ZhuTianShuai
/
feature-remoteid


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157
							/*
  generic transport class for handling OpenDroneID messages
 */
#include <Arduino.h>
#include "transport.h"
#include "parameters.h"
#include "util.h"
#include "monocypher.h"

const char *Transport::parse_fail = "uninitialised";

uint32_t Transport::last_location_ms;
uint32_t Transport::last_basic_id_ms;
uint32_t Transport::last_self_id_ms;
uint32_t Transport::last_operator_id_ms;
uint32_t Transport::last_system_ms;
uint32_t Transport::last_system_timestamp;
float Transport::last_location_timestamp;

mavlink_open_drone_id_location_t Transport::location;
mavlink_open_drone_id_basic_id_t Transport::basic_id;
mavlink_open_drone_id_authentication_t Transport::authentication;
mavlink_open_drone_id_self_id_t Transport::self_id;
mavlink_open_drone_id_system_t Transport::system;
mavlink_open_drone_id_operator_id_t Transport::operator_id;

Transport::Transport()
{
}

/*
  check we are OK to arm
 */
uint8_t Transport::arm_status_check(const char *&reason)
{
    const uint32_t max_age_location_ms = 3000;
    const uint32_t max_age_other_ms = 22000;
    const uint32_t now_ms = millis();

    uint8_t status = MAV_ODID_ARM_STATUS_PRE_ARM_FAIL_GENERIC;

    //return status OK if we have enabled the force arm option
    if (g.options & OPTIONS_FORCE_ARM_OK) {
        status = MAV_ODID_ARM_STATUS_GOOD_TO_ARM;
        return status;
    }

    String ret = "";

    if (last_location_ms == 0 || now_ms - last_location_ms > max_age_location_ms) {
        ret += "LOC ";
    }
    if (!g.have_basic_id_info()) {
        // if there is no basic ID data stored in the parameters give warning. If basic ID data are streamed to RID device,
        // it will store them in the parameters
        ret += "ID ";
    }

    if (last_self_id_ms == 0  || now_ms - last_self_id_ms > max_age_other_ms) {
        ret += "SELF_ID ";
    }

    if (last_operator_id_ms == 0 || now_ms - last_operator_id_ms > max_age_other_ms) {
        ret += "OP_ID ";
    }

    if (last_system_ms == 0 || now_ms - last_system_ms > max_age_location_ms) {
        // we use location age limit for system as the operator location needs to come in as fast
        // as the vehicle location for FAA standard
        ret += "SYS ";
    }

    if (location.latitude == 0 && location.longitude == 0) { // 飞机经纬度数值是否符合范围
        ret += "LOC ";
    }

    if (system.operator_latitude == 0 && system.operator_longitude == 0) { // 操作员所在经纬度
        ret += "OP_LOC ";
    }

    if (ret.length() == 0 && reason == nullptr) {
        status = MAV_ODID_ARM_STATUS_GOOD_TO_ARM;
    } else {
        static char return_string[200];
        memset(return_string, 0, sizeof(return_string));
        if (reason != nullptr) {
            strlcpy(return_string, reason, sizeof(return_string));
        }
        strlcat(return_string, ret.c_str(), sizeof(return_string));
        reason = return_string;
    }

    return status;
}

/*
  make a session key  用随机数 时间戳 mac地址生成当前64bit会话密钥
 */
void Transport::make_session_key(uint8_t key[8]) const
{
    struct {
        uint32_t time_us;
        uint8_t mac[8];
        uint32_t rand;
    } data {};
    static_assert(sizeof(data) % 4 == 0, "data must be multiple of 4 bytes");

    esp_efuse_mac_get_default(data.mac);
    data.time_us = micros();
    data.rand = random(0xFFFFFFFF);
    const uint64_t c64 = crc_crc64((const uint32_t *)&data, sizeof(data)/sizeof(uint32_t));
    memcpy(key, (uint8_t *)&c64, 8);
}

/*
  数字签名验证函数
  check signature in a command against public keys
 */
bool Transport::check_signature(uint8_t sig_length, uint8_t data_len, uint32_t sequence, uint32_t operation,
                                const uint8_t *data)
{
    if (g.no_public_keys()) { // 通过不设置公钥跳过这个
        // allow through if no keys are setup
        // 如果未设置密钥，则允许通过
        return true;
    }
    if (sig_length != 64) {
        // Monocypher签名为64字节
        return false;
    }

    /*
      遍历所有公钥，如果有一个匹配，那么我们就没问题了
     */
    for (uint8_t i=0; i<MAX_PUBLIC_KEYS; i++) {
        uint8_t key[32];
        if (!g.get_public_key(i, key)) {
            continue;
        }
        crypto_check_ctx ctx {};
        crypto_check_ctx_abstract *actx = (crypto_check_ctx_abstract*)&ctx;
        crypto_check_init(actx, &data[data_len], key);

        crypto_check_update(actx, (const uint8_t*)&sequence, sizeof(sequence));
        crypto_check_update(actx, (const uint8_t*)&operation, sizeof(operation));
        crypto_check_update(actx, data, data_len);
        if (operation != SECURE_COMMAND_GET_SESSION_KEY &&
            operation != SECURE_COMMAND_GET_REMOTEID_SESSION_KEY) {
            crypto_check_update(actx, session_key, sizeof(session_key));
        }
        if (crypto_check_final(actx) == 0) {
            // good signature
            return true;
        }
    }
    return false;
}