QGroundControl
Ground Control Station for MAVLink Drones
Loading...
Searching...
No Matches
SigningChannel.h
Go to the documentation of this file.
1#pragma once
2
3#include <QtCore/QByteArrayView>
4#include <QtCore/QDeadlineTimer>
5#include <QtCore/QReadWriteLock>
6#include <QtCore/QString>
7#include <atomic>
8#include <cstdint>
9
10#include "AutoSuspendGuard.h"
11#include "MAVLinkMessageType.h"
12#include "MAVLinkSigning.h"
13
14class SigningController;
15
18class SigningChannel
19{
20public:
21 SigningChannel() = default;
22 ~SigningChannel() = default;
23 SigningChannel(const SigningChannel&) = delete;
24 SigningChannel& operator=(const SigningChannel&) = delete;
25 SigningChannel(SigningChannel&&) = delete;
26 SigningChannel& operator=(SigningChannel&&) = delete;
27
29 static constexpr uint64_t kPersistedTimestampSafetyBumpTicks = 6'000'000;
30
33 bool init(mavlink_channel_t channel, QByteArrayView key, mavlink_accept_unsigned_t callback,
34 uint64_t persistedTimestamp = 0, const QString& keyName = {}, bool signOutgoing = true);
35
37 bool setAcceptUnsignedCallback(mavlink_accept_unsigned_t callback);
38
39 bool isEnabled() const;
40 int streamCount() const;
41
42 QString keyHint() const;
43 void setKeyHint(const QString& name);
44 void clearKeyHint();
45
46 struct TimestampSnapshot
47 {
48 uint64_t timestamp;
49 QString keyName;
50 };
51
53 TimestampSnapshot currentTimestampAndName() const;
54
56 bool isAutoDetectSuspended() const;
57
59 [[nodiscard]] QGC::AutoSuspendGuard suspendAutoDetect() { return QGC::AutoSuspendGuard(_autoDetectSuspended); }
60
62 bool isInDetectCooldown() const;
63 void recordDetectMiss();
64 void clearDetectCooldown();
65 static constexpr qint64 kDetectCooldownMs = 2000;
66
68 MAVLinkSigning::DetectSnapshot detectSnapshot() const;
69
71 bool consumeStatusTransition(mavlink_channel_t channel);
72
73private:
74 friend class SigningController;
75
77 bool setSignOutgoing(bool signOutgoing);
78
79 mavlink_signing_t _signing{};
81 mavlink_signing_streams_t _streams{};
82 QString _keyHint;
83 bool _enabled = false;
85 std::atomic<bool> _autoDetectSuspended{false};
86 QDeadlineTimer _detectCooldown; // default-constructed → expired (forever in the past)
87 mavlink_signing_status_t _lastTransitionStatus = MAVLINK_SIGNING_STATUS_NONE;
88 mutable QReadWriteLock _lock;
89};
mavlink_channel_t
mavlink_channel_t
Definition MAVLinkMessageType.h:13
QGC::AutoSuspendGuard
RAII guard for an atomic suspend flag: sets on construction, clears on destruction.
Definition AutoSuspendGuard.h:12
SigningChannel
Owns MAVLink signing state for one channel: signing/streams structs, key hint, and RW lock.
Definition SigningChannel.h:19
SigningChannel::init
bool init(mavlink_channel_t channel, QByteArrayView key, mavlink_accept_unsigned_t callback, uint64_t persistedTimestamp=0, const QString &keyName={}, bool signOutgoing=true)
Definition SigningChannel.cc:12
SigningChannel::SigningChannel
SigningChannel(SigningChannel &&)=delete
SigningChannel::keyHint
QString keyHint() const
Definition SigningChannel.cc:109
SigningChannel::setKeyHint
void setKeyHint(const QString &name)
Definition SigningChannel.cc:115
SigningChannel::setAcceptUnsignedCallback
bool setAcceptUnsignedCallback(mavlink_accept_unsigned_t callback)
Swap the accept-unsigned callback without resetting the key. Returns false if signing isn't enabled.
Definition SigningChannel.cc:73
SigningChannel::suspendAutoDetect
QGC::AutoSuspendGuard suspendAutoDetect()
RAII handle that suspends auto-detect for the guard's lifetime; release is automatic on destruction.
Definition SigningChannel.h:59
SigningChannel::operator=
SigningChannel & operator=(const SigningChannel &)=delete
SigningChannel::detectSnapshot
MAVLinkSigning::DetectSnapshot detectSnapshot() const
Single-lock snapshot; 3 separate reads have TOCTOU window vs MockLink's thread.
Definition SigningChannel.cc:150
SigningChannel::kPersistedTimestampSafetyBumpTicks
static constexpr uint64_t kPersistedTimestampSafetyBumpTicks
60s post-reboot timestamp bump (matches ArduPilot GCS_Signing.cpp); absorbs SIGKILL/suspend/NTP/clock...
Definition SigningChannel.h:29
SigningChannel::streamCount
int streamCount() const
Definition SigningChannel.cc:103
SigningChannel::isEnabled
bool isEnabled() const
Definition SigningChannel.cc:97
SigningChannel::isAutoDetectSuspended
bool isAutoDetectSuspended() const
While suspended, tryDetectKey is suppressed to block stale-key installs during pending enable.
Definition SigningChannel.cc:121
SigningChannel::SigningChannel
SigningChannel()=default
SigningChannel::consumeStatusTransition
bool consumeStatusTransition(mavlink_channel_t channel)
True if last_status changed since previous call; sole transition-detection source.
Definition SigningChannel.cc:163
SigningChannel::SigningChannel
SigningChannel(const SigningChannel &)=delete
SigningChannel::operator=
SigningChannel & operator=(SigningChannel &&)=delete
SigningChannel::isInDetectCooldown
bool isInDetectCooldown() const
Throttles detect misses; HMAC per packet per key is expensive. Monotonic timer to avoid wall-clock sk...
Definition SigningChannel.cc:126
SigningChannel::kDetectCooldownMs
static constexpr qint64 kDetectCooldownMs
Definition SigningChannel.h:65
SigningChannel::currentTimestampAndName
TimestampSnapshot currentTimestampAndName() const
Returns current timestamp and active key name. Returns {0, ""} when signing is not enabled.
Definition SigningChannel.cc:64
SigningChannel::~SigningChannel
~SigningChannel()=default
SigningController
Owns MAVLink signing state and the deferred-confirmation state machine for one LinkInterface.
Definition SigningController.h:20
MAVLinkSigning::DetectSnapshot
Single-lock snapshot struct; fields populated by SigningChannel::detectSnapshot().
Definition MAVLinkSigning.h:83