2026-01-02 11:13:38 -06:00
|
|
|
/*
|
2026-01-02 14:06:05 -06:00
|
|
|
* Copyright (c) 2025-2026 Meshtastic LLC
|
2026-01-02 11:13:38 -06:00
|
|
|
*
|
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
|
* (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
|
|
|
|
package com.geeksville.mesh.service
|
|
|
|
|
|
|
|
|
|
import android.os.RemoteException
|
|
|
|
|
import androidx.annotation.VisibleForTesting
|
|
|
|
|
import co.touchlab.kermit.Logger
|
|
|
|
|
import kotlinx.coroutines.CoroutineScope
|
|
|
|
|
import kotlinx.coroutines.Dispatchers
|
|
|
|
|
import kotlinx.coroutines.SupervisorJob
|
|
|
|
|
import kotlinx.coroutines.flow.MutableStateFlow
|
|
|
|
|
import kotlinx.coroutines.flow.launchIn
|
|
|
|
|
import kotlinx.coroutines.flow.onEach
|
2026-02-03 18:01:12 -06:00
|
|
|
import okio.ByteString
|
|
|
|
|
import okio.ByteString.Companion.toByteString
|
2026-01-02 11:13:38 -06:00
|
|
|
import org.meshtastic.core.data.repository.RadioConfigRepository
|
|
|
|
|
import org.meshtastic.core.model.DataPacket
|
|
|
|
|
import org.meshtastic.core.model.MessageStatus
|
|
|
|
|
import org.meshtastic.core.model.Position
|
|
|
|
|
import org.meshtastic.core.model.TelemetryType
|
2026-02-03 18:01:12 -06:00
|
|
|
import org.meshtastic.core.model.util.isWithinSizeLimit
|
2026-01-02 11:13:38 -06:00
|
|
|
import org.meshtastic.core.service.ConnectionState
|
2026-02-03 18:01:12 -06:00
|
|
|
import org.meshtastic.proto.AdminMessage
|
|
|
|
|
import org.meshtastic.proto.ChannelSet
|
feature: Add TAK passphrase lock/unlock support
Implement the client-side TAK passphrase authentication flow for
devices running TAK-locked firmware.
Key components:
- TakPassphraseStore: per-device passphrase persistence using
EncryptedSharedPreferences (Android Keystore AES-256-GCM), with
boot and hour TTL fields stored alongside the passphrase
- TakLockHandler: orchestrates the full lock/unlock lifecycle —
auto-unlock on reconnect using stored credentials, passphrase
submission, token info parsing, and backoff/failure handling
- MeshCommandSender: sendTakPassphrase() and sendTakLockNow() build
plain local packets that bypass PKC signing and session_passkey;
hour TTL is encoded as an absolute Unix epoch as required by firmware
- ServiceRepository: TakLockState sealed class (None, Locked,
NeedsProvision, Unlocked, LockNowAcknowledged, UnlockFailed,
UnlockBackoff), TakTokenInfo (boots remaining + expiry epoch), and
sessionAuthorized flag
- TakUnlockDialog: Compose dialog for passphrase entry, shown on
Locked and NeedsProvision states; onDismissRequest is a no-op to
prevent race conditions with firmware response timing; cancel
disconnects the user and navigates to the Connections tab
- Lock Now (Security settings): immediately disconnects the client
after informing firmware, purges cached config, navigates away
without showing a passphrase dialog
- ConnectionsScreen: suppress "region unset" prompt while the device
is TAK-locked, since pre-auth config is zeroed/redacted and would
lead the user to a blank LoRa settings screen
- AIDL: sendTakUnlock() and sendTakLockNow() wired through
MeshService → MeshActionHandler → TakLockHandler
- Security settings: "Lock Now (TAK)" button and token info display
showing boots remaining and expiry date
2026-02-27 08:31:05 -05:00
|
|
|
import org.meshtastic.proto.Config
|
2026-02-03 18:01:12 -06:00
|
|
|
import org.meshtastic.proto.Constants
|
|
|
|
|
import org.meshtastic.proto.Data
|
|
|
|
|
import org.meshtastic.proto.LocalConfig
|
|
|
|
|
import org.meshtastic.proto.MeshPacket
|
|
|
|
|
import org.meshtastic.proto.Neighbor
|
|
|
|
|
import org.meshtastic.proto.NeighborInfo
|
|
|
|
|
import org.meshtastic.proto.PortNum
|
|
|
|
|
import org.meshtastic.proto.Telemetry
|
feature: Add TAK passphrase lock/unlock support
Implement the client-side TAK passphrase authentication flow for
devices running TAK-locked firmware.
Key components:
- TakPassphraseStore: per-device passphrase persistence using
EncryptedSharedPreferences (Android Keystore AES-256-GCM), with
boot and hour TTL fields stored alongside the passphrase
- TakLockHandler: orchestrates the full lock/unlock lifecycle —
auto-unlock on reconnect using stored credentials, passphrase
submission, token info parsing, and backoff/failure handling
- MeshCommandSender: sendTakPassphrase() and sendTakLockNow() build
plain local packets that bypass PKC signing and session_passkey;
hour TTL is encoded as an absolute Unix epoch as required by firmware
- ServiceRepository: TakLockState sealed class (None, Locked,
NeedsProvision, Unlocked, LockNowAcknowledged, UnlockFailed,
UnlockBackoff), TakTokenInfo (boots remaining + expiry epoch), and
sessionAuthorized flag
- TakUnlockDialog: Compose dialog for passphrase entry, shown on
Locked and NeedsProvision states; onDismissRequest is a no-op to
prevent race conditions with firmware response timing; cancel
disconnects the user and navigates to the Connections tab
- Lock Now (Security settings): immediately disconnects the client
after informing firmware, purges cached config, navigates away
without showing a passphrase dialog
- ConnectionsScreen: suppress "region unset" prompt while the device
is TAK-locked, since pre-auth config is zeroed/redacted and would
lead the user to a blank LoRa settings screen
- AIDL: sendTakUnlock() and sendTakLockNow() wired through
MeshService → MeshActionHandler → TakLockHandler
- Security settings: "Lock Now (TAK)" button and token info display
showing boots remaining and expiry date
2026-02-27 08:31:05 -05:00
|
|
|
import org.meshtastic.proto.ToRadio
|
2026-01-02 11:13:38 -06:00
|
|
|
import java.util.concurrent.ConcurrentHashMap
|
|
|
|
|
import java.util.concurrent.CopyOnWriteArrayList
|
|
|
|
|
import java.util.concurrent.atomic.AtomicLong
|
|
|
|
|
import java.util.concurrent.atomic.AtomicReference
|
|
|
|
|
import javax.inject.Inject
|
|
|
|
|
import javax.inject.Singleton
|
|
|
|
|
import kotlin.math.absoluteValue
|
|
|
|
|
import kotlin.time.Duration.Companion.hours
|
|
|
|
|
|
|
|
|
|
@Suppress("TooManyFunctions")
|
|
|
|
|
@Singleton
|
|
|
|
|
class MeshCommandSender
|
|
|
|
|
@Inject
|
|
|
|
|
constructor(
|
|
|
|
|
private val packetHandler: PacketHandler?,
|
|
|
|
|
private val nodeManager: MeshNodeManager?,
|
|
|
|
|
private val connectionStateHolder: ConnectionStateHandler?,
|
|
|
|
|
private val radioConfigRepository: RadioConfigRepository?,
|
|
|
|
|
) {
|
|
|
|
|
private var scope: CoroutineScope = CoroutineScope(Dispatchers.IO + SupervisorJob())
|
|
|
|
|
private val currentPacketId = AtomicLong(java.util.Random(System.currentTimeMillis()).nextLong().absoluteValue)
|
|
|
|
|
private val sessionPasskey = AtomicReference(ByteString.EMPTY)
|
|
|
|
|
private val offlineSentPackets = CopyOnWriteArrayList<DataPacket>()
|
|
|
|
|
val tracerouteStartTimes = ConcurrentHashMap<Int, Long>()
|
|
|
|
|
val neighborInfoStartTimes = ConcurrentHashMap<Int, Long>()
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
private val localConfig = MutableStateFlow(LocalConfig())
|
|
|
|
|
private val channelSet = MutableStateFlow(ChannelSet())
|
2026-01-02 11:13:38 -06:00
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
@Volatile var lastNeighborInfo: NeighborInfo? = null
|
2026-01-02 11:13:38 -06:00
|
|
|
|
|
|
|
|
private val rememberDataType =
|
2026-02-07 11:13:41 -06:00
|
|
|
setOf(
|
|
|
|
|
PortNum.TEXT_MESSAGE_APP.value,
|
|
|
|
|
PortNum.ALERT_APP.value,
|
|
|
|
|
PortNum.WAYPOINT_APP.value,
|
|
|
|
|
PortNum.ATAK_PLUGIN.value,
|
|
|
|
|
PortNum.ATAK_FORWARDER.value,
|
|
|
|
|
PortNum.DETECTION_SENSOR_APP.value,
|
|
|
|
|
PortNum.PRIVATE_APP.value,
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
|
|
|
|
|
fun start(scope: CoroutineScope) {
|
|
|
|
|
this.scope = scope
|
|
|
|
|
radioConfigRepository?.localConfigFlow?.onEach { localConfig.value = it }?.launchIn(scope)
|
|
|
|
|
radioConfigRepository?.channelSetFlow?.onEach { channelSet.value = it }?.launchIn(scope)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@VisibleForTesting internal constructor() : this(null, null, null, null)
|
|
|
|
|
|
|
|
|
|
fun getCurrentPacketId(): Long = currentPacketId.get()
|
|
|
|
|
|
|
|
|
|
fun generatePacketId(): Int {
|
|
|
|
|
val numPacketIds = ((1L shl PACKET_ID_SHIFT_BITS) - 1)
|
|
|
|
|
val next = currentPacketId.incrementAndGet() and PACKET_ID_MASK
|
|
|
|
|
return ((next % numPacketIds) + 1L).toInt()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun setSessionPasskey(key: ByteString) {
|
|
|
|
|
sessionPasskey.set(key)
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
private fun computeHopLimit(): Int = (localConfig.value.lora?.hop_limit ?: 0).takeIf { it > 0 } ?: DEFAULT_HOP_LIMIT
|
2026-01-02 11:13:38 -06:00
|
|
|
|
|
|
|
|
private fun getAdminChannelIndex(toNum: Int): Int {
|
|
|
|
|
val myNum = nodeManager?.myNodeNum ?: return 0
|
|
|
|
|
val myNode = nodeManager.nodeDBbyNodeNum[myNum]
|
|
|
|
|
val destNode = nodeManager.nodeDBbyNodeNum[toNum]
|
|
|
|
|
|
|
|
|
|
val adminChannelIndex =
|
|
|
|
|
when {
|
|
|
|
|
myNum == toNum -> 0
|
|
|
|
|
myNode?.hasPKC == true && destNode?.hasPKC == true -> DataPacket.PKC_CHANNEL_INDEX
|
|
|
|
|
else ->
|
2026-02-03 18:01:12 -06:00
|
|
|
channelSet.value.settings
|
2026-01-02 11:13:38 -06:00
|
|
|
.indexOfFirst { it.name.equals(ADMIN_CHANNEL_NAME, ignoreCase = true) }
|
|
|
|
|
.coerceAtLeast(0)
|
|
|
|
|
}
|
|
|
|
|
return adminChannelIndex
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun sendData(p: DataPacket) {
|
|
|
|
|
if (p.id == 0) p.id = generatePacketId()
|
2026-02-03 18:01:12 -06:00
|
|
|
val bytes = p.bytes ?: ByteString.EMPTY
|
2026-01-04 11:32:13 -06:00
|
|
|
require(p.dataType != 0) { "Port numbers must be non-zero!" }
|
2026-02-03 18:01:12 -06:00
|
|
|
|
|
|
|
|
// Use Wire extension for accurate size validation
|
|
|
|
|
val data =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.fromValue(p.dataType) ?: PortNum.UNKNOWN_APP,
|
|
|
|
|
payload = bytes,
|
|
|
|
|
reply_id = p.replyId ?: 0,
|
|
|
|
|
emoji = p.emoji,
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
if (!Data.ADAPTER.isWithinSizeLimit(data, Constants.DATA_PAYLOAD_LEN.value)) {
|
|
|
|
|
val actualSize = Data.ADAPTER.encodedSize(data)
|
2026-01-02 11:13:38 -06:00
|
|
|
p.status = MessageStatus.ERROR
|
2026-02-03 18:01:12 -06:00
|
|
|
throw RemoteException("Message too long: $actualSize bytes (max ${Constants.DATA_PAYLOAD_LEN.value})")
|
2026-01-02 11:13:38 -06:00
|
|
|
} else {
|
|
|
|
|
p.status = MessageStatus.QUEUED
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (connectionStateHolder?.connectionState?.value == ConnectionState.Connected) {
|
|
|
|
|
try {
|
|
|
|
|
sendNow(p)
|
2026-01-04 11:32:13 -06:00
|
|
|
} catch (@Suppress("TooGenericExceptionCaught") ex: Exception) {
|
2026-01-02 11:13:38 -06:00
|
|
|
Logger.e(ex) { "Error sending message, so enqueueing" }
|
|
|
|
|
enqueueForSending(p)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
enqueueForSending(p)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private fun sendNow(p: DataPacket) {
|
|
|
|
|
val meshPacket =
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = resolveNodeNum(p.to ?: DataPacket.ID_BROADCAST),
|
2026-01-02 11:13:38 -06:00
|
|
|
id = p.id,
|
|
|
|
|
wantAck = p.wantAck,
|
2026-01-26 11:50:04 -06:00
|
|
|
hopLimit = if (p.hopLimit > 0) p.hopLimit else computeHopLimit(),
|
2026-01-02 11:13:38 -06:00
|
|
|
channel = p.channel,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.fromValue(p.dataType) ?: PortNum.UNKNOWN_APP,
|
|
|
|
|
payload = p.bytes ?: ByteString.EMPTY,
|
|
|
|
|
reply_id = p.replyId ?: 0,
|
|
|
|
|
emoji = p.emoji,
|
|
|
|
|
),
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
p.time = System.currentTimeMillis()
|
|
|
|
|
packetHandler?.sendToRadio(meshPacket)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private fun enqueueForSending(p: DataPacket) {
|
|
|
|
|
if (p.dataType in rememberDataType) {
|
|
|
|
|
offlineSentPackets.add(p)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun processQueuedPackets() {
|
|
|
|
|
val sentPackets = mutableListOf<DataPacket>()
|
|
|
|
|
offlineSentPackets.forEach { p ->
|
|
|
|
|
try {
|
|
|
|
|
sendNow(p)
|
|
|
|
|
sentPackets.add(p)
|
2026-01-04 11:32:13 -06:00
|
|
|
} catch (@Suppress("TooGenericExceptionCaught") ex: Exception) {
|
2026-01-02 11:13:38 -06:00
|
|
|
Logger.e(ex) { "Error sending queued message:" }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
offlineSentPackets.removeAll(sentPackets)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun sendAdmin(
|
|
|
|
|
destNum: Int,
|
|
|
|
|
requestId: Int = generatePacketId(),
|
|
|
|
|
wantResponse: Boolean = false,
|
2026-02-03 18:01:12 -06:00
|
|
|
initFn: () -> AdminMessage,
|
2026-01-02 11:13:38 -06:00
|
|
|
) {
|
2026-02-03 18:01:12 -06:00
|
|
|
val adminMsg = initFn().copy(session_passkey = sessionPasskey.get())
|
2026-01-02 11:13:38 -06:00
|
|
|
val packet =
|
2026-02-03 18:01:12 -06:00
|
|
|
buildAdminPacket(to = destNum, id = requestId, wantResponse = wantResponse, adminMessage = adminMsg)
|
2026-01-02 11:13:38 -06:00
|
|
|
packetHandler?.sendToRadio(packet)
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
fun sendPosition(pos: org.meshtastic.proto.Position, destNum: Int? = null, wantResponse: Boolean = false) {
|
2026-01-02 11:13:38 -06:00
|
|
|
val myNum = nodeManager?.myNodeNum ?: return
|
|
|
|
|
val idNum = destNum ?: myNum
|
2026-02-03 18:01:12 -06:00
|
|
|
Logger.d { "Sending our position/time to=$idNum $pos" }
|
2026-01-02 11:13:38 -06:00
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
if (localConfig.value.position?.fixed_position != true) {
|
2026-01-02 11:13:38 -06:00
|
|
|
nodeManager.handleReceivedPosition(myNum, myNum, pos)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = idNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
channel = if (destNum == null) 0 else nodeManager.nodeDBbyNodeNum[destNum]?.channel ?: 0,
|
|
|
|
|
priority = MeshPacket.Priority.BACKGROUND,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.POSITION_APP,
|
|
|
|
|
payload = pos.encode().toByteString(),
|
|
|
|
|
want_response = wantResponse,
|
|
|
|
|
),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun requestPosition(destNum: Int, currentPosition: Position) {
|
2026-02-03 18:01:12 -06:00
|
|
|
val meshPosition =
|
|
|
|
|
org.meshtastic.proto.Position(
|
|
|
|
|
latitude_i = Position.degI(currentPosition.latitude),
|
|
|
|
|
longitude_i = Position.degI(currentPosition.longitude),
|
|
|
|
|
altitude = currentPosition.altitude,
|
|
|
|
|
time = (System.currentTimeMillis() / TIME_MS_TO_S).toInt(),
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
channel = nodeManager?.nodeDBbyNodeNum?.get(destNum)?.channel ?: 0,
|
|
|
|
|
priority = MeshPacket.Priority.BACKGROUND,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.POSITION_APP,
|
|
|
|
|
payload = meshPosition.encode().toByteString(),
|
|
|
|
|
want_response = true,
|
|
|
|
|
),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun setFixedPosition(destNum: Int, pos: Position) {
|
2026-02-03 18:01:12 -06:00
|
|
|
val meshPos =
|
|
|
|
|
org.meshtastic.proto.Position(
|
|
|
|
|
latitude_i = Position.degI(pos.latitude),
|
|
|
|
|
longitude_i = Position.degI(pos.longitude),
|
|
|
|
|
altitude = pos.altitude,
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
sendAdmin(destNum) {
|
|
|
|
|
if (pos != Position(0.0, 0.0, 0)) {
|
2026-02-03 18:01:12 -06:00
|
|
|
AdminMessage(set_fixed_position = meshPos)
|
2026-01-02 11:13:38 -06:00
|
|
|
} else {
|
2026-02-03 18:01:12 -06:00
|
|
|
AdminMessage(remove_fixed_position = true)
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
nodeManager?.handleReceivedPosition(destNum, nodeManager.myNodeNum ?: 0, meshPos)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun requestUserInfo(destNum: Int) {
|
|
|
|
|
val myNum = nodeManager?.myNodeNum ?: return
|
|
|
|
|
val myNode = nodeManager.getOrCreateNodeInfo(myNum)
|
|
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
|
|
|
|
channel = nodeManager.nodeDBbyNodeNum[destNum]?.channel ?: 0,
|
|
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.NODEINFO_APP,
|
|
|
|
|
want_response = true,
|
|
|
|
|
payload = myNode.user.encode().toByteString(),
|
|
|
|
|
),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun requestTraceroute(requestId: Int, destNum: Int) {
|
|
|
|
|
tracerouteStartTimes[requestId] = System.currentTimeMillis()
|
|
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
wantAck = true,
|
|
|
|
|
id = requestId,
|
|
|
|
|
channel = nodeManager?.nodeDBbyNodeNum?.get(destNum)?.channel ?: 0,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded = Data(portnum = PortNum.TRACEROUTE_APP, want_response = true),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun requestTelemetry(requestId: Int, destNum: Int, typeValue: Int) {
|
|
|
|
|
val type = TelemetryType.entries.getOrNull(typeValue) ?: TelemetryType.DEVICE
|
2026-01-24 21:00:23 -06:00
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
val portNum: PortNum
|
2026-01-24 21:00:23 -06:00
|
|
|
val payloadBytes: ByteString
|
|
|
|
|
|
|
|
|
|
if (type == TelemetryType.PAX) {
|
2026-02-03 18:01:12 -06:00
|
|
|
portNum = PortNum.PAXCOUNTER_APP
|
|
|
|
|
payloadBytes = org.meshtastic.proto.Paxcount().encode().toByteString()
|
2026-01-24 21:00:23 -06:00
|
|
|
} else {
|
2026-02-03 18:01:12 -06:00
|
|
|
portNum = PortNum.TELEMETRY_APP
|
2026-01-24 21:00:23 -06:00
|
|
|
payloadBytes =
|
2026-02-03 18:01:12 -06:00
|
|
|
Telemetry(
|
|
|
|
|
device_metrics =
|
|
|
|
|
if (type == TelemetryType.DEVICE) org.meshtastic.proto.DeviceMetrics() else null,
|
|
|
|
|
environment_metrics =
|
|
|
|
|
if (type == TelemetryType.ENVIRONMENT) org.meshtastic.proto.EnvironmentMetrics() else null,
|
|
|
|
|
air_quality_metrics =
|
|
|
|
|
if (type == TelemetryType.AIR_QUALITY) org.meshtastic.proto.AirQualityMetrics() else null,
|
|
|
|
|
power_metrics = if (type == TelemetryType.POWER) org.meshtastic.proto.PowerMetrics() else null,
|
|
|
|
|
local_stats =
|
|
|
|
|
if (type == TelemetryType.LOCAL_STATS) org.meshtastic.proto.LocalStats() else null,
|
|
|
|
|
host_metrics = if (type == TelemetryType.HOST) org.meshtastic.proto.HostMetrics() else null,
|
|
|
|
|
)
|
|
|
|
|
.encode()
|
2026-01-24 21:00:23 -06:00
|
|
|
.toByteString()
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
2026-01-24 21:00:23 -06:00
|
|
|
|
2026-01-02 11:13:38 -06:00
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
id = requestId,
|
|
|
|
|
channel = nodeManager?.nodeDBbyNodeNum?.get(destNum)?.channel ?: 0,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded = Data(portnum = portNum, payload = payloadBytes, want_response = true),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fun requestNeighborInfo(requestId: Int, destNum: Int) {
|
|
|
|
|
neighborInfoStartTimes[requestId] = System.currentTimeMillis()
|
|
|
|
|
val myNum = nodeManager?.myNodeNum ?: 0
|
|
|
|
|
if (destNum == myNum) {
|
|
|
|
|
val neighborInfoToSend =
|
|
|
|
|
lastNeighborInfo
|
|
|
|
|
?: run {
|
|
|
|
|
val oneHour = 1.hours.inWholeMinutes.toInt()
|
|
|
|
|
Logger.d { "No stored neighbor info from connected radio, sending dummy data" }
|
2026-02-03 18:01:12 -06:00
|
|
|
NeighborInfo(
|
|
|
|
|
node_id = myNum,
|
|
|
|
|
last_sent_by_id = myNum,
|
|
|
|
|
node_broadcast_interval_secs = oneHour,
|
|
|
|
|
neighbors =
|
|
|
|
|
listOf(
|
|
|
|
|
Neighbor(
|
|
|
|
|
node_id = 0, // Dummy node ID that can be intercepted
|
|
|
|
|
snr = 0f,
|
|
|
|
|
last_rx_time = (System.currentTimeMillis() / TIME_MS_TO_S).toInt(),
|
|
|
|
|
node_broadcast_interval_secs = oneHour,
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Send the neighbor info from our connected radio to ourselves (simulated)
|
|
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
wantAck = true,
|
|
|
|
|
id = requestId,
|
|
|
|
|
channel = nodeManager?.nodeDBbyNodeNum?.get(destNum)?.channel ?: 0,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
portnum = PortNum.NEIGHBORINFO_APP,
|
|
|
|
|
payload = neighborInfoToSend.encode().toByteString(),
|
|
|
|
|
want_response = true,
|
|
|
|
|
),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
} else {
|
|
|
|
|
// Send request to remote
|
|
|
|
|
packetHandler?.sendToRadio(
|
2026-02-03 18:01:12 -06:00
|
|
|
buildMeshPacket(
|
|
|
|
|
to = destNum,
|
2026-01-02 11:13:38 -06:00
|
|
|
wantAck = true,
|
|
|
|
|
id = requestId,
|
|
|
|
|
channel = nodeManager?.nodeDBbyNodeNum?.get(destNum)?.channel ?: 0,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded = Data(portnum = PortNum.NEIGHBORINFO_APP, want_response = true),
|
|
|
|
|
),
|
2026-01-02 11:13:38 -06:00
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@VisibleForTesting
|
|
|
|
|
internal fun resolveNodeNum(toId: String): Int = when (toId) {
|
|
|
|
|
DataPacket.ID_BROADCAST -> DataPacket.NODENUM_BROADCAST
|
|
|
|
|
else -> {
|
|
|
|
|
val numericNum =
|
|
|
|
|
if (toId.startsWith(NODE_ID_PREFIX)) {
|
|
|
|
|
toId.substring(NODE_ID_START_INDEX).toLongOrNull(HEX_RADIX)?.toInt()
|
|
|
|
|
} else {
|
|
|
|
|
null
|
|
|
|
|
}
|
|
|
|
|
numericNum
|
|
|
|
|
?: nodeManager?.nodeDBbyID?.get(toId)?.num
|
|
|
|
|
?: throw IllegalArgumentException("Unknown node ID $toId")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
private fun buildMeshPacket(
|
|
|
|
|
to: Int,
|
2026-01-02 11:13:38 -06:00
|
|
|
wantAck: Boolean = false,
|
|
|
|
|
id: Int = generatePacketId(), // always assign a packet ID if we didn't already have one
|
|
|
|
|
hopLimit: Int = 0,
|
|
|
|
|
channel: Int = 0,
|
|
|
|
|
priority: MeshPacket.Priority = MeshPacket.Priority.UNSET,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded: Data,
|
2026-01-02 11:13:38 -06:00
|
|
|
): MeshPacket {
|
2026-01-26 11:50:04 -06:00
|
|
|
val actualHopLimit = if (hopLimit > 0) hopLimit else computeHopLimit()
|
2026-02-03 18:01:12 -06:00
|
|
|
|
|
|
|
|
var pkiEncrypted = false
|
|
|
|
|
var publicKey: ByteString = ByteString.EMPTY
|
|
|
|
|
var actualChannel = channel
|
2026-01-02 11:13:38 -06:00
|
|
|
|
|
|
|
|
if (channel == DataPacket.PKC_CHANNEL_INDEX) {
|
|
|
|
|
pkiEncrypted = true
|
2026-02-03 18:01:12 -06:00
|
|
|
publicKey = nodeManager?.nodeDBbyNodeNum?.get(to)?.user?.public_key ?: ByteString.EMPTY
|
|
|
|
|
actualChannel = 0
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
return MeshPacket(
|
|
|
|
|
to = to,
|
|
|
|
|
id = id,
|
|
|
|
|
want_ack = wantAck,
|
|
|
|
|
hop_limit = actualHopLimit,
|
|
|
|
|
hop_start = actualHopLimit,
|
|
|
|
|
priority = priority,
|
|
|
|
|
pki_encrypted = pkiEncrypted,
|
|
|
|
|
public_key = publicKey,
|
|
|
|
|
channel = actualChannel,
|
|
|
|
|
decoded = decoded,
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
|
|
|
|
|
2026-02-03 18:01:12 -06:00
|
|
|
private fun buildAdminPacket(
|
|
|
|
|
to: Int,
|
2026-01-02 11:13:38 -06:00
|
|
|
id: Int = generatePacketId(), // always assign a packet ID if we didn't already have one
|
|
|
|
|
wantResponse: Boolean = false,
|
2026-02-03 18:01:12 -06:00
|
|
|
adminMessage: AdminMessage,
|
2026-01-02 11:13:38 -06:00
|
|
|
): MeshPacket =
|
|
|
|
|
buildMeshPacket(
|
2026-02-03 18:01:12 -06:00
|
|
|
to = to,
|
2026-01-02 11:13:38 -06:00
|
|
|
id = id,
|
|
|
|
|
wantAck = true,
|
|
|
|
|
channel = getAdminChannelIndex(to),
|
|
|
|
|
priority = MeshPacket.Priority.RELIABLE,
|
2026-02-03 18:01:12 -06:00
|
|
|
decoded =
|
|
|
|
|
Data(
|
|
|
|
|
want_response = wantResponse,
|
|
|
|
|
portnum = PortNum.ADMIN_APP,
|
|
|
|
|
payload = adminMessage.encode().toByteString(),
|
|
|
|
|
),
|
|
|
|
|
)
|
2026-01-02 11:13:38 -06:00
|
|
|
|
2026-03-03 17:17:24 -05:00
|
|
|
fun sendLockdownPassphrase(passphrase: String, boots: Int = 0, hours: Int = 0) {
|
feature: Add TAK passphrase lock/unlock support
Implement the client-side TAK passphrase authentication flow for
devices running TAK-locked firmware.
Key components:
- TakPassphraseStore: per-device passphrase persistence using
EncryptedSharedPreferences (Android Keystore AES-256-GCM), with
boot and hour TTL fields stored alongside the passphrase
- TakLockHandler: orchestrates the full lock/unlock lifecycle —
auto-unlock on reconnect using stored credentials, passphrase
submission, token info parsing, and backoff/failure handling
- MeshCommandSender: sendTakPassphrase() and sendTakLockNow() build
plain local packets that bypass PKC signing and session_passkey;
hour TTL is encoded as an absolute Unix epoch as required by firmware
- ServiceRepository: TakLockState sealed class (None, Locked,
NeedsProvision, Unlocked, LockNowAcknowledged, UnlockFailed,
UnlockBackoff), TakTokenInfo (boots remaining + expiry epoch), and
sessionAuthorized flag
- TakUnlockDialog: Compose dialog for passphrase entry, shown on
Locked and NeedsProvision states; onDismissRequest is a no-op to
prevent race conditions with firmware response timing; cancel
disconnects the user and navigates to the Connections tab
- Lock Now (Security settings): immediately disconnects the client
after informing firmware, purges cached config, navigates away
without showing a passphrase dialog
- ConnectionsScreen: suppress "region unset" prompt while the device
is TAK-locked, since pre-auth config is zeroed/redacted and would
lead the user to a blank LoRa settings screen
- AIDL: sendTakUnlock() and sendTakLockNow() wired through
MeshService → MeshActionHandler → TakLockHandler
- Security settings: "Lock Now (TAK)" button and token info display
showing boots remaining and expiry date
2026-02-27 08:31:05 -05:00
|
|
|
val myNum = nodeManager?.myNodeNum ?: return
|
|
|
|
|
// The firmware expects slot 2 as an absolute Unix epoch (seconds), not a duration.
|
|
|
|
|
// Convert hours duration → absolute epoch; 0 hours means no time-based expiry (until=0).
|
|
|
|
|
val adminKeyList = if (boots > 0 || hours > 0) {
|
|
|
|
|
val untilEpoch = if (hours > 0) System.currentTimeMillis() / 1000L + hours.toLong() * 3600L else 0L
|
|
|
|
|
val untilBytes = ByteArray(INT_BYTE_SIZE)
|
|
|
|
|
untilBytes[0] = (untilEpoch and BYTE_MASK.toLong()).toByte()
|
|
|
|
|
untilBytes[1] = ((untilEpoch shr BYTE_BITS) and BYTE_MASK.toLong()).toByte()
|
|
|
|
|
untilBytes[2] = ((untilEpoch shr (BYTE_BITS * 2)) and BYTE_MASK.toLong()).toByte()
|
|
|
|
|
untilBytes[3] = ((untilEpoch shr (BYTE_BITS * 3)) and BYTE_MASK.toLong()).toByte()
|
|
|
|
|
listOf(
|
|
|
|
|
ByteString.EMPTY, // slot 0 unused
|
|
|
|
|
ByteString.of(boots.coerceIn(1, MAX_BYTE_VALUE).toByte()), // slot 1: boots u8
|
|
|
|
|
untilBytes.toByteString(), // slot 2: until epoch LE u32
|
|
|
|
|
)
|
|
|
|
|
} else {
|
|
|
|
|
emptyList()
|
|
|
|
|
}
|
|
|
|
|
val securityConfig = Config.SecurityConfig(
|
|
|
|
|
private_key = passphrase.encodeToByteArray().toByteString(),
|
|
|
|
|
admin_key = adminKeyList,
|
|
|
|
|
)
|
|
|
|
|
val adminMessage = AdminMessage(set_config = Config(security = securityConfig))
|
|
|
|
|
val packet = MeshPacket(
|
|
|
|
|
to = myNum,
|
|
|
|
|
id = generatePacketId(),
|
|
|
|
|
channel = 0,
|
|
|
|
|
want_ack = true,
|
|
|
|
|
hop_limit = DEFAULT_HOP_LIMIT,
|
|
|
|
|
hop_start = DEFAULT_HOP_LIMIT,
|
|
|
|
|
priority = MeshPacket.Priority.RELIABLE,
|
|
|
|
|
decoded = Data(
|
|
|
|
|
portnum = PortNum.ADMIN_APP,
|
|
|
|
|
payload = adminMessage.encode().toByteString(),
|
|
|
|
|
),
|
|
|
|
|
)
|
|
|
|
|
packetHandler?.sendToRadio(ToRadio(packet = packet))
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-03 17:17:24 -05:00
|
|
|
fun sendLockNow() {
|
feature: Add TAK passphrase lock/unlock support
Implement the client-side TAK passphrase authentication flow for
devices running TAK-locked firmware.
Key components:
- TakPassphraseStore: per-device passphrase persistence using
EncryptedSharedPreferences (Android Keystore AES-256-GCM), with
boot and hour TTL fields stored alongside the passphrase
- TakLockHandler: orchestrates the full lock/unlock lifecycle —
auto-unlock on reconnect using stored credentials, passphrase
submission, token info parsing, and backoff/failure handling
- MeshCommandSender: sendTakPassphrase() and sendTakLockNow() build
plain local packets that bypass PKC signing and session_passkey;
hour TTL is encoded as an absolute Unix epoch as required by firmware
- ServiceRepository: TakLockState sealed class (None, Locked,
NeedsProvision, Unlocked, LockNowAcknowledged, UnlockFailed,
UnlockBackoff), TakTokenInfo (boots remaining + expiry epoch), and
sessionAuthorized flag
- TakUnlockDialog: Compose dialog for passphrase entry, shown on
Locked and NeedsProvision states; onDismissRequest is a no-op to
prevent race conditions with firmware response timing; cancel
disconnects the user and navigates to the Connections tab
- Lock Now (Security settings): immediately disconnects the client
after informing firmware, purges cached config, navigates away
without showing a passphrase dialog
- ConnectionsScreen: suppress "region unset" prompt while the device
is TAK-locked, since pre-auth config is zeroed/redacted and would
lead the user to a blank LoRa settings screen
- AIDL: sendTakUnlock() and sendTakLockNow() wired through
MeshService → MeshActionHandler → TakLockHandler
- Security settings: "Lock Now (TAK)" button and token info display
showing boots remaining and expiry date
2026-02-27 08:31:05 -05:00
|
|
|
val myNum = nodeManager?.myNodeNum ?: return
|
|
|
|
|
val securityConfig = Config.SecurityConfig(
|
|
|
|
|
private_key = ByteString.of(TAK_LOCK_BYTE),
|
|
|
|
|
)
|
|
|
|
|
val adminMessage = AdminMessage(set_config = Config(security = securityConfig))
|
|
|
|
|
val packet = MeshPacket(
|
|
|
|
|
to = myNum,
|
|
|
|
|
id = generatePacketId(),
|
|
|
|
|
channel = 0,
|
|
|
|
|
want_ack = true,
|
|
|
|
|
hop_limit = DEFAULT_HOP_LIMIT,
|
|
|
|
|
hop_start = DEFAULT_HOP_LIMIT,
|
|
|
|
|
priority = MeshPacket.Priority.RELIABLE,
|
|
|
|
|
decoded = Data(
|
|
|
|
|
portnum = PortNum.ADMIN_APP,
|
|
|
|
|
payload = adminMessage.encode().toByteString(),
|
|
|
|
|
),
|
|
|
|
|
)
|
|
|
|
|
packetHandler?.sendToRadio(ToRadio(packet = packet))
|
|
|
|
|
}
|
|
|
|
|
|
2026-01-02 11:13:38 -06:00
|
|
|
companion object {
|
|
|
|
|
private const val PACKET_ID_MASK = 0xffffffffL
|
|
|
|
|
private const val PACKET_ID_SHIFT_BITS = 32
|
|
|
|
|
private const val TIME_MS_TO_S = 1000L
|
|
|
|
|
|
|
|
|
|
private const val ADMIN_CHANNEL_NAME = "admin"
|
|
|
|
|
private const val NODE_ID_PREFIX = "!"
|
|
|
|
|
private const val NODE_ID_START_INDEX = 1
|
|
|
|
|
private const val HEX_RADIX = 16
|
2026-01-19 19:52:03 -06:00
|
|
|
|
|
|
|
|
private const val DEFAULT_HOP_LIMIT = 3
|
feature: Add TAK passphrase lock/unlock support
Implement the client-side TAK passphrase authentication flow for
devices running TAK-locked firmware.
Key components:
- TakPassphraseStore: per-device passphrase persistence using
EncryptedSharedPreferences (Android Keystore AES-256-GCM), with
boot and hour TTL fields stored alongside the passphrase
- TakLockHandler: orchestrates the full lock/unlock lifecycle —
auto-unlock on reconnect using stored credentials, passphrase
submission, token info parsing, and backoff/failure handling
- MeshCommandSender: sendTakPassphrase() and sendTakLockNow() build
plain local packets that bypass PKC signing and session_passkey;
hour TTL is encoded as an absolute Unix epoch as required by firmware
- ServiceRepository: TakLockState sealed class (None, Locked,
NeedsProvision, Unlocked, LockNowAcknowledged, UnlockFailed,
UnlockBackoff), TakTokenInfo (boots remaining + expiry epoch), and
sessionAuthorized flag
- TakUnlockDialog: Compose dialog for passphrase entry, shown on
Locked and NeedsProvision states; onDismissRequest is a no-op to
prevent race conditions with firmware response timing; cancel
disconnects the user and navigates to the Connections tab
- Lock Now (Security settings): immediately disconnects the client
after informing firmware, purges cached config, navigates away
without showing a passphrase dialog
- ConnectionsScreen: suppress "region unset" prompt while the device
is TAK-locked, since pre-auth config is zeroed/redacted and would
lead the user to a blank LoRa settings screen
- AIDL: sendTakUnlock() and sendTakLockNow() wired through
MeshService → MeshActionHandler → TakLockHandler
- Security settings: "Lock Now (TAK)" button and token info display
showing boots remaining and expiry date
2026-02-27 08:31:05 -05:00
|
|
|
|
|
|
|
|
private const val MAX_BYTE_VALUE = 255
|
|
|
|
|
private const val INT_BYTE_SIZE = 4
|
|
|
|
|
private const val BYTE_MASK = 0xFF
|
|
|
|
|
private const val BYTE_BITS = 8
|
|
|
|
|
@Suppress("MagicNumber")
|
|
|
|
|
private val TAK_LOCK_BYTE = 0xFF.toByte()
|
2026-01-02 11:13:38 -06:00
|
|
|
}
|
|
|
|
|
}
|