1 /* $Id: isakmp_agg.c,v 1.1.1.1 2006/05/18 10:47:25 michaelc Exp $ */
4 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the project nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
19 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 /* Aggressive Exchange (Aggressive Mode) */
36 #include <sys/types.h>
37 #include <sys/param.h>
43 #if TIME_WITH_SYS_TIME
44 # include <sys/time.h>
48 # include <sys/time.h>
62 #include "localconf.h"
63 #include "remoteconf.h"
64 #include "isakmp_var.h"
69 #include "ipsec_doi.h"
70 #include "crypto_openssl.h"
72 #include "isakmp_agg.h"
73 #include "isakmp_inf.h"
75 #include "isakmp_xauth.h"
76 #include "isakmp_cfg.h"
79 #include "isakmp_frag.h"
85 #include "nattraversal.h"
93 * begin Aggressive Mode as initiator.
97 * psk: HDR, SA, KE, Ni, IDi1
98 * sig: HDR, SA, KE, Ni, IDi1 [, CR ]
99 * gssapi: HDR, SA, KE, Ni, IDi1, GSSi
100 * rsa: HDR, SA, [ HASH(1),] KE, <IDi1_b>Pubkey_r, <Ni_b>Pubkey_r
101 * rev: HDR, SA, [ HASH(1),] <Ni_b>Pubkey_r, <KE_b>Ke_i,
102 * <IDii_b>Ke_i [, <Cert-I_b>Ke_i ]
105 agg_i1send(iph1, msg)
106 struct ph1handle *iph1;
107 vchar_t *msg; /* must be null */
109 struct payload_list *plist = NULL;
111 vchar_t *cr = NULL, *gsstoken = NULL;
114 vchar_t *vid_natt[MAX_NATT_VID_COUNT];
118 vchar_t *vid_xauth = NULL;
119 vchar_t *vid_unity = NULL;
122 vchar_t *vid_frag = NULL;
128 vchar_t *vid_dpd = NULL;
134 plog(LLV_ERROR, LOCATION, NULL,
135 "msg has to be NULL in this function.\n");
138 if (iph1->status != PHASE1ST_START) {
139 plog(LLV_ERROR, LOCATION, NULL,
140 "status mismatched %d.\n", iph1->status);
144 /* create isakmp index */
145 memset(&iph1->index, 0, sizeof(iph1->index));
146 isakmp_newcookie((caddr_t)&iph1->index, iph1->remote, iph1->local);
148 /* make ID payload into isakmp status */
149 if (ipsecdoi_setid1(iph1) < 0)
152 /* create SA payload for my proposal */
153 iph1->sa = ipsecdoi_setph1proposal(iph1->rmconf->proposal);
154 if (iph1->sa == NULL)
157 /* consistency check of proposals */
158 if (iph1->rmconf->dhgrp == NULL) {
159 plog(LLV_ERROR, LOCATION, NULL,
160 "configuration failure about DH group.\n");
164 /* generate DH public value */
165 if (oakley_dh_generate(iph1->rmconf->dhgrp,
166 &iph1->dhpub, &iph1->dhpriv) < 0)
169 /* generate NONCE value */
170 iph1->nonce = eay_set_random(iph1->rmconf->nonce_size);
171 if (iph1->nonce == NULL)
175 /* Do we need Xauth VID? */
176 switch (iph1->rmconf->proposal->authmethod) {
177 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_RSA_R:
178 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_DSS_R:
179 if ((vid_xauth = set_vendorid(VENDORID_XAUTH)) == NULL)
180 plog(LLV_ERROR, LOCATION, NULL,
181 "Xauth vendor ID generation failed\n");
182 if ((vid_unity = set_vendorid(VENDORID_UNITY)) == NULL)
183 plog(LLV_ERROR, LOCATION, NULL,
184 "Unity vendor ID generation failed\n");
192 if (iph1->rmconf->ike_frag) {
193 vid_frag = set_vendorid(VENDORID_FRAG);
194 if (vid_frag != NULL)
195 vid_frag = isakmp_frag_addcap(vid_frag,
197 if (vid_frag == NULL)
198 plog(LLV_ERROR, LOCATION, NULL,
199 "Frag vendorID construction failed\n");
203 /* create CR if need */
204 if (iph1->rmconf->send_cr
205 && oakley_needcr(iph1->rmconf->proposal->authmethod)
206 && iph1->rmconf->peerscertfile == NULL) {
208 cr = oakley_getcr(iph1);
210 plog(LLV_ERROR, LOCATION, NULL,
211 "failed to get cr buffer.\n");
216 plog(LLV_DEBUG, LOCATION, NULL, "authmethod is %s\n",
217 s_oakley_attr_method(iph1->rmconf->proposal->authmethod));
219 if (iph1->rmconf->proposal->authmethod ==
220 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB) {
221 gssapi_get_itoken(iph1, &len);
225 /* set SA payload to propose */
226 plist = isakmp_plist_append(plist, iph1->sa, ISAKMP_NPTYPE_SA);
228 /* create isakmp KE payload */
229 plist = isakmp_plist_append(plist, iph1->dhpub, ISAKMP_NPTYPE_KE);
231 /* create isakmp NONCE payload */
232 plist = isakmp_plist_append(plist, iph1->nonce, ISAKMP_NPTYPE_NONCE);
234 /* create isakmp ID payload */
235 plist = isakmp_plist_append(plist, iph1->id, ISAKMP_NPTYPE_ID);
238 if (iph1->rmconf->proposal->authmethod ==
239 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB) {
240 gssapi_get_token_to_send(iph1, &gsstoken);
241 plist = isakmp_plist_append(plist, gsstoken, ISAKMP_NPTYPE_GSS);
244 /* create isakmp CR payload */
246 plist = isakmp_plist_append(plist, cr, ISAKMP_NPTYPE_CR);
250 plist = isakmp_plist_append(plist, vid_frag, ISAKMP_NPTYPE_VID);
253 /* set VID payload for NAT-T if NAT-T support allowed in the config file */
254 if (iph1->rmconf->nat_traversal)
255 plist = isakmp_plist_append_natt_vids(plist, vid_natt);
261 plist = isakmp_plist_append(plist,
262 vid_xauth, ISAKMP_NPTYPE_VID);
264 plist = isakmp_plist_append(plist,
265 vid_unity, ISAKMP_NPTYPE_VID);
268 if(iph1->rmconf->dpd){
269 vid_dpd = set_vendorid(VENDORID_DPD);
271 plist = isakmp_plist_append(plist, vid_dpd, ISAKMP_NPTYPE_VID);
275 iph1->sendbuf = isakmp_plist_set_all (&plist, iph1);
277 #ifdef HAVE_PRINT_ISAKMP_C
278 isakmp_printpacket(iph1->sendbuf, iph1->local, iph1->remote, 0);
281 /* send the packet, add to the schedule to resend */
282 iph1->retry_counter = iph1->rmconf->retry_counter;
283 if (isakmp_ph1resend(iph1) == -1)
286 iph1->status = PHASE1ST_MSG1SENT;
300 for (i = 0; i < MAX_NATT_VID_COUNT && vid_natt[i] != NULL; i++)
312 * receive from responder
313 * psk: HDR, SA, KE, Nr, IDr1, HASH_R
314 * sig: HDR, SA, KE, Nr, IDr1, [ CR, ] [ CERT, ] SIG_R
315 * gssapi: HDR, SA, KE, Nr, IDr1, GSSr, HASH_R
316 * rsa: HDR, SA, KE, <IDr1_b>PubKey_i, <Nr_b>PubKey_i, HASH_R
317 * rev: HDR, SA, <Nr_b>PubKey_i, <KE_b>Ke_r, <IDir_b>Ke_r, HASH_R
320 agg_i2recv(iph1, msg)
321 struct ph1handle *iph1;
324 vchar_t *pbuf = NULL;
325 struct isakmp_parse_t *pa;
326 vchar_t *satmp = NULL;
335 vchar_t *gsstoken = NULL;
340 struct natd_payload {
343 TAILQ_ENTRY(natd_payload) chain;
345 TAILQ_HEAD(_natd_payload, natd_payload) natd_tree;
346 TAILQ_INIT(&natd_tree);
350 if (iph1->status != PHASE1ST_MSG1SENT) {
351 plog(LLV_ERROR, LOCATION, NULL,
352 "status mismatched %d.\n", iph1->status);
356 /* validate the type of next payload */
357 pbuf = isakmp_parse(msg);
360 pa = (struct isakmp_parse_t *)pbuf->v;
362 iph1->pl_hash = NULL;
364 /* SA payload is fixed postion */
365 if (pa->type != ISAKMP_NPTYPE_SA) {
366 plog(LLV_ERROR, LOCATION, iph1->remote,
367 "received invalid next payload type %d, "
369 pa->type, ISAKMP_NPTYPE_SA);
373 if (isakmp_p2ph(&satmp, pa->ptr) < 0)
378 pa->type != ISAKMP_NPTYPE_NONE;
382 case ISAKMP_NPTYPE_KE:
383 if (isakmp_p2ph(&iph1->dhpub_p, pa->ptr) < 0)
386 case ISAKMP_NPTYPE_NONCE:
387 if (isakmp_p2ph(&iph1->nonce_p, pa->ptr) < 0)
390 case ISAKMP_NPTYPE_ID:
391 if (isakmp_p2ph(&iph1->id_p, pa->ptr) < 0)
394 case ISAKMP_NPTYPE_HASH:
395 iph1->pl_hash = (struct isakmp_pl_hash *)pa->ptr;
397 case ISAKMP_NPTYPE_CR:
398 if (oakley_savecr(iph1, pa->ptr) < 0)
401 case ISAKMP_NPTYPE_CERT:
402 if (oakley_savecert(iph1, pa->ptr) < 0)
405 case ISAKMP_NPTYPE_SIG:
406 if (isakmp_p2ph(&iph1->sig_p, pa->ptr) < 0)
409 case ISAKMP_NPTYPE_VID:
410 vid_numeric = check_vendorid(pa->ptr);
412 if (iph1->rmconf->nat_traversal &&
413 natt_vendorid(vid_numeric))
414 natt_handle_vendorid(iph1, vid_numeric);
417 switch (vid_numeric) {
419 iph1->mode_cfg->flags |=
420 ISAKMP_CFG_VENDORID_XAUTH;
424 iph1->mode_cfg->flags |=
425 ISAKMP_CFG_VENDORID_UNITY;
432 if (vid_numeric == VENDORID_DPD && iph1->rmconf->dpd) {
434 plog(LLV_DEBUG, LOCATION, NULL,
435 "remote supports DPD\n");
439 case ISAKMP_NPTYPE_N:
440 isakmp_check_notify(pa->ptr, iph1);
443 case ISAKMP_NPTYPE_GSS:
444 if (isakmp_p2ph(&gsstoken, pa->ptr) < 0)
446 gssapi_save_received_token(iph1, gsstoken);
451 case ISAKMP_NPTYPE_NATD_DRAFT:
452 case ISAKMP_NPTYPE_NATD_RFC:
453 if (NATT_AVAILABLE(iph1) && iph1->natt_options &&
454 pa->type == iph1->natt_options->payload_nat_d) {
455 struct natd_payload *natd;
456 natd = (struct natd_payload *)racoon_malloc(sizeof(*natd));
460 natd->payload = NULL;
462 if (isakmp_p2ph (&natd->payload, pa->ptr) < 0)
465 natd->seq = natd_seq++;
467 TAILQ_INSERT_TAIL(&natd_tree, natd, chain);
470 /* passthrough to default... */
474 /* don't send information, see isakmp_ident_r1() */
475 plog(LLV_ERROR, LOCATION, iph1->remote,
476 "ignore the packet, "
477 "received unexpecting payload type %d.\n",
483 /* payload existency check */
484 /* XXX to be checked each authentication method. */
486 /* verify identifier */
487 if (ipsecdoi_checkid1(iph1) != 0) {
488 plog(LLV_ERROR, LOCATION, iph1->remote,
489 "invalid ID payload.\n");
493 /* check SA payload and set approval SA for use */
494 if (ipsecdoi_checkph1proposal(satmp, iph1) < 0) {
495 plog(LLV_ERROR, LOCATION, iph1->remote,
496 "failed to get valid proposal.\n");
497 /* XXX send information */
500 VPTRINIT(iph1->sa_ret);
502 /* fix isakmp index */
503 memcpy(&iph1->index.r_ck, &((struct isakmp *)msg->v)->r_ck,
507 if (NATT_AVAILABLE(iph1)) {
508 struct natd_payload *natd = NULL;
511 plog(LLV_INFO, LOCATION, iph1->remote,
512 "Selected NAT-T version: %s\n",
513 vid_string_by_id(iph1->natt_options->version));
515 /* set both bits first so that we can clear them
516 upon verifying hashes */
517 iph1->natt_flags |= NAT_DETECTED;
519 while ((natd = TAILQ_FIRST(&natd_tree)) != NULL) {
520 /* this function will clear appropriate bits bits
521 from iph1->natt_flags */
522 natd_verified = natt_compare_addr_hash (iph1,
523 natd->payload, natd->seq);
525 plog (LLV_INFO, LOCATION, NULL, "NAT-D payload #%d %s\n",
527 natd_verified ? "verified" : "doesn't match");
529 vfree (natd->payload);
531 TAILQ_REMOVE(&natd_tree, natd, chain);
535 plog (LLV_INFO, LOCATION, NULL, "NAT %s %s%s\n",
536 iph1->natt_flags & NAT_DETECTED ?
537 "detected:" : "not detected",
538 iph1->natt_flags & NAT_DETECTED_ME ? "ME " : "",
539 iph1->natt_flags & NAT_DETECTED_PEER ? "PEER" : "");
541 if (iph1->natt_flags & NAT_DETECTED)
542 natt_float_ports (iph1);
546 /* compute sharing secret of DH */
547 if (oakley_dh_compute(iph1->rmconf->dhgrp, iph1->dhpub,
548 iph1->dhpriv, iph1->dhpub_p, &iph1->dhgxy) < 0)
551 /* generate SKEYIDs & IV & final cipher key */
552 if (oakley_skeyid(iph1) < 0)
554 if (oakley_skeyid_dae(iph1) < 0)
556 if (oakley_compute_enckey(iph1) < 0)
558 if (oakley_newiv(iph1) < 0)
561 /* validate authentication value */
562 ptype = oakley_validate_auth(iph1);
565 /* message printed inner oakley_validate_auth() */
568 EVT_PUSH(iph1->local, iph1->remote,
569 EVTT_PEERPH1AUTH_FAILED, NULL);
570 isakmp_info_send_n1(iph1, ptype, NULL);
574 if (oakley_checkcr(iph1) < 0) {
575 /* Ignore this error in order to be interoperability. */
579 /* change status of isakmp status entry */
580 iph1->status = PHASE1ST_MSG2RECEIVED;
590 VPTRINIT(iph1->dhpub_p);
591 VPTRINIT(iph1->nonce_p);
592 VPTRINIT(iph1->id_p);
593 oakley_delcert(iph1->cert_p);
595 oakley_delcert(iph1->crl_p);
597 VPTRINIT(iph1->sig_p);
598 oakley_delcert(iph1->cr_p);
608 * gssapi: HDR, HASH_I
609 * sig: HDR, [ CERT, ] SIG_I
614 agg_i2send(iph1, msg)
615 struct ph1handle *iph1;
618 struct payload_list *plist = NULL;
621 vchar_t *gsshash = NULL;
624 if (iph1->status != PHASE1ST_MSG2RECEIVED) {
625 plog(LLV_ERROR, LOCATION, NULL,
626 "status mismatched %d.\n", iph1->status);
630 /* generate HASH to send */
631 plog(LLV_DEBUG, LOCATION, NULL, "generate HASH_I\n");
632 iph1->hash = oakley_ph1hash_common(iph1, GENERATE);
633 if (iph1->hash == NULL) {
635 if (gssapi_more_tokens(iph1))
636 isakmp_info_send_n1(iph1,
637 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE, NULL);
642 switch (iph1->approval->authmethod) {
643 case OAKLEY_ATTR_AUTH_METHOD_PSKEY:
644 /* set HASH payload */
645 plist = isakmp_plist_append(plist, iph1->hash, ISAKMP_NPTYPE_HASH);
647 case OAKLEY_ATTR_AUTH_METHOD_DSSSIG:
648 case OAKLEY_ATTR_AUTH_METHOD_RSASIG:
650 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_RSA_I:
651 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_DSS_I:
653 /* XXX if there is CR or not ? */
655 if (oakley_getmycert(iph1) < 0)
658 if (oakley_getsign(iph1) < 0)
661 if (iph1->cert != NULL && iph1->rmconf->send_cert)
664 /* add CERT payload if there */
666 plist = isakmp_plist_append(plist, iph1->cert->pl, ISAKMP_NPTYPE_CERT);
668 /* add SIG payload */
669 plist = isakmp_plist_append(plist, iph1->sig, ISAKMP_NPTYPE_SIG);
672 case OAKLEY_ATTR_AUTH_METHOD_RSAENC:
673 case OAKLEY_ATTR_AUTH_METHOD_RSAREV:
676 case OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB:
677 gsshash = gssapi_wraphash(iph1);
678 if (gsshash == NULL) {
679 plog(LLV_ERROR, LOCATION, NULL,
680 "failed to wrap hash\n");
681 isakmp_info_send_n1(iph1,
682 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE, NULL);
686 plist = isakmp_plist_append(plist, gsshash, ISAKMP_NPTYPE_HASH);
692 /* generate NAT-D payloads */
693 if (NATT_AVAILABLE(iph1))
695 vchar_t *natd[2] = { NULL, NULL };
697 plog (LLV_INFO, LOCATION, NULL, "Adding remote and local NAT-D payloads.\n");
698 if ((natd[0] = natt_hash_addr (iph1, iph1->remote)) == NULL) {
699 plog(LLV_ERROR, LOCATION, NULL,
700 "NAT-D hashing failed for %s\n", saddr2str(iph1->remote));
704 if ((natd[1] = natt_hash_addr (iph1, iph1->local)) == NULL) {
705 plog(LLV_ERROR, LOCATION, NULL,
706 "NAT-D hashing failed for %s\n", saddr2str(iph1->local));
710 plist = isakmp_plist_append(plist, natd[0], iph1->natt_options->payload_nat_d);
711 plist = isakmp_plist_append(plist, natd[1], iph1->natt_options->payload_nat_d);
715 iph1->sendbuf = isakmp_plist_set_all (&plist, iph1);
717 #ifdef HAVE_PRINT_ISAKMP_C
718 isakmp_printpacket(iph1->sendbuf, iph1->local, iph1->remote, 0);
721 /* send to responder */
722 if (isakmp_send(iph1, iph1->sendbuf) < 0)
725 /* the sending message is added to the received-list. */
726 if (add_recvdpkt(iph1->remote, iph1->local, iph1->sendbuf, msg) == -1) {
727 plog(LLV_ERROR , LOCATION, NULL,
728 "failed to add a response packet to the tree.\n");
732 /* set encryption flag */
733 iph1->flags |= ISAKMP_FLAG_E;
735 iph1->status = PHASE1ST_ESTABLISHED;
746 * receive from initiator
747 * psk: HDR, SA, KE, Ni, IDi1
748 * sig: HDR, SA, KE, Ni, IDi1 [, CR ]
749 * gssapi: HDR, SA, KE, Ni, IDi1 , GSSi
750 * rsa: HDR, SA, [ HASH(1),] KE, <IDi1_b>Pubkey_r, <Ni_b>Pubkey_r
751 * rev: HDR, SA, [ HASH(1),] <Ni_b>Pubkey_r, <KE_b>Ke_i,
752 * <IDii_b>Ke_i [, <Cert-I_b>Ke_i ]
755 agg_r1recv(iph1, msg)
756 struct ph1handle *iph1;
760 vchar_t *pbuf = NULL;
761 struct isakmp_parse_t *pa;
764 vchar_t *gsstoken = NULL;
768 if (iph1->status != PHASE1ST_START) {
769 plog(LLV_ERROR, LOCATION, NULL,
770 "status mismatched %d.\n", iph1->status);
774 /* validate the type of next payload */
775 pbuf = isakmp_parse(msg);
778 pa = (struct isakmp_parse_t *)pbuf->v;
780 /* SA payload is fixed postion */
781 if (pa->type != ISAKMP_NPTYPE_SA) {
782 plog(LLV_ERROR, LOCATION, iph1->remote,
783 "received invalid next payload type %d, "
785 pa->type, ISAKMP_NPTYPE_SA);
788 if (isakmp_p2ph(&iph1->sa, pa->ptr) < 0)
793 pa->type != ISAKMP_NPTYPE_NONE;
796 plog(LLV_DEBUG, LOCATION, NULL,
797 "received payload of type %s\n",
798 s_isakmp_nptype(pa->type));
801 case ISAKMP_NPTYPE_KE:
802 if (isakmp_p2ph(&iph1->dhpub_p, pa->ptr) < 0)
805 case ISAKMP_NPTYPE_NONCE:
806 if (isakmp_p2ph(&iph1->nonce_p, pa->ptr) < 0)
809 case ISAKMP_NPTYPE_ID:
810 if (isakmp_p2ph(&iph1->id_p, pa->ptr) < 0)
813 case ISAKMP_NPTYPE_VID:
814 vid_numeric = check_vendorid(pa->ptr);
817 if (iph1->rmconf->nat_traversal &&
818 natt_vendorid(vid_numeric)) {
819 natt_handle_vendorid(iph1, vid_numeric);
824 switch (vid_numeric) {
826 iph1->mode_cfg->flags |=
827 ISAKMP_CFG_VENDORID_XAUTH;
831 iph1->mode_cfg->flags |=
832 ISAKMP_CFG_VENDORID_UNITY;
839 if (vid_numeric == VENDORID_DPD && iph1->rmconf->dpd) {
841 plog(LLV_DEBUG, LOCATION, NULL,
842 "remote supports DPD\n");
846 if ((vid_numeric == VENDORID_FRAG) &&
847 (vendorid_frag_cap(pa->ptr) & VENDORID_FRAG_AGG))
852 case ISAKMP_NPTYPE_CR:
853 if (oakley_savecr(iph1, pa->ptr) < 0)
858 case ISAKMP_NPTYPE_GSS:
859 if (isakmp_p2ph(&gsstoken, pa->ptr) < 0)
861 gssapi_save_received_token(iph1, gsstoken);
865 /* don't send information, see isakmp_ident_r1() */
866 plog(LLV_ERROR, LOCATION, iph1->remote,
867 "ignore the packet, "
868 "received unexpecting payload type %d.\n",
874 /* payload existency check */
875 /* XXX to be checked each authentication method. */
877 /* verify identifier */
878 if (ipsecdoi_checkid1(iph1) != 0) {
879 plog(LLV_ERROR, LOCATION, iph1->remote,
880 "invalid ID payload.\n");
885 if (NATT_AVAILABLE(iph1))
886 plog(LLV_INFO, LOCATION, iph1->remote,
887 "Selected NAT-T version: %s\n",
888 vid_string_by_id(iph1->natt_options->version));
891 /* check SA payload and set approval SA for use */
892 if (ipsecdoi_checkph1proposal(iph1->sa, iph1) < 0) {
893 plog(LLV_ERROR, LOCATION, iph1->remote,
894 "failed to get valid proposal.\n");
895 /* XXX send information */
899 if (oakley_checkcr(iph1) < 0) {
900 /* Ignore this error in order to be interoperability. */
904 iph1->status = PHASE1ST_MSG1RECEIVED;
913 VPTRINIT(iph1->dhpub_p);
914 VPTRINIT(iph1->nonce_p);
915 VPTRINIT(iph1->id_p);
916 oakley_delcert(iph1->cr_p);
925 * psk: HDR, SA, KE, Nr, IDr1, HASH_R
926 * sig: HDR, SA, KE, Nr, IDr1, [ CR, ] [ CERT, ] SIG_R
927 * gssapi: HDR, SA, KE, Nr, IDr1, GSSr, HASH_R
928 * rsa: HDR, SA, KE, <IDr1_b>PubKey_i, <Nr_b>PubKey_i, HASH_R
929 * rev: HDR, SA, <Nr_b>PubKey_i, <KE_b>Ke_r, <IDir_b>Ke_r, HASH_R
932 agg_r1send(iph1, msg)
933 struct ph1handle *iph1;
936 struct payload_list *plist = NULL;
943 vchar_t *xauth_vid = NULL;
944 vchar_t *unity_vid = NULL;
947 vchar_t *vid_natt = NULL;
948 vchar_t *natd[2] = { NULL, NULL };
951 vchar_t *vid_dpd = NULL;
956 vchar_t *gsstoken = NULL, *gsshash = NULL;
957 vchar_t *gss_sa = NULL;
961 if (iph1->status != PHASE1ST_MSG1RECEIVED) {
962 plog(LLV_ERROR, LOCATION, NULL,
963 "status mismatched %d.\n", iph1->status);
967 /* set responder's cookie */
968 isakmp_newcookie((caddr_t)&iph1->index.r_ck, iph1->remote, iph1->local);
970 /* make ID payload into isakmp status */
971 if (ipsecdoi_setid1(iph1) < 0)
974 /* generate DH public value */
975 if (oakley_dh_generate(iph1->rmconf->dhgrp,
976 &iph1->dhpub, &iph1->dhpriv) < 0)
979 /* generate NONCE value */
980 iph1->nonce = eay_set_random(iph1->rmconf->nonce_size);
981 if (iph1->nonce == NULL)
984 /* compute sharing secret of DH */
985 if (oakley_dh_compute(iph1->approval->dhgrp, iph1->dhpub,
986 iph1->dhpriv, iph1->dhpub_p, &iph1->dhgxy) < 0)
989 /* generate SKEYIDs & IV & final cipher key */
990 if (oakley_skeyid(iph1) < 0)
992 if (oakley_skeyid_dae(iph1) < 0)
994 if (oakley_compute_enckey(iph1) < 0)
996 if (oakley_newiv(iph1) < 0)
1000 if (iph1->rmconf->proposal->authmethod ==
1001 OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB)
1002 gssapi_get_rtoken(iph1, &gsslen);
1005 /* generate HASH to send */
1006 plog(LLV_DEBUG, LOCATION, NULL, "generate HASH_R\n");
1007 iph1->hash = oakley_ph1hash_common(iph1, GENERATE);
1008 if (iph1->hash == NULL) {
1010 if (gssapi_more_tokens(iph1))
1011 isakmp_info_send_n1(iph1,
1012 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE, NULL);
1017 /* create CR if need */
1018 if (iph1->rmconf->send_cr
1019 && oakley_needcr(iph1->approval->authmethod)
1020 && iph1->rmconf->peerscertfile == NULL) {
1022 cr = oakley_getcr(iph1);
1024 plog(LLV_ERROR, LOCATION, NULL,
1025 "failed to get cr buffer.\n");
1031 /* Has the peer announced NAT-T? */
1032 if (NATT_AVAILABLE(iph1)) {
1033 /* set chosen VID */
1034 vid_natt = set_vendorid(iph1->natt_options->version);
1036 /* generate NAT-D payloads */
1037 plog (LLV_INFO, LOCATION, NULL, "Adding remote and local NAT-D payloads.\n");
1038 if ((natd[0] = natt_hash_addr (iph1, iph1->remote)) == NULL) {
1039 plog(LLV_ERROR, LOCATION, NULL,
1040 "NAT-D hashing failed for %s\n", saddr2str(iph1->remote));
1044 if ((natd[1] = natt_hash_addr (iph1, iph1->local)) == NULL) {
1045 plog(LLV_ERROR, LOCATION, NULL,
1046 "NAT-D hashing failed for %s\n", saddr2str(iph1->local));
1052 /* Only send DPD support if remote announced DPD and if DPD support is active */
1053 if (iph1->dpd_support && iph1->rmconf->dpd)
1054 vid_dpd = set_vendorid(VENDORID_DPD);
1057 switch (iph1->approval->authmethod) {
1058 case OAKLEY_ATTR_AUTH_METHOD_PSKEY:
1059 /* set SA payload to reply */
1060 plist = isakmp_plist_append(plist, iph1->sa_ret, ISAKMP_NPTYPE_SA);
1062 /* create isakmp KE payload */
1063 plist = isakmp_plist_append(plist, iph1->dhpub, ISAKMP_NPTYPE_KE);
1065 /* create isakmp NONCE payload */
1066 plist = isakmp_plist_append(plist, iph1->nonce, ISAKMP_NPTYPE_NONCE);
1068 /* create isakmp ID payload */
1069 plist = isakmp_plist_append(plist, iph1->id, ISAKMP_NPTYPE_ID);
1071 /* create isakmp HASH payload */
1072 plist = isakmp_plist_append(plist, iph1->hash, ISAKMP_NPTYPE_HASH);
1074 /* append vendor id, if needed */
1076 plist = isakmp_plist_append(plist, vid, ISAKMP_NPTYPE_VID);
1078 /* create isakmp CR payload if needed */
1080 plist = isakmp_plist_append(plist, cr, ISAKMP_NPTYPE_CR);
1082 case OAKLEY_ATTR_AUTH_METHOD_DSSSIG:
1083 case OAKLEY_ATTR_AUTH_METHOD_RSASIG:
1084 #ifdef ENABLE_HYBRID
1085 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_RSA_I:
1086 case OAKLEY_ATTR_AUTH_METHOD_HYBRID_DSS_I:
1088 /* XXX if there is CR or not ? */
1090 if (oakley_getmycert(iph1) < 0)
1093 if (oakley_getsign(iph1) < 0)
1096 if (iph1->cert != NULL && iph1->rmconf->send_cert)
1099 /* set SA payload to reply */
1100 plist = isakmp_plist_append(plist, iph1->sa_ret, ISAKMP_NPTYPE_SA);
1102 /* create isakmp KE payload */
1103 plist = isakmp_plist_append(plist, iph1->dhpub, ISAKMP_NPTYPE_KE);
1105 /* create isakmp NONCE payload */
1106 plist = isakmp_plist_append(plist, iph1->nonce, ISAKMP_NPTYPE_NONCE);
1108 /* add ID payload */
1109 plist = isakmp_plist_append(plist, iph1->id, ISAKMP_NPTYPE_ID);
1111 /* add CERT payload if there */
1113 plist = isakmp_plist_append(plist, iph1->cert->pl, ISAKMP_NPTYPE_CERT);
1115 /* add SIG payload */
1116 plist = isakmp_plist_append(plist, iph1->sig, ISAKMP_NPTYPE_SIG);
1118 /* append vendor id, if needed */
1120 plist = isakmp_plist_append(plist, vid, ISAKMP_NPTYPE_VID);
1122 #ifdef ENABLE_HYBRID
1123 if (iph1->mode_cfg->flags & ISAKMP_CFG_VENDORID_XAUTH) {
1124 if ((xauth_vid = set_vendorid(VENDORID_XAUTH)) == NULL) {
1125 plog(LLV_ERROR, LOCATION, NULL,
1126 "Cannot create Xauth vendor ID\n");
1129 plist = isakmp_plist_append(plist,
1130 xauth_vid, ISAKMP_NPTYPE_VID);
1133 if (iph1->mode_cfg->flags & ISAKMP_CFG_VENDORID_UNITY) {
1134 if ((unity_vid = set_vendorid(VENDORID_UNITY)) == NULL) {
1135 plog(LLV_ERROR, LOCATION, NULL,
1136 "Cannot create Unity vendor ID\n");
1139 plist = isakmp_plist_append(plist,
1140 unity_vid, ISAKMP_NPTYPE_VID);
1144 /* create isakmp CR payload if needed */
1146 plist = isakmp_plist_append(plist, cr, ISAKMP_NPTYPE_CR);
1149 case OAKLEY_ATTR_AUTH_METHOD_RSAENC:
1150 case OAKLEY_ATTR_AUTH_METHOD_RSAREV:
1153 case OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB:
1154 /* create buffer to send isakmp payload */
1155 gsshash = gssapi_wraphash(iph1);
1156 if (gsshash == NULL) {
1157 plog(LLV_ERROR, LOCATION, NULL,
1158 "failed to wrap hash\n");
1160 * This is probably due to the GSS roundtrips not
1161 * being finished yet. Return this error in
1162 * the hope that a fallback to main mode will
1165 isakmp_info_send_n1(iph1,
1166 ISAKMP_NTYPE_INVALID_EXCHANGE_TYPE, NULL);
1169 if (iph1->approval->gssid != NULL)
1170 gss_sa = ipsecdoi_setph1proposal(iph1->approval);
1172 gss_sa = iph1->sa_ret;
1174 /* set SA payload to reply */
1175 plist = isakmp_plist_append(plist, gss_sa, ISAKMP_NPTYPE_SA);
1177 /* create isakmp KE payload */
1178 plist = isakmp_plist_append(plist, iph1->dhpub, ISAKMP_NPTYPE_KE);
1180 /* create isakmp NONCE payload */
1181 plist = isakmp_plist_append(plist, iph1->nonce, ISAKMP_NPTYPE_NONCE);
1183 /* create isakmp ID payload */
1184 plist = isakmp_plist_append(plist, iph1->id, ISAKMP_NPTYPE_ID);
1186 /* create GSS payload */
1187 gssapi_get_token_to_send(iph1, &gsstoken);
1188 plist = isakmp_plist_append(plist, gsstoken, ISAKMP_NPTYPE_GSS);
1190 /* create isakmp HASH payload */
1191 plist = isakmp_plist_append(plist, gsshash, ISAKMP_NPTYPE_HASH);
1193 /* append vendor id, if needed */
1195 plist = isakmp_plist_append(plist, vid, ISAKMP_NPTYPE_VID);
1202 /* append NAT-T payloads */
1205 plist = isakmp_plist_append(plist, vid_natt, ISAKMP_NPTYPE_VID);
1207 plist = isakmp_plist_append(plist, natd[0], iph1->natt_options->payload_nat_d);
1208 plist = isakmp_plist_append(plist, natd[1], iph1->natt_options->payload_nat_d);
1213 plist = isakmp_plist_append(plist, vid_dpd, ISAKMP_NPTYPE_VID);
1216 iph1->sendbuf = isakmp_plist_set_all (&plist, iph1);
1218 #ifdef HAVE_PRINT_ISAKMP_C
1219 isakmp_printpacket(iph1->sendbuf, iph1->local, iph1->remote, 1);
1222 /* send the packet, add to the schedule to resend */
1223 iph1->retry_counter = iph1->rmconf->retry_counter;
1224 if (isakmp_ph1resend(iph1) == -1)
1227 /* the sending message is added to the received-list. */
1228 if (add_recvdpkt(iph1->remote, iph1->local, iph1->sendbuf, msg) == -1) {
1229 plog(LLV_ERROR , LOCATION, NULL,
1230 "failed to add a response packet to the tree.\n");
1234 iph1->status = PHASE1ST_MSG1SENT;
1243 #ifdef ENABLE_HYBRID
1254 if (gss_sa != iph1->sa_ret)
1266 * receive from initiator
1268 * gssapi: HDR, HASH_I
1269 * sig: HDR, [ CERT, ] SIG_I
1274 agg_r2recv(iph1, msg0)
1275 struct ph1handle *iph1;
1278 vchar_t *msg = NULL;
1279 vchar_t *pbuf = NULL;
1280 struct isakmp_parse_t *pa;
1288 /* validity check */
1289 if (iph1->status != PHASE1ST_MSG1SENT) {
1290 plog(LLV_ERROR, LOCATION, NULL,
1291 "status mismatched %d.\n", iph1->status);
1295 /* decrypting if need. */
1296 /* XXX configurable ? */
1297 if (ISSET(((struct isakmp *)msg0->v)->flags, ISAKMP_FLAG_E)) {
1298 msg = oakley_do_decrypt(iph1, msg0,
1299 iph1->ivm->iv, iph1->ivm->ive);
1305 /* validate the type of next payload */
1306 pbuf = isakmp_parse(msg);
1310 iph1->pl_hash = NULL;
1312 for (pa = (struct isakmp_parse_t *)pbuf->v;
1313 pa->type != ISAKMP_NPTYPE_NONE;
1317 case ISAKMP_NPTYPE_HASH:
1318 iph1->pl_hash = (struct isakmp_pl_hash *)pa->ptr;
1320 case ISAKMP_NPTYPE_VID:
1321 (void)check_vendorid(pa->ptr);
1323 case ISAKMP_NPTYPE_CERT:
1324 if (oakley_savecert(iph1, pa->ptr) < 0)
1327 case ISAKMP_NPTYPE_SIG:
1328 if (isakmp_p2ph(&iph1->sig_p, pa->ptr) < 0)
1331 case ISAKMP_NPTYPE_N:
1332 isakmp_check_notify(pa->ptr, iph1);
1336 case ISAKMP_NPTYPE_NATD_DRAFT:
1337 case ISAKMP_NPTYPE_NATD_RFC:
1338 if (pa->type == iph1->natt_options->payload_nat_d)
1340 vchar_t *natd_received = NULL;
1343 if (isakmp_p2ph (&natd_received, pa->ptr) < 0)
1347 iph1->natt_flags |= NAT_DETECTED;
1349 natd_verified = natt_compare_addr_hash (iph1,
1350 natd_received, natd_seq++);
1352 plog (LLV_INFO, LOCATION, NULL, "NAT-D payload #%d %s\n",
1354 natd_verified ? "verified" : "doesn't match");
1356 vfree (natd_received);
1359 /* passthrough to default... */
1363 /* don't send information, see isakmp_ident_r1() */
1364 plog(LLV_ERROR, LOCATION, iph1->remote,
1365 "ignore the packet, "
1366 "received unexpecting payload type %d.\n",
1373 if (NATT_AVAILABLE(iph1))
1374 plog (LLV_INFO, LOCATION, NULL, "NAT %s %s%s\n",
1375 iph1->natt_flags & NAT_DETECTED ?
1376 "detected:" : "not detected",
1377 iph1->natt_flags & NAT_DETECTED_ME ? "ME " : "",
1378 iph1->natt_flags & NAT_DETECTED_PEER ? "PEER" : "");
1381 /* validate authentication value */
1382 ptype = oakley_validate_auth(iph1);
1385 /* message printed inner oakley_validate_auth() */
1388 EVT_PUSH(iph1->local, iph1->remote,
1389 EVTT_PEERPH1AUTH_FAILED, NULL);
1390 isakmp_info_send_n1(iph1, ptype, NULL);
1394 iph1->status = PHASE1ST_MSG2RECEIVED;
1404 oakley_delcert(iph1->cert_p);
1405 iph1->cert_p = NULL;
1406 oakley_delcert(iph1->crl_p);
1408 VPTRINIT(iph1->sig_p);
1415 * status update and establish isakmp sa.
1418 agg_r2send(iph1, msg)
1419 struct ph1handle *iph1;
1424 /* validity check */
1425 if (iph1->status != PHASE1ST_MSG2RECEIVED) {
1426 plog(LLV_ERROR, LOCATION, NULL,
1427 "status mismatched %d.\n", iph1->status);
1431 /* IV synchronized when packet encrypted. */
1432 /* see handler.h about IV synchronization. */
1433 if (ISSET(((struct isakmp *)msg->v)->flags, ISAKMP_FLAG_E))
1434 memcpy(iph1->ivm->iv->v, iph1->ivm->ive->v, iph1->ivm->iv->l);
1436 /* set encryption flag */
1437 iph1->flags |= ISAKMP_FLAG_E;
1439 iph1->status = PHASE1ST_ESTABLISHED;