pohui_pohui/firmware
1
0
Fork 0
mirror of https://github.com/meshtastic/firmware.git synced 2025-06-17 18:42:10 +00:00
Code Issues Actions 5 Packages Projects Releases Wiki Activity

clean up the crypto api

Browse Source
This commit is contained in:
Kevin Hester 2021-02-23 10:10:35 +08:00
parent 94cd96cfde
commit 2761c85564
7 changed files with 135 additions and 105 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
src/esp32/ESP32CryptoEngine.cpp
View File

@ -18,9 +18,6 @@ class ESP32CryptoEngine : public CryptoEngine
mbedtls_aes_context aes; mbedtls_aes_context aes;
/// How many bytes in our key
uint8_t keySize = 0;
public: public:
ESP32CryptoEngine() { mbedtls_aes_init(&aes); } ESP32CryptoEngine() { mbedtls_aes_init(&aes); }
@ -35,12 +32,12 @@ class ESP32CryptoEngine : public CryptoEngine
* @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the * @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the
* provided pointer) * provided pointer)
*/ */
virtual void setKey(size_t numBytes, uint8_t *bytes) virtual void setKey(const CryptoKey &k)
{ {
keySize = numBytes; CryptoEngine::setKey(k);
DEBUG_MSG("Installing AES%d key!\n", numBytes * 8);
if (numBytes != 0) { if (key.length != 0) {
auto res = mbedtls_aes_setkey_enc(&aes, bytes, numBytes * 8); auto res = mbedtls_aes_setkey_enc(&aes, key.bytes, key.length * 8);
assert(!res); assert(!res);
} }
} }
@ -52,7 +49,7 @@ class ESP32CryptoEngine : public CryptoEngine
*/ */
virtual void encrypt(uint32_t fromNode, uint64_t packetNum, size_t numBytes, uint8_t *bytes) virtual void encrypt(uint32_t fromNode, uint64_t packetNum, size_t numBytes, uint8_t *bytes)
{ {
if (keySize != 0) { if (key.length > 0) {
uint8_t stream_block[16]; uint8_t stream_block[16];
static uint8_t scratch[MAX_BLOCKSIZE]; static uint8_t scratch[MAX_BLOCKSIZE];
size_t nc_off = 0; size_t nc_off = 0;

142
src/mesh/Channels.cpp
View File

@ -10,7 +10,7 @@ static const uint8_t defaultpsk[] = {0xd4, 0xf1, 0xbb, 0x3a, 0x20, 0x29, 0x07, 0
Channels channels; Channels channels;
uint8_t xorHash(uint8_t *p, size_t len) uint8_t xorHash(const uint8_t *p, size_t len)
{ {
uint8_t code = 0; uint8_t code = 0;
for (int i = 0; i < len; i++) for (int i = 0; i < len; i++)
@ -18,6 +18,26 @@ uint8_t xorHash(uint8_t *p, size_t len)
return code; return code;
} }
/** Given a channel number, return the (0 to 255) hash for that channel.
* The hash is just an xor of the channel name followed by the channel PSK being used for encryption
* If no suitable channel could be found, return -1
*/
int16_t Channels::generateHash(ChannelIndex channelNum)
{
auto k = getKey(channelNum);
if (k.length < 0)
return -1; // invalid
else {
Channel &c = getByIndex(channelNum);
uint8_t h = xorHash((const uint8_t *)c.settings.name, strlen(c.settings.name));
h ^= xorHash(k.bytes, k.length);
return h;
}
}
/** /**
* Validate a channel, fixing any errors as needed * Validate a channel, fixing any errors as needed
*/ */
@ -75,51 +95,69 @@ void Channels::initDefaultChannel(ChannelIndex chIndex)
ch.role = Channel_Role_PRIMARY; ch.role = Channel_Role_PRIMARY;
} }
/** Given a channel index, change to use the crypto key specified by that index CryptoKey Channels::getKey(ChannelIndex chIndex)
*/
void Channels::setCrypto(ChannelIndex chIndex)
{ {
Channel &ch = getByIndex(chIndex); Channel &ch = getByIndex(chIndex);
ChannelSettings &channelSettings = ch.settings; ChannelSettings &channelSettings = ch.settings;
assert(ch.has_settings); assert(ch.has_settings);
memset(activePSK, 0, sizeof(activePSK)); // In case the user provided a short key, we want to pad the rest with zeros CryptoKey k;
memcpy(activePSK, channelSettings.psk.bytes, channelSettings.psk.size); memset(k.bytes, 0, sizeof(k.bytes)); // In case the user provided a short key, we want to pad the rest with zeros
activePSKSize = channelSettings.psk.size;
if (activePSKSize == 0) {
if (ch.role == Channel_Role_SECONDARY) {
DEBUG_MSG("Unset PSK for secondary channel %s. using primary key\n", ch.settings.name);
setCrypto(primaryIndex);
} else
DEBUG_MSG("Warning: User disabled encryption\n");
} else if (activePSKSize == 1) {
// Convert the short single byte variants of psk into variant that can be used more generally
uint8_t pskIndex = activePSK[0]; if (ch.role == Channel_Role_DISABLED) {
DEBUG_MSG("Expanding short PSK #%d\n", pskIndex); k.length = -1; // invalid
if (pskIndex == 0) } else {
activePSKSize = 0; // Turn off encryption memcpy(k.bytes, channelSettings.psk.bytes, channelSettings.psk.size);
else { k.length = channelSettings.psk.size;
memcpy(activePSK, defaultpsk, sizeof(defaultpsk)); if (k.length == 0) {
activePSKSize = sizeof(defaultpsk); if (ch.role == Channel_Role_SECONDARY) {
// Bump up the last byte of PSK as needed DEBUG_MSG("Unset PSK for secondary channel %s. using primary key\n", ch.settings.name);
uint8_t *last = activePSK + sizeof(defaultpsk) - 1; k = getKey(primaryIndex);
*last = *last + pskIndex - 1; // index of 1 means no change vs defaultPSK } else
DEBUG_MSG("Warning: User disabled encryption\n");
} else if (k.length == 1) {
// Convert the short single byte variants of psk into variant that can be used more generally
uint8_t pskIndex = k.bytes[0];
DEBUG_MSG("Expanding short PSK #%d\n", pskIndex);
if (pskIndex == 0)
k.length = 0; // Turn off encryption
else {
memcpy(k.bytes, defaultpsk, sizeof(defaultpsk));
k.length = sizeof(defaultpsk);
// Bump up the last byte of PSK as needed
uint8_t *last = k.bytes + sizeof(defaultpsk) - 1;
*last = *last + pskIndex - 1; // index of 1 means no change vs defaultPSK
}
} else if (k.length < 16) {
// Error! The user specified only the first few bits of an AES128 key. So by convention we just pad the rest of the
// key with zeros
DEBUG_MSG("Warning: User provided a too short AES128 key - padding\n");
k.length = 16;
} else if (k.length < 32 && k.length != 16) {
// Error! The user specified only the first few bits of an AES256 key. So by convention we just pad the rest of the
// key with zeros
DEBUG_MSG("Warning: User provided a too short AES256 key - padding\n");
k.length = 32;
} }
} else if (activePSKSize < 16) {
// Error! The user specified only the first few bits of an AES128 key. So by convention we just pad the rest of the key
// with zeros
DEBUG_MSG("Warning: User provided a too short AES128 key - padding\n");
activePSKSize = 16;
} else if (activePSKSize < 32 && activePSKSize != 16) {
// Error! The user specified only the first few bits of an AES256 key. So by convention we just pad the rest of the key
// with zeros
DEBUG_MSG("Warning: User provided a too short AES256 key - padding\n");
activePSKSize = 32;
} }
// Tell our crypto engine about the psk return k;
crypto->setKey(activePSKSize, activePSK); }
/** Given a channel index, change to use the crypto key specified by that index
*/
int16_t Channels::setCrypto(ChannelIndex chIndex)
{
CryptoKey k = getKey(chIndex);
if (k.length < 0)
return -1;
else {
// Tell our crypto engine about the psk
crypto->setKey(k);
return getHash(chIndex);
}
} }
void Channels::initDefaults() void Channels::initDefaults()
@ -139,8 +177,6 @@ void Channels::onConfigChanged()
if (ch.role == Channel_Role_PRIMARY) if (ch.role == Channel_Role_PRIMARY)
primaryIndex = i; primaryIndex = i;
} }
setCrypto(primaryIndex); // FIXME: for the time being (still single channel - just use our only channel as the crypto key)
} }
Channel &Channels::getByIndex(ChannelIndex chIndex) Channel &Channels::getByIndex(ChannelIndex chIndex)
@ -207,7 +243,6 @@ their nodes
* *
* Where X is either: * Where X is either:
* (for custom PSKS) a letter from A to Z (base26), and formed by xoring all the bytes of the PSK together, * (for custom PSKS) a letter from A to Z (base26), and formed by xoring all the bytes of the PSK together,
* OR (for the standard minimially secure PSKs) a number from 0 to 9.
* *
* This function will also need to be implemented in GUI apps that talk to the radio. * This function will also need to be implemented in GUI apps that talk to the radio.
* *
@ -219,14 +254,14 @@ const char *Channels::getPrimaryName()
char suffix; char suffix;
auto channelSettings = getPrimary(); auto channelSettings = getPrimary();
if (channelSettings.psk.size != 1) { // if (channelSettings.psk.size != 1) {
// We have a standard PSK, so generate a letter based hash. // We have a standard PSK, so generate a letter based hash.
uint8_t code = xorHash(activePSK, activePSKSize); uint8_t code = getHash(primaryIndex);
suffix = 'A' + (code % 26); suffix = 'A' + (code % 26);
} else { /* } else {
suffix = '0' + channelSettings.psk.bytes[0]; suffix = '0' + channelSettings.psk.bytes[0];
} } */
snprintf(buf, sizeof(buf), "#%s-%c", channelSettings.name, suffix); snprintf(buf, sizeof(buf), "#%s-%c", channelSettings.name, suffix);
return buf; return buf;
@ -238,7 +273,10 @@ const char *Channels::getPrimaryName()
* *
* @return -1 if no suitable channel could be found, otherwise returns the channel index * @return -1 if no suitable channel could be found, otherwise returns the channel index
*/ */
int16_t Channels::setActiveByHash(ChannelHash channelHash) {} int16_t Channels::setActiveByHash(ChannelHash channelHash)
{
// fixme cant work;
}
/** Given a channel index setup crypto for encoding that channel (or the primary channel if that channel is unsecured) /** Given a channel index setup crypto for encoding that channel (or the primary channel if that channel is unsecured)
* *
@ -246,9 +284,7 @@ int16_t Channels::setActiveByHash(ChannelHash channelHash) {}
* *
* @eturn the (0 to 255) hash for that channel - if no suitable channel could be found, return -1 * @eturn the (0 to 255) hash for that channel - if no suitable channel could be found, return -1
*/ */
int16_t Channels::setActiveByIndex(ChannelIndex channelIndex) {} int16_t Channels::setActiveByIndex(ChannelIndex channelIndex)
{
/** Given a channel number, return the (0 to 255) hash for that channel return setCrypto(channelIndex);
* If no suitable channel could be found, return -1 }
*/
ChannelHash Channels::generateHash(ChannelIndex channelNum) {}

29
src/mesh/Channels.h
View File

@ -2,6 +2,7 @@
#include "mesh-pb-constants.h" #include "mesh-pb-constants.h"
#include <Arduino.h> #include <Arduino.h>
#include "CryptoEngine.h"
/** A channel number (index into the channel table) /** A channel number (index into the channel table)
*/ */
@ -23,12 +24,8 @@ class Channels
no sending or receiving will be allowed */ no sending or receiving will be allowed */
ChannelIndex activeChannelIndex = 0; ChannelIndex activeChannelIndex = 0;
/// The in-use psk - which has been constructed based on the (possibly short psk) in channelSettings /// the precomputed hashes for each of our channels, or -1 for invalid
uint8_t activePSK[32]; int16_t hashes[MAX_NUM_CHANNELS];
uint8_t activePSKSize = 0;
/// the precomputed hashes for each of our channels
ChannelHash hashes[MAX_NUM_CHANNELS];
public: public:
const ChannelSettings &getPrimary() { return getByIndex(getPrimaryIndex()).settings; } const ChannelSettings &getPrimary() { return getByIndex(getPrimaryIndex()).settings; }
@ -87,21 +84,24 @@ class Channels
*/ */
int16_t setActiveByIndex(ChannelIndex channelIndex); int16_t setActiveByIndex(ChannelIndex channelIndex);
/** return the channel hash we are currently using for sending */
ChannelHash getActiveHash();
private: private:
/** Given a channel index, change to use the crypto key specified by that index /** Given a channel index, change to use the crypto key specified by that index
*
* @eturn the (0 to 255) hash for that channel - if no suitable channel could be found, return -1
*/ */
void setCrypto(ChannelIndex chIndex); int16_t setCrypto(ChannelIndex chIndex);
/** Return the channel index for the specified channel hash, or -1 for not found */ /** Return the channel index for the specified channel hash, or -1 for not found */
int8_t getIndexByHash(ChannelHash channelHash); int8_t getIndexByHash(ChannelHash channelHash);
/** Given a channel number, return the (0 to 255) hash for that channel /** Given a channel number, return the (0 to 255) hash for that channel
* If no suitable channel could be found, return -1 * If no suitable channel could be found, return -1
*
* called by fixupChannel when a new channel is set
*/ */
ChannelHash generateHash(ChannelIndex channelNum); int16_t generateHash(ChannelIndex channelNum);
int16_t getHash(ChannelIndex i) { return hashes[i]; }
/** /**
* Validate a channel, fixing any errors as needed * Validate a channel, fixing any errors as needed
@ -112,6 +112,13 @@ class Channels
* Write a default channel to the specified channel index * Write a default channel to the specified channel index
*/ */
void initDefaultChannel(ChannelIndex chIndex); void initDefaultChannel(ChannelIndex chIndex);
/**
* Return the key used for encrypting this channel (if channel is secondary and no key provided, use the primary channel's PSK)
*/
CryptoKey getKey(ChannelIndex chIndex);
}; };
/// Singleton channel table /// Singleton channel table

5
src/mesh/CryptoEngine.cpp
View File

@ -1,9 +1,10 @@
#include "CryptoEngine.h" #include "CryptoEngine.h"
#include "configuration.h" #include "configuration.h"
void CryptoEngine::setKey(size_t numBytes, uint8_t *bytes) void CryptoEngine::setKey(const CryptoKey &k)
{ {
DEBUG_MSG("WARNING: Using stub crypto - all crypto is sent in plaintext!\n"); DEBUG_MSG("Installing AES%d key!\n", k.length * 8);
key = k;
} }
/** /**

11
src/mesh/CryptoEngine.h
View File

@ -2,6 +2,13 @@
#include <Arduino.h> #include <Arduino.h>
struct CryptoKey {
uint8_t bytes[32];
/// # of bytes, or -1 to mean "invalid key - do not use"
int8_t length;
};
/** /**
* see docs/software/crypto.md for details. * see docs/software/crypto.md for details.
* *
@ -15,6 +22,8 @@ class CryptoEngine
/** Our per packet nonce */ /** Our per packet nonce */
uint8_t nonce[16]; uint8_t nonce[16];
CryptoKey key;
public: public:
virtual ~CryptoEngine() {} virtual ~CryptoEngine() {}
@ -27,7 +36,7 @@ class CryptoEngine
* @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the * @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the
* provided pointer) * provided pointer)
*/ */
virtual void setKey(size_t numBytes, uint8_t *bytes); virtual void setKey(const CryptoKey &k);
/** /**
* Encrypt a packet * Encrypt a packet

27
src/nrf52/NRF52CryptoEngine.cpp
View File

@ -6,30 +6,13 @@
class NRF52CryptoEngine : public CryptoEngine class NRF52CryptoEngine : public CryptoEngine
{ {
/// How many bytes in our key
uint8_t keySize = 0;
const uint8_t *keyBytes;
public: public:
NRF52CryptoEngine() {} NRF52CryptoEngine() {}
~NRF52CryptoEngine() {} ~NRF52CryptoEngine() {}
/**
* Set the key used for encrypt, decrypt.
*
* As a special case: If all bytes are zero, we assume _no encryption_ and send all data in cleartext.
*
* @param numBytes must be 16 (AES128), 32 (AES256) or 0 (no crypt)
* @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the
* provided pointer)
*/
virtual void setKey(size_t numBytes, uint8_t *bytes)
{
keySize = numBytes;
keyBytes = bytes;
}
/** /**
* Encrypt a packet * Encrypt a packet
* *
@ -39,11 +22,11 @@ class NRF52CryptoEngine : public CryptoEngine
{ {
// DEBUG_MSG("NRF52 encrypt!\n"); // DEBUG_MSG("NRF52 encrypt!\n");
if (keySize != 0) { if (key.length > 0) {
ocrypto_aes_ctr_ctx ctx; ocrypto_aes_ctr_ctx ctx;
initNonce(fromNode, packetNum); initNonce(fromNode, packetNum);
ocrypto_aes_ctr_init(&ctx, keyBytes, keySize, nonce); ocrypto_aes_ctr_init(&ctx, key.bytes, key.length, nonce);
ocrypto_aes_ctr_encrypt(&ctx, bytes, bytes, numBytes); ocrypto_aes_ctr_encrypt(&ctx, bytes, bytes, numBytes);
} }
@ -53,11 +36,11 @@ class NRF52CryptoEngine : public CryptoEngine
{ {
// DEBUG_MSG("NRF52 decrypt!\n"); // DEBUG_MSG("NRF52 decrypt!\n");
if (keySize != 0) { if (key.length > 0) {
ocrypto_aes_ctr_ctx ctx; ocrypto_aes_ctr_ctx ctx;
initNonce(fromNode, packetNum); initNonce(fromNode, packetNum);
ocrypto_aes_ctr_init(&ctx, keyBytes, keySize, nonce); ocrypto_aes_ctr_init(&ctx, key.bytes, key.length, nonce);
ocrypto_aes_ctr_decrypt(&ctx, bytes, bytes, numBytes); ocrypto_aes_ctr_decrypt(&ctx, bytes, bytes, numBytes);
} }

11
src/portduino/CrossPlatformCryptoEngine.cpp
View File

@ -10,9 +10,6 @@ class CrossPlatformCryptoEngine : public CryptoEngine
CTRCommon *ctr = NULL; CTRCommon *ctr = NULL;
/// How many bytes in our key
uint8_t keySize = 0;
public: public:
CrossPlatformCryptoEngine() {} CrossPlatformCryptoEngine() {}
@ -27,9 +24,9 @@ class CrossPlatformCryptoEngine : public CryptoEngine
* @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the * @param bytes a _static_ buffer that will remain valid for the life of this crypto instance (i.e. this class will cache the
* provided pointer) * provided pointer)
*/ */
virtual void setKey(size_t numBytes, uint8_t *bytes) virtual void setKey(const CryptoKey &k)
{ {
keySize = numBytes; CryptoEngine::setKey(k);
DEBUG_MSG("Installing AES%d key!\n", numBytes * 8); DEBUG_MSG("Installing AES%d key!\n", numBytes * 8);
if (ctr) { if (ctr) {
delete ctr; delete ctr;
@ -41,7 +38,7 @@ class CrossPlatformCryptoEngine : public CryptoEngine
else else
ctr = new CTR<AES256>(); ctr = new CTR<AES256>();
ctr->setKey(bytes, numBytes); ctr->setKey(key.bytes, key.length);
} }
} }
@ -52,7 +49,7 @@ class CrossPlatformCryptoEngine : public CryptoEngine
*/ */
virtual void encrypt(uint32_t fromNode, uint64_t packetNum, size_t numBytes, uint8_t *bytes) virtual void encrypt(uint32_t fromNode, uint64_t packetNum, size_t numBytes, uint8_t *bytes)
{ {
if (keySize != 0) { if (key.length > 0) {
uint8_t stream_block[16]; uint8_t stream_block[16];
static uint8_t scratch[MAX_BLOCKSIZE]; static uint8_t scratch[MAX_BLOCKSIZE];
size_t nc_off = 0; size_t nc_off = 0;