📄 slp_auth.c
字号:
/***************************************************************************//* *//* Project: OpenSLP - OpenSource implementation of Service Location *//* Protocol *//* *//* File: slp_auth.c *//* *//* Abstract: Common for OpenSLP's SLPv2 authentication implementation *//* Currently only bsd 0x0002 (DSA-SHA1) is supported *//* *//*-------------------------------------------------------------------------*//* *//* Please submit patches to http://www.openslp.org *//* *//*-------------------------------------------------------------------------*//* *//* Copyright (C) 2000 Caldera Systems, Inc *//* All rights reserved. *//* *//* Redistribution and use in source and binary forms, with or without *//* modification, are permitted provided that the following conditions are *//* met: */ /* *//* Redistributions of source code must retain the above copyright *//* notice, this list of conditions and the following disclaimer. *//* *//* Redistributions in binary form must reproduce the above copyright *//* notice, this list of conditions and the following disclaimer in *//* the documentation and/or other materials provided with the *//* distribution. *//* *//* Neither the name of Caldera Systems nor the names of its *//* contributors may be used to endorse or promote products derived *//* from this software without specific prior written permission. *//* *//* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS *//* `AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT *//* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR *//* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE CALDERA *//* SYSTEMS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, *//* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT *//* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, *//* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON *//* ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT *//* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE *//* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. *//* *//***************************************************************************/#include <time.h>#include "slp_xmalloc.h"#include "slp_auth.h"#include "slp_crypto.h"/*-------------------------------------------------------------------------*/int SLPAuthDigestString(int spistrlen, const char* spistr, int stringlen, const char* string, unsigned long timestamp, unsigned char* digest)/*-------------------------------------------------------------------------*/{ int result; int tmpbufsize; unsigned char* tmpbuf; unsigned char* curpos; /* assume success */ result = 0; /*-------------------------------------------------------*/ /* Allocate temporary buffer for contiguous data */ /*-------------------------------------------------------*/ /* +8 makes room for: stringlen (2 bytes) */ /* autharray[i].spistrlen (2 bytes) */ /* timestamp 4 bytes */ tmpbufsize = stringlen + spistrlen + 8; tmpbuf = xmalloc(tmpbufsize); if(tmpbuf == 0) { return SLP_ERROR_INTERNAL_ERROR; } /*-----------------------------------*/ /* Copy data into continguous buffer */ /*-----------------------------------*/ curpos = tmpbuf; ToUINT16(curpos,spistrlen); curpos = curpos + 2; memcpy(curpos, spistr, spistrlen); curpos = curpos + spistrlen; ToUINT16(curpos,stringlen); curpos = curpos + 2; memcpy(curpos, string, stringlen); curpos = curpos + stringlen; ToUINT32(curpos, timestamp); /*---------------------*/ /* Generate the digest */ /*---------------------*/ if(SLPCryptoSHA1Digest(tmpbuf, tmpbufsize, digest)) { result = SLP_ERROR_INTERNAL_ERROR; } /*------------------------------*/ /* Cleanup the temporary buffer */ /*------------------------------*/ xfree(tmpbuf); return result;}/*-------------------------------------------------------------------------*/int SLPAuthDigestDAAdvert(unsigned short spistrlen, const char* spistr, unsigned long timestamp, unsigned long bootstamp, unsigned short urllen, const char* url, unsigned short attrlistlen, const char* attrlist, unsigned short scopelistlen, const char* scopelist, unsigned short daspistrlen, const char* daspistr, unsigned char* digest)/*-------------------------------------------------------------------------*/{ int result; int tmpbufsize; unsigned char* tmpbuf; unsigned char* curpos; /* assume success */ result = 0; /*-------------------------------------------------------*/ /* Allocate temporary buffer for contiguous data */ /*-------------------------------------------------------*/ /* +18 makes room for: spistrlen (2 bytes) */ /* bootstamp (4 bytes) */ /* urllen (2 bytes) */ /* scopelistlen(2 bytes) */ /* attrlistlen (2 bytes) */ /* daspistrlen (2 bytes) */ /* timestamp (4 bytes) */ tmpbufsize = spistrlen + urllen + scopelistlen + attrlistlen + daspistrlen + 18; tmpbuf = xmalloc(tmpbufsize); if(tmpbuf == 0) { return SLP_ERROR_INTERNAL_ERROR; } /*-----------------------------------*/ /* Copy data into continguous buffer */ /*-----------------------------------*/ curpos = tmpbuf; ToUINT16(curpos,spistrlen); curpos += 2; memcpy(curpos, spistr, spistrlen); curpos += spistrlen; ToUINT32(curpos,bootstamp); curpos += 4; ToUINT16(curpos,urllen); curpos += 2; memcpy(curpos, url, urllen); curpos += urllen; ToUINT16(curpos,scopelistlen); curpos += 2; memcpy(curpos, scopelist, scopelistlen); curpos += scopelistlen; ToUINT16(curpos,attrlistlen); curpos += 2; memcpy(curpos, attrlist, attrlistlen); curpos += attrlistlen; ToUINT16(curpos,daspistrlen); curpos += 2; memcpy(curpos, daspistr, daspistrlen); curpos += daspistrlen; ToUINT32(curpos,timestamp); /*---------------------*/ /* Generate the digest */ /*---------------------*/ if(SLPCryptoSHA1Digest(tmpbuf, tmpbufsize, digest)) { result = SLP_ERROR_INTERNAL_ERROR; } /*------------------------------*/ /* Cleanup the temporary buffer */ /*------------------------------*/ xfree(tmpbuf); return result;}/*-------------------------------------------------------------------------*/int SLPAuthSignDigest(int spistrlen, const char* spistr, SLPCryptoDSAKey* key, unsigned char* digest, int* authblocklen, unsigned char** authblock)/*-------------------------------------------------------------------------*/{ int signaturelen; int result; unsigned char* curpos; /*----------------------------------------------*/ /* Allocate memory for the authentication block */ /*----------------------------------------------*/ /* +10 makes room for: */ /* - the bsd (2 bytes) */ /* - the the authblock length (2 bytes) */ /* - the spi string length (2 bytes) */ /* - the timestamp (4 bytes) */ signaturelen = SLPCryptoDSASignLen(key); *authblocklen = spistrlen + signaturelen + 10; *authblock = (unsigned char*)xmalloc(*authblocklen); if(*authblock == 0) { result = SLP_ERROR_INTERNAL_ERROR; goto ERROR; } /*---------------------------------------------------------*/ /* Fill in the Authblock with everything but the signature */ /*---------------------------------------------------------*/ curpos = *authblock; ToUINT16(curpos,0x0002); /* the BSD for DSA-SHA1 */ curpos += 2; ToUINT16(curpos,*authblocklen); curpos += 2; ToUINT32(curpos,0xffffffff); /* very long expiration (for now) */ curpos += 4; ToUINT16(curpos, spistrlen); curpos += 2; memcpy(curpos, spistr, spistrlen); curpos += spistrlen; /*---------------------------------------------*/ /* Sign the digest and put it in the authblock */ /*---------------------------------------------*/ if( SLPCryptoDSASign(key, digest, SLPAUTH_SHA1_DIGEST_SIZE, curpos, &signaturelen)) { result = SLP_ERROR_INTERNAL_ERROR; goto ERROR; } /*---------*/ /* Success */ /*---------*/ return 0;ERROR: /*-------------------------------*/ /* Clean up and return errorcode */ /*-------------------------------*/ if(authblock) xfree(*authblock); *authblock = 0; *authblocklen = 0; return result;}/*-------------------------------------------------------------------------*/int SLPVerifyDigest(SLPSpiHandle hspi, int emptyisfail, SLPCryptoDSAKey* key, unsigned char* digest, int authcount, const SLPAuthBlock* autharray)/*-------------------------------------------------------------------------*/{ int i; int signaturelen; int result; unsigned long timestamp; /*-----------------------------------*/ /* Should we fail on emtpy authblock */ /*-----------------------------------*/ if(emptyisfail)⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -