jmg
/
lora-irrigation
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Implement a secure ICS protocol targeting LoRa Node151 microcontroller for controlling irrigation.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
101 Commits
4 Branches
18 MiB
 
 
 
 
 
 
Tree: 91a6fb590b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '91a6fb590b'
${ noResults }
lora-irrigation/comms.c

253 lines
6.7 KiB
Raw Blame History 

  1. /*-

  2.  * Copyright 2021 John-Mark Gurney.

  3.  *

  4.  * Redistribution and use in source and binary forms, with or without

  5.  * modification, are permitted provided that the following conditions

  6.  * are met:

  7.  * 1. Redistributions of source code must retain the above copyright

  8.  *    notice, this list of conditions and the following disclaimer.

  9.  * 2. Redistributions in binary form must reproduce the above copyright

  10.  *    notice, this list of conditions and the following disclaimer in the

  11.  *    documentation and/or other materials provided with the distribution.

  12.  *

  13.  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

  14.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  15.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  16.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  17.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  18.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  19.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  20.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  21.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  22.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  23.  * SUCH DAMAGE.

  24.  *

  25.  */

  26. 

  27. #include <comms.h>

  28. #include <strobe_rng_init.h>

  29. 

  30. static const size_t MAC_LEN = 8;

  31. static const size_t CHALLENGE_LEN = 16;

  32. static const uint8_t domain[] = "com.funkthat.lora.irrigation.shared.v0.0.1";

  33. static const uint8_t reqreset[] = "reqreset";

  34. static const uint8_t confirm[] = "confirm";

  35. 

  36. static int comms_pktbuf_equal(struct pktbuf a, struct pktbuf b);

  37. 

  38. /* returns 1 if equal, 0 if not equal */

  39. static int

  40. comms_pktbuf_equal(struct pktbuf a, struct pktbuf b)

  41. {

  42. 

  43. 	if (a.pktlen != b.pktlen)

  44. 		return 0;

  45. 

  46. 	return memcmp(a.pkt, b.pkt, a.pktlen) == 0;

  47. }

  48. 

  49. size_t

  50. _comms_state_size()

  51. {

  52. 

  53. 	return sizeof(struct comms_state);

  54. }

  55. 

  56. size_t

  57. _strobe_state_size()

  58. {

  59. 

  60. 	return sizeof(strobe_s);

  61. }

  62. 

  63. void

  64. comms_init(struct comms_state *cs, process_msgfunc_t pmf, struct pktbuf *shared)

  65. {

  66. 

  67. 	*cs = (struct comms_state){

  68. 		.cs_procmsg = pmf,

  69. 	};

  70. 

  71. 	strobe_init(&cs->cs_start, domain, sizeof domain - 1);

  72. 

  73. 	if (shared != NULL)

  74. 		strobe_key(&cs->cs_start, SYM_KEY, shared->pkt, shared->pktlen);

  75. 

  76. 	/* copy starting state over to initial state */

  77. 	cs->cs_active = (struct comms_session){

  78. 		.cs_crypto = cs->cs_start,

  79. 		.cs_state = COMMS_WAIT_REQUEST,

  80. 	};

  81. 	cs->cs_pending = cs->cs_active;

  82. }

  83. 

  84. #define CONFIRMED_STR_BASE	"confirmed"

  85. #define CONFIRMED_STR		((const uint8_t *)CONFIRMED_STR_BASE)

  86. #define CONFIRMED_STR_LEN	(sizeof(CONFIRMED_STR_BASE) - 1)

  87. 

  88. static void

  89. _comms_process_session(struct comms_state *cs, struct comms_session *sess, struct pktbuf pbin, struct pktbuf *pbout)

  90. {

  91. 	strobe_s tmp;

  92. 	uint8_t buf[64] = {};

  93. 	struct pktbuf pbmsg, pbrep;

  94. 	ssize_t cnt, ret, msglen;

  95. 

  96. 	/* save the state incase the message is bad */

  97. 	tmp = sess->cs_crypto;

  98. 

  99. 	strobe_attach_buffer(&sess->cs_crypto, pbin.pkt, pbin.pktlen);

  100. 

  101. 	cnt = strobe_get(&sess->cs_crypto, APP_CIPHERTEXT, buf, pbin.pktlen -

  102. 	    MAC_LEN);

  103. 	msglen = cnt;

  104. 

  105. 	cnt = strobe_get(&sess->cs_crypto, MAC, pbin.pkt +

  106. 	    (pbin.pktlen - MAC_LEN), MAC_LEN);

  107. 

  108. 	/* MAC check failed */

  109. 	if (cnt == -1) {

  110. badmsg:

  111. 		/* restore the previous state */

  112. 		sess->cs_crypto = tmp;

  113. 		pbout->pktlen = 0;

  114. 		return;

  115. 	}

  116. 

  117. 	/*

  118. 	 * if we have arrived here, MAC has been verified, and buf now

  119. 	 * contains the data to operate upon.

  120. 	 */

  121. 

  122. 	/* attach the buffer for output */

  123. 	strobe_attach_buffer(&sess->cs_crypto, pbout->pkt, pbout->pktlen);

  124. 

  125. 	ret = 0;

  126. 	switch (sess->cs_state) {

  127. 	case COMMS_WAIT_REQUEST:

  128. 		if (msglen != 24 || memcmp(reqreset, &buf[16],

  129. 		    sizeof reqreset - 1) != 0)

  130. 			goto badmsg;

  131. 

  132. 		bare_strobe_randomize(buf, CHALLENGE_LEN);

  133. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, buf,

  134. 		    CHALLENGE_LEN);

  135. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  136. 

  137. 		strobe_operate(&sess->cs_crypto, RATCHET, NULL, 32);

  138. 

  139. 		sess->cs_state = COMMS_WAIT_CONFIRM;

  140. 		break;

  141. 

  142. 	case COMMS_WAIT_CONFIRM:

  143. 		if (msglen != 7 || memcmp(confirm, buf,

  144. 		    sizeof confirm - 1) != 0)

  145. 			goto badmsg;

  146. 

  147. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, CONFIRMED_STR,

  148. 		    CONFIRMED_STR_LEN);

  149. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  150. 		sess->cs_state = COMMS_PROCESS_MSGS;

  151. 		break;

  152. 

  153. 	case COMMS_PROCESS_MSGS: {

  154. 		uint8_t repbuf[pbout->pktlen - MAC_LEN];

  155. 

  156. 		memset(repbuf, '\x00', sizeof repbuf);

  157. 

  158. 		pbmsg.pkt = buf;

  159. 		pbmsg.pktlen = msglen;

  160. 

  161. 		pbrep.pkt = repbuf;

  162. 		pbrep.pktlen = sizeof repbuf;

  163. 

  164. 		cs->cs_procmsg(pbmsg, &pbrep);

  165. 

  166. 		ret = strobe_put(&sess->cs_crypto, APP_CIPHERTEXT, repbuf,

  167. 		    pbrep.pktlen);

  168. 		ret += strobe_put(&sess->cs_crypto, MAC, NULL, MAC_LEN);

  169. 

  170. 		break;

  171. 		}

  172. 	}

  173. 

  174. 	/* set the output buffer length */

  175. 	pbout->pktlen = ret;

  176. 

  177. }

  178. 

  179. /*

  180.  * encrypted data to be processed is passed in via pbin.

  181.  *

  182.  * The pktbuf pointed to by pbout contains the buffer that a [encrypted]

  183.  * response will be written to.  The length needs to be updated, where 0

  184.  * means no reply.

  185.  */

  186. void

  187. comms_process(struct comms_state *cs, struct pktbuf pbin, struct pktbuf *pbout)

  188. {

  189. 	struct pktbuf pbouttmp;

  190. 

  191. 	/* if the current msg matches the previous */

  192. 	if (comms_pktbuf_equal(pbin, cs->cs_prevmsg)) {

  193. 		/* send the previous response */

  194. 		pbout->pktlen = cs->cs_prevmsgresp.pktlen;

  195. 		memcpy(pbout->pkt, cs->cs_prevmsgresp.pkt, pbout->pktlen);

  196. 		return;

  197. 	}

  198. 

  199. 	/* try to use the active session */

  200. 	pbouttmp = *pbout;

  201. 	_comms_process_session(cs, &cs->cs_active, pbin, &pbouttmp);

  202. 

  203. 	if (pbouttmp.pktlen != 0) {

  204. retmsg:

  205. 		/* we accepted a new message store it */

  206. 		*pbout = pbouttmp;

  207. 

  208. 		/* store the req */

  209. 		cs->cs_prevmsg.pkt = cs->cs_prevmsgbuf;

  210. 		cs->cs_prevmsg.pktlen = pbin.pktlen;

  211. 		memcpy(cs->cs_prevmsg.pkt, pbin.pkt, pbin.pktlen);

  212. 

  213. 		/* store the response */

  214. 		cs->cs_prevmsgresp.pkt = cs->cs_prevmsgrespbuf;

  215. 		cs->cs_prevmsgresp.pktlen = pbout->pktlen;

  216. 		memcpy(cs->cs_prevmsgresp.pkt, pbout->pkt, pbout->pktlen);

  217. 	} else {

  218. 		/* active session didn't work, try cs_pending */

  219. 

  220. 		pbouttmp = *pbout;

  221. 		_comms_process_session(cs, &cs->cs_pending, pbin, &pbouttmp);

  222. 

  223. 		if (cs->cs_pending.cs_state == COMMS_PROCESS_MSGS) {

  224. 			/* new active state */

  225. 			cs->cs_active = cs->cs_pending;

  226. 			cs->cs_pending = (struct comms_session){

  227. 				.cs_crypto = cs->cs_start,

  228. 				.cs_state = COMMS_WAIT_REQUEST,

  229. 			};

  230. 			goto retmsg;

  231. 		}

  232. 

  233. 		/* pending session didn't work, maybe new */

  234. 		struct comms_session tmpsess;

  235. 

  236. 		tmpsess = (struct comms_session){

  237. 			.cs_crypto = cs->cs_start,

  238. 			.cs_state = COMMS_WAIT_REQUEST,

  239. 		};

  240. 

  241. 		pbouttmp = *pbout;

  242. 		_comms_process_session(cs, &tmpsess, pbin, &pbouttmp);

  243. 		if (tmpsess.cs_state == COMMS_WAIT_CONFIRM) {

  244. 			/* new request for session */

  245. 			cs->cs_pending = tmpsess;

  246. 			*pbout = pbouttmp;

  247. 		} else {

  248. 			/* no packet to reply with */

  249. 			pbout->pktlen = 0;

  250. 		}

  251. 	}

  252. }