| /* |
| * |
| * Copyright (c) 2020 Project CHIP Authors |
| * Copyright (c) 2013-2017 Nest Labs, Inc. |
| * All rights reserved. |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| |
| /** |
| * @file |
| * This file implements the CHIP Connection object that maintains a UDP connection. |
| * TODO This class should be extended to support TCP as well... |
| * |
| */ |
| |
| #include <string.h> |
| #include <support/CodeUtils.h> |
| #include <support/logging/CHIPLogging.h> |
| #include <transport/SecurePairingSession.h> |
| #include <transport/SecureSessionMgr.h> |
| |
| #include <inttypes.h> |
| |
| namespace chip { |
| |
| using Transport::PeerAddress; |
| using Transport::PeerConnectionState; |
| |
| // Maximum length of application data that can be encrypted as one block. |
| // The limit is derived from IPv6 MTU (1280 bytes) - expected header overheads. |
| // This limit would need additional reviews once we have formalized Secure Transport header. |
| // |
| // TODO: this should be checked within the transport message sending instead of the session management layer. |
| static const size_t kMax_SecureSDU_Length = 1024; |
| |
| SecureSessionMgrBase::SecureSessionMgrBase() : mState(State::kNotReady) {} |
| |
| SecureSessionMgrBase::~SecureSessionMgrBase() |
| { |
| CancelExpiryTimer(); |
| |
| if (mCB != nullptr) |
| { |
| mCB->Release(); |
| } |
| |
| if (mTransport) |
| { |
| mTransport->Release(); |
| } |
| } |
| |
| CHIP_ERROR SecureSessionMgrBase::InitInternal(NodeId localNodeId, System::Layer * systemLayer, Transport::Base * transport) |
| { |
| if (mTransport) |
| { |
| mTransport->Release(); |
| mTransport = nullptr; |
| } |
| |
| CHIP_ERROR err = CHIP_NO_ERROR; |
| VerifyOrExit(mState == State::kNotReady, err = CHIP_ERROR_INCORRECT_STATE); |
| |
| mState = State::kInitialized; |
| mLocalNodeId = localNodeId; |
| mSystemLayer = systemLayer; |
| mTransport = transport->Retain(); |
| |
| mTransport->SetMessageReceiveHandler(HandleDataReceived, this); |
| mPeerConnections.SetConnectionExpiredHandler(HandleConnectionExpired, this); |
| |
| ScheduleExpiryTimer(); |
| |
| exit: |
| return err; |
| } |
| |
| CHIP_ERROR SecureSessionMgrBase::SendMessage(NodeId peerNodeId, System::PacketBuffer * msgBuf) |
| { |
| CHIP_ERROR err = CHIP_NO_ERROR; |
| PeerConnectionState * state = nullptr; |
| |
| VerifyOrExit(mState == State::kInitialized, err = CHIP_ERROR_INCORRECT_STATE); |
| |
| VerifyOrExit(msgBuf != NULL, err = CHIP_ERROR_INVALID_ARGUMENT); |
| VerifyOrExit(msgBuf->Next() == NULL, err = CHIP_ERROR_INVALID_MESSAGE_LENGTH); |
| VerifyOrExit(msgBuf->TotalLength() < kMax_SecureSDU_Length, err = CHIP_ERROR_INVALID_MESSAGE_LENGTH); |
| |
| // Find an active connection to the specified peer node |
| VerifyOrExit(mPeerConnections.FindPeerConnectionState(peerNodeId, &state), err = CHIP_ERROR_INVALID_DESTINATION_NODE_ID); |
| |
| // This marks any connection where we send data to as 'active' |
| mPeerConnections.MarkConnectionActive(state); |
| |
| { |
| uint8_t * data = nullptr; |
| MessageHeader header; |
| const size_t headerSize = header.EncryptedHeaderSizeBytes(); |
| size_t actualEncodedHeaderSize; |
| size_t totalLen = 0; |
| size_t taglen = 0; |
| |
| header |
| .SetSourceNodeId(mLocalNodeId) // |
| .SetDestinationNodeId(peerNodeId) // |
| .SetMessageId(state->GetSendMessageIndex()) // |
| .SetEncryptionKeyID(state->GetLocalKeyID()) // |
| .SetPayloadLength(headerSize + msgBuf->TotalLength()); |
| |
| VerifyOrExit(msgBuf->EnsureReservedSize(headerSize), err = CHIP_ERROR_NO_MEMORY); |
| |
| msgBuf->SetStart(msgBuf->Start() - headerSize); |
| data = msgBuf->Start(); |
| totalLen = msgBuf->TotalLength(); |
| |
| err = header.EncodeEncryptedHeader(data, totalLen, &actualEncodedHeaderSize); |
| SuccessOrExit(err); |
| |
| err = state->GetSecureSession().Encrypt(data, totalLen, data, header); |
| SuccessOrExit(err); |
| |
| err = header.EncodeMACTag(&data[totalLen], kMaxTagLen, &taglen); |
| SuccessOrExit(err); |
| |
| msgBuf->SetDataLength(totalLen + taglen, NULL); |
| |
| ChipLogProgress(Inet, "Secure transport transmitting msg %u after encryption", state->GetSendMessageIndex()); |
| |
| err = mTransport->SendMessage(header, state->GetPeerAddress(), msgBuf); |
| msgBuf = NULL; |
| } |
| SuccessOrExit(err); |
| state->IncrementSendMessageIndex(); |
| |
| exit: |
| if (msgBuf != NULL) |
| { |
| const char * errStr = ErrorStr(err); |
| if (state == nullptr) |
| { |
| ChipLogProgress(Inet, "Secure transport could not find a valid PeerConnection: %s", errStr); |
| } |
| else |
| { |
| ChipLogProgress(Inet, "Secure transport failed to encrypt msg %u: %s", state->GetSendMessageIndex(), errStr); |
| } |
| PacketBuffer::Free(msgBuf); |
| msgBuf = NULL; |
| } |
| |
| return err; |
| } |
| |
| CHIP_ERROR SecureSessionMgrBase::NewPairing(Optional<NodeId> peerNodeId, const Optional<Transport::PeerAddress> & peerAddr, |
| uint16_t peerKeyId, uint16_t localKeyId, SecurePairingSession * pairing) |
| { |
| CHIP_ERROR err = CHIP_NO_ERROR; |
| |
| PeerConnectionState * state = nullptr; |
| |
| // Find any existing connection with the same node and key ID |
| if (mPeerConnections.FindPeerConnectionState(peerNodeId, peerKeyId, &state)) |
| { |
| mPeerConnections.MarkConnectionExpired(state); |
| } |
| |
| ChipLogProgress(Inet, "New pairing for key %d!!", peerKeyId); |
| state = nullptr; |
| err = mPeerConnections.CreateNewPeerConnectionState(peerNodeId, peerKeyId, localKeyId, &state); |
| SuccessOrExit(err); |
| |
| if (peerAddr.HasValue()) |
| { |
| state->SetPeerAddress(peerAddr.Value()); |
| } |
| |
| if (state != nullptr) |
| { |
| err = pairing->DeriveSecureSession((const unsigned char *) kSpake2pI2RSessionInfo, strlen(kSpake2pI2RSessionInfo), |
| state->GetSecureSession()); |
| } |
| |
| exit: |
| return err; |
| } |
| |
| void SecureSessionMgrBase::ScheduleExpiryTimer(void) |
| { |
| CHIP_ERROR err = |
| mSystemLayer->StartTimer(CHIP_PEER_CONNECTION_TIMEOUT_CHECK_FREQUENCY_MS, SecureSessionMgrBase::ExpiryTimerCallback, this); |
| |
| VerifyOrDie(err == CHIP_NO_ERROR); |
| } |
| |
| void SecureSessionMgrBase::CancelExpiryTimer(void) |
| { |
| if (mSystemLayer != nullptr) |
| { |
| mSystemLayer->CancelTimer(SecureSessionMgrBase::ExpiryTimerCallback, this); |
| } |
| } |
| |
| void SecureSessionMgrBase::HandleDataReceived(MessageHeader & header, const PeerAddress & peerAddress, System::PacketBuffer * msg, |
| SecureSessionMgrBase * connection) |
| |
| { |
| CHIP_ERROR err = CHIP_NO_ERROR; |
| System::PacketBuffer * origMsg = nullptr; |
| PeerConnectionState * state = nullptr; |
| |
| VerifyOrExit(msg != nullptr, ChipLogError(Inet, "Secure transport received NULL packet, discarding")); |
| |
| if (!connection->mPeerConnections.FindPeerConnectionState(header.GetSourceNodeId(), header.GetEncryptionKeyID(), &state)) |
| { |
| ChipLogProgress(Inet, "Data received on an unknown connection (%d). Dropping it!!", header.GetEncryptionKeyID()); |
| ExitNow(err = CHIP_ERROR_KEY_NOT_FOUND_FROM_PEER); |
| } |
| |
| if (!state->GetPeerAddress().IsInitialized()) |
| { |
| state->SetPeerAddress(peerAddress); |
| } |
| |
| connection->mPeerConnections.MarkConnectionActive(state); |
| |
| // TODO this is where messages should be decoded |
| { |
| uint8_t * data = msg->Start(); |
| uint8_t * plainText = nullptr; |
| uint16_t len = msg->TotalLength(); |
| const size_t headerSize = header.EncryptedHeaderSizeBytes(); |
| size_t decodedSize = 0; |
| size_t taglen = 0; |
| #if CHIP_SYSTEM_CONFIG_USE_LWIP |
| /* This is a workaround for the case where PacketBuffer payload is not |
| allocated as an inline buffer to PacketBuffer structure */ |
| origMsg = msg; |
| msg = PacketBuffer::NewWithAvailableSize(len); |
| msg->SetDataLength(len, msg); |
| #endif |
| plainText = msg->Start(); |
| |
| err = header.DecodeMACTag(&data[header.GetPayloadLength()], kMaxTagLen, &taglen); |
| VerifyOrExit(err == CHIP_NO_ERROR, ChipLogProgress(Inet, "Secure transport failed to decode MAC Tag: err %d", err)); |
| len -= taglen; |
| msg->SetDataLength(len, NULL); |
| |
| err = state->GetSecureSession().Decrypt(data, len, plainText, header); |
| VerifyOrExit(err == CHIP_NO_ERROR, ChipLogProgress(Inet, "Secure transport failed to decrypt msg: err %d", err)); |
| |
| err = header.DecodeEncryptedHeader(plainText, headerSize, &decodedSize); |
| VerifyOrExit(err == CHIP_NO_ERROR, |
| ChipLogProgress(Inet, "Secure transport failed to decode encrypted header: err %d", err)); |
| VerifyOrExit(headerSize == decodedSize, |
| ChipLogProgress(Inet, "Secure transport decode encrypted header length mismatched")); |
| |
| msg->ConsumeHead(headerSize); |
| |
| if (connection->mCB != nullptr) |
| { |
| connection->mCB->OnMessageReceived(header, state, msg, connection); |
| msg = nullptr; |
| } |
| } |
| |
| exit: |
| if (origMsg != nullptr) |
| { |
| PacketBuffer::Free(origMsg); |
| } |
| |
| if (msg != nullptr) |
| { |
| PacketBuffer::Free(msg); |
| } |
| |
| if (err != CHIP_NO_ERROR && connection->mCB != nullptr) |
| { |
| connection->mCB->OnReceiveError(err, peerAddress, connection); |
| } |
| } |
| |
| void SecureSessionMgrBase::HandleConnectionExpired(const Transport::PeerConnectionState & state, SecureSessionMgrBase * mgr) |
| { |
| char addr[Transport::PeerAddress::kMaxToStringSize]; |
| state.GetPeerAddress().ToString(addr, sizeof(addr)); |
| |
| ChipLogProgress(Inet, "Connection from '%s' expired", addr); |
| } |
| |
| void SecureSessionMgrBase::ExpiryTimerCallback(System::Layer * layer, void * param, System::Error error) |
| { |
| SecureSessionMgrBase * mgr = reinterpret_cast<SecureSessionMgrBase *>(param); |
| mgr->mPeerConnections.ExpireInactiveConnections(CHIP_PEER_CONNECTION_TIMEOUT_MS); |
| mgr->ScheduleExpiryTimer(); // re-schedule the oneshot timer |
| } |
| |
| } // namespace chip |