dash encryption: add encryption and decryption for messsages
This commit is contained in:
parent
bef32e70c1
commit
9c586c4942
2 changed files with 122 additions and 0 deletions
|
@ -0,0 +1,63 @@
|
|||
package info.nightscout.androidaps.plugins.pump.omnipod.dash.driver.comm.endecrypt
|
||||
|
||||
import info.nightscout.androidaps.logging.AAPSLogger
|
||||
import info.nightscout.androidaps.logging.LTag
|
||||
import info.nightscout.androidaps.plugins.pump.omnipod.dash.driver.comm.message.MessagePacket
|
||||
import info.nightscout.androidaps.utils.extensions.toHex
|
||||
import org.spongycastle.crypto.engines.AESEngine
|
||||
import org.spongycastle.crypto.modes.CCMBlockCipher
|
||||
import org.spongycastle.crypto.params.AEADParameters
|
||||
import org.spongycastle.crypto.params.KeyParameter
|
||||
|
||||
class EnDecrypt(private val aapsLogger: AAPSLogger, private val nonce: Nonce, private val ck: ByteArray) {
|
||||
|
||||
val engine = AESEngine()
|
||||
val cipher = CCMBlockCipher(engine)
|
||||
|
||||
fun decrypt(msg: MessagePacket): MessagePacket {
|
||||
val payload = msg.payload
|
||||
val header = msg.asByteArray().copyOfRange(0, 16)
|
||||
|
||||
val n = nonce.increment()
|
||||
aapsLogger.debug(LTag.PUMPBTCOMM, "Decrypt header ${header.toHex()} payload: ${payload.toHex()}")
|
||||
aapsLogger.debug(LTag.PUMPBTCOMM, "Decrypt NONCE ${n.toHex()}")
|
||||
cipher.init(
|
||||
false, AEADParameters(
|
||||
KeyParameter(ck),
|
||||
MAC_SIZE * 8, // in bits
|
||||
n,
|
||||
header
|
||||
)
|
||||
)
|
||||
val decryptedPayload = ByteArray(payload.size - MAC_SIZE)
|
||||
cipher.processPacket(payload, 0, payload.size, decryptedPayload, 0)
|
||||
return msg.copy(payload = decryptedPayload)
|
||||
}
|
||||
|
||||
fun encrypt(headerMessage: MessagePacket): MessagePacket {
|
||||
val payload = headerMessage.payload
|
||||
val header = headerMessage.asByteArray(true).copyOfRange(0, 16)
|
||||
|
||||
val n = nonce.increment()
|
||||
aapsLogger.debug(LTag.PUMPBTCOMM, "Encrypt header ${header.toHex()} payload: ${payload.toHex()}")
|
||||
aapsLogger.debug(LTag.PUMPBTCOMM, "Encrypt NONCE ${n.toHex()}")
|
||||
val encryptedPayload = ByteArray(payload.size + MAC_SIZE)
|
||||
|
||||
cipher.init(
|
||||
true, AEADParameters(
|
||||
KeyParameter(ck),
|
||||
MAC_SIZE * 8, // in bits
|
||||
n,
|
||||
header
|
||||
)
|
||||
)
|
||||
cipher.processPacket(payload, 0, payload.size, encryptedPayload, 0)
|
||||
|
||||
return headerMessage.copy(payload = encryptedPayload)
|
||||
}
|
||||
|
||||
companion object {
|
||||
|
||||
private val MAC_SIZE = 8
|
||||
}
|
||||
}
|
|
@ -0,0 +1,59 @@
|
|||
package info.nightscout.androidaps.plugins.pump.omnipod.dash.driver.comm.endecrypt
|
||||
|
||||
import info.nightscout.androidaps.logging.AAPSLoggerTest
|
||||
import info.nightscout.androidaps.plugins.pump.omnipod.dash.driver.comm.message.MessagePacket
|
||||
import info.nightscout.androidaps.utils.extensions.toHex
|
||||
import org.junit.Assert
|
||||
import org.junit.Test
|
||||
import org.spongycastle.util.encoders.Hex
|
||||
|
||||
class EnDecryptTest {
|
||||
|
||||
@Test
|
||||
fun decrypt() {
|
||||
val aapsLogger = AAPSLoggerTest()
|
||||
val enDecrypt = EnDecrypt(
|
||||
aapsLogger,
|
||||
Nonce(
|
||||
Hex.decode("dda23c090a0a0a0a"),
|
||||
Hex.decode("0000000001")
|
||||
),
|
||||
Hex.decode("ba1283744b6de9fab6d9b77d95a71d6e"),
|
||||
)
|
||||
val encryptedMessage = Hex.decode(
|
||||
"54571101070003400242000002420001" +
|
||||
"e09158bcb0285a81bf30635f3a17ee73f0afbb3286bc524a8a66" +
|
||||
"fb1bc5b001e56543"
|
||||
)
|
||||
val decrypted = Hex.decode("53302e303d000effffffff00060704ffffffff82b22c47302e30")
|
||||
val msg = MessagePacket.parse(encryptedMessage)
|
||||
val decryptedMsg = enDecrypt.decrypt(msg)
|
||||
|
||||
Assert.assertEquals(decrypted.toHex(), decryptedMsg.payload.toHex())
|
||||
}
|
||||
|
||||
@Test
|
||||
fun encrypt() {
|
||||
val aapsLogger = AAPSLoggerTest()
|
||||
val enDecrypt = EnDecrypt(
|
||||
aapsLogger,
|
||||
Nonce(
|
||||
Hex.decode("dda23c090a0a0a0a"),
|
||||
Hex.decode("0000000001")
|
||||
),
|
||||
Hex.decode("ba1283744b6de9fab6d9b77d95a71d6e"),
|
||||
)
|
||||
val encryptedMessage = Hex.decode(
|
||||
"54571101070003400242000002420001" +
|
||||
"e09158bcb0285a81bf30635f3a17ee73f0afbb3286bc524a8a66" +
|
||||
"fb1bc5b001e56543"
|
||||
)
|
||||
val command = Hex.decode("53302e303d000effffffff00060704ffffffff82b22c47302e30")
|
||||
val msg = MessagePacket.parse(encryptedMessage).copy(payload = command) // copy for the headers
|
||||
|
||||
val encrypted = enDecrypt.encrypt(msg)
|
||||
|
||||
Assert.assertEquals(encryptedMessage.toHex(), encrypted.asByteArray().toHex())
|
||||
|
||||
}
|
||||
}
|
Loading…
Reference in a new issue