support pc development with JS http bridge

2018-07-09 23:50:21 -04:00 · 2018-07-09 23:50:21 -04:00 · 689f0bd5f1
commit 689f0bd5f1
parent 4eeb99fb59
5 changed files with 231 additions and 24 deletions
--- a/11
+++ b/11
@ -9,16 +9,23 @@
 platform=2
-src = $(wildcard *.c) $(wildcard crypto/*.c) crypto/tiny-AES-c/aes.c
+src = $(wildcard pc/*.c) $(wildcard fido2/*.c) $(wildcard crypto/sha256/*.c) crypto/tiny-AES-c/aes.c
 obj = $(src:.c=.o) uECC.o
 LDFLAGS = -Wl,--gc-sections ./tinycbor/lib/libtinycbor.a
-CFLAGS = -O2 -fdata-sections -ffunction-sections -I./tinycbor/src -I./crypto -I./crypto/micro-ecc/ -Icrypto/tiny-AES-c/ -I.
+CFLAGS = -O2 -fdata-sections -ffunction-sections 
 INCLUDES = -I./tinycbor/src -I./crypto/sha256 -I./crypto/micro-ecc/ -Icrypto/tiny-AES-c/ -I./fido2/ -I./pc
 CFLAGS += $(INCLUDES)
 name = main
 all: main
 cbor:
 	cd tinycbor/ && $(MAKE) clean && $(MAKE) -j8
 test: testgcm
 efm8prog:
--- a/pc/app.h
+++ b/pc/app.h
@ -0,0 +1,18 @@
 /*
 * app.h
 *
 *  Created on: Jun 26, 2018
 *      Author: conor
 */
 #ifndef SRC_APP_H_
 #define SRC_APP_H_
 #define USING_DEV_BOARD
 #define BRIDGE_TO_WALLET
 void printing_init();
 #endif /* SRC_APP_H_ */
--- a/pc/device.c
+++ b/pc/device.c
@ -95,12 +95,12 @@ void udp_close(int fd)
-uint64_t millis()
+uint32_t millis()
 {
    struct timeval te;
    gettimeofday(&te, NULL); // get current time
    uint64_t milliseconds = te.tv_sec*1000LL + te.tv_usec/1000; // calculate milliseconds
-    return milliseconds;
+    return (uint32_t)milliseconds;
 }
--- a/tools/http2udb.py
+++ b/tools/http2udb.py
@ -0,0 +1,128 @@
 #!/usr/bin/python
 from __future__ import print_function, absolute_import, unicode_literals
 from http.server import BaseHTTPRequestHandler,HTTPServer
 from fido2.hid import CtapHidDevice, CTAPHID
 from fido2.client import Fido2Client, ClientError
 from fido2.ctap import CtapError
 from fido2.ctap1 import CTAP1
 from fido2.ctap2 import *
 from fido2.cose import *
 from fido2.utils import Timeout
 import socket,json,base64,ssl
 httpport = 8080
 udpport = 8111
 def ForceU2F(client,device):
    client.ctap = CTAP1(device)
    client.pin_protocol = None
    client._do_make_credential = client._ctap1_make_credential
    client._do_get_assertion = client._ctap1_get_assertion
 if __name__ == '__main__':
    dev = next(CtapHidDevice.list_devices(), None)
    print(dev)
    if not dev:
        raise RuntimeError('No FIDO device found')
    client = Fido2Client(dev, 'https://example.com')
    ForceU2F(client, dev)
    ctap = client.ctap
 def to_websafe(data):
    data = data.replace('+','-')
    data = data.replace('/','_')
    data = data.replace('=','')
    return data
 def from_websafe(data):
    data = data.replace('-','+')
    data = data.replace('_','/')
    return data + '=='[:(3*len(data)) % 4]
 def write(data):
    msg = from_websafe(data)
    msg = base64.b64decode(msg)
    chal = b'A'*32
    appid = b'A'*32
    #print (msg)
    #print (msg.decode())
    #print (str(msg))
    #msg = msg.decode('ascii')
    #print('ascii:',repr(msg))
    #print('ascii:',(type(msg)))
    #print(msg + chal)
    #data = client_param + app_param + struct.pack('>B', len(key_handle)) + key_handle
    #msg = str(msg.decode())
    #print(msg.decode())
    s = ctap.authenticate(chal,appid,msg,)
    print(s)
    #sock.sendto(msg, ('127.0.0.1', udpport))
 def read():
    #msg = [0]*64
    pkt, _ = sock.recvfrom(1000)
    #for i,v in enumerate(pkt):
        #msg[i] = ord(v)
    msg = base64.b64encode(pkt)
    msg = to_websafe(pkt)
    return msg
 class UDPBridge(BaseHTTPRequestHandler):
    def end_headers (self):
        self.send_header('Access-Control-Allow-Origin', '*')
        BaseHTTPRequestHandler.end_headers(self)
    def do_POST(self):
        content_len = int(self.headers.get('Content-Length', 0))
        post_body = self.rfile.read(content_len)
        data = json.loads(post_body)['data']
        print(data)
        msg = from_websafe(data)
        msg = base64.b64decode(msg)
        chal = b'A'*32
        appid = b'A'*32
        s = ctap.authenticate(chal,appid,msg,)
        data = struct.pack('B',s.user_presence) + struct.pack('>L',s.counter) + s.signature
        data = base64.b64encode(data).decode('ascii')
        data = to_websafe(data)
        data = json.dumps({'data':data})
        data = data.encode('ascii')
        self.send_response(200)
        self.send_header('Content-type','text/json')
        self.end_headers()
        self.wfile.write(data)
    def do_GET(self):
        self.send_response(200)
        self.send_header('Content-type','text/json')
        self.end_headers()
        #msg = {'data': read()}
        msg = {'data': 'rest'}
        self.wfile.write(json.dumps(msg).encode())
 try:
    server = HTTPServer(('', httpport), UDPBridge)
    print('Started httpserver on port ' , httpport)
    server.socket = ssl.wrap_socket (server.socket,
            keyfile="../web/localhost.key", 
            certfile='../web/localhost.crt', server_side=True)
    server.serve_forever()
 except KeyboardInterrupt:
    server.socket.close()
--- a/web/js/wallet.js
+++ b/web/js/wallet.js
@ -162,7 +162,68 @@ var PIN = {
    getPinToken: 0x05,
 };
-function send_msg(data, func, timeout) {
+// Create the XHR object.
 function createCORSRequest(method, url) {
    var xhr = new XMLHttpRequest();
    if ("withCredentials" in xhr) {
        // XHR for Chrome/Firefox/Opera/Safari.
        xhr.open(method, url, true);
    } else if (typeof XDomainRequest != "undefined") {
        // XDomainRequest for IE.
        xhr = new XDomainRequest();
        xhr.open(method, url);
    } else {
        // CORS not supported.
        xhr = null;
    }
    return xhr;
 }
 function parse_device_response(arr)
 {
    var dataview = new DataView(arr.slice(1,5).buffer);
    count = dataview.getUint32(0,true); // get count as 32 bit LE integer
    data = null;
    if (arr[5] == 0) {
        data = arr.slice(6,arr.length);
    }
    return {count: count, status: error2string(arr[5]), data: data};
 }
 // For development purposes
 function send_msg_http(data, func, timeout) {
    var url = 'https://localhost:8080';
    var req = JSON.stringify({data: array2websafe(data)});
    var xhr = createCORSRequest('POST', url);
    if (!xhr) {
        console.log('CORS not supported');
        return;
    }
    // Response handlers.
    xhr.onload = function() {
        var text = xhr.responseText;
        var resp = JSON.parse(text);
        arr = websafe2array(resp.data);
        data = parse_device_response(arr);
        if (func) func(data);
    };
    xhr.onerror = function() {
        console.log('Woops, there was an error making the request.');
    };
    xhr.send(req);
 }
 //run_tests();
 function send_msg_u2f(data, func, timeout) {
    // Use key handle and signature response as comm channel
    var d = new Date();
    var t1 = d.getTime();
@ -186,28 +247,19 @@ function send_msg(data, func, timeout) {
        var d2 = new Date();
        t2 = d2.getTime();
        sig = websafe2array(res.signatureData)
-
+        data = parse_device_response(sig);
-        //console.log(sig);
+        func(data);
        //console.log(sig.slice(1,5));
        var dataview = new DataView(sig.slice(1,5).buffer);
        count = dataview.getUint32(0,true); // get count as 32 bit LE integer
        //console.log('sig:',sig);
        //console.log('count:',count);
        data = null;
        if (sig[5] == 0) {
            data = sig.slice(6,sig.length);
        }
        func({count: count, status: error2string(sig[5]), data: data});
        //console.log('response:', res);
        //console.log('time:', t2-t1);
        //i += 1;
    },timeout);
 }
-
+DEVELOPMENT = 1
 var send_msg;
 if (DEVELOPMENT) {
    send_msg = send_msg_http;
 } else {
    send_msg = send_msg_u2f;
 }
 // Format a request message
@ -405,4 +457,6 @@ function run_tests()
 EC = elliptic.ec
-run_tests();
+
 run_tests()