| blob | 89d1f3e14128c7b0c562a728330d890932d16e97 |
1 #include <linux/types.h>
2 #include <linux/slab.h>
3 #include <linux/jiffies.h>
4 #include <linux/sunrpc/gss_krb5.h>
5 #include <linux/random.h>
6 #include <linux/pagemap.h>
7 #include <asm/scatterlist.h>
8 #include <linux/crypto.h>
10 #ifdef RPC_DEBUG
11 # define RPCDBG_FACILITY RPCDBG_AUTH
12 #endif
16 {
17 /* Most of the code is block-size independent but currently we
18 * use only 8: */
21 }
25 {
32 else
38 }
42 {
44 u8 pad;
68 out:
69 /* XXX: NOTE: we do not adjust the page lengths--they represent
70 * a range of data in the real filesystem page cache, and we need
71 * to know that range so the xdr code can properly place read data.
72 * However adjusting the head length, as we do above, is harmless.
73 * In the case of a request that fits into a single page, the server
74 * also uses length and head length together to determine the original
75 * start of the request to copy the request for deferal; so it's
76 * easier on the server if we adjust head and tail length in tandem.
77 * It's not really a problem that we don't fool with the page and
78 * tail lengths, though--at worst badly formed xdr might lead the
79 * server to attempt to parse the padding.
80 * XXX: Document all these weird requirements for gss mechanism
81 * wrap/unwrap functions. */
86 else
89 }
93 {
97 /* rfc1964 claims this should be "random". But all that's really
98 * necessary is that it be unique. And not even that is necessary in
99 * our case since our "gssapi" implementation exists only to support
100 * rpcsec_gss, so we know that the only buffers we will ever encrypt
101 * already begin with a unique sequence number. Just to hedge my bets
102 * I'll make a half-hearted attempt at something unique, but ensuring
103 * uniqueness would mean worrying about atomicity and rollover, and I
104 * don't care enough. */
108 }
110 /* Assumptions: the head and tail of inbuf are ours to play with.
111 * The pages, however, may be real pages in the page cache and we replace
112 * them with scratch pages from **pages before writing to them. */
113 /* XXX: obviously the above should be documentation of wrap interface,
114 * and shouldn't be in this kerberos-specific file. */
116 /* XXX factor out common code with seal/unseal. */
118 u32
121 {
123 s32 checksum_type;
128 s32 now;
131 u32 seq_send;
145 }
150 }
161 /* shift data to make room for header. */
162 /* XXX Would be cleverer to encrypt while copying. */
163 /* XXX bounds checking, slack, etc. */
175 /* ptr now at byte 2 of header described in rfc 1964, section 1.2.1: */
186 /* XXXJBF: UGH!: */
201 KRB5_CKSUM_LENGTH);
208 }
214 /* XXX would probably be more efficient to compute checksum
215 * and encrypt at the same time: */
221 pages))
225 out_err:
227 }
229 u32
231 {
235 s32 checksum_type;
238 s32 now;
240 s32 seqnum;
259 /* XXX sanity-check bodysize?? */
261 /* get the sign and seal algorithms */
266 /* Sanity checks */
274 /* in the current spec, there is only one valid seal algorithm per
275 key type, so a simple comparison is ok */
280 /* there are several mappings of seal algorithms to sign algorithms,
281 but few enough that we can try them all. */
293 /* compute the checksum of the message */
295 /* initialize the the cksum */
303 }
320 }
325 }
327 /* it got through unscathed. Make sure the context is unexpired */
335 /* do sequencing checks */
346 /* Copy the data back to the right position. XXX: Would probably be
347 * better to copy and encrypt at the same time. */
362 out:
364 }