jmg
/
lora-irrigation
1
0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
Implement a secure ICS protocol targeting LoRa Node151 microcontroller for controlling irrigation.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
111 Commits
4 Branches
18 MiB
 
 
 
 
 
 
Branch: irr_shared
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'irr_shared'
${ noResults }
lora-irrigation/comms.c

257 regels
6.8 KiB
Ruw Permalink Blame Geschiedenis 

  1. /*-

  2.  * Copyright 2021 John-Mark Gurney.

  3.  *

  4.  * Redistribution and use in source and binary forms, with or without

  5.  * modification, are permitted provided that the following conditions

  6.  * are met:

  7.  * 1. Redistributions of source code must retain the above copyright

  8.  *    notice, this list of conditions and the following disclaimer.

  9.  * 2. Redistributions in binary form must reproduce the above copyright

  10.  *    notice, this list of conditions and the following disclaimer in the

  11.  *    documentation and/or other materials provided with the distribution.

  12.  *

  13.  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

  14.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  15.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  16.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  17.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  18.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  19.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  20.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  21.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  22.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  23.  * SUCH DAMAGE.

  24.  *

  25.  */

  26. 

  27. #include <comms.h>

  28. #include <strobe_rng_init.h>

  29. 

  30. static const size_t MAC_LEN = 8;

  31. static const size_t CHALLENGE_LEN = 16;

  32. static const uint8_t domain[] = "com.funkthat.lora.irrigation.shared.v0.0.1";

  33. static const uint8_t reqreset[] = "reqreset";

  34. static const uint8_t confirm[] = "confirm";

  35. 

  36. static int comms_pktbuf_equal(struct pktbuf a, struct pktbuf b);

  37. 

  38. /* returns 1 if equal, 0 if not equal */

  39. static int

  40. comms_pktbuf_equal(struct pktbuf a, struct pktbuf b)

  41. {

  42. 

  43. 	if (a.pktlen != b.pktlen)

  44. 		return 0;

  45. 

  46. 	return memcmp(a.pkt, b.pkt, a.pktlen) == 0;

  47. }

  48. 

  49. size_t

  50. _comms_state_size()

  51. {

  52. 

  53. 	return sizeof(struct comms_state);

  54. }

  55. 

  56. size_t

  57. _strobe_state_size()

  58. {

  59. 

  60. 	return sizeof(strobe_s);

  61. }

  62. 

  63. void

  64. comms_init(struct comms_state *cs, process_msgfunc_t pmf, struct pktbuf *shared)

  65. {

  66. 

  67. 	*cs = (struct comms_state){

  68. 		.cs_procmsg = pmf,

  69. 	};

  70. 

  71. 	strobe_init(&cs->cs_start, domain, sizeof domain - 1);

  72. 

  73. 	if (shared != NULL)

  74. 		strobe_key(&cs->cs_start, SYM_KEY, shared->pkt, shared->pktlen);

  75. 

  76. 	/* copy starting state over to initial state */

  77. 	cs->cs_active = (struct comms_session){

  78. 		.cs_crypto = cs->cs_start,

  79. 		.cs_state = COMMS_WAIT_REQUEST,

  80. 	};

  81. 	cs->cs_pending = cs->cs_active;

  82. }

  83. 

  84. #define CONFIRMED_STR_BASE	"confirmed"

  85. #define CONFIRMED_STR		((const uint8_t *)CONFIRMED_STR_BASE)

  86. #define CONFIRMED_STR_LEN	(sizeof(CONFIRMED_STR_BASE) - 1)

  87. 

  88. static void

  89. _comms_process_session(struct comms_state *cs, struct comms_session *sess, struct pktbuf pbin, struct pktbuf *pbout)

  90. {

  91. 	strobe_s tmp;

  92. 	uint8_t buf[64] = {};

  93. 	struct pktbuf pbmsg, pbrep;

  94. 	ssize_t cnt, ret, msglen;

  95. 

  96. 	/* save the state incase the message is bad */

  97. 	tmp = sess->cs_crypto;

  98. 

  99. 	strobe_attach_buffer(&sess->cs_crypto, pbin.pkt, pbin.pktlen);

  100. 

  101. 	/* if the packet is too short, ignore */

  102. 	if (pbin.pktlen < MAC_LEN)

  103. 		goto badmsg;

  104. 

  105. 	cnt = strobe_get(&sess->cs_crypto, APP_CIPHERTEXT, buf, pbin.pktlen -

  106. 	    MAC_LEN);

  107. 	msglen = cnt;

  108. 

  109. 	cnt = strobe_get(&sess->cs_crypto, MAC, pbin.pkt +

  110. 	    (pbin.pktlen - MAC_LEN), MAC_LEN);

  111. 

  112. 	/* MAC check failed */

  113. 	if (cnt == -1) {

  114. badmsg:

  115. 		/* restore the previous state */

  116. 		sess->cs_crypto = tmp;

  117. 		pbout->pktlen = 0;

  118. 		return;

  119. 	}

  120. 

  121. 	/*

  122. 	 * if we have arrived here, MAC has been verified, and buf now

  123. 	 * contains the data to operate upon.

  124. 	 */

  125. 

  126. 	/* attach the buffer for output */

  127. 	strobe_attach_buffer(&sess->cs_crypto, pbout->pkt, pbout->pktlen);

  128. 

  129. 	ret = 0;

  130. 	switch (sess->cs_state) {

  131. 	case COMMS_WAIT_REQUEST:

  132. 		if (msglen != 24 || memcmp(reqreset, &buf[16],

  133. 		    sizeof reqreset - 1) != 0)

  134. 			goto badmsg;

  135. 

  136. 		bare_strobe_randomize(buf, CHALLENGE_LEN);

  137. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, buf,

  138. 		    CHALLENGE_LEN);

  139. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  140. 

  141. 		strobe_operate(&sess->cs_crypto, RATCHET, NULL, 32);

  142. 

  143. 		sess->cs_state = COMMS_WAIT_CONFIRM;

  144. 		break;

  145. 

  146. 	case COMMS_WAIT_CONFIRM:

  147. 		if (msglen != 7 || memcmp(confirm, buf,

  148. 		    sizeof confirm - 1) != 0)

  149. 			goto badmsg;

  150. 

  151. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, CONFIRMED_STR,

  152. 		    CONFIRMED_STR_LEN);

  153. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  154. 		sess->cs_state = COMMS_PROCESS_MSGS;

  155. 		break;

  156. 

  157. 	case COMMS_PROCESS_MSGS: {

  158. 		uint8_t repbuf[pbout->pktlen - MAC_LEN];

  159. 

  160. 		memset(repbuf, '\x00', sizeof repbuf);

  161. 

  162. 		pbmsg.pkt = buf;

  163. 		pbmsg.pktlen = msglen;

  164. 

  165. 		pbrep.pkt = repbuf;

  166. 		pbrep.pktlen = sizeof repbuf;

  167. 

  168. 		cs->cs_procmsg(pbmsg, &pbrep);

  169. 

  170. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, repbuf,

  171. 		    pbrep.pktlen);

  172. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  173. 

  174. 		break;

  175. 		}

  176. 	}

  177. 

  178. 	/* set the output buffer length */

  179. 	pbout->pktlen = ret;

  180. 

  181. }

  182. 

  183. /*

  184.  * encrypted data to be processed is passed in via pbin.

  185.  *

  186.  * The pktbuf pointed to by pbout contains the buffer that a [encrypted]

  187.  * response will be written to.  The length needs to be updated, where 0

  188.  * means no reply.

  189.  */

  190. void

  191. comms_process(struct comms_state *cs, struct pktbuf pbin, struct pktbuf *pbout)

  192. {

  193. 	struct pktbuf pbouttmp;

  194. 

  195. 	/* if the current msg matches the previous */

  196. 	if (comms_pktbuf_equal(pbin, cs->cs_prevmsg)) {

  197. 		/* send the previous response */

  198. 		pbout->pktlen = cs->cs_prevmsgresp.pktlen;

  199. 		memcpy(pbout->pkt, cs->cs_prevmsgresp.pkt, pbout->pktlen);

  200. 		return;

  201. 	}

  202. 

  203. 	/* try to use the active session */

  204. 	pbouttmp = *pbout;

  205. 	_comms_process_session(cs, &cs->cs_active, pbin, &pbouttmp);

  206. 

  207. 	if (pbouttmp.pktlen != 0) {

  208. retmsg:

  209. 		/* we accepted a new message store it */

  210. 		*pbout = pbouttmp;

  211. 

  212. 		/* store the req */

  213. 		cs->cs_prevmsg.pkt = cs->cs_prevmsgbuf;

  214. 		cs->cs_prevmsg.pktlen = pbin.pktlen;

  215. 		memcpy(cs->cs_prevmsg.pkt, pbin.pkt, pbin.pktlen);

  216. 

  217. 		/* store the response */

  218. 		cs->cs_prevmsgresp.pkt = cs->cs_prevmsgrespbuf;

  219. 		cs->cs_prevmsgresp.pktlen = pbout->pktlen;

  220. 		memcpy(cs->cs_prevmsgresp.pkt, pbout->pkt, pbout->pktlen);

  221. 	} else {

  222. 		/* active session didn't work, try cs_pending */

  223. 

  224. 		pbouttmp = *pbout;

  225. 		_comms_process_session(cs, &cs->cs_pending, pbin, &pbouttmp);

  226. 

  227. 		if (cs->cs_pending.cs_state == COMMS_PROCESS_MSGS) {

  228. 			/* new active state */

  229. 			cs->cs_active = cs->cs_pending;

  230. 			cs->cs_pending = (struct comms_session){

  231. 				.cs_crypto = cs->cs_start,

  232. 				.cs_state = COMMS_WAIT_REQUEST,

  233. 			};

  234. 			goto retmsg;

  235. 		}

  236. 

  237. 		/* pending session didn't work, maybe new */

  238. 		struct comms_session tmpsess;

  239. 

  240. 		tmpsess = (struct comms_session){

  241. 			.cs_crypto = cs->cs_start,

  242. 			.cs_state = COMMS_WAIT_REQUEST,

  243. 		};

  244. 

  245. 		pbouttmp = *pbout;

  246. 		_comms_process_session(cs, &tmpsess, pbin, &pbouttmp);

  247. 		if (tmpsess.cs_state == COMMS_WAIT_CONFIRM) {

  248. 			/* new request for session */

  249. 			cs->cs_pending = tmpsess;

  250. 			*pbout = pbouttmp;

  251. 		} else {

  252. 			/* no packet to reply with */

  253. 			pbout->pktlen = 0;

  254. 		}

  255. 	}

  256. }