Qt 6.x
The Qt SDK
Loading...
Searching...
No Matches
lecmaccalculator.cpp
Go to the documentation of this file.
1// Copyright (C) 2016 The Qt Company Ltd.
2// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
3#include "lecmaccalculator_p.h"
4
5#include "bluez/bluez_data_p.h"
6
7#include <QtCore/qbytearray.h>
8#include <QtCore/qloggingcategory.h>
9#include <QtCore/private/qcore_unix_p.h>
10
11#include <cstring>
12#include <sys/socket.h>
13#include <sys/types.h>
14#include <unistd.h>
15
16#ifdef CONFIG_LINUX_CRYPTO_API
17#include <linux/if_alg.h>
18#endif
19
20QT_BEGIN_NAMESPACE
21
22Q_DECLARE_LOGGING_CATEGORY(QT_BT_BLUEZ)
23
24LeCmacCalculator::LeCmacCalculator()
25{
26#ifdef CONFIG_LINUX_CRYPTO_API
27 m_baseSocket = socket(AF_ALG, SOCK_SEQPACKET, 0);
28 if (m_baseSocket == -1) {
29 qCWarning(QT_BT_BLUEZ) << "failed to create first level crypto socket:"
30 << strerror(errno);
31 return;
32 }
33 sockaddr_alg sa;
34 using namespace std;
35 memset(&sa, 0, sizeof sa);
36 sa.salg_family = AF_ALG;
37 strcpy(reinterpret_cast<char *>(sa.salg_type), "hash");
38 strcpy(reinterpret_cast<char *>(sa.salg_name), "cmac(aes)");
39 if (::bind(m_baseSocket, reinterpret_cast<sockaddr *>(&sa), sizeof sa) == -1) {
40 qCWarning(QT_BT_BLUEZ) << "bind() failed for crypto socket:" << strerror(errno);
41 return;
42 }
43#else // CONFIG_LINUX_CRYPTO_API
44 qCWarning(QT_BT_BLUEZ) << "Linux crypto API not present, CMAC verification will fail.";
45#endif
46}
47
48LeCmacCalculator::~LeCmacCalculator()
49{
50 if (m_baseSocket != -1)
51 close(m_baseSocket);
52}
53
54QByteArray LeCmacCalculator::createFullMessage(const QByteArray &message, quint32 signCounter)
55{
56 // Spec v4.2, Vol 3, Part H, 2.4.5
57 QByteArray fullMessage = message;
58 fullMessage.resize(fullMessage.size() + sizeof signCounter);
59 putBtData(signCounter, fullMessage.data() + message.size());
60 return fullMessage;
61}
62
63quint64 LeCmacCalculator::calculateMac(const QByteArray &message, QUuid::Id128Bytes csrk) const
64{
65#ifdef CONFIG_LINUX_CRYPTO_API
66 if (m_baseSocket == -1)
67 return false;
68 QUuid::Id128Bytes csrkMsb;
69 std::reverse_copy(std::begin(csrk.data), std::end(csrk.data), std::begin(csrkMsb.data));
70 qCDebug(QT_BT_BLUEZ) << "CSRK (MSB):" << QByteArray(reinterpret_cast<char *>(csrkMsb.data),
71 sizeof csrkMsb).toHex();
72 if (setsockopt(m_baseSocket, 279 /* SOL_ALG */, ALG_SET_KEY, csrkMsb.data, sizeof csrkMsb) == -1) {
73 qCWarning(QT_BT_BLUEZ) << "setsockopt() failed for crypto socket:" << strerror(errno);
74 return 0;
75 }
76
77 class SocketWrapper
78 {
79 public:
80 SocketWrapper(int socket) : m_socket(socket) {}
81 ~SocketWrapper() {
82 if (m_socket != -1)
83 close(m_socket);
84 }
85
86 int value() const { return m_socket; }
87 private:
88 int m_socket;
89 };
90 SocketWrapper cryptoSocket(accept(m_baseSocket, nullptr, nullptr));
91 if (cryptoSocket.value() == -1) {
92 qCWarning(QT_BT_BLUEZ) << "accept() failed for crypto socket:" << strerror(errno);
93 return 0;
94 }
95
96 QByteArray messageSwapped(message.size(), Qt::Uninitialized);
97 std::reverse_copy(message.begin(), message.end(), messageSwapped.begin());
98 qint64 totalBytesWritten = 0;
99 do {
100 const qint64 bytesWritten = qt_safe_write(cryptoSocket.value(),
101 messageSwapped.constData() + totalBytesWritten,
102 messageSwapped.size() - totalBytesWritten);
103 if (bytesWritten == -1) {
104 qCWarning(QT_BT_BLUEZ) << "writing to crypto socket failed:" << strerror(errno);
105 return 0;
106 }
107 totalBytesWritten += bytesWritten;
108 } while (totalBytesWritten < messageSwapped.size());
109 quint64 mac;
110 quint8 * const macPtr = reinterpret_cast<quint8 *>(&mac);
111 qint64 totalBytesRead = 0;
112 do {
113 const qint64 bytesRead = qt_safe_read(cryptoSocket.value(), macPtr + totalBytesRead,
114 sizeof mac - totalBytesRead);
115 if (bytesRead == -1) {
116 qCWarning(QT_BT_BLUEZ) << "reading from crypto socket failed:" << strerror(errno);
117 return 0;
118 }
119 totalBytesRead += bytesRead;
120 } while (totalBytesRead < qint64(sizeof mac));
121 return qFromBigEndian(mac);
122#else // CONFIG_LINUX_CRYPTO_API
123 Q_UNUSED(message);
124 Q_UNUSED(csrk);
125 qCWarning(QT_BT_BLUEZ) << "CMAC calculation failed due to missing Linux crypto API.";
126 return 0;
127#endif
128}
129
130bool LeCmacCalculator::verify(const QByteArray &message, QUuid::Id128Bytes csrk,
131 quint64 expectedMac) const
132{
133#ifdef CONFIG_LINUX_CRYPTO_API
134 const quint64 actualMac = calculateMac(message, csrk);
135 if (actualMac != expectedMac) {
136 qCWarning(QT_BT_BLUEZ) << Qt::hex << "signature verification failed: calculated mac:"
137 << actualMac << "expected mac:" << expectedMac;
138 return false;
139 }
140 return true;
141#else // CONFIG_LINUX_CRYPTO_API
142 Q_UNUSED(message);
143 Q_UNUSED(csrk);
144 Q_UNUSED(expectedMac);
145 qCWarning(QT_BT_BLUEZ) << "CMAC verification failed due to missing Linux crypto API.";
146 return false;
147#endif
148}
149
150QT_END_NAMESPACE
bluez_data_p.h
putBtData
void putBtData(T src, void *dst)
Definition bluez_data_p.h:133
LeCmacCalculator::calculateMac
quint64 calculateMac(const QByteArray &message, QUuid::Id128Bytes csrk) const
Definition lecmaccalculator.cpp:63
LeCmacCalculator::verify
bool verify(const QByteArray &message, QUuid::Id128Bytes csrk, quint64 expectedMac) const
Definition lecmaccalculator.cpp:130
LeCmacCalculator::createFullMessage
static QByteArray createFullMessage(const QByteArray &message, quint32 signCounter)
Definition lecmaccalculator.cpp:54
QByteArray
\inmodule QtCore
Definition qbytearray.h:57
QByteArray::data
char * data()
\macro QT_NO_CAST_FROM_BYTEARRAY
Definition qbytearray.h:534
QByteArray::size
qsizetype size() const noexcept
Returns the number of bytes in this byte array.
Definition qbytearray.h:474
QByteArray::constData
const char * constData() const noexcept
Returns a pointer to the const data stored in the byte array.
Definition qbytearray.h:122
QByteArray::begin
iterator begin()
Returns an \l{STL-style iterators}{STL-style iterator} pointing to the first byte in the byte-array.
Definition qbytearray.h:428
QByteArray::resize
void resize(qsizetype size)
Sets the size of the byte array to size bytes.
Definition qbytearray.cpp:1859
QByteArray::toHex
QByteArray toHex(char separator='\0') const
Returns a hex encoded copy of the byte array.
Definition qbytearray.cpp:4703
lecmaccalculator_p.h
QT_BEGIN_NAMESPACE
Combined button and popup list for selecting options.
Definition qstandardpaths_haiku.cpp:21
QT_END_NAMESPACE
Definition qsharedpointer.cpp:1545
Qt::hex
QTextStream & hex(QTextStream &stream)
Calls QTextStream::setIntegerBase(16) on stream and returns stream.
Definition qtextstream.cpp:2601
Qt::Uninitialized
constexpr Initialization Uninitialized
Definition qnamespace.h:1587
qt_safe_write
static qint64 qt_safe_write(int fd, const void *data, qint64 len)
Definition qcore_unix_p.h:313
qt_safe_read
static qint64 qt_safe_read(int fd, void *data, qint64 maxlen)
Definition qcore_unix_p.h:304
value
EGLOutputLayerEXT EGLint EGLAttrib value
[5]
Definition qeglstreamconvenience_p.h:46
qFromBigEndian
constexpr T qFromBigEndian(T source)
Definition qendian.h:174
qCWarning
#define qCWarning(category,...)
Definition qloggingcategory.h:125
qCDebug
#define qCDebug(category,...)
Definition qloggingcategory.h:123
Q_DECLARE_LOGGING_CATEGORY
#define Q_DECLARE_LOGGING_CATEGORY(name)
Definition qloggingcategory.h:106
bytesWritten
GLenum GLsizei GLuint GLint * bytesWritten
Definition qopengles2ext.h:858
message
GLuint GLsizei const GLchar * message
Definition qopengles2ext.h:154
Q_UNUSED
#define Q_UNUSED(x)
Definition qtpreprocessorsupport.h:20
quint32
unsigned int quint32
Definition qtypes.h:45
quint64
unsigned long long quint64
Definition qtypes.h:56
qint64
long long qint64
Definition qtypes.h:55
quint8
unsigned char quint8
Definition qtypes.h:41
socket
QTcpSocket * socket
[1]
Definition src_corelib_kernel_qobject.cpp:392
bind
socketLayer bind(QHostAddress::Any, 4000)
QUuid::Id128Bytes
\inmodule QtCore
Definition quuid.h:58
QUuid::Id128Bytes::data
quint8 data[16]
Definition quuid.h:59