Merge pull request #11 from mszeu/develop

mszeu · web-flow · commit 23bc6e7891f7 · 2021-05-12T10:00:40.000+01:00
Added decode function in the Master
diff --git a/README.md b/README.md
@@ -35,6 +35,8 @@ if the parameter is not specified **2048** is the default.
 
 **--nc** performs just an **NC** test. It cannot be used in conjunction with **--key**.
 
+**--no** gathers the status of the payShield through the **NO** command. It cannot be used in conjunction with **--key**.
+
 **--j2** get HSM Loading using **J2** command. It cannot be used in conjunction with **--key**.
 
 **--j4** get Host Command Volumes using **J4** command. It cannot be used in conjunction with **--key**.
@@ -49,6 +51,8 @@ if the parameter is not specified **2048** is the default.
 
 **--times** how many times execute the test. If it is not specified the default value is **1000** times.
 
+**--decode** decodes the response of the payShield if a decoder function is available for the command.
+
 ## Example
 C:\Test>*python pressureTest.py 192.168.0.36 --nc --times 2*
 
diff --git a/pressureTest.py b/pressureTest.py
@@ -10,20 +10,135 @@
 from struct import *
 import argparse
 from pathlib import Path
-from typing import Tuple
-
-VERSION = "1.0"
+from typing import Tuple, Dict
+from types import FunctionType
+
+VERSION = "1.1.1"
+
+
+def decode_n0(response_to_decode: bytes, head_len: int):
+    """
+        It decodes the result of the command N0 an prints the meaning of the returned output
+
+        Parameters
+        ___________
+        response_to_decode: bytes
+            The response returned by the payShield
+        head_len: int
+            The length of the header
+
+        Returns
+        ___________
+        nothing
+        """
+    print("Message length", int.from_bytes(response_to_decode[:2], byteorder='big', signed=False))
+    str_pointer = 2
+    print("Header:", response_to_decode[str_pointer:str_pointer + head_len].decode('ascii', 'ignore'))
+    str_pointer = str_pointer + head_len
+    print("Command returned:", response_to_decode[str_pointer:str_pointer + 2].decode('ascii', 'ignore'))
+    str_pointer = str_pointer + 2
+    print("Error returned:", response_to_decode[str_pointer:str_pointer + 2].decode('ascii', 'ignore'))
+    if (response_to_decode[str_pointer:str_pointer + 2]).decode('ascii', 'ignore') == '01':
+        print("Invalid Random Value Length")
+    elif (response_to_decode[str_pointer:str_pointer + 2]).decode('ascii', 'ignore') == '00':
+        print("Random payload:(HEX)", binascii.hexlify(response_to_decode[6 + head_len:]).decode('ascii', 'ignore'))
+
+
+def decode_no(response_to_decode: bytes, head_len: int):
+    """
+    It decodes the result of the command NO an prints the meaning of the returned output
+
+    Parameters
+    ___________
+    response_to_decode: bytes
+        The response returned by the payShield
+    head_len: int
+        The length of the header
+
+    Returns
+    ___________
+    nothing
+    """
+    BUFFER_SIZE: Dict[str, str] = {
+        '0': '2K bytes', '1': '8K bytes', '2': '16K bytes', '3': '32K bytes'}
+    print("Message length", int.from_bytes(response_to_decode[:2], byteorder='big', signed=False))
+    response_to_decode = response_to_decode.decode('ascii', 'replace')
+    str_pointer: int = 2
+    print("Header:", response_to_decode[str_pointer:str_pointer + head_len])
+    str_pointer = str_pointer + head_len
+    print("Command returned:", response_to_decode[str_pointer:str_pointer + 2])
+    str_pointer = str_pointer + 2
+    print("Error returned:", response_to_decode[str_pointer:str_pointer + 2])
+    if response_to_decode[str_pointer:str_pointer + 2] == '00':
+        str_pointer = str_pointer + 2
+        print("I/O buffer size:", BUFFER_SIZE.get(response_to_decode[str_pointer:str_pointer + 1], "Unknown"))
+        str_pointer = str_pointer + 1
+        if response_to_decode[str_pointer:str_pointer + 1] == '0':
+            print("Type of connection: UDP")
+        elif response_to_decode[str_pointer:str_pointer + 1] == '1':
+            print("Type of connection: TCP")
+        else:
+            print("Unexpected connection type")
+        str_pointer = str_pointer + 1
+        print("Number of TCP sockets:", response_to_decode[str_pointer:str_pointer + 2])
+        str_pointer = str_pointer + 2
+        print("Firmware number:", response_to_decode[str_pointer:str_pointer + 9])
+        str_pointer = str_pointer + 9
+        print("Reserved:", response_to_decode[str_pointer:str_pointer + 1])
+        str_pointer = str_pointer + 1
+        print("Reserved:", response_to_decode[str_pointer:str_pointer + 4])
+
+
+def decode_nc(response_to_decode: bytes, head_len: int):
+    """
+    It decodes the result of the command NC an prints the meaning of the returned output
+    The message trailer is not considered
+
+    Parameters
+    ___________
+    response_to_decode: bytes
+        The response returned by the payShield
+    head_len: int
+        The length of the header
+
+    Returns
+    ___________
+    nothing
+    """
+    print("Message length", int.from_bytes(response_to_decode[:2], byteorder='big', signed=False))
+    response_to_decode = response_to_decode.decode('ascii', 'replace')
+    str_pointer: int = 2
+    print("Header:", response_to_decode[str_pointer:str_pointer + head_len])
+    str_pointer = str_pointer + head_len
+    print("Command returned:", response_to_decode[str_pointer:str_pointer + 2])
+    str_pointer = str_pointer + 2
+    print("Error returned:", response_to_decode[str_pointer:str_pointer + 2])
+    if response_to_decode[str_pointer:str_pointer + 2] == '00':
+        str_pointer = str_pointer + 2
+        print("LMK CRC:", response_to_decode[str_pointer:str_pointer + 16])
+        str_pointer = str_pointer + 16
+        print("Firmware number:", response_to_decode[str_pointer:str_pointer + 9])
 
 
 def payshield_error_codes(error_code: str) -> str:
-    # This function maps the result code with the error message
-    # I derived the list of errors and messages from the following manual:
-    # payShield 10K Core Host Commands v1
-    # Revision: A
-    # Date: 04 August 2020
-    # Doc.Number: PUGD0537 - 004
-
-    pay_shield_error_table = {
+    """This function maps the result code with the error message.
+        I derived the list of errors and messages from the following manual:
+        payShield 10K Core Host Commands v1
+        Revision: A
+        Date: 04 August 2020
+        Doc.Number: PUGD0537 - 004
+
+        Parameters
+        ----------
+         error_code: str
+            The status code returned from the payShield 10k
+
+         Returns
+         ----------
+          a string containing the message of the error code
+        """
+
+    PAYSHIELD_ERROR_CODE = {
         '00': 'No error',
         '01': 'Verification failure or warning of imported key parity error',
         '02': 'Key inappropriate length for algorithm',
@@ -115,10 +230,29 @@ def payshield_error_codes(error_code: str) -> str:
         'BD': 'Incompatible key types',
         'BE': 'Invalid key block header ID'}
 
-    return pay_shield_error_table.get(error_code, "Unknown error")
+    return PAYSHIELD_ERROR_CODE.get(error_code, "Unknown error")
 
 
 def check_returned_command_verb(result_returned: bytes, head_len: int, command_sent: str) -> Tuple[int, str, str]:
+    """
+    Checks if the command returned by the payShield is congruent to the command sent
+    Parameters
+    ----------
+    result_returned: bytes
+        The output returned from the payShield
+    head_len: int
+        The length of the header
+    command_sent: str
+        The command send to the payShield
+
+    Returns
+         ----------
+        a Tuple[int, str, str]
+        where the first value is 0 of the command is congruent or -1 if it is not
+        the second value is the command sent
+        the third value is the command returned by te payShield
+    """
+
     verb_returned = result_returned[2 + head_len:][:2]
     verb_sent = command_sent[head_len:][:2]
     verb_expected = verb_sent[0:1] + chr(ord(verb_sent[1:2]) + 1)
@@ -161,11 +295,31 @@ def test_printable(input_str):
     return all(c in string.printable for c in input_str)
 
 
-def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", header_len: int = 4) -> int:
-    # it connects to the specified host and port, using the specified protocol that can me tcp, udp or tls and
-    # sends the command.
-    # The default header length is set to 4 if not provided because this is the out of box default value
-    # in payShield 10k
+def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", header_len: int = 4,
+             decoder_funct: FunctionType = None) -> int:
+    """It connects to the specified host and port, using the specified protocol (tcp, udp or tls) and sends the command.
+    
+    Parameters
+    ----------
+     ip_addr: str
+        The address to connect to. It can be an IP, hostname or FQDN
+     port: int
+        The port to connect to
+     host_command: str
+        The command to send to the payShield complete of the header part    
+     proto: str
+        The protocol to use, it can be usb, tcp or tls. If not specified the default is tcp
+     header_len: int
+        The length of the header. If not specified the value is 4 because it is the default factory value
+        in payShield 10k
+     decoder_funct: FunctionType
+        If provided needs to be a reference to a function that is able to parse the command and print the meaning of it
+        If not provided the default is None
+     
+     Returns
+     ----------
+      an integer value representing the error code: -1 means that some parameter were wrong.
+    """
 
     # if proto != "tcp" and proto != "udp" and proto != "tls":
     if proto not in ['tcp', 'udp', 'tls']:
@@ -179,7 +333,7 @@ def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", hea
 
         # join everything together in python3
         message = size + host_command.encode()
-        # Connect to the host and gather the the reply in TCP or UDP
+        # Connect to the host and gather the reply in TCP or UDP
         buffer_size = 4096
         if proto == "tcp":
             # creates the TCP socket
@@ -224,14 +378,18 @@ def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", hea
 
         # don't print ascii if msg or resp contains non printable chars
         if test_printable(message[2:].decode("ascii", "ignore")):
-            print("sent data (ASCII) :", message[2:])
+            print("sent data (ASCII) :", message[2:].decode("ascii", "ignore"))
 
         print("sent data (HEX) :", binascii.hexlify(message))
 
         if test_printable((data[2:]).decode("ascii", "ignore")):
-            print("received data (ASCII):", data[2:])
+            print("received data (ASCII):", data[2:].decode("ascii", "ignore"))
 
         print("received data (HEX) :", binascii.hexlify(data))
+        if (decoder_funct is not None) and callable(decoder_funct):
+            print("")
+            print("-----DECODING RESPONSE-----")
+            decoder_funct(data, header_len)
 
     except ConnectionError as e:
         print("Connection issue: ", e.message)
@@ -253,34 +411,51 @@ def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", hea
     print("To get more info about the usage invoke it with the -h option")
     print("This software is open source and it is under the Affero AGPL 3.0")
     print("")
+    KEY_IGNORED_MSG = "If this option is specified --key is ignored"
+
+    # List of decoder functions used to interpreter the result.
+    # The reference to the function is used as parameter in the run_test function.
+    # If the parameter is not passed because a decoder for that command it is not defined the default value of the
+    # parameter assumes the value of None
+    DECODERS = {
+        'NO': decode_no,
+        'NC': decode_nc,
+        'N0': decode_n0
+    }
+
     parser = argparse.ArgumentParser(description="Stress a PayShield appliance with RSA key generation")
     parser.add_argument("host", help="Ip address or hostname of the payShield")
     group = parser.add_mutually_exclusive_group()
     parser.add_argument("--port", "-p", help="The host port", default=1500, type=int)
     group.add_argument("--key", help="RSA key length. Accepted values are 2048 ot 4096",
                        default=2048, choices=[2048, 4096], type=int)
-    group.add_argument("--nc", help="Just perform a NC test If this option is specified --key is ignored",
+    group.add_argument("--nc", help="Just perform a NC test. " + KEY_IGNORED_MSG,
                        action="store_true")
-    group.add_argument("--j2", help="Get HSM Loading using J2 command. If this option is specified --key is ignored",
+    group.add_argument("--no", help="Retrieves HSM status information using NO command. " +
+                                    KEY_IGNORED_MSG,
+                       action="store_true")
+    group.add_argument("--j2", help="Get HSM Loading using J2 command. " + KEY_IGNORED_MSG,
                        action="store_true")
     group.add_argument("--j4",
-                       help="Get Host Command Volumes using J4 command. If this option is specified --key is ignored",
+                       help="Get Host Command Volumes using J4 command. " + KEY_IGNORED_MSG,
                        action="store_true")
     group.add_argument("--j8",
-                       help="Get Health Check Accumulated Counts using J8 command. "
-                            "If this option is specified --key is ignored",
+                       help="Get Health Check Accumulated Counts using J8 command. " + KEY_IGNORED_MSG,
                        action="store_true")
     group.add_argument("--jk",
-                       help="Get Instantaneous Health Check Status using JK command. "
-                            "If this option is specified --key is ignored",
+                       help="Get Instantaneous Health Check Status using JK command. " + KEY_IGNORED_MSG,
                        action="store_true")
     group.add_argument("--randgen",
                        help="Generate a random value 8 bytes long", action="store_true")
     parser.add_argument("--header",
                         help="the header string to prepend to the host command. If not specified the default is HEAD",
                         default="HEAD", type=str)
-    parser.add_argument("--forever", help="if this option is specified the program will run for ever",
+    parser.add_argument("--forever", help="if this option is specified the program runs for ever",
+                        action="store_true")
+    parser.add_argument("--decode", help="if this option is specified the reply of the payShield is interpreted "
+                                         "if a decoder function for that command has been implemented",
                         action="store_true")
+
     parser.add_argument("--times", help="how many time to repeat the operation", type=int, default=1000)
     parser.add_argument("--proto", help="accepted value are tcp or udp, the default is tcp", default="tcp",
                         choices=["tcp", "udp", "tls"], type=str.lower)
@@ -296,6 +471,8 @@ def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", hea
         command = args.header + 'EI2409601#0000'
     if args.nc:
         command = args.header + 'NC'
+    if args.no:
+        command = args.header + 'NO00'
     if args.j2:
         command = args.header + 'J2'
     if args.j4:
@@ -324,12 +501,21 @@ def run_test(ip_addr: str, port: int, host_command: str, proto: str = "tcp", hea
         i = 1
         while True:
             print("Iteration: ", i)
-            run_test(args.host, args.port, command, args.proto, len(args.header))
+            if args.decode:
+                run_test(args.host, args.port, command, args.proto, len(args.header),
+                         DECODERS.get(command[len(args.header):len(args.header) + 2], None))
+            else:
+                run_test(args.host, args.port, command, args.proto, len(args.header), None)
+
             i = i + 1
             print("")
     else:
         for i in range(0, args.times):
             print("Iteration: ", i + 1, " of ", args.times)
-            run_test(args.host, args.port, command, args.proto, len(args.header))
+            if args.decode:
+                run_test(args.host, args.port, command, args.proto, len(args.header),
+                         DECODERS.get(command[len(args.header):len(args.header) + 2], None))
+            else:
+                run_test(args.host, args.port, command, args.proto, len(args.header), None)
             print("")
         print("DONE")
