[#375] Added edge checks to Crypto_Key_Update

Author: Donnie-Ice

include/crypto_config.h

@@ -210,12 +210,14 @@
 #define AOS_FILL_SIZE       1145 /* bytes */
 
 // SDLS Behavior Defines
-#define SDLS_OTAR_IV_OFFSET  2
-#define SDLS_KEYV_MAX_KEYS   21 /* keys */
-#define SDLS_IV_LEN          12 /* bytes */
-#define SDLS_KEYV_KEY_ID_LEN 2  /* bytes */
-#define SDLS_KEY_LEN         32 /* bytes */
-#define SDLS_KEYID_LEN       2  /* bytes */
+#define SDLS_OTAR_IV_OFFSET     2
+#define SDLS_MAX_KEY_UPDATES    16 /* keys */
+#define SDLS_KEYV_MAX_KEYS      21 /* keys */
+#define SDLS_MAX_KEY_UPDATE_LEN 35 /* bytes */
+#define SDLS_IV_LEN             12 /* bytes */
+#define SDLS_KEYV_KEY_ID_LEN    2  /* bytes */
+#define SDLS_KEY_LEN            32 /* bytes */
+#define SDLS_KEYID_LEN          2  /* bytes */
 
 // TC Behavior Defines
 #define TC_SDLS_EP_VCID \

src/core/crypto.c

@@ -837,13 +837,21 @@ int32_t Crypto_Process_Extended_Procedure_Pdu(TC_t *tc_sdls_processed_frame, uin
 
                     // Subtract headers from total frame length
                    // uint16_t max_tlv = tc_sdls_processed_frame->tc_header.fl - CCSDS_HDR_SIZE - CCSDS_PUS_SIZE - SDLS_TLV_HDR_SIZE;
+                    uint16_t max_tlv = (tc_sdls_processed_frame->tc_header.fl - CCSDS_HDR_SIZE - CCSDS_PUS_SIZE- SDLS_TLV_HDR_SIZE);
+                    len_ingest = len_ingest; // suppress error for now
 #ifdef CCSDS_DEBUG
                     printf("Printing lengths for sanity check:\n");
                     printf("\t Telecommand PDU Length: %d \n", tc_sdls_processed_frame->tc_pdu_len);
-                    printf("\t Received TLV Length: %d \n", 1);
-                    printf("\t Max possible TLV Length: %d \n", 1);
-                    printf("\t Calculated TLV length based on ");
+                    printf("\t Received TLV Length: %d \n", sdls_frame.tlv_pdu.hdr.pdu_len/8);
+                    printf("\t Max possible TLV Length: %d \n", max_tlv);
 #endif
+                    if ((sdls_frame.tlv_pdu.hdr.pdu_len/8) > max_tlv)
+                    {
+#ifdef PDU_DEBUG
+                        printf(KRED "PDU_LEN GT MAX_TLV\n" RESET);
+#endif                        
+                        return CRYPTO_LIB_ERR_BAD_TLV_LENGTH;
+                    }
                     if (sdls_frame.hdr.pkt_length <= TLV_DATA_SIZE) // && (sdls_frame.hdr.pkt_length < max_tlv))
                     {
                         for (int x = 13; x < (13 + sdls_frame.hdr.pkt_length); x++)
@@ -853,6 +861,9 @@ int32_t Crypto_Process_Extended_Procedure_Pdu(TC_t *tc_sdls_processed_frame, uin
                     }
                     else
                     {
+#ifdef PDU_DEBUG
+                        printf(KRED "Packet Header Length GT TLV_DATA_SIZE\n" RESET);
+#endif                        
                         status = CRYPTO_LIB_ERR_BAD_TLV_LENGTH;
                         return status;
                     }
@@ -871,6 +882,16 @@ int32_t Crypto_Process_Extended_Procedure_Pdu(TC_t *tc_sdls_processed_frame, uin
                     // Make sure TLV isn't larger than we have allocated, and it is sane given total frame length
                     uint16_t max_tlv = tc_sdls_processed_frame->tc_header.fl - CCSDS_HDR_SIZE - SDLS_TLV_HDR_SIZE;
                     len_ingest = len_ingest; // suppress error for now
+#ifdef PDU_DEBUG
+                    printf("PDU_LEN: %d\n",sdls_frame.tlv_pdu.hdr.pdu_len);
+#endif                    
+                    if ((sdls_frame.tlv_pdu.hdr.pdu_len / 8) > max_tlv)
+                    {
+#ifdef PDU_DEBUG
+                        printf(KRED "PDU_LEN GT MAX_TLV\n" RESET);
+#endif                        
+                        return CRYPTO_LIB_ERR_BAD_TLV_LENGTH;
+                    }
                     if ((sdls_frame.hdr.pkt_length < TLV_DATA_SIZE) && (sdls_frame.hdr.pkt_length < max_tlv))
                     {
                         for (int x = 9; x < (9 + sdls_frame.hdr.pkt_length); x++)

src/core/crypto_key_mgmt.c

@@ -212,23 +212,43 @@ int32_t Crypto_Key_update(uint8_t state)
 { // Local variables
     SDLS_KEY_BLK_t packet;
     int            count    = 0;
-    int            pdu_keys = sdls_frame.tlv_pdu.hdr.pdu_len / 2;
+    int            pdu_keys = (sdls_frame.tlv_pdu.hdr.pdu_len / 8) / 2;
     int32_t        status;
     crypto_key_t  *ekp = NULL;
     int            x;
+    int pdu_length   = sdls_frame.tlv_pdu.hdr.pdu_len / 8;
+    int frame_length = sdls_frame.hdr.pkt_length;
 
     if (key_if == NULL)
     {
         status = CRYPTOGRAPHY_UNSUPPORTED_OPERATION_FOR_KEY_RING;
         return status;
     }
-
+    if (pdu_keys == 0)
+    {
+#ifdef PDU_DEBUG
+        printf(KYEL "PDU Length not long enough to hold key values\n" RESET);
+#endif
+    }
+    if ((state == KEY_DEACTIVATED || state == KEY_ACTIVE) && (pdu_length > SDLS_MAX_KEY_UPDATE_LEN || pdu_length > frame_length))
+    {
+#ifdef PDU_DEBUG
+        printf(KRED "PDU Length Exceded!\n" RESET);
+#endif
+        return CRYPTO_LIB_ERROR;
+    }
 #ifdef PDU_DEBUG
     printf("Key(s) ");
 #endif
     // Read in PDU
     for (x = 0; x < pdu_keys; x++)
     {
+        if (x == SDLS_MAX_KEY_UPDATES)
+        {
+            printf(KRED "\nMax key updates exceded, exiting...\n" RESET);
+            return CRYPTO_LIB_ERROR;
+        }
+
         packet.kblk[x].kid = (sdls_frame.tlv_pdu.data[count] << BYTE_LEN) | (sdls_frame.tlv_pdu.data[count + 1]);
         count              = count + 2;
 #ifdef PDU_DEBUG

test/unit/ut_ep_key_mgmt.c

@@ -899,27 +899,24 @@ UTEST(EP_KEY_MGMT, TLV_TESTS)
     crypto_key_t *ekp    = NULL;
     int           status = CRYPTO_LIB_SUCCESS;
 
-    // NOTE: Added Transfer Frame header to the plaintext
-    char *buffer_nist_key_h   = "000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F";
-    char *buffer_nist_iv_h    = "b6ac8e4963f49207ffd6374b"; // The last valid IV that was seen by the SA
-    
     // These assume a max TLV of 494 as defined by TLV_DATA_SIZE
     //                             2003001c00ff000000001880d039FFFF197f0b00030002008e1f6d21c4555555555555
     //                                                             197f0b00 - pus
     //                                                                     03 - tag
     //                                                                       0002 - length
     //                                                                           008e - value
 
-    char *buffer_TLV_OVERRUN_h =  "2003001c00ff000000001880d039FFFF197f0b0003FFFF008e1f6d21c4555555555555"; // FFFF = 65535
-    char *buffer_TLV_MAX_MINUS_h ="2003001c00ff000000001880d03901EE197f0b000301ED008e1f6d21c4555555555555"; // 01ED = 493
-    char *buffer_TLV_MAX_h =      "2003001c00ff000000001880d03901EE197f0b000301EE008e1f6d21c4555555555555"; // 01EE = 494
-    char *buffer_TLV_MAX_PLUS_h = "2003001c00ff000000001880d03901EF197f0b000301EF008e1f6d21c4555555555555"; // 01EF = 495
-    char *buffer_TLV_ONE_h =      "2003001c00ff000000001880d0390001197f0b0003000100811f6d21c4555555555555"; // 0001 = 1
-    char *buffer_TLV_ZERO_h =     "2003001c00ff000000001880d0390000197f0b00030000008e1f6d21c4555555555555"; // 0000 = 0
-
-    uint8_t *buffer_nist_iv_b, *buffer_nist_key_b, *buffer_TLV_OVERRUN_b, *buffer_TLV_MAX_MINUS_b, *buffer_TLV_MAX_b,
-            *buffer_TLV_MAX_PLUS_b, *buffer_TLV_ONE_b, *buffer_TLV_ZERO_b     = NULL;
-    int      buffer_nist_iv_len, buffer_nist_key_len, buffer_TLV_OVERRUN_len, buffer_TLV_MAX_MINUS_len, buffer_TLV_MAX_len, 
+    char *buffer_TLV_OVERRUN_h =     "2003001c00ff000000001880d039FFFF197f0b0003FFFF008e1f6d21c4555555555555"; // FFFF = 65535
+    char *buffer_TLV_ONE_KEY_h =     "2003001c00ff000000001880d0390012197f0b00030010008e1f6d21c4555555555555"; // 0010 = 16
+    char *buffer_TLV_MAX_h =         "2003003a00ff000000001880d03901ee197f0b000301000080008100820083008400850086008700880089008a008b008c008d008e008f1f6d21c4"; // 01EE = 494
+    char *buffer_TLV_MAX_BAD_LEN_h = "2003001a00ff000000001880d03901ee197f0b000301000080008100821f6d21c45555"; // 01EE = 494
+    char *buffer_TLV_TEN_KEYS_h =    "2003003400ff000000001880d0390024197f0b000300A000800081008200830084008500860087008800891f6d21c4555555555555"; // 00A0 = 160
+    char *buffer_TLV_ONE_BIT_LEN_h = "2003001c00ff000000001880d0390019197f0b00030001008e1f6d21c4555555555555"; // 0001 = 1
+    char *buffer_TLV_ZERO_h =        "2003001a00ff000000001880d0390017197f0b000300001f6d21c4555555555555"; // 0000 = 0
+
+    uint8_t *buffer_TLV_OVERRUN_b, *buffer_TLV_ONE_KEY_b, *buffer_TLV_MAX_b, *buffer_TLV_MAX_BAD_LEN_b, 
+            *buffer_TLV_TEN_KEYS_b, *buffer_TLV_ONE_BIT_LEN_b, *buffer_TLV_ZERO_b     = NULL;
+    int      buffer_TLV_OVERRUN_len, buffer_TLV_MAX_MINUS_len, buffer_TLV_MAX_len, buffer_TLV_MAX_BAD_LEN_len, 
              buffer_TLV_MAX_PLUS_len, buffer_TLV_ONE_len, buffer_TLV_ZERO_len = 0;
 
     // Setup Processed Frame For Decryption
@@ -943,57 +940,73 @@ UTEST(EP_KEY_MGMT, TLV_TESTS)
     test_association->shsnf_len = 2;
     test_association->arsn_len  = 2;
     test_association->arsnw     = 5;
-
-    // Insert key into keyring of SA 9
-    hex_conversion(buffer_nist_key_h, (char **)&buffer_nist_key_b, &buffer_nist_key_len);
-    ekp = key_if->get_key(142);
-    memcpy(ekp->value, buffer_nist_key_b, buffer_nist_key_len);
-    ekp->key_state = KEY_ACTIVE;
+    
+    // set all keys to active
+    for (int x = 128; x <= 143; x++)
+    {
+        ekp = key_if->get_key(x);
+        ekp->key_state = KEY_ACTIVE;
+    }
 
     // Convert frames that will be processed
     hex_conversion(buffer_TLV_OVERRUN_h, (char **)&buffer_TLV_OVERRUN_b, &buffer_TLV_OVERRUN_len);
-    hex_conversion(buffer_TLV_MAX_MINUS_h, (char **)&buffer_TLV_MAX_MINUS_b, &buffer_TLV_MAX_MINUS_len);
+    hex_conversion(buffer_TLV_ONE_KEY_h, (char **)&buffer_TLV_ONE_KEY_b, &buffer_TLV_MAX_MINUS_len);
     hex_conversion(buffer_TLV_MAX_h, (char **)&buffer_TLV_MAX_b, &buffer_TLV_MAX_len);
-    hex_conversion(buffer_TLV_MAX_PLUS_h, (char **)&buffer_TLV_MAX_PLUS_b, &buffer_TLV_MAX_PLUS_len);
+    hex_conversion(buffer_TLV_MAX_BAD_LEN_h, (char **)&buffer_TLV_MAX_BAD_LEN_b, &buffer_TLV_MAX_BAD_LEN_len);
+    hex_conversion(buffer_TLV_TEN_KEYS_h, (char **)&buffer_TLV_TEN_KEYS_b, &buffer_TLV_MAX_PLUS_len);
     hex_conversion(buffer_TLV_ZERO_h, (char **)&buffer_TLV_ZERO_b, &buffer_TLV_ZERO_len);
-    hex_conversion(buffer_TLV_ONE_h, (char **)&buffer_TLV_ONE_b, &buffer_TLV_ONE_len);
-    // Convert/Set input IV
-    hex_conversion(buffer_nist_iv_h, (char **)&buffer_nist_iv_b, &buffer_nist_iv_len);
-    memcpy(test_association->iv, buffer_nist_iv_b, buffer_nist_iv_len);
+    hex_conversion(buffer_TLV_ONE_BIT_LEN_h, (char **)&buffer_TLV_ONE_BIT_LEN_b, &buffer_TLV_ONE_len);
 
     printf(KGRN "Checking for TLV overrun, should fail... \n" RESET);
     status = Crypto_TC_ProcessSecurity(buffer_TLV_OVERRUN_b, &buffer_TLV_OVERRUN_len, &tc_nist_processed_frame);
     ASSERT_EQ(CRYPTO_LIB_ERR_BAD_TLV_LENGTH, status);
 
-    printf(KGRN "Checking for TLV MAX - 1, should pass... \n" RESET);
-    status = Crypto_TC_ProcessSecurity(buffer_TLV_MAX_MINUS_b, &buffer_TLV_MAX_MINUS_len, &tc_nist_processed_frame);
+    printf(KGRN "Checking for 1 key (16 bits), should pass... \n" RESET);
+    status = Crypto_TC_ProcessSecurity(buffer_TLV_ONE_KEY_b, &buffer_TLV_MAX_MINUS_len, &tc_nist_processed_frame);
     ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
 
-    printf(KGRN "Checking for TLV MAX, should pass... \n" RESET);
+    // set all keys to active
+    for (int x = 128; x <= 143; x++)
+    {
+        ekp = key_if->get_key(x);
+        ekp->key_state = KEY_ACTIVE;
+    }
+
+    printf(KGRN "Checking for 32 keys (494 bits), should pass... \n" RESET);
     status = Crypto_TC_ProcessSecurity(buffer_TLV_MAX_b, &buffer_TLV_MAX_len, &tc_nist_processed_frame);
     ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
 
-    printf(KGRN "Checking for TLV MAX + 1, should fail... \n" RESET);
-    status = Crypto_TC_ProcessSecurity(buffer_TLV_MAX_PLUS_b, &buffer_TLV_MAX_PLUS_len, &tc_nist_processed_frame);
+    // set all keys to active
+    for (int x = 128; x <= 137; x++)
+    {
+        ekp = key_if->get_key(x);
+        ekp->key_state = KEY_ACTIVE;
+    }
+
+    printf(KGRN "Checking for 10 keys (160 bits), should pass... \n" RESET);
+    status = Crypto_TC_ProcessSecurity(buffer_TLV_TEN_KEYS_b, &buffer_TLV_MAX_PLUS_len, &tc_nist_processed_frame);
+    ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
+
+    printf(KGRN "Checking for 3 keys with bad pdu len (512 bits), should fail... \n" RESET);
+    status = Crypto_TC_ProcessSecurity(buffer_TLV_MAX_BAD_LEN_b, &buffer_TLV_MAX_BAD_LEN_len, &tc_nist_processed_frame);
     ASSERT_EQ(CRYPTO_LIB_ERR_BAD_TLV_LENGTH, status);
 
-    printf(KGRN "Checking for TLV length of 1, should pass... \n" RESET);
-    status = Crypto_TC_ProcessSecurity(buffer_TLV_ONE_b, &buffer_TLV_ONE_len, &tc_nist_processed_frame);
+    printf(KGRN "Checking for TLV length of 1 bit, should pass... \n" RESET);
+    status = Crypto_TC_ProcessSecurity(buffer_TLV_ONE_BIT_LEN_b, &buffer_TLV_ONE_len, &tc_nist_processed_frame);
     ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
 
-    printf(KGRN "Checking for TLV length of 0, should ????... \n" RESET);
-    status = Crypto_TC_ProcessSecurity(buffer_TLV_ONE_b, &buffer_TLV_ONE_len, &tc_nist_processed_frame);
-    ASSERT_EQ(-110000, status);
+    printf(KGRN "Checking for TLV length of 0 bits, should pass... \n" RESET);
+    status = Crypto_TC_ProcessSecurity(buffer_TLV_ZERO_b, &buffer_TLV_ZERO_len, &tc_nist_processed_frame);
+    ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
 
     printf("\n");
     Crypto_Shutdown();
     free(ptr_enc_frame);
-    free(buffer_nist_iv_b);
-    free(buffer_nist_key_b);
-    free(buffer_TLV_MAX_MINUS_b);
+    free(buffer_TLV_ONE_KEY_b);
     free(buffer_TLV_MAX_b);
-    free(buffer_TLV_MAX_PLUS_b);
-    free(buffer_TLV_ONE_b);
+    free(buffer_TLV_MAX_BAD_LEN_b);
+    free(buffer_TLV_TEN_KEYS_b);
+    free(buffer_TLV_ONE_BIT_LEN_b);
     free(buffer_TLV_ZERO_b);
     free(buffer_TLV_OVERRUN_b);
 }