mikeymessage.h

MiniSip Client with DomainKeys Authentication, Sip, Audio communications, Echo Cancel

/*
  Copyright (C) 2005, 2004 Erik Eliasson, Johan Bilien, Joachim Orrblad
  
  This library is free software; you can redistribute it and/or
  modify it under the terms of the GNU Lesser General Public
  License as published by the Free Software Foundation; either
  version 2.1 of the License, or (at your option) any later version.

  This library is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public
  License along with this library; if not, write to the Free Software
  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
*/

/*
 * Authors: Erik Eliasson <eliasson@it.kth.se>
 *          Johan Bilien <jobi@via.ecp.fr>
 *	    Joachim Orrblad <joachim@orrblad.com>
*/


#ifndef MIKEYMESSAGE_H
#define MIKEYMESSAGE_H

#include<libmikey/libmikey_config.h>

#include<libmikey/MikeyDefs.h>

#include<assert.h>

#include<libmikey/MikeyPayload.h>
#include<libmikey/MikeyPayloadSIGN.h>

#include<libmikey/keyagreement.h>
#include<libmikey/keyagreement_dh.h>
#include<libmikey/keyagreement_psk.h>
#include<libmikey/KeyAgreementPKE.h>
#include<libmikey/KeyAgreementDK.h>

#include<libmcrypto/PrivateKey.h>

#include<list>
#include<iostream>

#define MIKEY_TYPE_PSK_INIT    0
#define MIKEY_TYPE_PSK_RESP    1
#define MIKEY_TYPE_PK_INIT     2 
#define MIKEY_TYPE_PK_RESP     3
#define MIKEY_TYPE_DH_INIT     4
#define MIKEY_TYPE_DH_RESP     5
#define MIKEY_TYPE_ERROR       6
#define MIKEY_TYPE_DK_INIT     7 // TODO: numbering?
#define MIKEY_TYPE_DK_RESP     8

#define MIKEY_ENCR_AES_CM_128 0
#define MIKEY_ENCR_NULL       1
#define MIKEY_ENCR_AES_KW_128 2

#define MIKEY_MAC_NULL          0
#define MIKEY_MAC_HMAC_SHA1_160 1

#define MAX_TIME_OFFSET (int64_t)(0xe100000<<16) //1 hour

class aes;
class certificate;
class certificate_db;


class LIBMIKEY_API MikeyMessage{
	public:
		MikeyMessage();
		MikeyMessage( byte_t *message, int lengthLimit );
		MikeyMessage( std::string b64Message );
		MikeyMessage( KeyAgreementDH * ka );
		MikeyMessage( KeyAgreementPSK * ka,
			      int encrAlg = MIKEY_ENCR_AES_CM_128, 
			      int macAlg  = MIKEY_MAC_HMAC_SHA1_160 );
		
		//added by choehn
		MikeyMessage(KeyAgreementPKE* ka,
				  int encrAlg = MIKEY_ENCR_AES_CM_128,
				  int macAlg = MIKEY_MAC_HMAC_SHA1_160,
				  EVP_PKEY* privKeyInitiator = NULL);

		/**
		 * Creates the MIKEY-message to be sent within the SDP-PDU of the SIP-INVITE.
		 * This constructor is invoked by the CALLER only.
		 * @param ka: KeyAgreement to which this message belongs.
		 * @param pk: PrivateKey to sign the message with.
		 * @param sipuri: SIP-URI of the caller.
		 */
		MikeyMessage(KeyAgreementDK* ka, PrivateKey* pk, std::string sipuri);

		~MikeyMessage();
		
		void addPayload( MikeyPayload * payload );
		void operator+=( MikeyPayload * payload );
		void addSignaturePayload( MRef<certificate *> cert );
		void addVPayload( int macAlg, uint64_t receivedT,
			byte_t * authKey, uint32_t authKeyLength);
		void addKemacPayload(
				byte_t * tgk, int tgkLength,
				byte_t * encrKey, byte_t * iv,
				byte_t * authKey,
				int encrAlg, int macAlg );
				
		//added by choehn
		void addKemacPayloadPKE(
				byte_t * tgk, int tgkLength,
				byte_t * encrKey, byte_t * iv,
				byte_t * authKey,
				int encrAlg, int macAlg );
		
		std::string debugDump();
		byte_t * rawMessageData();
		int rawMessageLength();
		
		std::list<MikeyPayload *>::iterator firstPayload();
		std::list<MikeyPayload *>::iterator lastPayload();
		
		MikeyPayload * extractPayload( int type );
		void remove( MikeyPayload * );

		int type();
		uint32_t csbId();

		std::string b64Message();

		MikeyMessage * parseResponse( KeyAgreementDH  * ka );
		MikeyMessage * parseResponse( KeyAgreementPSK * ka );
		
		//added by choehn
		MikeyMessage * parseResponse( KeyAgreementPKE * ka );

		/**
		 * Builds a MikeyMessage from the base64 encoded response.
		 * This method is invoked by the CALLER only.
		 * @param ka: The response is stored in the KeyAgreementDK.
		 */
		MikeyMessage * parseResponse( KeyAgreementDK  * ka );

		void setOffer( KeyAgreementDH * ka );
		void setOffer( KeyAgreementPSK * ka );
		
		//added by choehn
		void setOffer( KeyAgreementPKE * ka );
		
		/**
		 * Retrieves the public DH exponent of the caller and stores it in the KeyAgreement.
		 * This is done by the CALLEE.
		 * @param ka: Where to store the public exponent.
		 */
		void setOffer( KeyAgreementDK  * ka );

		MikeyMessage * buildResponse( KeyAgreementDH  * ka );
		MikeyMessage * buildResponse( KeyAgreementPSK * ka );
		
		//added by choehn
		MikeyMessage * buildResponse( KeyAgreementPKE * ka );
		
		/**
		 * Builds the response to send back to the caller within the SDP-PDU of the SIP-OK.
		 * This method is invoked by the CALLEE only.
		 * @param ka: The public DH exponent is taken from this KeyAgreementDK.
		 * @param pk: PrivateKey to sign the MIKEY-message with.
		 * @param sipuri: SIP-URI of the callee.
		 */
		MikeyMessage * buildResponse( KeyAgreementDK  * ka, PrivateKey* pk, std::string sipuri );


		bool authenticate( KeyAgreementDH  * ka );
		bool authenticate( KeyAgreementPSK * ka );
		
		//added by choehn
		bool authenticate( KeyAgreementPKE * ka );
		
		/**
		 * Verifies the signature of the MIKEY-message.
		 * This method is invoked by either the CALLER or CALLEE.
		 * @param ka: authentication errors are reported to this KeyAgreement.
		 */
		bool authenticate( KeyAgreementDK  * ka );

	protected:
		std::list<MikeyPayload *> payloads;

	private:
		void parse( byte_t *message, int lengthLimit );
		void compile();
		void addPolicyToPayload(KeyAgreement * ka);
		void addPolicyTo_ka(KeyAgreement * ka);
		bool compiled;
		byte_t *rawData;
		
};



#endif