authenticator-ios-v2/ForgeRock-Authenticator/FRATotpOathMechanism.m

caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni/*
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * The contents of this file are subject to the terms of the Common Development and
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * Distribution License (the License). You may not use this file except in compliance with the
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * License.
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni *
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * specific language governing permission and limitations under the License.
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni *
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * When distributing Covered Software, include this CDDL Header Notice in each file and include
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * Header, with the fields enclosed by brackets [] replaced by your own identifying
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * information: "Portions copyright [year] [name of copyright owner]".
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni *
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni * Copyright 2016 ForgeRock AS.
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni */
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#include <CommonCrypto/CommonHMAC.h>
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#import "FRAOathCode.h"
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#import "FRATotpOathMechanism.h"
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantonistatic uint64_t currentTimeInMilli() {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    struct timeval tv;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    if (gettimeofday(&tv, NULL) != 0) {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        return 0;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    }
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return tv.tv_sec * 1000 + tv.tv_usec / 1000;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni@implementation FRATotpOathMechanism {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    uint64_t startTime;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    uint64_t endTime;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#pragma mark -
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#pragma mark Lifecyle
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni- (instancetype)initWithDatabase:(FRAIdentityDatabase *)database identityModel:(FRAIdentityModel *)identityModel secretKey:(NSData *)secretKey HMACAlgorithm:(CCHmacAlgorithm)algorithm codeLength:(NSUInteger)codeLength period:(u_int32_t)period {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    self = [super initWithDatabase:database identityModel:identityModel];
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    if (self) {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        _secretKey = secretKey;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        _algorithm = algorithm;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        _codeLength = codeLength;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        _period = period;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        _version = 1;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    }
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return self;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni+ (instancetype)mechanismWithDatabase:(FRAIdentityDatabase *)database identityModel:(FRAIdentityModel *)identityModel secretKey:(NSData *)secretKey HMACAlgorithm:(CCHmacAlgorithm)algorithm codeLength:(NSUInteger)codeLength period:(u_int32_t)period {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return [[FRATotpOathMechanism alloc] initWithDatabase:database identityModel:identityModel secretKey:secretKey HMACAlgorithm:algorithm codeLength:codeLength period:period];
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#pragma mark -
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni#pragma mark Instance Methods
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
6a2ae9c7fb4d2c40d75cab0edaf940f22c18224fDiego Colantoni- (BOOL)generateNextCode:(NSError *__autoreleasing *)error {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    time_t now = time(NULL);
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    if (now == (time_t) -1) {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        now = 0;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    }
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    uint64_t startTimeInSeconds = (now / self.period * self.period);
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    startTime = startTimeInSeconds * 1000;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    endTime = (startTimeInSeconds + self.period) * 1000;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    _code = [FRAOathCode hmac:self.algorithm codeLength:self.codeLength key:self.secretKey counter:now/self.period];
6a2ae9c7fb4d2c40d75cab0edaf940f22c18224fDiego Colantoni
6a2ae9c7fb4d2c40d75cab0edaf940f22c18224fDiego Colantoni    return YES;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni- (float)progress {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    uint64_t now = currentTimeInMilli();
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    if (now < startTime) {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        return 0.0;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    }
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    if (now < endTime) {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        float totalTime = (float) (endTime - startTime);
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni        return (now - startTime) / totalTime;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    }
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return 1.0;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni- (BOOL)hasExpired {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return [self progress] == 1.0;
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni+ (NSString *)mechanismType {
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni    return @"totp";
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni}
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni
caa9e77dc369fea8df9ae2c598d3c83b7214c1cfDiego Colantoni@end