Add PoC lib

This commit is contained in:
sqozz 2018-08-11 00:32:33 +02:00
commit 3df74980e3
3 changed files with 179 additions and 0 deletions

10
example.py Normal file
View File

@ -0,0 +1,10 @@
from sem6000 import SEMSocket
import time
socket = SEMSocket('f0:c7:7f:0d:e7:17')
socket.login("1337")
while True:
time.sleep(1)
socket.getStatus()
print("=== {} ({}) ===".format(socket.mac_address, "on" if socket.powered else "off"))
print("\t{}V {}A → {}W@{}Hz".format(socket.voltage, socket.current, socket.power, socket.frequency))

1
requirements.txt Normal file
View File

@ -0,0 +1 @@
bluepy==1.2.0

168
sem6000.py Normal file
View File

@ -0,0 +1,168 @@
from bluepy import btle
import struct
import time
import pdb
import uuid
class SEMSocket():
powered = False
voltage = 0
current = 0
power = 0
frequency = 0
mac_address = ""
custom_service = None
read_char = None
write_char = None
notify_char = None
def __init__(self, mac):
self.mac_address = mac
self.btle_device = btle.Peripheral(self.mac_address,addrType=btle.ADDR_TYPE_PUBLIC,iface=0)
self.btle_handler = self.BTLEHandler(self)
self.custom_service = self.btle_device.getServiceByUUID(0xfff0)
self.read_char = self.custom_service.getCharacteristics("0000fff1-0000-1000-8000-00805f9b34fb")[0]
self.write_char = self.custom_service.getCharacteristics("0000fff3-0000-1000-8000-00805f9b34fb")[0]
self.notify_char = self.custom_service.getCharacteristics("0000fff4-0000-1000-8000-00805f9b34fb")[0]
self.btle_device.setDelegate(self.btle_handler)
class BTLEMessage():
MAGIC_START = bytearray([0x0f])
MAGIC_END = bytearray([0xff, 0xff])
__data = bytearray(MAGIC_START + bytearray(1) + MAGIC_END) # +1 is for the length field
__cmd = bytearray(1) # cmd cannot be empty
__payload = bytearray()
def __init__(self, btle_device, cmd=bytearray(), payload=bytearray()):
self.__btle_device = btle_device
self.cmd = cmd
self.payload = payload
@property
def cmd(self):
return self.__cmd
@cmd.setter
def cmd(self, cmd):
self.__data = self.MAGIC_START + bytearray(1) + cmd + self.payload + bytearray(1) + self.MAGIC_END
self.__cmd = cmd
self.__calc_length()
self.__calc_checksum()
@property
def payload(self):
return self.__payload
@payload.setter
def payload(self, payload):
self.__data = self.MAGIC_START + bytearray(1) + self.cmd + payload + bytearray(1) + self.MAGIC_END
self.__payload = payload
self.__calc_length()
self.__calc_checksum()
def __calc_checksum(self):
checksum = 1
for i in range(2, self.__data[1] - 2):
checksum += self.__data[i]
self.__data[-3] = checksum
def __calc_length(self):
self.__data[1] = 1 + len(self.__payload) + 1 # cmd + payload + checksum
def send(self):
self.__btle_device.write_char.write(self.__data, True)
self.__btle_device.btle_device.waitForNotifications(5)
class BTLEHandler(btle.DefaultDelegate):
def __init__(self, btle_device):
btle.DefaultDelegate.__init__(self)
self.btle_device = btle_device
def handleNotification(self, cHandle, data):
message_type = data[2]
if message_type == 0x00:
if data[4] == 0x01:
print("Checksum error!")
else:
print("Unknown error:", data)
elif message_type == 0x03: #switch toggle
print("Switch toggled")
self.btle_device.getStatus()
elif message_type == 0x04: #status related data
self.btle_device.voltage = data[8]
self.btle_device.current = (data[9] << 8 | data[10]) / 1000
self.btle_device.power = (data[5] << 16 | data[6] << 8 | data[7]) / 1000
self.btle_device.frequency = data[11]
self.btle_device.powered = bool(data[4])
elif message_type == 0x17:
if data[5] == 0x00 or data[5] == 0x01:
if not data[4]:
print("Login successful")
else:
print("Login failed")
else:
print("5th byte of login-response is > 1:", data)
else:
print ("Unknown message from Handle: 0x" + format(cHandle,'02X') + " Value: "+ format(data))
def getStatus(self):
print("GetStatus")
#15, 5, 4, 0, 0, 0, 5, -1, -1
cmd = bytearray([0x04])
payload = bytearray([0x00, 0x00, 0x00])
msg = self.BTLEMessage(self, cmd, payload)
msg.send()
def setStatus(self, status):
print("SetStatus:", status)
# 0f 06 03 00 01 00 00 05 ff ff -> on
# 0f 06 03 00 00 00 00 04 ff ff -> off
cmd = bytearray([0x03])
payload = bytearray([0x00, status, 0x00, 0x00])
msg = self.BTLEMessage(self, cmd, payload)
msg.send()
def login(self, password):
print("Login")
cmd = bytearray([0x17])
payload = bytearray()
payload.append(0x00)
payload.append(0x00)
payload.append(int(password[0]))
payload.append(int(password[1]))
payload.append(int(password[2]))
payload.append(int(password[3]))
payload.append(0x00)
payload.append(0x00)
payload.append(0x00)
payload.append(0x00)
msg = self.BTLEMessage(self, cmd, payload)
msg.send()
#def SynVer(self):
# print("SynVer")
# self.read_char.read_value()
#def GetSynConfig(self):
# print("GetSynConfig")
# #15, 5, 16, 0, 0, 0, 17, -1, -1
# self.write_char.write_value(bytearray(b'\x0f\x05\x10\x00\x00\x00\x11\xff\xff'))
#def ______RESET(self):
# #15, 5, 16, 0, 0, 0, 17, -1, -1 ??? maybe reset?
# pass
#def GetSN(self):
# print("GetSN")
# #15, 5, 17, 0, 0, 0, 18, -1, -1
# self.write_char.write_value(bytearray(b'\x0f\x05\x11\x00\x00\x00\x12\xff\xff'))
# self.SynVer()
# self.notify_char.enable_notifications()
# self.Login("1337")
# self.GetSynConfig()
# #self.GetSN()