/* Serval Distributed Numbering Architecture (DNA) Copyright (C) 2010 Paul Gardner-Stephen This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #include "serval.h" #include "rhizome.h" #include char hexdigit[16] = {'0','1','2','3','4','5','6','7','8','9','A','B','C','D','E','F'}; static inline int _is_xsubstring(const char *text, int len) { while (len--) if (!isxdigit(*text++)) return 0; return 1; } static inline int _is_xstring(const char *text, int len) { while (len--) if (!isxdigit(*text++)) return 0; return *text == '\0'; } /* Return true iff 'len' bytes starting at 'text' are hex digits, upper or lower case. Does not check the following byte. @author Andrew Bettison */ int is_xsubstring(const char *text, int len) { return _is_xsubstring(text, len); } /* Return true iff the nul-terminated string 'text' has length 'len' and consists only of hex digits, upper or lower case. @author Andrew Bettison */ int is_xstring(const char *text, int len) { return _is_xstring(text, len); } char *tohex(char *dstHex, const unsigned char *srcBinary, size_t bytes) { char *p; for (p = dstHex; bytes--; ++srcBinary) { *p++ = hexdigit[*srcBinary >> 4]; *p++ = hexdigit[*srcBinary & 0xf]; } *p = '\0'; return dstHex; } /* Convert nbinary*2 ASCII hex characters [0-9A-Fa-f] to nbinary bytes of data. Can be used to perform the conversion in-place, eg, fromhex(buf, (char*)buf, n); Returns -1 if a non-hex-digit character is encountered, otherwise returns the number of binary bytes produced (= nbinary). @author Andrew Bettison */ size_t fromhex(unsigned char *dstBinary, const char *srcHex, size_t nbinary) { size_t count = 0; while (count != nbinary) { unsigned char high = hexvalue(*srcHex++); if (high & 0xf0) return -1; unsigned char low = hexvalue(*srcHex++); if (low & 0xf0) return -1; dstBinary[count++] = (high << 4) + low; } return count; } /* Convert nbinary*2 ASCII hex characters [0-9A-Fa-f] followed by a nul '\0' character to nbinary bytes of data. Can be used to perform the conversion in-place, eg, fromhex(buf, (char*)buf, n); Returns -1 if a non-hex-digit character is encountered or the character immediately following the last hex digit is not a nul, otherwise returns zero. @author Andrew Bettison */ int fromhexstr(unsigned char *dstBinary, const char *srcHex, size_t nbinary) { return (fromhex(dstBinary, srcHex, nbinary) == nbinary && srcHex[nbinary * 2] == '\0') ? 0 : -1; } int rhizome_strn_is_manifest_id(const char *id) { return _is_xsubstring(id, RHIZOME_MANIFEST_ID_STRLEN); } int rhizome_str_is_manifest_id(const char *id) { return _is_xstring(id, RHIZOME_MANIFEST_ID_STRLEN); } int rhizome_strn_is_bundle_key(const char *key) { return _is_xsubstring(key, RHIZOME_BUNDLE_KEY_STRLEN); } int rhizome_str_is_bundle_key(const char *key) { return _is_xstring(key, RHIZOME_BUNDLE_KEY_STRLEN); } int rhizome_strn_is_bundle_crypt_key(const char *key) { return _is_xsubstring(key, RHIZOME_CRYPT_KEY_STRLEN); } int rhizome_str_is_bundle_crypt_key(const char *key) { return _is_xstring(key, RHIZOME_CRYPT_KEY_STRLEN); } int rhizome_strn_is_file_hash(const char *hash) { return _is_xsubstring(hash, RHIZOME_FILEHASH_STRLEN); } int rhizome_str_is_file_hash(const char *hash) { return _is_xstring(hash, RHIZOME_FILEHASH_STRLEN); } int extractDid(unsigned char *packet,int *ofs,char *did) { int d=0; int highP=1; int nybl; nybl=0; while(nybl!=0xf&&(*ofs<(OFS_SIDDIDFIELD+SIDDIDFIELD_LEN))&&(d<64)) { if (highP) nybl=packet[*ofs]>>4; else nybl=packet[*ofs]&0xf; if (nybl<0xa) did[d++]='0'+nybl; else switch(nybl) { case 0xa: did[d++]='*'; break; case 0xb: did[d++]='#'; break; case 0xc: did[d++]='+'; break; } if (highP) highP=0; else { (*ofs)++; highP=1; } } if (d>63) return WHY("DID too long"); did[d]=0; return 0; } int stowDid(unsigned char *packet,int *ofs,char *did) { int highP=1; int nybl; int d=0; int len=0; if (debug&DEBUG_PACKETFORMATS) printf("Packing DID \"%s\"\n",did); while(did[d]&&(d=DID_MAXSIZE) { WHY("DID number too long"); return -1; } /* Append end of number code, filling the whole byte for fast and easy comparison */ if (highP) packet[(*ofs)++]=0xff; else packet[(*ofs)++]|=0x0f; len++; /* Fill remainder of field with randomness to protect any encryption */ for(;len= '0' && c <= '9') return c - '0'; if (c >= 'A' && c <= 'F') return c - 'A' + 10; if (c >= 'a' && c <= 'f') return c - 'a' + 10; return -1; } int packetGetID(unsigned char *packet,int len,char *did,char *sid) { int ofs=HEADERFIELDS_LEN; switch(packet[ofs]) { case 0: /* DID */ ofs++; if (extractDid(packet,&ofs,did)) return WHY("Could not decode DID"); if (debug&DEBUG_PACKETFORMATS) fprintf(stderr,"Decoded DID as %s\n",did); return 0; break; case 1: /* SID */ ofs++; if (len<(OFS_SIDDIDFIELD+SID_SIZE)) return WHY("Packet too short"); if (extractSid(packet,&ofs,sid)) return WHY("Could not decode SID"); return 0; break; default: /* no idea */ return WHY("Unknown ID key"); break; } return WHY("Impossible event #1 just occurred"); } /* One of the goals of our packet format is to make it very difficult to mount a known plain-text attack against the ciphered part of the packet. One defence is to make sure that no fixed fields are actually left zero. We accomplish this by filling "zero" fields with randomised data that meets a simple test condition. We have chosen to use the condition that if the modulo 256 sum of the bytes equals zero, then the packet is assumed to be zero/empty. The following two functions allow us to test this, and also to fill a field with safe "zero" data. */ int isFieldZeroP(unsigned char *packet,int start,int count) { int mod=0; int i; for(i=start;i