/** * @file CryptoKeyBlob.cc * * Class for managing key blobs */ /****************************************************************************** * Copyright (c) 2010-2011, 2014 AllSeen Alliance. All rights reserved. * * Permission to use, copy, modify, and/or distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. ******************************************************************************/ #include #include #include #include #include #include #include #include #include #include using namespace std; using namespace qcc; #define QCC_MODULE "CRYPTO" namespace qcc { void KeyBlob::Erase() { if (blobType != EMPTY) { tag.clear(); memset(data, 0, size); delete [] data; blobType = EMPTY; data = NULL; size = 0; expiration.seconds = 0; role = NO_ROLE; } associationMode = ASSOCIATE_NONE; } void KeyBlob::Derive(const qcc::String& secret, size_t len, const Type initType) { if (initType != EMPTY) { Erase(); size = (uint16_t)len; data = new uint8_t[len]; role = NO_ROLE; associationMode = ASSOCIATE_NONE; blobType = initType; uint8_t* p = data; while (len) { static const char kb[] = "keyblob"; uint8_t digest[Crypto_SHA1::DIGEST_SIZE]; Crypto_SHA1 sha1; sha1.Init((const uint8_t*)secret.data(), secret.size()); sha1.Update((const uint8_t*)kb, sizeof(kb)); sha1.Update((const uint8_t*)&len, sizeof(len)); sha1.Update((const uint8_t*)&blobType, sizeof(blobType)); sha1.GetDigest(digest); if (len < sizeof(digest)) { memcpy(p, digest, len); len = 0; } else { memcpy(p, digest, sizeof(digest)); len -= sizeof(digest); p += sizeof(digest); } } } else { size = 0; data = NULL; role = NO_ROLE; blobType = EMPTY; associationMode = ASSOCIATE_NONE; } } void KeyBlob::Rand(const size_t len, const Type initType) { Erase(); if (initType != EMPTY) { blobType = initType; size = (uint16_t)len; data = new uint8_t[len]; Crypto_GetRandomBytes(data, len); } } QStatus KeyBlob::Set(const uint8_t* key, size_t len, Type initType) { if (!key) { return ER_BAD_ARG_1; } if (!len) { return ER_BAD_ARG_2; } if (initType >= INVALID) { return ER_BAD_ARG_3; } Erase(); if (initType != EMPTY) { blobType = initType; data = new uint8_t[len]; size = (uint16_t)len; memcpy(data, key, len); } return ER_OK; } #define EXPIRES_FLAG 0x80 #define VERSION_FLAG 0x40 #define HEADER_NODE 0x20 #define UNUSED_FLAG1 0x10 #define V0_MAX_TAG_LEN 0x3F QStatus KeyBlob::Store(qcc::Sink& sink) const { QStatus status; size_t pushed; uint16_t flags; /* Temporaries for endian-ness conversion */ uint16_t u16; uint64_t u64; if (version == 0) { flags = (uint16_t)(blobType << 8) | tag.size(); } else { /* flags format 8MSB: blob type, 8 bit: options */ flags = (uint16_t)(blobType << 8) | VERSION_FLAG | version; } if (expiration.seconds) { flags |= EXPIRES_FLAG; } if (version != 0) { if ((associationMode == ASSOCIATE_HEAD) || (associationMode == ASSOCIATE_BOTH)) { flags |= HEADER_NODE; } } u16 = htole16(flags); status = sink.PushBytes(&u16, sizeof(u16), pushed); if ((status == ER_OK) && (blobType != EMPTY)) { if (flags & EXPIRES_FLAG) { u64 = htole64(expiration.seconds); status = sink.PushBytes(&u64, sizeof(u64), pushed); if (status == ER_OK) { u16 = htole16(expiration.mseconds); status = sink.PushBytes(&u16, sizeof(u16), pushed); } } if (status == ER_OK) { if (version != 0) { uint8_t tagLen = tag.size(); status = sink.PushBytes(&tagLen, sizeof(tagLen), pushed); } } if (status == ER_OK) { status = sink.PushBytes(tag.data(), tag.size(), pushed); } if (status == ER_OK) { u16 = htole16(size); status = sink.PushBytes(&u16, sizeof(u16), pushed); } if (status == ER_OK) { status = sink.PushBytes(data, size, pushed); } if ((version != 0) && (status == ER_OK)) { uint8_t associationLen = 0; if ((associationMode == ASSOCIATE_MEMBER) || (associationMode == ASSOCIATE_BOTH)) { associationLen = GUID128::SIZE; } status = sink.PushBytes(&associationLen, sizeof(associationLen), pushed); if ((status == ER_OK) && (associationLen > 0)) { status = sink.PushBytes(association.GetBytes(), associationLen, pushed); } } } return status; } QStatus KeyBlob::Load(qcc::Source& source) { QStatus status; size_t pulled; uint32_t flags; /* Temporaries for endian-ness conversion */ uint16_t u16; uint64_t u64; /* * Clear out stale key data */ Erase(); status = source.PullBytes(&u16, sizeof(u16), pulled); flags = letoh16(u16); /* flags format 8MSB: blob type, 8 bit: options */ blobType = (Type) (flags >> 8); if (status == ER_OK) { if (blobType >= INVALID) { status = ER_CORRUPT_KEYBLOB; } if ((status == ER_OK) && (flags & HEADER_NODE)) { associationMode = ASSOCIATE_HEAD; } if ((status == ER_OK) && (flags & EXPIRES_FLAG)) { status = source.PullBytes(&u64, sizeof(u64), pulled); expiration.seconds = letoh64(u64); if (status == ER_OK) { status = source.PullBytes(&u16, sizeof(u16), pulled); expiration.mseconds = letoh16(u16); } } uint8_t kbVersion = 0; if ((status == ER_OK) && (flags & VERSION_FLAG)) { kbVersion = (uint8_t) flags & 0xF; } if (kbVersion == 0) { char tagBytes[V0_MAX_TAG_LEN + 1]; status = source.PullBytes(tagBytes, flags & V0_MAX_TAG_LEN, pulled); if (status == ER_OK) { tagBytes[pulled] = 0; tag.insert(0, tagBytes, pulled); } } else if (kbVersion == 1) { uint8_t tagLen = 0; status = source.PullBytes(&tagLen, sizeof(tagLen), pulled); if (status == ER_OK) { char* tagBytes = new char[tagLen + 1]; status = source.PullBytes(tagBytes, tagLen, pulled); if (status == ER_OK) { tagBytes[pulled] = 0; tag.insert(0, tagBytes, pulled); } delete [] tagBytes; } } if (status == ER_OK) { /* * Get size and check it makes sense */ status = source.PullBytes(&u16, sizeof(u16), pulled); size = letoh16(u16); if ((kbVersion == 0) && (size > 4096)) { status = ER_CORRUPT_KEYBLOB; } if (status == ER_OK) { data = new uint8_t[size]; status = source.PullBytes(data, size, pulled); if (status != ER_OK) { delete [] data; data = NULL; } } } if ((status == ER_OK) && (kbVersion > 0)) { /* * load the association len field. This is an optional field. */ uint8_t len = 0; status = source.PullBytes(&len, sizeof(len), pulled); if ((status == ER_OK) && (len > 0)) { if (len != GUID128::SIZE) { status = ER_CORRUPT_KEYBLOB; } if (status == ER_OK) { uint8_t*buf = new uint8_t[len]; status = source.PullBytes(buf, len, pulled); if (status == ER_OK) { association.SetBytes(buf); } delete [] buf; if (associationMode == ASSOCIATE_HEAD) { associationMode = ASSOCIATE_BOTH; } else { associationMode = ASSOCIATE_MEMBER; } } } } } if (status != ER_OK) { blobType = EMPTY; } return status; } KeyBlob::KeyBlob(const KeyBlob& other) { version = other.version; if (other.blobType != EMPTY) { data = new uint8_t[other.size]; memcpy(data, other.data, other.size); size = other.size; expiration = other.expiration; tag = other.tag; role = other.role; associationMode = other.associationMode; association = other.association; } else { data = NULL; size = 0; role = NO_ROLE; associationMode = ASSOCIATE_NONE; } blobType = other.blobType; } KeyBlob& KeyBlob::operator=(const KeyBlob& other) { if (this != &other) { assert(other.blobType < INVALID); Erase(); version = other.version; if (other.blobType != EMPTY) { data = new uint8_t[other.size]; memcpy(data, other.data, other.size); size = other.size; blobType = other.blobType; expiration = other.expiration; tag = other.tag; role = other.role; associationMode = other.associationMode; association = other.association; } } return *this; } size_t KeyBlob::Xor(const uint8_t* data, size_t len) { if ((blobType != EMPTY) && data && len) { size_t sz = min(static_cast(size), len); for (size_t i = 0; i < sz; ++i) { this->data[i] ^= data[i]; } return sz; } else { return 0; } } KeyBlob& KeyBlob::operator^=(const KeyBlob& other) { if ((other.blobType != EMPTY) && (blobType != EMPTY)) { Xor(other.data, other.size); } return *this; } bool KeyBlob::HasExpired() { if (expiration.seconds == 0) { return false; } Timespec now; GetTimeNow(&now); return expiration <= now; } }