2 * Copyright (c) 1997 - 2003 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "gsskrb5_locl.h"
38 (OM_uint32
* minor_status
,
39 const gsskrb5_ctx ctx
,
42 const gss_buffer_t message_buffer
,
43 gss_buffer_t message_token
,
50 DES_key_schedule schedule
;
54 size_t len
, total_len
;
56 _gsskrb5_encap_length (22, &len
, &total_len
, GSS_KRB5_MECHANISM
);
58 message_token
->length
= total_len
;
59 message_token
->value
= malloc (total_len
);
60 if (message_token
->value
== NULL
) {
61 message_token
->length
= 0;
62 *minor_status
= ENOMEM
;
66 p
= _gsskrb5_make_header(message_token
->value
,
68 "\x01\x01", /* TOK_ID */
71 memcpy (p
, "\x00\x00", 2); /* SGN_ALG = DES MAC MD5 */
74 memcpy (p
, "\xff\xff\xff\xff", 4); /* Filler */
77 /* Fill in later (SND-SEQ) */
83 MD5_Update (&md5
, p
- 24, 8);
84 MD5_Update (&md5
, message_buffer
->value
, message_buffer
->length
);
85 MD5_Final (hash
, &md5
);
87 memset (&zero
, 0, sizeof(zero
));
88 memcpy (&deskey
, key
->keyvalue
.data
, sizeof(deskey
));
89 DES_set_key_unchecked (&deskey
, &schedule
);
90 DES_cbc_cksum ((void *)hash
, (void *)hash
, sizeof(hash
),
92 memcpy (p
- 8, hash
, 8); /* SGN_CKSUM */
94 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
96 krb5_auth_con_getlocalseqnumber (context
,
100 p
-= 16; /* SND_SEQ */
101 p
[0] = (seq_number
>> 0) & 0xFF;
102 p
[1] = (seq_number
>> 8) & 0xFF;
103 p
[2] = (seq_number
>> 16) & 0xFF;
104 p
[3] = (seq_number
>> 24) & 0xFF;
106 (ctx
->more_flags
& LOCAL
) ? 0 : 0xFF,
109 DES_set_key_unchecked (&deskey
, &schedule
);
110 DES_cbc_encrypt ((void *)p
, (void *)p
, 8,
111 &schedule
, (DES_cblock
*)(p
+ 8), DES_ENCRYPT
);
113 krb5_auth_con_setlocalseqnumber (context
,
116 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
118 memset (deskey
, 0, sizeof(deskey
));
119 memset (&schedule
, 0, sizeof(schedule
));
122 return GSS_S_COMPLETE
;
127 (OM_uint32
* minor_status
,
128 const gsskrb5_ctx ctx
,
129 krb5_context context
,
131 const gss_buffer_t message_buffer
,
132 gss_buffer_t message_token
,
141 size_t len
, total_len
;
144 krb5_error_code kret
;
149 _gsskrb5_encap_length (36, &len
, &total_len
, GSS_KRB5_MECHANISM
);
151 message_token
->length
= total_len
;
152 message_token
->value
= malloc (total_len
);
153 if (message_token
->value
== NULL
) {
154 message_token
->length
= 0;
155 *minor_status
= ENOMEM
;
156 return GSS_S_FAILURE
;
159 p
= _gsskrb5_make_header(message_token
->value
,
161 "\x01\x01", /* TOK-ID */
164 memcpy (p
, "\x04\x00", 2); /* SGN_ALG = HMAC SHA1 DES3-KD */
167 memcpy (p
, "\xff\xff\xff\xff", 4); /* filler */
170 /* this should be done in parts */
172 tmp
= malloc (message_buffer
->length
+ 8);
174 free (message_token
->value
);
175 message_token
->value
= NULL
;
176 message_token
->length
= 0;
177 *minor_status
= ENOMEM
;
178 return GSS_S_FAILURE
;
180 memcpy (tmp
, p
- 8, 8);
181 memcpy (tmp
+ 8, message_buffer
->value
, message_buffer
->length
);
183 kret
= krb5_crypto_init(context
, key
, 0, &crypto
);
185 free (message_token
->value
);
186 message_token
->value
= NULL
;
187 message_token
->length
= 0;
189 *minor_status
= kret
;
190 return GSS_S_FAILURE
;
193 kret
= krb5_create_checksum (context
,
198 message_buffer
->length
+ 8,
201 krb5_crypto_destroy (context
, crypto
);
203 free (message_token
->value
);
204 message_token
->value
= NULL
;
205 message_token
->length
= 0;
206 *minor_status
= kret
;
207 return GSS_S_FAILURE
;
210 memcpy (p
+ 8, cksum
.checksum
.data
, cksum
.checksum
.length
);
212 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
213 /* sequence number */
214 krb5_auth_con_getlocalseqnumber (context
,
218 seq
[0] = (seq_number
>> 0) & 0xFF;
219 seq
[1] = (seq_number
>> 8) & 0xFF;
220 seq
[2] = (seq_number
>> 16) & 0xFF;
221 seq
[3] = (seq_number
>> 24) & 0xFF;
223 (ctx
->more_flags
& LOCAL
) ? 0 : 0xFF,
226 kret
= krb5_crypto_init(context
, key
,
227 ETYPE_DES3_CBC_NONE
, &crypto
);
229 free (message_token
->value
);
230 message_token
->value
= NULL
;
231 message_token
->length
= 0;
232 *minor_status
= kret
;
233 return GSS_S_FAILURE
;
236 if (ctx
->more_flags
& COMPAT_OLD_DES3
)
239 memcpy(ivec
, p
+ 8, 8);
241 kret
= krb5_encrypt_ivec (context
,
244 seq
, 8, &encdata
, ivec
);
245 krb5_crypto_destroy (context
, crypto
);
247 free (message_token
->value
);
248 message_token
->value
= NULL
;
249 message_token
->length
= 0;
250 *minor_status
= kret
;
251 return GSS_S_FAILURE
;
254 assert (encdata
.length
== 8);
256 memcpy (p
, encdata
.data
, encdata
.length
);
257 krb5_data_free (&encdata
);
259 krb5_auth_con_setlocalseqnumber (context
,
262 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
264 free_Checksum (&cksum
);
266 return GSS_S_COMPLETE
;
269 OM_uint32 _gsskrb5_get_mic
270 (OM_uint32
* minor_status
,
271 const gss_ctx_id_t context_handle
,
273 const gss_buffer_t message_buffer
,
274 gss_buffer_t message_token
277 krb5_context context
;
278 const gsskrb5_ctx ctx
= (const gsskrb5_ctx
) context_handle
;
281 krb5_keytype keytype
;
283 GSSAPI_KRB5_INIT (&context
);
285 if (ctx
->more_flags
& IS_CFX
)
286 return _gssapi_mic_cfx (minor_status
, ctx
, context
, qop_req
,
287 message_buffer
, message_token
);
289 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
290 ret
= _gsskrb5i_get_token_key(ctx
, context
, &key
);
291 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
294 return GSS_S_FAILURE
;
296 krb5_enctype_to_keytype (context
, key
->keytype
, &keytype
);
300 ret
= mic_des (minor_status
, ctx
, context
, qop_req
,
301 message_buffer
, message_token
, key
);
304 ret
= mic_des3 (minor_status
, ctx
, context
, qop_req
,
305 message_buffer
, message_token
, key
);
307 case KEYTYPE_ARCFOUR
:
308 case KEYTYPE_ARCFOUR_56
:
309 ret
= _gssapi_get_mic_arcfour (minor_status
, ctx
, context
, qop_req
,
310 message_buffer
, message_token
, key
);
316 krb5_free_keyblock (context
, key
);