Skip to content

Commit

Permalink
Merge pull request #173 from nasa/139-inmemory-clear-mode-sa-encrypti…
Browse files Browse the repository at this point in the history 
…on-is-off-by-2-bytes-used-in-unit-tests

139 inmemory clear mode sa encryption is off by 2 bytes used in unit tests
  • Loading branch information
@dccutrig
dccutrig committed Jun 22, 2023
2 parents a6eb64b + ff42980 commit 88a4a0e
Show file tree
Hide file tree
Showing 2 changed files with 66 additions and 31 deletions.
52 changes: 21 additions & 31 deletions src/core/crypto_tc.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -276,28 +276,24 @@ int32_t Crypto_TC_ApplySecurity_Cam(const uint8_t* p_in_frame, const uint16_t in
// Calculate tf_payload length here to be used in other logic
tf_payload_len = temp_tc_header.fl - TC_FRAME_HEADER_SIZE - segment_hdr_len - fecf_len + 1;

switch (sa_service_type)
{
case SA_PLAINTEXT:
// Ingest length + spi_index (2) + some variable length fields
*p_enc_frame_len = temp_tc_header.fl + 1 + 2 + sa_ptr->shplf_len;
new_enc_frame_header_field_length = (*p_enc_frame_len) - 1;
break;
case SA_AUTHENTICATION:
// Ingest length + spi_index (2) + shivf_len (varies) + shsnf_len (varies)
// + shplf_len + arsn_len + pad_size + stmacf_len
// TODO: If ARSN is transmitted in the SHSNF field (as in CMAC... don't double count those bytes)
*p_enc_frame_len = temp_tc_header.fl + 1 + 2 + sa_ptr->shivf_len + sa_ptr->shsnf_len + sa_ptr->shplf_len + sa_ptr->stmacf_len;
new_enc_frame_header_field_length = (*p_enc_frame_len) - 1;
break;
case SA_ENCRYPTION:
// Ingest length + 1 (accounts for -1 to length) + spi_index (2) + shivf_len (varies) + shsnf_len (varies)
// + shplf_len + arsn_len + pad_size
*p_enc_frame_len = temp_tc_header.fl + 1 + 2 + sa_ptr->shivf_len + sa_ptr->shsnf_len + sa_ptr->shplf_len;
//+ sa_ptr->arsn_len; //should point to shplf_len

new_enc_frame_header_field_length = (*p_enc_frame_len) - 1;
/**
* A note on plaintext: Take a permissive approach to allow the lengths of fields that aren't going to be used.
* The 355.0-B-2 (July 2022) says the following in $4.2.2.4:
* 'It is possible to create a ‘clear mode’ SA using one of the defined service types by
specifying the algorithm as a ‘no-op’ function (no actual cryptographic operation to
be performed). Such an SA might be used, for example, during development
testing of other aspects of data link processing before cryptographic capabilities are
available for integrated testing.In this scenario, the Security Header and Trailer
field lengths are kept constant across all supported configurations. For security
reasons, the use of such an SA is not recommended in normal operation.'
*/

// Calculate frame lengths based on SA fields
*p_enc_frame_len = temp_tc_header.fl + 1 + 2 + sa_ptr->shivf_len + sa_ptr->shsnf_len + sa_ptr->shplf_len + sa_ptr->stmacf_len;
new_enc_frame_header_field_length = (*p_enc_frame_len) - 1;

if (sa_service_type == SA_ENCRYPTION)
{
// Handle Padding, if necessary
if(*(sa_ptr->ecs) == CRYPTO_CIPHER_AES256_CBC)
{
Expand All @@ -323,17 +319,11 @@ int32_t Crypto_TC_ApplySecurity_Cam(const uint8_t* p_in_frame, const uint16_t in
}

}
break;
case SA_AUTHENTICATED_ENCRYPTION:
// Ingest length + spi_index (2) + shivf_len (varies) + shsnf_len (varies)
// + shplf_len + arsn_len + pad_size + stmacf_len
*p_enc_frame_len = temp_tc_header.fl + 1 + 2 + sa_ptr->shivf_len + sa_ptr->shsnf_len + sa_ptr->shplf_len +
sa_ptr->arsn_len + sa_ptr->stmacf_len;
new_enc_frame_header_field_length = (*p_enc_frame_len) - 1;
break;
default:
}

if (sa_service_type != (SA_PLAINTEXT || SA_AUTHENTICATED_ENCRYPTION || SA_ENCRYPTION || SA_AUTHENTICATION))
{
printf(KRED "Unknown SA Service Type Detected!" RESET);
break;
}

// Ensure the frame to be created will not violate managed parameter maximum length
Expand Down
45 changes: 45 additions & 0 deletions test/unit/ut_tc_apply.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ UTEST(TC_APPLY_SECURITY, NO_CRYPTO_INIT)
int raw_tc_sdls_ping_len = 0;

hex_conversion(raw_tc_sdls_ping_h, &raw_tc_sdls_ping_b, &raw_tc_sdls_ping_len);

Crypto_Config_CryptoLib(KEY_TYPE_INTERNAL, SADB_TYPE_INMEMORY, CRYPTOGRAPHY_TYPE_LIBGCRYPT, CRYPTO_TC_CREATE_FECF_TRUE, TC_PROCESS_SDLS_PDUS_TRUE, TC_HAS_PUS_HDR,
TC_IGNORE_SA_STATE_FALSE, TC_IGNORE_ANTI_REPLAY_FALSE, TC_UNIQUE_SA_PER_MAP_ID_TRUE,
TC_CHECK_FECF_TRUE, 0x3F, SA_INCREMENT_NONTRANSMITTED_IV_TRUE);
Expand Down Expand Up @@ -1117,5 +1118,49 @@ UTEST(TC_APPLY_SECURITY, CBC_NULL_IV_W_IVH)
free(ptr_enc_frame);
}

/*
* @brief: Unit Test: Verify plaintext with an ARSN places bytes appropriately.
* Use a full length verification of all bytes. Exists due to found bug.
*/
UTEST(TC_APPLY_SECURITY, PLAINTEXT_W_ARSN)
{
// Setup & Initialize CryptoLib
Crypto_Config_CryptoLib(KEY_TYPE_INTERNAL, SADB_TYPE_INMEMORY, CRYPTOGRAPHY_TYPE_LIBGCRYPT, CRYPTO_TC_CREATE_FECF_TRUE, TC_PROCESS_SDLS_PDUS_TRUE, TC_HAS_PUS_HDR,
TC_IGNORE_SA_STATE_FALSE, TC_IGNORE_ANTI_REPLAY_FALSE, TC_UNIQUE_SA_PER_MAP_ID_TRUE,
TC_CHECK_FECF_TRUE, 0x3F, SA_INCREMENT_NONTRANSMITTED_IV_TRUE);
Crypto_Config_Add_Gvcid_Managed_Parameter(0, 0x0003, 0, TC_HAS_FECF, TC_NO_SEGMENT_HDRS, 1024);
Crypto_Init();
// Test string
char* raw_tc_sdls_ping_h = "2003001F00000100011880D2C9000E197F0B001B0004000400003040D95E0000";
char* raw_tc_sdls_ping_b = NULL;
int raw_tc_sdls_ping_len = 0;

hex_conversion(raw_tc_sdls_ping_h, &raw_tc_sdls_ping_b, &raw_tc_sdls_ping_len);

uint8_t* ptr_enc_frame = NULL;
uint16_t enc_frame_len = 0;
int32_t return_val = CRYPTO_LIB_ERROR;

return_val =
Crypto_TC_ApplySecurity((uint8_t* )raw_tc_sdls_ping_b, raw_tc_sdls_ping_len, &ptr_enc_frame, &enc_frame_len);

char* truth_data_h = "200300230000010000000100011880D2C9000E197F0B001B0004000400003040D95E85F3";
uint8_t* truth_data_b = NULL;
int truth_data_l = 0;

hex_conversion(truth_data_h, (char **)&truth_data_b, &truth_data_l);
//printf("Encrypted Frame:\n");
for(int i = 0; i < enc_frame_len; i++)
{
printf("%02x -> %02x ", ptr_enc_frame[i], truth_data_b[i]);
ASSERT_EQ(ptr_enc_frame[i], truth_data_b[i]);
}

Crypto_Shutdown();
free(raw_tc_sdls_ping_b);
free(ptr_enc_frame);
ASSERT_EQ(CRYPTO_LIB_SUCCESS, return_val);
}


UTEST_MAIN();

0 comments on commit 88a4a0e

Please sign in to comment.