search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
*** empty log message ***
[heimdal.git] / lib / gssapi / wrap.c
bloba2d132568bdeeb9e45e0e9650bbc6a621c195a63
1 /*
2 * Copyright (c) 1997 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. All advertising materials mentioning features or use of this software
18 * must display the following acknowledgement:
19 * This product includes software developed by Kungliga Tekniska
20 * Högskolan and its contributors.
21 *
22 * 4. Neither the name of the Institute nor the names of its contributors
23 * may be used to endorse or promote products derived from this software
24 * without specific prior written permission.
25 *
26 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
27 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
28 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
29 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
30 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
31 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
32 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
33 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
34 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
35 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
36 * SUCH DAMAGE.
37 */
38
39 #include "gssapi_locl.h"
40
41 RCSID("$Id$");
42
43 OM_uint32 gss_wrap_size_limit (
44 OM_uint32 * minor_status,
45 const gss_ctx_id_t context_handle,
46 int conf_req_flag,
47 gss_qop_t qop_req,
48 OM_uint32 req_output_size,
49 OM_uint32 * max_input_size
50 )
51 {
52 size_t len, total_len, padlength;
53 padlength = 8 - (req_output_size % 8);
54 len = req_output_size + 8 + padlength + 22;
55 gssapi_krb5_encap_length(len, &len, &total_len);
56 *max_input_size = (OM_uint32)total_len;
57 return GSS_S_COMPLETE;
58 }
59
60 OM_uint32 gss_wrap
61 (OM_uint32 * minor_status,
62 const gss_ctx_id_t context_handle,
63 int conf_req_flag,
64 gss_qop_t qop_req,
65 const gss_buffer_t input_message_buffer,
66 int * conf_state,
67 gss_buffer_t output_message_buffer
68 )
69 {
70 u_char *p;
71 struct md5 md5;
72 u_char hash[16];
73 des_key_schedule schedule;
74 des_cblock key;
75 des_cblock zero;
76 int i;
77 int32_t seq_number;
78 size_t len, total_len, padlength;
79
80 padlength = 8 - (input_message_buffer->length % 8);
81 len = input_message_buffer->length + 8 + padlength + 22;
82 gssapi_krb5_encap_length (len, &len, &total_len);
83
84 output_message_buffer->length = total_len;
85 output_message_buffer->value = malloc (total_len);
86 if (output_message_buffer->value == NULL)
87 return GSS_S_FAILURE;
88
89 p = gssapi_krb5_make_header(output_message_buffer->value,
90 len,
91 "\x02\x01");
92
93
94 /* SGN_ALG */
95 memcpy (p, "\x00\x00", 2);
96 p += 2;
97 /* SEAL_ALG */
98 memcpy (p, "\x00\x00", 2);
99 p += 2;
100 /* Filler */
101 memcpy (p, "\xff\xff", 2);
102 p += 2;
103
104 /* fill in later */
105 memset (p, 0, 16);
106 p += 16;
107
108 /* confounder + data + pad */
109 des_new_random_key((des_cblock*)p);
110 memcpy (p + 8, input_message_buffer->value,
111 input_message_buffer->length);
112 memset (p + 8 + input_message_buffer->length, padlength, padlength);
113
114 /* checksum */
115 md5_init (&md5);
116 md5_update (&md5, p - 24, 8);
117 md5_update (&md5, p, input_message_buffer->length + padlength + 8);
118 md5_finito (&md5, hash);
119
120 memset (&zero, 0, sizeof(zero));
121 #if 0
122 memcpy (&key, context_handle->auth_context->key.keyvalue.data,
123 sizeof(key));
124 #endif
125 memcpy (&key, context_handle->auth_context->local_subkey->keyvalue.data,
126 sizeof(key));
127 des_set_key (&key, schedule);
128 des_cbc_cksum ((des_cblock *)hash,
129 (des_cblock *)hash, sizeof(hash), schedule, &zero);
130 memcpy (p - 8, hash, 8);
131
132 /* sequence number */
133 krb5_auth_getlocalseqnumber (gssapi_krb5_context,
134 context_handle->auth_context,
135 &seq_number);
136
137 p -= 16;
138 p[0] = (seq_number >> 0) & 0xFF;
139 p[1] = (seq_number >> 8) & 0xFF;
140 p[2] = (seq_number >> 16) & 0xFF;
141 p[3] = (seq_number >> 24) & 0xFF;
142 memset (p + 4,
143 (context_handle->more_flags & LOCAL) ? 0 : 0xFF,
144 4);
145
146 des_set_key (&key, schedule);
147 des_cbc_encrypt ((des_cblock *)p, (des_cblock *)p, 8,
148 schedule, (des_cblock *)(p + 8), DES_ENCRYPT);
149
150 krb5_auth_setlocalseqnumber (gssapi_krb5_context,
151 context_handle->auth_context,
152 ++seq_number);
153
154 /* encrypt the data */
155 p += 16;
156
157 memset (&zero, 0, sizeof(zero));
158 #if 0
159 memcpy (&key, context_handle->auth_context->key.keyvalue.data,
160 sizeof(key));
161 #endif
162 memcpy (&key, context_handle->auth_context->local_subkey->keyvalue.data,
163 sizeof(key));
164 for (i = 0; i < sizeof(key); ++i)
165 key[i] ^= 0xf0;
166 des_set_key (&key, schedule);
167 des_cbc_encrypt ((des_cblock *)p,
168 (des_cblock *)p,
169 8 + input_message_buffer->length + padlength,
170 schedule,
171 &zero,
172 DES_ENCRYPT);
173
174 memset (key, 0, sizeof(key));
175 memset (schedule, 0, sizeof(schedule));
176
177 return GSS_S_COMPLETE;
178 }
Heimdal