md380_dfu.py

#!/usr/bin/env python2
# -*- coding: utf-8 -*-


# Copyright 2010, 2011 Michael Ossmann
# Copyright 2015 Travis Goodspeed
#
# This file was forked from Project Ubertooth as a DFU client for the
# TYT MD380, an amateur radio for the DMR protocol on the UHF bands.
# This script implements a lot of poorly understood extensions unique
# to the MD380.


from __future__ import print_function

import sys
import time

import usb.core

import dfu_suffix
from DFU import DFU, State, Status
import md380_tool
import stm32_dfu

# The tricky thing is that *THREE* different applications all show up
# as this same VID/PID pair.
#
# 1. The Tytera application image.
# 2. The Tytera bootloader at 0x08000000
# 3. The mask-rom bootloader from the STM32F405.
md380_vendor = 0x0483
md380_product = 0xdf11


# application_offset = 0x08000000
# ram_offset = 0x20000000
# application_size   = 0x00040000


def download(dfu, data, flash_address):
    block_size = 1 << 8
    sector_size = 1 << 12
    if flash_address & (sector_size - 1) != 0:
        raise Exception('Download must start at flash sector boundary')

    block_number = flash_address / block_size
    assert block_number * block_size == flash_address

    try:
        while len(data) > 0:
            packet, data = data[:block_size], data[block_size:]
            if len(packet) < block_size:
                packet += '\xFF' * (block_size - len(packet))
            dfu.download(block_number, packet)
            status, timeout, state, discarded = dfu.get_status()
            sys.stdout.write('.')
            sys.stdout.flush()
            block_number += 1
    finally:
        print()


def download_codeplug(dfu, data):
    """Downloads a codeplug to the MD380."""
    block_size = 1024

    dfu.md380_custom(0x91, 0x01)  # Programming Mode
    dfu.md380_custom(0x91, 0x01)  # Programming Mode
    # dfu.md380_custom(0xa2,0x01); #Returns "DR780...", seems to crash client.
    # hexdump(dfu.get_command());  #Gets a string.
    dfu.md380_custom(0xa2, 0x02)
    hexdump(dfu.get_command())  # Gets a string.
    time.sleep(2)
    dfu.md380_custom(0xa2, 0x02)
    dfu.md380_custom(0xa2, 0x03)
    dfu.md380_custom(0xa2, 0x04)
    dfu.md380_custom(0xa2, 0x07)

    dfu.erase_block(0x00000000)
    dfu.erase_block(0x00010000)
    dfu.erase_block(0x00020000)
    dfu.erase_block(0x00030000)

    dfu.set_address(0x00000000)  # Zero address, used by configuration tool.

    # sys.exit();

    status, timeout, state, discarded = dfu.get_status()
    # print(status, timeout, state, discarded)

    block_number = 2

    try:
        while len(data) > 0:
            packet, data = data[:block_size], data[block_size:]
            if len(packet) < block_size:
                packet += '\xFF' * (block_size - len(packet))
            dfu.download(block_number, packet)
            state = 11
            while state != State.dfuDNLOAD_IDLE:
                status, timeout, state, discarded = dfu.get_status()
                # print(status, timeout, state, discarded)
            sys.stdout.write('.')
            sys.stdout.flush()
            block_number += 1
    finally:
        print()


def hexdump(string):
    """God awful hex dump function for testing."""
    buf = ""
    i = 0
    for c in string:
        buf += "%02x" % c
        i += 1
        if i & 3 == 0:
            buf += " "
        if i & 0xf == 0:
            buf += "   "
        if i & 0x1f == 0:
            buf += "\n"

    print(buf)


def upload_bootloader(dfu, filename):
    """Dumps the bootloader, but only on Mac."""
    # dfu.set_address(0x00000000); # Address is ignored, so it doesn't really matter.

    # Bootloader stretches from 0x08000000 to 0x0800C000, but our
    # address and block number are ignored, so we set the block size
    # ot 0xC000 to yank the entire thing in one go.  The application
    # comes later, I think.
    block_size = 0xC000  # 0xC000;

    f = None
    if filename is not None:
        f = open(filename, 'wb')

    print("Dumping bootloader.  This only works in radio mode, not programming mode.")
    try:
        data = dfu.upload(2, block_size)
        status, timeout, state, discarded = dfu.get_status()
        if len(data) == block_size:
            print("Got it all!")
        else:
            print("Only got %i bytes.  Older versions would give it all." % len(data))
            # raise Exception('Upload failed to read full block.  Got %i bytes.' % len(data))
        if f is not None:
            f.write(data)
        else:
            hexdump(data)

    finally:
        print("Done.")


def upload_codeplug(dfu, filename):
    """Uploads a codeplug from the radio to the host."""
    dfu.md380_custom(0x91, 0x01)  # Programming Mode
    # dfu.md380_custom(0xa2,0x01); #Returns "DR780...", seems to crash client.
    # hexdump(dfu.get_command());  #Gets a string.
    dfu.md380_custom(0xa2, 0x02)
    dfu.md380_custom(0xa2, 0x02)
    dfu.md380_custom(0xa2, 0x03)
    dfu.md380_custom(0xa2, 0x04)
    dfu.md380_custom(0xa2, 0x07)

    dfu.set_address(0x00000000)  # Zero address, used by configuration tool.

    f = open(filename, 'wb')
    block_size = 1024
    try:
        # Codeplug region is 0 to 3ffffff, but only the first 256k are used.
        for block_number in range(2, 0x102):
            data = dfu.upload(block_number, block_size)
            status, timeout, state, discarded = dfu.get_status()
            # print("Status is: %x %x %x %x" % (status, timeout, state, discarded))
            sys.stdout.write('.')
            sys.stdout.flush()
            if len(data) == block_size:
                f.write(data)
                # hexdump(data);
            else:
                raise Exception('Upload failed to read full block.  Got %i bytes.' % len(data))
                # dfu.md380_reboot()
    finally:
        print("Done.")


def download_firmware(dfu, data):
    """ Download new firmware binary to the radio. """
    addresses = [
        0x0800c000,
        0x08010000,
        0x08020000,
        0x08040000,
        0x08060000,
        0x08080000,
        0x080a0000,
        0x080c0000,
        0x080e0000]
    sizes = [0x4000,  # 0c
             0x10000,  # 1
             0x20000,  # 2
             0x20000,  # 4
             0x20000,  # 6
             0x20000,  # 8
             0x20000,  # a
             0x20000,  # c
             0x20000]  # e
    block_ends = [0x11, 0x41, 0x81, 0x81, 0x81, 0x81, 0x81, 0x81, 0x81]
    try:
        # Are we in the right mode?
        mfg = dfu.get_string(1)
        if mfg != u'AnyRoad Technology':
            print("""ERROR: You forgot to enter the bootloader.
Please hold PTT and the button above it while rebooting.  You
should see the LED blinking green and red, and then your
radio will be radio to accept this firmware update.""")
            sys.exit(1)

        print("Beginning firmware upgrade.")
        sys.stdout.flush() # let text appear immediately (for mingw)
        status, timeout, state, discarded = dfu.get_status()
        assert state == State.dfuIDLE

        dfu.md380_custom(0x91, 0x01)
        dfu.md380_custom(0x91, 0x31)

        for address in addresses:
            if dfu.verbose:
                print("Erasing address@ 0x%x" % address)
                sys.stdout.flush()
            dfu.erase_block(address)

        block_size = 1024
        block_start = 2
        address_idx = 0

        if data[0:14] == "OutSecurityBin":  # skip header if present
            if dfu.verbose:
                print("Skipping 0x100 byte header in data file")
            header, data = data[:0x100], data[0x100:]

        print("Writing firmware:")

        assert len(addresses) == len(sizes)
        numaddresses = len(addresses)

        while address_idx < numaddresses:  # for each section
            print("%0d%% complete" % (address_idx * 100 / numaddresses))
            sys.stdout.flush() # let text appear immediately (for mingw)
            address = addresses[address_idx]
            size = sizes[address_idx]
            dfu.set_address(address)

            if address_idx != len(addresses) - 1:
                assert address + size == addresses[address_idx + 1]

            datawritten = 0
            block_number = block_start

            while len(data) > 0 and size > datawritten:  # for each block
                assert block_number <= block_ends[address_idx]
                packet, data = data[:block_size], data[block_size:]

                if len(packet) < block_size:
                    packet += '\xFF' * (block_size - len(packet))

                dfu.download(block_number, packet)
                dfu.wait_till_ready()

                datawritten += len(packet)
                block_number += 1
                # if dfu.verbose: sys.stdout.write('.'); sys.stdout.flush()
            # if dfu.verbose: sys.stdout.write('_\n'); sys.stdout.flush()
            address_idx += 1
        print("100% complete, now safe to disconnect and/or reboot radio")
        return True
    except Exception as e:
        print(e)
        return False


def upload(dfu, flash_address, length, path):
    # block_size = 1 << 8
    block_size = 1 << 14

    print("Address: 0x%08x" % flash_address)
    print("Block Size:    0x%04x" % block_size)

    if flash_address & (block_size - 1) != 0:
        raise Exception('Upload must start at block boundary')

    block_number = flash_address / block_size
    assert block_number * block_size == flash_address
    # block_number=0x8000;
    print("Block Number:    0x%04x" % block_number)

    cmds = dfu.get_command()
    print("%i supported commands." % len(cmds))
    for cmd in cmds:
        print("Command %02x is supported by UPLOAD." % cmd)

    dfu.set_address(0x08001000)  # RAM
    block_number = 2

    f = open(path, 'wb')

    try:
        while length > 0:
            data = dfu.upload(block_number, block_size)
            status, timeout, state, discarded = dfu.get_status()
            print("Status is: %x %x %x %x" % (status, timeout, state, discarded))
            sys.stdout.write('.')
            sys.stdout.flush()
            if len(data) == block_size:
                f.write(data)
            else:
                raise Exception('Upload failed to read full block.  Got %i bytes.' % len(data))
            block_number += 1
            length -= len(data)
    finally:
        f.close()
        print()


def detach(dfu):
    if dfu.get_state() == State.dfuIDLE:
        dfu.detach()
        print('Detached')
    else:
        print('In unexpected state: %s' % dfu.get_state())


def init_dfu(alt=0):
    dev = usb.core.find(idVendor=md380_vendor,
                        idProduct=md380_product)

    if dev is None:
        raise RuntimeError('Device not found')

    dfu = DFU(dev, alt)
    dev.default_timeout = 6000

    try:
        dfu.enter_dfu_mode()
    except usb.core.USBError as e:
        if len(e.args) > 0 and e.args[0] == 'Pipe error':
            raise RuntimeError('Failed to enter DFU mode. Is bootloader running?')
        else:
            raise e

    return dfu

def auto_upgrade(firmware_data):
    print("Beginning firmware auto_upgrade. This supports forcing a fully-booted radio into the bootloader, if it has a recent experimental firmware.\n"
    "Stock firmware and older experimental firmware will still require the usual buttons (PTT+button above) held during power-on.\n"
    )
    errors = []
    dfu = init_dfu()
    mfg = dfu.get_string(1)
    if mfg != u'AnyRoad Technology':
        print("Radio not in bootloader: attempting automatic reboot into bootloader")
        try:
            dfu.wait_till_ready() #make sure it's safe to reboot radio
            del dfu
        except usb.core.USBError as e:
            #we expect a pipe error here (errno 32)
            #or an input/output error (errno 5)
            # print("detach dfu")
            if e.errno not in [5,32]:
                print(e)
                errors.append(e)
        time.sleep(1)
        try:
            tooldfu = md380_tool.init_dfu() #prepare to and then reboot radio
            tooldfu.reboot_to_bootloader()
            del tooldfu
        except usb.core.USBError as e:
            #we expect a pipe error here (errno 32)
            #or an input/output error (errno 5)
            print("tooldfu")
            if e.errno not in  [5,32]:
                print(e)
                errors.append(e)
        print("Waiting 10 seconds for bootloader")
        time.sleep(10) #wait for bootloader to be ready
        status = None
        while status != Status.OK: #stay here until bootloader actually ready
            print("Checking bootloader is okay:")
            try:
                dfu = init_dfu()
                status = dfu.get_status()[0]
            except usb.core.USBError as e:
                #busy device is okay here, but the time.sleep should be enough to handle that
                print(e)
                status = None
            time.sleep(.5)
    else:
        print("Radio is already in bootloader, or we can't tell (old firmware versions can do this sometimes)")
        print("If this fails, boot the radio into the bootloader yourself (You've succeeded when the status light flashes between red and green) and try again")
    result = download_firmware(dfu, firmware_data)
    if result is True:
        errors = []
    dfu.wait_till_ready()

    #now we boot the full application
    try:
        del dfu
    except usb.core.USBError as e:
        if e.errno not in [5,32]:
            print("detach bootloader dfu")
            print(e)
            errors.append(e)
    time.sleep(1)
    try:
        stm32dfu = stm32_dfu.init_dfu()
        stm32dfu.go() #has a default address that works
        del stm32dfu
    except usb.core.USBError as e:
        if e.errno not in [5,32]:
            print("stm32dfu go")
            print(e)
            errors.append(e)
    return errors

def usage():
    print("""
Usage: md380-dfu <command> <arguments>

Write a codeplug to the radio. Supported file types: RDT (from official Tytera editor), DFU (with suffix) and raw binaries
    md380-dfu write <codeplug.rdt>
    md380-dfu write <codeplug.dfu>
    md380-dfu write <codeplug.bin>

Write firmware to the radio.
    md380-dfu upgrade <firmware.bin>

Read a codeplug and write it to a file.
    md380-dfu read <codeplug.bin>

Dump the bootloader from Flash memory.
    md380-dfu readboot <filename.bin>


Print the time from the MD380.
    md380-dfu time

Set time and date on MD380 to system time or specified time.
    md380-dfu settime
    md380-dfu settime "mm/dd/yyyy HH:MM:SS" (with quotes)

Detach the bootloader and execute the application firmware:
    md380-dfu detach

Close the bootloader session.
    md380-dfu reboot


Upgrade to new firmware:
    md380-dfu upgrade foo.bin
""")


def main():
    try:
        if len(sys.argv) == 3:
            if sys.argv[1] == 'read':
                dfu = init_dfu()
                upload_codeplug(dfu, sys.argv[2])
                print('Read complete')
            elif sys.argv[1] == 'readboot':
                print("This only works from OS X.  Use the one in md380-tool with patched firmware for other bootloaders.")
                dfu = init_dfu()
                upload_bootloader(dfu, sys.argv[2])

            elif sys.argv[1] == "upgrade":
                dfu = init_dfu()
                with open(sys.argv[2], 'rb') as f:
                    data = f.read()
                    result = download_firmware(dfu, data)

            elif sys.argv[1] == "auto-upgrade":
                with open(sys.argv[2], 'rb') as f:
                    data = f.read()
                    errors = auto_upgrade(data)
                    if errors:
                        print("Encountered following unexpected errors during upgrade:")
                        for e in errors:
                            print(e)
                        print("This means the upgrade (probably) failed. Try again.")

            elif sys.argv[1] == 'write':
                f = open(sys.argv[2], 'rb')
                data = f.read()
                f.close()

                firmware = None

                if sys.argv[2][-4:] == '.dfu':
                    suf_len, vendor, product = dfu_suffix.check_suffix(data)
                    dfu = init_dfu()
                    firmware = data[:-suf_len]
                elif sys.argv[2][-4:] == '.rdt':
                    if len(data) == 262709 and data[0:5] == 'DfuSe':
                        dfu = init_dfu()
                        firmware = data[549:len(data) - 16]
                    else:
                        print('%s not a valid codeplug (wrong size, or wrong magic).' % sys.argv[2])
                else:
                    dfu = init_dfu()
                    firmware = data

                if firmware is not None:
                    download_codeplug(dfu, firmware)
                    print('Write complete')

            elif sys.argv[1] == 'sign':
                filename = sys.argv[2]

                f = open(filename, 'rb')
                firmware = f.read()
                f.close()

                data = dfu_suffix.add_suffix(firmware, md380_vendor, md380_product)

                dfu_file = filename[:-4] + '.dfu'
                f = open(dfu_file, 'wb')
                f.write(data)
                f.close()
                print("Signed file written: %s" % dfu_file)

            elif sys.argv[1] == 'settime':
                dfu = init_dfu()
                dfu.set_time()
            else:
                usage()

        elif len(sys.argv) == 2:
            if sys.argv[1] == 'detach':
                dfu = init_dfu()
                dfu.set_address(0x08000000)  # Radio Application
                detach(dfu)
            elif sys.argv[1] == 'time':
                dfu = init_dfu()
                print(dfu.get_time())
            elif sys.argv[1] == 'settime':
                dfu = init_dfu()
                dfu.set_time()
            elif sys.argv[1] == 'reboot':
                dfu = init_dfu()
                dfu.md380_custom(0x91, 0x01)  # Programming Mode
                dfu.md380_custom(0x91, 0x01)  # Programming Mode
                # dfu.md380_custom(0x91,0x01); #Programming Mode
                # dfu.drawtext("Rebooting",160,50);
                dfu.md380_reboot()
            elif sys.argv[1] == 'abort':
                dfu = init_dfu()
                dfu.abort()
            else:
                usage()
        else:
            usage()
    except RuntimeError as e:
        print(e.args[0])
        exit(1)
    except Exception as e:
        print(e)
        # print(dfu.get_status())
        exit(1)


if __name__ == '__main__':
    main()
	#!/usr/bin/env python2
	# -- coding: utf-8 --


	# Copyright 2010, 2011 Michael Ossmann
	# Copyright 2015 Travis Goodspeed
	#
	# This file was forked from Project Ubertooth as a DFU client for the
	# TYT MD380, an amateur radio for the DMR protocol on the UHF bands.
	# This script implements a lot of poorly understood extensions unique
	# to the MD380.


	from __future__ import print_function

	import sys
	import time

	import usb.core

	import dfu_suffix
	from DFU import DFU, State, Status
	import md380_tool
	import stm32_dfu

	# The tricky thing is that THREE different applications all show up
	# as this same VID/PID pair.
	#
	# 1. The Tytera application image.
	# 2. The Tytera bootloader at 0x08000000
	# 3. The mask-rom bootloader from the STM32F405.
	md380_vendor = 0x0483
	md380_product = 0xdf11


	# application_offset = 0x08000000
	# ram_offset = 0x20000000
	# application_size = 0x00040000


	def download(dfu, data, flash_address):
	block_size = 1 << 8
	sector_size = 1 << 12
	if flash_address & (sector_size - 1) != 0:
	raise Exception('Download must start at flash sector boundary')

	block_number = flash_address / block_size
	assert block_number * block_size == flash_address

	try:
	while len(data) > 0:
	packet, data = data[:block_size], data[block_size:]
	if len(packet) < block_size:
	packet += '\xFF' * (block_size - len(packet))
	dfu.download(block_number, packet)
	status, timeout, state, discarded = dfu.get_status()
	sys.stdout.write('.')
	sys.stdout.flush()
	block_number += 1
	finally:
	print()


	def download_codeplug(dfu, data):
	"""Downloads a codeplug to the MD380."""
	block_size = 1024

	dfu.md380_custom(0x91, 0x01) # Programming Mode
	dfu.md380_custom(0x91, 0x01) # Programming Mode
	# dfu.md380_custom(0xa2,0x01); #Returns "DR780...", seems to crash client.
	# hexdump(dfu.get_command()); #Gets a string.
	dfu.md380_custom(0xa2, 0x02)
	hexdump(dfu.get_command()) # Gets a string.
	time.sleep(2)
	dfu.md380_custom(0xa2, 0x02)
	dfu.md380_custom(0xa2, 0x03)
	dfu.md380_custom(0xa2, 0x04)
	dfu.md380_custom(0xa2, 0x07)

	dfu.erase_block(0x00000000)
	dfu.erase_block(0x00010000)
	dfu.erase_block(0x00020000)
	dfu.erase_block(0x00030000)

	dfu.set_address(0x00000000) # Zero address, used by configuration tool.

	# sys.exit();

	status, timeout, state, discarded = dfu.get_status()
	# print(status, timeout, state, discarded)

	block_number = 2

	try:
	while len(data) > 0:
	packet, data = data[:block_size], data[block_size:]
	if len(packet) < block_size:
	packet += '\xFF' * (block_size - len(packet))
	dfu.download(block_number, packet)
	state = 11
	while state != State.dfuDNLOAD_IDLE:
	status, timeout, state, discarded = dfu.get_status()
	# print(status, timeout, state, discarded)
	sys.stdout.write('.')
	sys.stdout.flush()
	block_number += 1
	finally:
	print()


	def hexdump(string):
	"""God awful hex dump function for testing."""
	buf = ""
	i = 0
	for c in string:
	buf += "%02x" % c
	i += 1
	if i & 3 == 0:
	buf += " "
	if i & 0xf == 0:
	buf += " "
	if i & 0x1f == 0:
	buf += "\n"

	print(buf)


	def upload_bootloader(dfu, filename):
	"""Dumps the bootloader, but only on Mac."""
	# dfu.set_address(0x00000000); # Address is ignored, so it doesn't really matter.

	# Bootloader stretches from 0x08000000 to 0x0800C000, but our
	# address and block number are ignored, so we set the block size
	# ot 0xC000 to yank the entire thing in one go. The application
	# comes later, I think.
	block_size = 0xC000 # 0xC000;

	f = None
	if filename is not None:
	f = open(filename, 'wb')

	print("Dumping bootloader. This only works in radio mode, not programming mode.")
	try:
	data = dfu.upload(2, block_size)
	status, timeout, state, discarded = dfu.get_status()
	if len(data) == block_size:
	print("Got it all!")
	else:
	print("Only got %i bytes. Older versions would give it all." % len(data))
	# raise Exception('Upload failed to read full block. Got %i bytes.' % len(data))
	if f is not None:
	f.write(data)
	else:
	hexdump(data)

	finally:
	print("Done.")


	def upload_codeplug(dfu, filename):
	"""Uploads a codeplug from the radio to the host."""
	dfu.md380_custom(0x91, 0x01) # Programming Mode
	# dfu.md380_custom(0xa2,0x01); #Returns "DR780...", seems to crash client.
	# hexdump(dfu.get_command()); #Gets a string.
	dfu.md380_custom(0xa2, 0x02)
	dfu.md380_custom(0xa2, 0x02)
	dfu.md380_custom(0xa2, 0x03)
	dfu.md380_custom(0xa2, 0x04)
	dfu.md380_custom(0xa2, 0x07)

	dfu.set_address(0x00000000) # Zero address, used by configuration tool.

	f = open(filename, 'wb')
	block_size = 1024
	try:
	# Codeplug region is 0 to 3ffffff, but only the first 256k are used.
	for block_number in range(2, 0x102):
	data = dfu.upload(block_number, block_size)
	status, timeout, state, discarded = dfu.get_status()
	# print("Status is: %x %x %x %x" % (status, timeout, state, discarded))
	sys.stdout.write('.')
	sys.stdout.flush()
	if len(data) == block_size:
	f.write(data)
	# hexdump(data);
	else:
	raise Exception('Upload failed to read full block. Got %i bytes.' % len(data))
	# dfu.md380_reboot()
	finally:
	print("Done.")


	def download_firmware(dfu, data):
	""" Download new firmware binary to the radio. """
	addresses = [
	0x0800c000,
	0x08010000,
	0x08020000,
	0x08040000,
	0x08060000,
	0x08080000,
	0x080a0000,
	0x080c0000,
	0x080e0000]
	sizes = [0x4000, # 0c
	0x10000, # 1
	0x20000, # 2
	0x20000, # 4
	0x20000, # 6
	0x20000, # 8
	0x20000, # a
	0x20000, # c
	0x20000] # e
	block_ends = [0x11, 0x41, 0x81, 0x81, 0x81, 0x81, 0x81, 0x81, 0x81]
	try:
	# Are we in the right mode?
	mfg = dfu.get_string(1)
	if mfg != u'AnyRoad Technology':
	print("""ERROR: You forgot to enter the bootloader.
	Please hold PTT and the button above it while rebooting. You
	should see the LED blinking green and red, and then your
	radio will be radio to accept this firmware update.""")
	sys.exit(1)

	print("Beginning firmware upgrade.")
	sys.stdout.flush() # let text appear immediately (for mingw)
	status, timeout, state, discarded = dfu.get_status()
	assert state == State.dfuIDLE

	dfu.md380_custom(0x91, 0x01)
	dfu.md380_custom(0x91, 0x31)

	for address in addresses:
	if dfu.verbose:
	print("Erasing address@ 0x%x" % address)
	sys.stdout.flush()
	dfu.erase_block(address)

	block_size = 1024
	block_start = 2
	address_idx = 0

	if data[0:14] == "OutSecurityBin": # skip header if present
	if dfu.verbose:
	print("Skipping 0x100 byte header in data file")
	header, data = data[:0x100], data[0x100:]

	print("Writing firmware:")

	assert len(addresses) == len(sizes)
	numaddresses = len(addresses)

	while address_idx < numaddresses: # for each section
	print("%0d%% complete" % (address_idx * 100 / numaddresses))
	sys.stdout.flush() # let text appear immediately (for mingw)
	address = addresses[address_idx]
	size = sizes[address_idx]
	dfu.set_address(address)

	if address_idx != len(addresses) - 1:
	assert address + size == addresses[address_idx + 1]

	datawritten = 0
	block_number = block_start

	while len(data) > 0 and size > datawritten: # for each block
	assert block_number <= block_ends[address_idx]
	packet, data = data[:block_size], data[block_size:]

	if len(packet) < block_size:
	packet += '\xFF' * (block_size - len(packet))

	dfu.download(block_number, packet)
	dfu.wait_till_ready()

	datawritten += len(packet)
	block_number += 1
	# if dfu.verbose: sys.stdout.write('.'); sys.stdout.flush()
	# if dfu.verbose: sys.stdout.write('_\n'); sys.stdout.flush()
	address_idx += 1
	print("100% complete, now safe to disconnect and/or reboot radio")
	return True
	except Exception as e:
	print(e)
	return False


	def upload(dfu, flash_address, length, path):
	# block_size = 1 << 8
	block_size = 1 << 14

	print("Address: 0x%08x" % flash_address)
	print("Block Size: 0x%04x" % block_size)

	if flash_address & (block_size - 1) != 0:
	raise Exception('Upload must start at block boundary')

	block_number = flash_address / block_size
	assert block_number * block_size == flash_address
	# block_number=0x8000;
	print("Block Number: 0x%04x" % block_number)

	cmds = dfu.get_command()
	print("%i supported commands." % len(cmds))
	for cmd in cmds:
	print("Command %02x is supported by UPLOAD." % cmd)

	dfu.set_address(0x08001000) # RAM
	block_number = 2

	f = open(path, 'wb')

	try:
	while length > 0:
	data = dfu.upload(block_number, block_size)
	status, timeout, state, discarded = dfu.get_status()
	print("Status is: %x %x %x %x" % (status, timeout, state, discarded))
	sys.stdout.write('.')
	sys.stdout.flush()
	if len(data) == block_size:
	f.write(data)
	else:
	raise Exception('Upload failed to read full block. Got %i bytes.' % len(data))
	block_number += 1
	length -= len(data)
	finally:
	f.close()
	print()


	def detach(dfu):
	if dfu.get_state() == State.dfuIDLE:
	dfu.detach()
	print('Detached')
	else:
	print('In unexpected state: %s' % dfu.get_state())


	def init_dfu(alt=0):
	dev = usb.core.find(idVendor=md380_vendor,
	idProduct=md380_product)

	if dev is None:
	raise RuntimeError('Device not found')

	dfu = DFU(dev, alt)
	dev.default_timeout = 6000

	try:
	dfu.enter_dfu_mode()
	except usb.core.USBError as e:
	if len(e.args) > 0 and e.args[0] == 'Pipe error':
	raise RuntimeError('Failed to enter DFU mode. Is bootloader running?')
	else:
	raise e

	return dfu

	def auto_upgrade(firmware_data):
	print("Beginning firmware auto_upgrade. This supports forcing a fully-booted radio into the bootloader, if it has a recent experimental firmware.\n"
	"Stock firmware and older experimental firmware will still require the usual buttons (PTT+button above) held during power-on.\n"
	)
	errors = []
	dfu = init_dfu()
	mfg = dfu.get_string(1)
	if mfg != u'AnyRoad Technology':
	print("Radio not in bootloader: attempting automatic reboot into bootloader")
	try:
	dfu.wait_till_ready() #make sure it's safe to reboot radio
	del dfu
	except usb.core.USBError as e:
	#we expect a pipe error here (errno 32)
	#or an input/output error (errno 5)
	# print("detach dfu")
	if e.errno not in [5,32]:
	print(e)
	errors.append(e)
	time.sleep(1)
	try:
	tooldfu = md380_tool.init_dfu() #prepare to and then reboot radio
	tooldfu.reboot_to_bootloader()
	del tooldfu
	except usb.core.USBError as e:
	#we expect a pipe error here (errno 32)
	#or an input/output error (errno 5)
	print("tooldfu")
	if e.errno not in [5,32]:
	print(e)
	errors.append(e)
	print("Waiting 10 seconds for bootloader")
	time.sleep(10) #wait for bootloader to be ready
	status = None
	while status != Status.OK: #stay here until bootloader actually ready
	print("Checking bootloader is okay:")
	try:
	dfu = init_dfu()
	status = dfu.get_status()[0]
	except usb.core.USBError as e:
	#busy device is okay here, but the time.sleep should be enough to handle that
	print(e)
	status = None
	time.sleep(.5)
	else:
	print("Radio is already in bootloader, or we can't tell (old firmware versions can do this sometimes)")
	print("If this fails, boot the radio into the bootloader yourself (You've succeeded when the status light flashes between red and green) and try again")
	result = download_firmware(dfu, firmware_data)
	if result is True:
	errors = []
	dfu.wait_till_ready()

	#now we boot the full application
	try:
	del dfu
	except usb.core.USBError as e:
	if e.errno not in [5,32]:
	print("detach bootloader dfu")
	print(e)
	errors.append(e)
	time.sleep(1)
	try:
	stm32dfu = stm32_dfu.init_dfu()
	stm32dfu.go() #has a default address that works
	del stm32dfu
	except usb.core.USBError as e:
	if e.errno not in [5,32]:
	print("stm32dfu go")
	print(e)
	errors.append(e)
	return errors

	def usage():
	print("""
	Usage: md380-dfu <command> <arguments>

	Write a codeplug to the radio. Supported file types: RDT (from official Tytera editor), DFU (with suffix) and raw binaries
	md380-dfu write <codeplug.rdt>
	md380-dfu write <codeplug.dfu>
	md380-dfu write <codeplug.bin>

	Write firmware to the radio.
	md380-dfu upgrade <firmware.bin>

	Read a codeplug and write it to a file.
	md380-dfu read <codeplug.bin>

	Dump the bootloader from Flash memory.
	md380-dfu readboot <filename.bin>


	Print the time from the MD380.
	md380-dfu time

	Set time and date on MD380 to system time or specified time.
	md380-dfu settime
	md380-dfu settime "mm/dd/yyyy HH:MM:SS" (with quotes)

	Detach the bootloader and execute the application firmware:
	md380-dfu detach

	Close the bootloader session.
	md380-dfu reboot


	Upgrade to new firmware:
	md380-dfu upgrade foo.bin
	""")



	def main():
	try:
	if len(sys.argv) == 3:
	if sys.argv[1] == 'read':
	dfu = init_dfu()
	upload_codeplug(dfu, sys.argv[2])
	print('Read complete')
	elif sys.argv[1] == 'readboot':
	print("This only works from OS X. Use the one in md380-tool with patched firmware for other bootloaders.")
	dfu = init_dfu()
	upload_bootloader(dfu, sys.argv[2])

	elif sys.argv[1] == "upgrade":
	dfu = init_dfu()
	with open(sys.argv[2], 'rb') as f:
	data = f.read()
	result = download_firmware(dfu, data)

	elif sys.argv[1] == "auto-upgrade":
	with open(sys.argv[2], 'rb') as f:
	data = f.read()
	errors = auto_upgrade(data)
	if errors:
	print("Encountered following unexpected errors during upgrade:")
	for e in errors:
	print(e)
	print("This means the upgrade (probably) failed. Try again.")

	elif sys.argv[1] == 'write':
	f = open(sys.argv[2], 'rb')
	data = f.read()
	f.close()

	firmware = None

	if sys.argv[2][-4:] == '.dfu':
	suf_len, vendor, product = dfu_suffix.check_suffix(data)
	dfu = init_dfu()
	firmware = data[:-suf_len]
	elif sys.argv[2][-4:] == '.rdt':
	if len(data) == 262709 and data[0:5] == 'DfuSe':
	dfu = init_dfu()
	firmware = data[549:len(data) - 16]
	else:
	print('%s not a valid codeplug (wrong size, or wrong magic).' % sys.argv[2])
	else:
	dfu = init_dfu()
	firmware = data

	if firmware is not None:
	download_codeplug(dfu, firmware)
	print('Write complete')

	elif sys.argv[1] == 'sign':
	filename = sys.argv[2]

	f = open(filename, 'rb')
	firmware = f.read()
	f.close()

	data = dfu_suffix.add_suffix(firmware, md380_vendor, md380_product)

	dfu_file = filename[:-4] + '.dfu'
	f = open(dfu_file, 'wb')
	f.write(data)
	f.close()
	print("Signed file written: %s" % dfu_file)

	elif sys.argv[1] == 'settime':
	dfu = init_dfu()
	dfu.set_time()
	else:
	usage()

	elif len(sys.argv) == 2:
	if sys.argv[1] == 'detach':
	dfu = init_dfu()
	dfu.set_address(0x08000000) # Radio Application
	detach(dfu)
	elif sys.argv[1] == 'time':
	dfu = init_dfu()
	print(dfu.get_time())
	elif sys.argv[1] == 'settime':
	dfu = init_dfu()
	dfu.set_time()
	elif sys.argv[1] == 'reboot':
	dfu = init_dfu()
	dfu.md380_custom(0x91, 0x01) # Programming Mode
	dfu.md380_custom(0x91, 0x01) # Programming Mode
	# dfu.md380_custom(0x91,0x01); #Programming Mode
	# dfu.drawtext("Rebooting",160,50);
	dfu.md380_reboot()
	elif sys.argv[1] == 'abort':
	dfu = init_dfu()
	dfu.abort()
	else:
	usage()
	else:
	usage()
	except RuntimeError as e:
	print(e.args[0])
	exit(1)
	except Exception as e:
	print(e)
	# print(dfu.get_status())
	exit(1)


	if __name__ == '__main__':
	main()