--- mdap-server.pl 2007/04/22 16:06:03 8 +++ mdap-server.pl 2007/12/04 22:05:21 83 @@ -1,19 +1,68 @@ #!/usr/bin/perl +use warnings; use strict; use IO::Socket::Multicast; use Data::Dump qw/dump/; +use Getopt::Long; -use constant GROUP => '224.0.0.103'; -use constant PORT => '3235'; +use lib './lib'; +use MDAP; -my $debug = shift @ARGV; +my $GROUP = '224.0.0.103'; +my $PORT = '3235'; -my $local_port = 1000; +#my $debug = 0; # from MDAP +my $quiet = 1; +my $verbose = 0; +my $credentials = 0; + +my $plugins = 1; my $resend_search_delay = 3; my $tftp_path = '/srv/tftp/'; +my $flashed_cmd = 'system config led=flash'; + +GetOptions( + "port=i" => \$PORT, + "group=s" => \$GROUP, + "debug!" => \$debug, + "quiet!" => \$quiet, + "verbose!" => \$verbose, + "search=i" => \$resend_search_delay, + "tftp=s" => \$tftp_path, + "credentials" => \$credentials, + "exec=s" => \$flashed_cmd, + 'plugins!' => \$plugins, +); + +$quiet = 0 if $verbose; +$credentials = 1 if $debug; + +# tab-delimited list of user id/passwd to try on ants +my @try_accounts = ( "Administrator\t" ); + +my $passwd_path = $0; +$passwd_path =~ s/[^\/]+$/passwd/; + +if (-e $passwd_path) { + open(my $fh, $passwd_path) || die "can't open $passwd_path: $!"; + while(<$fh>) { + chomp; + next if /^#/ || /^$/ || /^\s+$/; + if (/^\S+\s+\S+$/) { + push @try_accounts, $_; + } else { + warn "invalid $passwd_path entry: $_\n"; + } + } + print "found ", $#try_accounts + 1, " accounts to try on password protected ants", + $credentials ? " and display credentials" : "", "\n"; +} + +warn "search for ants every ${resend_search_delay}s\ntftp server path: $tftp_path\nflashed to current version: $flashed_cmd\n"; + sub fw { my ($board, $offset,$len) = @_; open(my $fh, "$tftp_path/$board") || die "Can't open image $tftp_path/$board: $!"; @@ -27,7 +76,7 @@ sub fw_build { my $board_name = shift || return 0; my $v = join('.', unpack('CCCC',fw($board_name,0x20,4)) ); - print "# fw_build $board_name $v\n"; + print "# fw_build $board_name $v\n" unless $quiet; return $v; } @@ -36,8 +85,8 @@ return -e "$tftp_path/$board"; } -my $sock = IO::Socket::Multicast->new(LocalPort=>PORT,ReuseAddr=>1); -$sock->mcast_add(GROUP) || die "Couldn't set group: $!\n"; +my $sock = IO::Socket::Multicast->new(LocalPort=>$PORT,ReuseAddr=>1); +$sock->mcast_add($GROUP) || die "Couldn't set group: $!\n"; $sock->mcast_ttl(1); sub ant2hash { @@ -52,56 +101,200 @@ return $hash; } +sub _dump_data { + my $data = shift; + $data =~ s/\s+/ /gs; + return substr($data,0,150); +} + sub mdap_send { my $data = shift; - warn ">> $data\n>>----------\n" if ($debug); - $sock->mcast_send( "${data}", GROUP . ':' . PORT ); + + my $xor = 0; + map { $xor ^= ord($_) } split(//,$data); + $data .= sprintf('%02X', $xor); + + $sock->mcast_send( $data, "${GROUP}:${PORT}" ); + if ($debug) { + warn ">> ${GROUP}:${PORT} >> ", dump( $data ), $/; + } elsif( ! $quiet ) { + warn ">> ",_dump_data($data),$/; + } +} + +my $ant_passwd; +my $ant_unknown_password; +my $ant_ok_password; +my $ant_flashing; + +sub ant_credentials { + my $ant = shift || die "no ant?"; + my $i = $ant_passwd->{$ant} || 0; + my ($user_id,$user_pwd) = split(/\t/, $try_accounts[$i]); + #warn "ant $ant as [$i] $user_id / $user_pwd\n"; + return ($user_id,$user_pwd); +} + +sub ant_unknown_password { + my $ant = shift || die "no ant?"; + if ( $ant_unknown_password->{$ant} ) { + $ant_unknown_password->{$ant}--; + } + return $ant_unknown_password->{$ant}; +} + +sub ant_another_passwd { + my $ant = shift || die "no ant?"; + + return 0 if ant_unknown_password( $ant ); + return 0 if $ant_ok_password->{$ant}; + + $ant_passwd->{$ant}++; + + if ( $ant_passwd->{$ant} > $#try_accounts ) { + print "$ant ant with unknown password\n"; + $ant_unknown_password->{$ant} = 10; + $ant_passwd->{$ant} = 0; + return 0; + } + return 1; +} + +sub forget_ant { + my $ant = shift || die "no ant?"; + delete $ant_unknown_password->{$ant}; + delete $ant_passwd->{$ant}; + delete $ant_ok_password->{$ant}; +} + +my $status = ''; + +sub status { + my $m = join('', @_); + if ($m ne $status) { + print $m; + $status = $m; + } } local $SIG{ALRM} = sub { - mdap_send("ANT-SEARCH MDAP/1.1\r\n46"); + mdap_send("ANT-SEARCH MDAP/1.1\r\n"); alarm( $resend_search_delay ); }; alarm( $resend_search_delay ); -mdap_send("ANT-SEARCH MDAP/1.1\r\n46"); +mdap_send("ANT-SEARCH MDAP/1.1\r\n"); while (1) { my $data; next unless $sock->recv($data,1024); - if ( $data =~ m#^(REPLY-\S+)\s(MDAP/\d+\.\d+)# ) { + if ( $data =~ m#^(INFO|ANT-SEARCH|EXEC-CLI|REPLY-\S+)\s(MDAP)/(\d+\.\d+)# ) { - my ($type,$proto) = ($1,$2); + my ($type,$proto,$mdap_ver) = ($1,$2,$3); my $h = ant2hash($data); - my $ant = $h->{'ANT-ID'} || die "no ANT-ID in ", dump( $h ); + my $client_version = $h->{'MDAP-VERSION'}; + $mdap_ver = $client_version if ($client_version); - print "<< $type $proto ", length($data), " bytes\n"; + # we are getting our own messages (since our source port + # is same as destination) + next if ( $type =~ m#^(INFO|ANT-SEARCH|EXEC-CLI)# ); - warn dump($h),$/ if ($debug); + print "<< $type $proto/$mdap_ver << ", length($data), " bytes: ",_dump_data($data),$/ unless $quiet; + + warn dump( $data, $h ),$/ if ($debug); + + my $ant = $h->{'ANT-ID'} || die "no ANT-ID in ", dump( $h ); + my $seq_nr = $1 if (defined $h->{'SEQ-NR'} && $h->{'SEQ-NR'} =~ m/^(-*\d)+/); + #warn "SEQ-NR: $seq_nr ok: ",$ant_ok_password->{$ant},"\n" if ($seq_nr); + + my ($user_id,$user_pwd) = ant_credentials( $ant ); if ($type eq 'REPLY-ANT-SEARCH') { - mdap_send("INFO MDAP/1.2\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n22"); + mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n") unless ant_unknown_password( $ant ); } elsif ($type eq 'REPLY-INFO') { + + if ( $seq_nr < 0 ) { +# if ( $ant_ok_password ) { +# $ant_ok_password->{$ant} = 0; +# } elsif ( ant_another_passwd( $ant ) ) { + if ( ant_another_passwd( $ant ) ) { + ($user_id,$user_pwd) = ant_credentials( $ant ); + mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); + } + next; + } else { + $ant_ok_password->{$ant}++; + print "$ant credentials $user_id $user_pwd\n" if ( $credentials && $ant_ok_password->{$ant} == 1 ) || $debug; + } + my $board = $h->{'_BOARD_NAME'} || die "no _BOARD_NAME?"; if ( fw_exists( $board ) ) { - if ( $h->{'_BUILD'} ne fw_build( $board ) ) { - print "UPDATE STEP 1 on ant $ant\n"; - mdap_send("EXEC-CLI MDAP/1.2\r\nCLI-CMD:software upgrade\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n1F"); + my $build = $h->{'_BUILD'} || die "no _BUILD?"; + $build =~ s/^(\d+)\.(\d+)\.(\d+)\.(\d+).*$/$1.$2.$3.$4/; + my $new_build = fw_build( $board ); + if ( $build ne $new_build ) { + print "+ $ant $board version $build -> $new_build\n"; + mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:software upgrade\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); + $ant_flashing->{$ant}++; + next; } else { - print "OK ant $ant allready updated...\n"; + once "$ant $board OK version $build", + $ant_unknown_password->{$ant} ? ' with unknown password' : + $ant_passwd->{$ant} ? ' password protected' : + ''; + + $ant_flashing->{$ant} = 0; + # green|red|orange|flash|off + mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:$flashed_cmd\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); + my $waiting = 0; + my $count = 0; + map { + $waiting++ if ($ant_flashing->{$_}); + $count++; + } keys %$ant_flashing; + if ($waiting == 0) { + status "ALL $count ANTS FLASHED\n"; + $ant_flashing = undef; + } else { + status "$waiting of $count ants still flasing\n"; + } + } + + if ( $plugins ) { + foreach my $plugin ( MDAP->plugins ) { + warn "## calling $plugin\n" if $debug; + if ( my $command = $plugin->check( $h ) ) { + + warn ">> $plugin $ant $board ", + $h->{'ANT-NAME'}, " ", + $h->{'_BUILD'}, " ", + "\t:$command\n"; + + mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:$command\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); + last; + } + } } + } else { - print "!! NO FIRMWARE for $board in $tftp_path for ant $ant, skipping update\n"; + once "!! NO FIRMWARE for $board in $tftp_path for ant $ant, skipping update"; } - } elsif ( $type eq 'REPLY-EXEC-CLI' && $h->{'SEQ-NR'} == 1 ) { - print "UPDATE STEP 2 on ant $ant\n"; - mdap_send("EXEC-CLI MDAP/1.2\r\nSEQ-NR:2\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n5F"); + + } elsif ( $type eq 'REPLY-EXEC-CLI' ) { + print "##<< $type $seq_nr\n$data\n" if $debug; + if ( $seq_nr == 1 ) { + mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nSEQ-NR:2\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); + forget_ant( $ant ) if ( $ant_flashing->{$ant} ); + } elsif ( $seq_nr < 0 ) { + warn "EXEC-CLI failed: $data\n"; + } + } else { - print "!! reply ignored ", dump( $h ), $/; + print "!! reply $type ignored ", dump( $h ), $/; } } else {