2 * Copyright (c) 1998 - 2002 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 #include "ftpd_locl.h"
42 RCSID("$Id: gssapi.c,v 1.20 2002/09/04 22:00:50 joda Exp $");
45 gss_ctx_id_t context_hdl;
47 gss_cred_id_t delegated_cred_handle;
51 gss_init(void *app_data)
53 struct gss_data *d = app_data;
54 d->context_hdl = GSS_C_NO_CONTEXT;
55 d->delegated_cred_handle = NULL;
56 #if defined(FTP_SERVER)
59 /* XXX Check the gss mechanism; with gss_indicate_mechs() ? */
65 #endif /* FTP_SERVER */
69 gss_check_prot(void *app_data, int level)
71 if(level == prot_confidential)
77 gss_decode(void *app_data, void *buf, int len, int level)
79 OM_uint32 maj_stat, min_stat;
80 gss_buffer_desc input, output;
83 struct gss_data *d = app_data;
88 maj_stat = gss_unwrap (&min_stat,
94 if(GSS_ERROR(maj_stat))
96 memmove(buf, output.value, output.length);
97 ret_len = output.length;
98 gss_release_buffer(&min_stat, &output);
103 gss_overhead(void *app_data, int level, int len)
105 return 100; /* dunno? */
110 gss_encode(void *app_data, void *from, int length, int level, void **to)
112 OM_uint32 maj_stat, min_stat;
113 gss_buffer_desc input, output;
115 struct gss_data *d = app_data;
117 input.length = length;
119 maj_stat = gss_wrap (&min_stat,
121 level == prot_private,
127 return output.length;
131 sockaddr_to_gss_address (const struct sockaddr *sa,
132 OM_uint32 *addr_type,
133 gss_buffer_desc *gss_addr)
135 switch (sa->sa_family) {
138 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)sa;
140 gss_addr->length = 16;
141 gss_addr->value = &sin6->sin6_addr;
142 *addr_type = GSS_C_AF_INET6;
147 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
149 gss_addr->length = 4;
150 gss_addr->value = &sin->sin_addr;
151 *addr_type = GSS_C_AF_INET;
155 errx (1, "unknown address family %d", sa->sa_family);
160 /* end common stuff */
165 gss_adat(void *app_data, void *buf, size_t len)
168 gss_buffer_desc input_token, output_token;
169 OM_uint32 maj_stat, min_stat;
170 gss_name_t client_name;
171 struct gss_data *d = app_data;
172 struct gss_channel_bindings_struct bindings;
174 sockaddr_to_gss_address (his_addr,
175 &bindings.initiator_addrtype,
176 &bindings.initiator_address);
177 sockaddr_to_gss_address (ctrl_addr,
178 &bindings.acceptor_addrtype,
179 &bindings.acceptor_address);
181 bindings.application_data.length = 0;
182 bindings.application_data.value = NULL;
184 input_token.value = buf;
185 input_token.length = len;
187 d->delegated_cred_handle = malloc(sizeof(*d->delegated_cred_handle));
188 if (d->delegated_cred_handle == NULL) {
189 reply(500, "Out of memory");
193 memset ((char*)d->delegated_cred_handle, 0,
194 sizeof(*d->delegated_cred_handle));
196 maj_stat = gss_accept_sec_context (&min_stat,
206 &d->delegated_cred_handle);
208 if(output_token.length) {
209 if(base64_encode(output_token.value, output_token.length, &p) < 0) {
210 reply(535, "Out of memory base64-encoding.");
214 if(maj_stat == GSS_S_COMPLETE){
216 gss_buffer_desc export_name;
217 maj_stat = gss_export_name(&min_stat, client_name, &export_name);
219 reply(500, "Error exporting name");
222 name = realloc(export_name.value, export_name.length + 1);
224 reply(500, "Out of memory");
225 free(export_name.value);
228 name[export_name.length] = '\0';
229 d->client_name = name;
231 reply(235, "ADAT=%s", p);
233 reply(235, "ADAT Complete");
236 } else if(maj_stat == GSS_S_CONTINUE_NEEDED) {
238 reply(335, "ADAT=%s", p);
240 reply(335, "OK, need more data");
243 OM_uint32 msg_ctx = 0;
244 gss_buffer_desc status_string;
245 gss_display_status(&new_stat,
251 syslog(LOG_ERR, "gss_accept_sec_context: %s",
252 (char*)status_string.value);
253 gss_release_buffer(&new_stat, &status_string);
254 reply(431, "Security resource unavailable");
261 int gss_userok(void*, char*);
263 struct sec_server_mech gss_server_mech = {
265 sizeof(struct gss_data),
280 #else /* FTP_SERVER */
282 extern struct sockaddr *hisctladdr, *myctladdr;
285 import_name(const char *kname, const char *host, gss_name_t *target_name)
287 OM_uint32 maj_stat, min_stat;
288 gss_buffer_desc name;
290 name.length = asprintf((char**)&name.value, "%s@%s", kname, host);
291 if (name.value == NULL) {
292 printf("Out of memory\n");
296 maj_stat = gss_import_name(&min_stat,
298 GSS_C_NT_HOSTBASED_SERVICE,
300 if (GSS_ERROR(maj_stat)) {
302 OM_uint32 msg_ctx = 0;
303 gss_buffer_desc status_string;
305 gss_display_status(&new_stat,
311 printf("Error importing name %s: %s\n",
313 (char *)status_string.value);
314 gss_release_buffer(&new_stat, &status_string);
322 gss_auth(void *app_data, char *host)
325 OM_uint32 maj_stat, min_stat;
326 gss_name_t target_name;
327 gss_buffer_desc input, output_token;
328 int context_established = 0;
331 gss_channel_bindings_t bindings;
332 struct gss_data *d = app_data;
334 const char *knames[] = { "ftp", "host", NULL }, **kname = knames;
337 if(import_name(*kname++, host, &target_name))
343 bindings = malloc(sizeof(*bindings));
345 sockaddr_to_gss_address (myctladdr,
346 &bindings->initiator_addrtype,
347 &bindings->initiator_address);
348 sockaddr_to_gss_address (hisctladdr,
349 &bindings->acceptor_addrtype,
350 &bindings->acceptor_address);
352 bindings->application_data.length = 0;
353 bindings->application_data.value = NULL;
355 while(!context_established) {
356 maj_stat = gss_init_sec_context(&min_stat,
361 GSS_C_MUTUAL_FLAG | GSS_C_SEQUENCE_FLAG
370 if (GSS_ERROR(maj_stat)) {
372 OM_uint32 msg_ctx = 0;
373 gss_buffer_desc status_string;
375 if(min_stat == KRB5KDC_ERR_S_PRINCIPAL_UNKNOWN && *kname != NULL) {
376 if(import_name(*kname++, host, &target_name))
381 gss_display_status(&new_stat,
387 printf("Error initializing security context: %s\n",
388 (char*)status_string.value);
389 gss_release_buffer(&new_stat, &status_string);
390 return AUTH_CONTINUE;
393 gss_release_buffer(&min_stat, &input);
394 if (output_token.length != 0) {
395 base64_encode(output_token.value, output_token.length, &p);
396 gss_release_buffer(&min_stat, &output_token);
397 n = command("ADAT %s", p);
400 if (GSS_ERROR(maj_stat)) {
401 if (d->context_hdl != GSS_C_NO_CONTEXT)
402 gss_delete_sec_context (&min_stat,
407 if (maj_stat & GSS_S_CONTINUE_NEEDED) {
408 p = strstr(reply_string, "ADAT=");
410 printf("Error: expected ADAT in reply. got: %s\n",
415 input.value = malloc(strlen(p));
416 input.length = base64_decode(p, input.value);
420 printf("Unrecognized response code: %d\n", code);
423 context_established = 1;
429 struct sec_client_mech gss_client_mech = {
431 sizeof(struct gss_data),
441 #endif /* FTP_SERVER */