doc/md/Use_of_Proxmark/4_Advanced-compilation-parameters.md
<a id="Top"></a>
The client and the Proxmark3 firmware should always be in sync. Nevertheless, the firmware can be tuned depending on the Proxmark3 platform and options.
Indeed, the Iceman fork can be used on other Proxmark3 hardware platforms as well.
Via some definitions, you can adjust the firmware for a given platform, but also to add features like the support of the Blue Shark add-on or to select which standalone mode to embed.
^Top
The client doesn't depend on the capabilities of the Proxmark3 it's connected to. So you can use the same client for different Proxmark3 platforms, given that everything is running the same version.
It's possible to explicitly skip the Qt support in the compilation even if Qt is present on the host, with:
make clean
make SKIPQT=1
or to force a fallback to Qt5 even when Qt6 is installed
make clean
make SKIPQT6=1
On Linux hosts, if the Bluez headers and library are present, the client will be compiled with native Bluetooth support. It's possible to explicitly skip Bluetooth support with:
make clean
make SKIPBT=1
^Top
By default, the firmware is of course tuned for the Proxmark3 RDV4 device, which has built-in support for 256KB onboard flash SPI memory, Sim module (smart card support), FPC connector. These features make it very different from all other Proxmark3 devices, there is non other like this one.
Recommendation: if you don't have a RDV4, we strongly recommend your device to have at least a 512KB arm chip, since this repo is crossing 256KB limit. There is still a way to skip parts to make it fit on a 256KB device, see below.
If you need to tune things and save the configuration, create a file Makefile.platform in the root directory of the repository, see Makefile.platform.sample.
For an up-to-date exhaustive list of options, you can run make PLATFORM=.
^Top
Here are the supported values you can assign to PLATFORM in Makefile.platform:
| PLATFORM | DESCRIPTION |
|---|---|
| PM3RDV4 (def) | Proxmark3 RDV4 |
| PM3GENERIC | Proxmark3 generic target |
| PM3ICOPYX | iCopy-X with XC3S100E |
| PM3ULTIMATE | Proxmark3 Ultimate with XC2S50 |
By default PLATFORM=PM3RDV4.
The MCU version (256 or 512) will be detected automatically during flashing.
Known issues:
^Top
Here are the supported values you can assign to PLATFORM_EXTRAS in Makefile.platform:
| PLATFORM_EXTRAS | DESCRIPTION |
|---|---|
| BTADDON | Proxmark3 rdv4 BT add-on |
| FLASH | Flash modding for generic Proxmark3 |
| SMARTCARD | Smartcard modding for generic Proxmark3 |
By default PLATFORM_EXTRAS=.
If you have installed a Blue Shark add-on on your RDV4, define PLATFORM_EXTRAS=BTADDON in your Makefile.platform to enable it.
If you did some modding on the PM3GENERIC platform, you can define FLASH and SMARTCARD to enable these features, like
PLATFORM_EXTRAS=FLASH
You can also define multiple options like
PLATFORM_EXTRAS=FLASH SMARTCARD
^Top
The Iceman repository gives you to easily choose which standalone mode to embed in the firmware.
Documentation for each standalone mode can be found in the Standalone Modes Index.
Here are the supported values you can assign to STANDALONE in Makefile.platform:
| STANDALONE | DESCRIPTION |
|---|---|
| No standalone mode | |
| LF_EM4100EMUL | LF EM4100 simulator standalone mode - temskiy |
| LF_EM4100RSWB | LF EM4100 read/write/clone/brute mode - Monster1024 |
| LF_EM4100RSWW | LF EM4100 read/write/clone/validate/wipe mode - Łukasz "zabszk" Jurczyk |
| LF_EM4100RWC | LF EM4100 read/write/clone mode - temskiy |
| LF_HIDBRUTE | HID corporate 1000 bruteforce - Federico dotta & Maurizio Agazzini |
| LF_HIDFCBRUTE | LF HID facility code bruteforce - ss23 |
| LF_ICEHID | LF HID collector to flashmem - Iceman1001 |
| LF_MULTIHID | LF HID 26 Bit (H1031) multi simulator - Shain Lakin |
| LF_NEDAP_SIM | LF Nedap ID simulator |
| LF_NEXID | Nexwatch credentials detection mode - jrjgjk & Zolorah |
| LF_PROXBRUTE | HID ProxII bruteforce - Brad Antoniewicz |
| LF_PROX2BRUTE | HID ProxII bruteforce v2 - Yann Gascuel |
| LF_SAMYRUN (def) | HID26 read/clone/sim - Samy Kamkar |
| LF_SKELETON | standalone mode skeleton - Iceman1001 |
| LF_THAREXDE | LF EM4x50 simulator/read standalone mode - tharexde |
| HF_14ASNIFF | 14a sniff storing to flashmem - Micolous |
| HF_14BSNIFF | 14b sniff - jacopo-j |
| HF_15SNIFF | 15693 sniff storing to flashmem - Glaser |
| HF_15SIM | 15693 simulator - lnv42 |
| HF_AVEFUL | MIFARE Ultralight read/simulation - Ave Ozkal |
| HF_BOG | 14a sniff with ULC/ULEV1/NTAG auth storing in flashmem - Bogito |
| HF_CARDHOPPER | Long distance (over IP) relay of 14a protocols - Sam Haskins |
| HF_COLIN | Mifare ultra fast sniff/sim/clone - Colin Brigato |
| HF_CRAFTBYTE | UID stealer - Emulates scanned 14a UID - Anze Jensterle |
| HF_DOEGOX_AUTH0 | UL-C / UL-AES unlocker - Philippe Teuwen (doegox) |
| HF_ICECLASS | iCLASS 4-1 mode sim/read & dump/loclass/glitch & config to flashmem - Iceman1001 |
| HF_LEGIC | HF Legic Prime Read/Store/Sim standalone - uhei |
| HF_LEGICSIM | HF Legic Prime Simulate standalone - uhei |
| HF_MATTYRUN | Mifare sniff/clone - Matías A. Ré Medina |
| HF_MFCSIM | Simulate Mifare Classic 1k card storing in flashmem - Ray Lee |
| HF_MSDSAL | EMV Read and emulation - Salvador Mendoza |
| HF_REBLAY | 14A relay over BT - Salvador Mendoza |
| HF_ST25_TEAROFF | Store/restore ST25TB tags with tear-off for counters - SecLabz |
| HF_TCPRST | IKEA Rothult ST25TA, Standalone Master Key Dump/Emulation - Nick Draffen |
| HF_TMUDFORD | Read and emulate ISO15693 card UID - Tim Mudford |
| HF_UNISNIFF | Combined 14a/14b/15 sniffer with runtime selection & extra save options |
| HF_YOUNG | Mifare sniff/simulation - Craig Young |
| HF_EMVPNG | EMV Read and emulation - Davi Mikael (Penegui) |
| DANKARMULTI | Standalone mode that bakes together multiple other standalone modes. - dankar |
By default STANDALONE=LF_SAMYRUN.
^Top
If you own a Proxmark3 Easy with only 256KB, you can use a few definitions to help you getting a smaller firmware.
First thing is of course to use the PLATFORM=PM3GENERIC.
Adding PLATFORM_SIZE=256 will provoke an error during compilation of the recovery image if your image is too big, so you can detect the problem before trying to flash the Proxmark3, e.g.
[=] GEN proxmark3_recovery.bin
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
ERROR: Firmware image too large for your platform! 262768 > 262144
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
You can skip the standalone support by indicating STANDALONE= and
a series of SKIP_* allow to skip some of the functionalities and to get a smaller image.
| Definitions | Rough estimation of the saved space |
|---|---|
| STANDALONE= | 3.6KB |
| SKIP_LF=1 | 25.8KB |
| SKIP_HITAG=1 | 24.2KB |
| SKIP_EM4x50=1 | 2.9KB |
| SKIP_ISO15693=1 | 3.2KB |
| SKIP_LEGICRF=1 | 3.9KB |
| SKIP_ISO14443b=1 | 3.7KB |
| SKIP_ISO14443a=1 | 63.0KB |
| SKIP_ICLASS=1 | 10.5KB |
| SKIP_FELICA=1 | 4.0KB |
| SKIP_NFCBARCODE=1 | 1.4KB |
| SKIP_HFSNIFF=1 | 0.5KB |
| SKIP_HFPLOT=1 | 0.3KB |
| SKIP_ZX8211=1 | 0.3KB |
So for example, at the time of writing, this is a valid Makefile.platform compiling an image for 256KB:
PLATFORM=PM3GENERIC
PLATFORM_SIZE=256
STANDALONE=
SKIP_HITAG=1
SKIP_FELICA=1
Situation might change when the firmware is growing of course, requiring to skip more elements.
Last note: if you skip a tech, be careful not to use a standalone mode which requires that same tech, else the firmware size reduction won't be much.
^Top