--- mdap-server.pl	2007/04/22 16:40:49	9
+++ mdap-server.pl	2007/04/24 15:44:20	31
@@ -3,15 +3,52 @@
 use strict;
 use IO::Socket::Multicast;
 use Data::Dump qw/dump/;
+use Getopt::Long;
 
-use constant GROUP => '224.0.0.103';
-use constant PORT  => '3235';
+my $GROUP = '224.0.0.103';
+my $PORT  = '3235';
 
-my $debug = shift @ARGV;
+my $debug = 0;
+my $quiet = 1;
+my $verbose = 0;
+my $credentials = 0;
 
 my $resend_search_delay = 3;
 my $tftp_path = '/srv/tftp/';
 
+GetOptions(
+	"port=i"	=> \$PORT,
+	"group=s"	=> \$GROUP,
+	"debug!"	=> \$debug,
+	"quiet!"	=> \$quiet,
+	"verbose!"	=> \$verbose,
+	"search=i"	=> \$resend_search_delay,
+	"tftp=s"	=> \$tftp_path,
+	"credentials"	=> \$credentials,
+);
+
+$quiet = 0 if $verbose;
+
+# tab-delimited list of user id/passwd to try on ants
+my @try_accounts = ( "Administrator\t" );
+
+my $passwd_path = $0;
+$passwd_path =~ s/[^\/]+$/passwd/;
+
+if (-e $passwd_path) {
+	open(my $fh, $passwd_path) || die "can't open $passwd_path: $!";
+	while(<$fh>) {
+		chomp;
+		next if /^#/ || /^$/ || /^\s+$/;
+		if (/^\S+\s\S+$/) {
+			push @try_accounts, $_;
+		} else {
+			warn "invalid $passwd_path entry: $_\n";
+		}
+	}
+	print "found ", $#try_accounts + 1, " accounts to try on password protected ants\n";
+}
+
 warn "search for ants every ${resend_search_delay}s\ntftp server path: $tftp_path\n";
 
 sub fw {
@@ -27,7 +64,7 @@
 sub fw_build {
 	my $board_name = shift || return 0;
 	my $v = join('.', unpack('CCCC',fw($board_name,0x20,4)) );
-	print "# fw_build $board_name $v\n";
+	print "# fw_build $board_name $v\n" unless $quiet;
 	return $v;
 }
 
@@ -36,8 +73,8 @@
 	return -e "$tftp_path/$board";
 }
 
-my $sock = IO::Socket::Multicast->new(LocalPort=>PORT,ReuseAddr=>1);
-$sock->mcast_add(GROUP) || die "Couldn't set group: $!\n";
+my $sock = IO::Socket::Multicast->new(LocalPort=>$PORT,ReuseAddr=>1);
+$sock->mcast_add($GROUP) || die "Couldn't set group: $!\n";
 $sock->mcast_ttl(1);
 
 sub ant2hash {
@@ -54,23 +91,91 @@
 
 sub mdap_send {
 	my $data = shift;
-	$sock->mcast_send( "${data}", GROUP . ':' . PORT );
+
+	my $xor = 0;
+	map { $xor ^= ord($_) } split(//,$data);
+	$data .= sprintf('%02X', $xor);
+
+	$sock->mcast_send( $data, "${GROUP}:${PORT}" );
 	if ($debug) {
 		warn ">> ", dump( $data ), $/;
-	} else {
+	} elsif( ! $quiet ) {
 		$data =~ s/\s+/ /gi;
 		warn ">> ", substr($data,0,70), $/;
 	}
 }
 
+my $ant_passwd;
+my $ant_unknown_password;
+my $ant_ok_password;
+my $ant_flashing;
+
+sub ant_credentials {
+	my $ant = shift || die "no ant?";
+	my $i = $ant_passwd->{$ant} || 0;
+	my ($user_id,$user_pwd) = split(/\t/, $try_accounts[$i]);
+	#warn "ant $ant as [$i] $user_id / $user_pwd\n";
+	return ($user_id,$user_pwd);
+}
+
+sub ant_unknown_password {
+	my $ant = shift || die "no ant?";
+	if ( $ant_unknown_password->{$ant} ) {
+		$ant_unknown_password->{$ant}--;
+	}
+	return $ant_unknown_password->{$ant};
+}
+
+sub ant_another_passwd {
+	my $ant = shift || die "no ant?";
+
+	return 0 if ant_unknown_password( $ant );
+	return 0 if $ant_ok_password->{$ant};
+
+	$ant_passwd->{$ant}++;
+
+	if ( $ant_passwd->{$ant} > $#try_accounts ) {
+		print "$ant ant with unknown password\n";
+		$ant_unknown_password->{$ant} = 10;
+		$ant_passwd->{$ant} = 0;
+		return 0;
+	}
+	return 1;
+}
+
+sub forget_ant {
+	my $ant = shift || die "no ant?";
+	delete $ant_unknown_password->{$ant};
+	delete $ant_passwd->{$ant};
+	delete $ant_ok_password->{$ant};
+}
+
+my $once;
+
+sub once {
+	my $m = join('', @_);
+	$once->{$m}++;
+	print $m if ($once->{$m} == 1);
+}
+
+my $status = '';
+
+sub status {
+	my $m = join('', @_);
+	if ($m ne $status) {
+		print $m;
+		$status = $m;
+	}
+}
+
 local $SIG{ALRM} = sub {
-	mdap_send("ANT-SEARCH MDAP/1.1\r\n46");
+	mdap_send("ANT-SEARCH MDAP/1.1\r\n");
 	alarm( $resend_search_delay );
 };
 
 alarm( $resend_search_delay );
 
-mdap_send("ANT-SEARCH MDAP/1.1\r\n46");
+mdap_send("ANT-SEARCH MDAP/1.1\r\n");
 
 while (1) {
 	my $data;
@@ -85,32 +190,73 @@
 		my $client_version = $h->{'MDAP-VERSION'};
 		$mdap_ver = $client_version if ($client_version);
 
-		print "<< $type $proto/$mdap_ver << ", length($data), " bytes\n";
+		print "<< $type $proto/$mdap_ver << ", length($data), " bytes\n" unless $quiet;
 
 		warn dump($h),$/ if ($debug);
 
-		# we are getting our own INFO messages
+		# we are getting our own messages (since our source port
+		# is same as destination)
 		next if ( $type =~ m#^(INFO|ANT-SEARCH|EXEC-CLI)# );
 
 		my $ant = $h->{'ANT-ID'} || die "no ANT-ID in ", dump( $h );
+		my $seq_nr = $h->{'SEQ-NR'};
+		#warn "SEQ-NR: $seq_nr ok: ",$ant_ok_password->{$ant},"\n" if ($seq_nr);
+
+		my ($user_id,$user_pwd) = ant_credentials( $ant );
 
 		if ($type eq 'REPLY-ANT-SEARCH') {
-			mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n22");
+			mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n") unless ant_unknown_password( $ant );
 		} elsif ($type eq 'REPLY-INFO') {
+
+			if ( $seq_nr < 0 ) {
+#				if ( $ant_ok_password ) {
+#					$ant_ok_password->{$ant} = 0;
+#				} elsif ( ant_another_passwd( $ant ) ) {
+				if ( ant_another_passwd( $ant ) ) {
+					($user_id,$user_pwd) = ant_credentials( $ant );
+					mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n");
+				}
+				next;
+			} else {
+				$ant_ok_password->{$ant}++;
+				print "$ant credentials $user_id $user_pwd\n" if ($credentials && $ant_ok_password->{$ant} == 1);
+			}
+
 			my $board = $h->{'_BOARD_NAME'} || die "no _BOARD_NAME?";
 			if ( fw_exists( $board ) ) {
-				if ( $h->{'_BUILD'} ne fw_build( $board ) ) {
-					print "UPDATE STEP 1 on ant $ant\n";
-					mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:software upgrade\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n1F");
+				my $build = $h->{'_BUILD'} || die "no _BUILD?";
+				my $new_build = fw_build( $board );
+				if ( $build ne $new_build ) {
+					print "+ $ant version $build -> $new_build\n";
+					mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:software upgrade\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n");
 				} else {
-					print "OK ant $ant allready updated...\n";
+					once "$ant OK version $build",
+						$ant_unknown_password->{$ant} ? ' with unknown password' :
+						$ant_ok_password->{$ant} ? ' password protected' :
+						'',
+						"\n";
+					$ant_flashing->{$ant} = 0;
+					my $waiting = 0;
+					my $count = 0;
+					map {
+						$waiting++ if ($ant_flashing->{$_});
+						$count++;
+					} keys %$ant_flashing;
+					if ($waiting == 0) {
+						status "ALL $count ANTS FLASHED to $build\n";
+						$ant_flashing = undef;
+					} else {
+						status "$waiting of $count ants still flasing upto $build\n";
+					}
 				}
 			} else {
-				print "!! NO FIRMWARE for $board in $tftp_path for ant $ant, skipping update\n";
+				once "!! NO FIRMWARE for $board in $tftp_path for ant $ant, skipping update\n";
 			}
 		} elsif ( $type eq 'REPLY-EXEC-CLI' && $h->{'SEQ-NR'} == 1 ) {
-				print "UPDATE STEP 2 on ant $ant\n";
-				mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nSEQ-NR:2\r\nTO-ANT:$ant\r\nUSER-ID:Administrator\r\nUSER-PWD:\r\n5F");
+				print "+ $ant bootp mode re-flash started\n" if ($verbose);
+				mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nSEQ-NR:2\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n");
+				forget_ant( $ant );
+				$ant_flashing->{$ant}++;
 		} else {
 			print "!! reply ignored ", dump( $h ), $/;
 		}