random data generation

2018-02-09 13:55:33 +00:00 · 2018-02-09 13:55:33 +00:00 · 769c97e32c
parent fe9b558a2a
commit 769c97e32c
3 changed files with 38 additions and 8 deletions
--- a/features/FEATURE_BLE/ble/BLETypes.h
+++ b/features/FEATURE_BLE/ble/BLETypes.h
@ -318,14 +318,14 @@ struct octet_type_t {
    /**
     * Return the pointer to the buffer holding data.
     */
-    uint8_t* buffer() const {
+    uint8_t* buffer() {
        return _value;
    }

    /**
     * Size in byte of a data.
     */
-    static uint8_t size() {
+    static size_t size() {
        return sizeof(_value);
    }

--- a/features/FEATURE_BLE/ble/generic/GenericSecurityManager.h
+++ b/features/FEATURE_BLE/ble/generic/GenericSecurityManager.h
@ -295,6 +295,16 @@ private:
     */
    ble_error_t init_signing();

+    /**
+     * Fills the buffer with the specified number of bytes of random data
+     * produced by the link controller
+     *
+     * @param buffer buffer to be filled with random data
+     * @param size number of bytes to fill with random data
+     * @return BLE_ERROR_NONE or appropriate error code indicating the failure reason.
+     */
+    ble_error_t get_random_data(uint8_t *buffer, size_t size);
+
    /**
     * Send slave security request based on current link settings.
     *
--- a/features/FEATURE_BLE/source/generic/GenericSecurityManager.cpp
+++ b/features/FEATURE_BLE/source/generic/GenericSecurityManager.cpp
@ -567,13 +567,34 @@ ble_error_t GenericSecurityManager::init_signing() {
    const csrk_t *pcsrk = _db.get_local_csrk();
    if (!pcsrk) {
        csrk_t csrk;
-        /* TODO: generate csrk */
+
+        ble_error_t ret = get_random_data(csrk.buffer(), csrk.size());
+        if (ret != BLE_ERROR_NONE) {
+            return ret;
+        }
+
        pcsrk = &csrk;
        _db.set_local_csrk(pcsrk);
    }
    return _pal.set_csrk(pcsrk);
 }

+ble_error_t GenericSecurityManager::get_random_data(uint8_t *buffer, size_t size) {
+    random_data_t random_data;
+
+    while (size) {
+        size_t copy_size = std::max(size, random_data.size());
+        ble_error_t ret = _pal.get_random_data(random_data);
+        if (ret != BLE_ERROR_NONE) {
+            return ret;
+        }
+        memcpy(buffer, random_data.buffer(), copy_size);
+        size -= copy_size;
+    }
+
+    return BLE_ERROR_NONE;
+}
+
 ble_error_t GenericSecurityManager::slave_security_request(connection_handle_t connection) {
    SecurityEntry_t *entry = _db.get_entry(connection);
    if (!entry) {
@ -649,14 +670,13 @@ void GenericSecurityManager::generate_secure_connections_oob(
     address_t local_address;
     oob_confirm_t confirm;
     oob_rand_t random;
-     random_data_t random_data;

     /*TODO: get local address*/

-     _pal.get_random_data(random_data);
-     memcpy(random.buffer(), random_data.buffer(), random_data_t.size());
-     _pal.get_random_data(random_data);
-     memcpy(random.buffer() + random_data_t.size(), &random_data.buffer(), random_data_t.size());
+     ble_error_t ret = get_random_data(random.buffer(), random.size());
+     if (ret != BLE_ERROR_NONE) {
+         return;
+     }

     crypto_toolbox_f4(
         _db.get_public_key_x(),