jmg
/
lora-irrigation
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Implement a secure ICS protocol targeting LoRa Node151 microcontroller for controlling irrigation.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
65 Commits
4 Branches
18 MiB
 
 
 
 
 
 
Tree: 4024d1d5e4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4024d1d5e4'
${ noResults }
lora-irrigation/comms.c

245 lines
6.5 KiB
Raw Blame History 

  1. /*-

  2.  * Copyright 2021 John-Mark Gurney.

  3.  *

  4.  * Redistribution and use in source and binary forms, with or without

  5.  * modification, are permitted provided that the following conditions

  6.  * are met:

  7.  * 1. Redistributions of source code must retain the above copyright

  8.  *    notice, this list of conditions and the following disclaimer.

  9.  * 2. Redistributions in binary form must reproduce the above copyright

  10.  *    notice, this list of conditions and the following disclaimer in the

  11.  *    documentation and/or other materials provided with the distribution.

  12.  *

  13.  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

  14.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  15.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  16.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  17.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  18.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  19.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  20.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  21.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  22.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  23.  * SUCH DAMAGE.

  24.  *

  25.  */

  26. 

  27. #include <comms.h>

  28. #include <strobe_rng_init.h>

  29. 

  30. static const size_t MAC_LEN = 8;

  31. static const size_t CHALLENGE_LEN = 16;

  32. static const uint8_t domain[] = "com.funkthat.lora.irrigation.shared.v0.0.1";

  33. 

  34. static int comms_pktbuf_equal(struct pktbuf a, struct pktbuf b);

  35. 

  36. /* returns 1 if equal, 0 if not equal */

  37. static int

  38. comms_pktbuf_equal(struct pktbuf a, struct pktbuf b)

  39. {

  40. 

  41. 	if (a.pktlen != b.pktlen)

  42. 		return 0;

  43. 

  44. 	return memcmp(a.pkt, b.pkt, a.pktlen) == 0;

  45. }

  46. 

  47. size_t

  48. _comms_state_size()

  49. {

  50. 

  51. 	return sizeof(struct comms_state);

  52. }

  53. 

  54. size_t

  55. _strobe_state_size()

  56. {

  57. 

  58. 	return sizeof(strobe_s);

  59. }

  60. 

  61. void

  62. comms_init(struct comms_state *cs, process_msgfunc_t pmf, struct pktbuf *shared)

  63. {

  64. 

  65. 	*cs = (struct comms_state){

  66. 		.cs_procmsg = pmf,

  67. 	};

  68. 

  69. 	strobe_init(&cs->cs_start, domain, sizeof domain - 1);

  70. 

  71. 	if (shared != NULL)

  72. 		strobe_key(&cs->cs_start, SYM_KEY, shared->pkt, shared->pktlen);

  73. 

  74. 	/* copy starting state over to initial state */

  75. 	cs->cs_active = (struct comms_session){

  76. 		.cs_crypto = cs->cs_start,

  77. 		.cs_state = COMMS_WAIT_REQUEST,

  78. 	};

  79. 	cs->cs_pending = cs->cs_active;

  80. }

  81. 

  82. #define CONFIRMED_STR_BASE	"confirmed"

  83. #define CONFIRMED_STR		((const uint8_t *)CONFIRMED_STR_BASE)

  84. #define CONFIRMED_STR_LEN	(sizeof(CONFIRMED_STR_BASE) - 1)

  85. 

  86. static void

  87. _comms_process_session(struct comms_state *cs, struct comms_session *sess, struct pktbuf pbin, struct pktbuf *pbout)

  88. {

  89. 	strobe_s tmp;

  90. 	uint8_t buf[64] = {};

  91. 	struct pktbuf pbmsg, pbrep;

  92. 	ssize_t cnt, ret, msglen;

  93. 

  94. 	/* save the state incase the message is bad */

  95. 	tmp = sess->cs_crypto;

  96. 

  97. 	strobe_attach_buffer(&sess->cs_crypto, pbin.pkt, pbin.pktlen);

  98. 

  99. 	cnt = strobe_get(&sess->cs_crypto, APP_CIPHERTEXT, buf, pbin.pktlen -

  100. 	    MAC_LEN);

  101. 	msglen = cnt;

  102. 

  103. 	cnt = strobe_get(&sess->cs_crypto, MAC, pbin.pkt +

  104. 	    (pbin.pktlen - MAC_LEN), MAC_LEN);

  105. 

  106. 	/* MAC check failed */

  107. 	if (cnt == -1) {

  108. 		/* restore the previous state */

  109. 		sess->cs_crypto = tmp;

  110. 		pbout->pktlen = 0;

  111. 		return;

  112. 	}

  113. 

  114. 	/*

  115. 	 * if we have arrived here, MAC has been verified, and buf now

  116. 	 * contains the data to operate upon.

  117. 	 */

  118. 

  119. 	/* attach the buffer for output */

  120. 	strobe_attach_buffer(&sess->cs_crypto, pbout->pkt, pbout->pktlen);

  121. 

  122. 	ret = 0;

  123. 	switch (sess->cs_state) {

  124. 	case COMMS_WAIT_REQUEST:

  125. 		/* XXX - reqreset check */

  126. 

  127. 		bare_strobe_randomize(buf, CHALLENGE_LEN);

  128. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, buf,

  129. 		    CHALLENGE_LEN);

  130. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  131. 

  132. 		strobe_operate(&sess->cs_crypto, RATCHET, NULL, 32);

  133. 

  134. 		sess->cs_state = COMMS_WAIT_CONFIRM;

  135. 		break;

  136. 

  137. 	case COMMS_WAIT_CONFIRM:

  138. 		/* XXX - confirm check */

  139. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, CONFIRMED_STR,

  140. 		    CONFIRMED_STR_LEN);

  141. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  142. 		sess->cs_state = COMMS_PROCESS_MSGS;

  143. 		break;

  144. 

  145. 	case COMMS_PROCESS_MSGS: {

  146. 		uint8_t repbuf[pbout->pktlen - MAC_LEN];

  147. 

  148. 		memset(repbuf, '\x00', sizeof repbuf);

  149. 

  150. 		pbmsg.pkt = buf;

  151. 		pbmsg.pktlen = msglen;

  152. 

  153. 		pbrep.pkt = repbuf;

  154. 		pbrep.pktlen = sizeof repbuf;

  155. 

  156. 		cs->cs_procmsg(pbmsg, &pbrep);

  157. 

  158. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, repbuf,

  159. 		    pbrep.pktlen);

  160. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  161. 

  162. 		break;

  163. 		}

  164. 	}

  165. 

  166. 	/* set the output buffer length */

  167. 	pbout->pktlen = ret;

  168. 

  169. }

  170. 

  171. /*

  172.  * encrypted data to be processed is passed in via pbin.

  173.  *

  174.  * The pktbuf pointed to by pbout contains the buffer that a [encrypted]

  175.  * response will be written to.  The length needs to be updated, where 0

  176.  * means no reply.

  177.  */

  178. void

  179. comms_process(struct comms_state *cs, struct pktbuf pbin, struct pktbuf *pbout)

  180. {

  181. 	struct pktbuf pbouttmp;

  182. 

  183. 	/* if the current msg matches the previous */

  184. 	if (comms_pktbuf_equal(pbin, cs->cs_prevmsg)) {

  185. 		/* send the previous response */

  186. 		pbout->pktlen = cs->cs_prevmsgresp.pktlen;

  187. 		memcpy(pbout->pkt, cs->cs_prevmsgresp.pkt, pbout->pktlen);

  188. 		return;

  189. 	}

  190. 

  191. 	/* try to use the active session */

  192. 	pbouttmp = *pbout;

  193. 	_comms_process_session(cs, &cs->cs_active, pbin, &pbouttmp);

  194. 

  195. 	if (pbouttmp.pktlen != 0) {

  196. retmsg:

  197. 		/* we accepted a new message store it */

  198. 		*pbout = pbouttmp;

  199. 

  200. 		/* store the req */

  201. 		cs->cs_prevmsg.pkt = cs->cs_prevmsgbuf;

  202. 		cs->cs_prevmsg.pktlen = pbin.pktlen;

  203. 		memcpy(cs->cs_prevmsg.pkt, pbin.pkt, pbin.pktlen);

  204. 

  205. 		/* store the response */

  206. 		cs->cs_prevmsgresp.pkt = cs->cs_prevmsgrespbuf;

  207. 		cs->cs_prevmsgresp.pktlen = pbout->pktlen;

  208. 		memcpy(cs->cs_prevmsgresp.pkt, pbout->pkt, pbout->pktlen);

  209. 	} else {

  210. 		/* active session didn't work, try cs_pending */

  211. 

  212. 		pbouttmp = *pbout;

  213. 		_comms_process_session(cs, &cs->cs_pending, pbin, &pbouttmp);

  214. 

  215. 		if (cs->cs_pending.cs_state == COMMS_PROCESS_MSGS) {

  216. 			/* new active state */

  217. 			cs->cs_active = cs->cs_pending;

  218. 			cs->cs_pending = (struct comms_session){

  219. 				.cs_crypto = cs->cs_start,

  220. 				.cs_state = COMMS_WAIT_REQUEST,

  221. 			};

  222. 			goto retmsg;

  223. 		}

  224. 

  225. 		/* pending session didn't work, maybe new */

  226. 		struct comms_session tmpsess;

  227. 

  228. 		tmpsess = (struct comms_session){

  229. 			.cs_crypto = cs->cs_start,

  230. 			.cs_state = COMMS_WAIT_REQUEST,

  231. 		};

  232. 

  233. 		pbouttmp = *pbout;

  234. 		_comms_process_session(cs, &tmpsess, pbin, &pbouttmp);

  235. 		if (tmpsess.cs_state == COMMS_WAIT_CONFIRM) {

  236. 			/* new request for session */

  237. 			cs->cs_pending = tmpsess;

  238. 			*pbout = pbouttmp;

  239. 		} else {

  240. 			/* no packet to reply with */

  241. 			pbout->pktlen = 0;

  242. 		}

  243. 	}

  244. }