/* * Copyright 1993 OpenVision Technologies, Inc., All Rights Reserved. * * $Header$ * * $Log$ * Revision 1.15 1996/08/14 00:01:37 tlyu * * getrpcent.c: Add PROTOTYPE and conditionalize function * prototypes. * * * xdr.h: Add PROTOTYPE and conditionalize function prototypes. * * * svc_auth_gssapi.c: Remove ANSI string concatenation, de-ANSI-fy * function definitions. * * * auth_gssapi_misc.c (auth_gssapi_display_status_1): Remove ANSI * string concatenation, de-ANSI-fy function definitions. * * * auth_gssapi.h: Add PROTOTYPE and conditionalize function * prototypes. * * * auth_gssapi.c (auth_gssapi_create): remove ANSI-ish string * concatenation, de-ANSI-fy function definitions. * * Revision 1.14 1996/07/22 20:39:44 marc * this commit includes all the changes on the OV_9510_INTEGRATION and * OV_MERGE branches. This includes, but is not limited to, the new openvision * admin system, and major changes to gssapi to add functionality, and bring * the implementation in line with rfc1964. before committing, the * code was built and tested for netbsd and solaris. * * Revision 1.13.4.1 1996/07/18 04:18:32 marc * merged in changes from OV_9510_BP to OV_9510_FINAL1 * * Revision 1.13.2.1 1996/06/20 23:35:49 marc * File added to the repository on a branch * * Revision 1.13 1996/05/12 06:11:38 marc * renamed lots of types: u_foo to unsigned foo, and foo32 to rpc_foo32. This is to make autoconfiscation less painful. * * Revision 1.12 1996/02/25 15:53:57 grier * [secure/3570] * OSF1 long changes * * Revision 1.11 1995/12/13 14:03:30 grier * Longs to ints for Alpha * * Revision 1.10 1994/10/27 12:39:23 jik * [secure-rpc/2808: add credential versioning] * * Sandbox: * * [secure-rpc/2808] back out the backwards compat hack (I only put it * there in case we ever decide we want it, which we won't) and just * handle the version field as if it were always there * * [secure-rpc/2808] add a backwards-compatible version field encoder * * change to use GSS_ERROR &c macros; I don't think this is correct * ============================================================================= * * Revision 1.12 1994/10/26 19:48:45 bjaspan * [secure-rpc/2808] back out the backwards compat hack (I only put it * there in case we ever decide we want it, which we won't) and just * handle the version field as if it were always there * * Revision 1.11 1994/10/26 19:47:42 bjaspan * [secure-rpc/2808] add a backwards-compatible version field encoder * * Revision 1.10 1993/12/19 22:19:40 bjaspan * [secure-rpc/1077] use free instead of xdr_free(xdr_bytes,...) because * xdr_bytes takes non-standard arguments * * Revision 1.9 1993/12/08 21:43:37 bjaspan * use AUTH_GSSAPI_DISPLAY_STATUS macro, reindent * * Revision 1.8 1993/12/06 21:21:21 bjaspan * debugging levels * * Revision 1.7 1993/11/03 23:46:34 bjaspan * add debugging printfs showing amount of data wrapped/unwrapped * * Revision 1.6 1993/11/03 21:21:53 bjaspan * unstatic misc_debug_gssapi * * Revision 1.5 1993/11/01 19:55:54 bjaspan * improve display_status messages, and include gss_{major,minor} * * Revision 1.4 1993/10/28 22:08:21 bjaspan * wrap/unwrap_data include sequence number in arg/result block * * Revision 1.3 1993/10/27 18:26:16 bjaspan * use xdr_free instead of free(in_buf.value); doesn't actually make a * difference, though * * Revision 1.2 1993/10/26 21:12:38 bjaspan * cleaning * * Revision 1.1 1993/10/19 03:12:28 bjaspan * Initial revision * */ #if !defined(lint) && !defined(__CODECENTER__) static char *rcsid = "$Header$"; #endif #include #include #include #include #ifdef __CODECENTER__ #define DEBUG_GSSAPI 1 #endif #ifdef DEBUG_GSSAPI int misc_debug_gssapi = DEBUG_GSSAPI; #define L_PRINTF(l,args) if (misc_debug_gssapi >= l) printf args #define PRINTF(args) L_PRINTF(99, args) #define AUTH_GSSAPI_DISPLAY_STATUS(args) \ if (misc_debug_gssapi) auth_gssapi_display_status args #else #define PRINTF(args) #define L_PRINTF(l, args) #define AUTH_GSSAPI_DISPLAY_STATUS(args) #endif static void auth_gssapi_display_status_1 PROTOTYPE((char *, OM_uint32, int, int)); bool_t xdr_gss_buf(xdrs, buf) XDR *xdrs; gss_buffer_t buf; { /* * On decode, xdr_bytes will only allocate buf->value if the * length read in is < maxsize (last arg). This is dumb, because * the whole point of allocating memory is so that I don't *have* * to know the maximum length. -1 effectively disables this * braindamage. */ return xdr_bytes(xdrs, (char **) &buf->value, (unsigned int *) &buf->length, (xdrs->x_op == XDR_DECODE && buf->value == NULL) ? (unsigned int) -1 : (unsigned int) buf->length); } bool_t xdr_authgssapi_creds(xdrs, creds) XDR *xdrs; auth_gssapi_creds *creds; { if (! xdr_u_int32(xdrs, &creds->version) || ! xdr_bool(xdrs, &creds->auth_msg) || ! xdr_gss_buf(xdrs, &creds->client_handle)) return FALSE; return TRUE; } bool_t xdr_authgssapi_init_arg(xdrs, init_arg) XDR *xdrs; auth_gssapi_init_arg *init_arg; { if (! xdr_u_int32(xdrs, &init_arg->version) || ! xdr_gss_buf(xdrs, &init_arg->token)) return FALSE; return TRUE; } bool_t xdr_authgssapi_init_res(xdrs, init_res) XDR *xdrs; auth_gssapi_init_res *init_res; { if (! xdr_u_int32(xdrs, &init_res->version) || ! xdr_gss_buf(xdrs, &init_res->client_handle) || ! xdr_u_int32(xdrs, &init_res->gss_major) || ! xdr_u_int32(xdrs, &init_res->gss_minor) || ! xdr_gss_buf(xdrs, &init_res->token) || ! xdr_gss_buf(xdrs, &init_res->signed_isn)) return FALSE; return TRUE; } bool_t auth_gssapi_seal_seq(context, seq_num, out_buf) gss_ctx_id_t context; rpc_u_int32 seq_num; gss_buffer_t out_buf; { gss_buffer_desc in_buf; OM_uint32 gssstat, minor_stat; rpc_u_int32 nl_seq_num; nl_seq_num = htonl(seq_num); in_buf.length = sizeof(rpc_u_int32); in_buf.value = (char *) &nl_seq_num; gssstat = gss_seal(&minor_stat, context, 0, GSS_C_QOP_DEFAULT, &in_buf, NULL, out_buf); if (gssstat != GSS_S_COMPLETE) { PRINTF(("gssapi_seal_seq: failed\n")); AUTH_GSSAPI_DISPLAY_STATUS(("sealing sequence number", gssstat, minor_stat)); return FALSE; } return TRUE; } bool_t auth_gssapi_unseal_seq(context, in_buf, seq_num) gss_ctx_id_t context; gss_buffer_t in_buf; rpc_u_int32 *seq_num; { gss_buffer_desc out_buf; OM_uint32 gssstat, minor_stat; rpc_u_int32 nl_seq_num; gssstat = gss_unseal(&minor_stat, context, in_buf, &out_buf, NULL, NULL); if (gssstat != GSS_S_COMPLETE) { PRINTF(("gssapi_unseal_seq: failed\n")); AUTH_GSSAPI_DISPLAY_STATUS(("unsealing sequence number", gssstat, minor_stat)); return FALSE; } else if (out_buf.length != sizeof(rpc_u_int32)) { PRINTF(("gssapi_unseal_seq: unseal gave %d bytes\n", out_buf.length)); gss_release_buffer(&minor_stat, &out_buf); return FALSE; } nl_seq_num = *((rpc_u_int32 *) out_buf.value); *seq_num = (rpc_u_int32) ntohl(nl_seq_num); gss_release_buffer(&minor_stat, &out_buf); return TRUE; } void auth_gssapi_display_status(msg, major, minor) char *msg; OM_uint32 major; OM_uint32 minor; { auth_gssapi_display_status_1(msg, major, GSS_C_GSS_CODE, 0); auth_gssapi_display_status_1(msg, minor, GSS_C_MECH_CODE, 0); } static void auth_gssapi_display_status_1(m, code, type, rec) char *m; OM_uint32 code; int type; int rec; { OM_uint32 gssstat, minor_stat; gss_buffer_desc msg; int msg_ctx; msg_ctx = 0; while (1) { gssstat = gss_display_status(&minor_stat, code, type, GSS_C_NULL_OID, &msg_ctx, &msg); if (gssstat != GSS_S_COMPLETE) { if (!rec) { auth_gssapi_display_status_1(m,gssstat,GSS_C_GSS_CODE,1); auth_gssapi_display_status_1(m, minor_stat, GSS_C_MECH_CODE, 1); } else fprintf(stderr, "GSS-API authentication error %s: recursive failure!\n", msg); return; } fprintf(stderr, "GSS-API authentication error %s: %s\n", m, (char *)msg.value); (void) gss_release_buffer(&minor_stat, &msg); if (!msg_ctx) break; } } bool_t auth_gssapi_wrap_data(major, minor, context, seq_num, out_xdrs, xdr_func, xdr_ptr) OM_uint32 *major, *minor; gss_ctx_id_t context; rpc_u_int32 seq_num; XDR *out_xdrs; bool_t (*xdr_func)(); caddr_t xdr_ptr; { gss_buffer_desc in_buf, out_buf; XDR temp_xdrs; int conf_state; PRINTF(("gssapi_wrap_data: starting\n")); *major = GSS_S_COMPLETE; *minor = 0; /* assumption */ xdralloc_create(&temp_xdrs, XDR_ENCODE); /* serialize the sequence number into local memory */ PRINTF(("gssapi_wrap_data: encoding seq_num %d\n", seq_num)); if (! xdr_u_int32(&temp_xdrs, &seq_num)) { PRINTF(("gssapi_wrap_data: serializing seq_num failed\n")); XDR_DESTROY(&temp_xdrs); return FALSE; } /* serialize the arguments into local memory */ if (!(*xdr_func)(&temp_xdrs, xdr_ptr)) { PRINTF(("gssapi_wrap_data: serializing arguments failed\n")); XDR_DESTROY(&temp_xdrs); return FALSE; } in_buf.length = xdr_getpos(&temp_xdrs); in_buf.value = xdralloc_getdata(&temp_xdrs); *major = gss_seal(minor, context, 1, GSS_C_QOP_DEFAULT, &in_buf, &conf_state, &out_buf); if (*major != GSS_S_COMPLETE) { XDR_DESTROY(&temp_xdrs); return FALSE; } PRINTF(("gssapi_wrap_data: %d bytes data, %d bytes sealed\n", in_buf.length, out_buf.length)); /* write the token */ if (! xdr_bytes(out_xdrs, (char **) &out_buf.value, (unsigned int *) &out_buf.length, out_buf.length)) { PRINTF(("gssapi_wrap_data: serializing encrypted data failed\n")); XDR_DESTROY(&temp_xdrs); return FALSE; } *major = gss_release_buffer(minor, &out_buf); PRINTF(("gssapi_wrap_data: succeeding\n\n")); XDR_DESTROY(&temp_xdrs); return TRUE; } bool_t auth_gssapi_unwrap_data(major, minor, context, seq_num, in_xdrs, xdr_func, xdr_ptr) OM_uint32 *major, *minor; gss_ctx_id_t context; rpc_u_int32 seq_num; XDR *in_xdrs; bool_t (*xdr_func)(); caddr_t xdr_ptr; { gss_buffer_desc in_buf, out_buf; XDR temp_xdrs; rpc_u_int32 verf_seq_num; int conf, qop; PRINTF(("gssapi_unwrap_data: starting\n")); *major = GSS_S_COMPLETE; *minor = 0; /* assumption */ in_buf.value = NULL; out_buf.value = NULL; if (! xdr_bytes(in_xdrs, (char **) &in_buf.value, (unsigned int *) &in_buf.length, (unsigned int) -1)) { PRINTF(("gssapi_unwrap_data: deserializing encrypted data failed\n")); return FALSE; } *major = gss_unseal(minor, context, &in_buf, &out_buf, &conf, &qop); free(in_buf.value); if (*major != GSS_S_COMPLETE) return FALSE; PRINTF(("gssapi_unwrap_data: %d bytes data, %d bytes sealed\n", out_buf.length, in_buf.length)); xdrmem_create(&temp_xdrs, out_buf.value, out_buf.length, XDR_DECODE); /* deserialize the sequence number */ if (! xdr_u_int32(&temp_xdrs, &verf_seq_num)) { PRINTF(("gssapi_unwrap_data: deserializing verf_seq_num failed\n")); gss_release_buffer(minor, &out_buf); XDR_DESTROY(&temp_xdrs); return FALSE; } if (verf_seq_num != seq_num) { PRINTF(("gssapi_unwrap_data: seq %d specified, read %d\n", seq_num, verf_seq_num)); gss_release_buffer(minor, &out_buf); XDR_DESTROY(&temp_xdrs); return FALSE; } PRINTF(("gssapi_unwrap_data: unwrap seq_num %d okay\n", verf_seq_num)); /* deserialize the arguments into xdr_ptr */ if (! (*xdr_func)(&temp_xdrs, xdr_ptr)) { PRINTF(("gssapi_unwrap_data: deserializing arguments failed\n")); gss_release_buffer(minor, &out_buf); XDR_DESTROY(&temp_xdrs); return FALSE; } PRINTF(("gssapi_unwrap_data: succeeding\n\n")); gss_release_buffer(minor, &out_buf); XDR_DESTROY(&temp_xdrs); return TRUE; }