4 * Copyright (C) 2008 Dave Hansen <dave@sr71.net>
6 * This software may be redistributed and/or modified under the terms of
7 * the GNU General Public License ("GPL") version 2 as published by the
8 * Free Software Foundation.
11 #include "eyefi-config.h"
13 int eyefi_debug_level = 1;
15 int eyefi_printf(const char *fmt, ...)
21 r = vprintf(fmt, args);
27 static char *eyefi_file_name(enum eyefi_file file)
30 case REQC: return "reqc";
31 case REQM: return "reqm";
32 case RSPC: return "rspc";
33 case RSPM: return "rspm";
39 char *eyefi_file_on(enum eyefi_file file, char *mnt)
41 char *filename = eyefi_file_name(file);
42 char *full = malloc(PATHNAME_MAX);
47 sprintf(&full[0], "%s/EyeFi/%s", mnt, filename);
48 debug_printf(4, "eyefile nr: %d on '%s' is: '%s'\n", file, mnt, &full[0]);
53 * This lets us get away with a static allocation
54 * for the buffer. We make it size*2 so that we're
55 * guaranteed to be able to get a "size" buffer
56 * aligned inside of the larger one.
58 static char unaligned_buf[EYEFI_BUF_SIZE*2];
59 static void *eyefi_buf;
61 void *eyefi_response(void)
66 void dumpbuf(const char *buffer, int bytesToWrite)
69 static char linebuf[500];
71 for (i=0; i < bytesToWrite; i += 16) {
72 char *tmpbuf = &linebuf[0];
73 unsigned long sum = 0;
75 #define lprintf(args...) do { \
76 tmpbuf += sprintf(tmpbuf, ## args);\
79 lprintf("[%03d]: ", i);
80 for (j=0; j < 16; j++) {
81 u8 c = ((unsigned char *)buffer)[i+j];
82 lprintf("%02x ", (unsigned int)c);
86 for (j=0; j < 16; j++) {
87 u8 c = ((unsigned char *)buffer)[i+j];
88 if (c >= 'a' && c <= 'z')
90 else if (c >= 'A' && c <= 'Z')
92 else if (c >= '0' && c <= '9')
94 else if (c >= 0x20 && c <= 127)
102 printf("%s", linebuf);
108 void read_from(enum eyefi_file);
109 void write_to(enum eyefi_file, void *, int);
111 struct card_seq_num eyefi_seq;
112 struct card_seq_num read_seq_from(enum eyefi_file file)
114 struct card_seq_num *ret;
121 * For O_DIRECT writes to files, we need
122 * to be 512 byte aligned on Linux, I think.
123 * So, just align this to something big
124 * and be done with it. FIXME :)
126 * This probably isn't necessary on chdk,
127 * since I don't think it buffers I/O at
132 unsigned long addr = (unsigned long)&unaligned_buf[EYEFI_BUF_SIZE];
133 addr &= ~(EYEFI_BUF_SIZE-1);
134 eyefi_buf = (void *)addr;
135 debug_printf(4, "buf: %p\n", eyefi_buf);
136 debug_printf(4, "unaligned: %p\n", &unaligned_buf[0]);
140 * The real manager does this so we might
143 void zero_card_files(void)
145 char zbuf[EYEFI_BUF_SIZE];
147 memset(&zbuf[0], 0, EYEFI_BUF_SIZE);
148 //write_to(REQM, zbuf, EYEFI_BUF_SIZE);
149 write_to(REQC, zbuf, EYEFI_BUF_SIZE);
150 write_to(RSPM, zbuf, EYEFI_BUF_SIZE);
151 write_to(RSPC, zbuf, EYEFI_BUF_SIZE);
162 if (eyefi_buf != NULL)
165 debug_printf(2, "Initializing card...\n");
166 mnt = locate_eyefi_mount();
172 eyefi_seq = read_seq_from(RSPC);
173 if (eyefi_seq.seq == 0)
174 eyefi_seq.seq = 0x1234;
176 debug_printf(2, "Done initializing card...\n");
177 debug_printf(2, "seq was: %04x\n", eyefi_seq.seq);
180 static char *eyefi_file(enum eyefi_file file)
183 return eyefi_file_on(file, locate_eyefi_mount());
186 void read_from(enum eyefi_file __file)
190 char *file = eyefi_file(__file);
195 fd = open(file, O_RDONLY);
197 open_error(file, fd);
199 ret = read(fd, eyefi_buf, EYEFI_BUF_SIZE);
200 if (eyefi_debug_level > 3)
201 dumpbuf(eyefi_buf, 128);
204 perror("bad read, retrying...");
208 debug_printf(4, "read '%s': bytes: %d\n", file, ret);
210 * There was a time when I was carefully recording how each response
211 * looked, and I counted the zeros in each response. I don't care
216 for (i=0; i < EYEFI_BUF_SIZE; i++) {
217 c = ((char *)eyefi_buf)[i];
229 void write_to(enum eyefi_file __file, void *stuff, int len)
240 file = eyefi_file(__file);
244 if (eyefi_debug_level > 3) {
245 debug_printf(3, "%s('%s', ..., %d)\n", __func__, file, len);
248 memset(eyefi_buf, 0, EYEFI_BUF_SIZE);
249 memcpy(eyefi_buf, stuff, len);
250 fd = open(file, O_RDWR|O_CREAT, 0600);
252 open_error(file, fd);
253 if (eyefi_debug_level > 3)
254 dumpbuf(eyefi_buf, 128);
255 wrote = write(fd, eyefi_buf, EYEFI_BUF_SIZE);
257 open_error(file, wrote);
260 open_error(file, ret);
262 debug_printf(3, "wrote %d bytes to '%s' (string was %d bytes)\n", wrote, file, len);
264 fprintf(stderr, "error writing to '%s': ", file);
271 #define write_struct(file, s) write_to((file), s, sizeof(*(s)))
276 * Oddly enough, the sequence number appears
277 * to be of normal endianness.
279 //u32 tmpseq = be32_to_u32(seq.seq);
280 //seq.seq = u32_to_be32(tmpseq+1);
282 write_struct(REQC, &eyefi_seq);
285 u32 eyefi_current_seq(void)
287 return eyefi_seq.seq;
290 int wait_for_response(void)
295 debug_printf(3, "waiting for response...\n");
297 for (i = 0; i < 50; i++) {
298 struct card_seq_num cardseq = read_seq_from(RSPC);
299 debug_printf(3, "read rsp code: %x, looking for: %x raw: %x\n", rsp, eyefi_current_seq(),
302 if (rsp == eyefi_current_seq()) {
306 if (eyefi_debug_level > 4) {
308 debug_printf(1, "command issued was: '%c'\n", ((char *)eyefi_buf)[0]);
313 debug_printf(1, "never saw card seq response\n");
316 debug_printf(3, "got good seq (%d), reading RSPM...\n", rsp);
318 debug_printf(3, "done reading RSPM\n");
322 char *net_test_states[] = {
325 "verifying network key",
327 "testing connection to Eye-Fi server",
331 char *net_test_state_name(u8 state)
333 int size = ARRAY_SIZE(net_test_states);
336 return net_test_states[state];
339 const char *net_types[] = {
346 const char net_type_unknown[] = "unknown";
348 const char *net_type_name(u8 type)
350 int size = ARRAY_SIZE(net_types);
351 debug_printf(3, "%s(%d): '%s' size: %d\n", __func__, type, net_types[type], size);
353 return net_type_unknown;
354 return net_types[type];
357 static char lower(char c)
359 if ((c >= 'A') && (c <= 'Z'))
367 if ((c >= '0') && (c <= '9'))
369 else if ((lc >= 'a') && (lc <= 'z'))
370 return (lc - 'a') + 10;
371 debug_printf(5, "non-hex character: '%c'/'%c'\n", c, lc);
376 * Take a string like "0ab1" and make it
377 * a series of bytes: { 0x0a, 0xb1 }
379 * @len is the strlen() of the ascii
381 * Destroys the original string.
383 char *convert_ascii_to_hex(char *ascii, int len)
387 fprintf(stderr, "%s() must be even number of bytes: %d\n",
391 for (i=0; i < len; i+=2) {
392 int high = atoh(ascii[i]);
393 int low = atoh(ascii[i+1]);
394 u8 byte = (high<<4 | low);
395 if (high < 0 || low < 0) {
396 fprintf(stderr, "unable to parse hex string: '%s'\n", ascii);
399 debug_printf(6, "high: %02x low: %02x, both: %02x\n", high, low, byte);
402 for (i=len/2; i < len; i++)
407 int make_network_key(struct network_key *key, char *essid, char *pass)
409 char tmp[WPA_KEY_BYTES+WEP_KEY_BYTES];
410 int pass_len = strlen(pass);
412 memset(key, 0, sizeof(*key));
414 strcpy(&tmp[0], pass);
415 eyefi_printf(" interpreting passphrase as ");
417 case WPA_KEY_BYTES*2:
418 eyefi_printf("hex WPA");
419 hex_pass = convert_ascii_to_hex(tmp, pass_len);
422 key->len = pass_len/2;
423 memcpy(&key->wpa.key[0], hex_pass, key->len);
425 case WEP_KEY_BYTES*2:
426 case WEP_40_KEY_BYTES*2:
427 eyefi_printf("hex WEP");
428 hex_pass = convert_ascii_to_hex(tmp, strlen(pass));
431 key->len = pass_len/2;
432 memcpy(&key->wep.key[0], hex_pass, key->len);
435 eyefi_printf("ASCII WPA");
436 pbkdf2_sha1(pass, essid, strlen(essid), 4096,
437 &key->wpa.key[0], WPA_KEY_BYTES);
438 key->len = WPA_KEY_BYTES;
441 eyefi_printf(" key (%d bytes)\n", key->len);
442 assert(key->len != 0);
446 int card_info_cmd(enum card_info_subcommand cmd)
448 struct card_info_req cir;
450 cir.subcommand = cmd;
452 write_struct(REQM, &cir);
453 return wait_for_response();
456 u32 fetch_log_length(void)
458 debug_printf(3, "%s()\n", __func__);
459 card_info_cmd(LOG_LEN);
460 struct card_info_log_len *loglen = eyefi_buf;
461 return be32_to_u32(loglen->val);
464 struct card_firmware_info *fetch_card_firmware_info(void)
466 debug_printf(2, "%s()\n", __func__);
467 card_info_cmd(FIRMWARE_INFO);
468 return (struct card_firmware_info *)eyefi_buf;
472 void wlan_disable(int do_disable)
475 * This is complete voodoo to me. I've only ever seen
476 * a single example of this, so it's hard to figure out
477 * the structure at all.
479 char new_cmd[] = {'O', 0x0a, do_disable};
480 write_to(REQM, &new_cmd[0], 3);
484 int wlan_enabled(void)
486 struct var_byte_response *rsp;
487 card_info_cmd(WLAN_ENABLED);
489 return rsp->responses[0].response;
505 void scan_print_nets(void);
514 printf("WLAN enabled: %d\n", wlan_enabled());
516 printf("WLAN enabled: %d\n", wlan_enabled());
518 printf("WLAN enabled: %d\n", wlan_enabled());
520 for (i = 10; i <= 13; i++) {
523 printf("UNKNOWN %d result:\n", i);
524 dumpbuf(eyefi_buf, 64);
525 printf("WLAN enabled: %d\n", wlan_enabled());
530 printf("UNKNOWN %d result:\n", i);
531 dumpbuf(eyefi_buf, 64);
533 printf("WLAN enabled: %d\n", wlan_enabled());
535 printf("WLAN enabled: %d\n", wlan_enabled());
536 for (i = 10; i <= 13; i++) {
539 printf("UNKNOWN %d result:\n", i);
540 dumpbuf(eyefi_buf, 64);
541 printf("WLAN enabled: %d\n", wlan_enabled());
545 printf("UNKNOWN %d result:\n", i);
546 dumpbuf(eyefi_buf, 64);
550 printf("o3 result:\n");
551 dumpbuf(eyefi_buf, 64);
553 memset(&zbuf[0], 0, EYEFI_BUF_SIZE);
557 write_to(REQM, &zbuf[0], 16384);
558 printf("o2 written\n");
559 printf("seq: %x\n", (int)eyefi_seq.seq);
562 for (i=0; i < 4; i++) {
564 printf("RSPC %d:\n", i);
565 dumpbuf(eyefi_buf, 64);
571 dumpbuf(eyefi_buf, 64);
573 memset(&zbuf[0], 0, EYEFI_BUF_SIZE);
574 write_to(RSPM, zbuf, EYEFI_BUF_SIZE);
575 write_to(REQM, zbuf, EYEFI_BUF_SIZE);
577 fdin = open("/home/dave/projects/eyefi/EYEFIFWU.BIN.2.0001", O_RDONLY);
579 fdout = open("/media/EYE-FI/EYEFIFWU.BIN", O_WRONLY|O_CREAT);
581 if (fdin <= 0 || fdout <= 0)
584 i = read(fdin, &fwbuf[0], 524288);
588 i = write(fdout, &fwbuf[0], 524288);
596 dumpbuf(eyefi_buf, 64);
599 printf("after reboot:\n");
600 dumpbuf(eyefi_buf, 64);
604 dumpbuf(eyefi_buf, 64);
608 dumpbuf(eyefi_buf, 64);
610 memset(&zbuf[0], 0, EYEFI_BUF_SIZE);
611 write_to(RSPM, zbuf, EYEFI_BUF_SIZE);
612 write_to(REQM, zbuf, EYEFI_BUF_SIZE);
616 dumpbuf(eyefi_buf, 64);
619 strcpy(tb.name, "www.sr71.net/");
620 tb.l1 = strlen(tb.name);
621 for (i = 0; i < 10; i++) {
624 write_struct(RSPM, &z);
625 write_struct(REQM, &tb);
627 printf("buffer after O %d:\n", i);
628 dumpbuf(eyefi_buf, 64);
629 printf("----------------\n");
630 write_struct(REQM, &tb);
632 printf("card info(%d):\n", i);
633 dumpbuf(eyefi_buf, 64);
634 printf("-----------\n");
638 strcpy(tb.name, "/public/eyefi/servname");
639 strcpy(tb.name, "/config/networks.xml");
640 //tb.len = strlen(tb.name);
642 for (c = 'O'; c <= 'O'; c++) {
644 write_struct(REQM, &tb);
646 printf("dumping buffer:\n");
647 dumpbuf(eyefi_buf, 64);
648 printf("buffer dump done\n");
652 struct card_info_rsp_key *fetch_card_key(void)
654 struct card_info_rsp_key *key;
656 debug_printf(2, "%s()\n", __func__);
657 card_info_cmd(CARD_KEY);
662 int issue_noarg_command(u8 cmd)
664 struct noarg_request req;
665 debug_printf(4, "%s() cmd: %d\n", __func__, cmd);
667 write_struct(REQM, &req);
668 return wait_for_response();
671 struct scanned_net_list *scan_nets(void)
673 struct scanned_net_list *scanned;
675 debug_printf(2, "%s()\n", __func__);
676 issue_noarg_command('g');
677 scanned = eyefi_response();
681 struct configured_net_list *fetch_configured_nets(void)
683 struct configured_net_list *configured;
685 debug_printf(2, "%s()\n", __func__);
686 issue_noarg_command('l');
687 configured = eyefi_buf;
691 void reboot_card(void)
693 debug_printf(2, "%s()\n", __func__);
694 debug_printf(1, "rebooting card...");
695 issue_noarg_command('b');
696 debug_printf(1, "done\n");
699 int network_action(char cmd, char *essid, char *ascii_password)
701 struct net_request nr;
702 memset(&nr, 0, sizeof(nr));
705 strcpy(&nr.essid[0], essid);
706 nr.essid_len = strlen(essid);
708 if (ascii_password) {
709 int ret = make_network_key(&nr.key, essid, ascii_password);
713 write_struct(REQM, &nr);
714 return wait_for_response();
717 void add_network(char *essid, char *ascii_password)
719 debug_printf(2, "%s('%s', '%s')\n", __func__, essid, ascii_password);
720 network_action('a', essid, ascii_password);
723 void remove_network(char *essid)
725 debug_printf(2, "%s()\n", __func__);
726 network_action('d', essid, NULL);
729 int get_log_at_offset(u32 offset)
731 struct fetch_log_cmd cmd;
733 cmd.offset = u32_to_be32(offset);
735 debug_printf(2, "getting log at offset: %08x\n", offset);
736 write_struct(REQM, &cmd);
737 return wait_for_response();
740 void add_log_piece(u8 *log, int log_len, u8 *piece, int piece_pos, int piece_size)
742 debug_printf(2, "%s(%p, %d, %p, %d, %d)\n", __func__, log, log_len, piece, piece_pos, piece_size);
743 if (piece_pos + piece_size > log_len) {
744 int overflow_by = (piece_pos + piece_size) - log_len;
745 int piece_overrun_pos = piece_size - overflow_by;
746 piece_size -= overflow_by;
747 memcpy(&log[0], &piece[piece_overrun_pos], overflow_by);
748 debug_printf(2, "writing %d bytes to logbuf[0] from piece[%d]\n",
749 overflow_by, piece_overrun_pos);
751 debug_printf(2, "writing %d bytes to logbuf[%d]\n", piece_size, piece_pos);
752 memcpy(&log[piece_pos], piece, piece_size);
755 int get_log_into(u8 *resbuf)
762 u32 __log_size = fetch_log_length();
763 int log_pieces = __log_size/EYEFI_BUF_SIZE;
768 /* There are 8 bytes of header in the first log entry
769 * to specify where the log starts and ends */
770 u32 log_size = __log_size - 8;
772 for (i = 0; i < log_pieces; i++) {
773 debug_printf(1, "fetching EyeFi card log part %d/%d...",
776 ret = get_log_at_offset(EYEFI_BUF_SIZE*i);
777 debug_printf(1, "done\n");
781 struct first_log_response *log = eyefi_buf;
782 log_end = log_size - be32_to_u32(log->log_end);
783 log_start = log_size - be32_to_u32(log->log_start);
784 debug_printf(2, "log end: 0x%04x\n", log_end);
785 debug_printf(2, "log start: 0x%04x\n", log_start);
786 log_piece = &log->data[0];
787 log_piece_size = ARRAY_SIZE(log->data);
789 struct rest_log_response *log = eyefi_buf;
790 log_piece = &log->data[0];
791 log_piece_size = ARRAY_SIZE(log->data);
793 add_log_piece(resbuf, log_size, log_piece, log_start, log_piece_size);
794 total_bytes += log_piece_size;
795 log_start += log_piece_size;
796 log_start = log_start % log_size;