From 41681aaa6bfefcd33afcf916df26c64b1d37f16f Mon Sep 17 00:00:00 2001
From: Evgeny Poberezkin <2769109+epoberezkin@users.noreply.github.com>
Date: Tue, 26 Oct 2021 21:38:15 +0100
Subject: [PATCH] SMP handshake - validate key hash and protocol version

---
 ...9384a97db4862b8ab8db.cache.dill.track.dill | Bin 31442464 -> 31442464 bytes
 .../simplexmq/example/simplexmq_example.dart  |   1 +
 packages/simplexmq/lib/src/buffer.dart        |  10 ++++++
 packages/simplexmq/lib/src/parser.dart        |   9 +++++
 packages/simplexmq/lib/src/transport.dart     |  34 +++++++++++++++---
 .../simplexmq_io/test/transport_test.dart     |   5 ++-
 6 files changed, 54 insertions(+), 5 deletions(-)

diff --git a/packages/simplex_app/build/test_cache/build/c075001b96339384a97db4862b8ab8db.cache.dill.track.dill b/packages/simplex_app/build/test_cache/build/c075001b96339384a97db4862b8ab8db.cache.dill.track.dill
index b372cb889982e3a6ad836f5b4a352c93d217d28c..f807159b200c308c2a7ff86e1293dfaccd6224f7 100644
GIT binary patch
delta 1449
zcma*fcbv}!9LMp;o3dR98Idvzch24&;p~u2&bTvj*4<BL$h`=??On#%D|?Up%(8bj
z*QQjock263fBWO}e7xU}$NTX~^}~qN|85K-9qD<D$H_oOGLe}qWF;HfiQoxxkds_I
zNpA9xm#4@_ehN^Krzu2Xo}mcO@*G7eMsZ3|l2Sa+3zVh|Wr-w;azs;}3RI*Lm8n8i
zs!^R9)T9=*d65|EP?wjeM|~O)OG6sbm?ku(8O?c_7PO=luh5z{w51*G=|D$1(V182
zLL6P`Mt6D;PXayZMQ{4>8huHmAN?7?Kn9USG9d=@Izt%BForXNk-WhuMl*&t8A}Q<
zj`6(31ST?xw=t8M!c?X)of*tz7PFbdT;?&KcX*ctEMyUjNo5I3S;lf!u##1*W({ju
z$9t@20~^`IX11`EZER-;JK4o<_OO?Iyw85Z9N-{_ILr}_@&O-mjN_c(B&Rsd8P0N!
z^IYH}m-vXwT;VF$xXul3a*Nxf@iCw9DWCB<U+^V&xXV|3%{{*1TfXBy5BQ!R_>rIZ
znP2#o-}s$B_>;f*n}2vXL6)3OPA@+uKQ3pGGs>Cd%yJevtDH^FE=R~u$T{SkaxVEv
zIk%ig&MQA9=acix1>}PA({drXu>6c%M1EF&PA)1JlZ(qG<dSkJ`FZ&TxwKqHE-OdM
zQF1vsS}reFkSofS<jQgtxvE@Et}fS*Ys$6c+VYEXj9f>qE59Vylk3Y3<XE|(+(>RL
zH<6pl&E)3t%W@03rQAw>MQ$y(k=x4c<o0q0xue`k?kvA5cah`du5vfIyWB&LmlNck
zaxb~J+(&**?kgwC{p9}g0C}K1NKTTI<&ZpBeqA0S50!_>!{rh3NcjzUlssA<Bflw+
zl~ZKoaq@WiEqQ`GQJy5fEnA)}Pm!m})8y&$40)zJOP(#yk>|?u<oWVD^1Jc^d7->W
zUM#1|OXQ{UGI_bYLS8Aal2^-X<hAlT`8|2Pyg}Y5Z<065TjZ_sHhH_eL*6Oxl6T8{
z<h}Af`F(l69F`Br2et2zQewl&L(`P0#MG47L;8=y0Y?Ik27D0kVZgC~;{hiEP6nI`
zI2~{%;B3ITfb#(t0xkwz3iv4Ca=?{<s{z*nt_R!*xEXLO;I_gkv1xixE<9pUn(n1n
zM7Y<|H0{kAGo)T@$K-^lo{57)p@gKkP(pGjF0oH?D4~BsQe^!e?c0RnqyF#l-I78R
zzKMz|5)-6a<s+jj&fR=BUGc>S=G0Zj@RSW{s+_s#BfJdX*_o!286RmH9Zu8z4F3W&
CdQ9B_

delta 1449
zcma*fRg~5R7{uW-bW0-*(jiMXNXgQTgfuL<)barmQv0Ka?q0f)Zun><lum`UK|!%w
zk^ha?T)fYjIcLrr=jUnSUfeiD0uqvl#3Ugp$w*ELQj&_)q~R6Pl8*FbAS0Q`Ocq`x
zE7{0S4sw!<+~grIuaS@Z6rdo5C`=KGQjFrfP6;9?NhwNGhO(5SJQb)&B`Q;es#K#o
zZ%~7p)S@<Zc$2zBQjhvHpdpQDOcR>YjOMhUC9P=9TeP7q?P$;2bf6=h=u8*7(v9x)
zAc~&!qBni$OFyFN&j1E8h{41#gb+g+#&F(Y1S1*6Xx?QEV;RSICJ+luWD=8^!c?X)
z9W#TO%wjfkn9Drovw(#xVlhit$}*O-f|aZyj@7JTE$dj%1~#&Z&1_*S+t|(y-eV`b
z*v%gHvXA{7;2?)M%n^=qjN^nk!AVYWnlqf`9OrqT3tZ$9m-&DXxx!Vhah)67<QBKN
z!(HxipO5&M2RtO6PxzG2_?$2JlCOBgW4`7ap74}!`Hp9N&ky{_PyEa;{K{|q&L8~A
zU;NEK{LAwxvg8DELOGF~SWY4*m6OTI<rH#CIhCARP9wh}r<K#m>E#S^Mmdw5S<WKA
zDrc3m$=T%`a!xsyoLkN#=apZR^U3+;0&+pQkX%?UA{Uj5$;IW@<q~p)Tv9G2mzK-O
zW#w{mdAWjIQLZFcmaE8B<!W+u`3<>-TvM(k*Ou$ZZ_0J$NV%R|Uv3~blpD#7<tB1d
zxtZKtZXvgnTgk2Ex8yc*Te+RwUVdBdAa|5I$(`jca#y*V++FS=N69_qUUF}_kK9-8
zCr8Wu<pJ_Qd5}C<j**ARA$h1gOdc-3Bae_r%A@4b^1JdFd8|B69xqRjV`b!t@+5h(
zJVl-=Pm`z1mS@N_<yrD<d5%0+o+r<j7sw0cMe<^KiM&)^CNGy)$SdVla-6(cUL&uS
z*U9VU4e~~Lle}5pB5#$q$=l@}@_X`5d6&Ff-Xrgo_sRR^1M)%nkbGD^A|I8H$;aie
zd_q2{qo))bIcs|VQ+mPafHMJS1I`7U4|qS|Lcqm<O97VyJ_z_Q;7Y*NfNKHQ18xM|
z47e3=JK#>h-GF-m_X9o(_&DG}z(a+n_m9{2CBw0ir<AN<c+|>xJxQok;a+RvbtGkt
zQ2CmDTZbZgMh^{zqGCFSqK1SzNB0>LiW(3VQ=(F<GSLkiMf~4;bd3p3c^VOsr$&&f
ul`c`L^rBsl6BJl=Vqq;M4bR*Wuky+By~NA#qXY3Ol=P*hrNZ%gmgGNqm{5NJ

diff --git a/packages/simplexmq/example/simplexmq_example.dart b/packages/simplexmq/example/simplexmq_example.dart
index e69de29bb..ab73b3a23 100644
--- a/packages/simplexmq/example/simplexmq_example.dart
+++ b/packages/simplexmq/example/simplexmq_example.dart
@@ -0,0 +1 @@
+void main() {}
diff --git a/packages/simplexmq/lib/src/buffer.dart b/packages/simplexmq/lib/src/buffer.dart
index 4f5cbe13b..a9fdf934c 100644
--- a/packages/simplexmq/lib/src/buffer.dart
+++ b/packages/simplexmq/lib/src/buffer.dart
@@ -142,3 +142,13 @@ Uint8List encodeInt16(int n) {
   ByteData.sublistView(data).setInt16(0, n);
   return data;
 }
+
+extension EqualUint8List on Uint8List {
+  bool equal(Uint8List b) {
+    if (length != b.length) return false;
+    for (int i = 0; i < length; i++) {
+      if (this[i] != b[i]) return false;
+    }
+    return true;
+  }
+}
diff --git a/packages/simplexmq/lib/src/parser.dart b/packages/simplexmq/lib/src/parser.dart
index 0dc46f43c..18374e182 100644
--- a/packages/simplexmq/lib/src/parser.dart
+++ b/packages/simplexmq/lib/src/parser.dart
@@ -13,6 +13,7 @@ final charUpperA = cc('A');
 final charUpperZ = cc('Z');
 final charPlus = cc('+');
 final charSlash = cc('/');
+final charDot = cc('.');
 
 class Parser {
   final Uint8List _s;
@@ -70,6 +71,14 @@ class Parser {
         return true;
       });
 
+  // takes the passed char
+  bool? char(int c) => _run(() {
+        if (_s[_pos] == c) {
+          _pos++;
+          return true;
+        }
+      });
+
   // takes space
   bool? space() => _run(() {
         if (_s[_pos] == charSpace) {
diff --git a/packages/simplexmq/lib/src/transport.dart b/packages/simplexmq/lib/src/transport.dart
index 031c77672..87240ad20 100644
--- a/packages/simplexmq/lib/src/transport.dart
+++ b/packages/simplexmq/lib/src/transport.dart
@@ -1,8 +1,10 @@
 import 'dart:async';
 import 'dart:typed_data';
 import 'package:pointycastle/asymmetric/api.dart';
+import 'package:pointycastle/digests/sha256.dart';
 import 'buffer.dart';
 import 'crypto.dart';
+import 'parser.dart';
 import 'rsa_keys.dart';
 
 abstract class Transport {
@@ -51,7 +53,7 @@ class ServerHandshake {
 
 typedef SMPVersion = List<int>;
 
-// SMPVersion _currentSMPVersion = const [0, 4, 1, 0];
+SMPVersion _currentSMPVersion = const [0, 4, 1, 0];
 const int _serverHeaderSize = 8;
 const int _binaryRsaTransport = 0;
 const int _transportBlockSize = 4096;
@@ -96,7 +98,8 @@ class SMPTransportClient {
   }
 
   static void validateKeyHash_2(Uint8List rawKey, Uint8List keyHash) {
-    // todo
+    if (keyHash.equal(SHA256Digest().process(rawKey))) return;
+    throw Exception('smp handshake error: bad key hash');
   }
 
   static ServerHeader parseServerHeader(Uint8List a) {
@@ -129,10 +132,33 @@ class SMPTransportClient {
       _parseSMPVersion(await _readEncrypted());
 
   static SMPVersion _parseSMPVersion(Uint8List block) {
-    return [];
+    final p = Parser(block);
+    final SMPVersion version = [0, 0, 0, 0];
+    void setVer(int i, int? v) {
+      if (v == null || p.fail) {
+        throw Exception('smp handshake error: bad version format');
+      }
+      version[i] = v;
+    }
+
+    for (var i = 0; i < 3; i++) {
+      final v = p.decimal();
+      p.char(charDot);
+      setVer(i, v);
+    }
+    final v = p.decimal();
+    p.space();
+    setVer(3, v);
+    return version;
   }
 
-  static void _checkVersion(SMPVersion version) {}
+  static void _checkVersion(SMPVersion srvVersion) {
+    final s0 = srvVersion[0];
+    final c0 = _currentSMPVersion[0];
+    if (s0 > c0 || (s0 == c0 && srvVersion[1] > _currentSMPVersion[1])) {
+      throw Exception('smp handshake error: incompatible server version');
+    }
+  }
 
   Future<Uint8List> _readEncrypted() async {
     final block = await _conn.read(blockSize);
diff --git a/packages/simplexmq_io/test/transport_test.dart b/packages/simplexmq_io/test/transport_test.dart
index 11a68b89b..a9ba0db78 100644
--- a/packages/simplexmq_io/test/transport_test.dart
+++ b/packages/simplexmq_io/test/transport_test.dart
@@ -1,5 +1,6 @@
 // import 'dart:io';
 import 'package:simplexmq/simplexmq.dart';
+import 'package:simplexmq/src/buffer.dart';
 import 'package:simplexmq_io/simplexmq_io.dart';
 import 'package:test/test.dart';
 
@@ -9,7 +10,9 @@ void main() {
       'establish connection (expects SMP server on localhost:5223)',
       () async {
         final conn = await SocketTransport.connect('localhost', 5223);
-        final smp = await SMPTransportClient.connect(conn);
+        final smp = await SMPTransportClient.connect(conn,
+            keyHash: decode64(
+                encodeAscii('pH7bg7B6vB3uJ1poKmClTAqr7yYWnAtapnIDN7ypKxU=')));
         expect(smp is SMPTransportClient, true);
       },
       skip: 'requires SMP server on port 5223',