open5gs/src/mme/nas-security.c

/*
 * Copyright (C) 2019 by Sukchan Lee <acetcom@gmail.com>
 *
 * This file is part of Open5GS.
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>.
 */

#include "nas-security.h"

#define NAS_SECURITY_BEARER 0
#define NAS_SECURITY_MAC_SIZE 4

ogs_pkbuf_t *nas_eps_security_encode(
        mme_ue_t *mme_ue, ogs_nas_eps_message_t *message)
{
    int integrity_protected = 0;
    int new_security_context = 0;
    int ciphered = 0;
    ogs_nas_eps_security_header_t h;
    ogs_pkbuf_t *new = NULL;

    ogs_assert(mme_ue);
    ogs_assert(message);

    switch (message->h.security_header_type) {
    case OGS_NAS_SECURITY_HEADER_PLAIN_NAS_MESSAGE:
        return ogs_nas_eps_plain_encode(message);
    case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED:
        integrity_protected = 1;
        break;
    case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_CIPHERED:
        integrity_protected = 1;
        ciphered = 1;
        break;
    case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_NEW_SECURITY_CONTEXT:
        integrity_protected = 1;
        new_security_context = 1;
        break;
    case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_CIPHTERD_WITH_NEW_INTEGRITY_CONTEXT:
        integrity_protected = 1;
        new_security_context = 1;
        ciphered = 1;
        break;
    default:
        ogs_error("Not implemented(securiry header type:0x%x)", 
                message->h.security_header_type);
        return NULL;
    }

    if (new_security_context) {
        mme_ue->dl_count = 0;
        mme_ue->ul_count.i32 = 0;
    }

    if (mme_ue->selected_enc_algorithm == 0)
        ciphered = 0;
    if (mme_ue->selected_int_algorithm == 0)
        integrity_protected = 0;

    memset(&h, 0, sizeof(h));
    h.security_header_type = message->h.security_header_type;
    h.protocol_discriminator = message->h.protocol_discriminator;
    h.sequence_number = (mme_ue->dl_count & 0xff);

    new = ogs_nas_eps_plain_encode(message);
    if (!new) {
        ogs_error("ogs_nas_eps_plain_encode() failed");
        return NULL;
    }

    if (ciphered) {
        /* encrypt NAS message */
        ogs_nas_encrypt(mme_ue->selected_enc_algorithm,
            mme_ue->knas_enc, mme_ue->dl_count, NAS_SECURITY_BEARER,
            OGS_NAS_SECURITY_DOWNLINK_DIRECTION, new);
    }

    /* encode sequence number */
    ogs_assert(ogs_pkbuf_push(new, 1));
    *(uint8_t *)(new->data) = h.sequence_number;

    if (integrity_protected) {
        uint8_t mac[NAS_SECURITY_MAC_SIZE];

        /* calculate NAS MAC(message authentication code) */
        ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,
            mme_ue->knas_int, mme_ue->dl_count, NAS_SECURITY_BEARER, 
            OGS_NAS_SECURITY_DOWNLINK_DIRECTION, new, mac);
        memcpy(&h.message_authentication_code, mac, sizeof(mac));
    }

    /* increase dl_count */
    mme_ue->dl_count = (mme_ue->dl_count + 1) & 0xffffff; /* Use 24bit */

    /* encode all security header */
    ogs_assert(ogs_pkbuf_push(new, 5));
    memcpy(new->data, &h, sizeof(ogs_nas_eps_security_header_t));

    mme_ue->security_context_available = 1;

    return new;
}

int nas_eps_security_decode(mme_ue_t *mme_ue, 
    ogs_nas_security_header_type_t security_header_type, ogs_pkbuf_t *pkbuf)
{
    ogs_assert(mme_ue);
    ogs_assert(pkbuf);
    ogs_assert(pkbuf->data);

    if (security_header_type.service_request) {
#define SHORT_MAC_SIZE 2
        ogs_nas_ksi_and_sequence_number_t *ksi_and_sequence_number =
            (ogs_nas_ksi_and_sequence_number_t *)(pkbuf->data + 1);
        uint8_t original_mac[SHORT_MAC_SIZE];
        uint8_t estimated_sequence_number;
        uint8_t sequence_number_high_3bit;
        uint8_t mac[NAS_SECURITY_MAC_SIZE];

        if (mme_ue->selected_int_algorithm == 0) {
            ogs_warn("integrity algorithm is not defined");
            return OGS_ERROR;
        }

        ogs_assert(ksi_and_sequence_number);
        estimated_sequence_number = 
            ksi_and_sequence_number->sequence_number;

        sequence_number_high_3bit = mme_ue->ul_count.sqn & 0xe0;
        if ((mme_ue->ul_count.sqn & 0x1f) > estimated_sequence_number) {
            sequence_number_high_3bit += 0x20;
        }
        estimated_sequence_number += sequence_number_high_3bit;

        if (mme_ue->ul_count.sqn > estimated_sequence_number)
            mme_ue->ul_count.overflow++;
        mme_ue->ul_count.sqn = estimated_sequence_number;

        memcpy(original_mac, pkbuf->data + 2, SHORT_MAC_SIZE);

        ogs_pkbuf_trim(pkbuf, 2);
        ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,
            mme_ue->knas_int, mme_ue->ul_count.i32, NAS_SECURITY_BEARER,
            OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf, mac);

        ogs_pkbuf_put_data(pkbuf, original_mac, SHORT_MAC_SIZE);
        if (memcmp(mac + 2, pkbuf->data + 2, 2) != 0) {
            ogs_warn("NAS MAC verification failed(%x%x != %x%x)",
                    mac[2], mac[3],
                    ((unsigned char *)pkbuf->data)[2],
                    ((unsigned char *)pkbuf->data)[3]);

            mme_ue->mac_failed = 1;
        }

        return OGS_OK;
    }

    if (!mme_ue->security_context_available) {
        security_header_type.integrity_protected = 0;
        security_header_type.new_security_context = 0;
        security_header_type.ciphered = 0;
    }

    if (security_header_type.new_security_context) {
        mme_ue->ul_count.i32 = 0;
    }

    if (mme_ue->selected_enc_algorithm == 0)
        security_header_type.ciphered = 0;
    if (mme_ue->selected_int_algorithm == 0)
        security_header_type.integrity_protected = 0;

    if (security_header_type.ciphered || 
        security_header_type.integrity_protected) {
        ogs_nas_eps_security_header_t *h = NULL;

        /* NAS Security Header */
        ogs_assert(ogs_pkbuf_push(pkbuf, 6));
        h = (ogs_nas_eps_security_header_t *)pkbuf->data;

        /* NAS Security Header.Sequence_Number */
        ogs_assert(ogs_pkbuf_pull(pkbuf, 5));

        /* calculate ul_count */
        if (mme_ue->ul_count.sqn > h->sequence_number)
            mme_ue->ul_count.overflow++;
        mme_ue->ul_count.sqn = h->sequence_number;

        if (security_header_type.integrity_protected) {
            uint8_t mac[NAS_SECURITY_MAC_SIZE];
            uint32_t mac32;
            uint32_t original_mac = h->message_authentication_code;

            /* calculate NAS MAC(message authentication code) */
            ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,
                mme_ue->knas_int, mme_ue->ul_count.i32, NAS_SECURITY_BEARER, 
                OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf, mac);
            h->message_authentication_code = original_mac;

            memcpy(&mac32, mac, NAS_SECURITY_MAC_SIZE);
            if (h->message_authentication_code != mac32) {
                ogs_warn("NAS MAC verification failed(0x%x != 0x%x)",
                    be32toh(h->message_authentication_code), be32toh(mac32));
                mme_ue->mac_failed = 1;
            }
        }

        /* NAS EMM Header or ESM Header */
        ogs_assert(ogs_pkbuf_pull(pkbuf, 1));

        if (security_header_type.ciphered) {
            /* decrypt NAS message */
            if (pkbuf->len == 0) {
                ogs_error("Cannot decrypt Malformed NAS Message");
                return OGS_ERROR;
            }
            ogs_nas_encrypt(mme_ue->selected_enc_algorithm,
                mme_ue->knas_enc, mme_ue->ul_count.i32, NAS_SECURITY_BEARER,
                OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf);
        }
    }

    return OGS_OK;
}
fix indentation in MME 2019-07-11 12:53:54 +00:00			`/*`
			`* Copyright (C) 2019 by Sukchan Lee <acetcom@gmail.com>`
			`*`
			`* This file is part of Open5GS.`
			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program. If not, see <https://www.gnu.org/licenses/>.`
			`*/`

rename project done 2019-06-11 13:10:47 +00:00			`#include "nas-security.h"`
nas security wrapper is added 2017-03-08 06:27:48 +00:00
NGAP is added 2020-05-23 02:24:48 +00:00			`#define NAS_SECURITY_BEARER 0`
			`#define NAS_SECURITY_MAC_SIZE 4`

			`ogs_pkbuf_t *nas_eps_security_encode(`
			`mme_ue_t mme_ue, ogs_nas_eps_message_t message)`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00			`{`
update it 2017-03-08 13:54:16 +00:00			`int integrity_protected = 0;`
			`int new_security_context = 0;`
			`int ciphered = 0;`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_eps_security_header_t h;`
change ogs_expect() to ogs_assert() (#323) 2019-12-13 04:44:22 +00:00			`ogs_pkbuf_t *new = NULL;`
update it 2017-03-08 13:54:16 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(mme_ue);`
			`ogs_assert(message);`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`switch (message->h.security_header_type) {`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`case OGS_NAS_SECURITY_HEADER_PLAIN_NAS_MESSAGE:`
NGAP is added 2020-05-23 02:24:48 +00:00			`return ogs_nas_eps_plain_encode(message);`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED:`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`integrity_protected = 1;`
			`break;`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_CIPHERED:`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`integrity_protected = 1;`
			`ciphered = 1;`
			`break;`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_NEW_SECURITY_CONTEXT:`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`integrity_protected = 1;`
			`new_security_context = 1;`
			`break;`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`case OGS_NAS_SECURITY_HEADER_INTEGRITY_PROTECTED_AND_CIPHTERD_WITH_NEW_INTEGRITY_CONTEXT:`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`integrity_protected = 1;`
			`new_security_context = 1;`
			`ciphered = 1;`
			`break;`
			`default:`
Review ogs_expect() (#314) 2019-11-30 07:45:09 +00:00			`ogs_error("Not implemented(securiry header type:0x%x)",`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`message->h.security_header_type);`
Review ogs_expect() (#314) 2019-11-30 07:45:09 +00:00			`return NULL;`
update it 2017-03-08 13:54:16 +00:00			`}`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (new_security_context) {`
change vairable name from 'ue' to 'enb_ue or mme_ue' 2017-04-28 07:11:45 +00:00			`mme_ue->dl_count = 0;`
			`mme_ue->ul_count.i32 = 0;`
update it 2017-03-08 13:54:16 +00:00			`}`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
update it 2017-07-14 12:39:21 +00:00			`if (mme_ue->selected_enc_algorithm == 0)`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00			`ciphered = 0;`
update it 2017-07-14 12:39:21 +00:00			`if (mme_ue->selected_int_algorithm == 0)`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00			`integrity_protected = 0;`

small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`memset(&h, 0, sizeof(h));`
			`h.security_header_type = message->h.security_header_type;`
			`h.protocol_discriminator = message->h.protocol_discriminator;`
			`h.sequence_number = (mme_ue->dl_count & 0xff);`

NGAP is added 2020-05-23 02:24:48 +00:00			`new = ogs_nas_eps_plain_encode(message);`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`if (!new) {`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_error("ogs_nas_eps_plain_encode() failed");`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`return NULL;`
			`}`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`if (ciphered) {`
			`/* encrypt NAS message */`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_encrypt(mme_ue->selected_enc_algorithm,`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`mme_ue->knas_enc, mme_ue->dl_count, NAS_SECURITY_BEARER,`
Shall cipher in the NAS message container IE 3GPP TS 24.501 version 16.6.0 Release 16 4.4 NAS security 4.4.6 Protection of initial NAS signalling messages 1) the UE needs to send non-cleartext IEs in a REGISTRATION REQUEST or SERVICE REQUEST message, the UE includes the entire REGISTRATION REQUEST or SERVICE REQUEST message (i.e. containing both cleartext IEs and non-cleartext IEs) in the NAS message container IE and shall cipher the value part of the NAS message container IE. The UE shall then send a REGISTRATION REQUEST or SERVICE REQUEST message containing the cleartext IEs and the NAS message container IE; 2022-01-05 13:39:06 +00:00			`OGS_NAS_SECURITY_DOWNLINK_DIRECTION, new);`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`}`
update it 2017-03-08 13:54:16 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`/* encode sequence number */`
			`ogs_assert(ogs_pkbuf_push(new, 1));`
			`(uint8_t )(new->data) = h.sequence_number;`
fix the encryption bug 2018-05-22 08:39:43 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`if (integrity_protected) {`
			`uint8_t mac[NAS_SECURITY_MAC_SIZE];`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`/* calculate NAS MAC(message authentication code) */`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`mme_ue->knas_int, mme_ue->dl_count, NAS_SECURITY_BEARER,`
Shall cipher in the NAS message container IE 3GPP TS 24.501 version 16.6.0 Release 16 4.4 NAS security 4.4.6 Protection of initial NAS signalling messages 1) the UE needs to send non-cleartext IEs in a REGISTRATION REQUEST or SERVICE REQUEST message, the UE includes the entire REGISTRATION REQUEST or SERVICE REQUEST message (i.e. containing both cleartext IEs and non-cleartext IEs) in the NAS message container IE and shall cipher the value part of the NAS message container IE. The UE shall then send a REGISTRATION REQUEST or SERVICE REQUEST message containing the cleartext IEs and the NAS message container IE; 2022-01-05 13:39:06 +00:00			`OGS_NAS_SECURITY_DOWNLINK_DIRECTION, new, mac);`
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`memcpy(&h.message_authentication_code, mac, sizeof(mac));`
			`}`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`/* increase dl_count */`
			`mme_ue->dl_count = (mme_ue->dl_count + 1) & 0xffffff; /* Use 24bit */`
fix the ul count in security context 2017-03-08 15:09:30 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`/* encode all security header */`
			`ogs_assert(ogs_pkbuf_push(new, 5));`
NGAP is added 2020-05-23 02:24:48 +00:00			`memcpy(new->data, &h, sizeof(ogs_nas_eps_security_header_t));`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`mme_ue->security_context_available = 1;`
Review ogs_expect() (#314) 2019-11-30 07:45:09 +00:00
small stability fixes that were causing crashes in Bokondini (#323) 2019-12-13 04:25:52 +00:00			`return new;`
NAS MAC is added, but not verified 2017-03-08 10:10:01 +00:00			`}`

NGAP is added 2020-05-23 02:24:48 +00:00			`int nas_eps_security_decode(mme_ue_t *mme_ue,`
			`ogs_nas_security_header_type_t security_header_type, ogs_pkbuf_t *pkbuf)`
update it 2017-03-08 13:39:28 +00:00			`{`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(mme_ue);`
			`ogs_assert(pkbuf);`
			`ogs_assert(pkbuf->data);`
update it 2017-03-08 14:04:35 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (security_header_type.service_request) {`
Fix the bug for EIA2 (#64) 2018-05-22 02:31:09 +00:00			`#define SHORT_MAC_SIZE 2`
Re-factoring the all library 2019-09-13 12:07:47 +00:00			`ogs_nas_ksi_and_sequence_number_t *ksi_and_sequence_number =`
Rename Project to Open5GS - Change BuildTool to Meson - Many BUGS Fixed 2019-10-27 08:41:14 +00:00			`(ogs_nas_ksi_and_sequence_number_t *)(pkbuf->data + 1);`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`uint8_t original_mac[SHORT_MAC_SIZE];`
			`uint8_t estimated_sequence_number;`
			`uint8_t sequence_number_high_3bit;`
			`uint8_t mac[NAS_SECURITY_MAC_SIZE];`
update it 2017-07-28 14:07:57 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (mme_ue->selected_int_algorithm == 0) {`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_warn("integrity algorithm is not defined");`
			`return OGS_ERROR;`
update it 2017-07-28 14:07:57 +00:00			`}`
Service Request is added 2017-07-25 14:29:02 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(ksi_and_sequence_number);`
update it 2017-07-28 14:07:57 +00:00			`estimated_sequence_number =`
			`ksi_and_sequence_number->sequence_number;`
Service Request is added 2017-07-25 14:29:02 +00:00
update it 2017-07-28 14:07:57 +00:00			`sequence_number_high_3bit = mme_ue->ul_count.sqn & 0xe0;`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if ((mme_ue->ul_count.sqn & 0x1f) > estimated_sequence_number) {`
update it 2017-07-28 14:07:57 +00:00			`sequence_number_high_3bit += 0x20;`
			`}`
			`estimated_sequence_number += sequence_number_high_3bit;`
Service Request is added 2017-07-25 14:29:02 +00:00
update it 2017-07-28 14:07:57 +00:00			`if (mme_ue->ul_count.sqn > estimated_sequence_number)`
			`mme_ue->ul_count.overflow++;`
			`mme_ue->ul_count.sqn = estimated_sequence_number;`
Service Request is added 2017-07-25 14:29:02 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`memcpy(original_mac, pkbuf->data + 2, SHORT_MAC_SIZE);`
Fix the bug for EIA2 (#64) 2018-05-22 02:31:09 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_pkbuf_trim(pkbuf, 2);`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,`
update it 2017-07-28 14:07:57 +00:00			`mme_ue->knas_int, mme_ue->ul_count.i32, NAS_SECURITY_BEARER,`
Shall cipher in the NAS message container IE 3GPP TS 24.501 version 16.6.0 Release 16 4.4 NAS security 4.4.6 Protection of initial NAS signalling messages 1) the UE needs to send non-cleartext IEs in a REGISTRATION REQUEST or SERVICE REQUEST message, the UE includes the entire REGISTRATION REQUEST or SERVICE REQUEST message (i.e. containing both cleartext IEs and non-cleartext IEs) in the NAS message container IE and shall cipher the value part of the NAS message container IE. The UE shall then send a REGISTRATION REQUEST or SERVICE REQUEST message containing the cleartext IEs and the NAS message container IE; 2022-01-05 13:39:06 +00:00			`OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf, mac);`
Fix the bug for EIA2 (#64) 2018-05-22 02:31:09 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_pkbuf_put_data(pkbuf, original_mac, SHORT_MAC_SIZE);`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (memcmp(mac + 2, pkbuf->data + 2, 2) != 0) {`
[Done] SMS over SGs 2019-07-13 13:52:50 +00:00			`ogs_warn("NAS MAC verification failed(%x%x != %x%x)",`
			`mac[2], mac[3],`
			`((unsigned char *)pkbuf->data)[2],`
			`((unsigned char *)pkbuf->data)[3]);`

update it 2017-07-28 14:07:57 +00:00			`mme_ue->mac_failed = 1;`
Service Request is added 2017-07-25 14:29:02 +00:00			`}`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`return OGS_OK;`
update it 2017-07-28 14:07:57 +00:00			`}`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (!mme_ue->security_context_available) {`
update it 2017-07-28 14:07:57 +00:00			`security_header_type.integrity_protected = 0;`
			`security_header_type.new_security_context = 0;`
			`security_header_type.ciphered = 0;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00			`}`

fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (security_header_type.new_security_context) {`
change vairable name from 'ue' to 'enb_ue or mme_ue' 2017-04-28 07:11:45 +00:00			`mme_ue->ul_count.i32 = 0;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00			`}`

update it 2017-07-14 12:39:21 +00:00			`if (mme_ue->selected_enc_algorithm == 0)`
update it 2017-07-28 14:07:57 +00:00			`security_header_type.ciphered = 0;`
update it 2017-07-14 12:39:21 +00:00			`if (mme_ue->selected_int_algorithm == 0)`
update it 2017-07-28 14:07:57 +00:00			`security_header_type.integrity_protected = 0;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
update it 2017-07-28 14:07:57 +00:00			`if (security_header_type.ciphered \|\|`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`security_header_type.integrity_protected) {`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_eps_security_header_t *h = NULL;`
update it 2017-07-28 14:07:57 +00:00
			`/* NAS Security Header */`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(ogs_pkbuf_push(pkbuf, 6));`
NGAP is added 2020-05-23 02:24:48 +00:00			`h = (ogs_nas_eps_security_header_t *)pkbuf->data;`
update it 2017-07-28 14:07:57 +00:00
			`/* NAS Security Header.Sequence_Number */`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(ogs_pkbuf_pull(pkbuf, 5));`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
update it 2017-04-11 05:26:54 +00:00			`/* calculate ul_count */`
change vairable name from 'ue' to 'enb_ue or mme_ue' 2017-04-28 07:11:45 +00:00			`if (mme_ue->ul_count.sqn > h->sequence_number)`
			`mme_ue->ul_count.overflow++;`
			`mme_ue->ul_count.sqn = h->sequence_number;`
update it 2017-04-11 05:26:54 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (security_header_type.integrity_protected) {`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`uint8_t mac[NAS_SECURITY_MAC_SIZE];`
			`uint32_t mac32;`
			`uint32_t original_mac = h->message_authentication_code;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
			`/* calculate NAS MAC(message authentication code) */`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_mac_calculate(mme_ue->selected_int_algorithm,`
change vairable name from 'ue' to 'enb_ue or mme_ue' 2017-04-28 07:11:45 +00:00			`mme_ue->knas_int, mme_ue->ul_count.i32, NAS_SECURITY_BEARER,`
Shall cipher in the NAS message container IE 3GPP TS 24.501 version 16.6.0 Release 16 4.4 NAS security 4.4.6 Protection of initial NAS signalling messages 1) the UE needs to send non-cleartext IEs in a REGISTRATION REQUEST or SERVICE REQUEST message, the UE includes the entire REGISTRATION REQUEST or SERVICE REQUEST message (i.e. containing both cleartext IEs and non-cleartext IEs) in the NAS message container IE and shall cipher the value part of the NAS message container IE. The UE shall then send a REGISTRATION REQUEST or SERVICE REQUEST message containing the cleartext IEs and the NAS message container IE; 2022-01-05 13:39:06 +00:00			`OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf, mac);`
Fix the bug for EIA2 (#64) 2018-05-22 02:31:09 +00:00			`h->message_authentication_code = original_mac;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00
			`memcpy(&mac32, mac, NAS_SECURITY_MAC_SIZE);`
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (h->message_authentication_code != mac32) {`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_warn("NAS MAC verification failed(0x%x != 0x%x)",`
Fix release access bearer #592 2020-10-01 17:27:58 +00:00			`be32toh(h->message_authentication_code), be32toh(mac32));`
update it 2017-07-28 14:07:57 +00:00			`mme_ue->mac_failed = 1;`
Now, MME can authorize UE 2017-03-08 14:42:27 +00:00			`}`
			`}`

update it 2017-07-28 14:07:57 +00:00			`/* NAS EMM Header or ESM Header */`
Integration with OGSLib 2019-04-27 14:54:30 +00:00			`ogs_assert(ogs_pkbuf_pull(pkbuf, 1));`
fix the encryption bug 2018-05-22 08:39:43 +00:00
fix indentation in MME 2019-07-11 12:53:54 +00:00			`if (security_header_type.ciphered) {`
fix the encryption bug 2018-05-22 08:39:43 +00:00			`/* decrypt NAS message */`
[SEC] Crash and Protocol Violations The AMF will crash on the following locations when it receives a sequence of NAS messages from a UE. - ogs_nas_encrypt: Assertion `pkbuf->len' failed. (../lib/nas/common/security.c:86) - gmm_state_authentication: Assertion `r != OGS_ERROR' failed. (../src/amf/gmm-sm.c:1561) Besides the crashes found above, an incorrect protocol transition is identified in Open5GS. Without any Registration/Attach Request message, when the Identity Response message sent, the Core Network responds with an Authentication Request message. According to the standard, only the Registration/Attach Request message can start a state transition from the 5GMM/EMM-DEREGISTERED state to the 5GMM/EMM-COMMON-PROCEDURE-INITIATED. So I've modified the relevant code to address these issues. 2024-04-09 07:20:18 +00:00			`if (pkbuf->len == 0) {`
			`ogs_error("Cannot decrypt Malformed NAS Message");`
			`return OGS_ERROR;`
			`}`
NGAP is added 2020-05-23 02:24:48 +00:00			`ogs_nas_encrypt(mme_ue->selected_enc_algorithm,`
fix the encryption bug 2018-05-22 08:39:43 +00:00			`mme_ue->knas_enc, mme_ue->ul_count.i32, NAS_SECURITY_BEARER,`
Shall cipher in the NAS message container IE 3GPP TS 24.501 version 16.6.0 Release 16 4.4 NAS security 4.4.6 Protection of initial NAS signalling messages 1) the UE needs to send non-cleartext IEs in a REGISTRATION REQUEST or SERVICE REQUEST message, the UE includes the entire REGISTRATION REQUEST or SERVICE REQUEST message (i.e. containing both cleartext IEs and non-cleartext IEs) in the NAS message container IE and shall cipher the value part of the NAS message container IE. The UE shall then send a REGISTRATION REQUEST or SERVICE REQUEST message containing the cleartext IEs and the NAS message container IE; 2022-01-05 13:39:06 +00:00			`OGS_NAS_SECURITY_UPLINK_DIRECTION, pkbuf);`
fix the encryption bug 2018-05-22 08:39:43 +00:00			`}`
update it 2017-03-08 14:04:35 +00:00			`}`

Integration with OGSLib 2019-04-27 14:54:30 +00:00			`return OGS_OK;`
update it 2017-03-08 13:39:28 +00:00			`}`