rpc: spkm3 update

This updates the spkm3 code to bring it up to date with our current understanding of the spkm3 spec. In doing so, we're changing the downcall format used by gssd in the spkm3 case, which will cause an incompatilibity with old userland spkm3 support. Since the old code a) didn't implement the protocol correctly, and b) was never distributed except in the form of some experimental patches from the citi web site, we're assuming this is OK. We do detect the old downcall format and print warning (and fail). We also include a version number in the new downcall format, to be used in the future in case any further change is required. In some more detail: - fix integrity support - removed dependency on NIDs. instead OIDs are used - known OID values for algorithms added. - fixed some context fields and types Signed-off-by: J. Bruce Fields <bfields@citi.umich.edu> Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
author: Olga Kornievskaia <aglo@citi.umich.edu> 2006-12-04 20:22:34 -0500
committer: Trond Myklebust <Trond.Myklebust@netapp.com> 2006-12-06 10:46:44 -0500
commit: adeb8133dd57f380e70a389a89a2ea3ae227f9e2 (patch)
tree: 9cea0324f2e8e03c7c4473cfa132b43ab352cb25 /net/sunrpc/auth_gss/gss_spkm3_seal.c
parent: 37a4e6cb0391f2293ba3d59e3a63ec0e56ed720d (diff)
1 files changed, 80 insertions, 21 deletions
diff --git a/net/sunrpc/auth_gss/gss_spkm3_seal.c b/net/sunrpc/auth_gss/gss_spkm3_seal.c
index 18c7862bc23..b179d58c624 100644
--- a/net/sunrpc/auth_gss/gss_spkm3_seal.c
+++ b/net/sunrpc/auth_gss/gss_spkm3_seal.c
@@ -39,11 +39,17 @@
 #include <linux/sunrpc/gss_spkm3.h>
 #include <linux/random.h>
 #include <linux/crypto.h>
+#include <linux/pagemap.h>
+#include <linux/scatterlist.h>
+#include <linux/sunrpc/xdr.h>
 #ifdef RPC_DEBUG
 # define RPCDBG_FACILITY        RPCDBG_AUTH
 #endif
+const struct xdr_netobj hmac_md5_oid = { 8, "\x2B\x06\x01\x05\x05\x08\x01\x01"};
+const struct xdr_netobj cast5_cbc_oid = {9, "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0A"};
 /*
 * spkm3_make_token()
 *
@@ -66,29 +72,23 @@ spkm3_make_token(struct spkm3_ctx *ctx,
        int                     ctxelen = 0, ctxzbit = 0;
        int                     md5elen = 0, md5zbit = 0;
-        dprintk("RPC: spkm3_make_token\n");
        now = jiffies;
        if (ctx->ctx_id.len != 16) {
                dprintk("RPC: spkm3_make_token BAD ctx_id.len %d\n",
-                        ctx->ctx_id.len);
+                                ctx->ctx_id.len);
                goto out_err;
        }
-                
-        switch (ctx->intg_alg) {
+        if (!g_OID_equal(&ctx->intg_alg, &hmac_md5_oid)) {
-                case NID_md5:
+                dprintk("RPC: gss_spkm3_seal: unsupported I-ALG algorithm."
-                        checksum_type = CKSUMTYPE_RSA_MD5;
+                                "only support hmac-md5 I-ALG.\n");
-                        break;
+                goto out_err;
-                default:
+        } else
-                        dprintk("RPC: gss_spkm3_seal: ctx->signalg %d not"
+                checksum_type = CKSUMTYPE_HMAC_MD5;
-                                " supported\n", ctx->intg_alg);
-                        goto out_err;
+        if (!g_OID_equal(&ctx->conf_alg, &cast5_cbc_oid)) {
-        }
+                dprintk("RPC: gss_spkm3_seal: unsupported C-ALG algorithm\n");
-        /* XXX since we don't support WRAP, perhaps we don't care... */
-        if (ctx->conf_alg != NID_cast5_cbc) {
-                dprintk("RPC: gss_spkm3_seal: ctx->sealalg %d not supported\n",
-                        ctx->conf_alg);
                goto out_err;
        }
@@ -96,10 +96,10 @@ spkm3_make_token(struct spkm3_ctx *ctx,
                /* Calculate checksum over the mic-header */
                asn1_bitstring_len(&ctx->ctx_id, &ctxelen, &ctxzbit);
                spkm3_mic_header(&mic_hdr.data, &mic_hdr.len, ctx->ctx_id.data,
-                                         ctxelen, ctxzbit);
+                                ctxelen, ctxzbit);
+                if (make_spkm3_checksum(checksum_type, &ctx->derived_integ_key,
-                if (make_checksum(checksum_type, mic_hdr.data, mic_hdr.len, 
+                                        (char *)mic_hdr.data, mic_hdr.len,
-                                             text, 0, &md5cksum))
+                                        text, 0, &md5cksum))
                        goto out_err;
                asn1_bitstring_len(&md5cksum, &md5elen, &md5zbit);
@@ -121,7 +121,66 @@ spkm3_make_token(struct spkm3_ctx *ctx,
        return  GSS_S_COMPLETE;
 out_err:
+        if (md5cksum.data)
+                kfree(md5cksum.data);
        token->data = NULL;
        token->len = 0;
        return GSS_S_FAILURE;
 }
+static int
+spkm3_checksummer(struct scatterlist *sg, void *data)
+{
+        struct hash_desc *desc = data;
+        return crypto_hash_update(desc, sg, sg->length);
+}
+/* checksum the plaintext data and hdrlen bytes of the token header */
+s32
+make_spkm3_checksum(s32 cksumtype, struct xdr_netobj *key, char *header,
+                    unsigned int hdrlen, struct xdr_buf *body,
+                    unsigned int body_offset, struct xdr_netobj *cksum)
+{
+        char                            *cksumname;
+        struct hash_desc                desc; /* XXX add to ctx? */
+        struct scatterlist              sg[1];
+        int err;
+        switch (cksumtype) {
+                case CKSUMTYPE_HMAC_MD5:
+                        cksumname = "md5";
+                        break;
+                default:
+                        dprintk("RPC:      spkm3_make_checksum:"
+                                        " unsupported checksum %d", cksumtype);
+                        return GSS_S_FAILURE;
+        }
+        if (key->data == NULL || key->len <= 0) return GSS_S_FAILURE;
+        desc.tfm = crypto_alloc_hash(cksumname, 0, CRYPTO_ALG_ASYNC);
+        if (IS_ERR(desc.tfm))
+                return GSS_S_FAILURE;
+        cksum->len = crypto_hash_digestsize(desc.tfm);
+        desc.flags = CRYPTO_TFM_REQ_MAY_SLEEP;
+        err = crypto_hash_setkey(desc.tfm, key->data, key->len);
+        if (err)
+                goto out;
+        sg_set_buf(sg, header, hdrlen);
+        crypto_hash_update(&desc, sg, 1);
+        xdr_process_buf(body, body_offset, body->len - body_offset,
+                        spkm3_checksummer, &desc);
+        crypto_hash_final(&desc, cksum->data);
+out:
+        crypto_free_hash(desc.tfm);
+        return err ? GSS_S_FAILURE : 0;
+}
+EXPORT_SYMBOL(make_spkm3_checksum);
author	Olga Kornievskaia <aglo@citi.umich.edu>	2006-12-04 20:22:34 -0500
committer	Trond Myklebust <Trond.Myklebust@netapp.com>	2006-12-06 10:46:44 -0500
commit	adeb8133dd57f380e70a389a89a2ea3ae227f9e2 (patch)
tree	9cea0324f2e8e03c7c4473cfa132b43ab352cb25 /net/sunrpc/auth_gss/gss_spkm3_seal.c
parent	37a4e6cb0391f2293ba3d59e3a63ec0e56ed720d (diff)

diff --git a/net/sunrpc/auth_gss/gss_spkm3_seal.c b/net/sunrpc/auth_gss/gss_spkm3_seal.c index 18c7862bc23..b179d58c624 100644 --- a/net/sunrpc/auth_gss/gss_spkm3_seal.c +++ b/net/sunrpc/auth_gss/gss_spkm3_seal.c
@@ -39,11 +39,17 @@
39	#include <linux/sunrpc/gss_spkm3.h>	39	#include <linux/sunrpc/gss_spkm3.h>
40	#include <linux/random.h>	40	#include <linux/random.h>
41	#include <linux/crypto.h>	41	#include <linux/crypto.h>
		42	#include <linux/pagemap.h>
		43	#include <linux/scatterlist.h>
		44	#include <linux/sunrpc/xdr.h>
42		45
43	#ifdef RPC_DEBUG	46	#ifdef RPC_DEBUG
44	# define RPCDBG_FACILITY RPCDBG_AUTH	47	# define RPCDBG_FACILITY RPCDBG_AUTH
45	#endif	48	#endif
46		49
		50	const struct xdr_netobj hmac_md5_oid = { 8, "\x2B\x06\x01\x05\x05\x08\x01\x01"};
		51	const struct xdr_netobj cast5_cbc_oid = {9, "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0A"};
		52
47	/*	53	/*
48	* spkm3_make_token()	54	* spkm3_make_token()
49	*	55	*
@@ -66,29 +72,23 @@ spkm3_make_token(struct spkm3_ctx *ctx,
66	int ctxelen = 0, ctxzbit = 0;	72	int ctxelen = 0, ctxzbit = 0;
67	int md5elen = 0, md5zbit = 0;	73	int md5elen = 0, md5zbit = 0;
68		74
69	dprintk("RPC: spkm3_make_token\n");
70
71	now = jiffies;	75	now = jiffies;
72		76
73	if (ctx->ctx_id.len != 16) {	77	if (ctx->ctx_id.len != 16) {
74	dprintk("RPC: spkm3_make_token BAD ctx_id.len %d\n",	78	dprintk("RPC: spkm3_make_token BAD ctx_id.len %d\n",
75	ctx->ctx_id.len);	79	ctx->ctx_id.len);
76	goto out_err;	80	goto out_err;
77	}	81	}
78		82
79	switch (ctx->intg_alg) {	83	if (!g_OID_equal(&ctx->intg_alg, &hmac_md5_oid)) {
80	case NID_md5:	84	dprintk("RPC: gss_spkm3_seal: unsupported I-ALG algorithm."
81	checksum_type = CKSUMTYPE_RSA_MD5;	85	"only support hmac-md5 I-ALG.\n");
82	break;	86	goto out_err;
83	default:	87	} else
84	dprintk("RPC: gss_spkm3_seal: ctx->signalg %d not"	88	checksum_type = CKSUMTYPE_HMAC_MD5;
85	" supported\n", ctx->intg_alg);	89
86	goto out_err;	90	if (!g_OID_equal(&ctx->conf_alg, &cast5_cbc_oid)) {
87	}	91	dprintk("RPC: gss_spkm3_seal: unsupported C-ALG algorithm\n");
88	/* XXX since we don't support WRAP, perhaps we don't care... */
89	if (ctx->conf_alg != NID_cast5_cbc) {
90	dprintk("RPC: gss_spkm3_seal: ctx->sealalg %d not supported\n",
91	ctx->conf_alg);
92	goto out_err;	92	goto out_err;
93	}	93	}
94		94
@@ -96,10 +96,10 @@ spkm3_make_token(struct spkm3_ctx *ctx,
96	/* Calculate checksum over the mic-header */	96	/* Calculate checksum over the mic-header */
97	asn1_bitstring_len(&ctx->ctx_id, &ctxelen, &ctxzbit);	97	asn1_bitstring_len(&ctx->ctx_id, &ctxelen, &ctxzbit);
98	spkm3_mic_header(&mic_hdr.data, &mic_hdr.len, ctx->ctx_id.data,	98	spkm3_mic_header(&mic_hdr.data, &mic_hdr.len, ctx->ctx_id.data,
99	ctxelen, ctxzbit);	99	ctxelen, ctxzbit);
100		100	if (make_spkm3_checksum(checksum_type, &ctx->derived_integ_key,
101	if (make_checksum(checksum_type, mic_hdr.data, mic_hdr.len,	101	(char *)mic_hdr.data, mic_hdr.len,
102	text, 0, &md5cksum))	102	text, 0, &md5cksum))
103	goto out_err;	103	goto out_err;
104		104
105	asn1_bitstring_len(&md5cksum, &md5elen, &md5zbit);	105	asn1_bitstring_len(&md5cksum, &md5elen, &md5zbit);
@@ -121,7 +121,66 @@ spkm3_make_token(struct spkm3_ctx *ctx,
121		121
122	return GSS_S_COMPLETE;	122	return GSS_S_COMPLETE;
123	out_err:	123	out_err:
		124	if (md5cksum.data)
		125	kfree(md5cksum.data);
		126
124	token->data = NULL;	127	token->data = NULL;
125	token->len = 0;	128	token->len = 0;
126	return GSS_S_FAILURE;	129	return GSS_S_FAILURE;
127	}	130	}
		131
		132	static int
		133	spkm3_checksummer(struct scatterlist sg, void data)
		134	{
		135	struct hash_desc *desc = data;
		136
		137	return crypto_hash_update(desc, sg, sg->length);
		138	}
		139
		140	/* checksum the plaintext data and hdrlen bytes of the token header */
		141	s32
		142	make_spkm3_checksum(s32 cksumtype, struct xdr_netobj key, char header,
		143	unsigned int hdrlen, struct xdr_buf *body,
		144	unsigned int body_offset, struct xdr_netobj *cksum)
		145	{
		146	char *cksumname;
		147	struct hash_desc desc; /* XXX add to ctx? */
		148	struct scatterlist sg[1];
		149	int err;
		150
		151	switch (cksumtype) {
		152	case CKSUMTYPE_HMAC_MD5:
		153	cksumname = "md5";
		154	break;
		155	default:
		156	dprintk("RPC: spkm3_make_checksum:"
		157	" unsupported checksum %d", cksumtype);
		158	return GSS_S_FAILURE;
		159	}
		160
		161	if (key->data == NULL \|\| key->len <= 0) return GSS_S_FAILURE;
		162
		163	desc.tfm = crypto_alloc_hash(cksumname, 0, CRYPTO_ALG_ASYNC);
		164	if (IS_ERR(desc.tfm))
		165	return GSS_S_FAILURE;
		166	cksum->len = crypto_hash_digestsize(desc.tfm);
		167	desc.flags = CRYPTO_TFM_REQ_MAY_SLEEP;
		168
		169	err = crypto_hash_setkey(desc.tfm, key->data, key->len);
		170	if (err)
		171	goto out;
		172
		173	sg_set_buf(sg, header, hdrlen);
		174	crypto_hash_update(&desc, sg, 1);
		175
		176	xdr_process_buf(body, body_offset, body->len - body_offset,
		177	spkm3_checksummer, &desc);
		178	crypto_hash_final(&desc, cksum->data);
		179
		180	out:
		181	crypto_free_hash(desc.tfm);
		182
		183	return err ? GSS_S_FAILURE : 0;
		184	}
		185
		186	EXPORT_SYMBOL(make_spkm3_checksum);