PageRenderTime 97ms CodeModel.GetById 19ms RepoModel.GetById 1ms app.codeStats 0ms

/nselib/mobileme.lua

https://github.com/prakashgamit/nmap
Lua | 228 lines | 135 code | 33 blank | 60 comment | 18 complexity | 50755380f77735a4317103f343f71ea9 MD5 | raw file
Possible License(s): BSD-3-Clause, GPL-2.0, LGPL-2.0, LGPL-2.1 
    

  1. local http = require "http"
    2. 

  2. local json = require "json"
    3. 

  3. local package = require "package"
    4. 

  4. local stdnse = require "stdnse"
    5. 

  5. local table = require "table"
    6. 

  6. _ENV = stdnse.module("mobileme", stdnse.seeall)
    7. 

  7. 

  8. ---
    9. 

  9. -- A MobileMe web service client that allows discovering Apple devices
    10. 

  10. -- using the "find my iPhone" functionality. 
    11. 

  11. -- 
    12. 

  12. -- @author "Patrik Karlsson <patrik@cqure.net>"
    13. 

  13. --
    14. 

  14. 

  15. MobileMe = {
    16. 

  16. 	
    17. 

  17. 	-- headers used in all requests
    18. 

  18. 	headers = { 
    19. 

  19. 		["Content-Type"] = "application/json; charset=utf-8",
    20. 

  20.     	["X-Apple-Find-Api-Ver"] = "2.0",
    21. 

  21.     	["X-Apple-Authscheme"] = "UserIdGuest",
    22. 

  22.     	["X-Apple-Realm-Support"] = "1.0",
    23. 

  23.     	["User-Agent"] = "Find iPhone/1.3 MeKit (iPad: iPhone OS/4.2.1)",
    24. 

  24.     	["X-Client-Name"] = "iPad",
    25. 

  25.     	["X-Client-UUID"] = "0cf3dc501ff812adb0b202baed4f37274b210853",
    26. 

  26.     	["Accept-Language"] = "en-us",
    27. 

  27.     	["Connection"] = "keep-alive"
    28. 

  28. 	},
    29. 

  29. 	
    30. 

  30. 	-- Creates a MobileMe instance
    31. 

  31. 	-- @param username string containing the Apple ID username
    32. 

  32. 	-- @param password string containing the Apple ID password
    33. 

  33. 	-- @return o new instance of MobileMe
    34. 

  34. 	new = function(self, username, password)
    35. 

  35. 		local o = {
    36. 

  36. 			host = "fmipmobile.icloud.com",
    37. 

  37. 			port = 443,
    38. 

  38. 			username = username,
    39. 

  39. 			password = password
    40. 

  40. 		}
    41. 

  41. 		setmetatable(o, self)
    42. 

  42. 		self.__index = self
    43. 

  43. 		return o
    44. 

  44. 	end,
    45. 

  45. 	
    46. 

  46. 	-- Sends a message to an iOS device
    47. 

  47. 	-- @param devid string containing the device id to which the message should
    48. 

  48. 	--        be sent
    49. 

  49. 	-- @param subject string containing the messsage subject
    50. 

  50. 	-- @param message string containing the message body
    51. 

  51. 	-- @param alarm boolean true if alarm should be sounded, false if not
    52. 

  52. 	-- @return status true on success, false on failure
    53. 

  53. 	-- @return err string containing the error message (if status is false)
    54. 

  54. 	sendMessage = function(self, devid, subject, message, alarm)
    55. 

  55. 		local data = '{"clientContext":{"appName":"FindMyiPhone","appVersion":"1.3","buildVersion":"145","deviceUDID":"0000000000000000000000000000000000000000","inactiveTime":5911,"osVersion":"3.2","productType":"iPad1,1","selectedDevice":"%s","shouldLocate":false},"device":"%s","serverContext":{"callbackIntervalInMS":3000,"clientId":"0000000000000000000000000000000000000000","deviceLoadStatus":"203","hasDevices":true,"lastSessionExtensionTime":null,"maxDeviceLoadTime":60000,"maxLocatingTime":90000,"preferredLanguage":"en","prefsUpdateTime":1276872996660,"sessionLifespan":900000,"timezone":{"currentOffset":-25200000,"previousOffset":-28800000,"previousTransition":1268560799999,"tzCurrentName":"Pacific Daylight Time","tzName":"America/Los_Angeles"},"validRegion":true},"sound":%s,"subject":"%s","text":"%s"}'
    56. 

  56. 		data = data:format(devid, devid, tostring(alarm), subject, message)
    57. 

  57. 

  58. 		local url = ("/fmipservice/device/%s/sendMessage"):format(self.username)
    59. 

  59. 	    local auth = { username = self.username, password = self.password }
    60. 

  60. 

  61. 		local response = http.post(self.host, self.port, url, { header = self.headers, auth = auth, timeout = 10000 }, nil, data)
    62. 

  62. 		
    63. 

  63. 		if ( response.status == 200 ) then
    64. 

  64. 			local status, resp = json.parse(response.body)
    65. 

  65. 			if ( not(status) ) then
    66. 

  66. 				stdnse.print_debug(2, "Failed to parse JSON response from server")
    67. 

  67. 				return false, "Failed to parse JSON response from server"
    68. 

  68. 			end
    69. 

  69. 			
    70. 

  70. 			if ( resp.statusCode ~= "200" ) then
    71. 

  71. 				stdnse.print_debug(2, "Failed to send message to server")
    72. 

  72. 				return false, "Failed to send message to server"
    73. 

  73. 			end
    74. 

  74. 		end
    75. 

  75. 		return true
    76. 

  76. 	end,
    77. 

  77. 	
    78. 

  78. 	-- Updates location information for all devices controlled by the Apple ID
    79. 

  79. 	-- @return status true on success, false on failure
    80. 

  80. 	-- @return json parsed json table or string containing an error message on
    81. 

  81. 	--         failure
    82. 

  82. 	update = function(self)
    83. 

  83. 

  84. 	    local auth = {
    85. 

  85. 			username = self.username,
    86. 

  86. 			password = self.password
    87. 

  87. 		}
    88. 

  88. 

  89. 		local url = ("/fmipservice/device/%s/initClient"):format(self.username)
    90. 

  90. 		local data= '{"clientContext":{"appName":"FindMyiPhone","appVersion":"1.3","buildVersion":"145","deviceUDID":"0000000000000000000000000000000000000000","inactiveTime":2147483647,"osVersion":"4.2.1","personID":0,"productType":"iPad1,1"}}'
    91. 

  91. 

  92. 		local retries = 2
    93. 

  93. 

  94. 		local response
    95. 

  95. 		repeat
    96. 

  96. 			response = http.post(self.host, self.port, url, { header = self.headers, auth = auth }, nil, data)
    97. 

  97. 			if ( response.header["x-apple-mme-host"] ) then
    98. 

  98. 				self.host = response.header["x-apple-mme-host"]
    99. 

  99. 			end
    100. 

  100. 			
    101. 

  101. 			if ( response.status == 401 ) then
    102. 

  102. 				return false, "Authentication failed"
    103. 

  103. 			elseif ( response.status ~= 200 and response.status ~= 330 ) then
    104. 

  104. 				return false, "An unexpected error occured"
    105. 

  105. 			end
    106. 

  106. 			
    107. 

  107. 			retries = retries - 1
    108. 

  108. 		until ( 200 == response.status or 0 == retries)
    109. 

  109. 

  110. 		if ( response.status ~= 200 ) then
    111. 

  111. 			return false, "Received unexpected response from server"
    112. 

  112. 		end
    113. 

  113. 		
    114. 

  114. 		local status, parsed_json = json.parse(response.body)
    115. 

  115. 

  116. 		if ( not(status) or parsed_json.statusCode ~= "200" ) then
    117. 

  117. 			return false, "Failed to parse JSON response from server"
    118. 

  118. 		end
    119. 

  119. 

  120. 		-- cache the parsed_json.content as devices
    121. 

  121. 		self.devices = parsed_json.content
    122. 

  122. 

  123. 		return true, parsed_json
    124. 

  124. 	end,
    125. 

  125. 	
    126. 

  126. 	-- Get's a list of devices
    127. 

  127. 	-- @return devices table containing a list of devices
    128. 

  128. 	getDevices = function(self)
    129. 

  129. 		if ( not(self.devices) ) then
    130. 

  130. 			self:update()
    131. 

  131. 		end
    132. 

  132. 		return self.devices
    133. 

  133. 	end
    134. 

  134. }
    135. 

  135. 

  136. 

  137. Helper = {
    138. 

  138. 

  139. 	
    140. 

  140. 	-- Creates a Helper instance
    141. 

  141. 	-- @param username string containing the Apple ID username
    142. 

  142. 	-- @param password string containing the Apple ID password
    143. 

  143. 	-- @return o new instance of Helper
    144. 

  144. 	new = function(self, username, password)
    145. 

  145. 		local o = {
    146. 

  146. 			mm = MobileMe:new(username, password)
    147. 

  147. 		}
    148. 

  148. 		setmetatable(o, self)
    149. 

  149. 		self.__index = self
    150. 

  150. 		o.mm:update()
    151. 

  151. 		return o
    152. 

  152. 	end,
    153. 

  153. 	
    154. 

  154. 	-- Get's the geolocation from each device
    155. 

  155. 	--
    156. 

  156. 	-- @return status true on success, false on failure
    157. 

  157. 	-- @return result table containing a table of device locations
    158. 

  158. 	--         the table is indexed based on the name of the device and
    159. 

  159. 	--         contains a location table with the following fields:
    160. 

  160. 	--         * <code>longitude</code> - the GPS longitude
    161. 

  161. 	--         * <code>latitude</code>  - the GPS latitude
    162. 

  162. 	--         * <code>accuracy</code>  - the location accuracy
    163. 

  163. 	--         * <code>timestamp</code> - the time the location was acquired
    164. 

  164. 	--         * <code>postype</code>   - the position type (GPS or WiFi)
    165. 

  165. 	--         * <code>finished</code>  - 
    166. 

  166. 	--         or string containing an error message on failure
    167. 

  167. 	getLocation = function(self)
    168. 

  168. 		-- do 3 tries, with a 5 second timeout to allow the location to update
    169. 

  169. 		-- there are two attributes, locationFinished and isLocating that seem
    170. 

  170. 		-- to be good candidates to monitor, but so far, I haven't had any
    171. 

  171. 		-- success with that.
    172. 

  172. 		local tries, timeout = 3, 5
    173. 

  173. 		local result = {}
    174. 

  174. 		
    175. 

  175. 		repeat
    176. 

  176. 			local status, response = self.mm:update()
    177. 

  177. 			
    178. 

  178. 			if ( not(status) or not(response) ) then
    179. 

  179. 				return false, "Failed to retrieve response from server"
    180. 

  180. 			end
    181. 

  181. 			for _, device in ipairs(response.content) do
    182. 

  182. 				if ( device.location ) then
    183. 

  183. 					result[device.name] = {
    184. 

  184. 						longitude = device.location.longitude,
    185. 

  185. 						latitude = device.location.latitude,
    186. 

  186. 						accuracy = device.location.horizontalAccuracy,
    187. 

  187. 						timestamp = device.location.timeStamp,
    188. 

  188. 						postype   = device.location.positionType,
    189. 

  189. 						finished = device.location.locationFinished,
    190. 

  190. 					}
    191. 

  191. 				end
    192. 

  192. 			end
    193. 

  193. 			tries = tries - 1
    194. 

  194. 			if ( tries > 0 ) then
    195. 

  195. 				stdnse.sleep(timeout)
    196. 

  196. 			end
    197. 

  197. 		until( tries == 0 )
    198. 

  198. 		return true, result
    199. 

  199. 	end,
    200. 

  200. 	
    201. 

  201. 	-- Gets a list of names and ids of devices associated with the Apple ID
    202. 

  202. 	-- @return status true on success, false on failure
    203. 

  203. 	-- @return table of devices containing the following fields:
    204. 

  204. 	--         <code>name</code> and <code>id</code>
    205. 

  205. 	getDevices = function(self)
    206. 

  206. 		local devices = {}
    207. 

  207. 		for _, dev in ipairs(self.mm:getDevices()) do
    208. 

  208. 			table.insert(devices, { name = dev.name, id = dev.id })
    209. 

  209. 		end
    210. 

  210. 		return true, devices
    211. 

  211. 	end,
    212. 

  212. 	
    213. 

  213. 	-- Send a message to an iOS Device
    214. 

  214. 	--
    215. 

  215. 	-- @param devid string containing the device id to which the message should
    216. 

  216. 	--        be sent
    217. 

  217. 	-- @param subject string containing the messsage subject
    218. 

  218. 	-- @param message string containing the message body
    219. 

  219. 	-- @param alarm boolean true if alarm should be sounded, false if not
    220. 

  220. 	-- @return status true on success, false on failure
    221. 

  221. 	-- @return err string containing the error message (if status is false)
    222. 

  222. 	sendMessage = function(self, ...)
    223. 

  223. 		return self.mm:sendMessage(...)
    224. 

  224. 	end
    225. 

  225. 	
    226. 

  226. }
    227. 

  227. 

  228. return _ENV;
    229. 

  229.