xref: /OK3568_Linux_fs/kernel/net/bluetooth/smp.h (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun /*
2*4882a593Smuzhiyun    BlueZ - Bluetooth protocol stack for Linux
3*4882a593Smuzhiyun    Copyright (C) 2011 Nokia Corporation and/or its subsidiary(-ies).
4*4882a593Smuzhiyun 
5*4882a593Smuzhiyun    This program is free software; you can redistribute it and/or modify
6*4882a593Smuzhiyun    it under the terms of the GNU General Public License version 2 as
7*4882a593Smuzhiyun    published by the Free Software Foundation;
8*4882a593Smuzhiyun 
9*4882a593Smuzhiyun    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
10*4882a593Smuzhiyun    OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
11*4882a593Smuzhiyun    FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OF THIRD PARTY RIGHTS.
12*4882a593Smuzhiyun    IN NO EVENT SHALL THE COPYRIGHT HOLDER(S) AND AUTHOR(S) BE LIABLE FOR ANY
13*4882a593Smuzhiyun    CLAIM, OR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES, OR ANY DAMAGES
14*4882a593Smuzhiyun    WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15*4882a593Smuzhiyun    ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16*4882a593Smuzhiyun    OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17*4882a593Smuzhiyun 
18*4882a593Smuzhiyun    ALL LIABILITY, INCLUDING LIABILITY FOR INFRINGEMENT OF ANY PATENTS,
19*4882a593Smuzhiyun    COPYRIGHTS, TRADEMARKS OR OTHER RIGHTS, RELATING TO USE OF THIS
20*4882a593Smuzhiyun    SOFTWARE IS DISCLAIMED.
21*4882a593Smuzhiyun */
22*4882a593Smuzhiyun 
23*4882a593Smuzhiyun #ifndef __SMP_H
24*4882a593Smuzhiyun #define __SMP_H
25*4882a593Smuzhiyun 
26*4882a593Smuzhiyun struct smp_command_hdr {
27*4882a593Smuzhiyun 	__u8	code;
28*4882a593Smuzhiyun } __packed;
29*4882a593Smuzhiyun 
30*4882a593Smuzhiyun #define SMP_CMD_PAIRING_REQ	0x01
31*4882a593Smuzhiyun #define SMP_CMD_PAIRING_RSP	0x02
32*4882a593Smuzhiyun struct smp_cmd_pairing {
33*4882a593Smuzhiyun 	__u8	io_capability;
34*4882a593Smuzhiyun 	__u8	oob_flag;
35*4882a593Smuzhiyun 	__u8	auth_req;
36*4882a593Smuzhiyun 	__u8	max_key_size;
37*4882a593Smuzhiyun 	__u8	init_key_dist;
38*4882a593Smuzhiyun 	__u8	resp_key_dist;
39*4882a593Smuzhiyun } __packed;
40*4882a593Smuzhiyun 
41*4882a593Smuzhiyun #define SMP_IO_DISPLAY_ONLY	0x00
42*4882a593Smuzhiyun #define SMP_IO_DISPLAY_YESNO	0x01
43*4882a593Smuzhiyun #define SMP_IO_KEYBOARD_ONLY	0x02
44*4882a593Smuzhiyun #define SMP_IO_NO_INPUT_OUTPUT	0x03
45*4882a593Smuzhiyun #define SMP_IO_KEYBOARD_DISPLAY	0x04
46*4882a593Smuzhiyun 
47*4882a593Smuzhiyun #define SMP_OOB_NOT_PRESENT	0x00
48*4882a593Smuzhiyun #define SMP_OOB_PRESENT		0x01
49*4882a593Smuzhiyun 
50*4882a593Smuzhiyun #define SMP_DIST_ENC_KEY	0x01
51*4882a593Smuzhiyun #define SMP_DIST_ID_KEY		0x02
52*4882a593Smuzhiyun #define SMP_DIST_SIGN		0x04
53*4882a593Smuzhiyun #define SMP_DIST_LINK_KEY	0x08
54*4882a593Smuzhiyun 
55*4882a593Smuzhiyun #define SMP_AUTH_NONE		0x00
56*4882a593Smuzhiyun #define SMP_AUTH_BONDING	0x01
57*4882a593Smuzhiyun #define SMP_AUTH_MITM		0x04
58*4882a593Smuzhiyun #define SMP_AUTH_SC		0x08
59*4882a593Smuzhiyun #define SMP_AUTH_KEYPRESS	0x10
60*4882a593Smuzhiyun #define SMP_AUTH_CT2		0x20
61*4882a593Smuzhiyun 
62*4882a593Smuzhiyun #define SMP_CMD_PAIRING_CONFIRM	0x03
63*4882a593Smuzhiyun struct smp_cmd_pairing_confirm {
64*4882a593Smuzhiyun 	__u8	confirm_val[16];
65*4882a593Smuzhiyun } __packed;
66*4882a593Smuzhiyun 
67*4882a593Smuzhiyun #define SMP_CMD_PAIRING_RANDOM	0x04
68*4882a593Smuzhiyun struct smp_cmd_pairing_random {
69*4882a593Smuzhiyun 	__u8	rand_val[16];
70*4882a593Smuzhiyun } __packed;
71*4882a593Smuzhiyun 
72*4882a593Smuzhiyun #define SMP_CMD_PAIRING_FAIL	0x05
73*4882a593Smuzhiyun struct smp_cmd_pairing_fail {
74*4882a593Smuzhiyun 	__u8	reason;
75*4882a593Smuzhiyun } __packed;
76*4882a593Smuzhiyun 
77*4882a593Smuzhiyun #define SMP_CMD_ENCRYPT_INFO	0x06
78*4882a593Smuzhiyun struct smp_cmd_encrypt_info {
79*4882a593Smuzhiyun 	__u8	ltk[16];
80*4882a593Smuzhiyun } __packed;
81*4882a593Smuzhiyun 
82*4882a593Smuzhiyun #define SMP_CMD_MASTER_IDENT	0x07
83*4882a593Smuzhiyun struct smp_cmd_master_ident {
84*4882a593Smuzhiyun 	__le16	ediv;
85*4882a593Smuzhiyun 	__le64	rand;
86*4882a593Smuzhiyun } __packed;
87*4882a593Smuzhiyun 
88*4882a593Smuzhiyun #define SMP_CMD_IDENT_INFO	0x08
89*4882a593Smuzhiyun struct smp_cmd_ident_info {
90*4882a593Smuzhiyun 	__u8	irk[16];
91*4882a593Smuzhiyun } __packed;
92*4882a593Smuzhiyun 
93*4882a593Smuzhiyun #define SMP_CMD_IDENT_ADDR_INFO	0x09
94*4882a593Smuzhiyun struct smp_cmd_ident_addr_info {
95*4882a593Smuzhiyun 	__u8	addr_type;
96*4882a593Smuzhiyun 	bdaddr_t bdaddr;
97*4882a593Smuzhiyun } __packed;
98*4882a593Smuzhiyun 
99*4882a593Smuzhiyun #define SMP_CMD_SIGN_INFO	0x0a
100*4882a593Smuzhiyun struct smp_cmd_sign_info {
101*4882a593Smuzhiyun 	__u8	csrk[16];
102*4882a593Smuzhiyun } __packed;
103*4882a593Smuzhiyun 
104*4882a593Smuzhiyun #define SMP_CMD_SECURITY_REQ	0x0b
105*4882a593Smuzhiyun struct smp_cmd_security_req {
106*4882a593Smuzhiyun 	__u8	auth_req;
107*4882a593Smuzhiyun } __packed;
108*4882a593Smuzhiyun 
109*4882a593Smuzhiyun #define SMP_CMD_PUBLIC_KEY	0x0c
110*4882a593Smuzhiyun struct smp_cmd_public_key {
111*4882a593Smuzhiyun 	__u8	x[32];
112*4882a593Smuzhiyun 	__u8	y[32];
113*4882a593Smuzhiyun } __packed;
114*4882a593Smuzhiyun 
115*4882a593Smuzhiyun #define SMP_CMD_DHKEY_CHECK	0x0d
116*4882a593Smuzhiyun struct smp_cmd_dhkey_check {
117*4882a593Smuzhiyun 	__u8	e[16];
118*4882a593Smuzhiyun } __packed;
119*4882a593Smuzhiyun 
120*4882a593Smuzhiyun #define SMP_CMD_KEYPRESS_NOTIFY	0x0e
121*4882a593Smuzhiyun struct smp_cmd_keypress_notify {
122*4882a593Smuzhiyun 	__u8	value;
123*4882a593Smuzhiyun } __packed;
124*4882a593Smuzhiyun 
125*4882a593Smuzhiyun #define SMP_CMD_MAX		0x0e
126*4882a593Smuzhiyun 
127*4882a593Smuzhiyun #define SMP_PASSKEY_ENTRY_FAILED	0x01
128*4882a593Smuzhiyun #define SMP_OOB_NOT_AVAIL		0x02
129*4882a593Smuzhiyun #define SMP_AUTH_REQUIREMENTS		0x03
130*4882a593Smuzhiyun #define SMP_CONFIRM_FAILED		0x04
131*4882a593Smuzhiyun #define SMP_PAIRING_NOTSUPP		0x05
132*4882a593Smuzhiyun #define SMP_ENC_KEY_SIZE		0x06
133*4882a593Smuzhiyun #define SMP_CMD_NOTSUPP			0x07
134*4882a593Smuzhiyun #define SMP_UNSPECIFIED			0x08
135*4882a593Smuzhiyun #define SMP_REPEATED_ATTEMPTS		0x09
136*4882a593Smuzhiyun #define SMP_INVALID_PARAMS		0x0a
137*4882a593Smuzhiyun #define SMP_DHKEY_CHECK_FAILED		0x0b
138*4882a593Smuzhiyun #define SMP_NUMERIC_COMP_FAILED		0x0c
139*4882a593Smuzhiyun #define SMP_BREDR_PAIRING_IN_PROGRESS	0x0d
140*4882a593Smuzhiyun #define SMP_CROSS_TRANSP_NOT_ALLOWED	0x0e
141*4882a593Smuzhiyun 
142*4882a593Smuzhiyun #define SMP_MIN_ENC_KEY_SIZE		7
143*4882a593Smuzhiyun #define SMP_MAX_ENC_KEY_SIZE		16
144*4882a593Smuzhiyun 
145*4882a593Smuzhiyun /* LTK types used in internal storage (struct smp_ltk) */
146*4882a593Smuzhiyun enum {
147*4882a593Smuzhiyun 	SMP_STK,
148*4882a593Smuzhiyun 	SMP_LTK,
149*4882a593Smuzhiyun 	SMP_LTK_SLAVE,
150*4882a593Smuzhiyun 	SMP_LTK_P256,
151*4882a593Smuzhiyun 	SMP_LTK_P256_DEBUG,
152*4882a593Smuzhiyun };
153*4882a593Smuzhiyun 
smp_ltk_is_sc(struct smp_ltk * key)154*4882a593Smuzhiyun static inline bool smp_ltk_is_sc(struct smp_ltk *key)
155*4882a593Smuzhiyun {
156*4882a593Smuzhiyun 	switch (key->type) {
157*4882a593Smuzhiyun 	case SMP_LTK_P256:
158*4882a593Smuzhiyun 	case SMP_LTK_P256_DEBUG:
159*4882a593Smuzhiyun 		return true;
160*4882a593Smuzhiyun 	}
161*4882a593Smuzhiyun 
162*4882a593Smuzhiyun 	return false;
163*4882a593Smuzhiyun }
164*4882a593Smuzhiyun 
smp_ltk_sec_level(struct smp_ltk * key)165*4882a593Smuzhiyun static inline u8 smp_ltk_sec_level(struct smp_ltk *key)
166*4882a593Smuzhiyun {
167*4882a593Smuzhiyun 	if (key->authenticated) {
168*4882a593Smuzhiyun 		if (smp_ltk_is_sc(key))
169*4882a593Smuzhiyun 			return BT_SECURITY_FIPS;
170*4882a593Smuzhiyun 		else
171*4882a593Smuzhiyun 			return BT_SECURITY_HIGH;
172*4882a593Smuzhiyun 	}
173*4882a593Smuzhiyun 
174*4882a593Smuzhiyun 	return BT_SECURITY_MEDIUM;
175*4882a593Smuzhiyun }
176*4882a593Smuzhiyun 
177*4882a593Smuzhiyun /* Key preferences for smp_sufficient security */
178*4882a593Smuzhiyun enum smp_key_pref {
179*4882a593Smuzhiyun 	SMP_ALLOW_STK,
180*4882a593Smuzhiyun 	SMP_USE_LTK,
181*4882a593Smuzhiyun };
182*4882a593Smuzhiyun 
183*4882a593Smuzhiyun /* SMP Commands */
184*4882a593Smuzhiyun int smp_cancel_and_remove_pairing(struct hci_dev *hdev, bdaddr_t *bdaddr,
185*4882a593Smuzhiyun 				  u8 addr_type);
186*4882a593Smuzhiyun bool smp_sufficient_security(struct hci_conn *hcon, u8 sec_level,
187*4882a593Smuzhiyun 			     enum smp_key_pref key_pref);
188*4882a593Smuzhiyun int smp_conn_security(struct hci_conn *hcon, __u8 sec_level);
189*4882a593Smuzhiyun int smp_user_confirm_reply(struct hci_conn *conn, u16 mgmt_op, __le32 passkey);
190*4882a593Smuzhiyun 
191*4882a593Smuzhiyun bool smp_irk_matches(struct hci_dev *hdev, const u8 irk[16],
192*4882a593Smuzhiyun 		     const bdaddr_t *bdaddr);
193*4882a593Smuzhiyun int smp_generate_rpa(struct hci_dev *hdev, const u8 irk[16], bdaddr_t *rpa);
194*4882a593Smuzhiyun int smp_generate_oob(struct hci_dev *hdev, u8 hash[16], u8 rand[16]);
195*4882a593Smuzhiyun 
196*4882a593Smuzhiyun int smp_register(struct hci_dev *hdev);
197*4882a593Smuzhiyun void smp_unregister(struct hci_dev *hdev);
198*4882a593Smuzhiyun 
199*4882a593Smuzhiyun #if IS_ENABLED(CONFIG_BT_SELFTEST_SMP)
200*4882a593Smuzhiyun 
201*4882a593Smuzhiyun int bt_selftest_smp(void);
202*4882a593Smuzhiyun 
203*4882a593Smuzhiyun #else
204*4882a593Smuzhiyun 
bt_selftest_smp(void)205*4882a593Smuzhiyun static inline int bt_selftest_smp(void)
206*4882a593Smuzhiyun {
207*4882a593Smuzhiyun 	return 0;
208*4882a593Smuzhiyun }
209*4882a593Smuzhiyun 
210*4882a593Smuzhiyun #endif
211*4882a593Smuzhiyun 
212*4882a593Smuzhiyun #endif /* __SMP_H */
213