1 |
dpavlin |
2 |
#!/usr/bin/perl |
2 |
|
|
|
3 |
|
|
use strict; |
4 |
|
|
use IO::Socket::Multicast; |
5 |
|
|
use Data::Dump qw/dump/; |
6 |
dpavlin |
19 |
use Getopt::Long; |
7 |
dpavlin |
2 |
|
8 |
dpavlin |
19 |
my $GROUP = '224.0.0.103'; |
9 |
|
|
my $PORT = '3235'; |
10 |
dpavlin |
2 |
|
11 |
dpavlin |
19 |
my $debug = 0; |
12 |
|
|
my $quiet = 1; |
13 |
|
|
my $verbose = 0; |
14 |
dpavlin |
8 |
|
15 |
dpavlin |
2 |
my $resend_search_delay = 3; |
16 |
dpavlin |
7 |
my $tftp_path = '/srv/tftp/'; |
17 |
dpavlin |
2 |
|
18 |
dpavlin |
19 |
GetOptions( |
19 |
|
|
"port=i" => \$PORT, |
20 |
|
|
"group=s" => \$GROUP, |
21 |
|
|
"debug!" => \$debug, |
22 |
|
|
"quiet!" => \$quiet, |
23 |
|
|
"verbose!" => \$verbose, |
24 |
|
|
"search=i" => \$resend_search_delay, |
25 |
|
|
"tftp=s" => \$tftp_path, |
26 |
|
|
); |
27 |
|
|
|
28 |
|
|
$quiet = 0 if $verbose; |
29 |
|
|
|
30 |
dpavlin |
17 |
# tab-delimited list of user id/passwd to try on ants |
31 |
|
|
my @try_accounts = ( "Administrator\t" ); |
32 |
dpavlin |
14 |
|
33 |
dpavlin |
17 |
my $passwd_path = $0; |
34 |
|
|
$passwd_path =~ s/[^\/]+$/passwd/; |
35 |
|
|
|
36 |
|
|
if (-e $passwd_path) { |
37 |
|
|
open(my $fh, $passwd_path) || die "can't open $passwd_path: $!"; |
38 |
|
|
while(<$fh>) { |
39 |
|
|
chomp; |
40 |
|
|
next if /^#/ || /^$/ || /^\s+$/; |
41 |
|
|
if (/^\S+\t\S+$/) { |
42 |
|
|
push @try_accounts, $_; |
43 |
|
|
} else { |
44 |
|
|
warn "invalid $passwd_path entry: $_\n"; |
45 |
|
|
} |
46 |
|
|
} |
47 |
dpavlin |
19 |
print "found ", $#try_accounts + 1, " accounts to try on password protected ants\n"; |
48 |
dpavlin |
17 |
} |
49 |
|
|
|
50 |
dpavlin |
9 |
warn "search for ants every ${resend_search_delay}s\ntftp server path: $tftp_path\n"; |
51 |
|
|
|
52 |
dpavlin |
7 |
sub fw { |
53 |
|
|
my ($board, $offset,$len) = @_; |
54 |
|
|
open(my $fh, "$tftp_path/$board") || die "Can't open image $tftp_path/$board: $!"; |
55 |
|
|
my $b; |
56 |
|
|
seek($fh, $offset, 0) || die "can't seek to $offset: $!"; |
57 |
|
|
read($fh, $b, $len) || die "can't read $len bytes from $offset: $!"; |
58 |
|
|
close($fh); |
59 |
|
|
return $b; |
60 |
|
|
} |
61 |
|
|
|
62 |
|
|
sub fw_build { |
63 |
|
|
my $board_name = shift || return 0; |
64 |
|
|
my $v = join('.', unpack('CCCC',fw($board_name,0x20,4)) ); |
65 |
dpavlin |
19 |
print "# fw_build $board_name $v\n" unless $quiet; |
66 |
dpavlin |
7 |
return $v; |
67 |
|
|
} |
68 |
|
|
|
69 |
|
|
sub fw_exists { |
70 |
|
|
my $board = shift; |
71 |
|
|
return -e "$tftp_path/$board"; |
72 |
|
|
} |
73 |
|
|
|
74 |
dpavlin |
19 |
my $sock = IO::Socket::Multicast->new(LocalPort=>$PORT,ReuseAddr=>1); |
75 |
|
|
$sock->mcast_add($GROUP) || die "Couldn't set group: $!\n"; |
76 |
dpavlin |
2 |
$sock->mcast_ttl(1); |
77 |
|
|
|
78 |
|
|
sub ant2hash { |
79 |
|
|
my $data = shift; |
80 |
|
|
my $hash; |
81 |
|
|
map { |
82 |
|
|
if ( m/:/ ) { |
83 |
|
|
my ($n,$v) = split(/:/,$_,2); |
84 |
|
|
$hash->{$n} = $v; |
85 |
|
|
} |
86 |
|
|
} split(/[\n\r]/, $data); |
87 |
|
|
return $hash; |
88 |
|
|
} |
89 |
|
|
|
90 |
|
|
sub mdap_send { |
91 |
|
|
my $data = shift; |
92 |
dpavlin |
14 |
|
93 |
|
|
my $xor = 0; |
94 |
|
|
map { $xor ^= ord($_) } split(//,$data); |
95 |
|
|
$data .= sprintf('%02X', $xor); |
96 |
|
|
|
97 |
dpavlin |
19 |
$sock->mcast_send( $data, "${GROUP}:${PORT}" ); |
98 |
dpavlin |
9 |
if ($debug) { |
99 |
|
|
warn ">> ", dump( $data ), $/; |
100 |
dpavlin |
19 |
} elsif( ! $quiet ) { |
101 |
dpavlin |
9 |
$data =~ s/\s+/ /gi; |
102 |
|
|
warn ">> ", substr($data,0,70), $/; |
103 |
|
|
} |
104 |
dpavlin |
2 |
} |
105 |
|
|
|
106 |
dpavlin |
20 |
my $ant_passwd; |
107 |
dpavlin |
17 |
|
108 |
|
|
sub ant_credentials { |
109 |
|
|
my $ant = shift || die "no ant?"; |
110 |
dpavlin |
20 |
my $i = $ant_passwd->{$ant} || 0; |
111 |
dpavlin |
17 |
my ($user_id,$user_pwd) = split(/\t/, $try_accounts[$i]); |
112 |
|
|
#warn "ant $ant as [$i] $user_id / $user_pwd\n"; |
113 |
|
|
return ($user_id,$user_pwd); |
114 |
|
|
} |
115 |
|
|
|
116 |
dpavlin |
24 |
my $ant_unknown_password; |
117 |
|
|
my $ant_ok_password; |
118 |
dpavlin |
20 |
|
119 |
dpavlin |
25 |
sub ant_unknown_password { |
120 |
|
|
my $ant = shift || die "no ant?"; |
121 |
|
|
if ( $ant_unknown_password->{$ant} ) { |
122 |
|
|
$ant_unknown_password->{$ant}--; |
123 |
|
|
} |
124 |
|
|
return $ant_unknown_password->{$ant}; |
125 |
|
|
} |
126 |
|
|
|
127 |
dpavlin |
17 |
sub ant_another_passwd { |
128 |
|
|
my $ant = shift || die "no ant?"; |
129 |
dpavlin |
20 |
|
130 |
dpavlin |
25 |
return 0 if ant_unknown_password( $ant ); |
131 |
|
|
|
132 |
dpavlin |
20 |
$ant_passwd->{$ant}++; |
133 |
|
|
|
134 |
|
|
if ( $ant_passwd->{$ant} > $#try_accounts ) { |
135 |
dpavlin |
23 |
print "$ant ant with unknown password\n"; |
136 |
dpavlin |
25 |
$ant_unknown_password->{$ant} = 60; |
137 |
dpavlin |
24 |
$ant_passwd->{$ant} = 0; |
138 |
dpavlin |
20 |
return 0; |
139 |
|
|
} |
140 |
|
|
return 1; |
141 |
dpavlin |
17 |
} |
142 |
|
|
|
143 |
dpavlin |
20 |
my $once; |
144 |
|
|
|
145 |
|
|
sub once { |
146 |
dpavlin |
23 |
my $m = join('', @_); |
147 |
dpavlin |
20 |
$once->{$m}++; |
148 |
|
|
print $m if ($once->{$m} == 1); |
149 |
|
|
} |
150 |
|
|
|
151 |
dpavlin |
2 |
local $SIG{ALRM} = sub { |
152 |
dpavlin |
14 |
mdap_send("ANT-SEARCH MDAP/1.1\r\n"); |
153 |
dpavlin |
2 |
alarm( $resend_search_delay ); |
154 |
|
|
}; |
155 |
|
|
|
156 |
|
|
alarm( $resend_search_delay ); |
157 |
|
|
|
158 |
dpavlin |
14 |
mdap_send("ANT-SEARCH MDAP/1.1\r\n"); |
159 |
dpavlin |
7 |
|
160 |
dpavlin |
2 |
while (1) { |
161 |
|
|
my $data; |
162 |
|
|
next unless $sock->recv($data,1024); |
163 |
|
|
|
164 |
dpavlin |
9 |
if ( $data =~ m#^(INFO|ANT-SEARCH|EXEC-CLI|REPLY-\S+)\s(MDAP)/(\d+\.\d+)# ) { |
165 |
dpavlin |
2 |
|
166 |
dpavlin |
9 |
my ($type,$proto,$mdap_ver) = ($1,$2,$3); |
167 |
dpavlin |
2 |
|
168 |
|
|
my $h = ant2hash($data); |
169 |
|
|
|
170 |
dpavlin |
9 |
my $client_version = $h->{'MDAP-VERSION'}; |
171 |
|
|
$mdap_ver = $client_version if ($client_version); |
172 |
dpavlin |
7 |
|
173 |
dpavlin |
19 |
print "<< $type $proto/$mdap_ver << ", length($data), " bytes\n" unless $quiet; |
174 |
dpavlin |
2 |
|
175 |
dpavlin |
8 |
warn dump($h),$/ if ($debug); |
176 |
|
|
|
177 |
dpavlin |
17 |
# we are getting our own messages (since our source port |
178 |
|
|
# is same as destination) |
179 |
dpavlin |
9 |
next if ( $type =~ m#^(INFO|ANT-SEARCH|EXEC-CLI)# ); |
180 |
|
|
|
181 |
|
|
my $ant = $h->{'ANT-ID'} || die "no ANT-ID in ", dump( $h ); |
182 |
dpavlin |
24 |
my $seq_nr = $h->{'SEQ-NR'}; |
183 |
|
|
#warn "SEQ-NR: $seq_nr ok: ",$ant_ok_password->{$ant},"\n" if ($seq_nr); |
184 |
dpavlin |
9 |
|
185 |
dpavlin |
17 |
my ($user_id,$user_pwd) = ant_credentials( $ant ); |
186 |
|
|
|
187 |
dpavlin |
2 |
if ($type eq 'REPLY-ANT-SEARCH') { |
188 |
dpavlin |
25 |
mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n") unless ant_unknown_password( $ant ); |
189 |
dpavlin |
2 |
} elsif ($type eq 'REPLY-INFO') { |
190 |
dpavlin |
15 |
|
191 |
dpavlin |
24 |
if ( $seq_nr < 0 ) { |
192 |
|
|
if ( $ant_ok_password ) { |
193 |
|
|
$ant_ok_password->{$ant} = 0; |
194 |
|
|
} elsif ( ant_another_passwd( $ant ) ) { |
195 |
|
|
($user_id,$user_pwd) = ant_credentials( $ant ); |
196 |
dpavlin |
20 |
mdap_send("INFO MDAP/$mdap_ver\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); |
197 |
|
|
} |
198 |
dpavlin |
15 |
next; |
199 |
dpavlin |
24 |
} else { |
200 |
|
|
$ant_ok_password->{$ant}++; |
201 |
dpavlin |
15 |
} |
202 |
|
|
|
203 |
dpavlin |
7 |
my $board = $h->{'_BOARD_NAME'} || die "no _BOARD_NAME?"; |
204 |
|
|
if ( fw_exists( $board ) ) { |
205 |
dpavlin |
14 |
my $build = $h->{'_BUILD'} || die "no _BUILD?"; |
206 |
|
|
my $new_build = fw_build( $board ); |
207 |
|
|
if ( $build ne $new_build ) { |
208 |
dpavlin |
23 |
print "+ $ant version $build -> $new_build\n"; |
209 |
dpavlin |
14 |
mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nCLI-CMD:software upgrade\r\nSEQ-NR:1\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); |
210 |
dpavlin |
7 |
} else { |
211 |
dpavlin |
23 |
once "$ant OK version $build", |
212 |
dpavlin |
24 |
$ant_unknown_password->{$ant} ? ' with unknown password' : |
213 |
|
|
$ant_ok_password->{$ant} ? ' password protected' : |
214 |
|
|
'', |
215 |
dpavlin |
23 |
"\n"; |
216 |
dpavlin |
7 |
} |
217 |
dpavlin |
2 |
} else { |
218 |
dpavlin |
20 |
once "!! NO FIRMWARE for $board in $tftp_path for ant $ant, skipping update\n"; |
219 |
dpavlin |
2 |
} |
220 |
dpavlin |
3 |
} elsif ( $type eq 'REPLY-EXEC-CLI' && $h->{'SEQ-NR'} == 1 ) { |
221 |
dpavlin |
23 |
print "+ $ant bootp mode re-flash started\n"; |
222 |
dpavlin |
14 |
mdap_send("EXEC-CLI MDAP/$mdap_ver\r\nSEQ-NR:2\r\nTO-ANT:$ant\r\nUSER-ID:$user_id\r\nUSER-PWD:$user_pwd\r\n"); |
223 |
dpavlin |
24 |
$ant_unknown_password->{$ant} = 0; |
224 |
|
|
$ant_passwd->{$ant} = 0; |
225 |
|
|
$ant_ok_password->{$ant} = 0; |
226 |
dpavlin |
2 |
} else { |
227 |
dpavlin |
8 |
print "!! reply ignored ", dump( $h ), $/; |
228 |
dpavlin |
2 |
} |
229 |
|
|
|
230 |
|
|
} else { |
231 |
dpavlin |
8 |
warn "<=" x 15, "\n", $data, "\n", "<=" x 15, "\n"; |
232 |
dpavlin |
2 |
} |
233 |
|
|
} |