jmg
/
lora-irrigation
1
0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Implement a secure ICS protocol targeting LoRa Node151 microcontroller for controlling irrigation.
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
111 Commits
4 Branches
18 MiB
 
 
 
 
 
 
Branch: irr_shared
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de irr_shared
${ noResults }
lora-irrigation/comms.c

257 linhas
6.8 KiB
Original Link permanente Anotar Histórico 

  1. /*-

  2.  * Copyright 2021 John-Mark Gurney.

  3.  *

  4.  * Redistribution and use in source and binary forms, with or without

  5.  * modification, are permitted provided that the following conditions

  6.  * are met:

  7.  * 1. Redistributions of source code must retain the above copyright

  8.  *    notice, this list of conditions and the following disclaimer.

  9.  * 2. Redistributions in binary form must reproduce the above copyright

  10.  *    notice, this list of conditions and the following disclaimer in the

  11.  *    documentation and/or other materials provided with the distribution.

  12.  *

  13.  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

  14.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  15.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  16.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  17.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  18.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  19.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  20.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  21.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  22.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  23.  * SUCH DAMAGE.

  24.  *

  25.  */

  26. 

  27. #include <comms.h>

  28. #include <strobe_rng_init.h>

  29. 

  30. static const size_t MAC_LEN = 8;

  31. static const size_t CHALLENGE_LEN = 16;

  32. static const uint8_t domain[] = "com.funkthat.lora.irrigation.shared.v0.0.1";

  33. static const uint8_t reqreset[] = "reqreset";

  34. static const uint8_t confirm[] = "confirm";

  35. 

  36. static int comms_pktbuf_equal(struct pktbuf a, struct pktbuf b);

  37. 

  38. /* returns 1 if equal, 0 if not equal */

  39. static int

  40. comms_pktbuf_equal(struct pktbuf a, struct pktbuf b)

  41. {

  42. 

  43. 	if (a.pktlen != b.pktlen)

  44. 		return 0;

  45. 

  46. 	return memcmp(a.pkt, b.pkt, a.pktlen) == 0;

  47. }

  48. 

  49. size_t

  50. _comms_state_size()

  51. {

  52. 

  53. 	return sizeof(struct comms_state);

  54. }

  55. 

  56. size_t

  57. _strobe_state_size()

  58. {

  59. 

  60. 	return sizeof(strobe_s);

  61. }

  62. 

  63. void

  64. comms_init(struct comms_state *cs, process_msgfunc_t pmf, struct pktbuf *shared)

  65. {

  66. 

  67. 	*cs = (struct comms_state){

  68. 		.cs_procmsg = pmf,

  69. 	};

  70. 

  71. 	strobe_init(&cs->cs_start, domain, sizeof domain - 1);

  72. 

  73. 	if (shared != NULL)

  74. 		strobe_key(&cs->cs_start, SYM_KEY, shared->pkt, shared->pktlen);

  75. 

  76. 	/* copy starting state over to initial state */

  77. 	cs->cs_active = (struct comms_session){

  78. 		.cs_crypto = cs->cs_start,

  79. 		.cs_state = COMMS_WAIT_REQUEST,

  80. 	};

  81. 	cs->cs_pending = cs->cs_active;

  82. }

  83. 

  84. #define CONFIRMED_STR_BASE	"confirmed"

  85. #define CONFIRMED_STR		((const uint8_t *)CONFIRMED_STR_BASE)

  86. #define CONFIRMED_STR_LEN	(sizeof(CONFIRMED_STR_BASE) - 1)

  87. 

  88. static void

  89. _comms_process_session(struct comms_state *cs, struct comms_session *sess, struct pktbuf pbin, struct pktbuf *pbout)

  90. {

  91. 	strobe_s tmp;

  92. 	uint8_t buf[64] = {};

  93. 	struct pktbuf pbmsg, pbrep;

  94. 	ssize_t cnt, ret, msglen;

  95. 

  96. 	/* save the state incase the message is bad */

  97. 	tmp = sess->cs_crypto;

  98. 

  99. 	strobe_attach_buffer(&sess->cs_crypto, pbin.pkt, pbin.pktlen);

  100. 

  101. 	/* if the packet is too short, ignore */

  102. 	if (pbin.pktlen < MAC_LEN)

  103. 		goto badmsg;

  104. 

  105. 	cnt = strobe_get(&sess->cs_crypto, APP_CIPHERTEXT, buf, pbin.pktlen -

  106. 	    MAC_LEN);

  107. 	msglen = cnt;

  108. 

  109. 	cnt = strobe_get(&sess->cs_crypto, MAC, pbin.pkt +

  110. 	    (pbin.pktlen - MAC_LEN), MAC_LEN);

  111. 

  112. 	/* MAC check failed */

  113. 	if (cnt == -1) {

  114. badmsg:

  115. 		/* restore the previous state */

  116. 		sess->cs_crypto = tmp;

  117. 		pbout->pktlen = 0;

  118. 		return;

  119. 	}

  120. 

  121. 	/*

  122. 	 * if we have arrived here, MAC has been verified, and buf now

  123. 	 * contains the data to operate upon.

  124. 	 */

  125. 

  126. 	/* attach the buffer for output */

  127. 	strobe_attach_buffer(&sess->cs_crypto, pbout->pkt, pbout->pktlen);

  128. 

  129. 	ret = 0;

  130. 	switch (sess->cs_state) {

  131. 	case COMMS_WAIT_REQUEST:

  132. 		if (msglen != 24 || memcmp(reqreset, &buf[16],

  133. 		    sizeof reqreset - 1) != 0)

  134. 			goto badmsg;

  135. 

  136. 		bare_strobe_randomize(buf, CHALLENGE_LEN);

  137. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, buf,

  138. 		    CHALLENGE_LEN);

  139. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  140. 

  141. 		strobe_operate(&sess->cs_crypto, RATCHET, NULL, 32);

  142. 

  143. 		sess->cs_state = COMMS_WAIT_CONFIRM;

  144. 		break;

  145. 

  146. 	case COMMS_WAIT_CONFIRM:

  147. 		if (msglen != 7 || memcmp(confirm, buf,

  148. 		    sizeof confirm - 1) != 0)

  149. 			goto badmsg;

  150. 

  151. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, CONFIRMED_STR,

  152. 		    CONFIRMED_STR_LEN);

  153. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  154. 		sess->cs_state = COMMS_PROCESS_MSGS;

  155. 		break;

  156. 

  157. 	case COMMS_PROCESS_MSGS: {

  158. 		uint8_t repbuf[pbout->pktlen - MAC_LEN];

  159. 

  160. 		memset(repbuf, '\x00', sizeof repbuf);

  161. 

  162. 		pbmsg.pkt = buf;

  163. 		pbmsg.pktlen = msglen;

  164. 

  165. 		pbrep.pkt = repbuf;

  166. 		pbrep.pktlen = sizeof repbuf;

  167. 

  168. 		cs->cs_procmsg(pbmsg, &pbrep);

  169. 

  170. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, repbuf,

  171. 		    pbrep.pktlen);

  172. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  173. 

  174. 		break;

  175. 		}

  176. 	}

  177. 

  178. 	/* set the output buffer length */

  179. 	pbout->pktlen = ret;

  180. 

  181. }

  182. 

  183. /*

  184.  * encrypted data to be processed is passed in via pbin.

  185.  *

  186.  * The pktbuf pointed to by pbout contains the buffer that a [encrypted]

  187.  * response will be written to.  The length needs to be updated, where 0

  188.  * means no reply.

  189.  */

  190. void

  191. comms_process(struct comms_state *cs, struct pktbuf pbin, struct pktbuf *pbout)

  192. {

  193. 	struct pktbuf pbouttmp;

  194. 

  195. 	/* if the current msg matches the previous */

  196. 	if (comms_pktbuf_equal(pbin, cs->cs_prevmsg)) {

  197. 		/* send the previous response */

  198. 		pbout->pktlen = cs->cs_prevmsgresp.pktlen;

  199. 		memcpy(pbout->pkt, cs->cs_prevmsgresp.pkt, pbout->pktlen);

  200. 		return;

  201. 	}

  202. 

  203. 	/* try to use the active session */

  204. 	pbouttmp = *pbout;

  205. 	_comms_process_session(cs, &cs->cs_active, pbin, &pbouttmp);

  206. 

  207. 	if (pbouttmp.pktlen != 0) {

  208. retmsg:

  209. 		/* we accepted a new message store it */

  210. 		*pbout = pbouttmp;

  211. 

  212. 		/* store the req */

  213. 		cs->cs_prevmsg.pkt = cs->cs_prevmsgbuf;

  214. 		cs->cs_prevmsg.pktlen = pbin.pktlen;

  215. 		memcpy(cs->cs_prevmsg.pkt, pbin.pkt, pbin.pktlen);

  216. 

  217. 		/* store the response */

  218. 		cs->cs_prevmsgresp.pkt = cs->cs_prevmsgrespbuf;

  219. 		cs->cs_prevmsgresp.pktlen = pbout->pktlen;

  220. 		memcpy(cs->cs_prevmsgresp.pkt, pbout->pkt, pbout->pktlen);

  221. 	} else {

  222. 		/* active session didn't work, try cs_pending */

  223. 

  224. 		pbouttmp = *pbout;

  225. 		_comms_process_session(cs, &cs->cs_pending, pbin, &pbouttmp);

  226. 

  227. 		if (cs->cs_pending.cs_state == COMMS_PROCESS_MSGS) {

  228. 			/* new active state */

  229. 			cs->cs_active = cs->cs_pending;

  230. 			cs->cs_pending = (struct comms_session){

  231. 				.cs_crypto = cs->cs_start,

  232. 				.cs_state = COMMS_WAIT_REQUEST,

  233. 			};

  234. 			goto retmsg;

  235. 		}

  236. 

  237. 		/* pending session didn't work, maybe new */

  238. 		struct comms_session tmpsess;

  239. 

  240. 		tmpsess = (struct comms_session){

  241. 			.cs_crypto = cs->cs_start,

  242. 			.cs_state = COMMS_WAIT_REQUEST,

  243. 		};

  244. 

  245. 		pbouttmp = *pbout;

  246. 		_comms_process_session(cs, &tmpsess, pbin, &pbouttmp);

  247. 		if (tmpsess.cs_state == COMMS_WAIT_CONFIRM) {

  248. 			/* new request for session */

  249. 			cs->cs_pending = tmpsess;

  250. 			*pbout = pbouttmp;

  251. 		} else {

  252. 			/* no packet to reply with */

  253. 			pbout->pktlen = 0;

  254. 		}

  255. 	}

  256. }