samples: lwm2m: add support for DTLS

include($ENV{ZEPHYR_BASE}/cmake/app/boilerplate.cmake NO_POLICY_SCOPE)

project(NONE)

FILE(GLOB app_sources src/*.c)

target_sources(app PRIVATE ${app_sources})

include($ENV{ZEPHYR_BASE}/samples/net/common/common.cmake)

target_link_libraries_ifdef(CONFIG_MBEDTLS app mbedTLS)

CONFIG_NETWORKING=y

CONFIG_NET_LOG=y

CONFIG_NET_BUF_LOG=y

CONFIG_SYS_LOG_NET_LEVEL=4

CONFIG_SYS_LOG_NET_BUF_LEVEL=2

CONFIG_SYS_LOG_LWM2M_LEVEL=4

CONFIG_TEST_RANDOM_GENERATOR=y

CONFIG_NET_IPV6=y

CONFIG_NET_IF_UNICAST_IPV6_ADDR_COUNT=3

CONFIG_NET_IF_MCAST_IPV6_ADDR_COUNT=2

CONFIG_NET_IPV4=y

CONFIG_NET_DHCPV4=n

CONFIG_NET_IF_UNICAST_IPV4_ADDR_COUNT=3

CONFIG_NET_IF_MCAST_IPV4_ADDR_COUNT=2

CONFIG_SYS_LOG_SHOW_COLOR=y

CONFIG_INIT_STACKS=y

CONFIG_PRINTK=y

CONFIG_NET_STATISTICS=y

CONFIG_NET_PKT_RX_COUNT=10

CONFIG_NET_PKT_TX_COUNT=10

CONFIG_NET_BUF_RX_COUNT=10

CONFIG_NET_BUF_TX_COUNT=10

CONFIG_NET_MAX_CONTEXTS=5

# CONFIG_NET_CONTEXT_NET_PKT_POOL is not set

CONFIG_NET_SHELL=y

CONFIG_NET_APP_NEED_IPV6=y

CONFIG_NET_APP_NEED_IPV4=y

CONFIG_NET_APP_SETTINGS=y

CONFIG_NET_APP_DTLS=y

CONFIG_MBEDTLS=y

CONFIG_MBEDTLS_BUILTIN=y

CONFIG_MBEDTLS_ENABLE_HEAP=y

CONFIG_MBEDTLS_HEAP_SIZE=8192

CONFIG_MBEDTLS_CFG_FILE="config-coap.h"

CONFIG_LWM2M=y

CONFIG_LWM2M_PEER_PORT=5684

CONFIG_LWM2M_IPSO_SUPPORT=y

CONFIG_LWM2M_IPSO_TEMP_SENSOR=y

CONFIG_LWM2M_IPSO_LIGHT_CONTROL=y

CONFIG_NET_APP_MY_IPV6_ADDR="2001:db8::1"

CONFIG_NET_APP_PEER_IPV6_ADDR="2001:db8::2"

CONFIG_NET_APP_MY_IPV4_ADDR="192.0.2.1"

CONFIG_NET_APP_PEER_IPV4_ADDR="192.0.2.2"

/*

 * Copyright (c) 2017 Linaro Limited

 * Copyright (c) 2017 Open Source Foundries Limited.

 *

 * SPDX-License-Identifier: Apache-2.0

 */

static u32_t led_state;

static struct lwm2m_ctx client;

#if defined(CONFIG_NET_APP_DTLS)

#if !defined(CONFIG_NET_APP_TLS_STACK_SIZE)

#define CONFIG_NET_APP_TLS_STACK_SIZE		30000

#endif /* CONFIG_NET_APP_TLS_STACK_SIZE */

#define HOSTNAME "localhost"   /* for cert verification if that is enabled */

/* The result buf size is set to large enough so that we can receive max size

 * buf back. Note that mbedtls needs also be configured to have equal size

 * value for its buffer size. See MBEDTLS_SSL_MAX_CONTENT_LEN option in DTLS

 * config file.

 */

#define RESULT_BUF_SIZE 1500

NET_APP_TLS_POOL_DEFINE(dtls_pool, 10);

/* "000102030405060708090a0b0c0d0e0f" */

static unsigned char client_psk[] = {

	0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,

	0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f

};

static const char client_psk_id[] = "Client_identity";

static u8_t dtls_result[RESULT_BUF_SIZE];

NET_STACK_DEFINE(NET_APP_DTLS, net_app_dtls_stack,

		 CONFIG_NET_APP_TLS_STACK_SIZE, CONFIG_NET_APP_TLS_STACK_SIZE);

#endif /* CONFIG_NET_APP_DTLS */

static struct k_sem quit_lock;

#if defined(CONFIG_LWM2M_FIRMWARE_UPDATE_OBJ_SUPPORT)

	client.data_pool = data_udp_pool;

#endif

#if defined(CONFIG_NET_APP_DTLS)

	client.client_psk = client_psk;

	client.client_psk_len = 16;

	client.client_psk_id = (char *)client_psk_id;

	client.client_psk_id_len = strlen(client_psk_id);

	client.cert_host = HOSTNAME;

	client.dtls_pool = &dtls_pool;

	client.dtls_result_buf = dtls_result;

	client.dtls_result_buf_len = RESULT_BUF_SIZE;

	client.dtls_stack = net_app_dtls_stack;

	client.dtls_stack_len = K_THREAD_STACK_SIZEOF(net_app_dtls_stack);

#endif /* CONFIG_NET_APP_DTLS */

#if defined(CONFIG_NET_IPV6)

	ret = lwm2m_rd_client_start(&client, CONFIG_NET_APP_PEER_IPV6_ADDR,

				    CONFIG_LWM2M_PEER_PORT, CONFIG_BOARD,