mirror of
https://dev.iopsys.eu/bbf/bbfdm.git
synced 2025-12-10 07:44:39 +01:00
511 lines
14 KiB
C
511 lines
14 KiB
C
/*
|
|
* Copyright (C) 2019 iopsys Software Solutions AB
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU Lesser General Public License version 2.1
|
|
* as published by the Free Software Foundation
|
|
*
|
|
* Author: Amin Ben Ramdhane <amin.benramdhane@pivasoftware.com>
|
|
*
|
|
*/
|
|
|
|
#include <stdlib.h>
|
|
#include <curl/curl.h>
|
|
|
|
#ifdef LOPENSSL
|
|
#include <openssl/sha.h>
|
|
#include <openssl/evp.h>
|
|
#endif
|
|
|
|
#ifdef LWOLFSSL
|
|
#include <wolfssl/options.h>
|
|
#include <wolfssl/openssl/sha.h>
|
|
#include <wolfssl/openssl/evp.h>
|
|
#endif
|
|
|
|
#ifdef LMBEDTLS
|
|
#include <mbedtls/md.h>
|
|
#endif
|
|
|
|
#include "dmdiagnostics.h"
|
|
|
|
#define READ_BUF_SIZE (1024 * 16)
|
|
|
|
char *get_diagnostics_option(char *sec_name, char *option)
|
|
{
|
|
char *value;
|
|
dmuci_get_option_value_string_bbfdm(DMMAP_DIAGNOSTIGS, sec_name, option, &value);
|
|
return value;
|
|
}
|
|
|
|
char *get_diagnostics_option_fallback_def(char *sec_name, char *option, char *default_value)
|
|
{
|
|
char *value = get_diagnostics_option(sec_name, option);
|
|
return (*value != '\0') ? value : default_value;
|
|
}
|
|
|
|
void set_diagnostics_option(char *sec_name, char *option, char *value)
|
|
{
|
|
check_create_dmmap_package(DMMAP_DIAGNOSTIGS);
|
|
struct uci_section *section = dmuci_walk_section_bbfdm(DMMAP_DIAGNOSTIGS, sec_name, NULL, NULL, CMP_SECTION, NULL, NULL, GET_FIRST_SECTION);
|
|
if (!section)
|
|
dmuci_set_value_bbfdm(DMMAP_DIAGNOSTIGS, sec_name, "", sec_name);
|
|
|
|
dmuci_set_value_bbfdm(DMMAP_DIAGNOSTIGS, sec_name, option, value);
|
|
}
|
|
|
|
void reset_diagnostic_state(char *sec_name)
|
|
{
|
|
char *diag_state = get_diagnostics_option(sec_name, "DiagnosticState");
|
|
if (strcmp(diag_state, "Requested") != 0) {
|
|
set_diagnostics_option(sec_name, "DiagnosticState", "None");
|
|
}
|
|
}
|
|
|
|
char *get_diagnostics_interface_option(struct dmctx *ctx, char *value)
|
|
{
|
|
char *linker = NULL;
|
|
|
|
if (!value || *value == 0)
|
|
return "";
|
|
|
|
if (strncmp(value, "Device.IP.Interface.", 20) != 0)
|
|
return "";
|
|
|
|
adm_entry_get_reference_value(ctx, value, &linker);
|
|
return linker ? linker : "";
|
|
}
|
|
|
|
static bool get_response_code_status(const char *url, int response_code)
|
|
{
|
|
if ((strncmp(url, HTTP_URI, strlen(HTTP_URI)) == 0 && response_code != 200) ||
|
|
(strncmp(url, FTP_URI, strlen(FTP_URI)) == 0 && response_code != 226) ||
|
|
(strncmp(url, FILE_URI, strlen(FILE_URI)) == 0 && response_code != 0) ||
|
|
(strncmp(url, HTTP_URI, strlen(HTTP_URI)) && strncmp(url, FTP_URI, strlen(FTP_URI)) && strncmp(url, FILE_URI, strlen(FILE_URI)))) {
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
static void send_transfer_complete_event(const char *command, const char *obj_path, const char *transfer_url,
|
|
long res_code, time_t start_t, time_t complete_t,const char *commandKey, const char *transfer_type)
|
|
{
|
|
char start_time[32] = {0};
|
|
char complete_time[32] = {0};
|
|
char fault_string[128] = {0};
|
|
unsigned fault_code = 0;
|
|
|
|
strftime(start_time, sizeof(start_time), "%Y-%m-%dT%H:%M:%SZ", gmtime(&start_t));
|
|
strftime(complete_time, sizeof(complete_time), "%Y-%m-%dT%H:%M:%SZ", gmtime(&complete_t));
|
|
|
|
if (!get_response_code_status(transfer_url, res_code)) {
|
|
fault_code = USP_FAULT_GENERAL_FAILURE;
|
|
snprintf(fault_string, sizeof(fault_string), "%s operation is failed, fault code (%ld)", transfer_type, res_code);
|
|
}
|
|
|
|
struct json_object *obj = json_object_new_object();
|
|
|
|
json_object_object_add(obj, "Command", json_object_new_string(command));
|
|
if(commandKey)
|
|
json_object_object_add(obj, "CommandKey", json_object_new_string(commandKey));
|
|
else
|
|
json_object_object_add(obj, "CommandKey", json_object_new_string(""));
|
|
json_object_object_add(obj, "Requestor", json_object_new_string(""));
|
|
json_object_object_add(obj, "TransferType", json_object_new_string(transfer_type));
|
|
json_object_object_add(obj, "Affected", json_object_new_string(obj_path));
|
|
json_object_object_add(obj, "TransferURL", json_object_new_string(transfer_url));
|
|
json_object_object_add(obj, "StartTime", json_object_new_string(start_time));
|
|
json_object_object_add(obj, "CompleteTime", json_object_new_string(complete_time));
|
|
json_object_object_add(obj, "FaultCode", json_object_new_uint64(fault_code));
|
|
json_object_object_add(obj, "FaultString", json_object_new_string(fault_string));
|
|
|
|
dmubus_call_set("bbfdm", "notify_event", UBUS_ARGS{{"name", "Device.LocalAgent.TransferComplete!", String}, {"input", json_object_to_json_string(obj), Table}}, 2);
|
|
|
|
json_object_put(obj);
|
|
}
|
|
|
|
static long download_file(char *file_path, const char *url, const char *username, const char *password)
|
|
{
|
|
long res_code = 0;
|
|
|
|
if (strncmp(url, FILE_URI, strlen(FILE_URI)) == 0) {
|
|
|
|
const char *curr_path = (!strncmp(url, FILE_LOCALHOST_URI, strlen(FILE_LOCALHOST_URI))) ? url + strlen(FILE_LOCALHOST_URI) : url + strlen(FILE_URI);
|
|
|
|
if (!file_exists(curr_path))
|
|
return -1;
|
|
|
|
DM_STRNCPY(file_path, curr_path, 256);
|
|
} else {
|
|
|
|
CURL *curl = curl_easy_init();
|
|
if (curl) {
|
|
curl_easy_setopt(curl, CURLOPT_URL, url);
|
|
curl_easy_setopt(curl, CURLOPT_USERNAME, username);
|
|
curl_easy_setopt(curl, CURLOPT_PASSWORD, password);
|
|
curl_easy_setopt(curl, CURLOPT_TIMEOUT, CURL_TIMEOUT);
|
|
|
|
FILE *fp = fopen(file_path, "wb");
|
|
if (fp) {
|
|
curl_easy_setopt(curl, CURLOPT_WRITEDATA, fp);
|
|
curl_easy_perform(curl);
|
|
fclose(fp);
|
|
}
|
|
|
|
curl_easy_getinfo(curl, CURLINFO_RESPONSE_CODE, &res_code);
|
|
curl_easy_cleanup(curl);
|
|
}
|
|
}
|
|
|
|
return res_code;
|
|
}
|
|
|
|
static long upload_file(const char *file_path, const char *url, const char *username, const char *password)
|
|
{
|
|
long res_code = 0;
|
|
|
|
if (strncmp(url, FILE_URI, strlen(FILE_URI)) == 0) {
|
|
char dst_path[2046] = {0};
|
|
snprintf(dst_path, sizeof(dst_path), "%s", url+strlen(FILE_URI));
|
|
FILE *fp = fopen(file_path, "r");
|
|
if (fp == NULL) {
|
|
return -1;
|
|
}
|
|
|
|
fseek(fp, 0, SEEK_END);
|
|
unsigned int length = ftell(fp);
|
|
fseek(fp, 0, SEEK_SET);
|
|
fclose(fp);
|
|
|
|
char buff[length];
|
|
memset(buff, 0, length);
|
|
|
|
if (dm_file_to_buf(file_path, buff, length) > 0) {
|
|
if (dm_buf_to_file(buff, dst_path) < 0)
|
|
res_code = -1;
|
|
} else {
|
|
res_code = -1;
|
|
}
|
|
} else {
|
|
CURL *curl = curl_easy_init();
|
|
if (curl) {
|
|
curl_easy_setopt(curl, CURLOPT_URL, url);
|
|
curl_easy_setopt(curl, CURLOPT_USERNAME, username);
|
|
curl_easy_setopt(curl, CURLOPT_PASSWORD, password);
|
|
curl_easy_setopt(curl, CURLOPT_TIMEOUT, CURL_TIMEOUT);
|
|
curl_easy_setopt(curl, CURLOPT_UPLOAD, 1L);
|
|
|
|
FILE *fp = fopen(file_path, "rb");
|
|
if (fp) {
|
|
curl_easy_setopt(curl, CURLOPT_READDATA, fp);
|
|
curl_easy_perform(curl);
|
|
fclose(fp);
|
|
}
|
|
|
|
curl_easy_getinfo(curl, CURLINFO_RESPONSE_CODE, &res_code);
|
|
curl_easy_cleanup(curl);
|
|
}
|
|
}
|
|
|
|
return res_code;
|
|
}
|
|
|
|
const bool validate_file_system_size(const char *file_size)
|
|
{
|
|
if (file_size && *file_size) {
|
|
unsigned long f_size = strtoul(file_size, NULL, 10);
|
|
unsigned long fs_available_size = file_system_size("/tmp", FS_SIZE_AVAILABLE);
|
|
|
|
if (fs_available_size < f_size)
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
|
|
const bool validate_hash_value(const char *algo, const char *file_path, const char *checksum)
|
|
{
|
|
unsigned char buffer[READ_BUF_SIZE] = {0};
|
|
char hash[BUFSIZ] = {0};
|
|
bool res = false;
|
|
unsigned int bytes = 0;
|
|
FILE *file;
|
|
|
|
#ifdef LMBEDTLS
|
|
mbedtls_md_context_t enpctx;
|
|
mbedtls_md_context_t *mdctx = &enpctx;
|
|
const mbedtls_md_info_t *md;
|
|
unsigned char md_value[MBEDTLS_MD_MAX_SIZE];
|
|
#else
|
|
EVP_MD_CTX *mdctx;
|
|
const EVP_MD *md;
|
|
unsigned char md_value[EVP_MAX_MD_SIZE];
|
|
#endif
|
|
|
|
file = fopen(file_path, "rb");
|
|
if (!file)
|
|
return false;
|
|
|
|
#ifndef LMBEDTLS
|
|
// makes all algorithms available to the EVP* routines
|
|
OpenSSL_add_all_algorithms();
|
|
#endif
|
|
|
|
#ifdef LMBEDTLS
|
|
md = mbedtls_md_info_from_string(algo);
|
|
mbedtls_md_init(mdctx);
|
|
mbedtls_md_init_ctx(mdctx, md);
|
|
#else
|
|
md = EVP_get_digestbyname(algo);
|
|
mdctx = EVP_MD_CTX_create();
|
|
EVP_DigestInit_ex(mdctx, md, NULL);
|
|
#endif
|
|
|
|
if (md == NULL)
|
|
goto end;
|
|
|
|
while ((bytes = fread (buffer, 1, sizeof(buffer), file))) {
|
|
#ifdef LMBEDTLS
|
|
mbedtls_md_update(mdctx, buffer, bytes);
|
|
#else
|
|
EVP_DigestUpdate(mdctx, buffer, bytes);
|
|
#endif
|
|
}
|
|
|
|
#ifdef LMBEDTLS
|
|
mbedtls_md_finish(mdctx, md_value);
|
|
bytes = mbedtls_md_get_size(md);
|
|
#else
|
|
bytes = 0;
|
|
EVP_DigestFinal_ex(mdctx, md_value, &bytes);
|
|
#endif
|
|
|
|
for (int i = 0; i < bytes; i++)
|
|
snprintf(&hash[i * 2], sizeof(hash) - (i * 2), "%02x", md_value[i]);
|
|
|
|
if (DM_STRCMP(hash, checksum) == 0)
|
|
res = true;
|
|
|
|
end:
|
|
#ifdef LMBEDTLS
|
|
mbedtls_md_free(mdctx);
|
|
#else
|
|
EVP_MD_CTX_destroy(mdctx);
|
|
EVP_cleanup();
|
|
#endif
|
|
|
|
fclose(file);
|
|
return res;
|
|
}
|
|
|
|
const bool validate_checksum_value(const char *file_path, const char *checksum_algorithm, const char *checksum)
|
|
{
|
|
if (checksum && *checksum) {
|
|
|
|
if (strcmp(checksum_algorithm, "SHA-1") == 0)
|
|
return validate_hash_value("SHA1", file_path, checksum);
|
|
else if (strcmp(checksum_algorithm, "SHA-224") == 0)
|
|
return validate_hash_value("SHA224", file_path, checksum);
|
|
else if (strcmp(checksum_algorithm, "SHA-256") == 0)
|
|
return validate_hash_value("SHA256", file_path, checksum);
|
|
else if (strcmp(checksum_algorithm, "SHA-384") == 0)
|
|
return validate_hash_value("SHA384", file_path, checksum);
|
|
else if (strcmp(checksum_algorithm, "SHA-512") == 0)
|
|
return validate_hash_value("SHA512", file_path, checksum);
|
|
else
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
int bbf_config_backup(const char *url, const char *username, const char *password,
|
|
char *config_name, const char *command, const char *obj_path)
|
|
{
|
|
int res = 0;
|
|
|
|
// Export config file to backup file
|
|
if (dmuci_export_package(config_name, CONFIG_BACKUP)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Upload the config file
|
|
time_t start_time = time(NULL);
|
|
long res_code = upload_file(CONFIG_BACKUP, url, username, password);
|
|
time_t complete_time = time(NULL);
|
|
|
|
// Send Transfer Complete Event
|
|
send_transfer_complete_event(command, obj_path, url, res_code, start_time, complete_time,NULL,"Upload");
|
|
|
|
// Check if the upload operation was successful
|
|
if (!get_response_code_status(url, res_code)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
end:
|
|
// Remove temporary file
|
|
if (file_exists(CONFIG_BACKUP) && remove(CONFIG_BACKUP))
|
|
res = -1;
|
|
|
|
return res;
|
|
}
|
|
|
|
int bbf_upload_log(const char *url, const char *username, const char *password,
|
|
char *config_name, const char *command, const char *obj_path)
|
|
{
|
|
int res = 0;
|
|
|
|
// Upload the config file
|
|
time_t start_time = time(NULL);
|
|
long res_code = upload_file(config_name, url, username, password);
|
|
time_t complete_time = time(NULL);
|
|
|
|
// Send Transfer Complete Event
|
|
send_transfer_complete_event(command, obj_path, url, res_code, start_time, complete_time,NULL, "Upload");
|
|
|
|
// Check if the upload operation was successful
|
|
if (!get_response_code_status(url, res_code)) {
|
|
res = -1;
|
|
}
|
|
|
|
return res;
|
|
}
|
|
int bbf_config_restore(const char *url, const char *username, const char *password,
|
|
const char *file_size, const char *checksum_algorithm, const char *checksum,
|
|
const char *command, const char *obj_path)
|
|
{
|
|
char config_restore[256] = "/tmp/bbf_config_restore";
|
|
int res = 0;
|
|
|
|
// Check the file system size if there is sufficient space for downloading the config file
|
|
if (!validate_file_system_size(file_size)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Download the firmware image
|
|
time_t start_time = time(NULL);
|
|
long res_code = download_file(config_restore, url, username, password);
|
|
time_t complete_time = time(NULL);
|
|
|
|
// Send Transfer Complete Event
|
|
send_transfer_complete_event(command, obj_path, url, res_code, start_time, complete_time, NULL, "Download");
|
|
|
|
// Check if the download operation was successful
|
|
if (!get_response_code_status(url, res_code)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Validate the CheckSum value according to its algorithm
|
|
if (!validate_checksum_value(config_restore, checksum_algorithm, checksum)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Apply config file
|
|
if (dmuci_import(NULL, config_restore))
|
|
res = -1;
|
|
|
|
end:
|
|
// Remove temporary file
|
|
if (file_exists(config_restore) && strncmp(url, FILE_URI, strlen(FILE_URI)) && remove(config_restore))
|
|
res = -1;
|
|
|
|
return res;
|
|
}
|
|
|
|
int bbf_fw_image_download(const char *url, const char *auto_activate, const char *username, const char *password,
|
|
const char *file_size, const char *checksum_algorithm, const char *checksum,
|
|
const char *bank_id, const char *command, const char *obj_path, const char *commandKey)
|
|
{
|
|
char fw_image_path[256] = "/tmp/firmware-XXXXXX";
|
|
json_object *json_obj = NULL;
|
|
bool activate = false, valid = false;
|
|
int res = 0;
|
|
|
|
// Check the file system size if there is sufficient space for downloading the firmware image
|
|
if (!validate_file_system_size(file_size)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
res = mkstemp(fw_image_path);
|
|
if (res == -1) {
|
|
goto end;
|
|
} else {
|
|
close(res); // close the fd, as only filename required
|
|
res = 0;
|
|
}
|
|
|
|
// Download the firmware image
|
|
time_t start_time = time(NULL);
|
|
long res_code = download_file(fw_image_path, url, username, password);
|
|
time_t complete_time = time(NULL);
|
|
|
|
// Check if the download operation was successful
|
|
if (!get_response_code_status(url, res_code)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Validate the CheckSum value according to its algorithm
|
|
if (!validate_checksum_value(fw_image_path, checksum_algorithm, checksum)) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
string_to_bool((char *)auto_activate, &activate);
|
|
char *act = (activate) ? "1" : "0";
|
|
|
|
dmubus_call_blocking("system", "validate_firmware_image", UBUS_ARGS{{"path", fw_image_path, String}}, 1, &json_obj);
|
|
if (json_obj == NULL) {
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
char *val = dmjson_get_value(json_obj, 1, "valid");
|
|
string_to_bool(val, &valid);
|
|
json_object_put(json_obj);
|
|
json_obj = NULL;
|
|
if (valid == false) {
|
|
send_transfer_complete_event(command, obj_path, url, res_code, start_time, complete_time, commandKey, "Download");
|
|
res = -1;
|
|
goto end;
|
|
}
|
|
|
|
// Apply Firmware Image
|
|
dmubus_call_blocking("fwbank", "upgrade", UBUS_ARGS{{"path", fw_image_path, String}, {"auto_activate", act, Boolean}, {"bank", bank_id, Integer}}, 3, &json_obj);
|
|
if (json_obj == NULL) {
|
|
res = 1;
|
|
goto end;
|
|
}
|
|
|
|
sleep(60); // Wait for the image to become available
|
|
|
|
// Send the transfer complete after image applied
|
|
send_transfer_complete_event(command, obj_path, url, res_code, start_time, complete_time, commandKey, "Download");
|
|
// Reboot the device if auto activation is true
|
|
if (activate) {
|
|
sleep(5); // added additional buffer for TransferComplete! event
|
|
if (dmubus_call_set("system", "reboot", UBUS_ARGS{0}, 0) != 0)
|
|
res = -1;
|
|
sleep(10); // Wait for reboot to take action
|
|
}
|
|
|
|
end:
|
|
// Remove temporary file if ubus upgrade failed and file exists
|
|
if (!json_obj && file_exists(fw_image_path) && strncmp(url, FILE_URI, strlen(FILE_URI))) {
|
|
remove(fw_image_path);
|
|
res = -1;
|
|
}
|
|
|
|
if (json_obj != NULL)
|
|
json_object_put(json_obj);
|
|
|
|
return res;
|
|
}
|