forked from capull0/SkyDumper
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathportalio.cpp
282 lines (213 loc) · 6.96 KB
/
portalio.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
#include "portalio.h"
//Port usleep to windows
#ifdef _WIN32
#include <windows.h>
#else
#include <unistd.h>
int Sleep(int sleepMs) { return usleep(sleepMs * 1000); }
#endif
/*
Number of possible configurations: 1 Device Class: 0 VendorID: 1430 ProductID: 0150
Total interface number: 1 ||| Number of alternate settings: 1 | Interface Number: 0 |
Number of endpoints: 2
found an IN End Point 0 with attributes interrupt and address 0x1
found an OUT End Point 1 with attributes interrupt and address 0x1
*/
void PortalIO::OpenPortalHandle() {
struct hid_device_info *list, *attributes;
wchar_t wstr[MAX_STR];
hPortalHandle = NULL;
list = hid_enumerate(0x0, 0x0);
if (!list) {
printf("unable to open USB devices\n");
exit(1);
}
attributes = list;
while (attributes) {
if (((attributes->vendor_id == 0x12ba) || (attributes->vendor_id == 0x54c)) ||
(attributes->vendor_id == 0x1430)) {
if ((attributes->product_id == 0x150) || (attributes->product_id == 0x967)) {
printf("Found portal usb device\n");
int err;
hPortalHandle = hid_open(attributes->vendor_id, attributes->product_id, NULL);
if (hPortalHandle == NULL) {
printf("Error communicating with Portal.\n ");
}
/*
wstr[0] = 0x0000;
err = hid_get_manufacturer_string(hPortalHandle, wstr, MAX_STR);
if (err < 0)
printf("Unable to read manufacturer string\n");
printf("Manufacturer String: %ls\n", wstr);
// Read the Product String
wstr[0] = 0x0000;
err = hid_get_product_string(hPortalHandle, wstr, MAX_STR);
if (err < 0)
printf("Unable to read product string\n");
printf("Product String: %ls\n", wstr);
// Read the Serial Number String
wstr[0] = 0x0000;
err = hid_get_serial_number_string(hPortalHandle, wstr, MAX_STR);
if (err < 0)
printf("Unable to read serial number string\n");
printf("Serial Number String: (%d) %ls", wstr[0], wstr);
printf("\n");
*/
break;
}
}
attributes = attributes->next;
}
hid_free_enumeration(list);
if (!hPortalHandle) {
printf("Cannot Find Portal USB.\n");
exit(1);
}
}
// Send a command to the portal
void PortalIO::Write(RWBlock *pb) {
pb->buf[0] = 0; // Use report 0
if (DEBUG) {
SkylanderIO *skio;
skio = new SkylanderIO();
printf(">>>\n");
skio->dump(pb->buf, 0x21);
delete skio;
}
int attempt;
for (attempt = 0; attempt < 10; attempt++) {
if (hid_write(hPortalHandle, pb->buf, 0x21) == -1) {
if (DEBUG) {
printf("Unable to write to Portal (Attempt: %d)\n", attempt);
}
} else {
return;
}
}
printf("failed to write to portal\n");
exit(1);
}
bool PortalIO::CheckResponse(RWBlock *res, char expect) {
int b = hid_read_timeout(hPortalHandle, res->buf, rw_buf_size, TIMEOUT);
if (b < 0) {
printf("Unable to read Skylander from Portal.\n");
exit(1);
}
res->dwBytesTransferred = b;
// this is here to debug the different responses from the portal.
if (DEBUG) {
SkylanderIO *skio;
skio = new SkylanderIO();
printf("<<<\n");
skio->dump(res->buf, 0x21);
delete skio;
}
// found wireless USB but portal is not connected
if (res->buf[0] == 'Z') {
printf("Wireless portal not connected.\n");
exit(1);
}
return (res->buf[0] != expect);
}
bool PortalIO::ReadBlock(unsigned int block, unsigned char data[0x10], int skylander) {
RWBlock req, res;
unsigned char followup;
if (block >= 0x40) {
printf("Invalid Skylander Block.\n");
exit(1);
}
// Send query request
for (int attempt = 0; attempt < 15; attempt++) {
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'Q';
followup = 0x10 + skylander;
req.buf[2] = followup;
if (block == 0) {
//req.buf[2] = followup + 0x10;
}
req.buf[3] = (unsigned char) block;
memset(&(res.buf), 0, rw_buf_size);
do { Write(&req); } while (CheckResponse(&res, 'Q'));
if (res.buf[0] == 'Q' && res.buf[2] == (unsigned char) block) {
// Got our query back
if (res.buf[1] == followup) {
/* got the query back with no error */
memcpy(data, res.buf + 3, 0x10);
return true;
}
}
}
printf("Unable to read Skylander from Portal.\n");
exit(1);
}
bool PortalIO::WriteBlock(unsigned int block, unsigned char data[0x10], int skylander) {
RWBlock req, res;
unsigned char verify[0x10];
// printf(".");
for (int retries = 0; retries < 3; retries++) {
// Write request
// W 57 10 <block number> <0x10 bytes of data>
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'W';
req.buf[2] = 0x10 + skylander;
req.buf[3] = (unsigned char) block;
memcpy(req.buf + 4, data, 0x10);
do { Write(&req); } while (CheckResponse(&res, 'W'));
while (PortalStatus() == 0)
Sleep(100);
memset(verify, 0xCD, sizeof(verify));
ReadBlock(block, verify, skylander);
if (memcmp(data, verify, sizeof(verify))) {
printf("failed to verify written block: %X\n", block);
continue;
}
return true;
}
printf("failed to write block %X", block);
exit(1);
}
//
unsigned char PortalIO::PortalStatus() {
RWBlock req, res;
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'S';
do { Write(&req); } while (CheckResponse(&res, 'S'));
return res.buf[1];
}
// Start portal
void PortalIO::RestartPortal() {
RWBlock req, res;
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'R';
do { Write(&req); } while (CheckResponse(&res, 'R'));
}
// Antenna up / activate
void PortalIO::ActivatePortal(int active) {
RWBlock req, res;
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'A';
req.buf[2] = active;
do { Write(&req); } while (CheckResponse(&res, 'A'));
}
// Set the portal color
void PortalIO::SetPortalColor(unsigned char r, unsigned char g, unsigned char b) {
RWBlock req, res;
memset(req.buf, 0, rw_buf_size);
req.buf[1] = 'C';
req.buf[2] = r; // R
req.buf[3] = g; // G
req.buf[4] = b; // B
// no response for this one.
Write(&req);
}
// Release hPortalInstance
PortalIO::~PortalIO() {
ActivatePortal(0);
hid_close(hPortalHandle);
}
PortalIO::PortalIO() {
OpenPortalHandle();
RestartPortal();
ActivatePortal(1);
SetPortalColor(0xC8, 0xC8, 0xC8);
}