1 /*
2  * Copyright (c) 2020 Nordic Semiconductor ASA
3  *
4  * SPDX-License-Identifier: Apache-2.0
5  */
6 
7 #ifndef ZEPHYR_SUBSYS_BLUETOOTH_MESH_SUBNET_H_
8 #define ZEPHYR_SUBSYS_BLUETOOTH_MESH_SUBNET_H_
9 
10 #include <stdint.h>
11 #include <sys/types.h>
12 
13 #include <zephyr/bluetooth/mesh/keys.h>
14 #include <zephyr/net_buf.h>
15 #include <zephyr/kernel.h>
16 #include <zephyr/sys/iterable_sections.h>
17 
18 #define BT_MESH_NET_FLAG_KR       BIT(0)
19 #define BT_MESH_NET_FLAG_IVU      BIT(1)
20 
21 #define BT_MESH_KR_NORMAL         0x00
22 #define BT_MESH_KR_PHASE_1        0x01
23 #define BT_MESH_KR_PHASE_2        0x02
24 #define BT_MESH_KR_PHASE_3        0x03
25 
26 /** Which of the two subnet.keys should be used for sending. */
27 #define SUBNET_KEY_TX_IDX(sub) ((sub)->kr_phase == BT_MESH_KR_PHASE_2)
28 
29 struct bt_mesh_net_rx;
30 enum bt_mesh_key_evt;
31 
32 /** Network message encryption credentials */
33 struct bt_mesh_net_cred {
34 	uint8_t nid;                /* NID */
35 	struct bt_mesh_key enc;     /* EncKey */
36 	struct bt_mesh_key privacy; /* PrivacyKey */
37 };
38 
39 struct bt_mesh_beacon {
40 	uint32_t sent;        /* Timestamp of last sent beacon */
41 	uint32_t recv;        /* Timestamp of last received beacon */
42 	uint8_t  last;       /* Number of beacons during last
43 				      * observation window
44 				      */
45 	uint8_t  cur;        /* Number of beacons observed during
46 				      * currently ongoing window.
47 				      */
48 	uint8_t  cache[8];   /* Cached last beacon auth value */
49 	uint8_t  auth[8];    /* Beacon Authentication Value */
50 };
51 
52 /** Subnet instance. */
53 struct bt_mesh_subnet {
54 	uint16_t net_idx;            /* NetKeyIndex */
55 
56 	uint8_t  kr_phase;           /* Key Refresh Phase */
57 
58 	uint8_t  node_id;            /* Node Identity State */
59 	uint32_t node_id_start;      /* Node Identity started timestamp */
60 
61 	struct bt_mesh_beacon secure_beacon;
62 
63 #if defined(CONFIG_BT_MESH_PRIV_BEACONS)
64 	struct bt_mesh_beacon priv_beacon;
65 	struct {
66 		uint16_t idx;        /* Private beacon random index */
67 		bool node_id;        /* Private Node Identity enabled */
68 		uint8_t data[5];     /* Private Beacon data */
69 	} priv_beacon_ctx;
70 #endif
71 
72 	struct bt_mesh_subnet_keys {
73 		bool valid;
74 		struct bt_mesh_key net;         /* NetKey */
75 		struct bt_mesh_net_cred msg;
76 		uint8_t net_id[8];              /* Network ID */
77 	#if defined(CONFIG_BT_MESH_GATT)
78 		struct bt_mesh_key identity;    /* IdentityKey */
79 	#endif
80 		struct bt_mesh_key beacon;      /* BeaconKey */
81 		struct bt_mesh_key priv_beacon; /* PrivateBeaconKey */
82 	} keys[2];
83 #if defined(CONFIG_BT_MESH_PROXY_SOLICITATION)
84 	bool sol_tx;
85 #endif
86 #if defined(CONFIG_BT_MESH_OD_PRIV_PROXY_SRV)
87 	uint32_t priv_net_id_sent; /* Timestamp for Private Network ID advertising
88 				    * started via Proxy Solicitation
89 				    */
90 	bool solicited;      /* Subnet received valid Solicitation PDU */
91 #endif
92 };
93 
94 /** Subnet callback structure. Instantiate with @ref BT_MESH_SUBNET_CB */
95 struct bt_mesh_subnet_cb {
96 	void (*evt_handler)(struct bt_mesh_subnet *subnet,
97 			    enum bt_mesh_key_evt evt);
98 };
99 
100 /**
101  *  @brief Register a subnet event callback.
102  *
103  *  @param _name Handler name.
104  */
105 #define BT_MESH_SUBNET_CB_DEFINE(_name)                                    \
106 	static const STRUCT_SECTION_ITERABLE(                               \
107 		bt_mesh_subnet_cb, _CONCAT(bt_mesh_subnet_cb_, _name))
108 
109 /** @brief Reset all Network keys. */
110 void bt_mesh_net_keys_reset(void);
111 
112 /** @brief Call cb on every valid Subnet until it returns a non-zero value.
113  *
114  *  @param cb Callback to call, or NULL to return first valid subnet. If the callback returns true,
115  *            iteration stops, and the passed subnet is returned.
116  *  @param cb_data Callback data to pass to callback.
117  *
118  *  @return Subnet that returned non-zero value.
119  */
120 struct bt_mesh_subnet *bt_mesh_subnet_find(bool (*cb)(struct bt_mesh_subnet *sub, void *cb_data),
121 					   void *cb_data);
122 
123 /** @brief Iterate through all valid Subnets.
124  *
125  *  @param cb Callback to call on every Subnet.
126  *
127  *  @returns The number of valid subnets.
128  */
129 size_t bt_mesh_subnet_foreach(void (*cb)(struct bt_mesh_subnet *sub));
130 
131 /** @brief Get the next valid Subnet.
132  *
133  *  If there's only one valid Subnet, this will be returned on every call.
134  *
135  *  @param sub Previous Subnet, or NULL to get the first valid.
136  *
137  *  @returns Gets the next valid Subnet after @c sub, or NULL if there are no
138  *           valid Subnets.
139  */
140 struct bt_mesh_subnet *bt_mesh_subnet_next(struct bt_mesh_subnet *sub);
141 
142 /** @brief Get a pointer to the Subnet with the given index.
143  *
144  *  @param net_idx Network index to look for.
145  *
146  *  @returns Subnet with index @c net_idx, or NULL if no such Subnet is known.
147  */
148 struct bt_mesh_subnet *bt_mesh_subnet_get(uint16_t net_idx);
149 
150 /** @brief Initialize a new Subnet.
151  *
152  *  @param net_idx Network index of the Subnet.
153  *  @param kr_phase Key refresh phase the Subnet should be in.
154  *  @param key The current network key for the Subnet.
155  *  @param new_key New network key, if available.
156  *
157  *  @returns 0 on success, or (negative) error code on failure.
158  */
159 int bt_mesh_subnet_set(uint16_t net_idx, uint8_t kr_phase,
160 		       const struct bt_mesh_key *key, const struct bt_mesh_key *new_key);
161 
162 /** @brief Create Friendship credentials.
163  *
164  *  @param cred Credential object to create.
165  *  @param lpn_addr Address of the LPN node in the friendship.
166  *  @param frnd_addr Address of the Friend node in the friendship.
167  *  @param lpn_counter The LPN's counter parameter.
168  *  @param frnd_counter The Friend node's counter parameter.
169  *  @param key Network key to create the Friendship credentials for.
170  *
171  *  @returns 0 on success, or (negative) error code on failure.
172  */
173 int bt_mesh_friend_cred_create(struct bt_mesh_net_cred *cred,
174 			       uint16_t lpn_addr, uint16_t frnd_addr,
175 			       uint16_t lpn_counter, uint16_t frnd_counter,
176 			       const struct bt_mesh_key *key);
177 
178 /** @brief Destroy Friendship credentials.
179  *
180  *  @param cred Credential object to destroy.
181  */
182 void bt_mesh_friend_cred_destroy(struct bt_mesh_net_cred *cred);
183 
184 /** @brief Iterate through all valid network credentials to decrypt a message.
185  *
186  *  @param rx Network RX parameters, passed to the callback.
187  *  @param in Input message buffer, passed to the callback.
188  *  @param out Output message buffer, passed to the callback.
189  *  @param cb Callback to call for each known network credential. Iteration
190  *            stops when this callback returns @c true.
191  *
192  *  @returns Whether any of the credentials got a @c true return from the
193  *           callback.
194  */
195 bool bt_mesh_net_cred_find(struct bt_mesh_net_rx *rx, struct net_buf_simple *in,
196 			   struct net_buf_simple *out,
197 			   bool (*cb)(struct bt_mesh_net_rx *rx,
198 				      struct net_buf_simple *in,
199 				      struct net_buf_simple *out,
200 				      const struct bt_mesh_net_cred *cred));
201 
202 /** @brief Get the network flags of the given Subnet.
203  *
204  *  @param sub Subnet to get the network flags of.
205  *
206  *  @returns A bitmap of @ref BT_MESH_NET_FLAG_KR and @ref BT_MESH_NET_FLAG_IVU.
207  */
208 uint8_t bt_mesh_net_flags(struct bt_mesh_subnet *sub);
209 
210 /** @brief Process a Key Refresh event from a beacon.
211  *
212  *  @param sub Subnet the Key Refresh was received on.
213  *  @param kr_flag Key Refresh flag.
214  *  @param new_key Whether the Key Refresh event was received on the new key
215  *                 set.
216  *
217  *  @returns Whether the Key Refresh event caused a change.
218  */
219 void bt_mesh_kr_update(struct bt_mesh_subnet *sub, bool kr_flag, bool new_key);
220 
221 /** @brief Check whether the Subnet has the refreshed keys.
222  *
223  *  @param sub Subnet.
224  *
225  *  @returns Whether the Subnet's second key is valid.
226  */
227 static inline bool
bt_mesh_subnet_has_new_key(const struct bt_mesh_subnet * sub)228 bt_mesh_subnet_has_new_key(const struct bt_mesh_subnet *sub)
229 {
230 	return sub->kr_phase != BT_MESH_KR_NORMAL;
231 }
232 
233 /** Kind of currently enabled Node Identity state on one or more subnets. */
234 enum bt_mesh_subnets_node_id_state {
235 	/* None node identity states are enabled on any subnets. */
236 	BT_MESH_SUBNETS_NODE_ID_STATE_NONE,
237 	/* Node Identity state is enabled on one or more subnets. */
238 	BT_MESH_SUBNETS_NODE_ID_STATE_ENABLED,
239 	/* Private Node Identity state is enabled on one or more subnets. */
240 	BT_MESH_SUBNETS_NODE_ID_STATE_ENABLED_PRIVATE,
241 };
242 
243 /** @brief Returns what kind of node identity state is currently enabled on one or more subnets.
244  *
245  * Only one kind (either non-private or private) can be enabled at the same time on all subnets.
246  *
247  * @returns Kind of node identity state that is currently enabled.
248  */
249 enum bt_mesh_subnets_node_id_state bt_mesh_subnets_node_id_state_get(void);
250 
251 /** @brief Store the Subnet information in persistent storage.
252  *
253  * @param net_idx Network index to store.
254  */
255 void bt_mesh_subnet_store(uint16_t net_idx);
256 
257 /** @brief Store the pending Subnets in persistent storage. */
258 void bt_mesh_subnet_pending_store(void);
259 
260 #endif /* ZEPHYR_SUBSYS_BLUETOOTH_MESH_SUBNET_H_ */
261