re-writing uid and block 0 on Chinese (supposed to be writable) MIFARE 1K card in python
Here is my issue: my RC522 module is connected to my Pi2 via SPI and I'm able to read all [64 blocks / 16 sectors] using both MFRC522-python and pi-rc522 libraries. Also I'm able to write and change all the blocks(63 blocks) except for Block 0 (including UID) of a Chinese Mifare 1K card that I bought from ebay and it supposed to be Block 0 / UID writable.
Question is: using the available python libraries(mentioned above), is it possible to write Block 0 on a Chinese writable Mifare 1K card at all or not.
Note: when I received the card the sector trailer access bits were on transport configuration (FF 07 80 -> 001 for sector trailer and 000 for data blocks), which it means normally I could be able to change the data blocks (including Block 0) using KeyA or KeyB, but I couldn't. I changed the access bits to (7F 0F 88 -> 000 for data blocks) and used KeyA/KeyB, it didn't work, and block 0 remained unchanged. I also tried (78 77 88 -> 000 for data blocks) with KeyA or KeyB, same result.
Again, setting proper access bits, I'm able to read/write all the other blocks except for block 0.
Thanks, A.
Answer
There are 2 types of UID writeble cards:
- Block 0 writable cards: you can write block 0 at any moment
- Backdoored cards
If writing block 0 does not work, you probably have a backdoored card: To enable the backdoor, you need to send the following sequence to the card: (everything in hexadecimal)
- RC522 > Card: 50 00 57 cd (HLTA + CRC)
- RC522 > Card: 40 (7 bits only)
- Card > RC522: A (4 bits only)
- RC522 > Card: 43
- Card > RC522: A (4 bits only)
Then you can write to block 0 without authentication. If it still does not work, your card is probably not UID changeable.
To answer your question: There are no reason for Python libraries to refuse writing block 0. It your library can write any block except block 0, it's that your card refuses to write the block.
Do your card sends back a NACK or nothing when trying to write block 0?