8b6c1cd53d
Crypto: - Replace broken ChaCha20 (static nonce) with ChaCha20-Poly1305 AEAD - HKDF-SHA256 key derivation from per-device factory NVS master keys - Random 12-byte nonce per message (ESP32 hardware RNG) - crypto_init/encrypt/decrypt API with mbedtls legacy (ESP-IDF v5.3.2) - Custom partition table with factory NVS (fctry at 0x10000) Firmware: - crypto.c full rewrite, messages.c device_id prefix + AEAD encrypt - crypto_init() at boot with esp_restart() on failure - Fix command_t initializations across all modules (sub/help fields) - Clean CMakeLists dependencies for ESP-IDF v5.3.2 C3PO (C2): - Rename tools/c2 + tools/c3po -> tools/C3PO - Per-device CryptoContext with HKDF key derivation - KeyStore (keys.json) for master key management - Transport parses device_id:base64(...) wire format Tools: - New tools/provisioning/provision.py for factory NVS key generation - Updated flasher with mbedtls config for v5.3.2 Docs: - Update all READMEs for new crypto, C3PO paths, provisioning - Update roadmap, architecture diagrams, security sections - Update CONTRIBUTING.md project structure
60 lines
1.9 KiB
C
60 lines
1.9 KiB
C
#pragma once
|
|
|
|
#include <stdbool.h>
|
|
#include <stddef.h>
|
|
|
|
#include "esp_err.h" // 🔥 OBLIGATOIRE pour esp_err_t
|
|
#include "c2.pb.h"
|
|
|
|
/* ============================================================
|
|
* Limits
|
|
* ============================================================ */
|
|
#define MAX_COMMANDS 32
|
|
#define MAX_ASYNC_ARGS 8
|
|
#define MAX_ASYNC_ARG_LEN 64
|
|
|
|
/* ============================================================
|
|
* Command handler prototype
|
|
* ============================================================ */
|
|
typedef esp_err_t (*command_handler_t)(
|
|
int argc,
|
|
char **argv,
|
|
const char *request_id,
|
|
void *ctx
|
|
);
|
|
|
|
/* ============================================================
|
|
* Command definition
|
|
* ============================================================ */
|
|
typedef struct {
|
|
const char *name; /* command name */
|
|
const char *sub; /* subcommand name (optional) */
|
|
const char *help; /* help text (optional) */
|
|
int min_args;
|
|
int max_args;
|
|
command_handler_t handler; /* handler */
|
|
void *ctx; /* optional context */
|
|
bool async; /* async execution */
|
|
} command_t;
|
|
|
|
/* ============================================================
|
|
* Registry
|
|
* ============================================================ */
|
|
void command_register(const command_t *cmd);
|
|
void command_log_registry_summary(void);
|
|
|
|
/* ============================================================
|
|
* Dispatcher (called by process.c)
|
|
* ============================================================ */
|
|
void command_process_pb(const c2_Command *cmd);
|
|
|
|
/* ============================================================
|
|
* Async support
|
|
* ============================================================ */
|
|
void command_async_init(void);
|
|
|
|
void command_async_enqueue(
|
|
const command_t *cmd,
|
|
const c2_Command *pb_cmd
|
|
);
|