2 * Copyright (c) 1997 - 2003 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "gssapi_locl.h"
40 (OM_uint32
* minor_status
,
41 const gss_ctx_id_t context_handle
,
43 const gss_buffer_t message_buffer
,
44 gss_buffer_t message_token
,
51 DES_key_schedule schedule
;
55 size_t len
, total_len
;
57 gssapi_krb5_encap_length (22, &len
, &total_len
, GSS_KRB5_MECHANISM
);
59 message_token
->length
= total_len
;
60 message_token
->value
= malloc (total_len
);
61 if (message_token
->value
== NULL
) {
62 *minor_status
= ENOMEM
;
66 p
= gssapi_krb5_make_header(message_token
->value
,
68 "\x01\x01", /* TOK_ID */
71 memcpy (p
, "\x00\x00", 2); /* SGN_ALG = DES MAC MD5 */
74 memcpy (p
, "\xff\xff\xff\xff", 4); /* Filler */
77 /* Fill in later (SND-SEQ) */
83 MD5_Update (&md5
, p
- 24, 8);
84 MD5_Update (&md5
, message_buffer
->value
, message_buffer
->length
);
85 MD5_Final (hash
, &md5
);
87 memset (&zero
, 0, sizeof(zero
));
88 memcpy (&deskey
, key
->keyvalue
.data
, sizeof(deskey
));
89 DES_set_key (&deskey
, &schedule
);
90 DES_cbc_cksum ((void *)hash
, (void *)hash
, sizeof(hash
),
92 memcpy (p
- 8, hash
, 8); /* SGN_CKSUM */
94 HEIMDAL_MUTEX_lock(&context_handle
->ctx_id_mutex
);
96 krb5_auth_con_getlocalseqnumber (gssapi_krb5_context
,
97 context_handle
->auth_context
,
100 p
-= 16; /* SND_SEQ */
101 p
[0] = (seq_number
>> 0) & 0xFF;
102 p
[1] = (seq_number
>> 8) & 0xFF;
103 p
[2] = (seq_number
>> 16) & 0xFF;
104 p
[3] = (seq_number
>> 24) & 0xFF;
106 (context_handle
->more_flags
& LOCAL
) ? 0 : 0xFF,
109 DES_set_key (&deskey
, &schedule
);
110 DES_cbc_encrypt ((void *)p
, (void *)p
, 8,
111 &schedule
, (DES_cblock
*)(p
+ 8), DES_ENCRYPT
);
113 krb5_auth_con_setlocalseqnumber (gssapi_krb5_context
,
114 context_handle
->auth_context
,
116 HEIMDAL_MUTEX_unlock(&context_handle
->ctx_id_mutex
);
118 memset (deskey
, 0, sizeof(deskey
));
119 memset (&schedule
, 0, sizeof(schedule
));
122 return GSS_S_COMPLETE
;
127 (OM_uint32
* minor_status
,
128 const gss_ctx_id_t context_handle
,
130 const gss_buffer_t message_buffer
,
131 gss_buffer_t message_token
,
140 size_t len
, total_len
;
143 krb5_error_code kret
;
148 gssapi_krb5_encap_length (36, &len
, &total_len
, GSS_KRB5_MECHANISM
);
150 message_token
->length
= total_len
;
151 message_token
->value
= malloc (total_len
);
152 if (message_token
->value
== NULL
) {
153 *minor_status
= ENOMEM
;
154 return GSS_S_FAILURE
;
157 p
= gssapi_krb5_make_header(message_token
->value
,
159 "\x01\x01", /* TOK-ID */
162 memcpy (p
, "\x04\x00", 2); /* SGN_ALG = HMAC SHA1 DES3-KD */
165 memcpy (p
, "\xff\xff\xff\xff", 4); /* filler */
168 /* this should be done in parts */
170 tmp
= malloc (message_buffer
->length
+ 8);
172 free (message_token
->value
);
173 *minor_status
= ENOMEM
;
174 return GSS_S_FAILURE
;
176 memcpy (tmp
, p
- 8, 8);
177 memcpy (tmp
+ 8, message_buffer
->value
, message_buffer
->length
);
179 kret
= krb5_crypto_init(gssapi_krb5_context
, key
, 0, &crypto
);
181 free (message_token
->value
);
183 gssapi_krb5_set_error_string ();
184 *minor_status
= kret
;
185 return GSS_S_FAILURE
;
188 kret
= krb5_create_checksum (gssapi_krb5_context
,
193 message_buffer
->length
+ 8,
196 krb5_crypto_destroy (gssapi_krb5_context
, crypto
);
198 free (message_token
->value
);
199 gssapi_krb5_set_error_string ();
200 *minor_status
= kret
;
201 return GSS_S_FAILURE
;
204 memcpy (p
+ 8, cksum
.checksum
.data
, cksum
.checksum
.length
);
206 HEIMDAL_MUTEX_lock(&context_handle
->ctx_id_mutex
);
207 /* sequence number */
208 krb5_auth_con_getlocalseqnumber (gssapi_krb5_context
,
209 context_handle
->auth_context
,
212 seq
[0] = (seq_number
>> 0) & 0xFF;
213 seq
[1] = (seq_number
>> 8) & 0xFF;
214 seq
[2] = (seq_number
>> 16) & 0xFF;
215 seq
[3] = (seq_number
>> 24) & 0xFF;
217 (context_handle
->more_flags
& LOCAL
) ? 0 : 0xFF,
220 kret
= krb5_crypto_init(gssapi_krb5_context
, key
,
221 ETYPE_DES3_CBC_NONE
, &crypto
);
223 free (message_token
->value
);
224 gssapi_krb5_set_error_string ();
225 *minor_status
= kret
;
226 return GSS_S_FAILURE
;
229 if (context_handle
->more_flags
& COMPAT_OLD_DES3
)
232 memcpy(ivec
, p
+ 8, 8);
234 kret
= krb5_encrypt_ivec (gssapi_krb5_context
,
237 seq
, 8, &encdata
, ivec
);
238 krb5_crypto_destroy (gssapi_krb5_context
, crypto
);
240 free (message_token
->value
);
241 gssapi_krb5_set_error_string ();
242 *minor_status
= kret
;
243 return GSS_S_FAILURE
;
246 assert (encdata
.length
== 8);
248 memcpy (p
, encdata
.data
, encdata
.length
);
249 krb5_data_free (&encdata
);
251 krb5_auth_con_setlocalseqnumber (gssapi_krb5_context
,
252 context_handle
->auth_context
,
254 HEIMDAL_MUTEX_unlock(&context_handle
->ctx_id_mutex
);
256 free_Checksum (&cksum
);
258 return GSS_S_COMPLETE
;
261 OM_uint32 gss_get_mic
262 (OM_uint32
* minor_status
,
263 const gss_ctx_id_t context_handle
,
265 const gss_buffer_t message_buffer
,
266 gss_buffer_t message_token
271 krb5_keytype keytype
;
273 ret
= gss_krb5_get_subkey(context_handle
, &key
);
275 gssapi_krb5_set_error_string ();
277 return GSS_S_FAILURE
;
279 krb5_enctype_to_keytype (gssapi_krb5_context
, key
->keytype
, &keytype
);
283 ret
= mic_des (minor_status
, context_handle
, qop_req
,
284 message_buffer
, message_token
, key
);
287 ret
= mic_des3 (minor_status
, context_handle
, qop_req
,
288 message_buffer
, message_token
, key
);
290 case KEYTYPE_ARCFOUR
:
291 ret
= _gssapi_get_mic_arcfour (minor_status
, context_handle
, qop_req
,
292 message_buffer
, message_token
, key
);
295 ret
= _gssapi_mic_cfx (minor_status
, context_handle
, qop_req
,
296 message_buffer
, message_token
, key
);
299 krb5_free_keyblock (gssapi_krb5_context
, key
);