search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Expand PMF_FN_* macros.
[netbsd-mini2440.git] / dist / wpa / src / radius / radius.c
blobbcd2e4bca7c045f4862a9b9e584a72508199a8af
1 /*
2 * hostapd / RADIUS message processing
3 * Copyright (c) 2002-2008, Jouni Malinen <j@w1.fi>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
8 *
9 * Alternatively, this software may be distributed under the terms of BSD
10 * license.
11 *
12 * See README and COPYING for more details.
13 */
14
15 #include "includes.h"
16
17 #include "common.h"
18 #include "radius.h"
19 #include "md5.h"
20 #include "crypto.h"
21
22
23 static struct radius_attr_hdr *
24 radius_get_attr_hdr(struct radius_msg *msg, int idx)
25 {
26 return (struct radius_attr_hdr *) (msg->buf + msg->attr_pos[idx]);
27 }
28
29
30 struct radius_msg *radius_msg_new(u8 code, u8 identifier)
31 {
32 struct radius_msg *msg;
33
34 msg = os_malloc(sizeof(*msg));
35 if (msg == NULL)
36 return NULL;
37
38 if (radius_msg_initialize(msg, RADIUS_DEFAULT_MSG_SIZE)) {
39 os_free(msg);
40 return NULL;
41 }
42
43 radius_msg_set_hdr(msg, code, identifier);
44
45 return msg;
46 }
47
48
49 int radius_msg_initialize(struct radius_msg *msg, size_t init_len)
50 {
51 if (msg == NULL || init_len < sizeof(struct radius_hdr))
52 return -1;
53
54 os_memset(msg, 0, sizeof(*msg));
55 msg->buf = os_zalloc(init_len);
56 if (msg->buf == NULL)
57 return -1;
58
59 msg->buf_size = init_len;
60 msg->hdr = (struct radius_hdr *) msg->buf;
61 msg->buf_used = sizeof(*msg->hdr);
62
63 msg->attr_pos =
64 os_zalloc(RADIUS_DEFAULT_ATTR_COUNT * sizeof(*msg->attr_pos));
65 if (msg->attr_pos == NULL) {
66 os_free(msg->buf);
67 msg->buf = NULL;
68 msg->hdr = NULL;
69 return -1;
70 }
71
72 msg->attr_size = RADIUS_DEFAULT_ATTR_COUNT;
73 msg->attr_used = 0;
74
75 return 0;
76 }
77
78
79 void radius_msg_set_hdr(struct radius_msg *msg, u8 code, u8 identifier)
80 {
81 msg->hdr->code = code;
82 msg->hdr->identifier = identifier;
83 }
84
85
86 void radius_msg_free(struct radius_msg *msg)
87 {
88 os_free(msg->buf);
89 msg->buf = NULL;
90 msg->hdr = NULL;
91 msg->buf_size = msg->buf_used = 0;
92
93 os_free(msg->attr_pos);
94 msg->attr_pos = NULL;
95 msg->attr_size = msg->attr_used = 0;
96 }
97
98
99 static const char *radius_code_string(u8 code)
100 {
101 switch (code) {
102 case RADIUS_CODE_ACCESS_REQUEST: return "Access-Request";
103 case RADIUS_CODE_ACCESS_ACCEPT: return "Access-Accept";
104 case RADIUS_CODE_ACCESS_REJECT: return "Access-Reject";
105 case RADIUS_CODE_ACCOUNTING_REQUEST: return "Accounting-Request";
106 case RADIUS_CODE_ACCOUNTING_RESPONSE: return "Accounting-Response";
107 case RADIUS_CODE_ACCESS_CHALLENGE: return "Access-Challenge";
108 case RADIUS_CODE_STATUS_SERVER: return "Status-Server";
109 case RADIUS_CODE_STATUS_CLIENT: return "Status-Client";
110 case RADIUS_CODE_RESERVED: return "Reserved";
111 default: return "?Unknown?";
112 }
113 }
114
115
116 struct radius_attr_type {
117 u8 type;
118 char *name;
119 enum {
120 RADIUS_ATTR_UNDIST, RADIUS_ATTR_TEXT, RADIUS_ATTR_IP,
121 RADIUS_ATTR_HEXDUMP, RADIUS_ATTR_INT32, RADIUS_ATTR_IPV6
122 } data_type;
123 };
124
125 static struct radius_attr_type radius_attrs[] =
126 {
127 { RADIUS_ATTR_USER_NAME, "User-Name", RADIUS_ATTR_TEXT },
128 { RADIUS_ATTR_USER_PASSWORD, "User-Password", RADIUS_ATTR_UNDIST },
129 { RADIUS_ATTR_NAS_IP_ADDRESS, "NAS-IP-Address", RADIUS_ATTR_IP },
130 { RADIUS_ATTR_NAS_PORT, "NAS-Port", RADIUS_ATTR_INT32 },
131 { RADIUS_ATTR_FRAMED_MTU, "Framed-MTU", RADIUS_ATTR_INT32 },
132 { RADIUS_ATTR_REPLY_MESSAGE, "Reply-Message", RADIUS_ATTR_TEXT },
133 { RADIUS_ATTR_STATE, "State", RADIUS_ATTR_UNDIST },
134 { RADIUS_ATTR_CLASS, "Class", RADIUS_ATTR_UNDIST },
135 { RADIUS_ATTR_VENDOR_SPECIFIC, "Vendor-Specific", RADIUS_ATTR_UNDIST },
136 { RADIUS_ATTR_SESSION_TIMEOUT, "Session-Timeout", RADIUS_ATTR_INT32 },
137 { RADIUS_ATTR_IDLE_TIMEOUT, "Idle-Timeout", RADIUS_ATTR_INT32 },
138 { RADIUS_ATTR_TERMINATION_ACTION, "Termination-Action",
139 RADIUS_ATTR_INT32 },
140 { RADIUS_ATTR_CALLED_STATION_ID, "Called-Station-Id",
141 RADIUS_ATTR_TEXT },
142 { RADIUS_ATTR_CALLING_STATION_ID, "Calling-Station-Id",
143 RADIUS_ATTR_TEXT },
144 { RADIUS_ATTR_NAS_IDENTIFIER, "NAS-Identifier", RADIUS_ATTR_TEXT },
145 { RADIUS_ATTR_PROXY_STATE, "Proxy-State", RADIUS_ATTR_UNDIST },
146 { RADIUS_ATTR_ACCT_STATUS_TYPE, "Acct-Status-Type",
147 RADIUS_ATTR_INT32 },
148 { RADIUS_ATTR_ACCT_DELAY_TIME, "Acct-Delay-Time", RADIUS_ATTR_INT32 },
149 { RADIUS_ATTR_ACCT_INPUT_OCTETS, "Acct-Input-Octets",
150 RADIUS_ATTR_INT32 },
151 { RADIUS_ATTR_ACCT_OUTPUT_OCTETS, "Acct-Output-Octets",
152 RADIUS_ATTR_INT32 },
153 { RADIUS_ATTR_ACCT_SESSION_ID, "Acct-Session-Id", RADIUS_ATTR_TEXT },
154 { RADIUS_ATTR_ACCT_AUTHENTIC, "Acct-Authentic", RADIUS_ATTR_INT32 },
155 { RADIUS_ATTR_ACCT_SESSION_TIME, "Acct-Session-Time",
156 RADIUS_ATTR_INT32 },
157 { RADIUS_ATTR_ACCT_INPUT_PACKETS, "Acct-Input-Packets",
158 RADIUS_ATTR_INT32 },
159 { RADIUS_ATTR_ACCT_OUTPUT_PACKETS, "Acct-Output-Packets",
160 RADIUS_ATTR_INT32 },
161 { RADIUS_ATTR_ACCT_TERMINATE_CAUSE, "Acct-Terminate-Cause",
162 RADIUS_ATTR_INT32 },
163 { RADIUS_ATTR_ACCT_MULTI_SESSION_ID, "Acct-Multi-Session-Id",
164 RADIUS_ATTR_TEXT },
165 { RADIUS_ATTR_ACCT_LINK_COUNT, "Acct-Link-Count", RADIUS_ATTR_INT32 },
166 { RADIUS_ATTR_ACCT_INPUT_GIGAWORDS, "Acct-Input-Gigawords",
167 RADIUS_ATTR_INT32 },
168 { RADIUS_ATTR_ACCT_OUTPUT_GIGAWORDS, "Acct-Output-Gigawords",
169 RADIUS_ATTR_INT32 },
170 { RADIUS_ATTR_EVENT_TIMESTAMP, "Event-Timestamp",
171 RADIUS_ATTR_INT32 },
172 { RADIUS_ATTR_NAS_PORT_TYPE, "NAS-Port-Type", RADIUS_ATTR_INT32 },
173 { RADIUS_ATTR_TUNNEL_TYPE, "Tunnel-Type", RADIUS_ATTR_HEXDUMP },
174 { RADIUS_ATTR_TUNNEL_MEDIUM_TYPE, "Tunnel-Medium-Type",
175 RADIUS_ATTR_HEXDUMP },
176 { RADIUS_ATTR_CONNECT_INFO, "Connect-Info", RADIUS_ATTR_TEXT },
177 { RADIUS_ATTR_EAP_MESSAGE, "EAP-Message", RADIUS_ATTR_UNDIST },
178 { RADIUS_ATTR_MESSAGE_AUTHENTICATOR, "Message-Authenticator",
179 RADIUS_ATTR_UNDIST },
180 { RADIUS_ATTR_TUNNEL_PRIVATE_GROUP_ID, "Tunnel-Private-Group-Id",
181 RADIUS_ATTR_HEXDUMP },
182 { RADIUS_ATTR_ACCT_INTERIM_INTERVAL, "Acct-Interim-Interval",
183 RADIUS_ATTR_INT32 },
184 { RADIUS_ATTR_CHARGEABLE_USER_IDENTITY, "Chargable-User-Identity",
185 RADIUS_ATTR_TEXT },
186 { RADIUS_ATTR_NAS_IPV6_ADDRESS, "NAS-IPv6-Address", RADIUS_ATTR_IPV6 },
187 };
188 #define RADIUS_ATTRS (sizeof(radius_attrs) / sizeof(radius_attrs[0]))
189
190
191 static struct radius_attr_type *radius_get_attr_type(u8 type)
192 {
193 size_t i;
194
195 for (i = 0; i < RADIUS_ATTRS; i++) {
196 if (type == radius_attrs[i].type)
197 return &radius_attrs[i];
198 }
199
200 return NULL;
201 }
202
203
204 static void print_char(char c)
205 {
206 if (c >= 32 && c < 127)
207 printf("%c", c);
208 else
209 printf("<%02x>", c);
210 }
211
212
213 static void radius_msg_dump_attr(struct radius_attr_hdr *hdr)
214 {
215 struct radius_attr_type *attr;
216 int i, len;
217 unsigned char *pos;
218
219 attr = radius_get_attr_type(hdr->type);
220
221 printf(" Attribute %d (%s) length=%d\n",
222 hdr->type, attr ? attr->name : "?Unknown?", hdr->length);
223
224 if (attr == NULL)
225 return;
226
227 len = hdr->length - sizeof(struct radius_attr_hdr);
228 pos = (unsigned char *) (hdr + 1);
229
230 switch (attr->data_type) {
231 case RADIUS_ATTR_TEXT:
232 printf(" Value: '");
233 for (i = 0; i < len; i++)
234 print_char(pos[i]);
235 printf("'\n");
236 break;
237
238 case RADIUS_ATTR_IP:
239 if (len == 4) {
240 struct in_addr addr;
241 os_memcpy(&addr, pos, 4);
242 printf(" Value: %s\n", inet_ntoa(addr));
243 } else
244 printf(" Invalid IP address length %d\n", len);
245 break;
246
247 #ifdef CONFIG_IPV6
248 case RADIUS_ATTR_IPV6:
249 if (len == 16) {
250 char buf[128];
251 const char *atxt;
252 struct in6_addr *addr = (struct in6_addr *) pos;
253 atxt = inet_ntop(AF_INET6, addr, buf, sizeof(buf));
254 printf(" Value: %s\n", atxt ? atxt : "?");
255 } else
256 printf(" Invalid IPv6 address length %d\n", len);
257 break;
258 #endif /* CONFIG_IPV6 */
259
260 case RADIUS_ATTR_HEXDUMP:
261 case RADIUS_ATTR_UNDIST:
262 printf(" Value:");
263 for (i = 0; i < len; i++)
264 printf(" %02x", pos[i]);
265 printf("\n");
266 break;
267
268 case RADIUS_ATTR_INT32:
269 if (len == 4)
270 printf(" Value: %u\n", WPA_GET_BE32(pos));
271 else
272 printf(" Invalid INT32 length %d\n", len);
273 break;
274
275 default:
276 break;
277 }
278 }
279
280
281 void radius_msg_dump(struct radius_msg *msg)
282 {
283 size_t i;
284
285 printf("RADIUS message: code=%d (%s) identifier=%d length=%d\n",
286 msg->hdr->code, radius_code_string(msg->hdr->code),
287 msg->hdr->identifier, ntohs(msg->hdr->length));
288
289 for (i = 0; i < msg->attr_used; i++) {
290 struct radius_attr_hdr *attr = radius_get_attr_hdr(msg, i);
291 radius_msg_dump_attr(attr);
292 }
293 }
294
295
296 int radius_msg_finish(struct radius_msg *msg, u8 *secret, size_t secret_len)
297 {
298 if (secret) {
299 u8 auth[MD5_MAC_LEN];
300 struct radius_attr_hdr *attr;
301
302 os_memset(auth, 0, MD5_MAC_LEN);
303 attr = radius_msg_add_attr(msg,
304 RADIUS_ATTR_MESSAGE_AUTHENTICATOR,
305 auth, MD5_MAC_LEN);
306 if (attr == NULL) {
307 printf("WARNING: Could not add "
308 "Message-Authenticator\n");
309 return -1;
310 }
311 msg->hdr->length = htons(msg->buf_used);
312 hmac_md5(secret, secret_len, msg->buf, msg->buf_used,
313 (u8 *) (attr + 1));
314 } else
315 msg->hdr->length = htons(msg->buf_used);
316
317 if (msg->buf_used > 0xffff) {
318 printf("WARNING: too long RADIUS message (%lu)\n",
319 (unsigned long) msg->buf_used);
320 return -1;
321 }
322 return 0;
323 }
324
325
326 int radius_msg_finish_srv(struct radius_msg *msg, const u8 *secret,
327 size_t secret_len, const u8 *req_authenticator)
328 {
329 u8 auth[MD5_MAC_LEN];
330 struct radius_attr_hdr *attr;
331 const u8 *addr[4];
332 size_t len[4];
333
334 os_memset(auth, 0, MD5_MAC_LEN);
335 attr = radius_msg_add_attr(msg, RADIUS_ATTR_MESSAGE_AUTHENTICATOR,
336 auth, MD5_MAC_LEN);
337 if (attr == NULL) {
338 printf("WARNING: Could not add Message-Authenticator\n");
339 return -1;
340 }
341 msg->hdr->length = htons(msg->buf_used);
342 os_memcpy(msg->hdr->authenticator, req_authenticator,
343 sizeof(msg->hdr->authenticator));
344 hmac_md5(secret, secret_len, msg->buf, msg->buf_used,
345 (u8 *) (attr + 1));
346
347 /* ResponseAuth = MD5(Code+ID+Length+RequestAuth+Attributes+Secret) */
348 addr[0] = (u8 *) msg->hdr;
349 len[0] = 1 + 1 + 2;
350 addr[1] = req_authenticator;
351 len[1] = MD5_MAC_LEN;
352 addr[2] = (u8 *) (msg->hdr + 1);
353 len[2] = msg->buf_used - sizeof(*msg->hdr);
354 addr[3] = secret;
355 len[3] = secret_len;
356 md5_vector(4, addr, len, msg->hdr->authenticator);
357
358 if (msg->buf_used > 0xffff) {
359 printf("WARNING: too long RADIUS message (%lu)\n",
360 (unsigned long) msg->buf_used);
361 return -1;
362 }
363 return 0;
364 }
365
366
367 void radius_msg_finish_acct(struct radius_msg *msg, u8 *secret,
368 size_t secret_len)
369 {
370 const u8 *addr[2];
371 size_t len[2];
372
373 msg->hdr->length = htons(msg->buf_used);
374 os_memset(msg->hdr->authenticator, 0, MD5_MAC_LEN);
375 addr[0] = msg->buf;
376 len[0] = msg->buf_used;
377 addr[1] = secret;
378 len[1] = secret_len;
379 md5_vector(2, addr, len, msg->hdr->authenticator);
380
381 if (msg->buf_used > 0xffff) {
382 printf("WARNING: too long RADIUS messages (%lu)\n",
383 (unsigned long) msg->buf_used);
384 }
385 }
386
387
388 static int radius_msg_add_attr_to_array(struct radius_msg *msg,
389 struct radius_attr_hdr *attr)
390 {
391 if (msg->attr_used >= msg->attr_size) {
392 size_t *nattr_pos;
393 int nlen = msg->attr_size * 2;
394
395 nattr_pos = os_realloc(msg->attr_pos,
396 nlen * sizeof(*msg->attr_pos));
397 if (nattr_pos == NULL)
398 return -1;
399
400 msg->attr_pos = nattr_pos;
401 msg->attr_size = nlen;
402 }
403
404 msg->attr_pos[msg->attr_used++] = (unsigned char *) attr - msg->buf;
405
406 return 0;
407 }
408
409
410 struct radius_attr_hdr *radius_msg_add_attr(struct radius_msg *msg, u8 type,
411 const u8 *data, size_t data_len)
412 {
413 size_t buf_needed;
414 struct radius_attr_hdr *attr;
415
416 if (data_len > RADIUS_MAX_ATTR_LEN) {
417 printf("radius_msg_add_attr: too long attribute (%lu bytes)\n",
418 (unsigned long) data_len);
419 return NULL;
420 }
421
422 buf_needed = msg->buf_used + sizeof(*attr) + data_len;
423
424 if (msg->buf_size < buf_needed) {
425 /* allocate more space for message buffer */
426 unsigned char *nbuf;
427 size_t nlen = msg->buf_size;
428
429 while (nlen < buf_needed)
430 nlen *= 2;
431 nbuf = os_realloc(msg->buf, nlen);
432 if (nbuf == NULL)
433 return NULL;
434 msg->buf = nbuf;
435 msg->hdr = (struct radius_hdr *) msg->buf;
436 os_memset(msg->buf + msg->buf_size, 0, nlen - msg->buf_size);
437 msg->buf_size = nlen;
438 }
439
440 attr = (struct radius_attr_hdr *) (msg->buf + msg->buf_used);
441 attr->type = type;
442 attr->length = sizeof(*attr) + data_len;
443 if (data_len > 0)
444 os_memcpy(attr + 1, data, data_len);
445
446 msg->buf_used += sizeof(*attr) + data_len;
447
448 if (radius_msg_add_attr_to_array(msg, attr))
449 return NULL;
450
451 return attr;
452 }
453
454
455 struct radius_msg *radius_msg_parse(const u8 *data, size_t len)
456 {
457 struct radius_msg *msg;
458 struct radius_hdr *hdr;
459 struct radius_attr_hdr *attr;
460 size_t msg_len;
461 unsigned char *pos, *end;
462
463 if (data == NULL || len < sizeof(*hdr))
464 return NULL;
465
466 hdr = (struct radius_hdr *) data;
467
468 msg_len = ntohs(hdr->length);
469 if (msg_len < sizeof(*hdr) || msg_len > len) {
470 printf("Invalid RADIUS message length\n");
471 return NULL;
472 }
473
474 if (msg_len < len) {
475 printf("Ignored %lu extra bytes after RADIUS message\n",
476 (unsigned long) len - msg_len);
477 }
478
479 msg = os_malloc(sizeof(*msg));
480 if (msg == NULL)
481 return NULL;
482
483 if (radius_msg_initialize(msg, msg_len)) {
484 os_free(msg);
485 return NULL;
486 }
487
488 os_memcpy(msg->buf, data, msg_len);
489 msg->buf_size = msg->buf_used = msg_len;
490
491 /* parse attributes */
492 pos = (unsigned char *) (msg->hdr + 1);
493 end = msg->buf + msg->buf_used;
494 while (pos < end) {
495 if ((size_t) (end - pos) < sizeof(*attr))
496 goto fail;
497
498 attr = (struct radius_attr_hdr *) pos;
499
500 if (pos + attr->length > end || attr->length < sizeof(*attr))
501 goto fail;
502
503 /* TODO: check that attr->length is suitable for attr->type */
504
505 if (radius_msg_add_attr_to_array(msg, attr))
506 goto fail;
507
508 pos += attr->length;
509 }
510
511 return msg;
512
513 fail:
514 radius_msg_free(msg);
515 os_free(msg);
516 return NULL;
517 }
518
519
520 int radius_msg_add_eap(struct radius_msg *msg, const u8 *data, size_t data_len)
521 {
522 const u8 *pos = data;
523 size_t left = data_len;
524
525 while (left > 0) {
526 int len;
527 if (left > RADIUS_MAX_ATTR_LEN)
528 len = RADIUS_MAX_ATTR_LEN;
529 else
530 len = left;
531
532 if (!radius_msg_add_attr(msg, RADIUS_ATTR_EAP_MESSAGE,
533 pos, len))
534 return 0;
535
536 pos += len;
537 left -= len;
538 }
539
540 return 1;
541 }
542
543
544 u8 *radius_msg_get_eap(struct radius_msg *msg, size_t *eap_len)
545 {
546 u8 *eap, *pos;
547 size_t len, i;
548 struct radius_attr_hdr *attr;
549
550 if (msg == NULL)
551 return NULL;
552
553 len = 0;
554 for (i = 0; i < msg->attr_used; i++) {
555 attr = radius_get_attr_hdr(msg, i);
556 if (attr->type == RADIUS_ATTR_EAP_MESSAGE)
557 len += attr->length - sizeof(struct radius_attr_hdr);
558 }
559
560 if (len == 0)
561 return NULL;
562
563 eap = os_malloc(len);
564 if (eap == NULL)
565 return NULL;
566
567 pos = eap;
568 for (i = 0; i < msg->attr_used; i++) {
569 attr = radius_get_attr_hdr(msg, i);
570 if (attr->type == RADIUS_ATTR_EAP_MESSAGE) {
571 int flen = attr->length - sizeof(*attr);
572 os_memcpy(pos, attr + 1, flen);
573 pos += flen;
574 }
575 }
576
577 if (eap_len)
578 *eap_len = len;
579
580 return eap;
581 }
582
583
584 int radius_msg_verify_msg_auth(struct radius_msg *msg, const u8 *secret,
585 size_t secret_len, const u8 *req_auth)
586 {
587 u8 auth[MD5_MAC_LEN], orig[MD5_MAC_LEN];
588 u8 orig_authenticator[16];
589 struct radius_attr_hdr *attr = NULL, *tmp;
590 size_t i;
591
592 for (i = 0; i < msg->attr_used; i++) {
593 tmp = radius_get_attr_hdr(msg, i);
594 if (tmp->type == RADIUS_ATTR_MESSAGE_AUTHENTICATOR) {
595 if (attr != NULL) {
596 printf("Multiple Message-Authenticator "
597 "attributes in RADIUS message\n");
598 return 1;
599 }
600 attr = tmp;
601 }
602 }
603
604 if (attr == NULL) {
605 printf("No Message-Authenticator attribute found\n");
606 return 1;
607 }
608
609 os_memcpy(orig, attr + 1, MD5_MAC_LEN);
610 os_memset(attr + 1, 0, MD5_MAC_LEN);
611 if (req_auth) {
612 os_memcpy(orig_authenticator, msg->hdr->authenticator,
613 sizeof(orig_authenticator));
614 os_memcpy(msg->hdr->authenticator, req_auth,
615 sizeof(msg->hdr->authenticator));
616 }
617 hmac_md5(secret, secret_len, msg->buf, msg->buf_used, auth);
618 os_memcpy(attr + 1, orig, MD5_MAC_LEN);
619 if (req_auth) {
620 os_memcpy(msg->hdr->authenticator, orig_authenticator,
621 sizeof(orig_authenticator));
622 }
623
624 if (os_memcmp(orig, auth, MD5_MAC_LEN) != 0) {
625 printf("Invalid Message-Authenticator!\n");
626 return 1;
627 }
628
629 return 0;
630 }
631
632
633 int radius_msg_verify(struct radius_msg *msg, const u8 *secret,
634 size_t secret_len, struct radius_msg *sent_msg, int auth)
635 {
636 const u8 *addr[4];
637 size_t len[4];
638 u8 hash[MD5_MAC_LEN];
639
640 if (sent_msg == NULL) {
641 printf("No matching Access-Request message found\n");
642 return 1;
643 }
644
645 if (auth &&
646 radius_msg_verify_msg_auth(msg, secret, secret_len,
647 sent_msg->hdr->authenticator)) {
648 return 1;
649 }
650
651 /* ResponseAuth = MD5(Code+ID+Length+RequestAuth+Attributes+Secret) */
652 addr[0] = (u8 *) msg->hdr;
653 len[0] = 1 + 1 + 2;
654 addr[1] = sent_msg->hdr->authenticator;
655 len[1] = MD5_MAC_LEN;
656 addr[2] = (u8 *) (msg->hdr + 1);
657 len[2] = msg->buf_used - sizeof(*msg->hdr);
658 addr[3] = secret;
659 len[3] = secret_len;
660 md5_vector(4, addr, len, hash);
661 if (os_memcmp(hash, msg->hdr->authenticator, MD5_MAC_LEN) != 0) {
662 printf("Response Authenticator invalid!\n");
663 return 1;
664 }
665
666 return 0;
667 }
668
669
670 int radius_msg_copy_attr(struct radius_msg *dst, struct radius_msg *src,
671 u8 type)
672 {
673 struct radius_attr_hdr *attr;
674 size_t i;
675 int count = 0;
676
677 for (i = 0; i < src->attr_used; i++) {
678 attr = radius_get_attr_hdr(src, i);
679 if (attr->type == type) {
680 if (!radius_msg_add_attr(dst, type, (u8 *) (attr + 1),
681 attr->length - sizeof(*attr)))
682 return -1;
683 count++;
684 }
685 }
686
687 return count;
688 }
689
690
691 /* Create Request Authenticator. The value should be unique over the lifetime
692 * of the shared secret between authenticator and authentication server.
693 * Use one-way MD5 hash calculated from current timestamp and some data given
694 * by the caller. */
695 void radius_msg_make_authenticator(struct radius_msg *msg,
696 const u8 *data, size_t len)
697 {
698 struct os_time tv;
699 long int l;
700 const u8 *addr[3];
701 size_t elen[3];
702
703 os_get_time(&tv);
704 l = os_random();
705 addr[0] = (u8 *) &tv;
706 elen[0] = sizeof(tv);
707 addr[1] = data;
708 elen[1] = len;
709 addr[2] = (u8 *) &l;
710 elen[2] = sizeof(l);
711 md5_vector(3, addr, elen, msg->hdr->authenticator);
712 }
713
714
715 /* Get Vendor-specific RADIUS Attribute from a parsed RADIUS message.
716 * Returns the Attribute payload and sets alen to indicate the length of the
717 * payload if a vendor attribute with subtype is found, otherwise returns NULL.
718 * The returned payload is allocated with os_malloc() and caller must free it
719 * by calling os_free().
720 */
721 static u8 *radius_msg_get_vendor_attr(struct radius_msg *msg, u32 vendor,
722 u8 subtype, size_t *alen)
723 {
724 u8 *data, *pos;
725 size_t i, len;
726
727 if (msg == NULL)
728 return NULL;
729
730 for (i = 0; i < msg->attr_used; i++) {
731 struct radius_attr_hdr *attr = radius_get_attr_hdr(msg, i);
732 size_t left;
733 u32 vendor_id;
734 struct radius_attr_vendor *vhdr;
735
736 if (attr->type != RADIUS_ATTR_VENDOR_SPECIFIC)
737 continue;
738
739 left = attr->length - sizeof(*attr);
740 if (left < 4)
741 continue;
742
743 pos = (u8 *) (attr + 1);
744
745 os_memcpy(&vendor_id, pos, 4);
746 pos += 4;
747 left -= 4;
748
749 if (ntohl(vendor_id) != vendor)
750 continue;
751
752 while (left >= sizeof(*vhdr)) {
753 vhdr = (struct radius_attr_vendor *) pos;
754 if (vhdr->vendor_length > left ||
755 vhdr->vendor_length < sizeof(*vhdr)) {
756 left = 0;
757 break;
758 }
759 if (vhdr->vendor_type != subtype) {
760 pos += vhdr->vendor_length;
761 left -= vhdr->vendor_length;
762 continue;
763 }
764
765 len = vhdr->vendor_length - sizeof(*vhdr);
766 data = os_malloc(len);
767 if (data == NULL)
768 return NULL;
769 os_memcpy(data, pos + sizeof(*vhdr), len);
770 if (alen)
771 *alen = len;
772 return data;
773 }
774 }
775
776 return NULL;
777 }
778
779
780 static u8 * decrypt_ms_key(const u8 *key, size_t len,
781 const u8 *req_authenticator,
782 const u8 *secret, size_t secret_len, size_t *reslen)
783 {
784 u8 *plain, *ppos, *res;
785 const u8 *pos;
786 size_t left, plen;
787 u8 hash[MD5_MAC_LEN];
788 int i, first = 1;
789 const u8 *addr[3];
790 size_t elen[3];
791
792 /* key: 16-bit salt followed by encrypted key info */
793
794 if (len < 2 + 16)
795 return NULL;
796
797 pos = key + 2;
798 left = len - 2;
799 if (left % 16) {
800 printf("Invalid ms key len %lu\n", (unsigned long) left);
801 return NULL;
802 }
803
804 plen = left;
805 ppos = plain = os_malloc(plen);
806 if (plain == NULL)
807 return NULL;
808 plain[0] = 0;
809
810 while (left > 0) {
811 /* b(1) = MD5(Secret + Request-Authenticator + Salt)
812 * b(i) = MD5(Secret + c(i - 1)) for i > 1 */
813
814 addr[0] = secret;
815 elen[0] = secret_len;
816 if (first) {
817 addr[1] = req_authenticator;
818 elen[1] = MD5_MAC_LEN;
819 addr[2] = key;
820 elen[2] = 2; /* Salt */
821 } else {
822 addr[1] = pos - MD5_MAC_LEN;
823 elen[1] = MD5_MAC_LEN;
824 }
825 md5_vector(first ? 3 : 2, addr, elen, hash);
826 first = 0;
827
828 for (i = 0; i < MD5_MAC_LEN; i++)
829 *ppos++ = *pos++ ^ hash[i];
830 left -= MD5_MAC_LEN;
831 }
832
833 if (plain[0] == 0 || plain[0] > plen - 1) {
834 printf("Failed to decrypt MPPE key\n");
835 os_free(plain);
836 return NULL;
837 }
838
839 res = os_malloc(plain[0]);
840 if (res == NULL) {
841 os_free(plain);
842 return NULL;
843 }
844 os_memcpy(res, plain + 1, plain[0]);
845 if (reslen)
846 *reslen = plain[0];
847 os_free(plain);
848 return res;
849 }
850
851
852 static void encrypt_ms_key(const u8 *key, size_t key_len, u16 salt,
853 const u8 *req_authenticator,
854 const u8 *secret, size_t secret_len,
855 u8 *ebuf, size_t *elen)
856 {
857 int i, len, first = 1;
858 u8 hash[MD5_MAC_LEN], saltbuf[2], *pos;
859 const u8 *addr[3];
860 size_t _len[3];
861
862 WPA_PUT_BE16(saltbuf, salt);
863
864 len = 1 + key_len;
865 if (len & 0x0f) {
866 len = (len & 0xf0) + 16;
867 }
868 os_memset(ebuf, 0, len);
869 ebuf[0] = key_len;
870 os_memcpy(ebuf + 1, key, key_len);
871
872 *elen = len;
873
874 pos = ebuf;
875 while (len > 0) {
876 /* b(1) = MD5(Secret + Request-Authenticator + Salt)
877 * b(i) = MD5(Secret + c(i - 1)) for i > 1 */
878 addr[0] = secret;
879 _len[0] = secret_len;
880 if (first) {
881 addr[1] = req_authenticator;
882 _len[1] = MD5_MAC_LEN;
883 addr[2] = saltbuf;
884 _len[2] = sizeof(saltbuf);
885 } else {
886 addr[1] = pos - MD5_MAC_LEN;
887 _len[1] = MD5_MAC_LEN;
888 }
889 md5_vector(first ? 3 : 2, addr, _len, hash);
890 first = 0;
891
892 for (i = 0; i < MD5_MAC_LEN; i++)
893 *pos++ ^= hash[i];
894
895 len -= MD5_MAC_LEN;
896 }
897 }
898
899
900 struct radius_ms_mppe_keys *
901 radius_msg_get_ms_keys(struct radius_msg *msg, struct radius_msg *sent_msg,
902 u8 *secret, size_t secret_len)
903 {
904 u8 *key;
905 size_t keylen;
906 struct radius_ms_mppe_keys *keys;
907
908 if (msg == NULL || sent_msg == NULL)
909 return NULL;
910
911 keys = os_zalloc(sizeof(*keys));
912 if (keys == NULL)
913 return NULL;
914
915 key = radius_msg_get_vendor_attr(msg, RADIUS_VENDOR_ID_MICROSOFT,
916 RADIUS_VENDOR_ATTR_MS_MPPE_SEND_KEY,
917 &keylen);
918 if (key) {
919 keys->send = decrypt_ms_key(key, keylen,
920 sent_msg->hdr->authenticator,
921 secret, secret_len,
922 &keys->send_len);
923 os_free(key);
924 }
925
926 key = radius_msg_get_vendor_attr(msg, RADIUS_VENDOR_ID_MICROSOFT,
927 RADIUS_VENDOR_ATTR_MS_MPPE_RECV_KEY,
928 &keylen);
929 if (key) {
930 keys->recv = decrypt_ms_key(key, keylen,
931 sent_msg->hdr->authenticator,
932 secret, secret_len,
933 &keys->recv_len);
934 os_free(key);
935 }
936
937 return keys;
938 }
939
940
941 struct radius_ms_mppe_keys *
942 radius_msg_get_cisco_keys(struct radius_msg *msg, struct radius_msg *sent_msg,
943 u8 *secret, size_t secret_len)
944 {
945 u8 *key;
946 size_t keylen;
947 struct radius_ms_mppe_keys *keys;
948
949 if (msg == NULL || sent_msg == NULL)
950 return NULL;
951
952 keys = os_zalloc(sizeof(*keys));
953 if (keys == NULL)
954 return NULL;
955
956 key = radius_msg_get_vendor_attr(msg, RADIUS_VENDOR_ID_CISCO,
957 RADIUS_CISCO_AV_PAIR, &keylen);
958 if (key && keylen == 51 &&
959 os_memcmp(key, "leap:session-key=", 17) == 0) {
960 keys->recv = decrypt_ms_key(key + 17, keylen - 17,
961 sent_msg->hdr->authenticator,
962 secret, secret_len,
963 &keys->recv_len);
964 }
965 os_free(key);
966
967 return keys;
968 }
969
970
971 int radius_msg_add_mppe_keys(struct radius_msg *msg,
972 const u8 *req_authenticator,
973 const u8 *secret, size_t secret_len,
974 const u8 *send_key, size_t send_key_len,
975 const u8 *recv_key, size_t recv_key_len)
976 {
977 struct radius_attr_hdr *attr;
978 u32 vendor_id = htonl(RADIUS_VENDOR_ID_MICROSOFT);
979 u8 *buf;
980 struct radius_attr_vendor *vhdr;
981 u8 *pos;
982 size_t elen;
983 int hlen;
984 u16 salt;
985
986 hlen = sizeof(vendor_id) + sizeof(*vhdr) + 2;
987
988 /* MS-MPPE-Send-Key */
989 buf = os_malloc(hlen + send_key_len + 16);
990 if (buf == NULL) {
991 return 0;
992 }
993 pos = buf;
994 os_memcpy(pos, &vendor_id, sizeof(vendor_id));
995 pos += sizeof(vendor_id);
996 vhdr = (struct radius_attr_vendor *) pos;
997 vhdr->vendor_type = RADIUS_VENDOR_ATTR_MS_MPPE_SEND_KEY;
998 pos = (u8 *) (vhdr + 1);
999 salt = os_random() | 0x8000;
1000 WPA_PUT_BE16(pos, salt);
1001 pos += 2;
1002 encrypt_ms_key(send_key, send_key_len, salt, req_authenticator, secret,
1003 secret_len, pos, &elen);
1004 vhdr->vendor_length = hlen + elen - sizeof(vendor_id);
1005
1006 attr = radius_msg_add_attr(msg, RADIUS_ATTR_VENDOR_SPECIFIC,
1007 buf, hlen + elen);
1008 os_free(buf);
1009 if (attr == NULL) {
1010 return 0;
1011 }
1012
1013 /* MS-MPPE-Recv-Key */
1014 buf = os_malloc(hlen + send_key_len + 16);
1015 if (buf == NULL) {
1016 return 0;
1017 }
1018 pos = buf;
1019 os_memcpy(pos, &vendor_id, sizeof(vendor_id));
1020 pos += sizeof(vendor_id);
1021 vhdr = (struct radius_attr_vendor *) pos;
1022 vhdr->vendor_type = RADIUS_VENDOR_ATTR_MS_MPPE_RECV_KEY;
1023 pos = (u8 *) (vhdr + 1);
1024 salt ^= 1;
1025 WPA_PUT_BE16(pos, salt);
1026 pos += 2;
1027 encrypt_ms_key(recv_key, recv_key_len, salt, req_authenticator, secret,
1028 secret_len, pos, &elen);
1029 vhdr->vendor_length = hlen + elen - sizeof(vendor_id);
1030
1031 attr = radius_msg_add_attr(msg, RADIUS_ATTR_VENDOR_SPECIFIC,
1032 buf, hlen + elen);
1033 os_free(buf);
1034 if (attr == NULL) {
1035 return 0;
1036 }
1037
1038 return 1;
1039 }
1040
1041
1042 /* Add User-Password attribute to a RADIUS message and encrypt it as specified
1043 * in RFC 2865, Chap. 5.2 */
1044 struct radius_attr_hdr *
1045 radius_msg_add_attr_user_password(struct radius_msg *msg,
1046 u8 *data, size_t data_len,
1047 u8 *secret, size_t secret_len)
1048 {
1049 u8 buf[128];
1050 int padlen, i;
1051 size_t buf_len, pos;
1052 const u8 *addr[2];
1053 size_t len[2];
1054 u8 hash[16];
1055
1056 if (data_len > 128)
1057 return NULL;
1058
1059 os_memcpy(buf, data, data_len);
1060 buf_len = data_len;
1061
1062 padlen = data_len % 16;
1063 if (padlen) {
1064 padlen = 16 - padlen;
1065 os_memset(buf + data_len, 0, padlen);
1066 buf_len += padlen;
1067 }
1068
1069 addr[0] = secret;
1070 len[0] = secret_len;
1071 addr[1] = msg->hdr->authenticator;
1072 len[1] = 16;
1073 md5_vector(2, addr, len, hash);
1074
1075 for (i = 0; i < 16; i++)
1076 buf[i] ^= hash[i];
1077 pos = 16;
1078
1079 while (pos < buf_len) {
1080 addr[0] = secret;
1081 len[0] = secret_len;
1082 addr[1] = &buf[pos - 16];
1083 len[1] = 16;
1084 md5_vector(2, addr, len, hash);
1085
1086 for (i = 0; i < 16; i++)
1087 buf[pos + i] ^= hash[i];
1088
1089 pos += 16;
1090 }
1091
1092 return radius_msg_add_attr(msg, RADIUS_ATTR_USER_PASSWORD,
1093 buf, buf_len);
1094 }
1095
1096
1097 int radius_msg_get_attr(struct radius_msg *msg, u8 type, u8 *buf, size_t len)
1098 {
1099 struct radius_attr_hdr *attr = NULL, *tmp;
1100 size_t i, dlen;
1101
1102 for (i = 0; i < msg->attr_used; i++) {
1103 tmp = radius_get_attr_hdr(msg, i);
1104 if (tmp->type == type) {
1105 attr = tmp;
1106 break;
1107 }
1108 }
1109
1110 if (!attr)
1111 return -1;
1112
1113 dlen = attr->length - sizeof(*attr);
1114 if (buf)
1115 os_memcpy(buf, (attr + 1), dlen > len ? len : dlen);
1116 return dlen;
1117 }
1118
1119
1120 int radius_msg_get_attr_ptr(struct radius_msg *msg, u8 type, u8 **buf,
1121 size_t *len, const u8 *start)
1122 {
1123 size_t i;
1124 struct radius_attr_hdr *attr = NULL, *tmp;
1125
1126 for (i = 0; i < msg->attr_used; i++) {
1127 tmp = radius_get_attr_hdr(msg, i);
1128 if (tmp->type == type &&
1129 (start == NULL || (u8 *) tmp > start)) {
1130 attr = tmp;
1131 break;
1132 }
1133 }
1134
1135 if (!attr)
1136 return -1;
1137
1138 *buf = (u8 *) (attr + 1);
1139 *len = attr->length - sizeof(*attr);
1140 return 0;
1141 }
1142
1143
1144 int radius_msg_count_attr(struct radius_msg *msg, u8 type, int min_len)
1145 {
1146 size_t i;
1147 int count;
1148
1149 for (count = 0, i = 0; i < msg->attr_used; i++) {
1150 struct radius_attr_hdr *attr = radius_get_attr_hdr(msg, i);
1151 if (attr->type == type &&
1152 attr->length >= sizeof(struct radius_attr_hdr) + min_len)
1153 count++;
1154 }
1155
1156 return count;
1157 }
1158
1159
1160 struct radius_tunnel_attrs {
1161 int tag_used;
1162 int type; /* Tunnel-Type */
1163 int medium_type; /* Tunnel-Medium-Type */
1164 int vlanid;
1165 };
1166
1167
1168 /**
1169 * radius_msg_get_vlanid - Parse RADIUS attributes for VLAN tunnel information
1170 * @msg: RADIUS message
1171 * Returns: VLAN ID for the first tunnel configuration of -1 if none is found
1172 */
1173 int radius_msg_get_vlanid(struct radius_msg *msg)
1174 {
1175 struct radius_tunnel_attrs tunnel[RADIUS_TUNNEL_TAGS], *tun;
1176 size_t i;
1177 struct radius_attr_hdr *attr = NULL;
1178 const u8 *data;
1179 char buf[10];
1180 size_t dlen;
1181
1182 os_memset(&tunnel, 0, sizeof(tunnel));
1183
1184 for (i = 0; i < msg->attr_used; i++) {
1185 attr = radius_get_attr_hdr(msg, i);
1186 data = (const u8 *) (attr + 1);
1187 dlen = attr->length - sizeof(*attr);
1188 if (attr->length < 3)
1189 continue;
1190 if (data[0] >= RADIUS_TUNNEL_TAGS)
1191 tun = &tunnel[0];
1192 else
1193 tun = &tunnel[data[0]];
1194
1195 switch (attr->type) {
1196 case RADIUS_ATTR_TUNNEL_TYPE:
1197 if (attr->length != 6)
1198 break;
1199 tun->tag_used++;
1200 tun->type = WPA_GET_BE24(data + 1);
1201 break;
1202 case RADIUS_ATTR_TUNNEL_MEDIUM_TYPE:
1203 if (attr->length != 6)
1204 break;
1205 tun->tag_used++;
1206 tun->medium_type = WPA_GET_BE24(data + 1);
1207 break;
1208 case RADIUS_ATTR_TUNNEL_PRIVATE_GROUP_ID:
1209 if (data[0] < RADIUS_TUNNEL_TAGS) {
1210 data++;
1211 dlen--;
1212 }
1213 if (dlen >= sizeof(buf))
1214 break;
1215 os_memcpy(buf, data, dlen);
1216 buf[dlen] = '\0';
1217 tun->tag_used++;
1218 tun->vlanid = atoi(buf);
1219 break;
1220 }
1221 }
1222
1223 for (i = 0; i < RADIUS_TUNNEL_TAGS; i++) {
1224 tun = &tunnel[i];
1225 if (tun->tag_used &&
1226 tun->type == RADIUS_TUNNEL_TYPE_VLAN &&
1227 tun->medium_type == RADIUS_TUNNEL_MEDIUM_TYPE_802 &&
1228 tun->vlanid > 0)
1229 return tun->vlanid;
1230 }
1231
1232 return -1;
1233 }
NetBSD on the FriendlyARM MINI2440