sidcha
commented
3 years ago To be more specific, the decrypted data block for LSTAT looks like 80000000000000000000000000000000 which indicates that there is no data available, just the padding 0x80 to indicate end of message. So I don't think it is necessary to fail here.
@prxvm, According to the specification (v2.1.6, section D.3.2.1 and D.3.2.2) if a command or reply has no data, it should use SCS_15/SCS_16 and not SCS_17/SCS_18. You can see that LibOSDP handles this correctly while sending and receiving.
Is this a commercially available PD that has this issue? If that is the case and it is widely used, we add a macro switch to allow this.
prxvm
Describe the bug The secure session gets discarded due to "failed" decryption upon receiving commands that have no command structure defined in the spec. Such commands are LSTAT, OSTAT, RSTAT, ISTAT. These simply instruct the PD to reply based on the command code.
Expected behavior Secure mode should not be discarded
Observed behavior It is observed that secure session gets discarded when PD receives CMD_LSTAT in secure mode, due to decrypt function
osdp_decrypt_datareturning 0.Additional context Looking at the spec, the commands LSTAT, OSTAT, RSTAT, ISTAT have no command structure (i.e. no data to go along with the command), and could potentially have no decrypted data to work with. I think this is why returned length from
osdp_decrypt_datais 0. Because the caller inosdp_phy_decode_packetconsiders 0 return value to be a failure scenario, this causes a secure session reset.To be more specific, the decrypted data block for LSTAT looks like
80000000000000000000000000000000which indicates that there is no data available, just the padding0x80to indicate end of message. So I don't think it is necessary to fail here.I propose either removing the equality condition for all, or making an exception for just those four commands.