| /* |
| * |
| * Copyright (c) 2022 Project CHIP Authors |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| |
| #if (!CONFIG_CHIP_LOAD_REAL_FACTORY_DATA || !(defined CONFIG_CHIP_LOAD_REAL_FACTORY_DATA)) |
| #include <credentials/examples/DeviceAttestationCredsExample.h> |
| #include <credentials/examples/ExampleDACs.h> |
| #include <credentials/examples/ExamplePAI.h> |
| #endif |
| |
| #include <credentials/CHIPCert.h> |
| #include <credentials/CertificationDeclaration.h> |
| #include <crypto/CHIPCryptoPAL.h> |
| #include <lib/core/CHIPError.h> |
| #include <lib/core/TLV.h> |
| #include <lib/support/Base64.h> |
| #include <lib/support/Span.h> |
| #include <platform/ConfigurationManager.h> |
| #include <platform/nxp/k32w/common/FactoryDataProvider.h> |
| |
| #include <cctype> |
| |
| namespace chip { |
| namespace DeviceLayer { |
| |
| static constexpr size_t kSpake2pSerializedVerifier_MaxBase64Len = |
| BASE64_ENCODED_LEN(chip::Crypto::kSpake2p_VerifierSerialized_Length) + 1; |
| static constexpr size_t kSpake2pSalt_MaxBase64Len = BASE64_ENCODED_LEN(chip::Crypto::kSpake2p_Max_PBKDF_Salt_Length) + 1; |
| /* Secure subsystem private key blob size is 32 + 24 = 56. |
| * DAC private key may be used to store an SSS exported blob instead of the private key. |
| */ |
| static constexpr size_t kDacPrivateKey_MaxLen = Crypto::kP256_PrivateKey_Length + 24; |
| |
| uint32_t FactoryDataProvider::kFactoryDataStart = (uint32_t) __MATTER_FACTORY_DATA_START; |
| uint32_t FactoryDataProvider::kFactoryDataSize = (uint32_t) __MATTER_FACTORY_DATA_SIZE; |
| uint32_t FactoryDataProvider::kFactoryDataPayloadStart = kFactoryDataStart + sizeof(FactoryDataProvider::Header); |
| |
| FactoryDataProvider::~FactoryDataProvider() {} |
| |
| CHIP_ERROR FactoryDataProvider::Validate() |
| { |
| uint8_t output[Crypto::kSHA256_Hash_Length] = { 0 }; |
| |
| memcpy(&mHeader, (void *) kFactoryDataStart, sizeof(Header)); |
| ReturnErrorCodeIf(mHeader.hashId != kHashId, CHIP_FACTORY_DATA_HASH_ID); |
| |
| ReturnErrorOnFailure(Crypto::Hash_SHA256((uint8_t *) kFactoryDataPayloadStart, mHeader.size, output)); |
| ReturnErrorCodeIf(memcmp(output, mHeader.hash, kHashLen) != 0, CHIP_FACTORY_DATA_SHA_CHECK); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::SearchForId(uint8_t searchedType, uint8_t * pBuf, size_t bufLength, uint16_t & length, |
| uint32_t * offset) |
| { |
| uint32_t addr = kFactoryDataPayloadStart; |
| uint8_t type = 0; |
| |
| while (addr < (kFactoryDataPayloadStart + mHeader.size)) |
| { |
| memcpy(&type, (void *) addr, sizeof(type)); |
| memcpy(&length, (void *) (addr + 1), sizeof(length)); |
| |
| if (searchedType == type) |
| { |
| ReturnErrorCodeIf(bufLength < length, CHIP_ERROR_BUFFER_TOO_SMALL); |
| memcpy(pBuf, (void *) (addr + kValueOffset), length); |
| |
| if (offset) |
| *offset = (addr - kFactoryDataPayloadStart); |
| |
| return CHIP_NO_ERROR; |
| } |
| else |
| { |
| /* Jump past 3 bytes of length and then use length to jump to next data */ |
| addr = addr + kValueOffset + length; |
| } |
| } |
| |
| return CHIP_ERROR_NOT_FOUND; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetCertificationDeclaration(MutableByteSpan & outBuffer) |
| { |
| #if CHIP_USE_DEVICE_CONFIG_CERTIFICATION_DECLARATION |
| constexpr uint8_t kCdForAllExamples[] = CHIP_DEVICE_CONFIG_CERTIFICATION_DECLARATION; |
| |
| return CopySpanToMutableSpan(ByteSpan{ kCdForAllExamples }, outBuffer); |
| #else |
| uint16_t declarationSize = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kCertDeclarationId, outBuffer.data(), outBuffer.size(), declarationSize)); |
| outBuffer.reduce_size(declarationSize); |
| |
| return CHIP_NO_ERROR; |
| #endif |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetFirmwareInformation(MutableByteSpan & out_firmware_info_buffer) |
| { |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetDeviceAttestationCert(MutableByteSpan & outBuffer) |
| { |
| uint16_t certificateSize = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kDacCertificateId, outBuffer.data(), outBuffer.size(), certificateSize)); |
| outBuffer.reduce_size(certificateSize); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductAttestationIntermediateCert(MutableByteSpan & outBuffer) |
| { |
| uint16_t certificateSize = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kPaiCertificateId, outBuffer.data(), outBuffer.size(), certificateSize)); |
| outBuffer.reduce_size(certificateSize); |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::SignWithDeviceAttestationKey(const ByteSpan & messageToSign, MutableByteSpan & outSignBuffer) |
| { |
| return SignWithDacKey(messageToSign, outSignBuffer); |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSetupDiscriminator(uint16_t & setupDiscriminator) |
| { |
| uint32_t discriminator = 0; |
| uint16_t temp = 0; |
| |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kDiscriminatorId, (uint8_t *) &discriminator, sizeof(discriminator), temp)); |
| setupDiscriminator = (uint16_t) (discriminator & 0x0000FFFF); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::SetSetupDiscriminator(uint16_t setupDiscriminator) |
| { |
| return CHIP_ERROR_NOT_IMPLEMENTED; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSpake2pIterationCount(uint32_t & iterationCount) |
| { |
| uint16_t temp = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kIcId, (uint8_t *) &iterationCount, sizeof(iterationCount), temp)); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSpake2pSalt(MutableByteSpan & saltBuf) |
| { |
| char saltB64[kSpake2pSalt_MaxBase64Len] = { 0 }; |
| uint16_t saltB64Len = 0; |
| |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kSaltId, (uint8_t *) (&saltB64[0]), sizeof(saltB64), saltB64Len)); |
| size_t saltLen = chip::Base64Decode32(saltB64, saltB64Len, reinterpret_cast<uint8_t *>(saltB64)); |
| |
| ReturnErrorCodeIf(saltLen > saltBuf.size(), CHIP_ERROR_BUFFER_TOO_SMALL); |
| memcpy(saltBuf.data(), saltB64, saltLen); |
| saltBuf.reduce_size(saltLen); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSpake2pVerifier(MutableByteSpan & verifierBuf, size_t & verifierLen) |
| { |
| char verifierB64[kSpake2pSerializedVerifier_MaxBase64Len] = { 0 }; |
| uint16_t verifierB64Len = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kVerifierId, (uint8_t *) &verifierB64[0], sizeof(verifierB64), verifierB64Len)); |
| |
| verifierLen = chip::Base64Decode32(verifierB64, verifierB64Len, reinterpret_cast<uint8_t *>(verifierB64)); |
| ReturnErrorCodeIf(verifierLen > verifierBuf.size(), CHIP_ERROR_BUFFER_TOO_SMALL); |
| memcpy(verifierBuf.data(), verifierB64, verifierLen); |
| verifierBuf.reduce_size(verifierLen); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSetupPasscode(uint32_t & setupPasscode) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kSetupPasscodeId, (uint8_t *) &setupPasscode, sizeof(setupPasscode), length)); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::SetSetupPasscode(uint32_t setupPasscode) |
| { |
| return CHIP_ERROR_NOT_IMPLEMENTED; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetVendorName(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kVendorNameId, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetVendorId(uint16_t & vendorId) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kVidId, (uint8_t *) &vendorId, sizeof(vendorId), length)); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductName(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kProductNameId, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductId(uint16_t & productId) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kPidId, (uint8_t *) &productId, sizeof(productId), length)); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetPartNumber(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kPartNumber, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductURL(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kProductURL, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductLabel(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kProductLabel, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetSerialNumber(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kSerialNumberId, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetManufacturingDate(uint16_t & year, uint8_t & month, uint8_t & day) |
| { |
| uint16_t length = 0; |
| uint8_t date[ConfigurationManager::kMaxManufacturingDateLength]; |
| |
| ReturnErrorOnFailure( |
| SearchForId(FactoryDataId::kManufacturingDateId, date, ConfigurationManager::kMaxManufacturingDateLength, length)); |
| date[length] = '\0'; |
| |
| if (length == 10 && isdigit(date[0]) && isdigit(date[1]) && isdigit(date[2]) && isdigit(date[3]) && date[4] == '-' && |
| isdigit(date[5]) && isdigit(date[6]) && date[7] == '-' && isdigit(date[8]) && isdigit(date[9])) |
| { |
| year = 1000 * (date[0] - '0') + 100 * (date[1] - '0') + 10 * (date[2] - '0') + date[3] - '0'; |
| month = 10 * (date[5] - '0') + date[6] - '0'; |
| day = 10 * (date[8] - '0') + date[9] - '0'; |
| } |
| else |
| { |
| ChipLogError(DeviceLayer, "Manufacturing date is not formatted correctly: YYYY-MM-DD."); |
| return CHIP_ERROR_INVALID_ARGUMENT; |
| } |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetHardwareVersion(uint16_t & hardwareVersion) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure( |
| SearchForId(FactoryDataId::kHardwareVersionId, (uint8_t *) &hardwareVersion, sizeof(hardwareVersion), length)); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetHardwareVersionString(char * buf, size_t bufSize) |
| { |
| uint16_t length = 0; |
| ReturnErrorOnFailure(SearchForId(FactoryDataId::kHardwareVersionStrId, (uint8_t *) buf, bufSize, length)); |
| buf[length] = '\0'; |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetRotatingDeviceIdUniqueId(MutableByteSpan & uniqueIdSpan) |
| { |
| CHIP_ERROR err = CHIP_ERROR_NOT_IMPLEMENTED; |
| #if CHIP_ENABLE_ROTATING_DEVICE_ID |
| static_assert(ConfigurationManager::kRotatingDeviceIDUniqueIDLength >= ConfigurationManager::kMinRotatingDeviceIDUniqueIDLength, |
| "Length of unique ID for rotating device ID is smaller than minimum."); |
| uint16_t uniqueIdLen = 0; |
| err = SearchForId(FactoryDataId::kUniqueId, (uint8_t *) uniqueIdSpan.data(), uniqueIdSpan.size(), uniqueIdLen); |
| #if defined(CHIP_DEVICE_CONFIG_ROTATING_DEVICE_ID_UNIQUE_ID) |
| if (err != CHIP_NO_ERROR) |
| { |
| constexpr uint8_t uniqueId[] = CHIP_DEVICE_CONFIG_ROTATING_DEVICE_ID_UNIQUE_ID; |
| |
| ReturnErrorCodeIf(sizeof(uniqueId) > uniqueIdSpan.size(), CHIP_ERROR_BUFFER_TOO_SMALL); |
| memcpy(uniqueIdSpan.data(), uniqueId, sizeof(uniqueId)); |
| uniqueIdLen = sizeof(uniqueId); |
| err = CHIP_NO_ERROR; |
| } |
| #endif // CHIP_DEVICE_CONFIG_ROTATING_DEVICE_ID_UNIQUE_ID |
| ReturnErrorOnFailure(err); |
| uniqueIdSpan.reduce_size(uniqueIdLen); |
| #endif |
| |
| return err; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductFinish(app::Clusters::BasicInformation::ProductFinishEnum * finish) |
| { |
| uint8_t productFinish; |
| uint16_t length = 0; |
| auto err = SearchForId(FactoryDataId::kProductFinish, &productFinish, sizeof(productFinish), length); |
| ReturnErrorCodeIf(err != CHIP_NO_ERROR, CHIP_ERROR_NOT_IMPLEMENTED); |
| |
| *finish = static_cast<app::Clusters::BasicInformation::ProductFinishEnum>(productFinish); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| CHIP_ERROR FactoryDataProvider::GetProductPrimaryColor(app::Clusters::BasicInformation::ColorEnum * primaryColor) |
| { |
| uint8_t color; |
| uint16_t length = 0; |
| auto err = SearchForId(FactoryDataId::kProductPrimaryColor, &color, sizeof(color), length); |
| ReturnErrorCodeIf(err != CHIP_NO_ERROR, CHIP_ERROR_NOT_IMPLEMENTED); |
| |
| *primaryColor = static_cast<app::Clusters::BasicInformation::ColorEnum>(color); |
| |
| return CHIP_NO_ERROR; |
| } |
| |
| } // namespace DeviceLayer |
| } // namespace chip |