1 /*
2 * Copyright (C) 2021 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "pake_message_util.h"
17 #include "das_task_common.h"
18 #include "hc_log.h"
19 #include "json_utils.h"
20 #include "pake_base_cur_task.h"
21 #include "protocol_common.h"
22 #include "string_util.h"
23
PackagePakeRequestData(const PakeParams * params,CJson * payload)24 int32_t PackagePakeRequestData(const PakeParams *params, CJson *payload)
25 {
26 // The value of is256ModSupported is true, when only 256 mode is supported
27 bool is256ModSupported =
28 (((uint32_t)params->baseParams.supportedDlPrimeMod | DL_PRIME_MOD_256) == DL_PRIME_MOD_256);
29 if (AddBoolToJson(payload, FIELD_SUPPORT_256_MOD, is256ModSupported) != HC_SUCCESS) {
30 LOGE("Add is256ModSupported failed.");
31 return HC_ERR_JSON_ADD;
32 }
33 if (AddIntToJson(payload, FIELD_OPERATION_CODE, params->opCode) != HC_SUCCESS) {
34 LOGE("Add opCode failed.");
35 return HC_ERR_JSON_ADD;
36 }
37 if (params->opCode == AUTHENTICATE || params->opCode == OP_UNBIND) {
38 if (AddStringToJson(payload, FIELD_PKG_NAME, params->packageName) != HC_SUCCESS) {
39 LOGE("Add packageName failed.");
40 return HC_ERR_JSON_ADD;
41 }
42 if (AddStringToJson(payload, FIELD_SERVICE_TYPE, params->serviceType) != HC_SUCCESS) {
43 LOGE("Add serviceType failed.");
44 return HC_ERR_JSON_ADD;
45 }
46 if (AddIntToJson(payload, FIELD_PEER_USER_TYPE, params->userType) != HC_SUCCESS) {
47 LOGE("Add userType failed.");
48 return HC_ERR_JSON_ADD;
49 }
50 }
51 return HC_SUCCESS;
52 }
53
ParsePakeRequestMessage(PakeParams * params,const CJson * in)54 int32_t ParsePakeRequestMessage(PakeParams *params, const CJson *in)
55 {
56 bool is256ModSupported = true;
57 if (GetBoolFromJson(in, FIELD_SUPPORT_256_MOD, &is256ModSupported) != HC_SUCCESS) {
58 LOGE("Get is256ModSupported failed.");
59 return HC_ERR_JSON_GET;
60 }
61 params->baseParams.supportedDlPrimeMod = is256ModSupported ?
62 (params->baseParams.supportedDlPrimeMod & DL_PRIME_MOD_256) :
63 (params->baseParams.supportedDlPrimeMod & DL_PRIME_MOD_384);
64
65 /*
66 * opCode: OP_UNBIND, pake v1: don't need returnKey, use default 0 length
67 * opCode: OP_UNBIND, pake v2: don't need returnKey, use default 0 length
68 * opCode: OP_BIND, pake v1: use default 32 length
69 * opCode: OP_BIND, pake v2: don't need returnKey, use default 0 length
70 * Therefore, only params->opCode == AUTHENTICATE or AUTH_KEY_AGREEMENT, need to get keyLen from message
71 */
72 if (params->opCode == AUTHENTICATE || params->opCode == AUTH_KEY_AGREEMENT) {
73 int32_t res = GetAndCheckKeyLenOnServer(in, params->returnKey.length);
74 if (res != HC_SUCCESS) {
75 LOGE("GetAndCheckKeyLenOnServer failed, res: %d.", res);
76 return res;
77 }
78 }
79
80 return HC_SUCCESS;
81 }
82
PackagePakeResponseData(const PakeParams * params,CJson * payload)83 int32_t PackagePakeResponseData(const PakeParams *params, CJson *payload)
84 {
85 int32_t res = AddByteToJson(payload, FIELD_SALT, params->baseParams.salt.val, params->baseParams.salt.length);
86 if (res != HC_SUCCESS) {
87 LOGE("Add salt failed, res: %d.", res);
88 return res;
89 }
90 res = AddByteToJson(payload, FIELD_EPK, params->baseParams.epkSelf.val, params->baseParams.epkSelf.length);
91 if (res != HC_SUCCESS) {
92 LOGE("Add epkSelf failed, res: %d.", res);
93 return res;
94 }
95 if (params->opCode == AUTHENTICATE || params->opCode == OP_UNBIND) {
96 res = AddByteToJson(payload, FIELD_NONCE, params->nonce.val, params->nonce.length);
97 if (res != HC_SUCCESS) {
98 LOGE("Add nonce failed, res: %d.", res);
99 return res;
100 }
101 res = AddIntToJson(payload, FIELD_PEER_USER_TYPE, params->userType);
102 if (res != HC_SUCCESS) {
103 LOGE("Add userType failed, res: %d.", res);
104 return res;
105 }
106 }
107 return res;
108 }
109
GetDasEpkPeerFromJson(PakeParams * params,const CJson * in)110 static int32_t GetDasEpkPeerFromJson(PakeParams *params, const CJson *in)
111 {
112 const char *epkPeerHex = GetStringFromJson(in, FIELD_EPK);
113 if (epkPeerHex == NULL) {
114 LOGE("Get epkPeerHex failed.");
115 return HC_ERR_JSON_GET;
116 }
117 int res = InitSingleParam(&(params->baseParams.epkPeer), HcStrlen(epkPeerHex) / BYTE_TO_HEX_OPER_LENGTH);
118 if (res != HC_SUCCESS) {
119 LOGE("InitSingleParam for epkPeer failed, res: %d.", res);
120 return res;
121 }
122 res = HexStringToByte(epkPeerHex, params->baseParams.epkPeer.val, params->baseParams.epkPeer.length);
123 if (res != HC_SUCCESS) {
124 LOGE("Convert epkPeer from hex string to byte failed, res: %d.", res);
125 return res;
126 }
127 return res;
128 }
129
ParsePakeResponseMessage(PakeParams * params,const CJson * in)130 int32_t ParsePakeResponseMessage(PakeParams *params, const CJson *in)
131 {
132 int32_t res = GetByteFromJson(in, FIELD_SALT, params->baseParams.salt.val, params->baseParams.salt.length);
133 if (res != HC_SUCCESS) {
134 LOGE("Get salt failed, res: %d.", res);
135 return res;
136 }
137 res = GetDasEpkPeerFromJson(params, in);
138 if (res != HC_SUCCESS) {
139 LOGE("GetDasEpkPeerFromJson failed, res: %d.", res);
140 return res;
141 }
142 if (params->opCode == AUTHENTICATE || params->opCode == OP_UNBIND) {
143 res = GetByteFromJson(in, FIELD_NONCE, params->nonce.val, params->nonce.length);
144 if (res != HC_SUCCESS) {
145 LOGE("Get nonce failed, res: %d.", res);
146 return res;
147 }
148 }
149
150 return res;
151 }
152
PackagePakeClientConfirmData(const PakeParams * params,CJson * payload)153 int32_t PackagePakeClientConfirmData(const PakeParams *params, CJson *payload)
154 {
155 int32_t res = AddByteToJson(payload, FIELD_EPK, params->baseParams.epkSelf.val, params->baseParams.epkSelf.length);
156 if (res != HC_SUCCESS) {
157 LOGE("Add epkSelf failed, res: %d.", res);
158 return res;
159 }
160 res = AddByteToJson(payload, FIELD_KCF_DATA, params->baseParams.kcfData.val, params->baseParams.kcfData.length);
161 if (res != HC_SUCCESS) {
162 LOGE("Add kcfData failed, res: %d.", res);
163 return res;
164 }
165
166 return res;
167 }
168
ParsePakeClientConfirmMessage(PakeParams * params,const CJson * in)169 int32_t ParsePakeClientConfirmMessage(PakeParams *params, const CJson *in)
170 {
171 int32_t res = GetByteFromJson(in, FIELD_KCF_DATA, params->baseParams.kcfDataPeer.val,
172 params->baseParams.kcfDataPeer.length);
173 if (res != HC_SUCCESS) {
174 LOGE("Get kcfDataPeer failed, res: %d.", res);
175 return res;
176 }
177 res = GetDasEpkPeerFromJson(params, in);
178 if (res != HC_SUCCESS) {
179 LOGE("GetDasEpkPeerFromJson failed, res: %d.", res);
180 return res;
181 }
182 return res;
183 }
184
PackagePakeServerConfirmData(const PakeParams * params,CJson * payload)185 int32_t PackagePakeServerConfirmData(const PakeParams *params, CJson *payload)
186 {
187 int32_t res = AddByteToJson(payload, FIELD_KCF_DATA,
188 params->baseParams.kcfData.val, params->baseParams.kcfData.length);
189 if (res != HC_SUCCESS) {
190 LOGE("Add kcfData failed, res: %d.", res);
191 return res;
192 }
193 return res;
194 }
195
ParsePakeServerConfirmMessage(PakeParams * params,const CJson * in)196 int32_t ParsePakeServerConfirmMessage(PakeParams *params, const CJson *in)
197 {
198 int32_t res = GetByteFromJson(in, FIELD_KCF_DATA, params->baseParams.kcfDataPeer.val,
199 params->baseParams.kcfDataPeer.length);
200 if (res != HC_SUCCESS) {
201 LOGE("Get kcfDataPeer failed, res: %d.", res);
202 return res;
203 }
204 return res;
205 }