1 /* 2 * Copyright (C) 2014 BlueKitchen GmbH 3 * 4 * Redistribution and use in source and binary forms, with or without 5 * modification, are permitted provided that the following conditions 6 * are met: 7 * 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. Neither the name of the copyright holders nor the names of 14 * contributors may be used to endorse or promote products derived 15 * from this software without specific prior written permission. 16 * 4. Any redistribution, use, or modification is done solely for 17 * personal benefit and not for any commercial purpose or for 18 * monetary gain. 19 * 20 * THIS SOFTWARE IS PROVIDED BY BLUEKITCHEN GMBH AND CONTRIBUTORS 21 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 22 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS 23 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL MATTHIAS 24 * RINGWALD OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 25 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 26 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS 27 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 28 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 29 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF 30 * THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 * 33 * Please inquire about commercial licensing options at 34 * [email protected] 35 * 36 */ 37 38 #define BTSTACK_FILE__ "sm_pairing_peripheral.c" 39 40 // ***************************************************************************** 41 /* EXAMPLE_START(sm_pairing_peripheral): LE Peripheral - Test Pairing Methods 42 * 43 * @text Depending on the Authentication requiremens and IO Capabilities, 44 * the pairing process uses different short and long term key generation method. 45 * This example helps explore the different options incl. LE Secure Connections. 46 */ 47 // ***************************************************************************** 48 49 #include <stdint.h> 50 #include <stdio.h> 51 #include <stdlib.h> 52 #include <string.h> 53 #include <inttypes.h> 54 55 #include "sm_pairing_peripheral.h" 56 #include "btstack.h" 57 58 /* @section Main Application Setup 59 * 60 * @text Listing MainConfiguration shows main application code. 61 * It initializes L2CAP, the Security Manager and configures the ATT Server with the pre-compiled 62 * ATT Database generated from $sm_pairing_peripheral.gatt$. Finally, it configures the advertisements 63 * and boots the Bluetooth stack. 64 * In this example, the Advertisement contains the Flags attribute, the device name, and a 16-bit (test) service 0x1111 65 * The flag 0x06 indicates: LE General Discoverable Mode and BR/EDR not supported. 66 * Various examples for IO Capabilites and Authentication Requirements are given below. 67 */ 68 69 /* LISTING_START(MainConfiguration): Setup stack to advertise */ 70 static btstack_packet_callback_registration_t sm_event_callback_registration; 71 72 static void packet_handler (uint8_t packet_type, uint16_t channel, uint8_t *packet, uint16_t size); 73 74 const uint8_t adv_data[] = { 75 // Flags general discoverable, BR/EDR not supported 76 0x02, BLUETOOTH_DATA_TYPE_FLAGS, 0x06, 77 // Name 78 0x0b, BLUETOOTH_DATA_TYPE_COMPLETE_LOCAL_NAME, 'S', 'M', ' ', 'P', 'a', 'i', 'r', 'i', 'n', 'g', 79 // Incomplete List of 16-bit Service Class UUIDs -- 1111 - only valid for testing! 80 0x03, BLUETOOTH_DATA_TYPE_INCOMPLETE_LIST_OF_16_BIT_SERVICE_CLASS_UUIDS, 0x11, 0x11, 81 }; 82 const uint8_t adv_data_len = sizeof(adv_data); 83 84 static void sm_peripheral_setup(void){ 85 86 l2cap_init(); 87 88 // setup le device db 89 le_device_db_init(); 90 91 // setup SM: Display only 92 sm_init(); 93 94 // setup ATT server 95 att_server_init(profile_data, NULL, NULL); 96 97 // setup GATT Client 98 gatt_client_init(); 99 100 // setup advertisements 101 uint16_t adv_int_min = 0x0030; 102 uint16_t adv_int_max = 0x0030; 103 uint8_t adv_type = 0; 104 bd_addr_t null_addr; 105 memset(null_addr, 0, 6); 106 gap_advertisements_set_params(adv_int_min, adv_int_max, adv_type, 0, null_addr, 0x07, 0x00); 107 gap_advertisements_set_data(adv_data_len, (uint8_t*) adv_data); 108 gap_advertisements_enable(1); 109 110 // register for SM events 111 sm_event_callback_registration.callback = &packet_handler; 112 sm_add_event_handler(&sm_event_callback_registration); 113 114 // register for ATT 115 att_server_register_packet_handler(packet_handler); 116 117 118 // Configuration 119 120 // Enable mandatory authentication for GATT Client 121 // - if un-encrypted connections are not supported, e.g. when connecting to own device, this enforces authentication 122 // gatt_client_set_required_security_level(LEVEL_2); 123 124 /** 125 * Choose ONE of the following configurations 126 * Bonding is disabled to allow for repeated testing. It can be enabled by or'ing 127 * SM_AUTHREQ_BONDING to the authentication requirements like this: 128 * sm_set_authentication_requirements( X | SM_AUTHREQ_BONDING) 129 */ 130 131 // LE Legacy Pairing, Just Works 132 // sm_set_io_capabilities(IO_CAPABILITY_NO_INPUT_NO_OUTPUT); 133 // sm_set_authentication_requirements(0); 134 135 // LE Legacy Pairing, Passkey entry initiator enter, responder (us) displays 136 // sm_set_io_capabilities(IO_CAPABILITY_DISPLAY_ONLY); 137 // sm_set_authentication_requirements(SM_AUTHREQ_MITM_PROTECTION); 138 // sm_use_fixed_passkey_in_display_role(123456); 139 140 #ifdef ENABLE_LE_SECURE_CONNECTIONS 141 142 // enable LE Secure Connections Only mode - disables Legacy pairing 143 // sm_set_secure_connections_only_mode(true); 144 145 // LE Secure Connections, Just Works 146 // sm_set_io_capabilities(IO_CAPABILITY_NO_INPUT_NO_OUTPUT); 147 // sm_set_authentication_requirements(SM_AUTHREQ_SECURE_CONNECTION); 148 149 // LE Secure Connections, Numeric Comparison 150 // sm_set_io_capabilities(IO_CAPABILITY_DISPLAY_YES_NO); 151 // sm_set_authentication_requirements(SM_AUTHREQ_SECURE_CONNECTION|SM_AUTHREQ_MITM_PROTECTION); 152 153 // LE Secure Pairing, Passkey entry initiator enter, responder (us) displays 154 // sm_set_io_capabilities(IO_CAPABILITY_DISPLAY_ONLY); 155 // sm_set_authentication_requirements(SM_AUTHREQ_SECURE_CONNECTION|SM_AUTHREQ_MITM_PROTECTION); 156 // sm_use_fixed_passkey_in_display_role(123456); 157 158 // LE Secure Pairing, Passkey entry initiator displays, responder (us) enter 159 // sm_set_io_capabilities(IO_CAPABILITY_KEYBOARD_ONLY); 160 // sm_set_authentication_requirements(SM_AUTHREQ_SECURE_CONNECTION|SM_AUTHREQ_MITM_PROTECTION); 161 #endif 162 } 163 164 /* LISTING_END */ 165 166 /* 167 * @section Packet Handler 168 * 169 * @text The packet handler is used to: 170 * - report connect/disconnect 171 * - handle Security Manager events 172 */ 173 174 /* LISTING_START(packetHandler): Packet Handler */ 175 static void packet_handler (uint8_t packet_type, uint16_t channel, uint8_t *packet, uint16_t size){ 176 UNUSED(channel); 177 UNUSED(size); 178 179 if (packet_type != HCI_EVENT_PACKET) return; 180 181 hci_con_handle_t con_handle; 182 bd_addr_t addr; 183 uint8_t status; 184 185 switch (hci_event_packet_get_type(packet)) { 186 case HCI_EVENT_LE_META: 187 switch (hci_event_le_meta_get_subevent_code(packet)) { 188 case HCI_SUBEVENT_LE_CONNECTION_COMPLETE: 189 printf("Connection complete\n"); 190 con_handle = hci_subevent_le_connection_complete_get_connection_handle(packet); 191 UNUSED(con_handle); 192 193 // for testing, choose one of the following actions 194 195 // manually start pairing 196 // sm_send_security_request(con_handle); 197 198 // gatt client request to authenticated characteristic in sm_pairing_central (short cut, uses hard-coded value handle) 199 // gatt_client_read_value_of_characteristic_using_value_handle(&packet_handler, con_handle, 0x0009); 200 201 // general gatt client request to trigger mandatory authentication 202 // gatt_client_discover_primary_services(&packet_handler, con_handle); 203 break; 204 default: 205 break; 206 } 207 break; 208 case SM_EVENT_JUST_WORKS_REQUEST: 209 printf("Just Works requested\n"); 210 sm_just_works_confirm(sm_event_just_works_request_get_handle(packet)); 211 break; 212 case SM_EVENT_NUMERIC_COMPARISON_REQUEST: 213 printf("Confirming numeric comparison: %"PRIu32"\n", sm_event_numeric_comparison_request_get_passkey(packet)); 214 sm_numeric_comparison_confirm(sm_event_passkey_display_number_get_handle(packet)); 215 break; 216 case SM_EVENT_PASSKEY_DISPLAY_NUMBER: 217 printf("Display Passkey: %"PRIu32"\n", sm_event_passkey_display_number_get_passkey(packet)); 218 break; 219 case SM_EVENT_IDENTITY_CREATED: 220 sm_event_identity_created_get_identity_address(packet, addr); 221 printf("Identity created: type %u address %s\n", sm_event_identity_created_get_identity_addr_type(packet), bd_addr_to_str(addr)); 222 break; 223 case SM_EVENT_IDENTITY_RESOLVING_SUCCEEDED: 224 sm_event_identity_resolving_succeeded_get_identity_address(packet, addr); 225 printf("Identity resolved: type %u address %s\n", sm_event_identity_resolving_succeeded_get_identity_addr_type(packet), bd_addr_to_str(addr)); 226 break; 227 case SM_EVENT_IDENTITY_RESOLVING_FAILED: 228 sm_event_identity_created_get_address(packet, addr); 229 printf("Identity resolving failed\n"); 230 break; 231 case SM_EVENT_PAIRING_STARTED: 232 printf("Pairing started\n"); 233 break; 234 case SM_EVENT_PAIRING_COMPLETE: 235 switch (sm_event_pairing_complete_get_status(packet)){ 236 case ERROR_CODE_SUCCESS: 237 printf("Pairing complete, success\n"); 238 break; 239 case ERROR_CODE_CONNECTION_TIMEOUT: 240 printf("Pairing failed, timeout\n"); 241 break; 242 case ERROR_CODE_REMOTE_USER_TERMINATED_CONNECTION: 243 printf("Pairing failed, disconnected\n"); 244 break; 245 case ERROR_CODE_AUTHENTICATION_FAILURE: 246 printf("Pairing failed, authentication failure with reason = %u\n", sm_event_pairing_complete_get_reason(packet)); 247 break; 248 default: 249 break; 250 } 251 break; 252 case SM_EVENT_REENCRYPTION_STARTED: 253 sm_event_reencryption_complete_get_address(packet, addr); 254 printf("Bonding information exists for addr type %u, identity addr %s -> re-encryption started\n", 255 sm_event_reencryption_started_get_addr_type(packet), bd_addr_to_str(addr)); 256 break; 257 case SM_EVENT_REENCRYPTION_COMPLETE: 258 switch (sm_event_reencryption_complete_get_status(packet)){ 259 case ERROR_CODE_SUCCESS: 260 printf("Re-encryption complete, success\n"); 261 break; 262 case ERROR_CODE_CONNECTION_TIMEOUT: 263 printf("Re-encryption failed, timeout\n"); 264 break; 265 case ERROR_CODE_REMOTE_USER_TERMINATED_CONNECTION: 266 printf("Re-encryption failed, disconnected\n"); 267 break; 268 case ERROR_CODE_AUTHENTICATION_FAILURE: 269 printf("Re-encryption failed, authentication failure\n"); 270 break; 271 default: 272 break; 273 } 274 break; 275 case GATT_EVENT_QUERY_COMPLETE: 276 status = gatt_event_query_complete_get_att_status(packet); 277 switch (status){ 278 case ATT_ERROR_INSUFFICIENT_ENCRYPTION: 279 printf("GATT Query result: Insufficient Encryption\n"); 280 break; 281 case ATT_ERROR_INSUFFICIENT_AUTHENTICATION: 282 printf("GATT Query result: Insufficient Authentication\n"); 283 break; 284 case ATT_ERROR_BONDING_INFORMATION_MISSING: 285 printf("GATT Query result: Bonding Information Missing\n"); 286 break; 287 case ATT_ERROR_SUCCESS: 288 printf("GATT Query result: OK\n"); 289 break; 290 default: 291 printf("GATT Query result: 0x%02x\n", gatt_event_query_complete_get_att_status(packet)); 292 break; 293 } 294 break; 295 default: 296 break; 297 } 298 } 299 /* LISTING_END */ 300 301 int btstack_main(void); 302 int btstack_main(void) 303 { 304 sm_peripheral_setup(); 305 306 // turn on! 307 hci_power_control(HCI_POWER_ON); 308 309 return 0; 310 } 311 /* EXAMPLE_END */ 312