Lime checks the PVS flag in ZRTP cache when getting keys

2026-05-03 20:46:28 +00:00 · 2014-07-13 00:02:47 +02:00 · 2014-07-13 00:02:47 +02:00 · f6eb21ad82
commit f6eb21ad82
parent e6eb8008fa
4 changed files with 70 additions and 44 deletions
--- a/coreapi/lime.c
+++ b/coreapi/lime.c
@ -159,10 +159,11 @@ int lime_getCachedSndKeysByURI(xmlDocPtr cacheBuffer, limeURIKeys_t *associatedK
 			if (matchingURIFlag == 1) { /* we found a match for the URI in this peer node, extract the keys, session Id and index values */
 				/* allocate a new limeKey_t structure to hold the retreived keys */
 				limeKey_t *currentPeerKeys = (limeKey_t *)malloc(sizeof(limeKey_t));
-				uint8_t itemFound = 0; /* count the item found, we must get all of the requested infos: 4 nodes*/
+				uint8_t itemFound = 0; /* count the item found, we must get all of the requested infos: 5 nodes*/
+				uint8_t pvs = 0;
 				
 				peerNodeChildren = cur->xmlChildrenNode; /* reset peerNodeChildren to the first child of node */
-				while (peerNodeChildren!=NULL && itemFound<4) {
+				while (peerNodeChildren!=NULL && itemFound<5) {
 					xmlChar *nodeContent = NULL;
 					if (!xmlStrcmp(peerNodeChildren->name, (const xmlChar *)"ZID")) {
 						nodeContent = xmlNodeListGetString(cacheBuffer, peerNodeChildren->xmlChildrenNode, 1);
@ -188,13 +189,18 @@ int lime_getCachedSndKeysByURI(xmlDocPtr cacheBuffer, limeURIKeys_t *associatedK
 						currentPeerKeys->sessionIndex = sessionIndexBuffer[3] + (sessionIndexBuffer[2]<<8) + (sessionIndexBuffer[1]<<16) + (sessionIndexBuffer[0]<<24);
 						itemFound++;
 					}
+					if (!xmlStrcmp(peerNodeChildren->name, (const xmlChar *)"pvs")) {
+						nodeContent = xmlNodeListGetString(cacheBuffer, peerNodeChildren->xmlChildrenNode, 1);
+						lime_strToUint8(&pvs, nodeContent, 2); /* pvs is retrieved as a 2 characters hexa string, convert it to an int8 */
+						itemFound++;
+					}

 					xmlFree(nodeContent);
 					peerNodeChildren = peerNodeChildren->next;
 				}

-				/* check if we have all the requested information */
-				if (itemFound == 4) {
+				/* check if we have all the requested information and the PVS flag is set to 1 */
+				if (itemFound == 5 && pvs == 1) {
 					associatedKeys->associatedZIDNumber +=1;
 					/* extend array of pointer to limeKey_t structures to add the one we found */
 					associatedKeys->peerKeys = (limeKey_t **)realloc(associatedKeys->peerKeys, (associatedKeys->associatedZIDNumber)*sizeof(limeKey_t *));
@ -229,13 +235,17 @@ int lime_getCachedRcvKeyByZid(xmlDocPtr cacheBuffer, limeKey_t *associatedKey) {
 		cur = cur->xmlChildrenNode;

 	}
+
+	/* to check we collect all the information needed from the cache and that pvs(boolean for previously verified Sas) is set in cache */
 	uint8_t itemFound = 0;
-	while (cur!=NULL && itemFound<3) { /* loop on all peer nodes */
+	uint8_t pvs = 0;
+
+	while (cur!=NULL) { /* loop on all peer nodes */
 		if ((!xmlStrcmp(cur->name, (const xmlChar *)"peer"))){ /* found a peer, check his ZID element */
 			xmlChar *currentZidHex = xmlNodeListGetString(cacheBuffer, cur->xmlChildrenNode->xmlChildrenNode, 1); /* ZID is the first element of peer */
 			if (!xmlStrcmp(currentZidHex, (const xmlChar *)peerZidHex)) { /* we found the peer element we are looking for */
 				xmlNodePtr peerNodeChildren = cur->xmlChildrenNode->next;
-				while (peerNodeChildren != NULL && itemFound<3) { /* look for the tag we want to read */
+				while (peerNodeChildren != NULL && itemFound<4) { /* look for the tag we want to read : rcvKey, rcvSId, rcvIndex and pvs*/
 					xmlChar *nodeContent = NULL;
 					if (!xmlStrcmp(peerNodeChildren->name, (const xmlChar *)"rcvKey")) {
 						nodeContent = xmlNodeListGetString(cacheBuffer, peerNodeChildren->xmlChildrenNode, 1);
@ -255,17 +265,29 @@ int lime_getCachedRcvKeyByZid(xmlDocPtr cacheBuffer, limeKey_t *associatedKey) {
 						associatedKey->sessionIndex = sessionIndexBuffer[3] + (sessionIndexBuffer[2]<<8) + (sessionIndexBuffer[1]<<16) + (sessionIndexBuffer[0]<<24);
 						itemFound++;
 					}
+					if (!xmlStrcmp(peerNodeChildren->name, (const xmlChar *)"pvs")) {
+						nodeContent = xmlNodeListGetString(cacheBuffer, peerNodeChildren->xmlChildrenNode, 1);
+						lime_strToUint8(&pvs, nodeContent, 2); /* pvs is retrieved as a 2 characters hexa string, convert it to an int8 */
+						itemFound++;
+					}
 					xmlFree(nodeContent);
 					peerNodeChildren = peerNodeChildren->next;
 				}
+				xmlFree(currentZidHex);
+				break; /* we parsed the peer node we were looking for, get out of the main while */
 			}
 			xmlFree(currentZidHex);
 		}
 		cur = cur->next;
 	}

-	
-	return 0;
+	/* if we manage to find the correct key information and that pvs is set to 1, return 0 (success) */
+	if ((pvs == 1) && (itemFound == 4)) {
+		return 0;
+	}
+
+	/* otherwise, key wasn't found or is invalid */
+	return LIME_NO_VALID_KEY_FOUND_FOR_PEER;
 }

 int lime_setCachedKey(xmlDocPtr cacheBuffer, limeKey_t *associatedKey, uint8_t role) {
@ -536,7 +558,7 @@ int lime_createMultipartMessage(xmlDocPtr cacheBuffer, uint8_t *message, uint8_t

 	if (associatedKeys.associatedZIDNumber == 0) {
 		lime_freeKeys(associatedKeys);
-		return LIME_NO_KEY_FOUND_FOR_PEER;
+		return LIME_NO_VALID_KEY_FOUND_FOR_PEER;
 	}

 	/* create an xml doc to hold the multipart message */
@ -652,38 +674,42 @@ int lime_decryptMultipartMessage(xmlDocPtr cacheBuffer, uint8_t *message, uint8_
 		/* get from cache the matching key */
 		retval = lime_getCachedRcvKeyByZid(cacheBuffer, &associatedKey);

-		if (retval == 0) {
-			/* retrieve the portion of message which is encrypted with our key */
-			while (cur != NULL) { /* loop on all "msg" node in the message */
-				xmlNodePtr msgChildrenNode = cur->xmlChildrenNode;
-				xmlChar *currentZidHex = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1); /* pZID is the first element of msg */
-				if (!xmlStrcmp(currentZidHex, (const xmlChar *)selfZidHex)) { /* we found the msg node we are looking for */
-					/* get the index (second node in the msg one) */
-					msgChildrenNode = msgChildrenNode->next;
-					xmlChar *sessionIndexHex = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1);
-					usedSessionIndex = (((uint32_t)lime_charToByte(sessionIndexHex[0]))<<28)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[1]))<<24)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[2]))<<20)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[3]))<<16)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[4]))<<12)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[5]))<<8)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[6]))<<4)
-						| (((uint32_t)lime_charToByte(sessionIndexHex[7])));
-					xmlFree(sessionIndexHex);
-					/* get the encrypted message */
-					msgChildrenNode = msgChildrenNode->next;
-					/* convert the cipherText from base 64 */
-					xmlChar *encryptedMessageb64 = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1);
-					encryptedMessageLength = b64_decode((char *)encryptedMessageb64, strlen((char *)encryptedMessageb64), NULL, 0);
-					encryptedMessage = (uint8_t *)malloc(encryptedMessageLength);
-					encryptedMessageLength = b64_decode((char *)encryptedMessageb64, strlen((char *)encryptedMessageb64), encryptedMessage, encryptedMessageLength);
-					xmlFree(encryptedMessageb64);
-				}
-
-				cur = cur->next;
-				xmlFree(currentZidHex);
-			}
+		if (retval != 0) {
+			xmlFree(peerZidHex);
+			xmlFreeDoc(xmlEncryptedMessage);
+			return retval;
 		}
+
+		/* retrieve the portion of message which is encrypted with our key */
+		while (cur != NULL) { /* loop on all "msg" node in the message */
+			xmlNodePtr msgChildrenNode = cur->xmlChildrenNode;
+			xmlChar *currentZidHex = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1); /* pZID is the first element of msg */
+			if (!xmlStrcmp(currentZidHex, (const xmlChar *)selfZidHex)) { /* we found the msg node we are looking for */
+				/* get the index (second node in the msg one) */
+				msgChildrenNode = msgChildrenNode->next;
+				xmlChar *sessionIndexHex = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1);
+				usedSessionIndex = (((uint32_t)lime_charToByte(sessionIndexHex[0]))<<28)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[1]))<<24)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[2]))<<20)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[3]))<<16)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[4]))<<12)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[5]))<<8)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[6]))<<4)
+					| (((uint32_t)lime_charToByte(sessionIndexHex[7])));
+				xmlFree(sessionIndexHex);
+				/* get the encrypted message */
+				msgChildrenNode = msgChildrenNode->next;
+				/* convert the cipherText from base 64 */
+				xmlChar *encryptedMessageb64 = xmlNodeListGetString(cacheBuffer, msgChildrenNode->xmlChildrenNode, 1);
+				encryptedMessageLength = b64_decode((char *)encryptedMessageb64, strlen((char *)encryptedMessageb64), NULL, 0);
+				encryptedMessage = (uint8_t *)malloc(encryptedMessageLength);
+				encryptedMessageLength = b64_decode((char *)encryptedMessageb64, strlen((char *)encryptedMessageb64), encryptedMessage, encryptedMessageLength);
+				xmlFree(encryptedMessageb64);
+			}
+
+			cur = cur->next;
+			xmlFree(currentZidHex);
+			}
 	}

 	xmlFree(peerZidHex);
--- a/coreapi/lime.h
+++ b/coreapi/lime.h
@ -5,7 +5,7 @@
 #define LIME_UNABLE_TO_DERIVE_KEY 0x1002
 #define LIME_UNABLE_TO_ENCRYPT_MESSAGE 0x1004
 #define LIME_UNABLE_TO_DECRYPT_MESSAGE 0x1008
-#define LIME_NO_KEY_FOUND_FOR_PEER	0x1010
+#define LIME_NO_VALID_KEY_FOUND_FOR_PEER	0x1010
 #define LIME_INVALID_ENCRYPTED_MESSAGE 0x1020

 /* this define the maximum key derivation number allowed to get the caches back in sync in case of missed messages */
--- a/tester/ZIDCacheAlice.xml
+++ b/tester/ZIDCacheAlice.xml
@ -1,2 +1,2 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<cache><selfZID>ef7692d0792a67491ae2d44e</selfZID><peer><ZID>005dbe0399643d953a2202dd</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:pauline@sip.example.org</uri><sndKey>6cac6d8e4453ccf70749674c421b7ca434d300ca30265a9a86b2979c32bdd159</sndKey><rcvKey>5b91adffd91fcfa5b9cc6907a7d59bd5c21ffe8d508b4d6c536cb73329c914c3</rcvKey><sndSId>5f9aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>bcffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>00000077</sndIndex><rcvIndex>000001c6</rcvIndex></peer><peer><ZID>1234567889643d953a2202ee</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:pauline@sip.example.org</uri><sndKey>72d80ab1cad243cf45634980c1d02cfb2df81ce0dd5dfcf1ebeacfc5345a9176</sndKey><rcvKey>25d9ac653a83c4559cb0ae7394e7cd3b2d3c57bb28e62068d2df23e8f9b77193</rcvKey><sndSId>f69aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>22ffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>0000000f</sndIndex><rcvIndex>00000000</rcvIndex></peer></cache>
+<cache><selfZID>ef7692d0792a67491ae2d44e</selfZID><peer><ZID>005dbe0399643d953a2202dd</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:pauline@sip.example.org</uri><sndKey>6cac6d8e4453ccf70749674c421b7ca434d300ca30265a9a86b2979c32bdd159</sndKey><rcvKey>60f020a3fe11dc2cc0e1e8ed9341b4cd14944db806ca4fc95456bbe45d95c43a</rcvKey><sndSId>5f9aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>bcffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>00000077</sndIndex><rcvIndex>000001cf</rcvIndex><pvs>01</pvs></peer><peer><ZID>1234567889643d953a2202ee</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:pauline@sip.example.org</uri><sndKey>72d80ab1cad243cf45634980c1d02cfb2df81ce0dd5dfcf1ebeacfc5345a9176</sndKey><rcvKey>25d9ac653a83c4559cb0ae7394e7cd3b2d3c57bb28e62068d2df23e8f9b77193</rcvKey><sndSId>f69aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>22ffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>0000000f</sndIndex><rcvIndex>00000000</rcvIndex></peer></cache>
--- a/tester/ZIDCacheBob.xml
+++ b/tester/ZIDCacheBob.xml
@ -1,4 +1,4 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <cache><selfZID>005dbe0399643d953a2202dd</selfZID>
-	<peer><ZID>ef7692d0792a67491ae2d44e</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:marie@sip.example.org</uri><rcvKey>6cac6d8e4453ccf70749674c421b7ca434d300ca30265a9a86b2979c32bdd159</rcvKey><sndKey>5b91adffd91fcfa5b9cc6907a7d59bd5c21ffe8d508b4d6c536cb73329c914c3</sndKey><rcvSId>5f9aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndSId>bcffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvIndex>00000077</rcvIndex><sndIndex>000001c6</sndIndex></peer>
-	<peer><ZID>1234567889643d953a2202ee</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:marie@sip.example.org</uri><sndKey>21397a0d145badd58b3073ba0f537cab1bc97ca7de1f0d2db9a57fc3f63b74b7</sndKey><rcvKey>25d9ac653a83c4559cb0ae7394e7cd3b2d3c57bb28e62068d2df23e8f9b77193</rcvKey><sndSId>f69aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>22ffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>00000025</sndIndex><rcvIndex>00000000</rcvIndex></peer></cache>
+	<peer><ZID>ef7692d0792a67491ae2d44e</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:marie@sip.example.org</uri><rcvKey>6cac6d8e4453ccf70749674c421b7ca434d300ca30265a9a86b2979c32bdd159</rcvKey><sndKey>60f020a3fe11dc2cc0e1e8ed9341b4cd14944db806ca4fc95456bbe45d95c43a</sndKey><rcvSId>5f9aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndSId>bcffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvIndex>00000077</rcvIndex><sndIndex>000001cf</sndIndex><pvs>01</pvs></peer>
+	<peer><ZID>1234567889643d953a2202ee</ZID><rs1>9b5c8f06f3b6c2c695f2dfc3c26f31f5fef8661f8c5fe7c95aeb5c5b0435b045</rs1><aux>f8324dd18ea905171ec2be89f879d01d5994132048d92ea020778cbdf31c605e</aux><rs2>2fdcef69380937c2cf221f7d11526f286c39f49641452ba9012521c705094899</rs2><uri>sip:marie@sip.example.org</uri><sndKey>81e6e6362c34dc974263d1f77cbb9a8d6d6a718330994379099a8fa19fb12faa</sndKey><rcvKey>25d9ac653a83c4559cb0ae7394e7cd3b2d3c57bb28e62068d2df23e8f9b77193</rcvKey><sndSId>f69aa1e5e4c7ec88fa389a9f6b8879b42d3c57bb28e62068d2df23e8f9b77193</sndSId><rcvSId>22ffd51e7316a6c6f53a50fcf01b01bf2d3c57bb28e62068d2df23e8f9b77193</rcvSId><sndIndex>0000002e</sndIndex><rcvIndex>00000000</rcvIndex><pvs>01</pvs></peer></cache>