[platform/upstream/iotivity.git] / resource / csdk / security / provisioning / include / ocprovisioningmanager.h

/* *****************************************************************\r
 *\r
 * Copyright 2015 Samsung Electronics All Rights Reserved.\r
 *\r
 *\r
 *\r
 * Licensed under the Apache License, Version 2.0 (the "License");\r
 * you may not use this file except in compliance with the License.\r
 * You may obtain a copy of the License at\r
 *\r
 *     http://www.apache.org/licenses/LICENSE-2.0\r
 *\r
 * Unless required by applicable law or agreed to in writing, software\r
 * distributed under the License is distributed on an "AS IS" BASIS,\r
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
 * See the License for the specific language governing permissions and\r
 * limitations under the License.\r
 *\r
 * *****************************************************************/\r
\r
#ifndef OCPROVISIONINGMANAGER_H_\r
#define OCPROVISIONINGMANAGER_H_\r
\r
#include "octypes.h"\r
#include "pmtypes.h"\r
#include "ownershiptransfermanager.h"\r
#ifdef _ENABLE_MULTIPLE_OWNER_\r
#include "securevirtualresourcetypes.h"\r
#endif //_ENABLE_MULTIPLE_OWNER_\r
\r
#ifdef __cplusplus\r
extern "C" {\r
#endif // __cplusplus\r
\r
/**\r
 * The function is responsible for initializaton of the provisioning manager. It will load\r
 * provisioning database which have owned device's list and their linked status.\r
 * TODO: In addition, if there is a device(s) which has not up-to-date credentials, this function will\r
 * automatically try to update the deivce(s).\r
 *\r
 * @param[in] dbPath file path of the sqlite3 db\r
 *\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCInitPM(const char* dbPath);\r
\r
/**\r
 * The function is responsible for discovery of owned/unowned device is specified endpoint/deviceID.\r
 * It will return the found device even though timeout is not exceeded.\r
 *\r
 * @param[in] timeout Timeout in seconds, value till which function will listen to responses from\r
 *                    server before returning the device.\r
 * @param[in] deviceID         deviceID of target device.\r
 * @param[out] ppFoundDevice     OCProvisionDev_t of found device\r
 * @return OTM_SUCCESS in case of success and other value otherwise.\r
 */\r
OCStackResult OCDiscoverSingleDevice(unsigned short timeout, const OicUuid_t* deviceID,\r
                             OCProvisionDev_t **ppFoundDevice);\r
\r
/**\r
 * The function is responsible for discovery of device is current subnet. It will list\r
 * all the device in subnet which are not yet owned. Please call OCInit with OC_CLIENT_SERVER as\r
 * OCMode.\r
 *\r
 * @param[in] timeout Timeout in seconds, value till which function will listen to responses from\r
 *                    server before returning the list of devices.\r
 * @param[out] ppList List of candidate devices to be provisioned\r
 * @return OTM_SUCCESS in case of success and other value otherwise.\r
 */\r
OCStackResult OCDiscoverUnownedDevices(unsigned short waittime, OCProvisionDev_t **ppList);\r
\r
/**\r
 * Do ownership transfer for un-owned device.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback\r
 * @param[in] targetDevices List of devices to perform ownership transfer.\r
 * @param[in] resultCallback Result callback function to be invoked when ownership transfer finished.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCDoOwnershipTransfer(void* ctx,\r
                                    OCProvisionDev_t *targetDevices,\r
                                    OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to set a allow status of OxM\r
 *\r
 * @param[in] oxm Owership transfer method (ref. OicSecOxm_t)\r
 * @param[in] allowStatus allow status (true = allow, false = not allow)\r
 *\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCSetOxmAllowStatus(const OicSecOxm_t oxm, const bool allowStatus);\r
\r
#ifdef _ENABLE_MULTIPLE_OWNER_\r
/**\r
 * API to perfrom multiple ownership transfer for MOT enabled device.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback\r
 * @param[in] targetDevices List of devices to perform ownership transfer.\r
 * @param[in] resultCallback Result callback function to be invoked when ownership transfer finished.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCDoMultipleOwnershipTransfer(void* ctx,\r
                                      OCProvisionDev_t *targetDevices,\r
                                      OCProvisionResultCB resultCallback);\r
#endif //_ENABLE_MULTIPLE_OWNER_\r
\r
/**\r
 * API to register for particular OxM.\r
 *\r
 * @param[in] Ownership transfer method.\r
 * @param[in] Implementation of callback functions for owership transfer.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCSetOwnerTransferCallbackData(OicSecOxm_t oxm, OTMCallbackData_t* callbackData);\r
\r
/**\r
 * The function is responsible for discovery of owned device is current subnet. It will list\r
 * all the device in subnet which are owned by calling provisioning client.\r
 *\r
 * @param[in] timeout Timeout in seconds, value till which function will listen to responses from\r
 *                    server before returning the list of devices.\r
 * @param[out] ppList List of device owned by provisioning tool.\r
 * @return OTM_SUCCESS in case of success and other value otherwise.\r
 */\r
OCStackResult OCDiscoverOwnedDevices(unsigned short timeout, OCProvisionDev_t **ppList);\r
\r
#ifdef _ENABLE_MULTIPLE_OWNER_\r
/**\r
 * The function is responsible for discovery of MOT enabled device is current subnet.\r
 *\r
 * @param[in] timeout Timeout in seconds, value till which function will listen to responses from\r
 *                    server before returning the list of devices.\r
 * @param[out] ppList List of MOT enabled devices.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCDiscoverMultipleOwnerEnabledDevices(unsigned short timeout, OCProvisionDev_t **ppList);\r
\r
/**\r
 * The function is responsible for discovery of Multiple Owned device is current subnet.\r
 *\r
 * @param[in] timeout Timeout in seconds, value till which function will listen to responses from\r
 *                    server before returning the list of devices.\r
 * @param[out] ppList List of Multiple Owned devices.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCDiscoverMultipleOwnedDevices(unsigned short timeout, OCProvisionDev_t **ppList);\r
#endif //_ENABLE_MULTIPLE_OWNER_\r
\r
/**\r
 * API to provision credentials between two devices and ACLs for the devices who act as a server.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] type Type of credentials to be provisioned to the device.\r
 * @param[in] pDev1 Pointer to OCProvisionDev_t instance,respresenting device to be provisioned.\r
 * @param[in] acl ACL for device 1. If this is not required set NULL.\r
 * @param[in] pDev2 Pointer to OCProvisionDev_t instance,respresenting device to be provisioned.\r
 * @param[in] acl ACL for device 2. If this is not required set NULL.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            provisioning request recieves a response from first resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionPairwiseDevices(void* ctx, OicSecCredType_t type, size_t keySize,\r
                                         const OCProvisionDev_t *pDev1, OicSecAcl_t *pDev1Acl,\r
                                         const OCProvisionDev_t *pDev2, OicSecAcl_t *pDev2Acl,\r
                                         OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to send ACL information to device.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] selectedDeviceInfo Selected target device.\r
 * @param[in] acl ACL to provision.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when provisioning\r
              request recieves a response from resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionACL(void *ctx, const OCProvisionDev_t *selectedDeviceInfo, OicSecAcl_t *acl,\r
                             OCProvisionResultCB resultCallback);\r
\r
/**\r
 * function to save ACL which has several ACE into Acl of SVR.\r
 *\r
 * @param acl ACL to be saved in Acl of SVR.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCSaveACL(const OicSecAcl_t* acl);\r
\r
/**\r
 * this function requests CRED information to resource.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] selectedDeviceInfo Selected target device.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when provisioning\r
              request recieves a response from resource server.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCGetCredResource(void* ctx, const OCProvisionDev_t *selectedDeviceInfo,\r
                             OCProvisionResultCB resultCallback);\r
\r
/**\r
 * this function requests ACL information to resource.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] selectedDeviceInfo Selected target device.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when provisioning\r
              request recieves a response from resource server.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCGetACLResource(void* ctx, const OCProvisionDev_t *selectedDeviceInfo,\r
                             OCProvisionResultCB resultCallback);\r
\r
/**\r
 * this function sends Direct-Pairing Configuration to a device.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] selectedDeviceInfo Selected target device.\r
 * @param[in] pconf PCONF pointer.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when provisioning\r
              request recieves a response from resource server.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionDirectPairing(void* ctx, const OCProvisionDev_t *selectedDeviceInfo, OicSecPconf_t *pconf,\r
                             OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to provision credential to devices.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] type Type of credentials to be provisioned to the device.\r
 * @param[in] pDev1 Pointer to OCProvisionDev_t instance,respresenting resource to be provsioned.\r
   @param[in] pDev2 Pointer to OCProvisionDev_t instance,respresenting resource to be provsioned.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            provisioning request recieves a response from first resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionCredentials(void *ctx, OicSecCredType_t type, size_t keySize,\r
                                      const OCProvisionDev_t *pDev1,\r
                                      const OCProvisionDev_t *pDev2,\r
                                      OCProvisionResultCB resultCallback);\r
\r
#ifdef _ENABLE_MULTIPLE_OWNER_\r
/**\r
 * API to provision preconfigured PIN to device(NOT LIST).\r
 * If device does not support the Preconfigured PIN OxM,\r
 * OCProvisionPreconfigPin API will update the device's Doxm\r
 * and then try preconfigured PIN provisioning once again.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] targetDeviceInfo Selected target device.\r
 * @param[in] preconfigPin string of preconfigured PIN.\r
 * @param[in] preconfigPinLen string length of 'preconfigPin'.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            provisioning request recieves a response from first resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionPreconfigPin(void *ctx,\r
                                      OCProvisionDev_t *targetDeviceInfo,\r
                                      const char *preconfigPin,\r
                                      size_t preconfigPinLen,\r
                                      OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to add preconfigured PIN to local SVR DB.\r
 *\r
 * @param[in] targetDeviceInfo Selected target device.\r
 * @param[in] preconfigPin Preconfig PIN which is used while multiple owner authentication\r
 * @param[in] preconfigPinLen Byte length of preconfigPin\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCAddPreconfigPin(const OCProvisionDev_t *targetDeviceInfo,\r
                                const char *preconfigPin,\r
                                size_t preconfigPinLen);\r
\r
/**\r
 * API to update 'doxm.mom' to resource server.\r
 *\r
 * @param[in] targetDeviceInfo Selected target device.\r
 * @param[in] momType Mode of multiple ownership transfer (ref. oic.sec.mom)\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            POST 'mom' request recieves a response from resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCChangeMOTMode(void *ctx, const OCProvisionDev_t *targetDeviceInfo,\r
                            const OicSecMomType_t momType, OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to update 'doxm.oxmsel' to resource server.\r
 *\r
 * @param[in] targetDeviceInfo Selected target device.\r
 * @param[in] oxmSelValue Method of multiple ownership transfer (ref. oic.sec.oxm)\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            POST 'oxmsel' request recieves a response from resource server.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCSelectMOTMethod(void *ctx, const OCProvisionDev_t *targetDeviceInfo,\r
                                 const OicSecOxm_t oxmSelValue, OCProvisionResultCB resultCallback);\r
#endif //_ENABLE_MULTIPLE_OWNER_\r
\r
/**\r
 * Function to unlink devices.\r
 * This function will remove the credential & relasionship between the two devices.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback\r
 * @param[in] pTargetDev1 fitst device information to be unlinked.\r
 * @param[in] pTargetDev2 second device information to be unlinked.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            device unlink is finished.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCUnlinkDevices(void* ctx,\r
                              const OCProvisionDev_t* pTargetDev1,\r
                              const OCProvisionDev_t* pTargetDev2,\r
                              OCProvisionResultCB resultCallback);\r
\r
/**\r
 * Function for device revocation\r
 * This function will remove credential of target device from all devices in subnet.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback\r
 * @param[in] waitTimeForOwnedDeviceDiscovery Maximum wait time for owned device discovery.(seconds)\r
 * @param[in] pTargetDev Device information to be revoked.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            credential revocation is finished.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 *         if OC_STACK_OK is returned, the caller of this API should wait for callback.\r
 *         OC_STACK_CONTINUE means operation is success but no need to wait for callback.\r
 */\r
OCStackResult OCRemoveDevice(void* ctx,\r
                             unsigned short waitTimeForOwnedDeviceDiscovery,\r
                             const OCProvisionDev_t* pTargetDev,\r
                             OCProvisionResultCB resultCallback);\r
\r
/*\r
* Function to device revocation\r
* This function will remove credential of target device from all devices in subnet.\r
*\r
* @param[in] ctx Application context would be returned in result callback\r
* @param[in] waitTimeForOwnedDeviceDiscovery Maximum wait time for owned device discovery.(seconds)\r
* @param[in] pTargetDev Device information to be revoked.\r
* @param[in] resultCallback callback provided by API user, callback will be called when\r
*            credential revocation is finished.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
*/\r
OCStackResult OCRemoveDeviceWithUuid(void* ctx,\r
                                     unsigned short waitTimeForOwnedDeviceDiscovery,\r
                                     const OicUuid_t* pTargetUuid,\r
                                     OCProvisionResultCB resultCallback);\r
\r
/*\r
 * Function to reset the target device.\r
 * This function will remove credential and ACL of target device from all devices in subnet.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback\r
 * @param[in] waitTimeForOwnedDeviceDiscovery Maximum wait time for owned device discovery.(seconds)\r
 * @param[in] pTargetDev Device information to be revoked.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            credential revocation is finished.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCResetDevice(void* ctx, unsigned short waitTimeForOwnedDeviceDiscovery,\r
                            const OCProvisionDev_t* pTargetDev,\r
                            OCProvisionResultCB resultCallback);\r
\r
/**\r
 * API to get status of all the devices in current subnet. The status include endpoint information\r
 * and doxm information which can be extracted duing owned and unowned discovery. Along with this\r
 * information. The API will provide information about devices' status\r
 * Device can have following states\r
 *  - ON/OFF: Device is switched on or off.\r
 *\r
 * NOTE: Caller need to call OCDeleteDiscoveredDevices to delete memory allocated by this API for out\r
 * variables pOwnedDevList and pUnownedDevList.\r
 *\r
 * @param[in] waitime Wait time for the API. The wait time will be divided by 2, and half of wait time\r
 * will be used for unowned discovery and remaining half for owned discovery. So the wait time should be\r
 * equal to or more than 2.\r
 * @param[out] pOwnedDevList  list of owned devices.\r
 * @param[out] pUnownedDevList  list of unowned devices.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCGetDevInfoFromNetwork(unsigned short waittime,\r
                                       OCProvisionDev_t** pOwnedDevList,\r
                                       OCProvisionDev_t** pUnownedDevList);\r
/**\r
 * This method is used to get linked devices' IDs.\r
 *\r
 * @param[in] uuidOfDevice a target device's uuid.\r
 * @param[out] uuidList information about the list of linked devices' uuids.\r
 * @param[out] numOfDevices total number of linked devices.\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCGetLinkedStatus(const OicUuid_t* uuidOfDevice,\r
                                  OCUuidList_t** uuidList,\r
                                  size_t* numOfDevices);\r
\r
/**\r
 * API to delete memory allocated to linked list created by OCDiscover_XXX_Devices API.\r
 *\r
 * @param[in] pList Pointer to OCProvisionDev_t which should be deleted.\r
 */\r
void OCDeleteDiscoveredDevices(OCProvisionDev_t *pList);\r
\r
/**\r
 * API to delete memory allocated to OicUuid_t list.\r
 *\r
 * @param[in] pList Pointer to OicUuid_t list which should be deleted.\r
 */\r
void OCDeleteUuidList(OCUuidList_t* pList);\r
\r
/**\r
 * This function deletes ACL data.\r
 *\r
 * @param pAcl Pointer to OicSecAcl_t structure.\r
 */\r
void OCDeleteACLList(OicSecAcl_t* pAcl);\r
\r
/**\r
 * This function deletes PDACL data.\r
 *\r
 * @param pPdAcl Pointer to OicSecPdAcl_t structure.\r
 */\r
void OCDeletePdAclList(OicSecPdAcl_t* pPdAcl);\r
\r
#if defined(__WITH_DTLS__) || defined(__WITH_TLS__)\r
/**\r
 * this function sends CRL information to resource.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] selectedDeviceInfo Selected target device.\r
 * @param[in] crl CRL to provision.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when provisioning\r
              request recieves a response from resource server.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionCRL(void* ctx, const OCProvisionDev_t *selectedDeviceInfo, OicSecCrl_t *crl,\r
                             OCProvisionResultCB resultCallback);\r
\r
/**\r
 * function to provision Trust certificate chain to devices.\r
 *\r
 * @param[in] ctx Application context would be returned in result callback.\r
 * @param[in] type Type of credentials to be provisioned to the device.\r
 * @param[in] credId CredId of trust certificate chain to be provisioned to the device.\r
 * @param[in] selectedDeviceInfo Pointer to OCProvisionDev_t instance,respresenting resource to be provsioned.\r
 * @param[in] resultCallback callback provided by API user, callback will be called when\r
 *            provisioning request recieves a response from first resource server.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCProvisionTrustCertChain(void *ctx, OicSecCredType_t type, uint16_t credId,\r
                                      const OCProvisionDev_t *selectedDeviceInfo,\r
                                      OCProvisionResultCB resultCallback);\r
/**\r
 * function to save Trust certificate chain into Cred of SVR.\r
 *\r
 * @param[in] trustCertChain Trust certificate chain to be saved in Cred of SVR.\r
 * @param[in] chainSize Size of trust certificate chain to be saved in Cred of SVR\r
 * @param[in] encodingType Encoding type of trust certificate chain to be saved in Cred of SVR\r
 * @param[out] credId CredId of saved trust certificate chain in Cred of SVR.\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCSaveTrustCertChain(uint8_t *trustCertChain, size_t chainSize,\r
                                        OicEncodingType_t encodingType, uint16_t *credId);\r
/**\r
 * function to register callback, for getting notification for TrustCertChain change.\r
 *\r
 * @param[in] TrustCertChainChangeCB notifier callback function\r
 * @return OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCRegisterTrustCertChainNotifier(void *cb, TrustCertChainChangeCB CB);\r
\r
/**\r
 * function to de-register TrustCertChain notification callback.\r
 */\r
void OCRemoveTrustCertChainNotifier(void);\r
\r
/*\r
 * Function to read Trust certificate chain from SVR.\r
 * Caller must free when done using the returned trust certificate\r
 * @param[in] credId CredId of trust certificate chain in SVR.\r
 * @param[out] trustCertChain Trust certificate chain.\r
 * @param[out] chainSize Size of trust certificate chain\r
 * @return  OC_STACK_OK in case of success and other value otherwise.\r
 */\r
OCStackResult OCReadTrustCertChain(uint16_t credId, uint8_t **trustCertChain,\r
                                     size_t *chainSize);\r
\r
#endif // __WITH_DTLS__ || __WITH_TLS__\r
\r
\r
#ifdef __cplusplus\r
}\r
#endif // __cplusplus\r
\r
#endif /* OCPROVISIONINGMANAGER_H_ */\r