mirror of
https://github.com/mainflux/mainflux.git
synced 2025-05-12 19:29:30 +08:00
e16a025fba
* NOISSUE- Add OPC-UA adapter Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * NOISSUE - Add opc-adapter PoC, docker and vendor Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Convert OPC messages to SenML Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add gopcua package Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * lora-adapter typo Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add OPC Reader Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Typo fix Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Typo fix Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Update copyright headers Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Fix reviews Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Fix reviews Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add opc config Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add all opc envars in the config Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Config typo Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add route map Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Use opcua package instead of opc Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Fix OPCUA typo Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Rm MQTT sub Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Move interefaces to root Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Fix revieews and typo Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Update Gopkg.toml Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com> * Add all envars into .env Signed-off-by: Manuel Imperiale <manuel.imperiale@gmail.com>
121 lines
6.2 KiB
Go
121 lines
6.2 KiB
Go
// Copyright 2018-2019 opcua authors. All rights reserved.
|
||
// Use of this source code is governed by a MIT-style license that can be
|
||
// found in the LICENSE file.
|
||
|
||
package uapolicy
|
||
|
||
import (
|
||
"crypto"
|
||
"crypto/rsa"
|
||
"fmt"
|
||
|
||
// Force compilation of required hashing algorithms, although we don't directly use the packages
|
||
_ "crypto/sha1"
|
||
_ "crypto/sha256"
|
||
|
||
"github.com/gopcua/opcua/errors"
|
||
)
|
||
|
||
/*
|
||
* "SecurityPolicy [B] – Basic256Sha256" Profile
|
||
http://opcfoundation.org/UA/SecurityPolicy#Basic256Sha256
|
||
|
||
Include Name Opt. Description From Profile
|
||
Security Certificate Validation A certificate will be validated as specified in Part 4. This includes among others structure and signature examination. Allowing for some validation errors to be suppressed by administration directive.
|
||
Security Encryption Required Encryption is required using the algorithms provided in the security algorithm suite.
|
||
Security Signing Required Signing is required using the algorithms provided in the security algorithm suite.
|
||
SymmetricSignatureAlgorithm_HMAC-SHA2-256 A keyed hash used for message authentication which is defined in https://tools.ietf.org/html/rfc2104.
|
||
The hash algorithm is SHA2 with 256 bits and described in https://tools.ietf.org/html/rfc4634
|
||
|
||
SymmetricEncryptionAlgorithm_AES256-CBC The AES encryption algorithm which is defined in http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.197.pdf.
|
||
Multiple blocks encrypted using the CBC mode described in http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf.
|
||
The key size is 256 bits. The block size is 16 bytes.
|
||
The URI is http://www.w3.org/2001/04/xmlenc#aes256-cbc.
|
||
AsymmetricSignatureAlgorithm_RSA-PKCS15-SHA2-256 The RSA signature algorithm which is defined in https://tools.ietf.org/html/rfc3447.
|
||
The RSASSA-PKCS1-v1_5 scheme is used.
|
||
The hash algorithm is SHA2 with 256bits and is described in https://tools.ietf.org/html/rfc6234.
|
||
The URI is http://www.w3.org/2001/04/xmldsig-more#rsa-sha256.
|
||
AsymmetricEncryptionAlgorithm_RSA-OAEP-SHA1 The RSA encryption algorithm which is defined in https://tools.ietf.org/html/rfc3447.
|
||
The RSAES-OAEP scheme is used.
|
||
The hash algorithm is SHA1 and is described in https://tools.ietf.org/html/rfc6234.
|
||
The mask generation algorithm also uses SHA1.
|
||
The URI is http://www.w3.org/2001/04/xmlenc#rsa-oaep.
|
||
No known exploits exist when using SHA1 with RSAES-OAEP, however, SHA1 was broken in 2017 so use of this algorithm is not recommended.
|
||
KeyDerivationAlgorithm_P-SHA2-256 The P_SHA256 pseudo-random function defined in https://tools.ietf.org/html/rfc5246.
|
||
The URI is http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/dk/p_sha256.
|
||
CertificateSignatureAlgorithm_RSA-PKCS15-SHA2-256 The RSA signature algorithm which is defined in https://tools.ietf.org/html/rfc3447.
|
||
The RSASSA-PKCS1-v1_5 scheme is used.
|
||
The hash algorithm is SHA2 with 256bits and is described in https://tools.ietf.org/html/rfc6234.
|
||
The SHA2 algorithm with 384 or 512 bits may be used instead of SHA2 with 256 bits.
|
||
The URI is http://www.w3.org/2001/04/xmldsig-more#rsa-sha256.
|
||
Basic256Sha256_Limits -> DerivedSignatureKeyLength: 256 bits
|
||
-> MinAsymmetricKeyLength: 2048 bits
|
||
-> MaxAsymmetricKeyLength: 4096 bits
|
||
-> SecureChannelNonceLength: 32 bytes
|
||
*/
|
||
|
||
func newBasic256Rsa256Symmetric(localNonce []byte, remoteNonce []byte) (*EncryptionAlgorithm, error) {
|
||
const (
|
||
signatureKeyLength = 32
|
||
encryptionKeyLength = 32
|
||
encryptionBlockSize = AESBlockSize
|
||
)
|
||
|
||
localHmac := &HMAC{Hash: crypto.SHA256, Secret: localNonce}
|
||
remoteHmac := &HMAC{Hash: crypto.SHA256, Secret: remoteNonce}
|
||
|
||
localKeys := generateKeys(localHmac, remoteNonce, signatureKeyLength, encryptionKeyLength, encryptionBlockSize)
|
||
remoteKeys := generateKeys(remoteHmac, localNonce, signatureKeyLength, encryptionKeyLength, encryptionBlockSize)
|
||
|
||
return &EncryptionAlgorithm{
|
||
blockSize: AESBlockSize,
|
||
plainttextBlockSize: AESBlockSize - AESMinPadding,
|
||
encrypt: &AES{KeyLength: 256, IV: remoteKeys.iv, Secret: remoteKeys.encryption}, // AES256-CBC
|
||
decrypt: &AES{KeyLength: 256, IV: localKeys.iv, Secret: localKeys.encryption}, // AES256-CBC
|
||
signature: &HMAC{Hash: crypto.SHA256, Secret: remoteKeys.signing}, // HMAC-SHA2-256
|
||
verifySignature: &HMAC{Hash: crypto.SHA256, Secret: localKeys.signing}, // HMAC-SHA2-256
|
||
signatureLength: 256 / 8,
|
||
encryptionURI: "http://www.w3.org/2001/04/xmlenc#aes256-cbc",
|
||
signatureURI: "http://www.w3.org/2000/09/xmldsig#hmac-sha256",
|
||
}, nil
|
||
}
|
||
|
||
func newBasic256Rsa256Asymmetric(localKey *rsa.PrivateKey, remoteKey *rsa.PublicKey) (*EncryptionAlgorithm, error) {
|
||
const (
|
||
minAsymmetricKeyLength = 256 // 2048 bits
|
||
maxAsymmetricKeyLength = 512 // 4096 bits
|
||
nonceLength = 32
|
||
)
|
||
|
||
if localKey != nil && (localKey.PublicKey.Size() < minAsymmetricKeyLength || localKey.PublicKey.Size() > maxAsymmetricKeyLength) {
|
||
msg := fmt.Sprintf("local key size should be %d-%d bytes, got %d bytes", minAsymmetricKeyLength, maxAsymmetricKeyLength, localKey.PublicKey.Size())
|
||
return nil, errors.New(msg)
|
||
}
|
||
|
||
if remoteKey != nil && (remoteKey.Size() < minAsymmetricKeyLength || remoteKey.Size() > maxAsymmetricKeyLength) {
|
||
msg := fmt.Sprintf("remote key size should be %d-%d bytes, got %d bytes", minAsymmetricKeyLength, maxAsymmetricKeyLength, remoteKey.Size())
|
||
return nil, errors.New(msg)
|
||
}
|
||
var localKeySize, remoteKeySize int
|
||
if localKey != nil {
|
||
localKeySize = localKey.PublicKey.Size()
|
||
}
|
||
|
||
if remoteKey != nil {
|
||
remoteKeySize = remoteKey.Size()
|
||
}
|
||
|
||
return &EncryptionAlgorithm{
|
||
blockSize: remoteKeySize,
|
||
plainttextBlockSize: remoteKeySize - RSAOAEPMinPaddingSHA1,
|
||
encrypt: &RSAOAEP{Hash: crypto.SHA1, PublicKey: remoteKey}, // RSA-OAEP
|
||
decrypt: &RSAOAEP{Hash: crypto.SHA1, PrivateKey: localKey}, // RSA-OAEP
|
||
signature: &PKCS1v15{Hash: crypto.SHA256, PrivateKey: localKey}, // RSA-PKCS15-SHA2-256
|
||
verifySignature: &PKCS1v15{Hash: crypto.SHA256, PublicKey: remoteKey}, // RSA-PKCS15-SHA2-256
|
||
nonceLength: nonceLength,
|
||
signatureLength: localKeySize,
|
||
encryptionURI: "http://www.w3.org/2001/04/xmlenc#rsa-oaep",
|
||
signatureURI: "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256",
|
||
}, nil
|
||
}
|