/// <summary>
/// Generated an activation key for the target deviceid.
/// </summary>
/// <param name="deviceId">Identifier of the cdeEngine node that is to be activated with the activation key.</param>
/// <param name="signingKey">Symmetric key (arbitrary string) used to sign the activation key. The same key must be provided on the runtime node.</param>
/// <param name="Expiration">Expiration date of the activation key. Licenses and entitlements activated using this key will cease to be valid after this date.</param>
/// <param name="licenses">Note: values in the License.LicenseParameters property will be included in the activation key and added to the values in the license at activation time.
/// This means that often you will want to set these values to 0 if the license already contains non-zero default paremeters.</param>
/// <param name="activationKeyParameters">Additional parameters (typically entitlements for thing instances) to be unlocked with this activation key.</param>
/// <param name="flags">Flags requesting additional activation key behavior.</param>
/// <returns></returns>
public static string GenerateActivationKey(Guid deviceId, string signingKey, DateTime Expiration, TheLicense[] licenses, List <TheLicenseParameter> activationKeyParameters, ActivationFlags flags)
{
if (licenses.Length > MaxLicensesInActivationKey || licenses.Length == 0)
{
return(null);
}
var sortedLicenses = licenses.OrderBy((l) => l.LicenseId.ToString());
byte[] licenseSignature;
byte[] licenseParams = GenerateLicenseParameters(sortedLicenses);
if (licenseParams == null || licenseParams.Length > TheActivationUtils.MaxLicenseParameters)
{
return(null);
}
int index = 0;
foreach (var param in activationKeyParameters)
{
licenseParams[index] = param.Value;
index++;
}
double expirationTemp = Math.Ceiling((Expiration.ToUniversalTime() - new DateTime(2016, 1, 1, 0, 0, 0, DateTimeKind.Utc)).TotalDays);
if (expirationTemp < 0 || expirationTemp > 0xFFFF)
{
return(null);
}
uint expirationInDays = (uint)expirationTemp;
if (!TheActivationUtils.GenerateLicenseSignature(deviceId, signingKey, expirationInDays, sortedLicenses.ToArray(), licenseParams, flags, out licenseSignature))
{
return(null);
}
byte[] activationKey = new byte[23];
// 0-7: HMACSHA1 (appId, licenseAuthorization) -> truncate to 8 bytes (64 bits)
licenseSignature.Take(8).ToArray().CopyTo(activationKey, 0);
// 8-9: Expiration: Days since January 2016. Resulting Range: 2016 - 2195
activationKey[8] = (byte)(expirationInDays & 0xFF);
activationKey[9] = (byte)((expirationInDays >> 8) & 0xFF);
// 10: Flags
activationKey[10] = (byte)flags;
// 11: Reserved (0)
activationKey[11] = 0;
// 12: License count
activationKey[12] = (byte)sortedLicenses.Count();
// 13-21: License parameters (
licenseParams.CopyTo(activationKey, 13);
// 22: Padding
activationKey[22] = 15; // Ensure we always get 6x6 characters in base32
var key = TheActivationUtils.Base32Encode(activationKey);
//var testKey = TheActivationUtils.Base32Decode(key.Replace("-",""));
return(key);
}
public static string GetActivationRequestKey(Guid deviceId, uint SkuId)
{
if (deviceId == Guid.Empty)
{
//TheBaseAssets.MySYSLOG.WriteToLog(10000, TSM.L(eDEBUG_LEVELS.OFF) ? null : new TSM(eEngineName.ThingService, "Unable to generate activation key: device id not configured.", eMsgLevel.l2_Warning, ""));
return(null);
}
byte[] tGu = deviceId.ToByteArray();
uint tenMinuteIntervalsSinceUnixEpoch = (uint)((DateTime.UtcNow - new DateTime(1970, 1, 1)).TotalMinutes) / 10;
// Base 32 encoded, 22 Bytes:
// 0,2,4 - Creation Time (10 Minute intervals since Unix Epoch, little endian)
// 6,8 - SkuId (little endian)
// 1,3,5,7,9-20 - Device Id (16 byte GUID)
// 21 - Checksum
// 22 - Padding (to ensure 6x6 chars in base32)
byte[] activationRequestKey = new byte[3 + tGu.Length + 2 + 1 + 1];
int j = 0;
//activationRequestKey[0] = (byte) (DateTime.UtcNow.Ticks & 0xff);
//j++;
byte checksum = 0;// activationRequestKey[0];
for (int i = 0; i < tGu.Length; i++)
{
if (i < 3)
{
activationRequestKey[j] = (byte)((tenMinuteIntervalsSinceUnixEpoch & 0xff) ^ checksum);
tenMinuteIntervalsSinceUnixEpoch = tenMinuteIntervalsSinceUnixEpoch >>= 8;
checksum += activationRequestKey[j];
j++;
}
else if (i < 5)
{
activationRequestKey[j] = (byte)((SkuId & 0xff) ^ checksum);
SkuId = SkuId >>= 8;
checksum += activationRequestKey[j];
j++;
}
activationRequestKey[j] = (byte)(tGu[i] ^ checksum);
checksum += activationRequestKey[j];
j++;
}
activationRequestKey[j] = (byte)(checksum & 0xff);
j++;
//activationRequestKey[j + 1] = (byte) ((checksum >> 8) + activationRequestKey[0]);
//activationRequestKey[j + 2] = (byte) (((activationRequestKey[0]) | 0x02) & 0x03); // ensure positive big int and 36 chars in output
activationRequestKey[j] = 15; // padding
return(TheActivationUtils.Base32Encode(activationRequestKey));
}
public static string CreateActivationRequestKey(Guid deviceId, uint SkuId)
{
if (deviceId == Guid.Empty)
{
return(null);
}
byte[] tGu = deviceId.ToByteArray();
uint tenMinuteIntervalsSinceUnixEpoch = (uint)((DateTime.UtcNow - new DateTime(1970, 1, 1)).TotalMinutes) / 10;
// Base 32 encoded, 22 Bytes:
// 0,2,4 - Creation Time (10 Minute intervals since Unix Epoch, little endian)
// 6,8 - SkuId (little endian)
// 1,3,5,7,9-20 - Device Id (16 byte GUID)
// 21 - Checksum
// 22 - Padding (to ensure 6x6 chars in base32)
byte[] activationRequestKey = new byte[3 + tGu.Length + 2 + 1 + 1];
int j = 0;
//activationRequestKey[0] = (byte) (DateTime.UtcNow.Ticks & 0xff);
//j++;
byte checksum = 0;// activationRequestKey[0];
for (int i = 0; i < tGu.Length; i++)
{
if (i < 3)
{
activationRequestKey[j] = (byte)((tenMinuteIntervalsSinceUnixEpoch & 0xff) ^ checksum);
tenMinuteIntervalsSinceUnixEpoch = tenMinuteIntervalsSinceUnixEpoch >>= 8;
checksum += activationRequestKey[j];
j++;
}
else if (i < 5)
{
activationRequestKey[j] = (byte)((SkuId & 0xff) ^ checksum);
SkuId = SkuId >>= 8;
checksum += activationRequestKey[j];
j++;
}
activationRequestKey[j] = (byte)(tGu[i] ^ checksum);
checksum += activationRequestKey[j];
j++;
}
activationRequestKey[j] = (byte)(checksum & 0xff);
j++;
//activationRequestKey[j + 1] = (byte) ((checksum >> 8) + activationRequestKey[0]);
//activationRequestKey[j + 2] = (byte) (((activationRequestKey[0]) | 0x02) & 0x03); // ensure positive big int and 36 chars in output
activationRequestKey[j] = 15; // padding
return(TheActivationUtils.Base32Encode(activationRequestKey));
}
public static string[] ValidateActivationkey(ICDESecrets mySecrets, string activationKeyString, Guid deviceId, List <TheLicense> allLicenses, out List <TheLicenseActivationInformation> activatedLicenses, out DateTimeOffset expirationDate)
{
expirationDate = DateTimeOffset.MinValue;
activatedLicenses = null;
string signingKey = mySecrets.GetActivationKeySignatureKey();
var normalizedKey = activationKeyString.Trim().Replace("-", "").ToUpper().Replace('O', '0').Replace('U', 'V').Replace('I', 'J').Replace('L', 'J');
if (normalizedKey.Length != 36)
{
return(new string[] { "Invalid activation key: not the proper length", String.Format("{0}", activationKeyString) });
}
byte[] activationKey = TheActivationUtils.Base32Decode(normalizedKey);
if (activationKey == null || activationKey.Length != 23 || activationKey[22] != 15)
{
return(new string[] { "Invalid activation key: failed to decode.", String.Format("{0}", activationKeyString) });
}
string activationKeyHash = Convert.ToBase64String((SHA1.Create().ComputeHash(activationKey)));
byte[] signature = new byte[8];
activationKey.Take(8).ToArray().CopyTo(signature, 0);
int expirationInDays = (activationKey[8] + (activationKey[9] << 8));
if (expirationInDays < 0)
{
return(new string[] { "Invalid activation key: invalid expiration date.", String.Format("{0}. Expiration: {1}", activationKeyString, expirationInDays) });
}
expirationDate = new DateTime(2016, 1, 1, 0, 0, 0, DateTimeKind.Utc) + new TimeSpan(expirationInDays, 0, 0, 0);
if (expirationDate < DateTime.Now)
{
return(new string[] { "Invalid activation key: key expired.", String.Format("{0}. Expiration: {1}", activationKeyString, expirationDate.ToString()) });
}
ActivationFlags flags = (ActivationFlags)activationKey[10];
if ((flags & ActivationFlags.RequireOnline) != 0)
{
return(new string[] { "Invalid activation key: online activation required but not supported in this cdeEngine version.", String.Format("{0}", activationKeyString) });
}
byte licenseCount = activationKey[12];
if (licenseCount > MaxLicensesInActivationKey)
{
return(new string[] { "Invalid activation key: too many licenses specified.", String.Format("{0}. License Count: {1}", activationKeyString, licenseCount) });
}
if (licenseCount == 0)
{
return(new string[] { "Invalid activation key: no licenses specified.", String.Format("{0}. License Count: {1}", activationKeyString, 0) });
}
if (licenseCount > allLicenses.Count)
{
return(new string[] { "Unable to apply activation key: some licenses not available on the system.", String.Format("{0}. License Count in key: {1}. Total valid licenses on system: {2}", activationKeyString, licenseCount, allLicenses.Count) });
}
byte[] parameters = new byte[TheActivationUtils.MaxLicenseParameters];
int paramOffset = 13;
for (int j = 0; j < TheActivationUtils.MaxLicenseParameters; j++)
{
parameters[j] = activationKey[paramOffset];
paramOffset++;
}
int[] candidateIndices = new int[licenseCount];
TheLicense[] candidates = new TheLicense[licenseCount];
bool done = false;
do
{
bool validCombination = true;
for (int i = 0; i < licenseCount; i++)
{
candidates[i] = allLicenses[candidateIndices[i]];
if (i > 0 && String.CompareOrdinal(candidates[i].LicenseId.ToString(), candidates[i - 1].LicenseId.ToString()) <= 0)
{
validCombination = false;
break;
}
}
if (validCombination && TheActivationUtils.GenerateLicenseSignature(deviceId, signingKey, (uint)expirationInDays, candidates.ToArray(), parameters, flags, out byte[] candidateSignature))
/// <summary>
/// Retrieves information from a token generated using the GetActivationRequestKey method.
/// Typically used by a cdeEngine applicationId owner to generate activation keys.
/// </summary>
/// <param name="activationRequestKey">The token obtained from GetActivationRequestKey.</param>
/// <param name="creationTime">The time when the token was created (local machine time, truncated to 10 minute boundary)</param>
/// <param name="skuId">Application owner-defined SKU identifier, that is typically used to identify the set of licenses to included in the activation key.</param>
/// <param name="deviceId">NodeId of the node where the activationRequestKey was generated. The activation key is typically bound to this node id.</param>
/// <returns></returns>
public static bool ParseActivationRequestKey(string activationRequestKey, out DateTime creationTime, out uint skuId, out Guid deviceId)
{
creationTime = DateTime.MinValue;
skuId = 0;
deviceId = Guid.Empty;
var normalizedKey = activationRequestKey.Replace("-", "").ToUpper().Replace('O', '0').Replace('U', 'V').Replace('I', 'J').Replace('L', 'J');
if (normalizedKey.Length != 36)
{
return(false);
}
byte[] activationRequestKeyArray = TheActivationUtils.Base32Decode(normalizedKey);
if (activationRequestKeyArray.Length != 23)
{
return(false);
}
byte checksum = 0;
int j = 0;
byte[] tGu = new byte[16];
uint tenMinuteIntervalsSinceUnixEpoch = 0;
for (int i = 0; i < tGu.Length; i++)
{
if (i < 3)
{
tenMinuteIntervalsSinceUnixEpoch += (uint)(activationRequestKeyArray[j] ^ checksum) << (i * 8);
checksum += activationRequestKeyArray[j];
j++;
}
else if (i < 5)
{
skuId += (uint)(activationRequestKeyArray[j] ^ checksum) << ((i - 3) * 8);
checksum += activationRequestKeyArray[j];
j++;
}
tGu[i] = (byte)(activationRequestKeyArray[j] ^ checksum);
checksum += activationRequestKeyArray[j];
j++;
}
if (activationRequestKeyArray[j] != (checksum & 0xff) || activationRequestKeyArray[j + 1] != 15)
{
skuId = 0;
return(false);
}
//if (activationRequestKeyArray[j+1] != (byte) ((checksum >> 8) + activationRequestKeyArray[0]))
//{
// return Guid.Empty;
//}
//if (activationRequestKeyArray[j + 2] != (byte)(((activationRequestKeyArray[0]) | 0x02) & 0x03))
//{
// return Guid.Empty;
//}
creationTime = new DateTime(1970, 1, 1) + new TimeSpan(0, (int)(tenMinuteIntervalsSinceUnixEpoch * 10), 0);
deviceId = new Guid(tGu);
return(true);
}
