2 changed files with 122 additions and 0 deletions
Unified View
Diff Options
-
+65 -0NOTES.md
-
+57 -0PROTOCOL.md
+ 65
- 0
NOTES.md
View File
| @@ -0,0 +1,65 @@ | |||||
| Notes | |||||
| ===== | |||||
| This file contains various notes about the development of this | |||||
| repository. | |||||
| This is based upon the PingPong code from heltec for Node 151[1]. | |||||
| The STM32Cube packages are undocumented as far as I can tell. Various | |||||
| files were copied from the PingPong code. | |||||
| MIT licensed code for the SX1276 is available at https://github.com/HelTecAutomation/Heltec_ESP32/tree/master/src/lora . | |||||
| BSD licensed code for the SX1276 is available at https://github.com/Lora-net/LoRaMac-node . | |||||
| It includes support for the STM32 micros, and so was used as the basis. | |||||
| Biggest issue is that it adds yet another HAL layer to the whole | |||||
| thing. | |||||
| mscgen for message diagram generation | |||||
| ECDH: https://tools.ietf.org/html/rfc7748#section-6.1 | |||||
| Command to find and copy various files into the tree. Almost all files | |||||
| were pulled from the STM32CubeL1 tree, but there was one or two that | |||||
| was pulled from LoRaMac-node tree. | |||||
| ``` | |||||
| cp $(find /tmp/Pingpong_CDC/ -name cmsis_gcc.h) stm32/ | |||||
| ``` | |||||
| The following command can be used to strip CR's, and to remove any | |||||
| trailing new lines. Note that in order to save my sanity, the files | |||||
| are committed after cleaning. The repo does NOT contain (if it can be | |||||
| avoided) the pre-cleaned files. The diff options `-w -b` may be used | |||||
| to ignore these cleanups. | |||||
| ``` | |||||
| # there is a ^V^I and a ^V^M in the following: | |||||
| LANG=C sed -i '' -e 's/[ ]*^M$//' $(find stm32/ -type f) | |||||
| ``` | |||||
| Running gdb | |||||
| ----------- | |||||
| First, just run openocd, but w/o any needed command, or you can reset it: | |||||
| ``` | |||||
| sudo openocd -f interface/ftdi/digilent-hs1.cfg -f interface/ftdi/swd-resistor-hack.cfg -f target/stm32l1.cfg -c "init" -c "reset init" | |||||
| ``` | |||||
| Then run `arm-none-eabi-gdb` with the elf binary, and attach to OpenOCD | |||||
| with the command: | |||||
| ``` | |||||
| target remote localhost:3333 | |||||
| ``` | |||||
| The gdb monitor command allows control of the device. For example: | |||||
| ``` | |||||
| monitor reset halt | |||||
| ``` | |||||
| will reset the device, and halt it immediately, allowing setting a break | |||||
| point for main, or earlier. | |||||
| [1] https://heltec-automation-docs.readthedocs.io/en/latest/stm32/lora_node_151/pingpong_test.html | |||||
+ 57
- 0
PROTOCOL.md
View File
| @@ -0,0 +1,57 @@ | |||||
| Protocol | |||||
| ======== | |||||
| The responder will be the node under control (irrigation controler), and | |||||
| the initiator will be the server. | |||||
| The responder will always respond with one and only one packet. That | |||||
| is, all timeout mechanisms will be handled by the initiator. If the | |||||
| initiator does not receive a response to it's query, it will resend the | |||||
| request until it does. It is required that the responder be able to | |||||
| detect this, and resend the last response. | |||||
| both sides: | |||||
| meta-AD('com.funkthat.lora.irrigation.<type>.v0.0.1') | |||||
| key(<defined by type>) | |||||
| The following exchange is required by protocols that are not PFS | |||||
| safe, that is shared and ecdh (defined below). This is to prevent | |||||
| replay attacks and ensure that both sides have integrated random data | |||||
| into the protocol, AND that the connection reset was requested by the | |||||
| initiator. This is described in the second paragraph of § C.2 in the | |||||
| [strobe paper](strobe/www/papers/strobe-20191114.pdf). | |||||
| initiator: | |||||
| send_enc(<16 bytes random data> + 'reqreset') # nonce injection | |||||
| send_mac(8) | |||||
| respondant: | |||||
| send_enc(<16 bytes random data>) # nonce injection | |||||
| send_mac(8) | |||||
| initiator: | |||||
| send_enc('confirm') | |||||
| send_mac(8) | |||||
| respondant: | |||||
| send_enc('confirmed') | |||||
| send_mac(8) | |||||
| It seems odd to respond to the confirm message, BUT, as using strobe | |||||
| requires explicit hand off (similar to a token), in order for the | |||||
| initiator to send any commands it needs to be "passed back". | |||||
| The new key/session does not become active till this point. | |||||
| In order to handle a reset and prevent a replay attack, the existing | |||||
| session, if any is maintained till the completion of a reset request. | |||||
| Only after that, does the old conenction key get removed. This does | |||||
| mean that after a reset request, it is required that both sides attempt | |||||
| to decode each packet w/ both keys. | |||||
| Where type is to be: | |||||
| shared - shared secret: key = common set of bytes, should be min 16 bytes. | |||||
| ecdh - Results of an ECDH exchange, key = K || K_A || K_B | |||||
| ecdhe - Results of an ECDHE exchange, key = TBD | |||||
| Note: look at: https://monocypher.org/manual/advanced/elligator when doing ECDHE | |||||