12#ifndef PACKET_RF4CE_SECUR_H
13#define PACKET_RF4CE_SECUR_H
22#define RF4CE_IEEE_ADDR_LEN 8
23#define RF4CE_SHORT_ADDR_LEN 2
25#define RF4CE_MIN_NWK_LENGTH 5
26#define RF4CE_MAX_NWK_LENGTH 148
28#define RF4CE_VENDOR_SECRET_STORAGE_SIZE 64
29#define RF4CE_NWK_KEY_STORAGE_SIZE 64
30#define RF4CE_ADDR_TABLE_SIZE (RF4CE_NWK_KEY_STORAGE_SIZE * 2)
32#define RF4CE_NWK_KEY_SEED_DATA_LENGTH 80
36#define RF4CE_CCM_NONCE_LEN (15 - RF4CE_CCM_L)
37#define RF4CE_SECUR_CONTROL 5
39#define KEY_LEN SEC_STR_LEN
42 uint8_t nwk_key_seed_latest[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
43 uint8_t nwk_key_seed_prev[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
44 uint8_t nwk_key_seed[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
45 uint8_t controller_addr[RF4CE_IEEE_ADDR_LEN];
46 uint8_t target_addr[RF4CE_IEEE_ADDR_LEN];
47 uint8_t nwk_key_exchange_transfer_expected;
48 uint8_t nwk_key_exchange_transfer_received;
51#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH 8
52#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH 8
54#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_AB_LENGTH \
55 (RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH \
56 + RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH)
58#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_TAG_A_LENGTH 4
59#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_TAG_B_LENGTH 4
61#define RF4CE_KEY_EXCHANGE_CONTEXT_LENGTH 9
62#define RF4CE_KEY_EXCHANGE_LABEL_LENGTH (2 * (RF4CE_IEEE_ADDR_LEN))
64#define RF4CE_CMAC_ARG_2_LENGTH \
65 (RF4CE_KEY_EXCHANGE_CONTEXT_LENGTH \
66 + RF4CE_KEY_EXCHANGE_LABEL_LENGTH \
73#define CONTEXT_STR "RF4CE GDP"
74#define CONTEXT_STR_LEN 9
76extern uint8_t DEFAULT_SECRET[SEC_STR_LEN];
79 uint8_t rand_a[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH];
80 uint8_t rand_b[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH];
81 uint8_t mac_a[RF4CE_IEEE_ADDR_LEN];
82 uint8_t mac_b[RF4CE_IEEE_ADDR_LEN];
90__attribute__((__packed__))
94 uint8_t a[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH];
95 uint8_t b[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH];
103# pragma pack(push, 1)
105__attribute__((__packed__))
109 uint8_t context[CONTEXT_STR_LEN];
110 uint8_t mac_a[RF4CE_IEEE_ADDR_LEN];
111 uint8_t mac_b[RF4CE_IEEE_ADDR_LEN];
112 uint8_t pairing_key[KEY_LEN];
119void rf4ce_aes_cmac(
unsigned char *
input,
unsigned long length,
unsigned char *key,
unsigned char *mac_value);
122 uint8_t ieee_addr[RF4CE_IEEE_ADDR_LEN];
128 uint8_t nwk_key[KEY_LEN];
137 uint8_t secret[SEC_STR_LEN];
147void keypair_context_init(
const uint8_t *controller_ieee,
const uint8_t *target_ieee, uint8_t expected_transfer_count);
148void keypair_context_update_seed(uint8_t *seed, uint8_t seed_seqn);
150void nwk_key_storage_add_entry(uint8_t *nwk_key,
addr_entry_t *controller_addr_ent,
addr_entry_t *target_addr_ent,
bool key_from_gui,
bool is_pairing_key);
151void nwk_key_storage_release_entry(uint8_t *nwk_key,
bool key_from_gui);
153void rf4ce_addr_table_add_addrs(
const void *ieee_addr, uint16_t short_addr);
154bool rf4ce_addr_table_get_ieee_addr(uint8_t *ieee_addr,
packet_info *pinfo,
bool is_src);
155addr_entry_t *rf4ce_addr_table_get_addr_entry_by_ieee(uint8_t *ieee_addr);
157void key_exchange_context_init(
void);
159void key_exchange_context_start_procedure(
void);
160void key_exchange_context_stop_procedure(
void);
161bool key_exchange_context_is_procedure_started(
void);
163void key_exchange_context_set_rand_a(uint8_t *rand_a);
164void key_exchange_context_set_rand_b(uint8_t *rand_b);
166void key_exchange_context_set_mac_a(uint8_t *mac_a);
167void key_exchange_context_set_mac_b(uint8_t *mac_b);
169void key_exchange_calc_key(uint32_t tag_b_pack);
171void vendor_secret_storage_add_entry(uint8_t *secret);
172void vendor_secret_storage_release_entry(uint8_t *secret);
174void rf4ce_secur_cleanup(
void);
178# pragma pack(push, 1)
180__attribute__((__packed__))
182rf4ce_secur_ccm_nonce_s
184 uint8_t source_address[RF4CE_IEEE_ADDR_LEN];
185 uint32_t frame_counter;
186 uint8_t secur_control;
187} rf4ce_secur_ccm_nonce_t;
194# pragma pack(push, 1)
196__attribute__((__packed__))
198rf4ce_secur_ccm_auth_s
200 uint8_t frame_control;
201 uint32_t frame_counter;
202 uint8_t dest_address[RF4CE_IEEE_ADDR_LEN];
203} rf4ce_secur_ccm_auth_t;
211 uint16_t payload_offset,
213 uint8_t src_ieee[RF4CE_IEEE_ADDR_LEN],
214 uint8_t dst_ieee[RF4CE_IEEE_ADDR_LEN]);
Definition packet_info.h:43
Definition packet-rf4ce-secur.h:121
Definition packet-isakmp.c:1886
Definition packet-rf4ce-secur.h:78
Definition packet-rf4ce-secur.h:41
Definition packet-rf4ce-secur.h:127
Definition packet-rf4ce-secur.h:141
Definition packet-rf4ce-secur.h:136