This forum uses cookies

rocfusion · 07.08.2017, 17:04

Hi,

Has anyone created a script for the ELK M1 security panel?

Admin is there any example for a non blocking SSL connection?

Is there an example of, 2 ASCII characters, 2-digit checksum. This is the hexadecimal two’s complement of the modulo-256 sum of the ASCII values of all characters in the message excluding the checksum itself and the CR-LF terminator at the end of the message. Permissible characters are ASCII 0-9 and upper case A-F. When all the characters are added to the Checksum, the value should equal 0.

Thanks,

Roger

***admin*** · 08.08.2017, 08:50

Here's a basic SSL connection example:

Code:
1234567891011
socket = require('socket')
ssl = require('ssl')

ip = '192.168.1.1'port = 2601sock = socket.tcp()
sock:settimeout(5)
sock:connect(ip, port)
sock = ssl.wrap(sock, 'tlsv1')
sock:dohandshake()

Checksum calculation:

Code:
1234567
functionchecksum(str)
  localsum = 0fori = 1, #strdosum = (sum + str:byte(i)) % 256endreturnstring.format('%02X', 256 - sum)
end

rocfusion · (This post was last modified: 12.08.2017, 23:22 by rocfusion.)

Hi Admin,

Thank you, the checksum function works. I am trying to do the reverse and verify the message received has a valid checksum

Code:
12345678910111213141516171819202122232425
functionchecksum(str)
  localsum = 0fori = 1, #strdosum = (sum + string.byte(str,i)) % 256endx = 256-sumreturnstring.format('%02X', 256 - sum)
endfunctionreversechk(str, cksum)
  localsum = tonumber(cksum,16)
  log(sum)
  fori=1, #strdosum= (sum + string.byte(str,i)) 
  endreturnstring.format('%02X', sum)
endlocalmessage= '16XK403923611081711000'localchksum = checksum(message)
log(chksum)
-- chksum is 67-- so the total message is '16XK40392361108171100067'localisok = reversechk(message,chksum)
log(isok)

The reversechk function does not return a 0, what am doing wrong? I have the reverse calculation in C code, maybe you can understand what they doing?

Code:
12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849
CalculatechecksumonreceivedandtransmittedASCIIstringExampleCcodeprogram
//INT8Uisan8bitunsignedinteger.INT8UitAscRecBuf[82]; //ASCIIreceivecharacterbufferINT8UAscHexToBin(INT8U, INT8U *); //ASCIIhextobinaryconversionINT8UAsciiToHex( INT8U); //AsciitoHexconversion

//CalculatechecksumonareceivedASCIIstring, returnchecksumvalue. 
//Itshouldequal0ifgood.INT8UCalcCheckSum(void) 
{ 
    INT8Ui,length, cc; 
    length = AscHexToBin(2, &itAscRecBuf[0]); 
    //getlengthvalue, firsttwocharacterscc = AscHexToBin(2, &itAscRecBuf[length]); //getchecksumvalueatendofstring.for (i=0;i<length ;i++ ) 
        { 
            cc += itAscRecBuf[i]; //getstringvalueandaddittochecksum 
        }
        return(cc); 
        //goodchecksumshouldequal0 }
    //asciihextobinary, width1or2INT8UAscHexToBin(INT8UWidth, INT8U * DataPtr) // 
        {
            INT8UaVal; // accumulatedvalueaVal = AsciiToHex(*DataPtr); 
            DataPtr++; 
            if (Width == 2)    //twodigitswide, else1digitwide 
                { 
                    aVal = aVal << 4; 
                    aVal += AsciiToHex(*DataPtr); 
                }
            return(aVal); 
         }
    //AsciitoHexconversionINT8UAsciiToHex( INT8UValue )
        { 
            switch ( Value ) 
                { 
                    case'A': return( 10 ); 
                    case'B': return( 11 ); 
                    case'C': return( 12 ); 
                    case'D': return( 13 ); 
                    case'E': return( 14 ); 
                    case'F': return( 15 ); 
                    default: return( Value - 0x30 ); 
                } 
        }

Thanks,

Roger

***admin*** · 14.08.2017, 06:13

You don't need a separate function for this, last 2 bytes of the message is the resulting checksum. You can do it like this:

Code:
1234
message = '16XK40392361108171100067'calccs = checksum(message:sub(1, -3)) -- calculated checksum from message datarecvcs = message:sub(-2, -1) -- received checksumlog(calccs, recvcs)

rocfusion · 14.08.2017, 17:14

Hi Admin,

Thank you, I am trying to get the connection working with ssl, but the connection gets closed. I want to use copas since this gives more flexibility of building a non-blocking solution. I have the option also to run code in separate threads.

Code:
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133
ifnotreadythensocket = require("socket")
  copas = require("copas")
  require('ssl')
  ready=trueesys = {}  

  functionchecksum(str)
    localsum = 0fori = 1, #strdosum = (sum + string.byte(str,i)) % 256endx = 256-sumreturnstring.format('%02X', 256 - sum)
  endfunctionvalidchecksum(str)
    calccs = checksum(str:sub(1, -3))    -- calculated checksum from message datarecvcs = str:sub(-2, -1)        -- received checksumreturncalccs == recvcs-- when they the same return trueend--helper functions to round and increment values   functionincrement(n)
    n = n + 1returnnendfunctionparse(data)
    alert('elk parsing: %s', data)
    if(validchecksum(data)==true)thenlocalresponse = string.sub(data,3,-5)
      alert('elk message is: %s',response)
    endendfunctionsendElk(command)
    skt:send(command)
    sleep(1)    
  endfunctioninit()
    alert('running init') 

  endfunctionfromKNX(command)
    localtelegram = string.split(command,',')
    alert('from knx %s',command)

  endlocalserver = socket.udp()
  server:setsockname("127.0.0.1",33456)
  functionhandler(skts)
    skts = copas.wrap(skts)
    alert("UDP connection handler")
    whiletruedolocals, erralert("UDP receiving..")
      s, erro = skts:receive(2048)
      ifnotsthenalert("UDP Receive error: %s", erro)
        breakendalert("UDP Received data, bytes: %s",s)
      fromKNX(s)
    endendcopas.addserver(server, handler, 1)
 
 
 --[[ co = copas.addthread(function()while true do  copas.sleep(5) -- wait 5 seconds in case of other eventscopas.sleep(-1) -- put the thread to sleep until wakeup is calledendend)]]--endifnotsktthen-- create tcp clientsslparams = {
  mode = "client",
  protocol = "sslv3",
  key = "crt/ca-key.pem",
  certificate = "crt/client.pem",
  cafile = "crt/ca-cert.pem",
  verify = "peer",
  options = {"all", "sslv3"}
  }
  skt = copas.wrap(socket.tcp(), sslparams)

  skt, err = socket.connect('192.168.0.11', 2601)
  -- when theres no error connect ok, initializeif(noterr) thenskt:settimeout(0)
    -- add receive threadcopas.addthread(function()
        whiletruedolocalresp,err = copas.receive(skt)
          -- if theres no connection start a new connectionifnotrespthenalert("[tcp-client] Receive error: %s", err)
            copas.removeserver(skt)
            skt = nilbreakendif(string.find(resp,'^16XK')==false)then-- don't process timer messageslocalfd,prtd = pcall(parse,resp)
            if(fd==false)thenalert("Error with parsemsg %s ",prtd)
            endendendend)
    ifsktthenalert('[tcp-client] connection ok')
      init()
      -- error while connecting,elseifwarningfailedthenalert('[tcp-client] connection failed (conn): %s', err) endreturnendelsealert('[tcp-client] error connecting %s',err)
    returnendendcopas.loop()

What am I doing wrong?

Thanks,

Roger

***admin*** · 17.08.2017, 06:30

Replace this part:

Code:
12345678910111213
-- create tcp clientsslparams = {
mode = "client",
protocol = "sslv3",
key = "crt/ca-key.pem",
certificate = "crt/client.pem",
cafile = "crt/ca-cert.pem",
verify = "peer",
options = {"all", "sslv3"}
}
skt = copas.wrap(socket.tcp(), sslparams)

skt, err = socket.connect('192.168.0.11', 2601)

With this:

Code:
12345678
skt = socket.tcp()
skt:settimeout(5)
skt:connect('192.168.0.11', 2601)
skt, err = ssl.wrap(skt, 'sslv23')
ifnoterrthenskt:dohandshake()
  skt = copas.wrap(skt)
end

rocfusion · 17.08.2017, 07:07

ok thanks, I will try and let you know.

thx

Roger

rocfusion · 19.08.2017, 23:32

Hi Admin,

Ok so with a slight modification its now working, see the revised code below. Question in terms of error handling for the connection will this be sufficient for this client script to reconnect if for whatever reason the connection is lost?

Thanks,

Roger

Code:
12345678910111213141516171819202122232425262728293031323334
ifnotsktthenskt = socket.tcp()
  skt:settimeout(5)
  skt:connect('192.168.0.11', 2601)
  skt, err = ssl.wrap(skt,'tlsv1')
  ifnoterrthenskt:dohandshake()
    skt = copas.wrap(skt)
    copas.addthread(function()
        whiletruedolocalresp,err = copas.receive(skt)
          -- if theres no connection start a new connectionifnotresporerr ~=nilthenalert("[elk-client] Receive error: %s", err)
            copas.removeserver(skt)
            skt = nilbreakendif(string.find(resp,'^16XK')==nil)thenlocalfd,prtd = pcall(parse,resp)
            if(fd==false)thenalert("[elk-client] Error with parsemsg %s ",prtd)
            endelsealert('[elk-client] time message: %s', resp)
          endendend)
  elsealert("[elk-client] connection error: %s", err)
    skt = nilreturnendend

rocfusion · 22.08.2017, 06:31

(19.08.2017, 23:32)rocfusion Wrote: Hi Admin,

Ok so with a slight modification its now working, see the revised code below. Question in terms of error handling for the connection will this be sufficient for this client script to reconnect if for whatever reason the connection is lost?

Thanks,

Roger

Code:
12345678910111213141516171819202122232425262728293031323334
if not skt then skt = socket.tcp() skt:settimeout(5) skt:connect('192.168.0.11', 2601) skt, err = ssl.wrap(skt,'tlsv1') if not err then skt:dohandshake() skt = copas.wrap(skt) copas.addthread(function() while true do local resp,err = copas.receive(skt) -- if theres no connection start a new connection if not resp or err ~=nil then alert("[elk-client] Receive error: %s", err) copas.removeserver(skt) skt = nil break end if(string.find(resp,'^16XK')==nil)then local fd,prtd = pcall(parse,resp) if(fd==false)then alert("[elk-client] Error with parsemsg %s ",prtd) end else alert('[elk-client] time message: %s', resp) end end end) else alert("[elk-client] connection error: %s", err) skt = nil return end end

Hi Admin, is this ok?
Thx
Roger

***admin*** · 22.08.2017, 06:52

Yes, looks fine

Login
Username:
Password:	Lost Password?
	Remember me