Difference between revisions of "Seon Core binaries"
|  (→seoneq / seoneq2) | |||
| Line 3: | Line 3: | ||
| *<code>ODETTE_CERTIFICATE_REQUEST</code>: request certificate from remote partner | *<code>ODETTE_CERTIFICATE_REQUEST</code>: request certificate from remote partner | ||
| *<code>ODETTE_CERTIFICATE_DELIVER</code>: send the configured certificate to the partner (also used by updating certificate) | *<code>ODETTE_CERTIFICATE_DELIVER</code>: send the configured certificate to the partner (also used by updating certificate) | ||
| + | *<code>ODETTE_CERTIFICATE_REPLACE</code>: send the configured certificate to the partner as an instant replacement | ||
| The used cipher suite for automatic certificate is "#1: 3des_ede_cbc_3key, RSA, SHA-1'. | The used cipher suite for automatic certificate is "#1: 3des_ede_cbc_3key, RSA, SHA-1'. | ||
Revision as of 18:53, 26 January 2011
Contents
seoneq / seoneq2
Add a file to the send queue or enqueue an EERP message to the EERP queue. If the addressed partner is configured for OFTP2, special file handling is available for the following virtual filenames:
- ODETTE_CERTIFICATE_REQUEST: request certificate from remote partner
- ODETTE_CERTIFICATE_DELIVER: send the configured certificate to the partner (also used by updating certificate)
- ODETTE_CERTIFICATE_REPLACE: send the configured certificate to the partner as an instant replacement
The used cipher suite for automatic certificate is "#1: 3des_ede_cbc_3key, RSA, SHA-1'.
When an existing send queue entry already exists (server ID doesn't matter!), then it will be checked if it's blocked. If it's blocked, it will be unblocked, otherwise it will be removed and newly added. If any process is running for that send queue entry (i.e. a process in the status "taken by send queue"), it will recognize that its send queue entry was removed and it will cleanly shut down.
The parameter "-m" accepts a relative filename (without path information) for moving or copying the resulting file (which is then added to the send queue) to the Seon's temporary directory with the given name.
If the destination partner settings use any kind of OFTP2 action (like signing, encryption or compression) and the format is given as "V" (variable record length mode) via parameter "-G", the file will be transcoded to the given structure before any other action will be made. So, as a result of this automatic transformation, you don't have to pre-transform the file on your own.
input parameters
- -h: printf this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -p <partner shortname>
- -f <filename with absolute path>
- -v <virtual filename>
- -c <comment (max. 255 chars./without special chars.)>
- -q <alternative SSID for this file (originator)>
- -r <alternative SSID for this file (destination)>
- -s <alternative SFID for this file (originator)>
- -t <alternative SFID for this file (destination)>
- -w <alternative password for this file (originator)>
- -x <alternative password for this file (destination)>
- -u <priority, default: 0>
- -i <server ID, default: 0>
- -P: add file passive to send queue (let partner fetch it from remote)
- -d: <optional file description in OFTPv2 session>
- -m <filename> move temporarily created OFTP2 file to Seon's temporary directory with the given name
- -V: print out version and exit
- -F <n>: send file in fixed record length mode with n bytes maximum record length; overrides binary data transfer mode
- -G <n>: send file in variable record length mode with n bytes maximum record length; overrides binary data transfer mode
In order to enqueue an EERP message, the following parameters are available:
- -E: activate EERP mode (instead of file mode)
- -T <timestamp in format HHMMSSCCCC, i.e. 1435570001>
- -D <datestamp in format YYYYmmdd, i.e. 20081230>
- -z <destination SFID>
- -o <originator SFID>
- [-f <filename with absolute path> needed in OFTP2 sessions only]
- [-S <0|1> OFTP2 sign EERP (1) or not (0)
- [-U <ciphersuite> OFTP2 cipher suite (0, 1, 2...)]
examples
- enqueue the file '/tmp/testfile' to partner 'c-works', using virtual filename 'testfile':
./seoneq -p c-works -f /tmp/testfile -v testfile
- enqueue the file '/tmp/testfile' to partner 'c-works', using ENGDAT light virtual filename 'ENG061229153952001001':
./seoneq -p c-works -f /tmp/testfile -v ENG061229153952001001
- enqueue the file same file '/tmp/testfile' to partner 'c-works', using ENGDAT light virtual filename 'ENG061229153952001001', but with increased priority (5):
./seoneq -p c-works -f /tmp/testfile -v ENG061229153952001001 -u 5
- enqueue the file '/tmp/testfile' to partner 'c-works', using ENGDAT light virtual filename 'ENG061229153952001001', with comment 'this is a testcomment':
./seoneq -p c-works -f /tmp/testfile -v ENG061229153952001001 -c "this is a testcomment"
- enqueue the file '/tmp/testfile' to partner 'c-works', using ENGDAT light virtual filename 'ENG061229153952001001', added passively, so partner must fetch the file (no active send):
./seoneq -p c-works -f /tmp/testfile -v ENG061229153952001001 -P
Certificate exchange:
- request certificate from OFTP2 partner 'c-works':
./seoneq -p c-works -f /tmp/testfile -v ODETTE_CERTIFICATE_REQUEST
- send my certificate to OFTP2 partner 'c-works':
./seoneq -p c-works -f /tmp/testfile -v ODETTE_CERTIFICATE_DELIVER
Enqueue an EERP to a given partner:
./seoneq2 -E -p PARTNER_TESTNAME -v TESTFILE -T 1800652001 -D 20081012 -z DESTSFID -o ORIGSFID
Enqueue a signed OFTP2 EERP to a given OFTP2 partner, providing the received (decrypted, decompressed and verified native plain file), using cipher suite 2 for hashing:
./seoneq2 -E -p PARTNER_TESTNAME -v TESTFILE -T 1800652001 -D 20081012 -z DESTSFID -o ORIGSFID -f /bin/bash -S 1 -U 2
seonlic
This tool displays the Seon ID, an installation specific hash value, which identifies this copy of Seon.
input parameters
- -h: help text
- -I: display Seon ID only (without headers)
- -v: display version information and exit
examples
localhost:~/tmp username$ ./seonlic Seon license tool v2.0 your Seon ID is: 8b6c03222dc17af20d4c022d6cf92d502cb8d51b230467582b8d111a39e7b0bcv2 (all in one line)
localhost:~/tmp username$ ./seonlic -I 8b6c03222dc17af20d4c022d6cf92d502cb8d51b230467582b8d111a39e7b0bcv2
seon_licinfo
Display the information encoded in an Seon license file.
input parameters
- -h: help text
- -C configfile: use given config file (default:/etc/seon.conf)
- -f license file: use the given license file as input
- -d: display end date of validity
- -I: display licensed Seon ID
- -p: display amount of licensed partners
- -a: display licensed functions
- -A: display licensed functions, as numeric value
- -v: display version information and exit
examples
localhost:~/tmp username$ ./seon_licinfo -I 8b6c03222dc17af20d4c022d6cf92d502cb8d51b230467582b8d111a39e7b0bcv2
localhost:~/tmp username$ ./seon_licinfo -f /opt/seon/bin/license.key -d 20080331
seonped
In order to administrate basic partner information in the Seon database, this command line tool can be used from external programs (i.e. SWAN 2.x, DDX, etc.). The main key is the partner shortname which must be unique. If no partner exists for the given shortname it will be created. If exactly one partner entry exists for the given shortname it will be used for changing configuration entries. If multiple partner entries exist for the given shortname the program aborts.
input parameters
- -h: help text
- -C configfile: use given config file (default:/etc/seon.conf)
- -s <partner shortname>: shortname of partner
all other parameters are optional:
- -l <partner longname>: long description of partner
- -a <partner SSID>: partner's SSID
- -b <partner SFID>: partner's SFID
- -c <partner password>: partner's password
- -d <my SSID>: my SSID
- -e <my SFID>: my SFID
- -f <my password>: my password
- -g <his hostname/ip address>: his TCP/IP address
- -i <his ISDN number>: his ISDN number
- -p <his tcp/ip port>: his TCP/IP port
- -t <connection type>: 1 - network / 2 - ISDN
examples
localhost:~/tmp username$ ./seonped -s testshortname -l "this is the long description" -c NEWPWD -i 4711 -t 2 Seon partner edit v1.4 company 'testshortname' successfully changed
localhost:~/tmp username$ ./seonped -s testshortname -a "O001300 NEW SSID" -b "O001300 NEW SFID" -t 1 -g seon.remotedomain.com -p 3317 Seon partner edit v1.4 successfully inserted new company
seonpoll
Connect to a given partner and retrieve downloadable files (if any are given by partner).
input parameters
- -p <partner shortname>
- [-a <alternative partner's SFID for authentification>]
- [-n]: no not daemonize
- -h: this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -v: display version
examples
localhost:~/tmp username$ ./seonpoll -v Seon poll version 2 build 20080513
localhost:~/tmp username$ ./seonpoll c-works
localhost:~/tmp username$ ./seonpoll -C /etc/seon.conf -p c-works
In order not to daemonize the process (i.e. to count received files via returncode):
localhost:~/tmp username$ ./seonpoll -C /etc/seon.conf -p c-works -n
seonrd / seonrd2
The main Seon receive daemon which is responsible for accepting OFTP sessions. This daemon starts several processes:
- seonrd: the management process which manages all subsequent child processes
- seonrd_tcpip: main receive process for incoming TCP/IP connections. After having accepted a connection, this processes creates a new child process:- seonrd_tcpip_active: an active TCP/IP OFTP connection
 
- seonrd_tcpip_tls: main receive process for incoming TLS secured TCP/IP connections. After having accepted a connection, this processes creates a new child process:- seonrd_tcpip_active: an active TLS secured TCP/IP OFTP connection
 
- seonrd_capi_[number]: main receive process for incoming ISDN connections. The number is the index value of the CAPI configuration row. After having accepted a call, this processes creates a new child process:- seonrd_capi_[number]_active: an active CAPI OFTP connection
 
This behaviour in changed process names is not available on HP/UX!
input parameters
- -h: help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -f start forced
- -v: display version
- -i <serverID>: start as server with ID <serverID> (default: 0)
seonsqd / seonsqd2
The send queue daemon checks new entries in the send queue, trying to send them. During processing, the daemon starts the following processes:
- seonsqd: the management process which manages all subsequent child processes:- seonsqd_tcpip_active: an active OFTP connection process, running a TCP/IP connection
- seonsqd_tcpip_tls_active: an active OFTP connection process, running a TLS secured TCP/IP connection
- seonsqd_capi_active: an active OFTP connection process, running an ISDN connection
 
This behaviour in changed process names is not available on HP/UX!
input parameters
- -h: help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -f start forced
- -v: display version
- -i <serverID>: start as server with ID <serverID> (default: 0)
seonupdate
Check the integrity and signature of an update file and execute it.
input parameters
- -h: printf this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -f <filename with absolute path>
- -V: print out version and exit
examples
./seonupdate -f /opt/seon/incoming/Seon_UPDATE
./seonupdate -C /usr/local/os4sx/seon.conf -f /tmp/manually_received_update_file
shox
The Seon shell. Start programs with parameters outside Seon as if they were started inside Seon events or other states.
input parameters
- -h: this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -e <executable>: executable to be started
- -p <parameters>: parameters to give the executable
- -v|V: print out version and exit
examples
/opt/seon/bin/shox -e set
/opt/seon/bin/shox -C /usr/local/seon/seon.conf -e /bin/ls -p "-l /tmp"
seon_check_lcapi
Check all locally installed CAPI controllers of the underlying Linux CAPI2.0 system. This binary is also used by the web interface in the section "CAPI", when scanning for new devices.
input parameters
- [-x: output in XML format]
examples
Human-readable mode:
seonbox:~# /opt/seon/bin/seon_check_lcapi Seon local CAPI check tool v1.0 Available controllers: 1 Checking controller 1: Available channels per controller: 2 B1 protocol: 0x11F B2 protocol: 0xB1B B3 protocol: 0xBF B3 protocol X.25 available (OFTP ready)
XML mode:
seonbox:~# /opt/seon/bin/seon_check_lcapi -x <?xml version="1.0" encoding="UTF-8"?> <Seon_Brick_config> <available_controllers>1</available_controllers> <controller> <number>1</number> <index>0</index> <channels>2</channels> <b1_protocol>0x11F</b1_protocol> <b2_protocol>0xB1B</b2_protocol> <b3_protocol>0xBF</b3_protocol> <b3_protocol_x25>1</b3_protocol_x25> </controller> </Seon_Brick_config>
seonsend
Send a single file with a given virtual filename to a defined partner.
input parameters
- -h: this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -p <partner shortname> (mandatory)
- -f <file to send (absolute path)> (mandatory)
- -v <virtual filename> (mandatory)
- -a <alternative SFID originator>
- -b <alternative SFID destination>
- -s <alternative SSID originator>
- -t <alternative SSID destination>
- -d: daemonize (backgrounding process)
- -D <optional file description in OFTPv2 session>
- -o: verbose output
- -V: print out version and exit
- [-F <n>]: send file in fixed record length mode with n bytes maximum record length; overrides binary data transfer mode
- [-G <n>]: send file in variable record length mode with n bytes maximum record length; overrides binary data transfer mode
examples
Send file "/opt/seon/outgoing/testfile" as "TESTFILE" to partner "c-works":
/opt/seon/bin/seonsend -p c-works -f /opt/seon/outgoing/testfile -v TESTFILE
seondebugd
The Seon debug is an optional daemon which collects data from every running Seon process. It saves the collected data in memory with a maximum size, rotating the log entries automatically (since it's a ring buffer). When an error occurs, it's quite handy to have the debug daemon running, because the debug daemon can produce an encrypted log file which contains information of value for debugging the behaviour. For producing such a log, the debug daemon binary must be started with parameter "d" or "-D":
input parameters
- -h: this help text
- -C <configfile>: use given config file (default: /etc/seon.conf)
- -f: start forced
- -v: display version
- -d: dump log to Seon temporary directory
- -D: dump log to /tmp (if everything else fails)
examples
Start the daemon:
/opt/seon/bin/seondebugd
Start the daemon forced (i.e. after system crash or hardware reset):
/opt/seon/bin/seondebugd -f
Start the debug daemon with an alternative configuration file:
/opt/seon/bin/seondebugd -C /opt/seon/seon.conf
Dump a log file to the configured temporary directory:
/opt/seon/bin/seondebugd -d
Dump a log file to /tmp (i.e. when the database is inaccessible and dumping to the configured temporary directory is not possible):
/opt/seon/bin/seondebug -D
Configuration parameter =
A configuration parameter exists to influence the size of the ring buffer. The parameter "seondebugd_max_bufferlength" is the amount of log lines the debug daemon manages. This is just a rough calculation, but a default value of 10000 leads to a memory consumption (and file size) of about 1MB. If this parameter doesn't exist a default of 10000 is assumed.

