Changeset 18 in chevmsgr

Timestamp:

11/23/15 00:36:26 (8 years ago)

Author:

cheese

Message:

random number를 이용한 인증방식 적용

Location:

trunk

Files:

• msg.cpp (modified) (2 diffs)
• msg.hpp (modified) (4 diffs)
• msgclnt.cpp (modified) (14 diffs)
• msgclnt.h (modified) (2 diffs)
• msgsrv.cpp (modified) (9 diffs)
• msvc14/testClient/test.cpp (modified) (1 diff)
• msvc14/testClient/testClient.vcxproj (modified) (4 diffs)

trunk/msg.cpp

@@ -73 +73 @@
     }
 
-    std::string Request::join(const std::string & id, const std::string & pw, const std::string & sms)
+    std::string Request::join(const std::string & id, const std::string & pw, const std::string & sms) const
     {
         DECLARE_TEMPLATE_OBJECT(obj, ProtocolType::JOIN);
@@ -89 +89 @@
 
         obj[ProtocolType::PW] = pw;
+
+        return json::Serialize(obj);
+    }
+
+    std::string Request::secretWithRandom(const std::string & id, std::string & secret, const std::string & random) const
+    {
+        DECLARE_TEMPLATE_OBJECT(obj, ProtocolType::SECRET);
+
+        obj[ProtocolType::ID] = id;
+        obj[ProtocolType::SECRET] = secret;
+        obj[ProtocolType::RANDOM] = random;
 
         return json::Serialize(obj);

trunk/msg.hpp

@@ -26 +26 @@
 
     DECLARE_KEY(NONE);
+    DECLARE_KEY(SECRET);
+    DECLARE_KEY(RANDOM);
     DECLARE_KEY(ID);
     DECLARE_KEY(TYPE);
@@ -107 +109 @@
         std::string sms(const std::string & phone) const;
 
-        std::string join(const std::string & id, const std::string & pw, const std::string & sms);
+        std::string join(const std::string & id, const std::string & pw, const std::string & sms) const;
 
         std::string login(const std::string & pw) const;
+
+        std::string secretWithRandom(const std::string & id, std::string & secret, const std::string & random) const;
 
         std::string logout() const;
@@ -167 +171 @@
 }
 
-
 class SecureSocket
 {
@@ -176 +179 @@
 public :
     SecureSocket() {}
-    SecureSocket(cf::network::tcp * sock, cf::bin & key)
-    {
-        init(sock, key);
-    }
-
-    void init(cf::network::tcp * sock, cf::bin & key)
+    SecureSocket(cf::network::tcp * sock, const std::string & ip, const std::string & sms)
+    {
+        init(sock, ip, sms);
+    }
+
+    void init(cf::network::tcp * sock, const std::string & ip, const std::string & sms)
     {
         this->sock = sock;
+
+        cf::bin seed = sms + DELIMITER + ip;
+        cf::bin key = crypto().sha256(seed);
+
         aria.setKey(key);
     }

trunk/msgclnt.cpp

@@ +1 @@
+#include "cf/codec.h"
 
 #include "msgclnt.h"
@@ -6 +7 @@
 
 #include <stdlib.h>
-
-#include "cf/codec.h"
+#include <time.h>
 
 // --------------------------------------------------------------
@@ -13 +13 @@
 typedef struct SMessageQWorkerArg
 {
-    cf::network::tcp * socket;
+    SecureSocket * secureSocket;
     MessageQ * messageQ;
 } SMessageQWorkerArg;
@@ -36 +36 @@
             size = 0;
 
-            cf::bin raw = inst->socket->receive();
+            cf::bin raw = inst->secureSocket->receive();
             size = raw.size();
 
@@ -115 +115 @@
 }
 
+static std::string generateRandom()
+{
+    unsigned int ret = 0;
+    int t = (int)time(NULL);
+
+    cf::bin b;
+    b.resize(sizeof(int));
+
+    b.set((cf::uint8_t*)&t, sizeof(int));
+    cf::bin s = crypto().sha256(b);
+
+    return cf::codec::hex::getInstance()->encode(s);
+}
+
+static inline std::string hashPassword(const std::string & pw)
+{
+    return cf::codec::hex::getInstance()->encode(crypto().sha256(cf::bin(pw)));
+}
+
+static inline std::string getSecret(const std::string & msg, const std::string & sms, const std::string & random)
+{
+    crypto crypt;
+    crypt.setKey(cf::bin(sms + DELIMITER + random));
+
+    return crypt.encrypt(cf::bin(msg)).toString();
+}
+
 // --------------------------------------------------------------
 
@@ -159 +186 @@
 chev::~chev()
 {
-    socket.close();
+    secureSocket.close();
     listener.join();
     caller.join();
@@ -179 +206 @@
             return false;
 
-        arg->socket = &socket;
+        arg->secureSocket = &secureSocket;
         arg->messageQ = &messageQ;
 
@@ -198 +225 @@
     try
     {
-        socket.send(request.join(id, pw, sms));
+        std::string random = generateRandom();
+        std::string msg = request.join(id, hashPassword(pw), sms);
+        std::string secret = getSecret(msg, sms, random);
+        socket.send(request.secretWithRandom(id, secret, random));
 
         return messageQ.pop(ProtocolType::JOIN).get<bool>(ProtocolType::RESULT);
@@ -210 +240 @@
 }
 
-bool chev::login(const std::string & id, const std::string & pw)
+bool chev::login(const std::string & id, const std::string & pw, const std::string & sms)
 {
     try
@@ -216 +246 @@
         request.setUserID(id);
 
-        socket.send(request.login(pw));
+        std::string random = generateRandom();
+        std::string msg = request.login(hashPassword(pw));
+        std::string secret = getSecret(msg, sms, random);
+        socket.send(request.secretWithRandom(id, secret, random));
 
         return messageQ.pop(ProtocolType::LOGIN).get<bool>(ProtocolType::RESULT);
@@ -248 +281 @@
     try
     {
-        socket.send(request.addFriend(id));
+        secureSocket.send(request.addFriend(id));
 
         return messageQ.pop(ProtocolType::ADD_FRIEND).get<bool>(ProtocolType::RESULT);
@@ -266 +299 @@
     try
     {
-        socket.send(request.getFriendList());
+        secureSocket.send(request.getFriendList());
 
         friendList = messageQ.pop(ProtocolType::FRIEND_LIST).getFriendList();
@@ -289 +322 @@
         if (sessionMap.find(concat) == sessionMap.end())
         {
-            socket.send(request.openSession(toList));
+            secureSocket.send(request.openSession(toList));
 
             Protocol::Message message = messageQ.pop(ProtocolType::OPEN_SESSION);
@@ -319 +352 @@
             c.message = cf::codec::hex::getInstance()->encode(c.message);
 
-        socket.send(request.tell(c.sessid, c.message, c.sensitive));
+        secureSocket.send(request.tell(c.sessid, c.message, c.sensitive));
 
         return messageQ.pop(ProtocolType::TELL).get<bool>(ProtocolType::RESULT);

trunk/msgclnt.h

@@ -55 +55 @@
 
     MessageQ            messageQ;
+    SecureSocket        secureSocket;
 
     std::map<std::string, std::string>  sessionMap;
@@ -71 +72 @@
     bool join(const std::string & id, const std::string & pw, const std::string & sms);
 
-    bool login(const std::string & id, const std::string & pw);
+    bool login(const std::string & id, const std::string & pw, const std::string & sms);
 
     bool addFriend(const std::string & id);

trunk/msgsrv.cpp

@@ -130 +130 @@
 
         result = sqlite3_exec(db, query.c_str(), cb, userArg, &errMsg);
+        LOG("[SQL] " + query);
 
         if (result != SQLITE_OK)
@@ -286 +287 @@
 static void logout(const std::string & id)
 {
+    gOnlineUsers[id].close();
     gOnlineUsers.erase(id);
     LOG(STR(id << " was logged out"));
@@ -339 +341 @@
 }
 
+static Protocol::Message getSecret(const Protocol::Message & parser, const std::string & sms)
+{
+    std::string secret = parser.get<std::string>(ProtocolType::SECRET);
+    std::string random = parser.get<std::string>(ProtocolType::RANDOM);
+
+    crypto crypt;
+    crypt.setKey(cf::bin(sms + DELIMITER + random));
+
+    std::string auth = crypt.decrypt(cf::bin(secret)).toString();
+    Protocol::Message authParser;
+
+    authParser.parse(auth);
+
+    return authParser;
+}
+
 static bool join(const Protocol::Message & parser, const std::string & sms, const std::string & address)
     throw (cf::exception)
@@ -345 +363 @@
         THROW_EXCEPTION("SMS is not same");
 
-    std::string id = parser.get<std::string>(ProtocolType::ID);
-    std::string pw = parser.get<std::string>(ProtocolType::PW);
+    Protocol::Message & authParser = getSecret(parser, sms);
+
+    std::string id = authParser.get<std::string>(ProtocolType::ID);
+    std::string pw = authParser.get<std::string>(ProtocolType::PW);
+    std::string rcvdSMS = authParser.get<std::string>(ProtocolType::SMS);
+
+    if (sms != rcvdSMS)
+        THROW_EXCEPTION("invalid sms code");
         
     return dbmgr.join(id, pw, sms, address);
@@ -354 +378 @@
     throw (cf::exception)
 {
-    std::string id = parser.get<std::string>(ProtocolType::ID);
-    std::string pw = parser.get<std::string>(ProtocolType::PW);
+    Protocol::Message & authParser = getSecret(parser, sms);
+
+    std::string id = authParser.get<std::string>(ProtocolType::ID);
+    std::string pw = authParser.get<std::string>(ProtocolType::PW);
 
     bool result = dbmgr.login(id, pw);
     if (result)
-    {
-        cf::bin seed = sms + DELIMITER + ip;
-        cf::bin key = crypto().sha256(seed);
-
-        gOnlineUsers[id] = SecureSocket(&sock, key);
-    }
+        gOnlineUsers[id] = SecureSocket(&sock, ip, sms);
 
     return result;
@@ -438 +459 @@
 }
 
-static std::string keyExchange(const std::string sms, const std::string address)
-{
-    cf::bin sessKey;
-
-    sessKey = crypto().sha256(cf::bin(sms + address));
-
-    return cf::codec::hex::getInstance()->encode(sessKey);
-}
-
-static std::string workerInitiator(cf::network::tcp & sock)
+static std::string authenticator(cf::network::tcp & sock)
 {
     Protocol::Message parser;
@@ -495 +507 @@
 }
 
-static int worker(void * arg)
+static int deliverer(void * arg)
 {
     Runner * runner = reinterpret_cast<Runner *>(arg);
@@ -504 +516 @@
     try
     {
-        id = workerInitiator(*sock);
+        id = authenticator(*sock);
 
         Protocol::Response response;
@@ -563 +575 @@
         {
             cf::network::tcp client = sock.accept();
-            Runner * runner = new(std::nothrow) Runner(client, worker);
+            Runner * runner = new(std::nothrow) Runner(client, deliverer);
             if (!runner)
                 THROW_EXCEPTION("cannot create thread argument");

trunk/msvc14/testClient/test.cpp

@@ -86 +86 @@
     //std::getline(std::cin, sms);
 
-    T(c.login(id, pw));
+    T(c.login(id, pw, sms));
 
     while (true)

trunk/msvc14/testClient/testClient.vcxproj

@@ -97 +97 @@
       <SubSystem>Console</SubSystem>
       <GenerateDebugInformation>true</GenerateDebugInformation>
-      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
+      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\crypto.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>
@@ -111 +111 @@
       <SubSystem>Console</SubSystem>
       <GenerateDebugInformation>true</GenerateDebugInformation>
-      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
+      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\crypto.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>
@@ -129 +129 @@
       <EnableCOMDATFolding>true</EnableCOMDATFolding>
       <OptimizeReferences>true</OptimizeReferences>
-      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
+      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\crypto.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>
@@ -147 +147 @@
       <EnableCOMDATFolding>true</EnableCOMDATFolding>
       <OptimizeReferences>true</OptimizeReferences>
-      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
+      <AdditionalDependencies>$(OutDir)\client.lib;$(OutDir)\crypto.lib;$(OutDir)\cf++.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>