forked from len0rd/rockbox
		
	Note: I left behind lcd_bitmap in features.txt, because removing it would require considerable work in the manual and the translations. Change-Id: Ia8ca7761f610d9332a0d22a7d189775fb15ec88a
		
			
				
	
	
		
			1092 lines
		
	
	
	
		
			30 KiB
		
	
	
	
		
			C
		
	
	
	
	
	
			
		
		
	
	
			1092 lines
		
	
	
	
		
			30 KiB
		
	
	
	
		
			C
		
	
	
	
	
	
| /***************************************************************************
 | |
|  *             __________               __   ___.
 | |
|  *   Open      \______   \ ____   ____ |  | _\_ |__   _______  ___
 | |
|  *   Source     |       _//  _ \_/ ___\|  |/ /| __ \ /  _ \  \/  /
 | |
|  *   Jukebox    |    |   (  <_> )  \___|    < | \_\ (  <_> > <  <
 | |
|  *   Firmware   |____|_  /\____/ \___  >__|_ \|___  /\____/__/\_ \
 | |
|  *                     \/            \/     \/    \/            \/
 | |
|  * $Id$
 | |
|  *
 | |
|  * Copyright (C) 2016 Franklin Wei
 | |
|  *
 | |
|  * This program is free software; you can redistribute it and/or
 | |
|  * modify it under the terms of the GNU General Public License
 | |
|  * as published by the Free Software Foundation; either version 2
 | |
|  * of the License, or (at your option) any later version.
 | |
|  *
 | |
|  * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
 | |
|  * KIND, either express or implied.
 | |
|  *
 | |
|  ****************************************************************************/
 | |
| 
 | |
| /* simple OTP plugin */
 | |
| 
 | |
| /* see RFCs 4226, 6238 for more information about the algorithms used */
 | |
| 
 | |
| #include "plugin.h"
 | |
| 
 | |
| #include "lib/display_text.h"
 | |
| #include "lib/pluginlib_actions.h"
 | |
| #include "lib/pluginlib_exit.h"
 | |
| #include "lib/sha1.h"
 | |
| 
 | |
| #define MAX_NAME   50
 | |
| #define SECRET_MAX 256
 | |
| #define URI_MAX    256
 | |
| #define ACCT_FILE  PLUGIN_APPS_DATA_DIR "/otp.dat"
 | |
| 
 | |
| #define MAX(a, b) (((a)>(b))?(a):(b))
 | |
| 
 | |
| struct account_t {
 | |
|     char name[MAX_NAME];
 | |
| 
 | |
|     bool is_totp; // hotp otherwise
 | |
| 
 | |
|     union {
 | |
|         uint64_t hotp_counter;
 | |
|         int totp_period;
 | |
|     };
 | |
| 
 | |
|     int digits;
 | |
| 
 | |
|     unsigned char secret[SECRET_MAX];
 | |
|     int sec_len;
 | |
| };
 | |
| 
 | |
| static int max_accts = 0;
 | |
| 
 | |
| /* in plugin buffer */
 | |
| static struct account_t *accounts = NULL;
 | |
| 
 | |
| static int next_slot = 0;
 | |
| 
 | |
| /* in SECONDS, asked for on first run */
 | |
| static int time_offs = 0;
 | |
| 
 | |
| static int HOTP(unsigned char *secret, size_t sec_len, uint64_t ctr, int digits)
 | |
| {
 | |
|     ctr = htobe64(ctr);
 | |
|     unsigned char hash[20];
 | |
|     if(hmac_sha1(secret, sec_len, &ctr, 8, hash))
 | |
|     {
 | |
|         return -1;
 | |
|     }
 | |
| 
 | |
|     int offs = hash[19] & 0xF;
 | |
|     uint32_t code = (hash[offs] & 0x7F) << 24 |
 | |
|         hash[offs + 1] << 16 |
 | |
|         hash[offs + 2] << 8  |
 | |
|         hash[offs + 3];
 | |
| 
 | |
|     int mod = 1;
 | |
|     for(int i = 0; i < digits; ++i)
 | |
|         mod *= 10;
 | |
| 
 | |
|     // debug
 | |
|     // rb->splashf(HZ * 5, "HOTP %*s, %llu, %d: %d", sec_len, secret, htobe64(ctr), digits, code % mod);
 | |
| 
 | |
|     return code % mod;
 | |
| }
 | |
| 
 | |
| #if CONFIG_RTC
 | |
| static time_t get_utc(void)
 | |
| {
 | |
|     return rb->mktime(rb->get_time()) - time_offs;
 | |
| }
 | |
| 
 | |
| static int TOTP(unsigned char *secret, size_t sec_len, uint64_t step, int digits)
 | |
| {
 | |
|     uint64_t tm = get_utc() / step;
 | |
|     return HOTP(secret, sec_len, tm, digits);
 | |
| }
 | |
| #endif
 | |
| 
 | |
| /* search the accounts for a duplicate */
 | |
| static bool acct_exists(const char *name)
 | |
| {
 | |
|     for(int i = 0; i < next_slot; ++i)
 | |
|         if(!rb->strcmp(accounts[i].name, name))
 | |
|             return true;
 | |
|     return false;
 | |
| }
 | |
| 
 | |
| // Base32 implementation
 | |
| //
 | |
| // Copyright 2010 Google Inc.
 | |
| // Author: Markus Gutschke
 | |
| //
 | |
| // Licensed under the Apache License, Version 2.0 (the "License");
 | |
| // you may not use this file except in compliance with the License.
 | |
| // You may obtain a copy of the License at
 | |
| //
 | |
| //      http://www.apache.org/licenses/LICENSE-2.0
 | |
| //
 | |
| // Unless required by applicable law or agreed to in writing, software
 | |
| // distributed under the License is distributed on an "AS IS" BASIS,
 | |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| // See the License for the specific language governing permissions and
 | |
| // limitations under the License.
 | |
| 
 | |
| static int base32_decode(uint8_t *result, int bufSize, const uint8_t *encoded) {
 | |
|   int buffer = 0;
 | |
|   int bitsLeft = 0;
 | |
|   int count = 0;
 | |
|   for (const uint8_t *ptr = encoded; count < bufSize && *ptr; ++ptr) {
 | |
|     uint8_t ch = *ptr;
 | |
|     if (ch == ' ' || ch == '\t' || ch == '\r' || ch == '\n' || ch == '-') {
 | |
|       continue;
 | |
|     }
 | |
|     buffer <<= 5;
 | |
| 
 | |
|     // Deal with commonly mistyped characters
 | |
|     if (ch == '0') {
 | |
|       ch = 'O';
 | |
|     } else if (ch == '1') {
 | |
|       ch = 'L';
 | |
|     } else if (ch == '8') {
 | |
|       ch = 'B';
 | |
|     }
 | |
| 
 | |
|     // Look up one base32 digit
 | |
|     if ((ch >= 'A' && ch <= 'Z') || (ch >= 'a' && ch <= 'z')) {
 | |
|       ch = (ch & 0x1F) - 1;
 | |
|     } else if (ch >= '2' && ch <= '7') {
 | |
|       ch -= '2' - 26;
 | |
|     } else {
 | |
|       return -1;
 | |
|     }
 | |
| 
 | |
|     buffer |= ch;
 | |
|     bitsLeft += 5;
 | |
|     if (bitsLeft >= 8) {
 | |
|       result[count++] = buffer >> (bitsLeft - 8);
 | |
|       bitsLeft -= 8;
 | |
|     }
 | |
|   }
 | |
|   if (count < bufSize) {
 | |
|     result[count] = '\000';
 | |
|   }
 | |
|   return count;
 | |
| }
 | |
| 
 | |
| static int base32_encode(const uint8_t *data, int length, uint8_t *result,
 | |
|                          int bufSize) {
 | |
|   if (length < 0 || length > (1 << 28)) {
 | |
|     return -1;
 | |
|   }
 | |
|   int count = 0;
 | |
|   if (length > 0) {
 | |
|     int buffer = data[0];
 | |
|     int next = 1;
 | |
|     int bitsLeft = 8;
 | |
|     while (count < bufSize && (bitsLeft > 0 || next < length)) {
 | |
|       if (bitsLeft < 5) {
 | |
|         if (next < length) {
 | |
|           buffer <<= 8;
 | |
|           buffer |= data[next++] & 0xFF;
 | |
|           bitsLeft += 8;
 | |
|         } else {
 | |
|           int pad = 5 - bitsLeft;
 | |
|           buffer <<= pad;
 | |
|           bitsLeft += pad;
 | |
|         }
 | |
|       }
 | |
|       int index = 0x1F & (buffer >> (bitsLeft - 5));
 | |
|       bitsLeft -= 5;
 | |
|       result[count++] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"[index];
 | |
|     }
 | |
|   }
 | |
|   if (count < bufSize) {
 | |
|     result[count] = '\000';
 | |
|   }
 | |
|   return count;
 | |
| }
 | |
| 
 | |
| /***********************************************************************
 | |
|  * File browser (from rockpaint)
 | |
|  ***********************************************************************/
 | |
| 
 | |
| static bool browse( char *dst, int dst_size, const char *start )
 | |
| {
 | |
|     struct browse_context browse;
 | |
| 
 | |
|     rb->browse_context_init(&browse, SHOW_ALL,
 | |
|                             BROWSE_SELECTONLY|BROWSE_NO_CONTEXT_MENU,
 | |
|                             NULL, NOICON, start, NULL);
 | |
| 
 | |
|     browse.buf = dst;
 | |
|     browse.bufsize = dst_size;
 | |
| 
 | |
|     rb->rockbox_browse(&browse);
 | |
| 
 | |
|     return (browse.flags & BROWSE_SELECTED);
 | |
| }
 | |
| 
 | |
| static bool read_accts(void)
 | |
| {
 | |
|     int fd = rb->open(ACCT_FILE, O_RDONLY);
 | |
|     if(fd < 0)
 | |
|         return false;
 | |
| 
 | |
|     char buf[4];
 | |
|     char magic[4] = { 'O', 'T', 'P', '1' };
 | |
|     rb->read(fd, buf, 4);
 | |
|     if(memcmp(magic, buf, 4))
 | |
|     {
 | |
|         rb->splash(HZ * 2, "Corrupt save data!");
 | |
|         rb->close(fd);
 | |
|         return false;
 | |
|     }
 | |
| 
 | |
|     rb->read(fd, &time_offs, sizeof(time_offs));
 | |
| 
 | |
|     while(next_slot < max_accts)
 | |
|     {
 | |
|         if(rb->read(fd, accounts + next_slot, sizeof(struct account_t)) != sizeof(struct account_t))
 | |
|             break;
 | |
|         ++next_slot;
 | |
|     }
 | |
| 
 | |
|     rb->close(fd);
 | |
|     return true;
 | |
| }
 | |
| 
 | |
| static void save_accts(void)
 | |
| {
 | |
|     int fd = rb->open(ACCT_FILE, O_WRONLY | O_CREAT | O_TRUNC, 0600);
 | |
|     rb->fdprintf(fd, "OTP1");
 | |
| 
 | |
|     rb->write(fd, &time_offs, sizeof(time_offs));
 | |
| 
 | |
|     for(int i = 0; i < next_slot; ++i)
 | |
|         rb->write(fd, accounts + i, sizeof(struct account_t));
 | |
|     rb->close(fd);
 | |
| }
 | |
| 
 | |
| static void add_acct_file(void)
 | |
| {
 | |
|     char fname[MAX_PATH];
 | |
|     rb->splash(HZ * 2, "Please choose file containing URI(s).");
 | |
|     int before = next_slot;
 | |
|     if(browse(fname, sizeof(fname), "/"))
 | |
|     {
 | |
|         int fd = rb->open(fname, O_RDONLY);
 | |
|         do {
 | |
|             memset(accounts + next_slot, 0, sizeof(struct account_t));
 | |
| 
 | |
|             accounts[next_slot].digits = 6;
 | |
| 
 | |
|             char uri_buf[URI_MAX];
 | |
|             if(!rb->read_line(fd, uri_buf, sizeof(uri_buf)))
 | |
|                 break;
 | |
| 
 | |
|             if(next_slot >= max_accts)
 | |
|             {
 | |
|                 rb->splash(HZ * 2, "Account limit reached: some accounts not added.");
 | |
|                 break;
 | |
|             }
 | |
| 
 | |
|             /* check for URI prefix */
 | |
|             if(rb->strncmp(uri_buf, "otpauth://", 10))
 | |
|                 continue;
 | |
| 
 | |
|             char *save;
 | |
|             char *tok = rb->strtok_r(uri_buf + 10, "/", &save);
 | |
|             if(!rb->strcmp(tok, "totp"))
 | |
|             {
 | |
|                 accounts[next_slot].is_totp = true;
 | |
|                 accounts[next_slot].totp_period = 30;
 | |
| #if !CONFIG_RTC
 | |
|                 rb->splash(2 * HZ, "TOTP not supported!");
 | |
|                 continue;
 | |
| #endif
 | |
|             }
 | |
|             else if(!rb->strcmp(tok, "hotp"))
 | |
|             {
 | |
|                 accounts[next_slot].is_totp = false;
 | |
|                 accounts[next_slot].hotp_counter = 0;
 | |
|             }
 | |
| 
 | |
|             tok = rb->strtok_r(NULL, "?", &save);
 | |
|             if(!tok)
 | |
|                 continue;
 | |
| 
 | |
|             if(acct_exists(tok))
 | |
|             {
 | |
|                 rb->splashf(HZ * 2, "Not adding account with duplicate name `%s'!", tok);
 | |
|                 continue;
 | |
|             }
 | |
| 
 | |
|             if(!rb->strlen(tok))
 | |
|             {
 | |
|                 rb->splashf(HZ * 2, "Skipping account with empty name.");
 | |
|                 continue;
 | |
|             }
 | |
| 
 | |
|             rb->strlcpy(accounts[next_slot].name, tok, sizeof(accounts[next_slot].name));
 | |
| 
 | |
|             bool have_secret = false;
 | |
| 
 | |
|             do {
 | |
|                 tok = rb->strtok_r(NULL, "=", &save);
 | |
|                 if(!tok)
 | |
|                     continue;
 | |
| 
 | |
|                 if(!rb->strcmp(tok, "secret"))
 | |
|                 {
 | |
|                     if(have_secret)
 | |
|                     {
 | |
|                         rb->splashf(HZ * 2, "URI with multiple `secret' parameters found, skipping!");
 | |
|                         goto fail;
 | |
|                     }
 | |
|                     have_secret = true;
 | |
|                     tok = rb->strtok_r(NULL, "&", &save);
 | |
|                     if((accounts[next_slot].sec_len = base32_decode(accounts[next_slot].secret, SECRET_MAX, tok)) <= 0)
 | |
|                         goto fail;
 | |
|                 }
 | |
|                 else if(!rb->strcmp(tok, "counter"))
 | |
|                 {
 | |
|                     if(accounts[next_slot].is_totp)
 | |
|                     {
 | |
|                         rb->splash(HZ * 2, "Counter parameter specified for TOTP!? Skipping...");
 | |
|                         goto fail;
 | |
|                     }
 | |
|                     tok = rb->strtok_r(NULL, "&", &save);
 | |
|                     accounts[next_slot].hotp_counter = rb->atoi(tok);
 | |
|                 }
 | |
|                 else if(!rb->strcmp(tok, "period"))
 | |
|                 {
 | |
|                     if(!accounts[next_slot].is_totp)
 | |
|                     {
 | |
|                         rb->splash(HZ * 2, "Period parameter specified for HOTP!? Skipping...");
 | |
|                         goto fail;
 | |
|                     }
 | |
|                     tok = rb->strtok_r(NULL, "&", &save);
 | |
|                     accounts[next_slot].totp_period = rb->atoi(tok);
 | |
|                 }
 | |
|                 else if(!rb->strcmp(tok, "digits"))
 | |
|                 {
 | |
|                     tok = rb->strtok_r(NULL, "&", &save);
 | |
|                     accounts[next_slot].digits = rb->atoi(tok);
 | |
|                     if(accounts[next_slot].digits < 1 || accounts[next_slot].digits > 9)
 | |
|                     {
 | |
|                         rb->splashf(HZ * 2, "Digits parameter not in acceptable range, skipping.");
 | |
|                         goto fail;
 | |
|                     }
 | |
|                 }
 | |
|                 else
 | |
|                     rb->splashf(HZ, "Unnown parameter `%s' ignored.", tok);
 | |
|             } while(tok);
 | |
| 
 | |
|             if(!have_secret)
 | |
|             {
 | |
|                 rb->splashf(HZ * 2, "URI with NO `secret' parameter found, skipping!");
 | |
|                 goto fail;
 | |
|             }
 | |
| 
 | |
|             ++next_slot;
 | |
| 
 | |
|         fail:
 | |
| 
 | |
|             ;
 | |
|         } while(1);
 | |
|         rb->close(fd);
 | |
|     }
 | |
|     if(before == next_slot)
 | |
|         rb->splash(HZ * 2, "No accounts added.");
 | |
|     else
 | |
|     {
 | |
|         rb->splashf(HZ * 2, "Added %d account(s).", next_slot - before);
 | |
|         save_accts();
 | |
|     }
 | |
| }
 | |
| 
 | |
| static void add_acct_manual(void)
 | |
| {
 | |
|     if(next_slot >= max_accts)
 | |
|     {
 | |
|         rb->splashf(HZ * 2, "Account limit reached!");
 | |
|         return;
 | |
|     }
 | |
|     memset(accounts + next_slot, 0, sizeof(struct account_t));
 | |
| 
 | |
|     rb->splash(HZ * 1, "Enter account name.");
 | |
|     char* buf = accounts[next_slot].name;
 | |
|     if(rb->kbd_input(buf, sizeof(accounts[next_slot].name), NULL) < 0)
 | |
|         return;
 | |
| 
 | |
|     if(acct_exists(buf))
 | |
|     {
 | |
|         rb->splash(HZ * 2, "Duplicate account name!");
 | |
|         return;
 | |
|     }
 | |
| 
 | |
|     rb->splash(HZ * 2, "Enter base32-encoded secret.");
 | |
| 
 | |
|     char temp_buf[SECRET_MAX * 2];
 | |
|     memset(temp_buf, 0, sizeof(temp_buf));
 | |
| 
 | |
|     if(rb->kbd_input(temp_buf, sizeof(temp_buf), NULL) < 0)
 | |
|         return;
 | |
| 
 | |
|     if((accounts[next_slot].sec_len = base32_decode(accounts[next_slot].secret, SECRET_MAX, temp_buf)) <= 0)
 | |
|     {
 | |
|         rb->splash(HZ * 2, "Invalid Base32 secret!");
 | |
|         return;
 | |
|     }
 | |
| 
 | |
| #if CONFIG_RTC
 | |
|     const struct text_message prompt = { (const char*[]) {"Is this a TOTP account?", "The protocol can be determined from the URI."}, 2};
 | |
|     enum yesno_res response = rb->gui_syncyesno_run(&prompt, NULL, NULL);
 | |
|     if(response == YESNO_NO)
 | |
|         accounts[next_slot].is_totp = false;
 | |
|     else
 | |
|         accounts[next_slot].is_totp = true;
 | |
| #endif
 | |
| 
 | |
|     memset(temp_buf, 0, sizeof(temp_buf));
 | |
| 
 | |
|     if(!accounts[next_slot].is_totp)
 | |
|     {
 | |
|         rb->splash(HZ * 2, "Enter counter (0 is normal).");
 | |
|         temp_buf[0] = '0';
 | |
|     }
 | |
|     else
 | |
|     {
 | |
|         rb->splash(HZ * 2, "Enter time step (30 is normal).");
 | |
|         temp_buf[0] = '3';
 | |
|         temp_buf[1] = '0';
 | |
|     }
 | |
| 
 | |
|     if(rb->kbd_input(temp_buf, sizeof(temp_buf), NULL) < 0)
 | |
|         return;
 | |
| 
 | |
|     if(!accounts[next_slot].is_totp)
 | |
|         accounts[next_slot].hotp_counter = rb->atoi(temp_buf);
 | |
|     else
 | |
|         accounts[next_slot].totp_period = rb->atoi(temp_buf);
 | |
| 
 | |
|     rb->splash(HZ * 2, "Enter code length (6 is normal).");
 | |
| 
 | |
|     memset(temp_buf, 0, sizeof(temp_buf));
 | |
|     temp_buf[0] = '6';
 | |
| 
 | |
|     if(rb->kbd_input(temp_buf, sizeof(temp_buf), NULL) < 0)
 | |
|         return;
 | |
| 
 | |
|     accounts[next_slot].digits = rb->atoi(temp_buf);
 | |
| 
 | |
|     if(accounts[next_slot].digits < 1 || accounts[next_slot].digits > 9)
 | |
|     {
 | |
|         rb->splash(HZ, "Invalid length!");
 | |
|         return;
 | |
|     }
 | |
| 
 | |
|     ++next_slot;
 | |
| 
 | |
|     save_accts();
 | |
| 
 | |
|     rb->splashf(HZ * 2, "Success.");
 | |
| }
 | |
| 
 | |
| static void add_acct(void)
 | |
| {
 | |
|     MENUITEM_STRINGLIST(menu, "Add Account", NULL,
 | |
|                         "From URI on disk",
 | |
|                         "Manual Entry",
 | |
|                         "Back");
 | |
|     int sel = 0;
 | |
|     bool quit = false;
 | |
|     while(!quit)
 | |
|     {
 | |
|         switch(rb->do_menu(&menu, &sel, NULL, false))
 | |
|         {
 | |
|         case 0:
 | |
|             add_acct_file();
 | |
|             break;
 | |
|         case 1:
 | |
|             add_acct_manual();
 | |
|             break;
 | |
|         case 2:
 | |
|         default:
 | |
|             quit = true;
 | |
|             break;
 | |
|         }
 | |
|     }
 | |
| }
 | |
| 
 | |
| static void show_code(int acct)
 | |
| {
 | |
|     if(!accounts[acct].is_totp)
 | |
|     {
 | |
|         rb->splashf(0, "%0*d", accounts[acct].digits,
 | |
|                                HOTP(accounts[acct].secret,
 | |
|                                     accounts[acct].sec_len,
 | |
|                                     accounts[acct].hotp_counter,
 | |
|                                     accounts[acct].digits));
 | |
|         ++accounts[acct].hotp_counter;
 | |
|     }
 | |
| #if CONFIG_RTC
 | |
|     else
 | |
|     {
 | |
|         rb->splashf(0, "%0*d (%ld seconds(s) left)", accounts[acct].digits,
 | |
|                                                      TOTP(accounts[acct].secret,
 | |
|                                                           accounts[acct].sec_len,
 | |
|                                                           accounts[acct].totp_period,
 | |
|                                                           accounts[acct].digits),
 | |
|                     accounts[acct].totp_period - get_utc() % accounts[acct].totp_period);
 | |
|     }
 | |
| #else
 | |
|     else
 | |
|     {
 | |
|         rb->splash(0, "TOTP not supported on this device!");
 | |
|     }
 | |
| #endif
 | |
|     rb->sleep(HZ * 2);
 | |
|     while(1)
 | |
|     {
 | |
|         int button = rb->button_get(true);
 | |
|         if(button && !(button & BUTTON_REL))
 | |
|             break;
 | |
|         rb->yield();
 | |
|     }
 | |
| 
 | |
|     save_accts();
 | |
|     rb->lcd_clear_display();
 | |
| }
 | |
| 
 | |
| static void gen_codes(void)
 | |
| {
 | |
|     rb->lcd_clear_display();
 | |
|     /* native menus don't seem to support dynamic names easily, so we
 | |
|      * roll our own */
 | |
|     static const struct button_mapping *plugin_contexts[] = { pla_main_ctx };
 | |
|     int idx = 0;
 | |
|     if(next_slot > 0)
 | |
|     {
 | |
|         rb->lcd_putsf(0, 0, "Generate Code");
 | |
|         rb->lcd_putsf(0, 1, "%s", accounts[0].name);
 | |
|         rb->lcd_update();
 | |
|     }
 | |
|     else
 | |
|     {
 | |
|         rb->splash(HZ * 2, "No accounts configured!");
 | |
|         return;
 | |
|     }
 | |
|     while(1)
 | |
|     {
 | |
|         int button = pluginlib_getaction(-1, plugin_contexts, ARRAYLEN(plugin_contexts));
 | |
|         switch(button)
 | |
|         {
 | |
|         case PLA_LEFT:
 | |
|             --idx;
 | |
|             if(idx < 0)
 | |
|                 idx = next_slot - 1;
 | |
|             break;
 | |
|         case PLA_RIGHT:
 | |
|             ++idx;
 | |
|             if(idx >= next_slot)
 | |
|                 idx = 0;
 | |
|             break;
 | |
|         case PLA_SELECT:
 | |
|             show_code(idx);
 | |
|             break;
 | |
|         case PLA_CANCEL:
 | |
|         case PLA_EXIT:
 | |
|             exit_on_usb(button);
 | |
|             return;
 | |
|         default:
 | |
|             break;
 | |
|         }
 | |
|         rb->lcd_clear_display();
 | |
|         rb->lcd_putsf(0, 0, "Generate Code");
 | |
|         rb->lcd_putsf(0, 1, "%s", accounts[idx].name);
 | |
|         rb->lcd_update();
 | |
|     }
 | |
| }
 | |
| 
 | |
| static bool danger_confirm(void)
 | |
| {
 | |
|     int sel = 0;
 | |
|     MENUITEM_STRINGLIST(menu, "Are you REALLY SURE?", NULL,
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "Yes, DO IT", // 7
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No",
 | |
|                         "No");
 | |
| 
 | |
|     switch(rb->do_menu(&menu, &sel, NULL, false))
 | |
|     {
 | |
|     case 7:
 | |
|         return true;
 | |
|     default:
 | |
|         return false;
 | |
|     }
 | |
| }
 | |
| 
 | |
| char data_buf[MAX(MAX_NAME, SECRET_MAX * 2)];
 | |
| char temp_sec[SECRET_MAX];
 | |
| size_t old_len;
 | |
| 
 | |
| static void edit_menu(int acct)
 | |
| {
 | |
|     rb->splashf(HZ, "Editing account `%s'.", accounts[acct].name);
 | |
| 
 | |
|     /* HACK ALERT */
 | |
|     /* two different menus, one handling logic */
 | |
|     MENUITEM_STRINGLIST(menu_1, "Edit Account", NULL,
 | |
|                         "Rename",
 | |
|                         "Delete",
 | |
|                         "Change HOTP Counter",
 | |
|                         "Change Digit Count",
 | |
|                         "Change Shared Secret",
 | |
|                         "Back");
 | |
| 
 | |
|     MENUITEM_STRINGLIST(menu_2, "Edit Account", NULL,
 | |
|                         "Rename", // 0
 | |
|                         "Delete", // 1
 | |
|                         "Change TOTP Period", // 2
 | |
|                         "Change Digit Count", // 3
 | |
|                         "Change Shared Secret", // 4
 | |
|                         "Back"); // 5
 | |
| 
 | |
|     const struct menu_item_ex *menu = (accounts[acct].is_totp) ? &menu_2 : &menu_1;
 | |
| 
 | |
|     bool quit = false;
 | |
|     int sel = 0;
 | |
|     while(!quit)
 | |
|     {
 | |
|         switch(rb->do_menu(menu, &sel, NULL, false))
 | |
|         {
 | |
|         case 0: // rename
 | |
|             rb->splash(HZ, "Enter new name.");
 | |
|             rb->strlcpy(data_buf, accounts[acct].name, sizeof(data_buf));
 | |
|             if(rb->kbd_input(data_buf, sizeof(data_buf), NULL) < 0)
 | |
|                 break;
 | |
|             if(acct_exists(data_buf))
 | |
|             {
 | |
|                 rb->splash(HZ * 2, "Duplicate account name!");
 | |
|                 break;
 | |
|             }
 | |
|             rb->strlcpy(accounts[acct].name, data_buf, sizeof(accounts[acct].name));
 | |
|             save_accts();
 | |
|             break;
 | |
|         case 1: // delete
 | |
|             if(danger_confirm())
 | |
|             {
 | |
|                 rb->memmove(accounts + acct, accounts + acct + 1, (next_slot - acct - 1) * sizeof(struct account_t));
 | |
|                 --next_slot;
 | |
|                 save_accts();
 | |
|                 rb->splashf(HZ, "Deleted.");
 | |
|                 return;
 | |
|             }
 | |
|             else
 | |
|                 rb->splash(HZ, "Not confirmed.");
 | |
|             break;
 | |
|         case 2: // HOTP counter OR TOTP period
 | |
|             if(accounts[acct].is_totp)
 | |
|                 rb->snprintf(data_buf, sizeof(data_buf), "%d", (int)accounts[acct].hotp_counter);
 | |
|             else
 | |
|                 rb->snprintf(data_buf, sizeof(data_buf), "%d", accounts[acct].totp_period);
 | |
| 
 | |
|             if(rb->kbd_input(data_buf, sizeof(data_buf), NULL) < 0)
 | |
|                 break;
 | |
| 
 | |
|             if(accounts[acct].is_totp)
 | |
|                 accounts[acct].totp_period = rb->atoi(data_buf);
 | |
|             else
 | |
|                 accounts[acct].hotp_counter = rb->atoi(data_buf);
 | |
| 
 | |
|             save_accts();
 | |
| 
 | |
|             rb->splash(HZ, "Success.");
 | |
|             break;
 | |
|         case 3: // digits
 | |
|             rb->snprintf(data_buf, sizeof(data_buf), "%d", accounts[acct].digits);
 | |
|             if(rb->kbd_input(data_buf, sizeof(data_buf), NULL) < 0)
 | |
|                 break;
 | |
| 
 | |
|             accounts[acct].digits = rb->atoi(data_buf);
 | |
|             save_accts();
 | |
| 
 | |
|             rb->splash(HZ, "Success.");
 | |
|             break;
 | |
|         case 4: // secret
 | |
|             old_len = accounts[acct].sec_len;
 | |
|             memcpy(temp_sec, accounts[acct].secret, accounts[acct].sec_len);
 | |
|             base32_encode(accounts[acct].secret, accounts[acct].sec_len, data_buf, sizeof(data_buf));
 | |
| 
 | |
|             if(rb->kbd_input(data_buf, sizeof(data_buf), NULL) < 0)
 | |
|                 break;
 | |
| 
 | |
|             int ret = base32_decode(accounts[acct].secret, sizeof(accounts[acct].secret), data_buf);
 | |
|             if(ret <= 0)
 | |
|             {
 | |
|                 memcpy(accounts[acct].secret, temp_sec, SECRET_MAX);
 | |
|                 accounts[acct].sec_len = old_len;
 | |
|                 rb->splash(HZ * 2, "Invalid Base32 secret!");
 | |
|                 break;
 | |
|             }
 | |
|             accounts[acct].sec_len = ret;
 | |
| 
 | |
|             save_accts();
 | |
|             rb->splash(HZ, "Success.");
 | |
|             break;
 | |
|         case 5:
 | |
|             quit = true;
 | |
|             break;
 | |
|         default:
 | |
|             break;
 | |
|         }
 | |
|     }
 | |
| }
 | |
| 
 | |
| static void edit_accts(void)
 | |
| {
 | |
|     rb->lcd_clear_display();
 | |
|     /* native menus don't seem to support dynamic names easily, so we
 | |
|      * roll our own */
 | |
|     static const struct button_mapping *plugin_contexts[] = { pla_main_ctx };
 | |
|     int idx = 0;
 | |
|     if(next_slot > 0)
 | |
|     {
 | |
|         rb->lcd_putsf(0, 0, "Edit Account");
 | |
|         rb->lcd_putsf(0, 1, "%s", accounts[0].name);
 | |
|         rb->lcd_update();
 | |
|     }
 | |
|     else
 | |
|     {
 | |
|         rb->splash(HZ * 2, "No accounts configured!");
 | |
|         return;
 | |
|     }
 | |
|     while(1)
 | |
|     {
 | |
|         int button = pluginlib_getaction(-1, plugin_contexts, ARRAYLEN(plugin_contexts));
 | |
|         switch(button)
 | |
|         {
 | |
|         case PLA_LEFT:
 | |
|             --idx;
 | |
|             if(idx < 0)
 | |
|                 idx = next_slot - 1;
 | |
|             break;
 | |
|         case PLA_RIGHT:
 | |
|             ++idx;
 | |
|             if(idx >= next_slot)
 | |
|                 idx = 0;
 | |
|             break;
 | |
|         case PLA_SELECT:
 | |
|             edit_menu(idx);
 | |
|             if(!next_slot)
 | |
|                 return;
 | |
|             if(idx == next_slot)
 | |
|                 idx = 0;
 | |
|             break;
 | |
|         case PLA_CANCEL:
 | |
|         case PLA_EXIT:
 | |
|             return;
 | |
|         default:
 | |
|             exit_on_usb(button);
 | |
|             break;
 | |
|         }
 | |
|         rb->lcd_clear_display();
 | |
|         rb->lcd_putsf(0, 0, "Edit Account");
 | |
|         rb->lcd_putsf(0, 1, "%s", accounts[idx].name);
 | |
|         rb->lcd_update();
 | |
|     }
 | |
| }
 | |
| 
 | |
| #if CONFIG_RTC
 | |
| 
 | |
| /* label is like this: [+/-]HH:MM ... */
 | |
| static int get_time_seconds(const char *label)
 | |
| {
 | |
|     if(!rb->strcmp(label, "UTC"))
 | |
|         return 0;
 | |
| 
 | |
|     char buf[32];
 | |
| 
 | |
|     /* copy the part after "UTC" */
 | |
|     rb->strlcpy(buf, label + 3, sizeof(buf));
 | |
| 
 | |
|     char *save, *tok;
 | |
| 
 | |
|     tok = rb->strtok_r(buf, ":", &save);
 | |
|     /* positive or negative: sign left */
 | |
|     int hr = rb->atoi(tok);
 | |
| 
 | |
|     tok = rb->strtok_r(NULL, ": ", &save);
 | |
|     int min = rb->atoi(tok);
 | |
| 
 | |
|     return 3600 * hr + 60 * min;
 | |
| }
 | |
| 
 | |
| /* returns the offset in seconds associated with a time zone */
 | |
| static int get_time_offs(void)
 | |
| {
 | |
|     MENUITEM_STRINGLIST(menu, "Select Time Offset", NULL,
 | |
|                         "UTC-12:00", // 0
 | |
|                         "UTC-11:00", // 1
 | |
|                         "UTC-10:00 (HAST)", // 2
 | |
|                         "UTC-9:30",  // 3
 | |
|                         "UTC-9:00 (AKST, HADT)", // 4
 | |
|                         "UTC-8:00 (PST, AKDT)", // 5
 | |
|                         "UTC-7:00 (MST, PDT)", // 6
 | |
|                         "UTC-6:00 (CST, MDT)", // 7
 | |
|                         "UTC-5:00 (EST, CDT)", // 8
 | |
|                         "UTC-4:00 (AST, EDT)", // 9
 | |
|                         "UTC-3:30 (NST)", // 10
 | |
|                         "UTC-3:00 (ADT)", // 11
 | |
|                         "UTC-2:30 (NDT)", // 12
 | |
|                         "UTC-2:00", // 13
 | |
|                         "UTC-1:00", // 14
 | |
|                         "UTC",      // 15
 | |
|                         "UTC+1:00", // 16
 | |
|                         "UTC+2:00", // 17
 | |
|                         "UTC+3:00", // 18
 | |
|                         "UTC+3:30", // 19
 | |
|                         "UTC+4:00", // 20
 | |
|                         "UTC+4:30", // 21
 | |
|                         "UTC+5:00", // 22
 | |
|                         "UTC+5:30", // 23
 | |
|                         "UTC+5:45", // 24
 | |
|                         "UTC+6:00", // 25
 | |
|                         "UTC+6:30", // 26
 | |
|                         "UTC+7:00", // 27
 | |
|                         "UTC+8:00", // 28
 | |
|                         "UTC+8:30", // 29
 | |
|                         "UTC+8:45", // 30
 | |
|                         "UTC+9:00", // 31
 | |
|                         "UTC+9:30", // 32
 | |
|                         "UTC+10:00", // 33
 | |
|                         "UTC+10:30", // 34
 | |
|                         "UTC+11:00", // 35
 | |
|                         "UTC+12:00", // 36
 | |
|                         "UTC+12:45", // 37
 | |
|                         "UTC+13:00", // 38
 | |
|                         "UTC+14:00", // 39
 | |
|         );
 | |
| 
 | |
|     int sel = 0;
 | |
|     for(unsigned int i = 0; i < ARRAYLEN(menu_); ++i)
 | |
|         if(time_offs == get_time_seconds(menu_[i]))
 | |
|         {
 | |
|             sel = i;
 | |
|             break;
 | |
|         }
 | |
| 
 | |
|     /* relies on menu internals */
 | |
|     rb->do_menu(&menu, &sel, NULL, false);
 | |
| 
 | |
|     /* see apps/menu.h */
 | |
|     const char *label = menu_[sel];
 | |
| 
 | |
|     return get_time_seconds(label);
 | |
| 
 | |
| #if 0
 | |
|     /* provided in case menu internals change */
 | |
|     switch(rb->do_menu(&menu, &sel, NULL, false))
 | |
|     {
 | |
|     case 0: case 1: case 2:
 | |
|         return (sel - 12) * 3600;
 | |
|     case 3:
 | |
|         return -9 * 3600 - 30 * 60;
 | |
|     case 4: case 5: case 6: case 7: case 8: case 9:
 | |
|         return (sel - 13) * 3600;
 | |
|     case 10:
 | |
|         return -3 * 3600 - 30 * 60;
 | |
|     case 11:
 | |
|         return -3 * 3600;
 | |
|     case 12:
 | |
|         return -3 * 3600 - 30 * 60;
 | |
|     case 13: case 14: case 15: case 16: case 17: case 18:
 | |
|         return (sel - 15) * 3600;
 | |
| 
 | |
|     case 19:
 | |
|         return 3 * 3600 + 30 * 60;
 | |
|     case 20:
 | |
|         return 4 * 3600;
 | |
|     case 21:
 | |
|         return 4 * 3600 + 30 * 60;
 | |
|     case 22:
 | |
|         return 5 * 3600;
 | |
|     case 23:
 | |
|         return 5 * 3600 + 30 * 60;
 | |
|     case 24:
 | |
|         return 5 * 3600 + 45 * 60;
 | |
|     case 25:
 | |
|         return 6 * 3600;
 | |
|     case 26:
 | |
|         return 6 * 3600 + 30 * 60;
 | |
|     case 27: case 28:
 | |
|         return (sel - 20) * 3600;
 | |
|     case 29:
 | |
|         return 8 * 3600 + 30 * 60;
 | |
|     case 30:
 | |
|         return 8 * 3600 + 45 * 60;
 | |
|     case 31:
 | |
|         return 9 * 3600;
 | |
|     case 32:
 | |
|         return 9 * 3600 + 30 * 60;
 | |
|     case 33:
 | |
|         return 10 * 3600;
 | |
|     case 34:
 | |
|         return 10 * 3600 + 30 * 60;
 | |
|     case 35: case 36:
 | |
|         return (sel - 24) * 3600;
 | |
|     case 37:
 | |
|         return 12 * 3600 + 45 * 60;
 | |
|     case 38: case 39:
 | |
|         return (sel - 25) * 3600;
 | |
|     default:
 | |
|         rb->splash(0, "BUG: time zone fall-through: REPORT ME!!!");
 | |
|         break;
 | |
|     }
 | |
|     return 0;
 | |
| #endif
 | |
| }
 | |
| #endif
 | |
| 
 | |
| static void adv_menu(void)
 | |
| {
 | |
|     MENUITEM_STRINGLIST(menu, "Advanced", NULL,
 | |
|                         "Edit Account",
 | |
|                         "Delete ALL accounts",
 | |
| #if CONFIG_RTC
 | |
|                         "Change Time Offset",
 | |
| #endif
 | |
|                         "Back");
 | |
| 
 | |
|     bool quit = false;
 | |
|     int sel = 0;
 | |
|     while(!quit)
 | |
|     {
 | |
|         switch(rb->do_menu(&menu, &sel, NULL, false))
 | |
|         {
 | |
|         case 0:
 | |
|             edit_accts();
 | |
|             break;
 | |
|         case 1:
 | |
|             if(danger_confirm())
 | |
|             {
 | |
|                 next_slot = 0;
 | |
|                 save_accts();
 | |
|                 rb->splash(HZ, "It is done, my master.");
 | |
|             }
 | |
|             else
 | |
|                 rb->splash(HZ, "Not confirmed.");
 | |
|             break;
 | |
| #if CONFIG_RTC
 | |
|         case 2:
 | |
|             time_offs = get_time_offs();
 | |
|             break;
 | |
|         case 3:
 | |
| #else
 | |
|         case 2:
 | |
| #endif
 | |
|             quit = 1;
 | |
|             break;
 | |
|         default:
 | |
|             break;
 | |
|         }
 | |
|     }
 | |
| }
 | |
| 
 | |
| /* displays the help text */
 | |
| static void show_help(void)
 | |
| {
 | |
| 
 | |
| #ifdef HAVE_LCD_COLOR
 | |
|     rb->lcd_set_foreground(LCD_WHITE);
 | |
|     rb->lcd_set_background(LCD_BLACK);
 | |
| #endif
 | |
| 
 | |
|     rb->lcd_setfont(FONT_UI);
 | |
| 
 | |
|     static char *help_text[] = { "One-Time Password Manager", "",
 | |
|                                  "Introduction", "",
 | |
|                                  "This", "plugin", "allows", "you", "to", "generate", "one-time", "passwords", "to", "provide", "a", "second", "factor", "of", "authentication", "for", "services", "that", "support", "it.",
 | |
|                                  "It", "suppports", "both", "event-based", "(HOTP),", "and", "time-based", "(TOTP)", "password", "schemes.",
 | |
|                                  "In", "order", "to", "ensure", "proper", "functioning", "of", "time-based", "passwords", "ensure", "that", "the", "clock", "is", "accurate", "to", "within", "30", "seconds", "of", "actual", "time."
 | |
|                                  "Note", "that", "some", "devices", "lack", "a", "real-time", "clock,", "so", "time-based", "passwords", "are", "not", "supported", "on", "those", "targets." };
 | |
| 
 | |
|     struct style_text style[] = {
 | |
|         {0,  TEXT_CENTER | TEXT_UNDERLINE},
 | |
|         {2,  C_RED},
 | |
|         LAST_STYLE_ITEM
 | |
|     };
 | |
| 
 | |
|     display_text(ARRAYLEN(help_text), help_text, style, NULL, true);
 | |
| }
 | |
| 
 | |
| /* this is the plugin entry point */
 | |
| enum plugin_status plugin_start(const void* parameter)
 | |
| {
 | |
|     (void)parameter;
 | |
| 
 | |
|     /* self-test with RFC 4226 values */
 | |
|     if(HOTP("12345678901234567890", rb->strlen("12345678901234567890"), 1, 6) != 287082)
 | |
|     {
 | |
|         return PLUGIN_ERROR;
 | |
|     }
 | |
| 
 | |
|     size_t bufsz;
 | |
|     accounts = rb->plugin_get_buffer(&bufsz);
 | |
|     max_accts = bufsz / sizeof(struct account_t);
 | |
| 
 | |
|     if(!read_accts())
 | |
| #if CONFIG_RTC
 | |
|     {
 | |
|         time_offs = get_time_offs();
 | |
|     }
 | |
| #else
 | |
|     {
 | |
|         ;
 | |
|     }
 | |
| #endif
 | |
| 
 | |
|     MENUITEM_STRINGLIST(menu, "One-Time Password Manager", NULL,
 | |
|                         "Add Account",
 | |
|                         "Generate Code",
 | |
|                         "Help",
 | |
|                         "Advanced",
 | |
|                         "Quit");
 | |
| 
 | |
|     bool quit = false;
 | |
|     int sel = 0;
 | |
|     while(!quit)
 | |
|     {
 | |
|         switch(rb->do_menu(&menu, &sel, NULL, false))
 | |
|         {
 | |
|         case 0:
 | |
|             add_acct();
 | |
|             break;
 | |
|         case 1:
 | |
|             gen_codes();
 | |
|             break;
 | |
|         case 2:
 | |
|             show_help();
 | |
|             break;
 | |
|         case 3:
 | |
|             adv_menu();
 | |
|             break;
 | |
|         case 4:
 | |
|             quit = 1;
 | |
|             break;
 | |
|         default:
 | |
|             break;
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     /* save to disk */
 | |
|     save_accts();
 | |
| 
 | |
|     /* tell Rockbox that we have completed successfully */
 | |
|     return PLUGIN_OK;
 | |
| }
 |