1 /* $KAME: isakmp_agg.c,v 1.55 2001/12/12 15:29:13 sakane Exp $ */
4 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the project nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
19 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 /* Aggressive Exchange (Aggressive Mode) */
34 #include <sys/types.h>
35 #include <sys/param.h>
41 #if TIME_WITH_SYS_TIME
42 # include <sys/time.h>
46 # include <sys/time.h>
51 #include <netinet/in.h>
61 #include "localconf.h"
62 #include "remoteconf.h"
63 #include "isakmp_var.h"
67 #include "ipsec_doi.h"
68 #include "crypto_openssl.h"
70 #include "isakmp_agg.h"
71 #include "isakmp_inf.h"
72 #include "isakmp_natd.h"
81 * begin Aggressive Mode as initiator.
85 * psk: HDR, SA, KE, Ni, IDi1
86 * sig: HDR, SA, KE, Ni, IDi1 [, CR ]
87 * gssapi: HDR, SA, KE, Ni, IDi1, GSSi
88 * rsa: HDR, SA, [ HASH(1),] KE, <IDi1_b>Pubkey_r, <Ni_b>Pubkey_r
89 * rev: HDR, SA, [ HASH(1),] <Ni_b>Pubkey_r, <KE_b>Ke_i,
90 * <IDii_b>Ke_i [, <Cert-I_b>Ke_i ]
94 struct ph1handle
*iph1
;
95 vchar_t
*msg
; /* must be null */
97 struct isakmp_gen
*gen
;
101 vchar_t
*cr
= NULL
, *gsstoken
= NULL
;
102 vchar_t
*vid_natt_rfc
= NULL
;
103 vchar_t
*vid_natt_apple
= NULL
;
104 vchar_t
*vid_natt_02
= NULL
;
105 vchar_t
*vid_natt_02N
= NULL
;
114 plog(LLV_ERROR
, LOCATION
, NULL
,
115 "msg has to be NULL in this function.\n");
118 if (iph1
->status
!= PHASE1ST_START
) {
119 plog(LLV_ERROR
, LOCATION
, NULL
,
120 "status mismatched %d.\n", iph1
->status
);
124 /* create isakmp index */
125 memset(&iph1
->index
, 0, sizeof(iph1
->index
));
126 isakmp_newcookie((caddr_t
)&iph1
->index
, iph1
->remote
, iph1
->local
);
128 /* make ID payload into isakmp status */
129 if (ipsecdoi_setid1(iph1
) < 0)
132 /* create SA payload for my proposal */
133 iph1
->sa
= ipsecdoi_setph1proposal(iph1
->rmconf
->proposal
);
134 if (iph1
->sa
== NULL
)
137 /* consistency check of proposals */
138 if (iph1
->rmconf
->dhgrp
== NULL
) {
139 plog(LLV_ERROR
, LOCATION
, NULL
,
140 "configuration failure about DH group.\n");
144 /* generate DH public value */
145 if (oakley_dh_generate(iph1
->rmconf
->dhgrp
,
146 &iph1
->dhpub
, &iph1
->dhpriv
) < 0)
149 /* generate NONCE value */
150 iph1
->nonce
= eay_set_random(iph1
->rmconf
->nonce_size
);
151 if (iph1
->nonce
== NULL
)
155 vid_natt_rfc
= set_vendorid(VENDORID_NATT_RFC
);
156 vid_natt_apple
= set_vendorid(VENDORID_NATT_APPLE
);
157 vid_natt_02
= set_vendorid(VENDORID_NATT_02
);
158 vid_natt_02N
= set_vendorid(VENDORID_NATT_02N
);
160 if (vid_natt_rfc
== NULL
||
161 vid_natt_apple
== NULL
||
162 vid_natt_02
== NULL
||
163 vid_natt_02N
== NULL
) {
164 plog(LLV_ERROR
, LOCATION
, NULL
,
165 "failed to get vendor ID buffer.\n");
171 #ifdef HAVE_SIGNING_C
172 /* create CR if need */
173 if (iph1
->rmconf
->send_cr
174 && oakley_needcr(iph1
->rmconf
->proposal
->authmethod
)
175 && iph1
->rmconf
->peerscertfile
== NULL
) {
177 cr
= oakley_getcr(iph1
);
179 plog(LLV_ERROR
, LOCATION
, NULL
,
180 "failed to get cr buffer.\n");
185 plog(LLV_DEBUG
, LOCATION
, NULL
, "authmethod is %s\n",
186 s_oakley_attr_method(iph1
->rmconf
->proposal
->authmethod
));
187 /* create buffer to send isakmp payload */
188 tlen
= sizeof(struct isakmp
)
189 + sizeof(*gen
) + iph1
->sa
->l
190 + sizeof(*gen
) + iph1
->dhpub
->l
191 + sizeof(*gen
) + iph1
->nonce
->l
192 + sizeof(*gen
) + iph1
->id
->l
;
194 tlen
+= sizeof(*gen
) + cr
->l
;
196 if (iph1
->rmconf
->proposal
->authmethod
==
197 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
) {
198 gssapi_get_itoken(iph1
, &len
);
199 tlen
+= sizeof (*gen
) + len
;
203 tlen
+= sizeof(*gen
) + vid_natt_rfc
->l
;
204 tlen
+= sizeof(*gen
) + vid_natt_apple
->l
;
205 tlen
+= sizeof(*gen
) + vid_natt_02
->l
;
206 tlen
+= sizeof(*gen
) + vid_natt_02N
->l
;
209 iph1
->sendbuf
= vmalloc(tlen
);
210 if (iph1
->sendbuf
== NULL
) {
211 plog(LLV_ERROR
, LOCATION
, NULL
,
212 "failed to get buffer to send.\n");
216 /* set isakmp header */
217 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_SA
);
221 /* set SA payload to propose */
222 p
= set_isakmp_payload(p
, iph1
->sa
, ISAKMP_NPTYPE_KE
);
224 /* create isakmp KE payload */
225 p
= set_isakmp_payload(p
, iph1
->dhpub
, ISAKMP_NPTYPE_NONCE
);
227 /* create isakmp NONCE payload */
228 p
= set_isakmp_payload(p
, iph1
->nonce
, ISAKMP_NPTYPE_ID
);
230 /* create isakmp ID payload */
232 if (iph1
->rmconf
->proposal
->authmethod
==
233 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
)
234 nptype
= ISAKMP_NPTYPE_GSS
;
238 nptype
= ISAKMP_NPTYPE_CR
;
240 nptype
= vid_natt_rfc
? ISAKMP_NPTYPE_VID
: ISAKMP_NPTYPE_NONE
;
242 p
= set_isakmp_payload(p
, iph1
->id
, nptype
);
245 if (iph1
->rmconf
->proposal
->authmethod
==
246 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
) {
247 gssapi_get_token_to_send(iph1
, &gsstoken
);
248 p
= set_isakmp_payload(p
, gsstoken
, vid_natt_rfc
? ISAKMP_NPTYPE_VID
: ISAKMP_NPTYPE_NONE
);
252 /* create isakmp CR payload */
253 p
= set_isakmp_payload(p
, cr
, vid_natt_rfc
? ISAKMP_NPTYPE_VID
: ISAKMP_NPTYPE_NONE
);
256 p
= set_isakmp_payload(p
, vid_natt_rfc
, ISAKMP_NPTYPE_VID
);
257 p
= set_isakmp_payload(p
, vid_natt_apple
, ISAKMP_NPTYPE_VID
);
258 p
= set_isakmp_payload(p
, vid_natt_02
, ISAKMP_NPTYPE_VID
);
259 p
= set_isakmp_payload(p
, vid_natt_02N
, ISAKMP_NPTYPE_NONE
);
262 #ifdef HAVE_PRINT_ISAKMP_C
263 isakmp_printpacket(iph1
->sendbuf
, iph1
->local
, iph1
->remote
, 0);
266 /* send the packet, add to the schedule to resend */
267 iph1
->retry_counter
= iph1
->rmconf
->retry_counter
;
268 if (isakmp_ph1resend(iph1
) == -1)
271 iph1
->status
= PHASE1ST_MSG1SENT
;
283 vfree(vid_natt_apple
);
293 * receive from responder
294 * psk: HDR, SA, KE, Nr, IDr1, HASH_R
295 * sig: HDR, SA, KE, Nr, IDr1, [ CR, ] [ CERT, ] SIG_R
296 * gssapi: HDR, SA, KE, Nr, IDr1, GSSr, HASH_R
297 * rsa: HDR, SA, KE, <IDr1_b>PubKey_i, <Nr_b>PubKey_i, HASH_R
298 * rev: HDR, SA, <Nr_b>PubKey_i, <KE_b>Ke_r, <IDir_b>Ke_r, HASH_R
301 agg_i2recv(iph1
, msg
)
302 struct ph1handle
*iph1
;
305 vchar_t
*pbuf
= NULL
;
306 struct isakmp_parse_t
*pa
;
307 vchar_t
*satmp
= NULL
;
310 vchar_t
*gsstoken
= NULL
;
314 if (iph1
->status
!= PHASE1ST_MSG1SENT
) {
315 plog(LLV_ERROR
, LOCATION
, NULL
,
316 "status mismatched %d.\n", iph1
->status
);
320 /* validate the type of next payload */
321 pbuf
= isakmp_parse(msg
);
324 pa
= (struct isakmp_parse_t
*)pbuf
->v
;
326 iph1
->pl_hash
= NULL
;
328 /* SA payload is fixed postion */
329 if (pa
->type
!= ISAKMP_NPTYPE_SA
) {
330 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
331 "received invalid next payload type %d, "
333 pa
->type
, ISAKMP_NPTYPE_SA
);
336 if (isakmp_p2ph(&satmp
, pa
->ptr
) < 0)
341 pa
->type
!= ISAKMP_NPTYPE_NONE
;
345 case ISAKMP_NPTYPE_KE
:
346 if (isakmp_p2ph(&iph1
->dhpub_p
, pa
->ptr
) < 0)
349 case ISAKMP_NPTYPE_NONCE
:
350 if (isakmp_p2ph(&iph1
->nonce_p
, pa
->ptr
) < 0)
353 case ISAKMP_NPTYPE_ID
:
354 if (isakmp_p2ph(&iph1
->id_p
, pa
->ptr
) < 0)
357 case ISAKMP_NPTYPE_HASH
:
358 iph1
->pl_hash
= (struct isakmp_pl_hash
*)pa
->ptr
;
360 #ifdef HAVE_SIGNING_C
361 case ISAKMP_NPTYPE_CR
:
362 if (oakley_savecr(iph1
, pa
->ptr
) < 0)
365 case ISAKMP_NPTYPE_CERT
:
366 if (oakley_savecert(iph1
, pa
->ptr
) < 0)
369 case ISAKMP_NPTYPE_SIG
:
370 if (isakmp_p2ph(&iph1
->sig_p
, pa
->ptr
) < 0)
374 case ISAKMP_NPTYPE_VID
:
377 int vid
= check_vendorid(pa
->ptr
);
379 if (vid
== VENDORID_NATT_RFC
)
380 iph1
->natt_flags
|= natt_type_rfc
;
381 else if (vid
== VENDORID_NATT_APPLE
)
382 iph1
->natt_flags
|= natt_type_apple
;
383 else if (vid
== VENDORID_NATT_02
)
384 iph1
->natt_flags
|= natt_type_02
;
385 else if (vid
== VENDORID_NATT_02N
)
386 iph1
->natt_flags
|= natt_type_02N
;
390 case ISAKMP_NPTYPE_N
:
391 isakmp_check_notify(pa
->ptr
, iph1
);
394 case ISAKMP_NPTYPE_GSS
:
395 if (isakmp_p2ph(&gsstoken
, pa
->ptr
) < 0)
397 gssapi_save_received_token(iph1
, gsstoken
);
400 case ISAKMP_NPTYPE_NATD_RFC
:
401 case ISAKMP_NPTYPE_NATD_DRAFT
:
402 case ISAKMP_NPTYPE_NATD_BADDRAFT
:
404 * ignored for now, we need to know the hash
405 * algorithm before we can evaluate the natd
410 /* don't send information, see isakmp_ident_r1() */
411 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
412 "ignore the packet, "
413 "received unexpecting payload type %d.\n",
419 /* if natt vid(s) received - select type to use */
420 natt_select_type(iph1
);
422 /* payload existency check */
423 if (iph1
->dhpub_p
== NULL
|| iph1
->nonce_p
== NULL
) {
424 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
425 "required payloads missing from isakmp message.\n");
429 /* verify identifier */
430 if (ipsecdoi_checkid1(iph1
) != 0) {
431 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
432 "invalid ID payload.\n");
436 /* check SA payload and set approval SA for use */
437 if (ipsecdoi_checkph1proposal(satmp
, iph1
) < 0) {
438 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
439 "failed to get valid proposal.\n");
440 /* XXX send information */
448 /* fix isakmp index */
449 memcpy(&iph1
->index
.r_ck
, &((struct isakmp
*)msg
->v
)->r_ck
,
455 /* check natd payloads */
456 for (pa
= (struct isakmp_parse_t
*)pbuf
->v
;
457 pa
->type
!= ISAKMP_NPTYPE_NONE
;
460 if (pa
->type
== iph1
->natd_payload_type
) {
461 natd_match_t match
= natd_matches(iph1
, pa
->ptr
);
462 iph1
->natt_flags
|= natt_natd_received
;
463 if ((match
& natd_match_local
) != 0)
464 iph1
->natt_flags
|= natt_no_local_nat
;
465 if ((match
& natd_match_remote
) != 0)
466 iph1
->natt_flags
|= natt_no_remote_nat
;
471 /* compute sharing secret of DH */
472 if (oakley_dh_compute(iph1
->rmconf
->dhgrp
, iph1
->dhpub
,
473 iph1
->dhpriv
, iph1
->dhpub_p
, &iph1
->dhgxy
) < 0)
476 /* generate SKEYIDs & IV & final cipher key */
477 if (oakley_skeyid(iph1
) < 0)
479 if (oakley_skeyid_dae(iph1
) < 0)
481 if (oakley_compute_enckey(iph1
) < 0)
483 if (oakley_newiv(iph1
) < 0)
487 /* Determine if we need to switch to port 4500 */
488 if (natd_hasnat(iph1
))
490 /* There is a NAT between us! Switch to port 4500. */
491 if (iph1
->remote
->sa_family
== AF_INET
)
493 struct sockaddr_in
*sin
= (struct sockaddr_in
*)iph1
->remote
;
494 plog(LLV_INFO
, LOCATION
, NULL
,
495 "detected NAT, switching to port %d for %s",
496 PORT_ISAKMP_NATT
, saddr2str(iph1
->remote
));
497 sin
->sin_port
= htons(PORT_ISAKMP_NATT
);
498 sin
= (struct sockaddr_in
*)iph1
->local
;
499 sin
->sin_port
= htons(PORT_ISAKMP_NATT
);
504 /* validate authentication value */
507 type
= oakley_validate_auth(iph1
);
510 /* message printed inner oakley_validate_auth() */
513 isakmp_info_send_n1(iph1
, type
, NULL
);
518 #ifdef HAVE_SIGNING_C
519 if (oakley_checkcr(iph1
) < 0) {
520 /* Ignore this error in order to be interoperability. */
525 /* change status of isakmp status entry */
526 iph1
->status
= PHASE1ST_MSG2RECEIVED
;
536 VPTRINIT(iph1
->dhpub_p
);
537 VPTRINIT(iph1
->nonce_p
);
538 VPTRINIT(iph1
->id_p
);
539 oakley_delcert(iph1
->cert_p
);
541 oakley_delcert(iph1
->crl_p
);
543 VPTRINIT(iph1
->sig_p
);
544 oakley_delcert(iph1
->cr_p
);
554 * gssapi: HDR, HASH_I
555 * sig: HDR, [ CERT, ] SIG_I
560 agg_i2send(iph1
, msg
)
561 struct ph1handle
*iph1
;
564 struct isakmp_gen
*gen
;
569 vchar_t
*gsshash
= NULL
;
573 if (iph1
->status
!= PHASE1ST_MSG2RECEIVED
) {
574 plog(LLV_ERROR
, LOCATION
, NULL
,
575 "status mismatched %d.\n", iph1
->status
);
579 /* generate HASH to send */
580 plog(LLV_DEBUG
, LOCATION
, NULL
, "generate HASH_I\n");
581 iph1
->hash
= oakley_ph1hash_common(iph1
, GENERATE
);
582 if (iph1
->hash
== NULL
) {
584 if (gssapi_more_tokens(iph1
))
585 isakmp_info_send_n1(iph1
,
586 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE
, NULL
);
591 tlen
= sizeof(struct isakmp
);
594 if ((iph1
->natt_flags
& NATT_TYPE_MASK
) != 0) {
595 natd_type
= iph1
->natd_payload_type
;
597 if (iph1
->local_natd
)
598 tlen
+= sizeof(*gen
) + iph1
->local_natd
->l
;
599 if (iph1
->remote_natd
)
600 tlen
+= sizeof(*gen
) + iph1
->remote_natd
->l
;
604 switch (iph1
->approval
->authmethod
) {
605 case OAKLEY_ATTR_AUTH_METHOD_PSKEY
:
606 tlen
+= sizeof(*gen
) + iph1
->hash
->l
;
608 iph1
->sendbuf
= vmalloc(tlen
);
609 if (iph1
->sendbuf
== NULL
) {
610 plog(LLV_ERROR
, LOCATION
, NULL
,
611 "failed to get buffer to send.\n");
615 /* set isakmp header */
616 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_HASH
);
620 /* set HASH payload */
621 p
= set_isakmp_payload(p
, iph1
->hash
,
622 natd_type
? natd_type
623 : ISAKMP_NPTYPE_NONE
);
625 #ifdef HAVE_SIGNING_C
626 case OAKLEY_ATTR_AUTH_METHOD_DSSSIG
:
627 case OAKLEY_ATTR_AUTH_METHOD_RSASIG
:
628 /* XXX if there is CR or not ? */
630 if (oakley_getmycert(iph1
) < 0)
633 if (oakley_getsign(iph1
) < 0)
636 if (iph1
->cert
!= NULL
&& iph1
->rmconf
->send_cert
)
639 tlen
+= sizeof(*gen
) + iph1
->sig
->l
;
641 tlen
+= sizeof(*gen
) + iph1
->cert
->pl
->l
;
643 iph1
->sendbuf
= vmalloc(tlen
);
644 if (iph1
->sendbuf
== NULL
) {
645 plog(LLV_ERROR
, LOCATION
, NULL
,
646 "failed to get buffer to send.\n");
650 /* set isakmp header */
651 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, need_cert
653 : ISAKMP_NPTYPE_SIG
);
657 /* add CERT payload if there */
659 p
= set_isakmp_payload(p
, iph1
->cert
->pl
, ISAKMP_NPTYPE_SIG
);
660 /* add SIG payload */
661 p
= set_isakmp_payload(p
, iph1
->sig
,
662 natd_type
? natd_type
663 : ISAKMP_NPTYPE_NONE
);
666 case OAKLEY_ATTR_AUTH_METHOD_RSAENC
:
667 case OAKLEY_ATTR_AUTH_METHOD_RSAREV
:
668 tlen
+= sizeof(*gen
) + iph1
->hash
->l
;
671 case OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
:
672 gsshash
= gssapi_wraphash(iph1
);
673 if (gsshash
== NULL
) {
674 plog(LLV_ERROR
, LOCATION
, NULL
,
675 "failed to wrap hash\n");
676 isakmp_info_send_n1(iph1
,
677 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE
, NULL
);
680 tlen
+= sizeof(*gen
) + gsshash
->l
;
682 iph1
->sendbuf
= vmalloc(tlen
);
683 if (iph1
->sendbuf
== NULL
) {
684 plog(LLV_ERROR
, LOCATION
, NULL
,
685 "failed to get buffer to send.\n");
688 /* set isakmp header */
689 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_HASH
);
692 p
= set_isakmp_payload(p
, gsshash
,
693 natd_type
? natd_type
694 : ISAKMP_NPTYPE_NONE
);
701 if ((iph1
->natt_flags
& NATT_TYPE_MASK
) == natt_type_apple
) {
702 if (iph1
->local_natd
)
703 p
= set_isakmp_payload(p
, iph1
->local_natd
, natd_type
);
704 if (iph1
->remote_natd
)
705 p
= set_isakmp_payload(p
, iph1
->remote_natd
, ISAKMP_NPTYPE_NONE
);
707 if (iph1
->remote_natd
)
708 p
= set_isakmp_payload(p
, iph1
->remote_natd
, natd_type
);
709 if (iph1
->local_natd
)
710 p
= set_isakmp_payload(p
, iph1
->local_natd
, ISAKMP_NPTYPE_NONE
);
715 #ifdef HAVE_PRINT_ISAKMP_C
716 isakmp_printpacket(iph1
->sendbuf
, iph1
->local
, iph1
->remote
, 0);
719 /* send to responder */
720 if (isakmp_send(iph1
, iph1
->sendbuf
) < 0)
723 /* the sending message is added to the received-list. */
724 if (add_recvdpkt(iph1
->remote
, iph1
->local
, iph1
->sendbuf
, msg
) == -1) {
725 plog(LLV_ERROR
, LOCATION
, NULL
,
726 "failed to add a response packet to the tree.\n");
730 /* set encryption flag */
731 iph1
->flags
|= ISAKMP_FLAG_E
;
733 iph1
->status
= PHASE1ST_ESTABLISHED
;
744 * receive from initiator
745 * psk: HDR, SA, KE, Ni, IDi1
746 * sig: HDR, SA, KE, Ni, IDi1 [, CR ]
747 * gssapi: HDR, SA, KE, Ni, IDi1 , GSSi
748 * rsa: HDR, SA, [ HASH(1),] KE, <IDi1_b>Pubkey_r, <Ni_b>Pubkey_r
749 * rev: HDR, SA, [ HASH(1),] <Ni_b>Pubkey_r, <KE_b>Ke_i,
750 * <IDii_b>Ke_i [, <Cert-I_b>Ke_i ]
753 agg_r1recv(iph1
, msg
)
754 struct ph1handle
*iph1
;
758 vchar_t
*pbuf
= NULL
;
759 struct isakmp_parse_t
*pa
;
761 vchar_t
*gsstoken
= NULL
;
765 if (iph1
->status
!= PHASE1ST_START
) {
766 plog(LLV_ERROR
, LOCATION
, NULL
,
767 "status mismatched %d.\n", iph1
->status
);
771 /* validate the type of next payload */
772 pbuf
= isakmp_parse(msg
);
775 pa
= (struct isakmp_parse_t
*)pbuf
->v
;
777 /* SA payload is fixed postion */
778 if (pa
->type
!= ISAKMP_NPTYPE_SA
) {
779 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
780 "received invalid next payload type %d, "
782 pa
->type
, ISAKMP_NPTYPE_SA
);
785 if (isakmp_p2ph(&iph1
->sa
, pa
->ptr
) < 0)
790 pa
->type
!= ISAKMP_NPTYPE_NONE
;
793 plog(LLV_DEBUG
, LOCATION
, NULL
,
794 "received payload of type %s\n",
795 s_isakmp_nptype(pa
->type
));
798 case ISAKMP_NPTYPE_KE
:
799 if (isakmp_p2ph(&iph1
->dhpub_p
, pa
->ptr
) < 0)
802 case ISAKMP_NPTYPE_NONCE
:
803 if (isakmp_p2ph(&iph1
->nonce_p
, pa
->ptr
) < 0)
806 case ISAKMP_NPTYPE_ID
:
807 if (isakmp_p2ph(&iph1
->id_p
, pa
->ptr
) < 0)
810 case ISAKMP_NPTYPE_VID
:
813 int vid
= check_vendorid(pa
->ptr
);
815 if (vid
== VENDORID_NATT_RFC
)
816 iph1
->natt_flags
|= natt_type_rfc
;
817 else if (vid
== VENDORID_NATT_APPLE
)
818 iph1
->natt_flags
|= natt_type_apple
;
819 else if (vid
== VENDORID_NATT_02
)
820 iph1
->natt_flags
|= natt_type_02
;
821 else if (vid
== VENDORID_NATT_02N
)
822 iph1
->natt_flags
|= natt_type_02N
;
826 #ifdef HAVE_SIGNING_C
827 case ISAKMP_NPTYPE_CR
:
828 if (oakley_savecr(iph1
, pa
->ptr
) < 0)
833 case ISAKMP_NPTYPE_GSS
:
834 if (isakmp_p2ph(&gsstoken
, pa
->ptr
) < 0)
836 gssapi_save_received_token(iph1
, gsstoken
);
840 /* don't send information, see isakmp_ident_r1() */
841 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
842 "ignore the packet, "
843 "received unexpecting payload type %d.\n",
849 /* payload existency check */
850 if (iph1
->dhpub_p
== NULL
|| iph1
->nonce_p
== NULL
) {
851 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
852 "required payloads missing from isakmp message.\n");
856 /* verify identifier */
857 if (ipsecdoi_checkid1(iph1
) != 0) {
858 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
859 "invalid ID payload.\n");
863 /* check SA payload and set approval SA for use */
864 if (ipsecdoi_checkph1proposal(iph1
->sa
, iph1
) < 0) {
865 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
866 "failed to get valid proposal.\n");
867 /* XXX send information */
872 /* if natt vid(s) received - select type to use */
873 natt_select_type(iph1
);
876 #ifdef HAVE_SIGNING_C
877 if (oakley_checkcr(iph1
) < 0) {
878 /* Ignore this error in order to be interoperability. */
883 iph1
->status
= PHASE1ST_MSG1RECEIVED
;
892 VPTRINIT(iph1
->dhpub_p
);
893 VPTRINIT(iph1
->nonce_p
);
894 VPTRINIT(iph1
->id_p
);
895 oakley_delcert(iph1
->cr_p
);
904 * psk: HDR, SA, KE, Nr, IDr1, HASH_R
905 * sig: HDR, SA, KE, Nr, IDr1, [ CR, ] [ CERT, ] SIG_R
906 * gssapi: HDR, SA, KE, Nr, IDr1, GSSr, HASH_R
907 * rsa: HDR, SA, KE, <IDr1_b>PubKey_i, <Nr_b>PubKey_i, HASH_R
908 * rev: HDR, SA, <Nr_b>PubKey_i, <KE_b>Ke_r, <IDir_b>Ke_r, HASH_R
911 agg_r1send(iph1
, msg
)
912 struct ph1handle
*iph1
;
915 struct isakmp_gen
*gen
;
925 vchar_t
*gsstoken
= NULL
, *gsshash
= NULL
;
926 vchar_t
*gss_sa
= NULL
;
928 vchar_t
*nattvid
= NULL
;
931 if (iph1
->status
!= PHASE1ST_MSG1RECEIVED
) {
932 plog(LLV_ERROR
, LOCATION
, NULL
,
933 "status mismatched %d.\n", iph1
->status
);
937 /* set responder's cookie */
938 isakmp_newcookie((caddr_t
)&iph1
->index
.r_ck
, iph1
->remote
, iph1
->local
);
940 /* make ID payload into isakmp status */
941 if (ipsecdoi_setid1(iph1
) < 0)
944 /* generate DH public value */
945 if (oakley_dh_generate(iph1
->rmconf
->dhgrp
,
946 &iph1
->dhpub
, &iph1
->dhpriv
) < 0)
949 /* generate NONCE value */
950 iph1
->nonce
= eay_set_random(iph1
->rmconf
->nonce_size
);
951 if (iph1
->nonce
== NULL
)
954 /* compute sharing secret of DH */
955 if (oakley_dh_compute(iph1
->approval
->dhgrp
, iph1
->dhpub
,
956 iph1
->dhpriv
, iph1
->dhpub_p
, &iph1
->dhgxy
) < 0)
959 /* generate SKEYIDs & IV & final cipher key */
960 if (oakley_skeyid(iph1
) < 0)
962 if (oakley_skeyid_dae(iph1
) < 0)
964 if (oakley_compute_enckey(iph1
) < 0)
966 if (oakley_newiv(iph1
) < 0)
970 if (iph1
->rmconf
->proposal
->authmethod
==
971 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
)
972 gssapi_get_rtoken(iph1
, &gsslen
);
975 /* generate HASH to send */
976 plog(LLV_DEBUG
, LOCATION
, NULL
, "generate HASH_R\n");
977 iph1
->hash
= oakley_ph1hash_common(iph1
, GENERATE
);
978 if (iph1
->hash
== NULL
) {
980 if (gssapi_more_tokens(iph1
))
981 isakmp_info_send_n1(iph1
,
982 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE
, NULL
);
987 #ifdef HAVE_SIGNING_C
988 /* create CR if need */
989 if (iph1
->rmconf
->send_cr
990 && oakley_needcr(iph1
->approval
->authmethod
)
991 && iph1
->rmconf
->peerscertfile
== NULL
) {
993 cr
= oakley_getcr(iph1
);
995 plog(LLV_ERROR
, LOCATION
, NULL
,
996 "failed to get cr buffer.\n");
1002 tlen
= sizeof(struct isakmp
);
1005 if ((iph1
->natt_flags
& NATT_TYPE_MASK
) != 0) {
1007 int natt_type
= iph1
->natt_flags
& NATT_TYPE_MASK
;
1008 if (natt_type
== natt_type_rfc
)
1009 vid_type
= VENDORID_NATT_RFC
;
1010 else if (natt_type
== natt_type_apple
)
1011 vid_type
= VENDORID_NATT_APPLE
;
1012 else if (natt_type
== natt_type_02
)
1013 vid_type
= VENDORID_NATT_02
;
1015 vid_type
= VENDORID_NATT_02N
;
1016 nattvid
= set_vendorid(vid_type
);
1019 tlen
+= sizeof(*gen
) + nattvid
->l
;
1020 if (iph1
->local_natd
)
1021 tlen
+= sizeof(*gen
) + iph1
->local_natd
->l
;
1022 if (iph1
->remote_natd
)
1023 tlen
+= sizeof(*gen
) + iph1
->remote_natd
->l
;
1028 switch (iph1
->approval
->authmethod
) {
1029 case OAKLEY_ATTR_AUTH_METHOD_PSKEY
:
1030 /* create buffer to send isakmp payload */
1031 tlen
+= sizeof(*gen
) + iph1
->sa_ret
->l
1032 + sizeof(*gen
) + iph1
->dhpub
->l
1033 + sizeof(*gen
) + iph1
->nonce
->l
1034 + sizeof(*gen
) + iph1
->id
->l
1035 + sizeof(*gen
) + iph1
->hash
->l
;
1036 if ((vid
= set_vendorid(iph1
->approval
->vendorid
)) != NULL
)
1037 tlen
+= sizeof(*gen
) + vid
->l
;
1039 tlen
+= sizeof(*gen
) + cr
->l
;
1041 iph1
->sendbuf
= vmalloc(tlen
);
1042 if (iph1
->sendbuf
== NULL
) {
1043 plog(LLV_ERROR
, LOCATION
, NULL
,
1044 "failed to get buffer to send\n");
1048 /* set isakmp header */
1049 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_SA
);
1053 /* set SA payload to reply */
1054 p
= set_isakmp_payload(p
, iph1
->sa_ret
, ISAKMP_NPTYPE_KE
);
1056 /* create isakmp KE payload */
1057 p
= set_isakmp_payload(p
, iph1
->dhpub
, ISAKMP_NPTYPE_NONCE
);
1059 /* create isakmp NONCE payload */
1060 p
= set_isakmp_payload(p
, iph1
->nonce
, ISAKMP_NPTYPE_ID
);
1062 /* create isakmp ID payload */
1063 p
= set_isakmp_payload(p
, iph1
->id
, ISAKMP_NPTYPE_HASH
);
1065 /* create isakmp HASH payload */
1066 p
= set_isakmp_payload(p
, iph1
->hash
,
1067 vid
? ISAKMP_NPTYPE_VID
1068 : (need_cr
? ISAKMP_NPTYPE_CR
1069 : (nattvid
? ISAKMP_NPTYPE_VID
1070 : ISAKMP_NPTYPE_NONE
)));
1072 /* append vendor id, if needed */
1074 p
= set_isakmp_payload(p
, vid
,
1075 need_cr
? ISAKMP_NPTYPE_CR
1076 : (nattvid
? ISAKMP_NPTYPE_VID
1077 : ISAKMP_NPTYPE_NONE
));
1079 /* create isakmp CR payload if needed */
1081 p
= set_isakmp_payload(p
, cr
,
1082 nattvid
? ISAKMP_NPTYPE_VID
1083 : ISAKMP_NPTYPE_NONE
);
1085 #ifdef HAVE_SIGNING_C
1086 case OAKLEY_ATTR_AUTH_METHOD_DSSSIG
:
1087 case OAKLEY_ATTR_AUTH_METHOD_RSASIG
:
1088 /* XXX if there is CR or not ? */
1090 if (oakley_getmycert(iph1
) < 0)
1093 if (oakley_getsign(iph1
) < 0)
1096 if (iph1
->cert
!= NULL
&& iph1
->rmconf
->send_cert
)
1099 tlen
+= sizeof(*gen
) + iph1
->sa_ret
->l
1100 + sizeof(*gen
) + iph1
->dhpub
->l
1101 + sizeof(*gen
) + iph1
->nonce
->l
1102 + sizeof(*gen
) + iph1
->id
->l
1103 + sizeof(*gen
) + iph1
->sig
->l
;
1105 tlen
+= sizeof(*gen
) + iph1
->cert
->pl
->l
;
1106 if ((vid
= set_vendorid(iph1
->approval
->vendorid
)) != NULL
)
1107 tlen
+= sizeof(*gen
) + vid
->l
;
1109 tlen
+= sizeof(*gen
) + cr
->l
;
1111 iph1
->sendbuf
= vmalloc(tlen
);
1112 if (iph1
->sendbuf
== NULL
) {
1113 plog(LLV_ERROR
, LOCATION
, NULL
,
1114 "failed to get buffer to send.\n");
1118 /* set isakmp header */
1119 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_SA
);
1123 /* set SA payload to reply */
1124 p
= set_isakmp_payload(p
, iph1
->sa_ret
, ISAKMP_NPTYPE_KE
);
1126 /* create isakmp KE payload */
1127 p
= set_isakmp_payload(p
, iph1
->dhpub
, ISAKMP_NPTYPE_NONCE
);
1129 /* create isakmp NONCE payload */
1130 p
= set_isakmp_payload(p
, iph1
->nonce
, ISAKMP_NPTYPE_ID
);
1132 /* add ID payload */
1133 p
= set_isakmp_payload(p
, iph1
->id
, need_cert
1134 ? ISAKMP_NPTYPE_CERT
1135 : ISAKMP_NPTYPE_SIG
);
1137 /* add CERT payload if there */
1139 p
= set_isakmp_payload(p
, iph1
->cert
->pl
, ISAKMP_NPTYPE_SIG
);
1140 /* add SIG payload */
1141 p
= set_isakmp_payload(p
, iph1
->sig
,
1142 vid
? ISAKMP_NPTYPE_VID
1143 : (need_cr
? ISAKMP_NPTYPE_CR
1144 : ISAKMP_NPTYPE_NONE
));
1146 /* append vendor id, if needed */
1148 p
= set_isakmp_payload(p
, vid
,
1149 need_cr
? ISAKMP_NPTYPE_CR
1150 : (nattvid
? ISAKMP_NPTYPE_VID
1151 : ISAKMP_NPTYPE_NONE
));
1153 /* create isakmp CR payload if needed */
1155 p
= set_isakmp_payload(p
, cr
,
1156 nattvid
? ISAKMP_NPTYPE_VID
1157 : ISAKMP_NPTYPE_NONE
);
1161 p
= set_isakmp_payload(p
, nattvid
, iph1
->natd_payload_type
);
1162 if ((iph1
->natt_flags
& NATT_TYPE_MASK
) == natt_type_apple
) {
1163 if (iph1
->local_natd
)
1164 p
= set_isakmp_payload(p
, iph1
->local_natd
, iph1
->natd_payload_type
);
1165 if (iph1
->remote_natd
)
1166 p
= set_isakmp_payload(p
, iph1
->remote_natd
, ISAKMP_NPTYPE_NONE
);
1168 if (iph1
->remote_natd
)
1169 p
= set_isakmp_payload(p
, iph1
->remote_natd
, iph1
->natd_payload_type
);
1170 if (iph1
->local_natd
)
1171 p
= set_isakmp_payload(p
, iph1
->local_natd
, ISAKMP_NPTYPE_NONE
);
1177 case OAKLEY_ATTR_AUTH_METHOD_RSAENC
:
1178 case OAKLEY_ATTR_AUTH_METHOD_RSAREV
:
1179 tlen
+= sizeof(*gen
) + iph1
->hash
->l
;
1182 case OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB
:
1183 /* create buffer to send isakmp payload */
1184 gsshash
= gssapi_wraphash(iph1
);
1185 if (gsshash
== NULL
) {
1186 plog(LLV_ERROR
, LOCATION
, NULL
,
1187 "failed to wrap hash\n");
1189 * This is probably due to the GSS roundtrips not
1190 * being finished yet. Return this error in
1191 * the hope that a fallback to main mode will
1194 isakmp_info_send_n1(iph1
,
1195 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE
, NULL
);
1198 if (iph1
->approval
->gssid
!= NULL
)
1199 gss_sa
= ipsecdoi_setph1proposal(iph1
->approval
);
1201 gss_sa
= iph1
->sa_ret
;
1203 tlen
+= sizeof(*gen
) + gss_sa
->l
1204 + sizeof(*gen
) + iph1
->dhpub
->l
1205 + sizeof(*gen
) + iph1
->nonce
->l
1206 + sizeof(*gen
) + iph1
->id
->l
1207 + sizeof(*gen
) + gsslen
1208 + sizeof(*gen
) + gsshash
->l
;
1209 if ((vid
= set_vendorid(iph1
->approval
->vendorid
)) != NULL
)
1210 tlen
+= sizeof(*gen
) + vid
->l
;
1211 iph1
->sendbuf
= vmalloc(tlen
);
1212 if (iph1
->sendbuf
== NULL
) {
1213 plog(LLV_ERROR
, LOCATION
, NULL
,
1214 "failed to get buffer to send\n");
1218 /* set isakmp header */
1219 p
= set_isakmp_header(iph1
->sendbuf
, iph1
, ISAKMP_NPTYPE_SA
);
1223 /* set SA payload to reply */
1224 p
= set_isakmp_payload(p
, gss_sa
, ISAKMP_NPTYPE_KE
);
1226 /* create isakmp KE payload */
1227 p
= set_isakmp_payload(p
, iph1
->dhpub
, ISAKMP_NPTYPE_NONCE
);
1229 /* create isakmp NONCE payload */
1230 p
= set_isakmp_payload(p
, iph1
->nonce
, ISAKMP_NPTYPE_ID
);
1232 /* create isakmp ID payload */
1233 p
= set_isakmp_payload(p
, iph1
->id
, ISAKMP_NPTYPE_GSS
);
1235 /* create GSS payload */
1236 gssapi_get_token_to_send(iph1
, &gsstoken
);
1237 p
= set_isakmp_payload(p
, gsstoken
, ISAKMP_NPTYPE_HASH
);
1239 /* create isakmp HASH payload */
1240 p
= set_isakmp_payload(p
, gsshash
,
1241 vid
!= NULL
|| nattvid
!= NULL
? ISAKMP_NPTYPE_VID
1242 : ISAKMP_NPTYPE_NONE
);
1244 /* append vendor id, if needed */
1246 p
= set_isakmp_payload(p
, vid
,
1247 nattvid
!= NULL
? ISAKMP_NPTYPE_VID
1248 : ISAKMP_NPTYPE_NONE
);
1255 p
= set_isakmp_payload(p
, nattvid
, iph1
->natd_payload_type
);
1256 if ((iph1
->natt_flags
& NATT_TYPE_MASK
) == natt_type_apple
) {
1257 if (iph1
->local_natd
)
1258 p
= set_isakmp_payload(p
, iph1
->local_natd
, iph1
->natd_payload_type
);
1259 if (iph1
->remote_natd
)
1260 p
= set_isakmp_payload(p
, iph1
->remote_natd
, ISAKMP_NPTYPE_NONE
);
1262 if (iph1
->remote_natd
)
1263 p
= set_isakmp_payload(p
, iph1
->remote_natd
, iph1
->natd_payload_type
);
1264 if (iph1
->local_natd
)
1265 p
= set_isakmp_payload(p
, iph1
->local_natd
, ISAKMP_NPTYPE_NONE
);
1271 #ifdef HAVE_PRINT_ISAKMP_C
1272 isakmp_printpacket(iph1
->sendbuf
, iph1
->local
, iph1
->remote
, 1);
1275 /* send the packet, add to the schedule to resend */
1276 iph1
->retry_counter
= iph1
->rmconf
->retry_counter
;
1277 if (isakmp_ph1resend(iph1
) == -1)
1280 /* the sending message is added to the received-list. */
1281 if (add_recvdpkt(iph1
->remote
, iph1
->local
, iph1
->sendbuf
, msg
) == -1) {
1282 plog(LLV_ERROR
, LOCATION
, NULL
,
1283 "failed to add a response packet to the tree.\n");
1287 iph1
->status
= PHASE1ST_MSG1SENT
;
1303 if (gss_sa
!= iph1
->sa_ret
)
1311 * receive from initiator
1313 * gssapi: HDR, HASH_I
1314 * sig: HDR, [ CERT, ] SIG_I
1319 agg_r2recv(iph1
, msg0
)
1320 struct ph1handle
*iph1
;
1323 vchar_t
*msg
= NULL
;
1324 vchar_t
*pbuf
= NULL
;
1325 struct isakmp_parse_t
*pa
;
1328 /* validity check */
1329 if (iph1
->status
!= PHASE1ST_MSG1SENT
) {
1330 plog(LLV_ERROR
, LOCATION
, NULL
,
1331 "status mismatched %d.\n", iph1
->status
);
1335 /* decrypting if need. */
1336 /* XXX configurable ? */
1337 if (ISSET(((struct isakmp
*)msg0
->v
)->flags
, ISAKMP_FLAG_E
)) {
1338 msg
= oakley_do_decrypt(iph1
, msg0
,
1339 iph1
->ivm
->iv
, iph1
->ivm
->ive
);
1345 /* validate the type of next payload */
1346 pbuf
= isakmp_parse(msg
);
1350 iph1
->pl_hash
= NULL
;
1352 for (pa
= (struct isakmp_parse_t
*)pbuf
->v
;
1353 pa
->type
!= ISAKMP_NPTYPE_NONE
;
1357 case ISAKMP_NPTYPE_HASH
:
1358 iph1
->pl_hash
= (struct isakmp_pl_hash
*)pa
->ptr
;
1360 case ISAKMP_NPTYPE_VID
:
1361 (void)check_vendorid(pa
->ptr
);
1363 #ifdef HAVE_SIGNING_C
1364 case ISAKMP_NPTYPE_CERT
:
1365 if (oakley_savecert(iph1
, pa
->ptr
) < 0)
1368 case ISAKMP_NPTYPE_SIG
:
1369 if (isakmp_p2ph(&iph1
->sig_p
, pa
->ptr
) < 0)
1373 case ISAKMP_NPTYPE_N
:
1374 isakmp_check_notify(pa
->ptr
, iph1
);
1376 case ISAKMP_NPTYPE_NATD_RFC
:
1377 case ISAKMP_NPTYPE_NATD_DRAFT
:
1378 case ISAKMP_NPTYPE_NATD_BADDRAFT
:
1380 if (pa
->type
== iph1
->natd_payload_type
) {
1381 natd_match_t match
= natd_matches(iph1
, pa
->ptr
);
1382 iph1
->natt_flags
|= natt_natd_received
;
1383 if ((match
& natd_match_local
) != 0)
1384 iph1
->natt_flags
|= natt_no_local_nat
;
1385 if ((match
& natd_match_remote
) != 0)
1386 iph1
->natt_flags
|= natt_no_remote_nat
;
1391 /* don't send information, see isakmp_ident_r1() */
1392 plog(LLV_ERROR
, LOCATION
, iph1
->remote
,
1393 "ignore the packet, "
1394 "received unexpecting payload type %d.\n",
1400 /* validate authentication value */
1403 type
= oakley_validate_auth(iph1
);
1406 /* message printed inner oakley_validate_auth() */
1409 isakmp_info_send_n1(iph1
, type
, NULL
);
1414 iph1
->status
= PHASE1ST_MSG2RECEIVED
;
1424 oakley_delcert(iph1
->cert_p
);
1425 iph1
->cert_p
= NULL
;
1426 oakley_delcert(iph1
->crl_p
);
1428 VPTRINIT(iph1
->sig_p
);
1435 * status update and establish isakmp sa.
1438 agg_r2send(iph1
, msg
)
1439 struct ph1handle
*iph1
;
1444 /* validity check */
1445 if (iph1
->status
!= PHASE1ST_MSG2RECEIVED
) {
1446 plog(LLV_ERROR
, LOCATION
, NULL
,
1447 "status mismatched %d.\n", iph1
->status
);
1451 /* IV synchronized when packet encrypted. */
1452 /* see handler.h about IV synchronization. */
1453 if (ISSET(((struct isakmp
*)msg
->v
)->flags
, ISAKMP_FLAG_E
))
1454 memcpy(iph1
->ivm
->iv
->v
, iph1
->ivm
->ive
->v
, iph1
->ivm
->iv
->l
);
1456 /* set encryption flag */
1457 iph1
->flags
|= ISAKMP_FLAG_E
;
1459 iph1
->status
= PHASE1ST_ESTABLISHED
;