| /***************************************************************************************************** |
| * Software License Agreement (BSD License) |
| * Author : Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp> |
| * |
| * Copyright (c) 2009-2010, Souheil Ben Ayed, Teraoka Laboratory of Keio University, and the WIDE Project |
| * All rights reserved. |
| * |
| * Redistribution and use of this software in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions are met: |
| * |
| * 1. Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * |
| * 2. Redistributions in binary form must reproduce the above copyright |
| * notice, this list of conditions and the following disclaimer in the |
| * documentation and/or other materials provided with the distribution. |
| * |
| * 3. All advertising materials mentioning features or use of this software |
| * must display the following acknowledgement: |
| * This product includes software developed by Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>. |
| * |
| * 4. Neither the name of Souheil Ben Ayed, Teraoka Laboratory of Keio University or the WIDE Project nor the |
| * names of its contributors may be used to endorse or promote products |
| * derived from this software without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ''AS IS'' AND ANY |
| * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED |
| * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE |
| * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY |
| * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES |
| * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
| * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND |
| * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS |
| * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| *****************************************************************************************************/ |
| |
| |
| #include "../../plugins.h" |
| GCC_DIAG_OFF("-Wdeprecated-declarations") |
| #include <gcrypt.h> |
| GCC_DIAG_ON("-Wdeprecated-declarations") |
| |
| #define CHALLENGE_LEN 16 |
| |
| struct eap_md5_data |
| { |
| enum |
| { |
| EAP_MD5_CONTINUE, EAP_MD5_SUCCESS, EAP_MD5_FAILURE |
| } state; |
| u8 * challenge; |
| }; |
| |
| int eap_md5_configure(char * configfile); |
| int eap_md5_init(struct eap_state_machine *smd); |
| int eap_md5_initPickUp(struct eap_state_machine *smd); |
| int eap_md5_buildReq(struct eap_state_machine *smd, u8 eap_md5, |
| struct eap_packet * eapPacket); |
| boolean eap_md5_check(struct eap_state_machine *smd, struct eap_packet *eapRespData); |
| int eap_md5_process(struct eap_state_machine *smd, struct eap_packet *eapRespData); |
| boolean eap_md5_isDone(struct eap_state_machine *smd); |
| void eap_md5_free(void * data); |
| |
| REGISTER_METHOD("eap_md5", "eap_md5_configure", "eap_md5_init", "eap_md5_initPickUp", "eap_md5_buildReq", NULL, "eap_md5_check", "eap_md5_process", "eap_md5_isDone", NULL, NULL, "eap_md5_free") |
| ; |
| |
| int eap_md5_configure(char * configfile) |
| { |
| gcry_control (GCRYCTL_ENABLE_QUICK_RANDOM, 0); |
| |
| return 0; |
| } |
| |
| int eap_md5_init(struct eap_state_machine *smd) |
| { |
| struct eap_md5_data *data = NULL; |
| CHECK_MALLOC(data = malloc(sizeof(struct eap_md5_data))); |
| memset(data, 0, sizeof(struct eap_md5_data)); |
| data->state = EAP_MD5_CONTINUE; |
| data->challenge = NULL; |
| smd->methodData = (struct eap_md5_data*) data; |
| return 0; |
| } |
| |
| |
| int eap_md5_buildReq(struct eap_state_machine *smd, u8 id, |
| struct eap_packet * eapPacket) |
| { |
| struct eap_md5_data * data; |
| u8 *payload, *challenge; |
| |
| data = (struct eap_md5_data *) smd->methodData; |
| CHECK_MALLOC( challenge=malloc(sizeof(u8)*CHALLENGE_LEN)); |
| CHECK_MALLOC( payload=malloc(sizeof(u8)*(CHALLENGE_LEN+1))); |
| memset(payload, 0, sizeof(u8) * (CHALLENGE_LEN + 1)); |
| |
| gcry_create_nonce(challenge,CHALLENGE_LEN); |
| U8COPY(payload, 1, CHALLENGE_LEN, challenge); |
| payload[0] = (u8) CHALLENGE_LEN; |
| CHECK_FCT(diameap_eap_new(EAP_REQUEST, id, TYPE_EAP_MD5, payload, CHALLENGE_LEN |
| + 1,eapPacket)); |
| CHECK_MALLOC(data->challenge=realloc(data->challenge,sizeof(u8)*CHALLENGE_LEN)); |
| U8COPY(data->challenge,0,CHALLENGE_LEN,challenge); |
| |
| smd->methodData = data; |
| |
| free(challenge); |
| challenge=NULL; |
| free(payload); |
| payload=NULL; |
| |
| return 0; |
| } |
| |
| |
| boolean eap_md5_check(struct eap_state_machine *smd, struct eap_packet *eapRespData) |
| { |
| eap_type type; |
| if(diameap_eap_get_type(eapRespData,&type)!=0){ |
| return FALSE; |
| } |
| if (type == TYPE_EAP_MD5) |
| { |
| u16 length; |
| CHECK_FCT(diameap_eap_get_length(eapRespData,&length)); |
| if ((int) length < 6) |
| { |
| TRACE_DEBUG(INFO,"%s[EAP MD5 plugin] Incorrect EAP packet received (length = %d ).",DIAMEAP_EXTENSION,length); |
| return FALSE; |
| } |
| return TRUE; |
| } |
| return FALSE; |
| } |
| |
| |
| |
| int eap_md5_process(struct eap_state_machine *smd, struct eap_packet *eapRespData) |
| { |
| |
| struct eap_md5_data * data; |
| int wordlen = 0, i = 0; |
| u8 * word, *hash, id; |
| data = (struct eap_md5_data*) smd->methodData; |
| wordlen = 1 + smd->user.passwordLength + CHALLENGE_LEN; |
| CHECK_MALLOC(word = malloc(sizeof(u8)*wordlen)); |
| memset(word, 0, sizeof(u8) * wordlen); |
| CHECK_FCT(diameap_eap_get_identifier(eapRespData,&id)); |
| *word = id; |
| U8COPY(word,1,smd->user.passwordLength,smd->user.password); |
| U8COPY(word,1+smd->user.passwordLength,CHALLENGE_LEN,data->challenge); |
| CHECK_MALLOC(hash = malloc(sizeof(u8)*16)); |
| |
| md5hash(word, wordlen, hash); |
| |
| |
| for (i = 0; i < CHALLENGE_LEN; i++) |
| { |
| if (G8(hash + i) != G8(eapRespData->data + 6 + i)) |
| { |
| data->state = EAP_MD5_FAILURE; |
| } |
| } |
| |
| if (data->state != EAP_MD5_FAILURE) |
| { |
| data->state = EAP_MD5_SUCCESS; |
| smd->user.success = TRUE; |
| } |
| |
| smd->methodData = data; |
| free(hash); |
| hash=NULL; |
| free(word); |
| word=NULL; |
| return 0; |
| } |
| |
| boolean eap_md5_isDone(struct eap_state_machine *smd) |
| { |
| struct eap_md5_data *data; |
| data = (struct eap_md5_data*) smd->methodData; |
| if (data->state != EAP_MD5_CONTINUE) |
| { |
| return TRUE; |
| } |
| return FALSE; |
| } |
| |
| |
| void eap_md5_free(void * mdata) |
| { |
| struct eap_md5_data *data; |
| data = (struct eap_md5_data*) mdata; |
| free(data->challenge); |
| data->challenge=NULL; |
| free(data); |
| data=NULL; |
| } |