🐢 TurtlPass Firmware

Author: ryanamaral

.gitignore

@@ -0,0 +1,9 @@
+.DS_Store
+/.idea
+/build
+/app/build
+/.gradle
+/local.properties
+/app/plugins/internal/build/
+/app/plugins/internal/.gradle/
+/turtlpass-firmware/Seed.cpp

LICENSE

@@ -0,0 +1,127 @@
+<p align="center">
+<img src="assets/icon.png" alt="logo" width=90>
+<h3 align="center">TurtlPass Firmware</h3>
+<p align="center">
+TurtlPass Firmware provides a simple and secure way of generating passwords using a deterministic key derivation function (HKDF) as specified in <a href="https://datatracker.ietf.org/doc/html/rfc5869">RFC 5869</a>.</p>
+<p align="center">
+<a href="https://github.com/TurtlPass/turtlpass-firmware-arduino/releases"><img src="https://img.shields.io/badge/Arduino%20Firmware-v1.0.0-green?logo=arduino" alt="Releases"/></a>
+</p>
+<p align="center">
+<a href="https://github.com/TurtlPass/turtlpass-android"><img src="https://img.shields.io/badge/Android%20App-v1.0.0-blue?logo=android" alt="Android Repo"/></a>
+<a href="https://github.com/TurtlPass/turtlpass-chrome-extension"><img src="https://img.shields.io/badge/Chrome%20Extension-v1.0.0-blue?logo=googlechrome" alt="Chrome Extension Repo"/></a>
+</p>
+
+
+## ⚡ Features
+
+* Generates unique, secure passwords from a simple input hash
+	* 100 characters long, including a combination of lowercase and uppercase letters, as well as numbers
+* Uses a seed stored in flash memory for added security
+* Automatically types the password for you, so you don't have to
+* Erases the password from memory after use, for extra peace of mind
+* Easy to integrate into your existing projects with USB serial port connectivity
+
+
+## 🏗️ Hardware
+
+<img src="assets/rpi-picos.jpg" width="100%">
+
+1. **Raspberry Pi Pico**
+2. **OTG Cable**: micro-USB (male) to USB-C (male)
+3. **Cover/Case** (optional)
+
+
+## 💡 LED State
+
+* `ON`
+	* Operational (default)
+* `PULSING`
+	* Password ready to type
+* `BLINKING`
+	* Typing... (fast blink)
+* `OFF`
+	* No power input
+
+
+## 🔧 Generate your own seed
+
+1. Run the bash script `./generate_seed_file.sh` to generate a new seed file `Seed.cpp.<timestamp>` on a computer with macOS or Linux.
+
+2. Rename the generated file to `Seed.cpp`.
+
+
+## ⬆️ Upload sketch
+
+
+1. Open `turtlpass-firmware.ino` with Arduino IDE on a computer.
+
+	> If the first time, select the appropriate **Board** and **Serial Port** in the Arduino menu `Tools`.
+
+2. Connect the Raspberry Pico to a computer with a micro-USB to USB-C cable.
+
+	> To upload your first sketch, you will need to hold the `BOOTSEL` button down while plugging in the Pico to a computer.
+
+3. Click in the `Upload` icon to upload the sketch to the Pico
+
+4. The sketch should be transferred and start to run.
+
+
+## 🐞 Debugging
+
+1. Open the **Serial Monitor** console
+	> Settings: `Newline` and `115200` baud rate
+
+2. Type, for example, `/0` and send it
+
+3. You should get a response saying `OK` and the LED should be `PULSING`
+
+4. Now press the button on Pico and the password should be typed (wherever the focus is on)
+
+
+## 🛡️ Security
+
+As a precaution, it is crucial to note that an individual with physical access to the device may potentially be able to compromise it, given sufficient time and effort.
+
+<details>
+  <summary>Raspberry Pi Pico</summary>
+  
+While the [Raspberry Pi Pico](https://thepihut.com/products/raspberry-pi-pico) (RP2040) is a useful device for development, it is not recommended for use in production settings. Due to the external ROM it utilizes, it is relatively easy to extract the firmware binary using [picotool](https://github.com/raspberrypi/picotool), making it challenging to protect against unauthorized access.
+
+Example on how to do just that:
+
+```
+$ picotool save firmware.uf2
+Saving file: [==============================]  100%
+Wrote 369000 bytes to firmware.uf2
+```
+</details>
+
+<details>
+  <summary>Arduino RP2040 Connect</summary>
+  
+The [Arduino RP2040 Connect](https://thepihut.com/products/arduino-nano-rp2040-connect) features the **ATECC608A Cryptographic Co-processor** that includes hardware storage for cryptographic keys however to access certain features on this chip we need to contact Microchip and sign an NDA contract.</details>
+
+<details>
+  <summary>Other devices</summary>
+  
+I am continuously exploring and evaluating new hardware options for this project. As more information and resources become available, I will keep you updated on my progress.
+</details>
+
+
+## 📚 Libraries
+
+* [Raspberry Pi Pico Arduino core](https://github.com/earlephilhower/arduino-pico)
+	* Port of the RP2040 (Raspberry Pi Pico processor) to the Arduino ecosystem. 
+	* It uses the bare Raspberry Pi Pico SDK and a custom GCC 10.3/Newlib 4.0 toolchain.
+	* _LGPL 2.1 license_
+* [Arduino Cryptography Library](https://github.com/rweather/arduinolibs)
+	* Libraries to perform cryptography operations on Arduino devices
+	* _MIT license_
+* [Keyboard Library for Arduino](https://github.com/arduino-libraries/Keyboard)
+	* Library allows an Arduino board with USB capabilities to act as a keyboard
+	* _LGPL 3.0 license_
+
+
+## 📄 License
+
+TurtlPass Firmware is released under the [GPL 3.0 license](https://github.com/TurtlPass/turtlpass-firmware-arduino/blob/main/LICENSE).

README.md

@@ -0,0 +1,41 @@
+#!/bin/bash
+# chmod +x generate_seed_file.sh
+
+echo ">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>"
+echo ">>> Generating Seed.cpp file"
+echo ">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>"
+
+# Generate a new private key
+openssl genrsa -out seed.tmp 4096
+
+# Skip the first and last line of the private key file
+TOTAL_LINES=$(wc -l seed.tmp | awk '{print $1}')
+
+# Store the output of the tail and head commands in the SEED variable
+SEED=$(tail -n +2 seed.tmp | head -n $((TOTAL_LINES - 2)))
+
+# Create the timestamp
+TIMESTAMP=$(date +"%Y%m%d%H%M%S")
+
+# Create the output file
+FILE_NAME="turtlpass-firmware/Seed.cpp.${TIMESTAMP}"
+touch "$FILE_NAME"
+
+# Write the contents of the file
+cat > "$FILE_NAME" << EOF
+#include "Seed.h"
+
+const char* seed PROGMEM = R"key(
+$SEED
+)key";
+EOF
+
+# Clean up
+rm seed.tmp
+
+echo ">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>"
+echo "$SEED"
+echo ">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>"
+echo ">>> Generated file: $FILE_NAME"
+echo ">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>"
+echo "Done"

assets/icon.png

@@ -0,0 +1,114 @@
+/*
+ * Copyright (C) 2015 Southern Storm Software, Pty Ltd.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a
+ * copy of this software and associated documentation files (the "Software"),
+ * to deal in the Software without restriction, including without limitation
+ * the rights to use, copy, modify, merge, publish, distribute, sublicense,
+ * and/or sell copies of the Software, and to permit persons to whom the
+ * Software is furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included
+ * in all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+ * OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+ * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+ * DEALINGS IN THE SOFTWARE.
+ */
+
+#include "Crypto.h"
+
+/**
+ * \brief Cleans a block of bytes.
+ *
+ * \param dest The destination block to be cleaned.
+ * \param size The size of the destination to be cleaned in bytes.
+ *
+ * Unlike memset(), this function attempts to prevent the compiler
+ * from optimizing away the clear on a memory buffer.
+ */
+void clean(void *dest, size_t size)
+{
+    // Force the use of volatile so that we actually clear the memory.
+    // Otherwise the compiler might optimise the entire contents of this
+    // function away, which will not be secure.
+    volatile uint8_t *d = (volatile uint8_t *)dest;
+    while (size > 0) {
+        *d++ = 0;
+        --size;
+    }
+}
+
+/**
+ * \fn void clean(T &var)
+ * \brief Template function that cleans a variable.
+ *
+ * \param var A reference to the variable to clean.
+ *
+ * The variable will be cleared to all-zeroes in a secure manner.
+ * Unlike memset(), this function attempts to prevent the compiler
+ * from optimizing away the variable clear.
+ */
+
+/**
+ * \brief Compares two memory blocks for equality.
+ *
+ * \param data1 Points to the first memory block.
+ * \param data2 Points to the second memory block.
+ * \param len The size of the memory blocks in bytes.
+ *
+ * Unlike memcmp(), this function attempts to compare the two memory blocks
+ * in a way that will not reveal the contents in the instruction timing.
+ * In particular, this function will not stop early if a byte is different.
+ * It will instead continue onto the end of the array.
+ */
+bool secure_compare(const void *data1, const void *data2, size_t len)
+{
+    uint8_t result = 0;
+    const uint8_t *d1 = (const uint8_t *)data1;
+    const uint8_t *d2 = (const uint8_t *)data2;
+    while (len > 0) {
+        result |= (*d1++ ^ *d2++);
+        --len;
+    }
+    return (bool)((((uint16_t)0x0100) - result) >> 8);
+}
+
+/**
+ * \brief Calculates the CRC-8 value over an array in memory.
+ *
+ * \param tag Starting tag to distinguish this calculation.
+ * \param data The data to checksum.
+ * \param size The number of bytes to checksum.
+ * \return The CRC-8 value over the data.
+ *
+ * This function does not provide any real security.  It is a simple
+ * check that seed values have been initialized within EEPROM or Flash.
+ * If the CRC-8 check fails, then it is assumed that the EEPROM/Flash
+ * contents are invalid and should be re-initialized.
+ *
+ * Reference: http://www.sunshine2k.de/articles/coding/crc/understanding_crc.html#ch4
+ */
+uint8_t crypto_crc8(uint8_t tag, const void *data, unsigned size)
+{
+    const uint8_t *d = (const uint8_t *)data;
+    uint8_t crc = 0xFF ^ tag;
+    uint8_t bit;
+    while (size > 0) {
+        crc ^= *d++;
+        for (bit = 0; bit < 8; ++bit) {
+            // if (crc & 0x80)
+            //     crc = (crc << 1) ^ 0x1D;
+            // else
+            //     crc = (crc << 1);
+            uint8_t generator = (uint8_t)((((int8_t)crc) >> 7) & 0x1D);
+            crc = (crc << 1) ^ generator;
+        }
+        --size;
+    }
+    return crc;
+}

assets/rpi-picos.jpg

@@ -0,0 +1,46 @@
+/*
+ * Copyright (C) 2015 Southern Storm Software, Pty Ltd.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a
+ * copy of this software and associated documentation files (the "Software"),
+ * to deal in the Software without restriction, including without limitation
+ * the rights to use, copy, modify, merge, publish, distribute, sublicense,
+ * and/or sell copies of the Software, and to permit persons to whom the
+ * Software is furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included
+ * in all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+ * OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+ * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+ * DEALINGS IN THE SOFTWARE.
+ */
+
+#ifndef CRYPTO_h
+#define CRYPTO_h
+
+#include <inttypes.h>
+#include <stddef.h>
+
+void clean(void *dest, size_t size);
+
+template <typename T>
+inline void clean(T &var)
+{
+    clean(&var, sizeof(T));
+}
+
+bool secure_compare(const void *data1, const void *data2, size_t len);
+
+#if defined(ESP8266)
+extern "C" void system_soft_wdt_feed(void);
+#define crypto_feed_watchdog() system_soft_wdt_feed()
+#else
+#define crypto_feed_watchdog() do { ; } while (0)
+#endif
+
+#endif