Wireshark 4.7.0
The Wireshark network protocol analyzer
Loading...
Searching...
No Matches
packet-rf4ce-secur.h
1/* packet-rf4ce-secur.h
2 * Security related functions and objects for RF4CE dissector
3 * Copyright (C) Atmosic 2023
4 *
5 * Wireshark - Network traffic analyzer
6 * By Gerald Combs <gerald@wireshark.org>
7 * Copyright 1998 Gerald Combs
8 *
9 * SPDX-License-Identifier: GPL-2.0-or-later
10 */
11
12#ifndef PACKET_RF4CE_SECUR_H
13#define PACKET_RF4CE_SECUR_H
14
15#include <stdbool.h>
16#include "config.h"
17#include <epan/packet.h>
18#include <epan/expert.h>
19#include <epan/uat.h>
20
21#define RF4CE_IEEE_ADDR_LEN 8
22#define RF4CE_SHORT_ADDR_LEN 2
23
24#define RF4CE_MIN_NWK_LENGTH 5
25#define RF4CE_MAX_NWK_LENGTH 148
26
27#define RF4CE_VENDOR_SECRET_STORAGE_SIZE 64
28#define RF4CE_NWK_KEY_STORAGE_SIZE 64
29#define RF4CE_ADDR_TABLE_SIZE (RF4CE_NWK_KEY_STORAGE_SIZE * 2)
30
31#define RF4CE_NWK_KEY_SEED_DATA_LENGTH 80
32
33#define RF4CE_CCM_M 4
34#define RF4CE_CCM_L 2
35#define RF4CE_CCM_NONCE_LEN (15 - RF4CE_CCM_L)
36#define RF4CE_SECUR_CONTROL 5
37#define SEC_STR_LEN 16
38#define KEY_LEN SEC_STR_LEN
39
40typedef struct keypair_context_s {
41 uint8_t nwk_key_seed_latest[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
42 uint8_t nwk_key_seed_prev[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
43 uint8_t nwk_key_seed[RF4CE_NWK_KEY_SEED_DATA_LENGTH];
44 uint8_t controller_addr[RF4CE_IEEE_ADDR_LEN];
45 uint8_t target_addr[RF4CE_IEEE_ADDR_LEN];
46 uint8_t nwk_key_exchange_transfer_expected;
47 uint8_t nwk_key_exchange_transfer_received;
48} keypair_context_t;
49
50#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH 8
51#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH 8
52
53#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_AB_LENGTH \
54 (RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH \
55 + RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH)
56
57#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_TAG_A_LENGTH 4
58#define RF4CE_PROFILE_CMD_KEY_EXCHANGE_TAG_B_LENGTH 4
59
60#define RF4CE_KEY_EXCHANGE_CONTEXT_LENGTH 9
61#define RF4CE_KEY_EXCHANGE_LABEL_LENGTH (2 * (RF4CE_IEEE_ADDR_LEN))
62
63#define RF4CE_CMAC_ARG_2_LENGTH \
64 (RF4CE_KEY_EXCHANGE_CONTEXT_LENGTH \
65 + RF4CE_KEY_EXCHANGE_LABEL_LENGTH \
66 + KEY_LEN)
67
68/* RF4CE GDP 2.0 spec, part 7.4.2 Key generation
69 * Context shall be set to the ASCII representation of the nine character string (including a space
70 * after "RF4CE" but without quotes and without null termination) "RF4CE GDP".
71 */
72#define CONTEXT_STR "RF4CE GDP"
73#define CONTEXT_STR_LEN 9
74
75extern uint8_t DEFAULT_SECRET[SEC_STR_LEN];
76
77typedef struct key_exchange_context_s {
78 uint8_t rand_a[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_A_LENGTH];
79 uint8_t rand_b[RF4CE_PROFILE_CMD_KEY_EXCHANGE_RAND_B_LENGTH];
80 uint8_t mac_a[RF4CE_IEEE_ADDR_LEN]; /* target address */
81 uint8_t mac_b[RF4CE_IEEE_ADDR_LEN]; /* controller address */
82 bool is_proc_started;
83} key_exchange_context_t;
84
85void rf4ce_aes_cmac(unsigned char *input, unsigned long length, unsigned char *key, unsigned char *mac_value);
86
87typedef struct addr_entry_s {
88 uint8_t ieee_addr[RF4CE_IEEE_ADDR_LEN];
89 uint16_t short_addr;
90 bool is_used;
91} addr_entry_t;
92
93typedef struct nwk_key_entry_s {
94 uint8_t nwk_key[KEY_LEN];
95 addr_entry_t *controller_addr_ent;
96 addr_entry_t *target_addr_ent;
97 bool key_from_gui;
98 bool is_used;
99 bool is_pairing_key;
100} nwk_key_entry_t;
101
102typedef struct vendor_secret_entry_s {
103 uint8_t secret[SEC_STR_LEN];
104 bool is_used;
105} vendor_secret_entry_t;
106
107typedef struct uat_security_record_s {
108 char *sec_str;
109 uint8_t type;
110 char *label;
111} uat_security_record_t;
112
113void keypair_context_init(const uint8_t *controller_ieee, const uint8_t *target_ieee, uint8_t expected_transfer_count);
114void keypair_context_update_seed(uint8_t *seed, uint8_t seed_seqn);
115
116void nwk_key_storage_add_entry(uint8_t *nwk_key, addr_entry_t *controller_addr_ent, addr_entry_t *target_addr_ent, bool key_from_gui, bool is_pairing_key);
117void nwk_key_storage_release_entry(uint8_t *nwk_key, bool key_from_gui);
118
119void rf4ce_addr_table_add_addrs(const void *ieee_addr, uint16_t short_addr);
120bool rf4ce_addr_table_get_ieee_addr(uint8_t *ieee_addr, packet_info *pinfo, bool is_src);
121addr_entry_t *rf4ce_addr_table_get_addr_entry_by_ieee(uint8_t *ieee_addr);
122
123void key_exchange_context_init(void);
124
125void key_exchange_context_start_procedure(void);
126void key_exchange_context_stop_procedure(void);
127bool key_exchange_context_is_procedure_started(void);
128
129void key_exchange_context_set_rand_a(uint8_t *rand_a);
130void key_exchange_context_set_rand_b(uint8_t *rand_b);
131
132void key_exchange_context_set_mac_a(uint8_t *mac_a);
133void key_exchange_context_set_mac_b(uint8_t *mac_b);
134
135void key_exchange_calc_key(uint32_t tag_b_pack);
136
137void vendor_secret_storage_add_entry(uint8_t *secret);
138void vendor_secret_storage_release_entry(uint8_t *secret);
139
140void rf4ce_secur_cleanup(void);
141
142bool decrypt_data(
143 const uint8_t *in,
144 uint8_t *out,
145 uint16_t payload_offset,
146 uint16_t *len,
147 uint8_t src_ieee[RF4CE_IEEE_ADDR_LEN],
148 uint8_t dst_ieee[RF4CE_IEEE_ADDR_LEN]);
149
150#endif /* PACKET_RF4CE_SECUR_H */
_packet_info
Definition packet_info.h:43
addr_entry_s
Definition packet-rf4ce-secur.h:87
decrypt_data
Definition packet-isakmp.c:1889
input
Definition tvbuff_lz77huff.c:32
key_exchange_context_s
Definition packet-rf4ce-secur.h:77
keypair_context_s
Definition packet-rf4ce-secur.h:40
nwk_key_entry_s
Definition packet-rf4ce-secur.h:93
uat_security_record_s
Definition packet-rf4ce-secur.h:107
vendor_secret_entry_s
Definition packet-rf4ce-secur.h:102
Generated by doxygen 1.9.8