ago I see in the guide that the programmer part of the guide doesn't have the same steps in the end.
Returning to your issue at hand, it's odd. The users @tharexde who wrote the EM4x50 impl tested latest w/o issues.
Looking at your dumps from the 2020 fw, they look not correct. EM4x50 functions has improved since, so it might has been a false positive. Indala LF does PSK... What does lf indala reader say? And your lf read shows no signal at all. Which would be an indication its a bad coupling (given the small token) or not LF or it needs a awake command before...
T0py
commented
2 years ago Oh, okay. Yeah, I didn't know to run [usb] pm3 --> script run init_rdv4 or to do a 'smart card module upgrade'. I've not done either before.
I had v3.10 of the smart card module. I've now upgraded it to v3.11.
[#] Smart card module (ISO 7816)
[#] version.................v3.11running lf indala reader
returns signal looks like noise
As a response.
The token is small, but like, i've written/read to smaller implants before. The reader pictures I posted above are all definitely LF readers. They do support some non-standard frequencies though I believe. But again, I'm not sure how I managed to capture repeatable dumps using the older firmware if it was a false positive? That's what's confusing here to me.
iceman1001
commented
2 years ago Can you do a lf sniff ?
T0py
commented
2 years ago I purchased some em4x50 and em410x tags online and these all work fine.
So this would suggest that this issue has been a false positive from the start with the older software incorrectly identifying the tag as em 4x50.
Just an update for anyone who's interested...
I did some more research and managed to get my hands on two other tags from this system. The small keyfob one provided no new/additional information. But the vehicle transponder...
A bit of googling later leads me to this:
I'll close this issue now as the issue is not with the EM4x50 functionality, but with reading this particular type of tag. I'm still not sure how this tag was detected as EM4x50 repeatedly before and how it now wont even apparently energise (and yeah, I've tried using the 134khz mode as well). But I'll take this to discord for further discussion.
Thanks for your help.
Describe the bug I am no longer able to read a known (and functional) EM 4x50 tag after upgrading from an old firmware.
To Reproduce Steps to reproduce the behaviour: Fresh install of MacOS Monterey on a 2015 MBP
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"brew install git readline qt5 pkgconfig coreutils opensslbrew install recodebrew install astylebrew install RfidResearchGroup/proxmark3/arm-none-eabi-gccgit clone https://github.com/RfidResearchGroup/proxmark3.gitcd proxmark3cp Makefile.platform.sample Makefile.platform#. Note, I tried compilation with and without this line uncommented.make clean; make -j./pm3-flash-fullimageIn order to flash the full image, button needs to be held down as device is plugged into PC.
Once connected, I run the following commands for diagnostics:
Everything looks okay as far as I can tell. Lets try some known standard cards:
And HF:
Both are working as expected:
Let's put the em 4x50 tag back on:
Nothing
Expected behavior A previous firmware from around 2020 was used to take the following dump of the em 4x50 tag:
Screenshots If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):
Additional context I have also compiled, flashed and tried the following firmwares: Release v4.9237 Release v4.13441 Current release
The same issue also occurs when installing and flashing via homebrew using the following commands