gss_krb5_seal.c 6.6 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229
  1. /*
  2. * linux/net/sunrpc/gss_krb5_seal.c
  3. *
  4. * Adapted from MIT Kerberos 5-1.2.1 lib/gssapi/krb5/k5seal.c
  5. *
  6. * Copyright (c) 2000-2008 The Regents of the University of Michigan.
  7. * All rights reserved.
  8. *
  9. * Andy Adamson <andros@umich.edu>
  10. * J. Bruce Fields <bfields@umich.edu>
  11. */
  12. /*
  13. * Copyright 1993 by OpenVision Technologies, Inc.
  14. *
  15. * Permission to use, copy, modify, distribute, and sell this software
  16. * and its documentation for any purpose is hereby granted without fee,
  17. * provided that the above copyright notice appears in all copies and
  18. * that both that copyright notice and this permission notice appear in
  19. * supporting documentation, and that the name of OpenVision not be used
  20. * in advertising or publicity pertaining to distribution of the software
  21. * without specific, written prior permission. OpenVision makes no
  22. * representations about the suitability of this software for any
  23. * purpose. It is provided "as is" without express or implied warranty.
  24. *
  25. * OPENVISION DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE,
  26. * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS, IN NO
  27. * EVENT SHALL OPENVISION BE LIABLE FOR ANY SPECIAL, INDIRECT OR
  28. * CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF
  29. * USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR
  30. * OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  31. * PERFORMANCE OF THIS SOFTWARE.
  32. */
  33. /*
  34. * Copyright (C) 1998 by the FundsXpress, INC.
  35. *
  36. * All rights reserved.
  37. *
  38. * Export of this software from the United States of America may require
  39. * a specific license from the United States Government. It is the
  40. * responsibility of any person or organization contemplating export to
  41. * obtain such a license before exporting.
  42. *
  43. * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
  44. * distribute this software and its documentation for any purpose and
  45. * without fee is hereby granted, provided that the above copyright
  46. * notice appear in all copies and that both that copyright notice and
  47. * this permission notice appear in supporting documentation, and that
  48. * the name of FundsXpress. not be used in advertising or publicity pertaining
  49. * to distribution of the software without specific, written prior
  50. * permission. FundsXpress makes no representations about the suitability of
  51. * this software for any purpose. It is provided "as is" without express
  52. * or implied warranty.
  53. *
  54. * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
  55. * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
  56. * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
  57. */
  58. #include <linux/types.h>
  59. #include <linux/jiffies.h>
  60. #include <linux/sunrpc/gss_krb5.h>
  61. #include <linux/random.h>
  62. #include <linux/crypto.h>
  63. #if IS_ENABLED(CONFIG_SUNRPC_DEBUG)
  64. # define RPCDBG_FACILITY RPCDBG_AUTH
  65. #endif
  66. DEFINE_SPINLOCK(krb5_seq_lock);
  67. static void *
  68. setup_token(struct krb5_ctx *ctx, struct xdr_netobj *token)
  69. {
  70. u16 *ptr;
  71. void *krb5_hdr;
  72. int body_size = GSS_KRB5_TOK_HDR_LEN + ctx->gk5e->cksumlength;
  73. token->len = g_token_size(&ctx->mech_used, body_size);
  74. ptr = (u16 *)token->data;
  75. g_make_token_header(&ctx->mech_used, body_size, (unsigned char **)&ptr);
  76. /* ptr now at start of header described in rfc 1964, section 1.2.1: */
  77. krb5_hdr = ptr;
  78. *ptr++ = KG_TOK_MIC_MSG;
  79. /*
  80. * signalg is stored as if it were converted from LE to host endian, even
  81. * though it's an opaque pair of bytes according to the RFC.
  82. */
  83. *ptr++ = (__force u16)cpu_to_le16(ctx->gk5e->signalg);
  84. *ptr++ = SEAL_ALG_NONE;
  85. *ptr = 0xffff;
  86. return krb5_hdr;
  87. }
  88. static void *
  89. setup_token_v2(struct krb5_ctx *ctx, struct xdr_netobj *token)
  90. {
  91. u16 *ptr;
  92. void *krb5_hdr;
  93. u8 *p, flags = 0x00;
  94. if ((ctx->flags & KRB5_CTX_FLAG_INITIATOR) == 0)
  95. flags |= 0x01;
  96. if (ctx->flags & KRB5_CTX_FLAG_ACCEPTOR_SUBKEY)
  97. flags |= 0x04;
  98. /* Per rfc 4121, sec 4.2.6.1, there is no header,
  99. * just start the token */
  100. krb5_hdr = ptr = (u16 *)token->data;
  101. *ptr++ = KG2_TOK_MIC;
  102. p = (u8 *)ptr;
  103. *p++ = flags;
  104. *p++ = 0xff;
  105. ptr = (u16 *)p;
  106. *ptr++ = 0xffff;
  107. *ptr = 0xffff;
  108. token->len = GSS_KRB5_TOK_HDR_LEN + ctx->gk5e->cksumlength;
  109. return krb5_hdr;
  110. }
  111. static u32
  112. gss_get_mic_v1(struct krb5_ctx *ctx, struct xdr_buf *text,
  113. struct xdr_netobj *token)
  114. {
  115. char cksumdata[GSS_KRB5_MAX_CKSUM_LEN];
  116. struct xdr_netobj md5cksum = {.len = sizeof(cksumdata),
  117. .data = cksumdata};
  118. void *ptr;
  119. s32 now;
  120. u32 seq_send;
  121. u8 *cksumkey;
  122. dprintk("RPC: %s\n", __func__);
  123. BUG_ON(ctx == NULL);
  124. now = get_seconds();
  125. ptr = setup_token(ctx, token);
  126. if (ctx->gk5e->keyed_cksum)
  127. cksumkey = ctx->cksum;
  128. else
  129. cksumkey = NULL;
  130. if (make_checksum(ctx, ptr, 8, text, 0, cksumkey,
  131. KG_USAGE_SIGN, &md5cksum))
  132. return GSS_S_FAILURE;
  133. memcpy(ptr + GSS_KRB5_TOK_HDR_LEN, md5cksum.data, md5cksum.len);
  134. spin_lock(&krb5_seq_lock);
  135. seq_send = ctx->seq_send++;
  136. spin_unlock(&krb5_seq_lock);
  137. if (krb5_make_seq_num(ctx, ctx->seq, ctx->initiate ? 0 : 0xff,
  138. seq_send, ptr + GSS_KRB5_TOK_HDR_LEN, ptr + 8))
  139. return GSS_S_FAILURE;
  140. return (ctx->endtime < now) ? GSS_S_CONTEXT_EXPIRED : GSS_S_COMPLETE;
  141. }
  142. static u32
  143. gss_get_mic_v2(struct krb5_ctx *ctx, struct xdr_buf *text,
  144. struct xdr_netobj *token)
  145. {
  146. char cksumdata[GSS_KRB5_MAX_CKSUM_LEN];
  147. struct xdr_netobj cksumobj = { .len = sizeof(cksumdata),
  148. .data = cksumdata};
  149. void *krb5_hdr;
  150. s32 now;
  151. u64 seq_send;
  152. u8 *cksumkey;
  153. unsigned int cksum_usage;
  154. dprintk("RPC: %s\n", __func__);
  155. krb5_hdr = setup_token_v2(ctx, token);
  156. /* Set up the sequence number. Now 64-bits in clear
  157. * text and w/o direction indicator */
  158. spin_lock(&krb5_seq_lock);
  159. seq_send = ctx->seq_send64++;
  160. spin_unlock(&krb5_seq_lock);
  161. *((__be64 *)(krb5_hdr + 8)) = cpu_to_be64(seq_send);
  162. if (ctx->initiate) {
  163. cksumkey = ctx->initiator_sign;
  164. cksum_usage = KG_USAGE_INITIATOR_SIGN;
  165. } else {
  166. cksumkey = ctx->acceptor_sign;
  167. cksum_usage = KG_USAGE_ACCEPTOR_SIGN;
  168. }
  169. if (make_checksum_v2(ctx, krb5_hdr, GSS_KRB5_TOK_HDR_LEN,
  170. text, 0, cksumkey, cksum_usage, &cksumobj))
  171. return GSS_S_FAILURE;
  172. memcpy(krb5_hdr + GSS_KRB5_TOK_HDR_LEN, cksumobj.data, cksumobj.len);
  173. now = get_seconds();
  174. return (ctx->endtime < now) ? GSS_S_CONTEXT_EXPIRED : GSS_S_COMPLETE;
  175. }
  176. u32
  177. gss_get_mic_kerberos(struct gss_ctx *gss_ctx, struct xdr_buf *text,
  178. struct xdr_netobj *token)
  179. {
  180. struct krb5_ctx *ctx = gss_ctx->internal_ctx_id;
  181. switch (ctx->enctype) {
  182. default:
  183. BUG();
  184. case ENCTYPE_DES_CBC_RAW:
  185. case ENCTYPE_DES3_CBC_RAW:
  186. case ENCTYPE_ARCFOUR_HMAC:
  187. return gss_get_mic_v1(ctx, text, token);
  188. case ENCTYPE_AES128_CTS_HMAC_SHA1_96:
  189. case ENCTYPE_AES256_CTS_HMAC_SHA1_96:
  190. return gss_get_mic_v2(ctx, text, token);
  191. }
  192. }