2017-05-10 22:27:16 +08:00
|
|
|
/**
|
|
|
|
* @file rpa.c
|
|
|
|
* Resolvable Private Address Generation and Resolution
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Copyright (c) 2017 Nordic Semiconductor ASA
|
|
|
|
* Copyright (c) 2015-2016 Intel Corporation
|
|
|
|
*
|
|
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <zephyr.h>
|
|
|
|
#include <stddef.h>
|
|
|
|
#include <errno.h>
|
|
|
|
#include <string.h>
|
|
|
|
#include <atomic.h>
|
|
|
|
#include <misc/util.h>
|
|
|
|
#include <misc/byteorder.h>
|
|
|
|
#include <misc/stack.h>
|
|
|
|
|
|
|
|
#include <tinycrypt/constants.h>
|
|
|
|
#include <tinycrypt/aes.h>
|
|
|
|
#include <tinycrypt/utils.h>
|
|
|
|
#include <tinycrypt/cmac_mode.h>
|
|
|
|
|
2017-08-09 14:21:11 +08:00
|
|
|
#define BT_DBG_ENABLED IS_ENABLED(CONFIG_BT_DEBUG_RPA)
|
2017-05-10 22:27:16 +08:00
|
|
|
#include "common/log.h"
|
|
|
|
|
|
|
|
static int ah(const u8_t irk[16], const u8_t r[3], u8_t out[3])
|
|
|
|
{
|
|
|
|
u8_t res[16];
|
|
|
|
int err;
|
|
|
|
|
|
|
|
BT_DBG("irk %s, r %s", bt_hex(irk, 16), bt_hex(r, 3));
|
|
|
|
|
|
|
|
/* r' = padding || r */
|
|
|
|
memcpy(res, r, 3);
|
|
|
|
memset(res + 3, 0, 13);
|
|
|
|
|
|
|
|
err = bt_encrypt_le(irk, res, res);
|
|
|
|
if (err) {
|
|
|
|
return err;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* The output of the random address function ah is:
|
|
|
|
* ah(h, r) = e(k, r') mod 2^24
|
|
|
|
* The output of the security function e is then truncated to 24 bits
|
|
|
|
* by taking the least significant 24 bits of the output of e as the
|
|
|
|
* result of ah.
|
|
|
|
*/
|
|
|
|
memcpy(out, res, 3);
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2017-08-14 19:45:13 +08:00
|
|
|
#if defined(CONFIG_BT_SMP) || defined(CONFIG_BT_CTLR_PRIVACY)
|
2017-05-10 22:27:16 +08:00
|
|
|
bool bt_rpa_irk_matches(const u8_t irk[16], const bt_addr_t *addr)
|
|
|
|
{
|
|
|
|
u8_t hash[3];
|
|
|
|
int err;
|
|
|
|
|
|
|
|
BT_DBG("IRK %s bdaddr %s", bt_hex(irk, 16), bt_addr_str(addr));
|
|
|
|
|
|
|
|
err = ah(irk, addr->val + 3, hash);
|
|
|
|
if (err) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return !memcmp(addr->val, hash, 3);
|
|
|
|
}
|
|
|
|
#endif
|
|
|
|
|
2017-08-14 19:45:13 +08:00
|
|
|
#if defined(CONFIG_BT_PRIVACY) || defined(CONFIG_BT_CTLR_PRIVACY)
|
2017-05-10 22:27:16 +08:00
|
|
|
int bt_rpa_create(const u8_t irk[16], bt_addr_t *rpa)
|
|
|
|
{
|
|
|
|
int err;
|
|
|
|
|
|
|
|
err = bt_rand(rpa->val + 3, 3);
|
|
|
|
if (err) {
|
|
|
|
return err;
|
|
|
|
}
|
|
|
|
|
|
|
|
BT_ADDR_SET_RPA(rpa);
|
|
|
|
|
|
|
|
err = ah(irk, rpa->val + 3, rpa->val);
|
|
|
|
if (err) {
|
|
|
|
return err;
|
|
|
|
}
|
|
|
|
|
|
|
|
BT_DBG("Created RPA %s", bt_addr_str((bt_addr_t *)rpa->val));
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
#else
|
|
|
|
int bt_rpa_create(const u8_t irk[16], bt_addr_t *rpa)
|
|
|
|
{
|
|
|
|
return -ENOTSUP;
|
|
|
|
}
|
2017-08-09 14:21:11 +08:00
|
|
|
#endif /* CONFIG_BT_PRIVACY */
|
2017-05-10 22:27:16 +08:00
|
|
|
|