refactor pairing to match HAP spec more closely

mostly renames, but significant change is that when we don't recognize
a user, return an error code instead of throwing an exception and returning
a 500 with no content.

several responses are now generated with PairingResponse, rather than as
a raw byte array, so that the reader can more easily follow what the response
is.

several more trace loggings showing the details of the pairing process have
been added, for debug use

also ensure that we check if the MAC has changed when refreshing auth info

Author: ccutrer

src/main/java/io/github/hapjava/server/impl/HomekitRoot.java

@@ -197,6 +197,7 @@ public void stop() {
    * @throws IOException if there is an error in the underlying protocol, such as a TCP error
    */
   public void refreshAuthInfo() throws IOException {
+    advertiser.setMac(authInfo.getMac());
     advertiser.setDiscoverable(!authInfo.hasUser());
   }
 

src/main/java/io/github/hapjava/server/impl/connections/HttpSession.java

@@ -9,9 +9,9 @@
 import io.github.hapjava.server.impl.jmdns.JmdnsHomekitAdvertiser;
 import io.github.hapjava.server.impl.json.AccessoryController;
 import io.github.hapjava.server.impl.json.CharacteristicsController;
-import io.github.hapjava.server.impl.pairing.PairVerificationManager;
-import io.github.hapjava.server.impl.pairing.PairingManager;
-import io.github.hapjava.server.impl.pairing.PairingUpdateController;
+import io.github.hapjava.server.impl.pairing.PairSetupManager;
+import io.github.hapjava.server.impl.pairing.PairVerifyManager;
+import io.github.hapjava.server.impl.pairing.PairingsManager;
 import io.github.hapjava.server.impl.responses.InternalServerErrorResponse;
 import io.github.hapjava.server.impl.responses.NotFoundResponse;
 import java.io.IOException;
@@ -21,8 +21,8 @@
 
 class HttpSession {
 
-  private volatile PairingManager pairingManager;
-  private volatile PairVerificationManager pairVerificationManager;
+  private volatile PairSetupManager pairSetupManager;
+  private volatile PairVerifyManager pairVerifyManager;
   private volatile AccessoryController accessoryController;
   private volatile CharacteristicsController characteristicsController;
 
@@ -84,7 +84,7 @@ public HttpResponse handleAuthenticatedRequest(HttpRequest request) throws IOExc
           }
 
         case "/pairings":
-          return new PairingUpdateController(authInfo, advertiser).handle(request);
+          return new PairingsManager(authInfo, advertiser).handle(request);
 
         default:
           if (request.getUri().startsWith("/characteristics?")) {
@@ -100,31 +100,31 @@ public HttpResponse handleAuthenticatedRequest(HttpRequest request) throws IOExc
   }
 
   private HttpResponse handlePairSetup(HttpRequest request) {
-    if (pairingManager == null) {
+    if (pairSetupManager == null) {
       synchronized (HttpSession.class) {
-        if (pairingManager == null) {
-          pairingManager = new PairingManager(authInfo, registry);
+        if (pairSetupManager == null) {
+          pairSetupManager = new PairSetupManager(authInfo, registry);
         }
       }
     }
     try {
-      return pairingManager.handle(request);
+      return pairSetupManager.handle(request);
     } catch (Exception e) {
       logger.warn("Exception encountered during pairing", e);
       return new InternalServerErrorResponse(e);
     }
   }
 
   private HttpResponse handlePairVerify(HttpRequest request) {
-    if (pairVerificationManager == null) {
+    if (pairVerifyManager == null) {
       synchronized (HttpSession.class) {
-        if (pairVerificationManager == null) {
-          pairVerificationManager = new PairVerificationManager(authInfo, registry);
+        if (pairVerifyManager == null) {
+          pairVerifyManager = new PairVerifyManager(authInfo, registry);
         }
       }
     }
     try {
-      return pairVerificationManager.handle(request);
+      return pairVerifyManager.handle(request);
     } catch (Exception e) {
       logger.warn("Exception encountered while verifying pairing", e);
       return new InternalServerErrorResponse(e);

src/main/java/io/github/hapjava/server/impl/jmdns/JmdnsHomekitAdvertiser.java

@@ -79,6 +79,17 @@ public synchronized void setDiscoverable(boolean discoverable) throws IOExceptio
     }
   }
 
+  public synchronized void setMac(String mac) throws IOException {
+    if (this.mac != mac) {
+      this.mac = mac;
+      if (isAdvertising) {
+        logger.trace("Re-creating service due to change in mac to " + mac);
+        unregisterService();
+        registerService();
+      }
+    }
+  }
+
   public synchronized void setConfigurationIndex(int revision) throws IOException {
     if (this.configurationIndex != revision) {
       this.configurationIndex = revision;

src/main/java/io/github/hapjava/server/impl/pairing/ErrorCode.java

@@ -0,0 +1,26 @@
+package io.github.hapjava.server.impl.pairing;
+
+public enum ErrorCode {
+  OK(0),
+  UNKNOWN(1),
+  AUTHENTICATION(2),
+  BACKOFF(3),
+  MAX_PEERS(4),
+  MAX_TRIES(5),
+  UNAVAILABLE(6),
+  BUSY(7);
+
+  private final short key;
+
+  ErrorCode(short key) {
+    this.key = key;
+  }
+
+  ErrorCode(int key) {
+    this.key = (short) key;
+  }
+
+  public short getKey() {
+    return key;
+  }
+}

…erver/impl/pairing/FinalPairHandler.java …server/impl/pairing/ExchangeHandler.javasrc/main/java/io/github/hapjava/server/impl/pairing/FinalPairHandler.java renamed to src/main/java/io/github/hapjava/server/impl/pairing/ExchangeHandler.java src/main/java/io/github/hapjava/server/impl/pairing/FinalPairHandler.java renamed to src/main/java/io/github/hapjava/server/impl/pairing/ExchangeHandler.java

@@ -6,22 +6,26 @@
 import io.github.hapjava.server.impl.crypto.EdsaSigner;
 import io.github.hapjava.server.impl.crypto.EdsaVerifier;
 import io.github.hapjava.server.impl.http.HttpResponse;
-import io.github.hapjava.server.impl.pairing.PairSetupRequest.Stage3Request;
+import io.github.hapjava.server.impl.pairing.PairSetupRequest.ExchangeRequest;
 import io.github.hapjava.server.impl.pairing.TypeLengthValueUtils.DecodeResult;
 import io.github.hapjava.server.impl.pairing.TypeLengthValueUtils.Encoder;
 import java.nio.charset.StandardCharsets;
 import org.bouncycastle.crypto.digests.SHA512Digest;
 import org.bouncycastle.crypto.generators.HKDFBytesGenerator;
 import org.bouncycastle.crypto.params.HKDFParameters;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
-class FinalPairHandler {
+class ExchangeHandler {
 
   private final byte[] k;
   private final HomekitAuthInfo authInfo;
 
   private byte[] hkdf_enc_key;
 
-  public FinalPairHandler(byte[] k, HomekitAuthInfo authInfo) {
+  private static final Logger LOGGER = LoggerFactory.getLogger(ExchangeHandler.class);
+
+  public ExchangeHandler(byte[] k, HomekitAuthInfo authInfo) {
     this.k = k;
     this.authInfo = authInfo;
   }
@@ -36,10 +40,10 @@ public HttpResponse handle(PairSetupRequest req) throws Exception {
     byte[] okm = hkdf_enc_key = new byte[32];
     hkdf.generateBytes(okm, 0, 32);
 
-    return decrypt((Stage3Request) req, okm);
+    return decrypt((ExchangeRequest) req, okm);
   }
 
-  private HttpResponse decrypt(Stage3Request req, byte[] key) throws Exception {
+  private HttpResponse decrypt(ExchangeRequest req, byte[] key) throws Exception {
     ChachaDecoder chacha = new ChachaDecoder(key, "PS-Msg05".getBytes(StandardCharsets.UTF_8));
     byte[] plaintext = chacha.decodeCiphertext(req.getAuthTagData(), req.getMessageData());
 
@@ -63,10 +67,11 @@ private HttpResponse createUser(byte[] username, byte[] ltpk, byte[] proof) thro
     byte[] completeData = ByteUtils.joinBytes(okm, username, ltpk);
 
     if (!new EdsaVerifier(ltpk).verify(completeData, proof)) {
-      throw new Exception("Invalid signature");
+      return new PairingResponse(6, ErrorCode.AUTHENTICATION);
     }
-    authInfo.createUser(
-        authInfo.getMac() + new String(username, StandardCharsets.UTF_8), ltpk, true);
+    String stringUsername = new String(username, StandardCharsets.UTF_8);
+    LOGGER.trace("Creating initial user {}", stringUsername);
+    authInfo.createUser(authInfo.getMac() + stringUsername, ltpk, true);
     return createResponse();
   }
 

…/server/impl/pairing/PairingManager.java …erver/impl/pairing/PairSetupManager.javasrc/main/java/io/github/hapjava/server/impl/pairing/PairingManager.java renamed to src/main/java/io/github/hapjava/server/impl/pairing/PairSetupManager.java src/main/java/io/github/hapjava/server/impl/pairing/PairingManager.java renamed to src/main/java/io/github/hapjava/server/impl/pairing/PairSetupManager.java

@@ -9,48 +9,49 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
-public class PairingManager {
+public class PairSetupManager {
 
-  private static final Logger logger = LoggerFactory.getLogger(PairingManager.class);
+  private static final Logger logger = LoggerFactory.getLogger(PairSetupManager.class);
 
   private final HomekitAuthInfo authInfo;
   private final HomekitRegistry registry;
 
   private SrpHandler srpHandler;
 
-  public PairingManager(HomekitAuthInfo authInfo, HomekitRegistry registry) {
+  public PairSetupManager(HomekitAuthInfo authInfo, HomekitRegistry registry) {
     this.authInfo = authInfo;
     this.registry = registry;
   }
 
   public HttpResponse handle(HttpRequest httpRequest) throws Exception {
     PairSetupRequest req = PairSetupRequest.of(httpRequest.getBody());
+    logger.trace("Handling pair-setup request {}", req);
 
-    if (req.getStage() == Stage.ONE) {
-      logger.trace("Starting pair for " + registry.getLabel());
+    if (req.getState() == 1) {
+      logger.trace("Received SRP Start Request " + registry.getLabel());
       srpHandler = new SrpHandler(authInfo.getPin(), authInfo.getSalt());
       return srpHandler.handle(req);
-    } else if (req.getStage() == Stage.TWO) {
-      logger.trace("Entering second stage of pair for " + registry.getLabel());
+    } else if (req.getState() == 3) {
+      logger.trace("Receive SRP Verify Request for " + registry.getLabel());
       if (srpHandler == null) {
-        logger.warn("Received unexpected stage 2 request for " + registry.getLabel());
+        logger.warn("Received unexpected SRP Verify Request for " + registry.getLabel());
         return new UnauthorizedResponse();
       } else {
         try {
           return srpHandler.handle(req);
         } catch (Exception e) {
           srpHandler = null; // You don't get to try again - need a new key
-          logger.warn("Exception encountered while processing pairing request", e);
+          logger.warn("Exception encountered while processing SRP Verify Request", e);
           return new UnauthorizedResponse();
         }
       }
-    } else if (req.getStage() == Stage.THREE) {
-      logger.trace("Entering third stage of pair for " + registry.getLabel());
+    } else if (req.getState() == 5) {
+      logger.trace("Received Exchange Request for " + registry.getLabel());
       if (srpHandler == null) {
-        logger.warn("Received unexpected stage 3 request for " + registry.getLabel());
+        logger.warn("Received unexpected Exchanged Request for " + registry.getLabel());
         return new UnauthorizedResponse();
       } else {
-        FinalPairHandler handler = new FinalPairHandler(srpHandler.getK(), authInfo);
+        ExchangeHandler handler = new ExchangeHandler(srpHandler.getK(), authInfo);
         try {
           return handler.handle(req);
         } catch (Exception e) {

src/main/java/io/github/hapjava/server/impl/pairing/PairSetupRequest.java

@@ -2,46 +2,61 @@
 
 import io.github.hapjava.server.impl.pairing.TypeLengthValueUtils.DecodeResult;
 import java.math.BigInteger;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
 abstract class PairSetupRequest {
-
-  private static final short VALUE_STAGE_1 = 1;
-  private static final short VALUE_STAGE_2 = 3;
-  private static final short VALUE_STAGE_3 = 5;
+  private static final Logger logger = LoggerFactory.getLogger(PairSetupRequest.class);
 
   public static PairSetupRequest of(byte[] content) throws Exception {
     DecodeResult d = TypeLengthValueUtils.decode(content);
+    logger.trace("Decoded pair setup request: {}", d);
     short stage = d.getByte(MessageType.STATE);
     switch (stage) {
-      case VALUE_STAGE_1:
-        return new Stage1Request();
+      case 1:
+        return new SRPStartRequest(d);
 
-      case VALUE_STAGE_2:
-        return new Stage2Request(d);
+      case 3:
+        return new SRPVerifyRequest(d);
 
-      case VALUE_STAGE_3:
-        return new Stage3Request(d);
+      case 5:
+        return new ExchangeRequest(d);
 
       default:
         throw new Exception("Unknown pair process stage: " + stage);
     }
   }
 
-  public abstract Stage getStage();
+  // Raw integer.
+  // State of the pairing process. 1=M1, 2=M2, etc.
+  public abstract int getState();
+
+  public static class SRPStartRequest extends PairSetupRequest {
+    int flags;
+
+    public SRPStartRequest(DecodeResult d) {
+      flags = 0;
+      if (d.hasMessage(MessageType.FLAGS)) {
+        flags = d.getInt(MessageType.FLAGS);
+      }
+    }
 
-  public static class Stage1Request extends PairSetupRequest {
     @Override
-    public Stage getStage() {
-      return Stage.ONE;
+    public int getState() {
+      return 1;
+    }
+
+    public String toString() {
+      return "<M1 flags=" + Integer.toString(flags) + ">";
     }
   }
 
-  public static class Stage2Request extends PairSetupRequest {
+  public static class SRPVerifyRequest extends PairSetupRequest {
 
     private final BigInteger a;
     private final BigInteger m1;
 
-    public Stage2Request(DecodeResult d) {
+    public SRPVerifyRequest(DecodeResult d) {
       a = d.getBigInt(MessageType.PUBLIC_KEY);
       m1 = d.getBigInt(MessageType.PROOF);
     }
@@ -55,17 +70,21 @@ public BigInteger getM1() {
     }
 
     @Override
-    public Stage getStage() {
-      return Stage.TWO;
+    public int getState() {
+      return 3;
+    }
+
+    public String toString() {
+      return "<M3 public key=" + a.toString() + ", proof=" + m1.toString() + ">";
     }
   }
 
-  static class Stage3Request extends PairSetupRequest {
+  static class ExchangeRequest extends PairSetupRequest {
 
     private final byte[] messageData;
     private final byte[] authTagData;
 
-    public Stage3Request(DecodeResult d) {
+    public ExchangeRequest(DecodeResult d) {
       messageData = new byte[d.getLength(MessageType.ENCRYPTED_DATA) - 16];
       authTagData = new byte[16];
       d.getBytes(MessageType.ENCRYPTED_DATA, messageData, 0);
@@ -81,8 +100,12 @@ public byte[] getAuthTagData() {
     }
 
     @Override
-    public Stage getStage() {
-      return Stage.THREE;
+    public int getState() {
+      return 5;
+    }
+
+    public String toString() {
+      return "<M5>";
     }
   }
 }