4 * Copyright (C) 2008 Dave Hansen <dave@sr71.net>
6 * This software may be redistributed and/or modified under the terms of
7 * the GNU General Public License ("GPL") version 2 as published by the
8 * Free Software Foundation.
17 #include <sys/types.h>
22 #include "eyefi-config.h"
25 #define debug_printf(level, args...) do { \
26 if ((level) <= debug_level) \
27 fprintf(stderr, ## args); \
30 #define O_DIRECT 00040000 /* direct disk access hint */
39 #define PATHNAME_MAX 4096
40 char eyefi_mount[PATHNAME_MAX]; // PATH_MAX anyone?
41 static char *eyefi_file_name(enum eyefi_file file)
44 case REQC: return "reqc";
45 case REQM: return "reqm";
46 case RSPC: return "rspc";
47 case RSPM: return "rspm";
53 static char *eyefi_file_on(enum eyefi_file file, char *mnt)
55 char *filename = eyefi_file_name(file);
56 char *full = malloc(PATHNAME_MAX);
58 sprintf(&full[0], "%s/EyeFi/%s", mnt, filename);
59 debug_printf(4, "eyefile nr: %d on '%s' is: '%s'\n", file, mnt, &full[0]);
65 #define EYEFI_BUF_SIZE 16384
66 char unaligned_buf[BUFSZ*2];
70 * Just a few functions so that I can't easily forget about
75 } __attribute__((packed));
76 typedef struct __be32 be32;
79 * These two obviously need to get fixed for
80 * big endian machines.
82 u32 be32_to_u32(be32 src)
84 return swap_bytes(src.val);
86 be32 u32_to_be32(u32 src)
89 ret.val = swap_bytes(src);
93 void dumpbuf(const char *buffer, int bytesToWrite)
96 static char linebuf[500];
98 for (i=0; i < bytesToWrite; i += 16) {
99 char *tmpbuf = &linebuf[0];
100 unsigned long sum = 0;
102 #define lprintf(args...) do { \
103 tmpbuf += sprintf(tmpbuf, ## args);\
106 lprintf("[%03d]: ", i);
107 for (j=0; j < 16; j++) {
108 u8 c = ((unsigned char *)buffer)[i+j];
109 lprintf("%02x ", (unsigned int)c);
113 for (j=0; j < 16; j++) {
114 u8 c = ((unsigned char *)buffer)[i+j];
115 if (c >= 'a' && c <= 'z')
117 else if (c >= 'A' && c <= 'Z')
119 else if (c >= '0' && c <= '9')
121 else if (c >= 0x20 && c <= 127)
129 printf("%s", linebuf);
135 struct card_seq_num {
137 } __attribute__((packed));
139 void read_from(enum eyefi_file);
140 void write_to(enum eyefi_file, void *, int);
141 struct card_seq_num read_seq_from(enum eyefi_file file)
143 struct card_seq_num *ret;
150 * For O_DIRECT writes to files, we need
151 * to be 512 byte aligned on Linux, I think.
152 * So, just align this to something big
153 * and be done with it. FIXME :)
157 unsigned long addr = (unsigned long)&unaligned_buf[BUFSZ];
160 debug_printf(4, "buf: %p\n", buf);
161 debug_printf(4, "unaligned: %p\n", &unaligned_buf[0]);
164 struct card_seq_num seq;
167 * The real manager does this so we might
170 void zero_card_files(void)
172 write_to(REQM, buf, BUFSZ);
173 write_to(REQC, buf, BUFSZ);
174 write_to(RSPM, buf, BUFSZ);
175 write_to(RSPC, buf, BUFSZ);
185 if ((c >= 'A') && (c <= 'Z'))
193 if ((c >= '0') && (c <= '9'))
195 else if ((c >= 'a') && (c <= 'z'))
196 return (c - 'a') + 10;
197 debug_printf(5, "non-hex character: '%c'/'%c'\n", c, lc);
203 if ((o >= '0') && (o <= '7'))
208 int octal_esc_to_chr(char *input) {
211 int len = strlen(input);
213 //intf("%s('%s')\n", __func__, input);
214 if (input[0] != '\\')
219 for (i=1; i < len ; i++) {
222 int tmp = atoo(input[i]);
223 //intf("tmp: %d\n", tmp);
232 char *replace_escapes(char *str)
236 debug_printf(4, "%s(%s)\n", __func__, str);
237 for (i=0; i < strlen(str); i++) {
238 int esc = octal_esc_to_chr(&str[i]);
244 str[output++] = str[i];
247 debug_printf(4, "replaced escapes in: '%s' bytes of output: %d\n", str, output);
251 #define LINEBUFSZ 1024
252 char *locate_eyefi_mount(void)
254 char line[LINEBUFSZ];
255 FILE *mounts = fopen("/proc/mounts", "r");
264 if (strlen(eyefi_mount))
265 return &eyefi_mount[0];
267 while (fgets(&line[0], 1023, mounts)) {
269 read = sscanf(&line[0], "%s %s %s %s %d %d",
270 &dev[0], &mnt[0], &fs[0], &opt[0],
272 // only look at fat filesystems:
273 if (strcmp(fs, "msdos") && strcmp(fs, "vfat")) {
274 debug_printf(2, "fs at '%s' is not fat, skipping...\n", mnt);
277 // Linux's /proc/mounts has spaces like this \040
278 replace_escapes(&mnt[0]);
279 char *file = eyefi_file_on(REQM, &mnt[0]);
280 debug_printf(2, "looking for EyeFi file here: '%s'\n", file);
284 statret = stat(file, &statbuf);
287 debug_printf(2, "fs at: %s is not an Eye-Fi card, skipping...\n",
291 strcpy(&eyefi_mount[0], &mnt[0]);
292 debug_printf(1, "located EyeFi card at: '%s'\n", eyefi_mount);
296 if (strlen(eyefi_mount))
297 return &eyefi_mount[0];
307 debug_printf(2, "Initializing card...\n");
308 mnt = locate_eyefi_mount();
310 debug_printf(1, "unable to locate Eye-Fi card\n");
312 debug_printf(0, "please run with '-d5' option and report the output\n");
314 debug_printf(0, "----------------------------------------------\n");
315 debug_printf(0, "Debug information:\n");
316 system("cat /proc/mounts >&2");
323 seq = read_seq_from(RSPC);
326 debug_printf(2, "Done initializing card...\n");
329 static char *eyefi_file(enum eyefi_file file)
332 return eyefi_file_on(file, &eyefi_mount[0]);
335 void open_error(char *file)
337 fprintf(stderr, "unable to open '%s'\n", file);
338 fprintf(stderr, "Is the Eye-Fi card inserted and mounted at: %s ?\n", eyefi_mount);
339 fprintf(stderr, "Do you have write permissions to it?\n");
340 fprintf(stderr, "debug information:\n");
342 system("cat /proc/mounts >&2");
348 void read_from(enum eyefi_file __file)
355 char *file = eyefi_file(__file);
359 fd = open(file, O_RDONLY);
362 retcntl = fcntl(fd, F_SETFL, O_DIRECT);
367 ret = read(fd, buf, BUFSZ);
374 debug_printf(3, "read '%s': bytes: %d fcntl: %d\n", file, ret, retcntl);
375 for (i=0; i < BUFSZ; i++) {
376 c = ((char *)buf)[i];
383 // printf(" zeros: %d", zeros);
389 void write_to(enum eyefi_file __file, void *stuff, int len)
396 file = eyefi_file(__file);
400 if (debug_level > 3) {
401 debug_printf(3, "%s('%s', ..., %d)\n", __func__, file, len);
404 memset(buf, 0, BUFSZ);
405 memcpy(buf, stuff, len);
406 fd = open(file, O_RDWR|O_DIRECT|O_CREAT, 0600);
407 //ret = lseek(fd, 0, SEEK_SET);
412 ret = write(fd, buf, BUFSZ);
415 debug_printf(3, "wrote %d bytes to '%s' (string was %d bytes)\n", ret, file, len);
417 fprintf(stderr, "error writing to '%s': ", file);
425 * Most of the eyefi strings are pascal-style with
426 * a length byte preceeding content. (Did pascal
427 * have just a byte for length or more??)
429 struct pascal_string {
432 } __attribute__((packed));
434 void print_pascal_string(struct pascal_string *str)
437 for (i = 0; i < str->length; i++)
438 printf("%c", str->value[i]);
442 * The 'o' command has several sub-commands:
444 enum card_info_subcommand {
449 UNKNOWN1 = 5, // Chris says these are
450 UNKNOWN2 = 6, // checksums
454 struct card_info_req {
457 } __attribute__((packed));
459 struct card_info_rsp_key {
460 struct pascal_string key;
467 } __attribute__((packed));
469 struct card_info_api_url {
470 struct pascal_string key;
473 struct card_info_log_len {
476 } __attribute__((packed));
478 #define write_struct(file, s) write_to((file), s, sizeof(*(s)))
480 void print_mac(struct mac_address *mac)
483 for (i=0; i < MAC_BYTES-1; i++) {
484 printf("%02x:", mac->mac[i]);
486 printf("%02x\n", mac->mac[i]);
491 //u32 tmpseq = be32_to_u32(seq.seq);
492 //seq.seq = u32_to_be32(tmpseq+1);
494 write_struct(REQC, &seq);
497 u32 current_seq(void)
502 void wait_for_response(void)
505 debug_printf(3, "waiting for response...\n");
507 for (i = 0; i < 50; i++) {
508 struct card_seq_num cardseq = read_seq_from(RSPC);
509 u32 rsp = cardseq.seq;
510 debug_printf(3, "read rsp code: %lx, looking for: %lx raw: %lx\n", rsp, current_seq(),
512 if (rsp == current_seq())
516 debug_printf(3, "got good seq, reading RSPM...\n");
518 debug_printf(3, "done reading RSPM\n");
520 struct byte_response {
533 char essid[ESSID_LEN];
534 signed char strength;
536 } __attribute__((packed));
538 struct scanned_net_list {
540 struct scanned_net nets[100];
541 } __attribute__((packed));
543 struct configured_net {
544 char essid[ESSID_LEN];
545 } __attribute__((packed));
547 struct configured_net_list {
549 struct configured_net nets[100];
550 } __attribute__((packed));
552 char *net_test_states[] = {
555 "verifying network key",
557 "testing connection to Eye-Fi server",
561 #define ARRAY_SIZE(x) (sizeof(x) / sizeof((x)[0]))
563 char *net_test_state_name(u8 state)
565 int size = ARRAY_SIZE(net_test_states);
568 return net_test_states[state];
571 char *net_types[] = {
579 char *net_type_name(u8 type)
581 int size = ARRAY_SIZE(net_types);
584 return net_types[type];
587 #define WPA_KEY_BYTES 32
589 u8 key[WPA_KEY_BYTES];
590 } __attribute((packed));
592 #define WEP_KEY_BYTES 32
594 u8 key[WEP_KEY_BYTES];
595 } __attribute((packed));
603 } __attribute((packed));
609 char essid[ESSID_LEN];
610 struct network_key key;
611 } __attribute((packed));
614 * Take a string like "0ab1" and make it
615 * a series of bytes: { 0x0a, 0xb1 }
617 * @len is the strlen() of the ascii
619 * Destroys the original string.
621 char *convert_ascii_to_hex(char *ascii, int len)
625 fprintf(stderr, "%s() must be even number of bytes: %d\n",
629 for (i=0; i < len; i+=2) {
630 int high = atoh(ascii[i]);
631 int low = atoh(ascii[i+1]);
632 u8 byte = (high<<4 | low);
633 if (high < 0 || low < 0)
635 debug_printf(6, "high: %02x low: %02x, both: %02x\n", high, low, byte);
638 for (i=len/2; i < len; i++)
643 #define PASSPHRASE_PROG "wpa_passphrase"
645 struct wpa_key *make_wpa_key(char *essid, char *pass)
647 struct wpa_key *key = malloc(sizeof(*key));
649 if (strlen(pass) == WPA_KEY_BYTES*2) {
651 debug_printf(2, "Interpreting password as hex WPA key\n");
652 hex_pass = convert_ascii_to_hex(pass, WPA_KEY_BYTES*2);
655 memcpy(&key->key[0], pass, WPA_KEY_BYTES);
657 debug_printf(2, "Interpreting password as ASCII WPA key\n");
658 pbkdf2_sha1(pass, essid, strlen(essid), 4096,
659 &key->key[0], WPA_KEY_BYTES);
664 void card_info_cmd(enum card_info_subcommand cmd)
666 struct card_info_req cir;
668 cir.subcommand = cmd;
670 write_struct(REQM, &cir);
674 u32 fetch_log_length(void)
676 card_info_cmd(LOG_LEN);
677 struct card_info_log_len *loglen = buf;
678 return be32_to_u32(loglen->val);
681 void print_log_len(void)
683 u32 len = fetch_log_length();
684 printf("log len: %08lx\n", len);
687 void print_card_mac(void)
689 debug_printf(2, "%s()\n", __func__);
690 card_info_cmd(MAC_ADDRESS);
691 struct mac_address *mac = buf;
692 assert(mac->length == MAC_BYTES);
693 printf("card mac address: ");
697 void print_card_key(void)
699 debug_printf(2, "%s()\n", __func__);
700 card_info_cmd(CARD_KEY);
701 struct card_info_rsp_key *foo = buf;
702 printf("card key (len: %d): '", foo->key.length);
703 print_pascal_string(&foo->key);
707 struct noarg_request {
711 void issue_noarg_command(u8 cmd)
713 struct noarg_request req;
715 write_struct(REQM, &req);
719 void scan_print_nets(void)
723 debug_printf(2, "%s()\n", __func__);
724 issue_noarg_command('g');
725 struct scanned_net_list *scanned = buf;
726 if (scanned->nr == 0) {
727 printf("unable to detect any wireless networks\n");
730 printf("Scanned wireless networks:\n");
731 for (i=0; i < scanned->nr; i++) {
732 struct scanned_net *net = &scanned->nets[i];
733 printf("'%s' type(%d): %s, strength: %d\n", net->essid,
735 net_type_name(net->type),
740 void print_configured_nets(void)
743 struct configured_net_list *configured;
745 debug_printf(2, "%s()\n", __func__);
746 issue_noarg_command('l');
748 if (configured->nr == 0) {
749 printf("No wireless networks configured on card\n");
752 printf("configured wireless networks:\n");
753 for (i=0; i < configured->nr; i++) {
754 struct configured_net *net = &configured->nets[i];
755 printf("'%s'\n", net->essid);
759 void reboot_card(void)
761 debug_printf(2, "%s()\n", __func__);
762 issue_noarg_command('b');
765 void copy_wep_key(struct wep_key *dst, struct wep_key *src)
767 memcpy(&dst->key, &src->key, sizeof(*dst));
770 void copy_wpa_key(struct wpa_key *dst, struct wpa_key *src)
772 memcpy(&dst->key, &src->key, sizeof(*dst));
775 void network_action(char cmd, char *essid, char *wpa_ascii)
777 struct net_request nr;
778 memset(&nr, 0, sizeof(nr));
781 strcpy(&nr.essid[0], essid);
782 nr.essid_len = strlen(essid);
783 struct wpa_key *wpakey;
785 wpakey = make_wpa_key(essid, wpa_ascii);
786 nr.key.len = sizeof(*wpakey);
787 copy_wpa_key(&nr.key.wpa, wpakey);
789 write_struct(REQM, &nr);
793 void add_network(char *essid, char *wpa_ascii)
795 debug_printf(2, "%s()\n", __func__);
796 network_action('a', essid, wpa_ascii);
799 void remove_network(char *essid)
801 debug_printf(2, "%s()\n", __func__);
802 network_action('d', essid, NULL);
805 int try_connection_to(char *essid, char *wpa_ascii)
810 char *type = net_type_name(WPA);
812 type = net_type_name(UNSECURED);
813 printf("trying to connect to %s network: '%s'", type, essid);
815 printf(" with passphrase: '%s'", wpa_ascii);
819 network_action('t', essid, wpa_ascii);
823 for (i=0; i < 200; i++) {
824 struct byte_response *r;
825 issue_noarg_command('s');
828 char *state = net_test_state_name(rsp);
829 if (rsp == last_rsp) {
834 printf("\nTesting connecion to '%s' (%d): %s", essid, rsp, state);
838 if (!strcmp("success", state)) {
842 if (!strcmp("not scanning", state))
844 if (!strcmp("unknown", state))
849 printf("Succeeded connecting to: '%s'\n", essid);
851 printf("Unable to connect to: '%s' (final state: %d/'%s')\n", essid,
852 rsp, net_test_state_name(rsp));
857 struct fetch_log_cmd {
860 } __attribute__((packed));
863 * When you ask for the log at offset 0x0, you
864 * get back 8 bytes of offsets into the rest of
867 struct first_log_response {
870 u8 data[EYEFI_BUF_SIZE-8];
871 } __attribute__((packed));
873 struct rest_log_response {
874 u8 data[EYEFI_BUF_SIZE];
875 } __attribute__((packed));
877 unsigned char *get_log_at_offset(u32 offset)
879 struct fetch_log_cmd cmd;
881 cmd.offset = u32_to_be32(offset);
883 debug_printf(2, "getting log at offset: %08lx\n", offset);
884 write_struct(REQM, &cmd);
895 u32 log_size = fetch_log_length();
896 char *resbuf = malloc(log_size);
898 int nr_bufs_per_log = log_size/EYEFI_BUF_SIZE;
899 for (i = 0; i < log_size/EYEFI_BUF_SIZE; i++) {
900 debug_printf(1, "fetching EyeFi card log part %d/%d...",
901 i+1, nr_bufs_per_log);
903 get_log_at_offset(EYEFI_BUF_SIZE*i);
904 debug_printf(1, "done\n");
908 struct first_log_response *log = buf;
909 log_end = be32_to_u32(log->log_end);
910 log_start = be32_to_u32(log->log_start);
911 debug_printf(2, "log end: 0x%04lx\n", log_end);
912 debug_printf(2, "log start: 0x%04lx\n", log_start);
913 log_data = &log->data[0];
914 log_size = ARRAY_SIZE(log->data);
916 struct rest_log_response *log = buf;
917 log_data = &log->data[0];
918 log_size = ARRAY_SIZE(log->data);
920 debug_printf(3, "writing %ld bytes to resbuf[%d]\n",
921 log_size, total_bytes);
922 memcpy(&resbuf[total_bytes], log_data, log_size);
923 total_bytes += log_size;
925 // The last byte *should* be a null, and the
926 // official software does not print it.
927 for (i = 0; i < total_bytes-1; i++) {
928 int offset = (log_start+i)%total_bytes;
929 char c = resbuf[offset];
930 // the official software converts UNIX to DOS-style
931 // line breaks, so we'll do the same
937 // just some simple sanity checking to make sure what
938 // we are fetching looks valid
939 int null_bytes_left = 20;
940 if (resbuf[log_end] != 0) {
941 debug_printf(2, "error: unexpected last byte (%ld/0x%lx) of log: %02x\n",
942 log_end, log_end, resbuf[log_end]);
943 for (i=0; i<log_size; i++) {
946 if (null_bytes_left <= 0)
949 debug_printf(2, "null byte %d\n", i);
959 printf(" eyefitest [OPTIONS]\n");
960 printf(" -a ESSID add network (implies test unless --force)\n");
961 printf(" -t ESSID test network\n");
962 printf(" -p KEY set WPA key for add/test\n");
963 printf(" -r ESSID remove network\n");
964 printf(" -s scan for networks\n");
965 printf(" -c list configured networks\n");
966 printf(" -b reboot card\n");
967 printf(" -d level set debugging level (default: 1)\n");
968 printf(" -k print card unique key\n");
969 printf(" -l dump card log\n");
970 printf(" -m print card mac\n");
974 int main(int argc, char **argv)
979 debug_printf(3, "%s starting...\n", argv[0]);
981 //static int passed_wep = 0;
982 //static int passed_wpa = 0;
983 static int force = 0;
984 static struct option long_options[] = {
985 //{"wep", 'x', &passed_wep, 1},
986 //{"wpa", 'y', &passed_wpa, 1},
987 {"force", 0, &force, 1},
988 {"help", 'h', NULL, 1},
995 char network_action = 0;
996 debug_printf(3, "about to parse arguments\n");
997 while ((c = getopt_long_only(argc, argv, "a:bcd:klmp:r:st:",
998 &long_options[0], &option_index)) != -1) {
999 debug_printf(3, "argument: '%c' %d optarg: '%s'\n", c, c, optarg);
1002 // was a long argument
1014 print_configured_nets();
1017 debug_level = atoi(optarg);
1018 fprintf(stderr, "set debug level to: %d\n", debug_level);
1041 debug_printf(3, "after arguments essid: '%s' passwd: '%s'\n", essid, passwd);
1042 if (network_action && essid) {
1045 switch (network_action) {
1047 ret = try_connection_to(essid, passwd);
1051 ret = try_connection_to(essid, passwd);
1053 debug_printf(1, "forced: skipping network test\n");
1056 printf("Error connecting to network '%s', not adding.\n", essid);
1057 printf("use --force to override\n");
1060 add_network(essid, passwd);
1063 remove_network(essid);