Mercurial > hg > freeDiameter

view extensions/app_diameap/plugins/eap_md5/eap_md5.c @ 959:8881967d087c

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Silence gcrypt warnings in more places.
author Thomas Klausner <tk@giga.or.at>
date Thu, 28 Feb 2013 11:08:44 +0100
parents 0c6e50a5291d
children 0117a7746b21
line wrap: on
line source

/*****************************************************************************************************
 * Software License Agreement (BSD License)
 * Author : Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
 *
 * Copyright (c) 2009-2010, Souheil Ben Ayed, Teraoka Laboratory of Keio University, and the WIDE Project
 * All rights reserved.
 *
 * Redistribution and use of this software in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    This product includes software developed by Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>.
 *
 * 4. Neither the name of Souheil Ben Ayed, Teraoka Laboratory of Keio University or the WIDE Project nor the
 *    names of its contributors may be used to endorse or promote products
 *    derived from this software without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ''AS IS'' AND ANY
 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
 * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY
 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 *****************************************************************************************************/


#include "../../plugins.h"
#pragma GCC diagnostic ignored "-Wdeprecated-declarations"
#include <gcrypt.h>
#pragma GCC diagnostic warning "-Wdeprecated-declarations"

#define CHALLENGE_LEN	16

struct eap_md5_data
{
	enum
	{
		EAP_MD5_CONTINUE, EAP_MD5_SUCCESS, EAP_MD5_FAILURE
	} state;
	u8 * challenge;
};

int eap_md5_configure(char * configfile);
int eap_md5_init(struct eap_state_machine *smd);
int eap_md5_initPickUp(struct eap_state_machine *smd);
int eap_md5_buildReq(struct eap_state_machine *smd, u8 eap_md5,
		struct eap_packet * eapPacket);
boolean eap_md5_check(struct eap_state_machine *smd, struct eap_packet eapRespData);
int eap_md5_process(struct eap_state_machine *smd, struct eap_packet eapRespData);
boolean eap_md5_isDone(struct eap_state_machine *smd);
void eap_md5_free(void * data);

REGISTER_METHOD("eap_md5", "eap_md5_configure", "eap_md5_init", "eap_md5_initPickUp", "eap_md5_buildReq", NULL, "eap_md5_check", "eap_md5_process", "eap_md5_isDone", NULL, NULL, "eap_md5_free")
;

int eap_md5_configure(char * configfile)
{
	gcry_control (GCRYCTL_ENABLE_QUICK_RANDOM, 0);

	return 0;
}

int eap_md5_init(struct eap_state_machine *smd)
{
	struct eap_md5_data *data = NULL;
	CHECK_MALLOC(data = malloc(sizeof(struct eap_md5_data)));
	memset(data, 0, sizeof(struct eap_md5_data));
	data->state = EAP_MD5_CONTINUE;
	data->challenge = NULL;
	smd->methodData = (struct eap_md5_data*) data;
	return 0;
}


int eap_md5_buildReq(struct eap_state_machine *smd, u8 id,
		struct eap_packet * eapPacket)
{
	struct eap_md5_data * data;
	u8 *payload, *challenge;

	data = (struct eap_md5_data *) smd->methodData;
	CHECK_MALLOC( challenge=malloc(sizeof(u8)*CHALLENGE_LEN));
	CHECK_MALLOC( payload=malloc(sizeof(u8)*(CHALLENGE_LEN+1)));
	memset(payload, 0, sizeof(u8) * (CHALLENGE_LEN + 1));

	gcry_create_nonce(challenge,CHALLENGE_LEN);
	U8COPY(payload, 1, CHALLENGE_LEN, challenge);
	payload[0] = (u8) CHALLENGE_LEN;
	CHECK_FCT(diameap_eap_new(EAP_REQUEST, id, TYPE_EAP_MD5, payload, CHALLENGE_LEN
					+ 1,eapPacket));
	CHECK_MALLOC(data->challenge=realloc(data->challenge,sizeof(u8)*CHALLENGE_LEN));
	U8COPY(data->challenge,0,CHALLENGE_LEN,challenge);

	smd->methodData = data;

	free(challenge);
	challenge=NULL;
	free(payload);
	payload=NULL;

	return 0;
}


boolean eap_md5_check(struct eap_state_machine *smd, struct eap_packet eapRespData)
{
	eap_type type;
	if(diameap_eap_get_type(eapRespData,&type)!=0){
		return FALSE;
	}
	if (type == TYPE_EAP_MD5)
	{
		u16 length;
		CHECK_FCT(diameap_eap_get_length(eapRespData,&length));
		if ((int) length < 6)
		{
			TRACE_DEBUG(INFO,"%s[EAP MD5 plugin] Incorrect EAP packet received (length = %d ).",DIAMEAP_EXTENSION,length);
			return FALSE;
		}
		return TRUE;
	}
	return FALSE;
}



int eap_md5_process(struct eap_state_machine *smd, struct eap_packet eapRespData)
{

	struct eap_md5_data * data;
	int wordlen = 0, i = 0;
	u8 * word, *hash, id;
	data = (struct eap_md5_data*) smd->methodData;
	wordlen = 1 + smd->user.passwordLength + CHALLENGE_LEN;
	CHECK_MALLOC(word = malloc(sizeof(u8)*wordlen));
	memset(word, 0, sizeof(u8) * wordlen);
	CHECK_FCT(diameap_eap_get_identifier(eapRespData,&id));
	*word = id;
	U8COPY(word,1,smd->user.passwordLength,smd->user.password);
	U8COPY(word,1+smd->user.passwordLength,CHALLENGE_LEN,data->challenge);
	CHECK_MALLOC(hash = malloc(sizeof(u8)*16));

	md5hash(word, wordlen, hash);


	for (i = 0; i < CHALLENGE_LEN; i++)
	{
		if (G8(hash + i) != G8(eapRespData.data + 6 + i))
		{
			data->state = EAP_MD5_FAILURE;
		}
	}

	if (data->state != EAP_MD5_FAILURE)
	{
		data->state = EAP_MD5_SUCCESS;
		smd->user.success = TRUE;
	}

	smd->methodData = data;
	free(hash);
	hash=NULL;
	free(word);
	word=NULL;
	return 0;
}

boolean eap_md5_isDone(struct eap_state_machine *smd)
{
	struct eap_md5_data *data;
	data = (struct eap_md5_data*) smd->methodData;
	if (data->state != EAP_MD5_CONTINUE)
	{
		return TRUE;
	}
	return FALSE;
}


void eap_md5_free(void * mdata)
{
	struct eap_md5_data *data;
	data = (struct eap_md5_data*) mdata;
	free(data->challenge);
	data->challenge=NULL;
	free(data);
	data=NULL;
}
"Welcome to our mercurial repository"