프로젝트 정리: 앱 내부 구조 수정 및 레거시 플래시 스크립트 제거

- command/system/measurement - .bat 파일 삭제(nrfprog 세대, nrfutil로 대체됨)
2026-04-15 15:53:46 +09:00
parent 95894eacd4
commit 2c7f306390
30 changed files with 4083 additions and 4204 deletions
--- a/project/ble_peripheral/ble_app_bladder_patch/system/security/ble_quick_security.c
+++ b/project/ble_peripheral/ble_app_bladder_patch/system/security/ble_quick_security.c
@@ -0,0 +1,175 @@
+/**
+ * @file ble_quick_security.c
+ * @brief Ultra-simple BLE Security Configuration Implementation
+ * 
+ * Compatible with existing debug_print.h system.
+ */
+
+#include "ble_quick_security.h"
+#include "peer_manager_handler.h"
+#include "app_error.h"
+#include <string.h>
+
+// Use existing debug system
+#include "debug_print.h"
+
+// Module state
+static struct {
+    bool dev_mode;
+    bool bonds_delete_pending;
+} m_state = {0};
+
+/**
+ * @brief Initialize BLE security
+ */
+void ble_security_quick_init(bool development_mode)
+{
+    ret_code_t err_code;
+    ble_gap_sec_params_t sec_params;
+    
+    // Save mode
+    m_state.dev_mode = development_mode;
+    m_state.bonds_delete_pending = false;
+    
+    // Initialize Peer Manager FIRST
+    err_code = pm_init();
+    APP_ERROR_CHECK(err_code);
+    
+    // Configure security parameters
+    memset(&sec_params, 0, sizeof(ble_gap_sec_params_t));
+    
+    if (development_mode) {
+        // ===== DEVELOPMENT MODE: No security =====
+        sec_params.bond         = 0;  // No bonding
+        sec_params.mitm         = 0;  // No MITM
+        sec_params.lesc         = 0;  // No LESC
+        sec_params.keypress     = 0;
+        sec_params.io_caps      = BLE_GAP_IO_CAPS_NONE;  // No passkey
+        sec_params.oob          = 0;
+        sec_params.min_key_size = 7;
+        sec_params.max_key_size = 16;
+        
+        DBG_PRINTF("DEV MODE: Security DISABLED - Fast connection\r\n");
+        
+        // Delete all bonds (async)
+        err_code = pm_peers_delete();
+        if (err_code == NRF_SUCCESS) {
+            m_state.bonds_delete_pending = true;
+            DBG_PRINTF("DEV MODE: Deleting all bonds...\r\n");
+        }
+    } else {
+        // ===== PRODUCTION MODE: Full security =====
+        sec_params.bond         = 1;  // Enable bonding
+        sec_params.mitm         = 1;  // Enable MITM
+        sec_params.lesc         = 0;  // Standard pairing
+        sec_params.keypress     = 0;
+        sec_params.io_caps      = BLE_GAP_IO_CAPS_DISPLAY_ONLY;  // Show passkey
+        sec_params.oob          = 0;
+        sec_params.min_key_size = 7;
+        sec_params.max_key_size = 16;
+        sec_params.kdist_own.enc  = 1;
+        sec_params.kdist_own.id   = 1;
+        sec_params.kdist_peer.enc = 1;
+        sec_params.kdist_peer.id  = 1;
+        
+        DBG_PRINTF("PROD MODE: Security ENABLED - Full protection\r\n");
+    }
+    
+    // Apply security parameters
+    err_code = pm_sec_params_set(&sec_params);
+    APP_ERROR_CHECK(err_code);
+}
+
+/**
+ * @brief Get current mode
+ */
+bool ble_security_is_dev_mode(void)
+{
+    return m_state.dev_mode;
+}
+
+/**
+ * @brief PM event handler
+ */
+void ble_security_quick_pm_handler(pm_evt_t const *p_evt)
+{
+    ret_code_t err_code;
+    
+    // DEV 모드: 보안 실패 이벤트는 SDK 핸들러에 전달하지 않음 (disconnect 방지)
+    if (m_state.dev_mode && p_evt->evt_id == PM_EVT_CONN_SEC_FAILED) {
+        DBG_PRINTF("Security failed: error=%d\r\n",
+                  p_evt->params.conn_sec_failed.error);
+        DBG_PRINTF("DEV: Ignoring sec failure, keeping connection\r\n");
+        return;
+    }
+
+    // Call standard handlers (required)
+    pm_handler_on_pm_evt(p_evt);
+    pm_handler_flash_clean(p_evt);
+
+    // Handle events
+    switch (p_evt->evt_id) {
+        case PM_EVT_CONN_SEC_SUCCEEDED:
+            if (m_state.dev_mode) {
+                DBG_PRINTF("DEV: Connected (no security)\r\n");
+            } else {
+                DBG_PRINTF("PROD: Link secured (bonded)\r\n");
+            }
+            break;
+
+        case PM_EVT_CONN_SEC_FAILED:
+            DBG_PRINTF("Security failed: error=%d\r\n",
+                      p_evt->params.conn_sec_failed.error);
+
+            if (m_state.dev_mode) {
+                // DEV 모드: 보안 실패 무시 — 연결 유지
+                DBG_PRINTF("DEV: Ignoring sec failure, keeping connection\r\n");
+                break;
+            }
+
+            if (p_evt->params.conn_sec_failed.error == PM_CONN_SEC_ERROR_PIN_OR_KEY_MISSING) {
+                // Key missing: 재페어링 시도, 실패 시 disconnect로 폴백
+                err_code = pm_conn_secure(p_evt->conn_handle, true);
+                if (err_code != NRF_ERROR_INVALID_STATE &&
+                    err_code != NRF_ERROR_BUSY &&
+                    err_code != BLE_ERROR_INVALID_CONN_HANDLE) {
+                    APP_ERROR_CHECK(err_code);
+                }
+                if (err_code != NRF_SUCCESS) {
+                    // 재페어링 불가 → disconnect
+                    pm_handler_disconnect_on_sec_failure(p_evt);
+                }
+            } else {
+                // 기타 보안 실패 → bond 삭제 후 재페어링 시도
+                pm_peer_id_t peer_id;
+                if (pm_peer_id_get(p_evt->conn_handle, &peer_id) == NRF_SUCCESS
+                    && peer_id != PM_PEER_ID_INVALID) {
+                    pm_peer_delete(peer_id);
+                }
+                err_code = pm_conn_secure(p_evt->conn_handle, true);
+                if (err_code != NRF_SUCCESS) {
+                    pm_handler_disconnect_on_sec_failure(p_evt);
+                }
+            }
+            break;
+            
+        case PM_EVT_CONN_SEC_CONFIG_REQ:
+            {
+                pm_conn_sec_config_t config = {
+                    .allow_repairing = true
+                };
+                pm_conn_sec_config_reply(p_evt->conn_handle, &config);
+            }
+            break;
+            
+        case PM_EVT_PEERS_DELETE_SUCCEEDED:
+            if (m_state.bonds_delete_pending) {
+                m_state.bonds_delete_pending = false;
+                DBG_PRINTF("DEV MODE: Bonds cleared!\r\n");
+            }
+            break;
+            
+        default:
+            break;
+    }
+}
--- a/project/ble_peripheral/ble_app_bladder_patch/system/security/ble_quick_security.h
+++ b/project/ble_peripheral/ble_app_bladder_patch/system/security/ble_quick_security.h
@@ -0,0 +1,56 @@
+ /**
+ * @file ble_quick_security.h
+ * @brief Ultra-simple BLE Security Configuration
+ * 
+ * ONE function call to control entire security behavior.
+ * Works with existing debug_print.h system.
+ */
+
+#ifndef BLE_QUICK_SECURITY_H
+#define BLE_QUICK_SECURITY_H
+
+#include <stdint.h>
+#include <stdbool.h>
+#include "peer_manager.h"
+
+/**
+ * @brief Initialize BLE security with ONE simple parameter
+ * 
+ * @param[in] development_mode  true (1) = Fast development (no security)
+ *                              false (0) = Production (full security)
+ * 
+ * Development mode (1):
+ *   - No pairing/bonding required
+ *   - Auto-deletes all bonds on startup
+ *   - Instant connection
+ *   - Fast iteration
+ * 
+ * Production mode (0):
+ *   - Full security with passkey
+ *   - Bonding preserved
+ *   - MITM protection
+ *   - Secure deployment
+ * 
+ * Usage in main.c:
+ *   #define BLE_DEV_MODE 1  // or 0
+ *   ble_security_quick_init(BLE_DEV_MODE);
+ */
+void ble_security_quick_init(bool development_mode);
+
+/**
+ * @brief Get current mode
+ * @return true if in development mode, false if production
+ */
+bool ble_security_is_dev_mode(void);
+
+/**
+ * @brief Peer Manager event handler
+ * 
+ * Call this from your pm_evt_handler() function.
+ * It handles all security events automatically.
+ * 
+ * @param[in] p_evt  Peer Manager event
+ */
+void ble_security_quick_pm_handler(pm_evt_t const *p_evt);
+
+#endif // BLE_QUICK_SECURITY_H