tbowmo
diff --git a/‎libraries/MySensors/MySensor.h
+4-2 b/‎libraries/MySensors/MySensor.h
+4-2
diff --git a/‎libraries/MySensors/core/MyMessage.h
+3-3 b/‎libraries/MySensors/core/MyMessage.h
+3-3
diff --git a/‎libraries/MySensors/core/MySensorCore.cpp
+2-10 b/‎libraries/MySensors/core/MySensorCore.cpp
+2-10
diff --git a/‎libraries/MySensors/core/MySigning.cpp
+285 b/‎libraries/MySensors/core/MySigning.cpp
+285
@@ -95,9 +95,11 @@
 
 // SIGNING
 #if defined(MY_SIGNING_ATSHA204) || defined(MY_SIGNING_SOFT)
-	// SIGNING COMMON FUNCTIONS
-	#include "core/MySigning.cpp"
 	#define MY_SIGNING_FEATURE
+#endif
+#include "core/MySigning.cpp"
+#if defined(MY_SIGNING_FEATURE)
+	// SIGNING COMMON FUNCTIONS
 	#if defined(MY_SIGNING_ATSHA204) && defined(MY_SIGNING_SOFT)
 		#error Only one signing engine can be activated
 	#endif
 
@@ -163,9 +163,9 @@ typedef enum {
 	I_INCLUSION_MODE, I_CONFIG, I_FIND_PARENT, I_FIND_PARENT_RESPONSE,
 	I_LOG_MESSAGE, I_CHILDREN, I_SKETCH_NAME, I_SKETCH_VERSION,
 	I_REBOOT, I_GATEWAY_READY,
-	I_REQUEST_SIGNING,    /*!< Indicates sender require signed messages (bool param) */
-	I_GET_NONCE,          /*!< Request for a nonce */
-	I_GET_NONCE_RESPONSE, /*!< Payload is nonce data */
+	I_REQUEST_SIGNING, /*!< Indicates sender require signed messages (bool param) */
+	I_NONCE_REQUEST,   /*!< Request for a nonce */
+	I_NONCE_RESPONSE,  /*!< Payload is nonce data */
 	I_HEARTBEAT, I_PRESENTATION, I_DISCOVER, I_DISCOVER_RESPONSE, I_HEARTBEAT_RESPONSE
 } mysensor_internal;
 
 
@@ -62,15 +62,12 @@ static inline bool isValidParent( const uint8_t parent ) {
 void _begin() {
 	#if !defined(MY_DISABLED_SERIAL)
 	    hwInit();
-    #endif
-	
-	#if defined(MY_SIGNING_SOFT)
-		// initialize pseudo-RNG
-		randomSeed(analogRead(MY_SIGNING_SOFT_RANDOMSEED_PIN));
 	#endif
 
 	debug(PSTR("Starting " MY_NODE_TYPE " (" MY_CAPABILIIES ", " LIBRARY_VERSION ")\n"));
 
+	signerInit();
+
 	#if defined(MY_RADIO_FEATURE)
 		_failedTransmissions = 0;
 
@@ -107,11 +104,6 @@ void _begin() {
 	#endif
 
 
-	#if defined(MY_SIGNING_FEATURE)
-		// Read out the signing requirements from EEPROM
-		hwReadConfigBlock((void*)_doSign, (void*)EEPROM_SIGNING_REQUIREMENT_TABLE_ADDRESS, sizeof(_doSign));
-	#endif
-
 	#if defined(MY_LEDS_BLINKING_FEATURE)
 		ledsInit();
 	#endif
 
@@ -19,7 +19,292 @@
 
 #include "MySigning.h"
 
+#if defined(MY_DEBUG_VERBOSE)
+#define SIGN_DEBUG(x,...) debug(x, ##__VA_ARGS__)
+#else
+#define SIGN_DEBUG(x,...)
+#endif
 
+#if defined(MY_SIGNING_REQUEST_SIGNATURES) && (!defined(MY_SIGNING_ATSHA204) && !defined(MY_SIGNING_SOFT))
+#error You have to pick either MY_SIGNING_ATSHA204 or MY_SIGNING_SOFT in order to require signatures!
+#endif
+#ifdef MY_SIGNING_FEATURE
 uint8_t _doSign[32]; // Bitfield indicating which sensors require signed communication
 MyMessage _msgSign;  // Buffer for message to sign.
+uint8_t _signingNonceStatus;
 
+// Status when waiting for signing nonce in signerProcessInternal
+enum { SIGN_WAITING_FOR_NONCE = 0, SIGN_OK = 1 };
+
+// Macros for manipulating signing requirement table
+#define DO_SIGN(node) (~_doSign[node>>3]&(1<<node%8))
+#define SET_SIGN(node) (_doSign[node>>3]&=~(1<<node%8))
+#define CLEAR_SIGN(node) (_doSign[node>>3]|=(1<<node%8))
+
+/*
+ * Stores signing identifier and a new nonce in provided message for signing operations.
+ *
+ * All space in message payload buffer is used for signing identifier and nonce.
+ * Returns false if subsystem is busy processing an ongoing signing operation.
+ * If successful, this marks the start of a signing operation at the receiving side so
+ * implementation is expected to do any necessary initializations within this call.
+ * This function is typically called as action when receiving a I_NONCE_REQUEST message.
+ */
+#if defined(MY_SIGNING_SOFT)
+extern bool signerAtsha204SoftCheckTimer(void);
+extern bool signerAtsha204SoftGetNonce(MyMessage &msg);
+extern bool signerAtsha204SoftPutNonce(MyMessage &msg);
+extern bool signerAtsha204SoftVerifyMsg(MyMessage &msg);
+extern bool signerAtsha204SoftSignMsg(MyMessage &msg);
+#endif
+#if defined(MY_SIGNING_ATSHA204)
+extern bool signerAtsha204CheckTimer(void);
+extern bool signerAtsha204GetNonce(MyMessage &msg);
+extern bool signerAtsha204PutNonce(MyMessage &msg);
+extern bool signerAtsha204VerifyMsg(MyMessage &msg);
+extern bool signerAtsha204SignMsg(MyMessage &msg);
+#endif
+
+// Helper function to centralize signing/verification exceptions
+static bool skipSign(MyMessage &msg) {
+	if mGetAck(msg) {
+		SIGN_DEBUG(PSTR("Skipping security for ACK on command %d type %d\n"), mGetCommand(msg), msg.type);
+		return true;
+	}	else if (mGetCommand(msg) == C_INTERNAL &&
+		(msg.type == I_NONCE_REQUEST || msg.type == I_NONCE_RESPONSE       || msg.type == I_REQUEST_SIGNING ||
+	   msg.type == I_ID_REQUEST    || msg.type == I_ID_RESPONSE          ||
+	   msg.type == I_FIND_PARENT   || msg.type == I_FIND_PARENT_RESPONSE ||
+	   msg.type == I_HEARTBEAT     || msg.type == I_HEARTBEAT_RESPONSE)) {
+		SIGN_DEBUG(PSTR("Skipping security for command %d type %d\n"), mGetCommand(msg), msg.type);
+		return true;
+	} else if (mGetCommand(msg) == C_STREAM &&
+		(msg.type == ST_FIRMWARE_REQUEST || msg.type == ST_FIRMWARE_RESPONSE ||
+		 msg.type == ST_SOUND || msg.type == ST_IMAGE)) {
+		SIGN_DEBUG(PSTR("Skipping security for command %d type %d\n"), mGetCommand(msg), msg.type);
+		return true;
+	} else {
+		return false;
+	}
+}
+#endif // MY_SIGNING_FEATURE
+
+void signerInit(void) {
+#if defined(MY_SIGNING_FEATURE)
+	// Read out the signing requirements from EEPROM
+	hwReadConfigBlock((void*)_doSign, (void*)EEPROM_SIGNING_REQUIREMENT_TABLE_ADDRESS, sizeof(_doSign));
+
+#if defined(MY_SIGNING_SOFT)
+	// initialize pseudo-RNG
+	randomSeed(analogRead(MY_SIGNING_SOFT_RANDOMSEED_PIN));
+#endif
+#endif
+}
+
+void signerPresentation(MyMessage &msg) {
+#ifdef MY_SIGNING_FEATURE
+#if defined(MY_SIGNING_REQUEST_SIGNATURES)
+	_sendRoute(build(msg, _nc.nodeId, GATEWAY_ADDRESS, NODE_SENSOR_ID,
+		C_INTERNAL, I_REQUEST_SIGNING, false).set(true));
+	// If we do require signing, wait for the gateway to tell us how it prefer us to transmit our messages
+	SIGN_DEBUG(PSTR("Request for signing sent, waiting for GW response...\n"));
+	wait(2000);
+#else
+	_sendRoute(build(msg, _nc.nodeId, GATEWAY_ADDRESS, NODE_SENSOR_ID,
+		C_INTERNAL, I_REQUEST_SIGNING, false).set(false));
+#endif
+#else
+	// Ww do not support signing, make sure gateway knows this
+	_sendRoute(build(msg, _nc.nodeId, GATEWAY_ADDRESS, NODE_SENSOR_ID,
+		C_INTERNAL, I_REQUEST_SIGNING, false).set(false));
+#endif
+}
+
+bool signerProcessInternal(MyMessage &msg) {
+	if (mGetCommand(msg) == C_INTERNAL) {
+#if !defined(MY_SIGNING_FEATURE) && defined(MY_GATEWAY_FEATURE)
+		// If we act as gateway and do not have the signing feature and receive a signing request we still
+		// need to do make sure the requester does not believe the gateway still require signatures
+		if (msg.type == I_REQUEST_SIGNING) {
+			_sendRoute(build(msg, _nc.nodeId, msg.sender, NODE_SENSOR_ID,
+				C_INTERNAL, I_REQUEST_SIGNING, false).set((uint8_t)false));
+			SIGN_DEBUG(PSTR("Informing node %d that we do not require signatures because we do not support it\n"),
+				msg.sender);
+			return true; // No need to further process I_REQUEST_SIGNING in this case
+		}
+#elif defined(MY_SIGNING_FEATURE)
+		if (msg.type == I_NONCE_REQUEST) {
+#if defined(MY_SIGNING_SOFT)
+			if (signerAtsha204SoftGetNonce(msg)) {
+#endif
+#if defined(MY_SIGNING_ATSHA204)
+			if (signerAtsha204GetNonce(msg)) {
+#endif
+				SIGN_DEBUG(PSTR("Transmittng nonce\n"));
+				_sendRoute(build(msg, _nc.nodeId, msg.sender, NODE_SENSOR_ID,
+					C_INTERNAL, I_NONCE_RESPONSE, false));
+			} else {
+				SIGN_DEBUG(PSTR("Failed to generate nonce!\n"));
+			}
+			return true; // No need to further process I_NONCE_REQUEST
+		} else if (msg.type == I_REQUEST_SIGNING) {
+			if (msg.getBool()) {
+				// We received an indicator that the sender require us to sign all messages we send to it
+				SIGN_DEBUG(PSTR("Mark node %d as one that require signed messages\n"), msg.sender);
+				SET_SIGN(msg.sender);
+			} else {
+				// We received an indicator that the sender does not require us to sign all messages we send to it
+				SIGN_DEBUG(PSTR("Mark node %d as one that do not require signed messages\n"), msg.sender);
+				CLEAR_SIGN(msg.sender);
+			}
+			// Save updated table
+			hwWriteConfigBlock((void*)_doSign, (void*)EEPROM_SIGNING_REQUIREMENT_TABLE_ADDRESS, sizeof(_doSign));
+
+			// Inform sender about our preference if we are a gateway, but only require signing if the sender
+			// required signing
+			// We do not want a gateway to require signing from all nodes in a network just because it wants one node
+			// to sign it's messages
+#if defined (MY_GATEWAY_FEATURE)
+#ifdef MY_SIGNING_REQUEST_SIGNATURES
+			if (DO_SIGN(msg.sender)) {
+				_sendRoute(build(msg, _nc.nodeId, msg.sender, NODE_SENSOR_ID,
+					C_INTERNAL, I_REQUEST_SIGNING, false).set((uint8_t)true));
+				SIGN_DEBUG(PSTR("Informing node %d that we require signatures\n"), msg.sender);
+			}
+			else {
+				_sendRoute(build(msg, _nc.nodeId, msg.sender, NODE_SENSOR_ID,
+					C_INTERNAL, I_REQUEST_SIGNING, false).set((uint8_t)false));
+				SIGN_DEBUG(PSTR("Informing node %d that we do not require signatures\n"), msg.sender);
+			}
+#else // no MY_SIGNING_REQUEST_SIGNATURES
+			_sendRoute(build(msg, _nc.nodeId, msg.sender, NODE_SENSOR_ID,
+				C_INTERNAL, I_REQUEST_SIGNING, false).set((uint8_t)false));
+			SIGN_DEBUG(PSTR("Informing node %d that we do not require signatures\n"), msg.sender);
+#endif
+#endif // MY_GATEWAY_FEATURE
+			return true; // No need to further process I_REQUEST_SIGNING
+		} else if (msg.type == I_NONCE_RESPONSE) {
+			// Proceed with signing if nonce has been received
+			SIGN_DEBUG(PSTR("Nonce received from %d. Proceeding with signing...\n"), msg.sender);
+			if (msg.sender != _msgSign.destination) {
+				SIGN_DEBUG(PSTR("Nonce did not come from the destination (%d) of the message to be signed! "
+					"It came from %d.\n"), _msgSign.destination, msg.sender);
+				SIGN_DEBUG(PSTR("Silently discarding this nonce\n"));
+				return true; // No need to further process I_NONCE_RESPONSE
+			}
+#if defined(MY_SIGNING_SOFT)
+			if (!signerAtsha204SoftPutNonce(msg)) {
+#endif
+#if defined(MY_SIGNING_ATSHA204)
+			if (!signerAtsha204PutNonce(msg)) {
+#endif
+				SIGN_DEBUG(PSTR("Failed to store nonce to signing backend!\n"));
+#if defined(MY_SIGNING_SOFT)
+			} else if (!signerAtsha204SoftSignMsg(_msgSign)) {
+#endif
+#if defined(MY_SIGNING_ATSHA204)
+			} else if (!signerAtsha204SignMsg(_msgSign)) {
+#endif
+				SIGN_DEBUG(PSTR("Failed to sign message!\n"));
+			} else {
+				SIGN_DEBUG(PSTR("Message signed\n"));
+				_signingNonceStatus = SIGN_OK; // _msgSign now contains the signed message pending transmission
+			}
+			return true; // No need to further process I_NONCE_RESPONSE
+		}
+#endif // MY_SIGNING_FEATURE
+	}
+	return false;
+}
+
+bool signerCheckTimer(void) {
+#if defined(MY_SIGNING_SOFT)
+	return signerAtsha204SoftCheckTimer();
+#elif defined(MY_SIGNING_ATSHA204)
+	return signerAtsha204CheckTimer();
+#else
+	return true; // Without a configured backend, we always give "positive" results
+#endif
+}
+
+bool signerSignMsg(MyMessage &msg) {
+#if defined(MY_SIGNING_FEATURE)
+	// If destination is known to require signed messages and we are the sender,
+	// sign this message unless it is a handshake message
+	if (DO_SIGN(msg.destination) && msg.sender == _nc.nodeId) {
+		if (skipSign(msg)) {
+			return true;
+		} else {
+			// Send nonce-request
+			_signingNonceStatus=SIGN_WAITING_FOR_NONCE;
+			if (!_sendRoute(build(_msgTmp, _nc.nodeId, msg.destination, msg.sensor,
+				C_INTERNAL, I_NONCE_REQUEST, false).set(""))) {
+				SIGN_DEBUG(PSTR("Failed to transmit nonce request!\n"));
+				return false;
+			}
+			SIGN_DEBUG(PSTR("Nonce requested from %d. Waiting...\n"), msg.destination);
+			// We have to wait for the nonce to arrive before we can sign our original message
+			// Other messages could come in-between. We trust _process() takes care of them
+			unsigned long enter = hwMillis();
+			_msgSign = msg; // Copy the message to sign since message buffer might be touched in _process()
+			while (hwMillis() - enter < MY_VERIFICATION_TIMEOUT_MS && _signingNonceStatus==SIGN_WAITING_FOR_NONCE) {
+				_process();
+			}
+			if (hwMillis() - enter > MY_VERIFICATION_TIMEOUT_MS) {
+				SIGN_DEBUG(PSTR("Timeout waiting for nonce!\n"));
+				return false;
+			}
+			if (_signingNonceStatus == SIGN_OK) {
+				// process() received a nonce and signerProcessInternal successfully signed the message
+				msg = _msgSign; // Write the signed message back
+				SIGN_DEBUG(PSTR("Message to send has been signed\n"));
+			} else {
+				SIGN_DEBUG(PSTR("Message to send could not be signed!\n"));
+				return false;
+			}
+			// After this point, only the 'last' member of the message structure is allowed to be altered if the
+			// message has been signed, or signature will become invalid and the message rejected by the receiver
+		}
+	} else if (_nc.nodeId == msg.sender) {
+		mSetSigned(msg, 0); // Message is not supposed to be signed, make sure it is marked unsigned
+	}
+#else
+	(void)msg;
+#endif // MY_SIGNING_FEATURE
+	return true;
+}
+
+bool signerVerifyMsg(MyMessage &msg) {
+	bool verificationResult = true;
+	// Before processing message, reject unsigned messages if signing is required and check signature
+	// (if it is signed and addressed to us)
+	// Note that we do not care at all about any signature found if we do not require signing
+#if defined(MY_SIGNING_FEATURE) && defined(MY_SIGNING_REQUEST_SIGNATURES)
+	// If we are a node, or we are a gateway and the sender require signatures
+	// and we are the destination...
+	if ((!MY_IS_GATEWAY || DO_SIGN(msg.sender)) && msg.destination == _nc.nodeId) {
+		// Internal messages of certain types are not verified
+		if (skipSign(msg)) {
+			verificationResult = true;
+		}
+		else if (!mGetSigned(msg)) {
+			// Got unsigned message that should have been signed
+			SIGN_DEBUG(PSTR("Message is not signed, but it should have been!\n"));
+			verificationResult = false;
+		} else {
+#if defined(MY_SIGNING_SOFT)
+			verificationResult = signerAtsha204SoftVerifyMsg(msg);
+#endif
+#if defined(MY_SIGNING_ATSHA204)
+			verificationResult = signerAtsha204VerifyMsg(msg);
+#endif
+			if (!verificationResult) {
+				SIGN_DEBUG(PSTR("Signature verification failed!\n"));
+			}
+			mSetSigned(msg,0); // Clear the sign-flag now as verification is completed
+		}
+	}
+#else
+	(void)msg;
+#endif // MY_SIGNING_REQUEST_SIGNATURES
+	return verificationResult;
+}