This implements internal key storage add/delete/fetch for the three
basic key types managed in Mesh: Network, Application and Device.
This key storage is separate from keys assigned to nodes within the
mesh, and are used to support Configuration Client functionality.
---
mesh/node.c | 13 +++
mesh/node.h | 2 +
mesh/storage.c | 363 ++++++++++++++++++++++++++++++++++++++++++++++++++++-----
mesh/storage.h | 30 +++++
4 files changed, 382 insertions(+), 26 deletions(-)
diff --git a/mesh/node.c b/mesh/node.c
index 774d03d45..e95ceb9a1 100644
--- a/mesh/node.c
+++ b/mesh/node.c
@@ -79,6 +79,7 @@ struct mesh_node {
char *path;
void *jconfig;
char *cfg_file;
+ char *node_path;
uint32_t disc_watch;
time_t upd_sec;
uint32_t seq_number;
@@ -235,6 +236,8 @@ static void free_node_resources(void *data)
l_free(node->comp);
l_free(node->app_path);
l_free(node->owner);
+ l_free(node->cfg_file);
+ l_free(node->node_path);
if (node->disc_watch)
l_dbus_remove_watch(dbus_get_bus(), node->disc_watch);
@@ -1883,6 +1886,16 @@ char *node_cfg_file_get(struct mesh_node *node)
return node->cfg_file;
}
+void node_path_set(struct mesh_node *node, char *path)
+{
+ node->node_path = path;
+}
+
+char *node_path_get(struct mesh_node *node)
+{
+ return node->node_path;
+}
+
struct mesh_net *node_get_net(struct mesh_node *node)
{
return node->net;
diff --git a/mesh/node.h b/mesh/node.h
index 20b60099e..d6a4cd96c 100644
--- a/mesh/node.h
+++ b/mesh/node.h
@@ -97,3 +97,5 @@ void node_jconfig_set(struct mesh_node *node, void *jconfig);
void *node_jconfig_get(struct mesh_node *node);
void node_cfg_file_set(struct mesh_node *node, char *cfg);
char *node_cfg_file_get(struct mesh_node *node);
+void node_path_set(struct mesh_node *node, char *path);
+char *node_path_get(struct mesh_node *node);
diff --git a/mesh/storage.c b/mesh/storage.c
index 8a70b5696..53201ae80 100644
--- a/mesh/storage.c
+++ b/mesh/storage.c
@@ -28,6 +28,7 @@
#include <unistd.h>
#include <dirent.h>
#include <libgen.h>
+#include <ftw.h>
#include <sys/types.h>
#include <sys/stat.h>
@@ -56,11 +57,29 @@ struct write_info {
static const char *storage_dir;
static struct l_queue *node_ids;
+const char *dev_key_dir = "dev_keys";
+const char *app_key_dir = "app_keys";
+const char *net_key_dir = "net_keys";
+
static bool simple_match(const void *a, const void *b)
{
return a == b;
}
+/* This is a thread-safe always malloced version of dirname which will work
+ * regardless of which underlying dirname implimentation is used
+ */
+static char *alloc_dirname(const char *path)
+{
+ char *tmp = l_strdup(path);
+ char *dir;
+
+ dir = dirname(tmp);
+ strncpy(tmp, dir, strlen(path) + 1);
+
+ return tmp;
+}
+
static bool read_node_cb(struct mesh_db_node *db_node, void *user_data)
{
struct mesh_node *node = user_data;
@@ -634,15 +653,318 @@ fail:
return false;
}
+static char *storage_path_get(struct mesh_node *node)
+{
+ char *node_path = node_path_get(node);
+
+ if (!node_path) {
+ char *cfgname = (char *) node_cfg_file_get(node);
+
+ if (!cfgname)
+ return NULL;
+
+ node_path = alloc_dirname(cfgname);
+ node_path_set(node, node_path);
+ }
+
+ return node_path;
+}
+
+bool storage_put_net_key(struct mesh_node *node, uint16_t net_idx,
+ struct net_key_storage *key)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd;
+ bool result = false;
+
+ if (!node || !key)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(net_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s", node_path, net_key_dir);
+ create_dir(key_file);
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, net_key_dir, net_idx);
+ l_debug("Put Net Key %s", key_file);
+
+ fd = open(key_file, O_WRONLY | O_CREAT | O_TRUNC);
+ if (fd) {
+ if (write(fd, key, sizeof(*key)) == sizeof(*key))
+ result = true;
+
+ close(fd);
+ }
+
+ l_free(key_file);
+ return result;
+}
+
+bool storage_put_app_key(struct mesh_node *node, uint16_t app_idx,
+ uint16_t net_idx, struct app_key_storage *key)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd;
+ bool result = false;
+
+ if (!node || !key)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(app_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s", node_path, app_key_dir);
+ create_dir(key_file);
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, app_key_dir, app_idx);
+ l_debug("Put App Key %s", key_file);
+
+ fd = open(key_file, O_RDONLY);
+ if (fd) {
+ struct app_key_storage old_key;
+
+ if (read(fd, &old_key, sizeof(*key)) == sizeof(*key)) {
+ if (old_key.net_idx != net_idx) {
+ close(fd);
+ goto done;
+ }
+ }
+ close(fd);
+ }
+
+ fd = open(key_file, O_WRONLY | O_CREAT | O_TRUNC);
+ if (write(fd, key, sizeof(*key)) == sizeof(*key))
+ result = true;
+
+ close(fd);
+
+done:
+ l_free(key_file);
+ return result;
+}
+
+bool storage_put_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t count, uint8_t dev_key[16])
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd, i;
+ bool result = true;
+
+ if (!node)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(dev_key_dir) + 2 + 5;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s", node_path, dev_key_dir);
+ create_dir(key_file);
+
+ for (i = 0; i < count; i++) {
+ snprintf(key_file, len, "%s/%s/%4.4x", node_path, dev_key_dir,
+ unicast + i);
+ l_debug("Put Dev Key %s", key_file);
+
+ fd = open(key_file, O_WRONLY | O_CREAT | O_TRUNC);
+ if (fd) {
+ if (write(fd, dev_key, 16) != 16)
+ result = false;
+
+ close(fd);
+ } else
+ result = false;
+ }
+
+ l_free(key_file);
+ return result;
+}
+
+bool storage_get_net_key(struct mesh_node *node, uint16_t net_idx,
+ struct net_key_storage *key)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd;
+ bool result = false;
+
+ if (!node || !key)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(net_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, net_key_dir, net_idx);
+
+ fd = open(key_file, O_RDONLY);
+ if (fd) {
+ if (read(fd, key, sizeof(*key)) == sizeof(*key))
+ result = true;
+
+ close(fd);
+ }
+
+ l_free(key_file);
+ return result;
+}
+
+bool storage_get_app_key(struct mesh_node *node, uint16_t app_idx,
+ struct app_key_storage *key)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd;
+ bool result = false;
+
+ if (!node || !key)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(app_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, app_key_dir, app_idx);
+
+ fd = open(key_file, O_RDONLY);
+ if (fd) {
+ if (read(fd, key, sizeof(*key)) == sizeof(*key))
+ result = true;
+
+ close(fd);
+ }
+
+ l_free(key_file);
+ return result;
+}
+
+bool storage_get_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t dev_key[16])
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int fd;
+ bool result = false;
+
+ if (!node)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(dev_key_dir) + 2 + 5;
+ key_file = l_malloc(len);
+ snprintf(key_file, len, "%s/%s/%4.4x", node_path, dev_key_dir, unicast);
+
+ fd = open(key_file, O_RDONLY);
+ if (fd) {
+ if (read(fd, dev_key, 16) == 16)
+ result = true;
+
+ close(fd);
+ }
+
+ l_free(key_file);
+ return result;
+}
+
+bool storage_del_net_key(struct mesh_node *node, uint16_t net_idx)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+
+ if (!node)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(net_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, net_key_dir, net_idx);
+ l_debug("RM Net Key %s", key_file);
+ remove(key_file);
+
+ /* TODO: See if it is easiest to delete all bound App keys here */
+ /* TODO: see nftw() */
+
+ l_free(key_file);
+ return true;
+}
+
+bool storage_del_app_key(struct mesh_node *node, uint16_t app_idx)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+
+ if (!node)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(app_key_dir) + 2 + 4;
+ key_file = l_malloc(len);
+
+ snprintf(key_file, len, "%s/%s/%3.3x", node_path, app_key_dir, app_idx);
+ l_debug("RM App Key %s", key_file);
+ remove(key_file);
+
+ l_free(key_file);
+ return true;
+}
+
+bool storage_del_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t count)
+{
+ char *node_path;
+ char *key_file;
+ size_t len;
+ int i;
+
+ if (!node)
+ return false;
+
+ node_path = storage_path_get(node);
+ len = strlen(node_path) + strlen(dev_key_dir) + 2 + 5;
+ key_file = l_malloc(len);
+
+ for (i = 0; i < count; i++) {
+ snprintf(key_file, len, "%s/%s/%4.4x", node_path, dev_key_dir,
+ unicast + i);
+ l_debug("RM Dev Key %s", key_file);
+ remove(key_file);
+ }
+
+ l_free(key_file);
+ return true;
+}
+
+static int del_fobject(const char *fpath, const struct stat *sb, int typeflag,
+ struct FTW *ftwbuf)
+{
+ switch (typeflag) {
+ case FTW_DP:
+ rmdir(fpath);
+ l_debug("RMDIR %s", fpath);
+ break;
+
+ case FTW_SL:
+ default:
+ remove(fpath);
+ l_debug("RM %s", fpath);
+ break;
+ }
+ return 0;
+}
+
/* Permanently remove node configuration */
void storage_remove_node_config(struct mesh_node *node)
{
- char *cfgname;
+ char *node_path, *mesh_path, *mesh_name;
struct json_object *jnode;
- const char *dir_name;
uint16_t node_id;
- size_t len;
- char *bak;
if (!node)
return;
@@ -653,31 +975,20 @@ void storage_remove_node_config(struct mesh_node *node)
json_object_put(jnode);
node_jconfig_set(node, NULL);
- /* Delete node configuration file */
- cfgname = (char *) node_cfg_file_get(node);
- if (!cfgname)
- return;
-
- l_debug("Delete node config file %s", cfgname);
- remove(cfgname);
-
- /* Delete the backup file */
- len = strlen(cfgname) + 5;
- bak = l_malloc(len);
- strncpy(bak, cfgname, len);
- bak = strncat(bak, ".bak", 5);
- remove(bak);
- l_free(bak);
+ node_path = storage_path_get(node);
+ l_debug("Delete node config %s", node_path);
- /* Delete the node directory */
- dir_name = dirname(cfgname);
-
- l_debug("Delete directory %s", dir_name);
- rmdir(dir_name);
+ /* Make sure path name of node follows expected guidelines */
+ mesh_path = alloc_dirname(node_path);
+ mesh_name = basename(mesh_path);
+ if (strcmp(mesh_name, "mesh"))
+ goto done;
- l_free(cfgname);
- node_cfg_file_set(node, NULL);
+ nftw(node_path, del_fobject, 5, FTW_DEPTH | FTW_PHYS);
node_id = node_id_get(node);
l_queue_remove(node_ids, L_UINT_TO_PTR(node_id));
+
+done:
+ l_free(mesh_path);
}
diff --git a/mesh/storage.h b/mesh/storage.h
index d71d11b8e..7d49f1c6a 100644
--- a/mesh/storage.h
+++ b/mesh/storage.h
@@ -20,6 +20,20 @@
struct mesh_net;
struct mesh_node;
+struct net_key_storage {
+ uint16_t net_idx;
+ uint8_t phase;
+ uint8_t old_key[16];
+ uint8_t new_key[16];
+};
+
+struct app_key_storage {
+ uint16_t app_idx;
+ uint16_t net_idx;
+ uint8_t old_key[16];
+ uint8_t new_key[16];
+};
+
bool storage_load_nodes(const char *dir);
bool storage_create_node_config(struct mesh_node *node, void *db_node);
void storage_remove_node_config(struct mesh_node *node);
@@ -49,3 +63,19 @@ bool storage_set_device_key(struct mesh_node *node, uint8_t dev_key[16]);
bool storage_set_unicast(struct mesh_node *node, uint16_t unicast);
bool storage_set_key_refresh_phase(struct mesh_net *net, uint16_t net_idx,
uint8_t phase);
+bool storage_put_net_key(struct mesh_node *node, uint16_t net_idx,
+ struct net_key_storage *key);
+bool storage_get_net_key(struct mesh_node *node, uint16_t net_idx,
+ struct net_key_storage *key);
+bool storage_del_net_key(struct mesh_node *node, uint16_t net_idx);
+bool storage_put_app_key(struct mesh_node *node, uint16_t app_idx,
+ uint16_t net_idx, struct app_key_storage *key);
+bool storage_get_app_key(struct mesh_node *node, uint16_t app_idx,
+ struct app_key_storage *key);
+bool storage_del_app_key(struct mesh_node *node, uint16_t app_idx);
+bool storage_get_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t dev_key[16]);
+bool storage_put_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t count, uint8_t dev_key[16]);
+bool storage_del_remote_dev_key(struct mesh_node *node, uint16_t unicast,
+ uint8_t count);
--
2.14.5
