PageRenderTime 60ms CodeModel.GetById 36ms RepoModel.GetById 0ms app.codeStats 0ms

/usr.sbin/ospfd/auth.c

https://bitbucket.org/kmv/aeriebsd-src
C | 271 lines | 195 code | 44 blank | 32 comment | 34 complexity | a88629a959e6489b52692c5685358be5 MD5 | raw file
    

  1. 

  2. /*
    3. 

  3.  * Copyright (c) 2004, 2005 Esben Norby <norby@openbsd.org>
    4. 

  4.  *
    5. 

  5.  * Permission to use, copy, modify, and distribute this software for any
    6. 

  6.  * purpose with or without fee is hereby granted, provided that the above
    7. 

  7.  * copyright notice and this permission notice appear in all copies.
    8. 

  8.  *
    9. 

  9.  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
    10. 

  10.  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
    11. 

  11.  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
    12. 

  12.  * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
    13. 

  13.  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
    14. 

  14.  * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
    15. 

  15.  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
    16. 

  16.  */
    17. 

  17. 

  18. #include <sys/types.h>
    19. 

  19. #include <sys/socket.h>
    20. 

  20. #include <limits.h>
    21. 

  21. #include <md5.h>
    22. 

  22. #include <stdlib.h>
    23. 

  23. #include <string.h>
    24. 

  24. 

  25. #include "ospfd.h"
    26. 

  26. #include "ospf.h"
    27. 

  27. #include "log.h"
    28. 

  28. #include "ospfe.h"
    29. 

  29. 

  30. struct auth_md *md_list_find(struct auth_md_head *, u_int8_t);
    31. 

  31. 

  32. int
    33. 

  33. auth_validate(void *buf, u_int16_t len, struct iface *iface, struct nbr *nbr)
    34. 

  34. {
    35. 

  35. 	MD5_CTX		 hash;
    36. 

  36. 	u_int8_t	 digest[MD5_DIGEST_LENGTH];
    37. 

  37. 	u_int8_t	 recv_digest[MD5_DIGEST_LENGTH];
    38. 

  38. 	struct ospf_hdr	*ospf_hdr = buf;
    39. 

  39. 	struct auth_md	*md;
    40. 

  40. 	char		*auth_data;
    41. 

  41. 

  42. 	if (ntohs(ospf_hdr->auth_type) != (u_int16_t)iface->auth_type) {
    43. 

  43. 		log_debug("auth_validate: wrong auth type, interface %s",
    44. 

  44. 		    iface->name);
    45. 

  45. 		return (-1);
    46. 

  46. 	}
    47. 

  47. 

  48. 	switch (iface->auth_type) {
    49. 

  49. 	case AUTH_SIMPLE:
    50. 

  50. 		if (memcmp(ospf_hdr->auth_key.simple, iface->auth_key,
    51. 

  51. 		    sizeof(ospf_hdr->auth_key.simple))) {
    52. 

  52. 			log_debug("auth_validate: wrong password, interface %s",
    53. 

  53. 			    iface->name);
    54. 

  54. 			return (-1);
    55. 

  55. 		}
    56. 

  56. 		/* FALLTHROUGH */
    57. 

  57. 	case AUTH_NONE:
    58. 

  58. 		/* clear the key before chksum */
    59. 

  59. 		bzero(ospf_hdr->auth_key.simple,
    60. 

  60. 		     sizeof(ospf_hdr->auth_key.simple));
    61. 

  61. 

  62. 		if (in_cksum(ospf_hdr, ntohs(ospf_hdr->len))) {
    63. 

  63. 			log_debug("auth_validate: invalid checksum, "
    64. 

  64. 			    "interface %s", iface->name);
    65. 

  65. 			return (-1);
    66. 

  66. 		}
    67. 

  67. 		break;
    68. 

  68. 	case AUTH_CRYPT:
    69. 

  69. 		/*
    70. 

  70. 		 * We must allow keys that are configured on the interface
    71. 

  71. 		 * but not necessarily set as the transmit key
    72. 

  72. 		 * (iface->auth_keyid). This allows for key rotation to new
    73. 

  73. 		 * keys without taking down the network.
    74. 

  74. 		 */
    75. 

  75. 		if ((md = md_list_find(&iface->auth_md_list,
    76. 

  76. 		    ospf_hdr->auth_key.crypt.keyid)) == NULL) {
    77. 

  77. 			log_debug("auth_validate: keyid %d not configured, "
    78. 

  78. 			    "interface %s", ospf_hdr->auth_key.crypt.keyid,
    79. 

  79. 			    iface->name);
    80. 

  80. 			return (-1);
    81. 

  81. 		}
    82. 

  82. 

  83. 		if (nbr != NULL && ntohl(ospf_hdr->auth_key.crypt.seq_num) <
    84. 

  84. 		    nbr->crypt_seq_num) {
    85. 

  85. 			log_debug("auth_validate: decreasing seq num, "
    86. 

  86. 			    "interface %s", iface->name);
    87. 

  87. 			return (-1);
    88. 

  88. 		}
    89. 

  89. 

  90. 		if (ospf_hdr->auth_key.crypt.len != MD5_DIGEST_LENGTH) {
    91. 

  91. 			log_debug("auth_validate: invalid key length, "
    92. 

  92. 			    "interface %s", iface->name);
    93. 

  93. 			return (-1);
    94. 

  94. 		}
    95. 

  95. 

  96. 		if (len - ntohs(ospf_hdr->len) < MD5_DIGEST_LENGTH) {
    97. 

  97. 			log_debug("auth_validate: invalid key length, "
    98. 

  98. 			    "interface %s", iface->name);
    99. 

  99. 			return (-1);
    100. 

  100. 		}
    101. 

  101. 

  102. 		auth_data = buf;
    103. 

  103. 		auth_data += ntohs(ospf_hdr->len);
    104. 

  104. 

  105. 		/* save the received digest and clear it in the packet */
    106. 

  106. 		memcpy(recv_digest, auth_data, sizeof(recv_digest));
    107. 

  107. 		bzero(auth_data, MD5_DIGEST_LENGTH);
    108. 

  108. 

  109. 		/* insert plaintext key */
    110. 

  110. 		bzero(digest, MD5_DIGEST_LENGTH);
    111. 

  111. 		strncpy(digest, md->key, MD5_DIGEST_LENGTH);
    112. 

  112. 

  113. 		/* calculate MD5 digest */
    114. 

  114. 		MD5Init(&hash);
    115. 

  115. 		MD5Update(&hash, buf, ntohs(ospf_hdr->len));
    116. 

  116. 		MD5Update(&hash, digest, MD5_DIGEST_LENGTH);
    117. 

  117. 		MD5Final(digest, &hash);
    118. 

  118. 

  119. 		if (memcmp(recv_digest, digest, sizeof(digest))) {
    120. 

  120. 			log_debug("auth_validate: invalid MD5 digest, "
    121. 

  121. 			    "interface %s", iface->name);
    122. 

  122. 			return (-1);
    123. 

  123. 		}
    124. 

  124. 

  125. 		if (nbr != NULL)
    126. 

  126. 			nbr->crypt_seq_num =
    127. 

  127. 			    ntohl(ospf_hdr->auth_key.crypt.seq_num);
    128. 

  128. 		break;
    129. 

  129. 	default:
    130. 

  130. 		log_debug("auth_validate: unknown auth type, interface %s",
    131. 

  131. 		    iface->name);
    132. 

  132. 		return (-1);
    133. 

  133. 	}
    134. 

  134. 

  135. 	return (0);
    136. 

  136. }
    137. 

  137. 

  138. int
    139. 

  139. auth_gen(struct buf *buf, struct iface *iface)
    140. 

  140. {
    141. 

  141. 	MD5_CTX		 hash;
    142. 

  142. 	u_int8_t	 digest[MD5_DIGEST_LENGTH];
    143. 

  143. 	struct ospf_hdr	*ospf_hdr;
    144. 

  144. 	struct auth_md	*md;
    145. 

  145. 

  146. 	if ((ospf_hdr = buf_seek(buf, 0, sizeof(ospf_hdr))) == NULL)
    147. 

  147. 		fatalx("auth_gen: buf_seek failed");
    148. 

  148. 

  149. 	/* update length */
    150. 

  150. 	if (buf->wpos > USHRT_MAX)
    151. 

  151. 		fatalx("auth_gen: resulting ospf packet too big");
    152. 

  152. 	ospf_hdr->len = htons((u_int16_t)buf->wpos);
    153. 

  153. 	/* clear auth_key field */
    154. 

  154. 	bzero(ospf_hdr->auth_key.simple, sizeof(ospf_hdr->auth_key.simple));
    155. 

  155. 

  156. 	switch (iface->auth_type) {
    157. 

  157. 	case AUTH_NONE:
    158. 

  158. 		ospf_hdr->chksum = in_cksum(buf->buf, buf->wpos);
    159. 

  159. 		break;
    160. 

  160. 	case AUTH_SIMPLE:
    161. 

  161. 		ospf_hdr->chksum = in_cksum(buf->buf, buf->wpos);
    162. 

  162. 

  163. 		strncpy(ospf_hdr->auth_key.simple, iface->auth_key,
    164. 

  164. 		    sizeof(ospf_hdr->auth_key.simple));
    165. 

  165. 		break;
    166. 

  166. 	case AUTH_CRYPT:
    167. 

  167. 		ospf_hdr->chksum = 0;
    168. 

  168. 		ospf_hdr->auth_key.crypt.keyid = iface->auth_keyid;
    169. 

  169. 		ospf_hdr->auth_key.crypt.seq_num = htonl(iface->crypt_seq_num);
    170. 

  170. 		ospf_hdr->auth_key.crypt.len = MD5_DIGEST_LENGTH;
    171. 

  171. 		iface->crypt_seq_num++;
    172. 

  172. 

  173. 		/* insert plaintext key */
    174. 

  174. 		if ((md = md_list_find(&iface->auth_md_list,
    175. 

  175. 		    iface->auth_keyid)) == NULL) {
    176. 

  176. 			log_debug("auth_gen: keyid %d not configured, "
    177. 

  177. 			    "interface %s", iface->auth_keyid, iface->name);
    178. 

  178. 			return (-1);
    179. 

  179. 		}
    180. 

  180. 

  181. 		bzero(digest, MD5_DIGEST_LENGTH);
    182. 

  182. 		strncpy(digest, md->key, MD5_DIGEST_LENGTH);
    183. 

  183. 

  184. 		/* calculate MD5 digest */
    185. 

  185. 		MD5Init(&hash);
    186. 

  186. 		MD5Update(&hash, buf->buf, buf->wpos);
    187. 

  187. 		MD5Update(&hash, digest, MD5_DIGEST_LENGTH);
    188. 

  188. 		MD5Final(digest, &hash);
    189. 

  189. 

  190. 		return (buf_add(buf, digest, MD5_DIGEST_LENGTH));
    191. 

  191. 	default:
    192. 

  192. 		log_debug("auth_gen: unknown auth type, interface %s",
    193. 

  193. 		    iface->name);
    194. 

  194. 		return (-1);
    195. 

  195. 	}
    196. 

  196. 

  197. 	return (0);
    198. 

  198. }
    199. 

  199. 

  200. /* md list */
    201. 

  201. void
    202. 

  202. md_list_add(struct auth_md_head *head, u_int8_t keyid, char *key)
    203. 

  203. {
    204. 

  204. 	struct auth_md	*md;
    205. 

  205. 

  206. 	if ((md = md_list_find(head, keyid)) != NULL) {
    207. 

  207. 		/* update key */
    208. 

  208. 		strncpy(md->key, key, sizeof(md->key));
    209. 

  209. 		return;
    210. 

  210. 	}
    211. 

  211. 

  212. 	if ((md = calloc(1, sizeof(struct auth_md))) == NULL)
    213. 

  213. 		fatalx("md_list_add");
    214. 

  214. 

  215. 	md->keyid = keyid;
    216. 

  216. 	strncpy(md->key, key, sizeof(md->key));
    217. 

  217. 	TAILQ_INSERT_TAIL(head, md, entry);
    218. 

  218. }
    219. 

  219. 

  220. void
    221. 

  221. md_list_copy(struct auth_md_head *to, struct auth_md_head *from)
    222. 

  222. {
    223. 

  223. 	struct auth_md	*m, *md;
    224. 

  224. 

  225. 	TAILQ_INIT(to);
    226. 

  226. 

  227. 	TAILQ_FOREACH(m, from, entry) {
    228. 

  228. 		if ((md = calloc(1, sizeof(struct auth_md))) == NULL)
    229. 

  229. 			fatalx("md_list_copy");
    230. 

  230. 

  231. 		md->keyid = m->keyid;
    232. 

  232. 		strncpy(md->key, m->key, sizeof(md->key));
    233. 

  233. 		TAILQ_INSERT_TAIL(to, md, entry);
    234. 

  234. 	}
    235. 

  235. }
    236. 

  236. 

  237. void
    238. 

  238. md_list_clr(struct auth_md_head *head)
    239. 

  239. {
    240. 

  240. 	struct auth_md	*m;
    241. 

  241. 

  242. 	while ((m = TAILQ_FIRST(head)) != NULL) {
    243. 

  243. 		TAILQ_REMOVE(head, m, entry);
    244. 

  244. 		free(m);
    245. 

  245. 	}
    246. 

  246. }
    247. 

  247. 

  248. struct auth_md *
    249. 

  249. md_list_find(struct auth_md_head *head, u_int8_t keyid)
    250. 

  250. {
    251. 

  251. 	struct auth_md	*m;
    252. 

  252. 

  253. 	TAILQ_FOREACH(m, head, entry)
    254. 

  254. 		if (m->keyid == keyid)
    255. 

  255. 			return (m);
    256. 

  256. 

  257. 	return (NULL);
    258. 

  258. }
    259. 

  259. 

  260. int
    261. 

  261. md_list_send(struct auth_md_head *head, struct imsgbuf *to)
    262. 

  262. {
    263. 

  263. 	struct auth_md	*m;
    264. 

  264. 

  265. 	TAILQ_FOREACH(m, head, entry)
    266. 

  266. 		if (imsg_compose(to, IMSG_RECONF_AUTHMD, 0, 0, m,
    267. 

  267. 		    sizeof(*m)) == -1)
    268. 

  268. 			return (-1);
    269. 

  269. 

  270. 	return (0);
    271. 

  271. }
    272. 

  272.