what's the formula of ONVIF #PasswordDigest -


i'm working on onvif of send "getdeviceinformation". that's required wsse:usernametoken. after searching data authority, there 2 faormula:

(1) "onvif-core-specification-v241.pdf", "5.12.2.1 password derivation"

pe_ua = base64(hmac_sha-1(ua+p_ua,nep+”onvif password”))

(2) soap of web protocol

digest = b64encode( sha1( b64decode( nonce ) + date + password ) )

i confused!!which 1 correct?

moreover, when test onvif test tool wireshark

the xml got as:

<wsse:usernametoken> <wsse:username>admin</wsse:username> <wsse:password type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#passworddigest">lu9ywjdwst8ow7m4tmjcb50/xrg=</wsse:password> <wsse:nonce>tgbyfhxsc3oo8ypzwnqn8a==</wsse:nonce> <wsu:created>2014-06-20t04:41:45z</wsu:created> </wsse:usernametoken>

ok, i've try figure out formula data.

a> username: "admin"

b> password: "pass" ( un-entropy)

c> nonce: "tgbyfhxsc3oo8ypzwnqn8a=="

d> created: "2014-06-20t04:41:45z"

somehow final password: "lu9ywjdwst8ow7m4tmjcb50/xrg="

the "nonce" may converted base64 original should be"4e0058147c527373a8f323f3c27427f0"

i've try use

base64(sha1("tgbyfhxsc3oo8ypzwnqn8a==2014-06-12t04:03:45zpass"))

or

base64(sha1("4e0058147c527373a8f323f3c27427f0==2014-06-12t04:03:45zpass"))

but still can't password send test tool "lu9ywjdwst8ow7m4tmjcb50/xrg="

any 1 me figure out exact formula used onvif test tool?

do need help!!! thanks!!

finally, device send ok me!

after reference gsoap

at first, formula is:

digest = b64encode( sha1( b64decode( nonce ) + date + password ) )

for nonce, should 20 bytes random "numeric" value as:

char canoncetest[20]={0x9e,0xbd,0xbb,0x53,0x7c,0x96,0xb4,0xc1,0xce,0xeb,                       0xfb,0x06,0x17,0x31,0x41,0x4e,0x5b,0x68,0x86,0x93};

it generated method (event make it)

after getting, canoncetest, above, string should looked "艋|蹉鋿1an[h?昍昍昍昍"

and xml send device, base64 should "nr27u3ywtmho6/ggfzfbtltohppmzmzmzmzmzbq="

this key point of correct foramte! (not ascii string!) moreover, feed sha-1 function canoncetest (no need convert base64)

for created , password, feed sha-1 string format (ex. "2014-07-08t09:26:13z" , "pass")

then, world peace!


Comments

Post a Comment

Popular posts from this blog

javascript - RequestAnimationFrame not working when exiting fullscreen switching space on Safari -

request animation frame stops working when exiting fullscreen clicking on original space's safari window. fine if fullscreen mode canceled escape key or calling cancelfullscreen(). steps reproduce: open https://dl.dropboxusercontent.com/u/769042/prezi/safari-fullscreen.html click "draw raf", kittie appears click "fullscreen", go fullscreen click "draw raf", kittie appears go space original safari was, showing "click exit fullscreen mode", click anywhere, out fullscreen click "draw raf", nothing happens what handling click calling: window.requestanimationframe(draw); which draws on canvas context: function draw() { ctx.drawimage(img, math.random()*500|0, math.random()*400|0, 100, 100); } i checked .hidden , .visibilitystate, updated correctly. tested on osx 10.9.3, safari 7.0.4 (9537.76.4). has workaround/solution other switching old settimeout? this sounds webkit bug 88940 : using reque
Read more

Python ctypes access violation with const pointer arguments -

i have api i'm trying wrap in python (2.7.6 on win7) code using ctypes. here's api: client_dllfunc bool clientapi search_exporttoclipcopy(clienthsearch handle, int channel, lpctstr filename, const time_t& from, const time_t& to, const bool* cameras, int length, bool usepassword, lpctstr password, bool includetextin = false, bool excludeplayer = false); the issue i'm having cameras argument; , i've had issue other const pointer arguments well. here's how i'm wrapping api: def search_exporttoclipcopy(self, hsearch, csearch, filename, tfrom, tto, cameras, length, usepassword, password, includetextin=true, excludeplayer=false): exporttoclipcopy = self.sdkdll.search_exporttoclipcopy exporttoclipcopy.argtypes = [c_int, c_int, c_wchar_p, c_long, c_long, pointer(c_bool), c_int, c_bool, c_wchar_p, c_bool, c_bool] exporttoclipcopy.restype = c_bool exporttoclipcopy(hsearch, csearch, filename, tfrom, tto, cameras, length, usepassword, pass
Read more