/* Copyright (c) 2007-2013 Contributors as noted in the AUTHORS file This file is part of 0MQ. 0MQ is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version. 0MQ is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this program. If not, see . */ #include "platform.hpp" #ifdef ZMQ_HAVE_WINDOWS #include "windows.hpp" #endif #include #include #include "msg.hpp" #include "session_base.hpp" #include "err.hpp" #include "gssapi_mechanism_base.hpp" #include "wire.hpp" zmq::gssapi_mechanism_base_t::gssapi_mechanism_base_t (const options_t & options_) : mechanism_t(options_), send_tok (), recv_tok (), /// FIXME remove? in_buf (), target_name (GSS_C_NO_NAME), principal_name (NULL), maj_stat (GSS_S_COMPLETE), min_stat (0), init_sec_min_stat (0), ret_flags (0), gss_flags (GSS_C_MUTUAL_FLAG | GSS_C_REPLAY_FLAG), cred (GSS_C_NO_CREDENTIAL), context (GSS_C_NO_CONTEXT), do_encryption (!options_.gss_plaintext) { } zmq::gssapi_mechanism_base_t::~gssapi_mechanism_base_t () { if(target_name) gss_release_name(&min_stat, &target_name); if(context) gss_delete_sec_context(&min_stat, &context, GSS_C_NO_BUFFER); } int zmq::gssapi_mechanism_base_t::encode_message (msg_t *msg_) { // Wrap the token value int state; gss_buffer_desc plaintext; gss_buffer_desc wrapped; uint8_t flags = 0; if (msg_->flags () & msg_t::more) flags |= 0x01; uint8_t *plaintext_buffer = static_cast (malloc(msg_->size ()+1)); plaintext_buffer[0] = flags; memcpy (plaintext_buffer+1, msg_->data(), msg_->size()); plaintext.value = plaintext_buffer; plaintext.length = msg_->size ()+1; maj_stat = gss_wrap(&min_stat, context, 1, GSS_C_QOP_DEFAULT, &plaintext, &state, &wrapped); zmq_assert (maj_stat == GSS_S_COMPLETE); zmq_assert (state); // Re-initialize msg_ for wrapped text int rc = msg_->close (); zmq_assert (rc == 0); rc = msg_->init_size (8 + 4 + wrapped.length); zmq_assert (rc == 0); uint8_t *ptr = static_cast (msg_->data ()); // Add command string memcpy (ptr, "\x07MESSAGE", 8); ptr += 8; // Add token length put_uint32 (ptr, static_cast (wrapped.length)); ptr += 4; // Add wrapped token value memcpy (ptr, wrapped.value, wrapped.length); ptr += wrapped.length; gss_release_buffer (&min_stat, &wrapped); return 0; } int zmq::gssapi_mechanism_base_t::decode_message (msg_t *msg_) { const uint8_t *ptr = static_cast (msg_->data ()); size_t bytes_left = msg_->size (); // Get command string if (bytes_left < 8 || memcmp (ptr, "\x07MESSAGE", 8)) { errno = EPROTO; return -1; } ptr += 8; bytes_left -= 8; // Get token length if (bytes_left < 4) { errno = EPROTO; return -1; } gss_buffer_desc wrapped; wrapped.length = get_uint32 (ptr); ptr += 4; bytes_left -= 4; // Get token value if (bytes_left < wrapped.length) { errno = EPROTO; return -1; } // TODO: instead of malloc/memcpy, can we just do: wrapped.value = ptr; const size_t alloc_length = wrapped.length? wrapped.length: 1; wrapped.value = static_cast (malloc (alloc_length)); if (wrapped.length) { alloc_assert (wrapped.value); memcpy(wrapped.value, ptr, wrapped.length); ptr += wrapped.length; bytes_left -= wrapped.length; } // Unwrap the token value int state; gss_buffer_desc plaintext; maj_stat = gss_unwrap(&min_stat, context, &wrapped, &plaintext, &state, (gss_qop_t *) NULL); zmq_assert(maj_stat == GSS_S_COMPLETE); zmq_assert(state); // Re-initialize msg_ for plaintext int rc = msg_->close (); zmq_assert (rc == 0); rc = msg_->init_size (plaintext.length-1); zmq_assert (rc == 0); const uint8_t flags = static_cast (plaintext.value)[0]; if (flags & 0x01) msg_->set_flags (msg_t::more); memcpy (msg_->data (), static_cast (plaintext.value)+1, plaintext.length-1); gss_release_buffer (&min_stat, &plaintext); gss_release_buffer (&min_stat, &wrapped); if (bytes_left > 0) { errno = EPROTO; return -1; } return 0; } int zmq::gssapi_mechanism_base_t::produce_initiate (msg_t *msg_, void *token_value_, size_t token_length_) { zmq_assert (token_value_); zmq_assert (token_length_ <= 0xFFFFFFFFUL); const size_t command_size = 9 + 4 + token_length_; const int rc = msg_->init_size (command_size); errno_assert (rc == 0); uint8_t *ptr = static_cast (msg_->data ()); // Add command string memcpy (ptr, "\x08INITIATE", 9); ptr += 9; // Add token length put_uint32 (ptr, static_cast (token_length_)); ptr += 4; // Add token value memcpy (ptr, token_value_, token_length_); ptr += token_length_; return 0; } int zmq::gssapi_mechanism_base_t::process_initiate (msg_t *msg_, void **token_value_, size_t &token_length_) { zmq_assert (token_value_); const uint8_t *ptr = static_cast (msg_->data ()); size_t bytes_left = msg_->size (); // Get command string if (bytes_left < 9 || memcmp (ptr, "\x08INITIATE", 9)) { errno = EPROTO; return -1; } ptr += 9; bytes_left -= 9; // Get token length if (bytes_left < 4) { errno = EPROTO; return -1; } token_length_ = get_uint32 (ptr); ptr += 4; bytes_left -= 4; // Get token value if (bytes_left < token_length_) { errno = EPROTO; return -1; } *token_value_ = static_cast (malloc (token_length_ ? token_length_ : 1)); if (token_length_) { alloc_assert (*token_value_); memcpy(*token_value_, ptr, token_length_); ptr += token_length_; bytes_left -= token_length_; } if (bytes_left > 0) { errno = EPROTO; return -1; } return 0; } int zmq::gssapi_mechanism_base_t::produce_ready (msg_t *msg_) { unsigned char * const command_buffer = (unsigned char *) malloc (512); alloc_assert (command_buffer); unsigned char *ptr = command_buffer; // Add command name memcpy (ptr, "\x05READY", 6); ptr += 6; // Add socket type property const char *socket_type = socket_type_string (options.type); ptr += add_property (ptr, "Socket-Type", socket_type, strlen (socket_type)); // Add identity property if (options.type == ZMQ_REQ || options.type == ZMQ_DEALER || options.type == ZMQ_ROUTER) { ptr += add_property (ptr, "Identity", options.identity, options.identity_size); } const size_t command_size = ptr - command_buffer; const int rc = msg_->init_size (command_size); errno_assert (rc == 0); memcpy (msg_->data (), command_buffer, command_size); free (command_buffer); if (do_encryption) return encode_message (msg_); return 0; } int zmq::gssapi_mechanism_base_t::process_ready (msg_t *msg_) { if (do_encryption) { const int rc = decode_message (msg_); if (rc != 0) return rc; } const unsigned char *ptr = static_cast (msg_->data ()); size_t bytes_left = msg_->size (); if (bytes_left < 6 || memcmp (ptr, "\x05READY", 6)) { errno = EPROTO; return -1; } ptr += 6; bytes_left -= 6; return parse_metadata (ptr, bytes_left); } int zmq::gssapi_mechanism_base_t::acquire_credentials (char * service_name_, gss_cred_id_t * cred_) { OM_uint32 maj_stat; OM_uint32 min_stat; gss_name_t server_name; gss_buffer_desc name_buf; name_buf.value = service_name_; name_buf.length = strlen ((char *) name_buf.value) + 1; maj_stat = gss_import_name (&min_stat, &name_buf, gss_nt_service_name, &server_name); if (maj_stat != GSS_S_COMPLETE) return -1; maj_stat = gss_acquire_cred (&min_stat, server_name, 0, GSS_C_NO_OID_SET, GSS_C_ACCEPT, cred_, NULL, NULL); if (maj_stat != GSS_S_COMPLETE) return -1; gss_release_name(&min_stat, &server_name); return 0; }