/*
* Copyright (C) 2012-2018 Tobias Brunner
* Copyright (C) 2005-2009 Martin Willi
* Copyright (C) 2005 Jan Hutter
* HSR Hochschule fuer Technik Rapperswil
*
* This program is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation; either version 2 of the License, or (at your
* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* for more details.
*/
#include "ike_auth.h"
#include <string.h>
#include <daemon.h>
#include <encoding/payloads/id_payload.h>
#include <encoding/payloads/auth_payload.h>
#include <encoding/payloads/eap_payload.h>
#include <encoding/payloads/nonce_payload.h>
#include <sa/ikev2/keymat_v2.h>
#include <sa/ikev2/authenticators/eap_authenticator.h>
#include <processing/jobs/delete_ike_sa_job.h>
typedef struct private_ike_auth_t private_ike_auth_t;
/**
* Private members of a ike_auth_t task.
*/
struct private_ike_auth_t {
/**
* Public methods and task_t interface.
*/
ike_auth_t public;
/**
* Assigned IKE_SA.
*/
ike_sa_t *ike_sa;
/**
* Are we the initiator?
*/
bool initiator;
/**
* Nonce chosen by us in ike_init
*/
chunk_t my_nonce;
/**
* Nonce chosen by peer in ike_init
*/
chunk_t other_nonce;
/**
* PPK_ID sent or received
*/
identification_t *ppk_id;
/**
* Optional PPK to use
*/
chunk_t ppk;
/**
* IKE_SA_INIT message sent by us
*/
packet_t *my_packet;
/**
* IKE_SA_INIT message sent by peer
*/
packet_t *other_packet;
/**
* Reserved bytes of ID payload
*/
char reserved[3];
/**
* currently active authenticator, to authenticate us
*/
authenticator_t *my_auth;
/**
* currently active authenticator, to authenticate peer
*/
authenticator_t *other_auth;
/**
* peer_cfg candidates, ordered by priority
*/
linked_list_t *candidates;
/**
* selected peer config (might change when using multiple authentications)
*/
peer_cfg_t *peer_cfg;
/**
* have we planned an(other) authentication exchange?
*/
bool do_another_auth;
/**
* has the peer announced another authentication exchange?
*/
bool expect_another_auth;
/**
* should we send a AUTHENTICATION_FAILED notify?
*/
bool authentication_failed;
/**
* received an INITIAL_CONTACT?
*/
bool initial_contact;
/**
* Is EAP acceptable, did we strictly authenticate peer?
*/
bool eap_acceptable;
/**
* Gateway ID if redirected
*/
identification_t *redirect_to;
};
/**
* check if multiple authentication extension is enabled, configuration-wise
*/
static bool multiple_auth_enabled()
{
return lib->settings->get_bool(lib->settings,
"%s.multiple_authentication", TRUE, lib->ns);
}
/**
* collect the needed information in the IKE_SA_INIT exchange from our message
*/
static status_t collect_my_init_data(private_ike_auth_t *this,
message_t *message)
{
nonce_payload_t *nonce;
/* get the nonce that was generated in ike_init */
nonce = (nonce_payload_t*)message->get_payload(message, PLV2_NONCE);
if (!nonce)
{
return FAILED;
}
this->my_nonce = nonce->get_nonce(nonce);
/* pre-generate the message, keep a copy */
if (this->ike_sa->generate_message(this->ike_sa, message,
&this->my_packet) != SUCCESS)
{
return FAILED;
}
return NEED_MORE;
}
/**
* collect the needed information in the IKE_SA_INIT exchange from others message
*/
static status_t collect_other_init_data(private_ike_auth_t *this,
message_t *message)
{
/* we collect the needed information in the IKE_SA_INIT exchange */
nonce_payload_t *nonce;
/* get the nonce that was generated in ike_init */
nonce = (nonce_payload_t*)message->get_payload(message, PLV2_NONCE);
if (!nonce)
{
return FAILED;
}
this->other_nonce = nonce->get_nonce(nonce);
/* keep a copy of the received packet */
this->other_packet = message->get_packet(message);
return NEED_MORE;
}
/**
* Get and store reserved bytes of id_payload, required for AUTH payload
*/
static void get_reserved_id_bytes(private_ike_auth_t *this, id_payload_t *id)
{
uint8_t *byte;
int i;
for (i = 0; i < countof(this->reserved); i++)
{
byte = payload_get_field(&id->payload_interface, RESERVED_BYTE, i);
if (byte)
{
this->reserved[i] = *byte;
}
}
}
/**
* Get the next authentication configuration
*/
static auth_cfg_t *get_auth_cfg(private_ike_auth_t *this, bool local)
{
enumerator_t *e1, *e2;
auth_cfg_t *c1, *c2, *next = NULL;
/* find an available config not already done */
e1 = this->peer_cfg->create_auth_cfg_enumerator(this->peer_cfg, local);
while (e1->enumerate(e1, &c1))
{
bool found = FALSE;
e2 = this->ike_sa->create_auth_cfg_enumerator(this->ike_sa, local);
while (e2->enumerate(e2, &c2))
{
if (c2->complies(c2, c1, FALSE))
{
found = TRUE;
break;
}
}
e2->destroy(e2);
if (!found)
{
next = c1;
break;
}
}
e1->destroy(e1);
return next;
}
/**
* Move the currently active auth config to the auth configs completed
*/
static void apply_auth_cfg(private_ike_auth_t *this, bool local)
{
auth_cfg_t *cfg;
cfg = auth_cfg_create();
cfg->merge(cfg, this->ike_sa->get_auth_cfg(this->ike_sa, local), local);
this->ike_sa->add_auth_cfg(this->ike_sa, local, cfg);
}
/**
* Check if we have should initiate another authentication round
*/
static bool do_another_auth(private_ike_auth_t *this)
{
bool do_another = FALSE;
enumerator_t *done, *todo;
auth_cfg_t *done_cfg, *todo_cfg;
if (!this->ike_sa->supports_extension(this->ike_sa, EXT_MULTIPLE_AUTH))
{
return FALSE;
}
done = this->ike_sa->create_auth_cfg_enumerator(this->ike_sa, TRUE);
todo = this->peer_cfg->create_auth_cfg_enumerator(this->peer_cfg, TRUE);
while (todo->enumerate(todo, &todo_cfg))
{
if (!done->enumerate(done, &done_cfg))
{
done_cfg = this->ike_sa->get_auth_cfg(this->ike_sa, TRUE);
}
if (!done_cfg->complies(done_cfg, todo_cfg, FALSE))
{
do_another = TRUE;
break;
}
}
done->destroy(done);
todo->destroy(todo);
return do_another;
}
/**
* Check if this is the first authentication round
*/
static bool is_first_round(private_ike_auth_t *this, bool local)
{
enumerator_t *done;
auth_cfg_t *cfg;
if (!this->ike_sa->supports_extension(this->ike_sa, EXT_MULTIPLE_AUTH))
{
return TRUE;
}
done = this->ike_sa->create_auth_cfg_enumerator(this->ike_sa, local);
if (done->enumerate(done, &cfg))
{
done->destroy(done);
return FALSE;
}
done->destroy(done);
return TRUE;
}
/**
* Get peer configuration candidates from backends
*/
static bool load_cfg_candidates(private_ike_auth_t *this)
{
enumerator_t *enumerator;
peer_cfg_t *peer_cfg;
ike_cfg_t *ike_cfg;
host_t *me, *other;
identification_t *my_id, *other_id;
proposal_t *ike_proposal;
bool private;
me = this->ike_sa->get_my_host(this->ike_sa);
other = this->ike_sa->get_other_host(this->ike_sa);
my_id = this->ike_sa->get_my_id(this->ike_sa);
other_id = this->ike_sa->get_other_id(this->ike_sa);
ike_proposal = this->ike_sa->get_proposal(this->ike_sa);
private = this->ike_sa->supports_extension(this->ike_sa, EXT_STRONGSWAN) ||
lib->settings->get_bool(lib->settings, "%s.accept_private_algs",
FALSE, lib->ns);
DBG1(DBG_CFG, "looking for peer configs matching %H[%Y]...%H[%Y]",
me, my_id, other, other_id);
enumerator = charon->backends->create_peer_cfg_enumerator(charon->backends,
me, other, my_id, other_id, IKEV2);
while (enumerator->enumerate(enumerator, &peer_cfg))
{
/* ignore all configs that have no matching IKE proposal */
ike_cfg = peer_cfg->get_ike_cfg(peer_cfg);
if (!ike_cfg->has_proposal(ike_cfg, ike_proposal, private))
{
DBG2(DBG_CFG, "ignore candidate '%s' without matching IKE proposal",
peer_cfg->get_name(peer_cfg));
continue;
}
peer_cfg->get_ref(peer_cfg);
if (!this->peer_cfg)
{ /* best match */
this->peer_cfg = peer_cfg;
}
else
{
this->candidates->insert_last(this->candidates, peer_cfg);
}
}
enumerator->destroy(enumerator);
if (this->peer_cfg)
{
this->ike_sa->set_peer_cfg(this->ike_sa, this->peer_cfg);
DBG1(DBG_CFG, "selected peer config '%s'",
this->peer_cfg->get_name(this->peer_cfg));
return TRUE;
}
DBG1(DBG_CFG, "no matching peer config found");
return FALSE;
}
/**
* update the current peer candidate if necessary, using candidates
*/
static bool update_cfg_candidates(private_ike_auth_t *this, bool strict)
{
do
{
if (this->peer_cfg)
{
char *comply_error = NULL;
enumerator_t *e1, *e2, *tmp;
auth_cfg_t *c1, *c2;
e1 = this->ike_sa->create_auth_cfg_enumerator(this->ike_sa, FALSE);
e2 = this->peer_cfg->create_auth_cfg_enumerator(this->peer_cfg, FALSE);
if (strict)
{ /* swap lists in strict mode: all configured rounds must be
* fulfilled. If !strict, we check only the rounds done so far. */
tmp = e1;
e1 = e2;
e2 = tmp;
}
while (e1->enumerate(e1, &c1))
{
/* check if done authentications comply to configured ones */
if (!e2->enumerate(e2, &c2))
{
comply_error = "insufficient authentication rounds";
break;
}
if (!strict && !c1->complies(c1, c2, TRUE))
{
comply_error = "non-matching authentication done";
break;
}
if (strict && !c2->complies(c2, c1, TRUE))
{
comply_error = "constraint checking failed";
break;
}
}
e1->destroy(e1);
e2->destroy(e2);
if (!comply_error)
{
break;
}
DBG1(DBG_CFG, "selected peer config '%s' unacceptable: %s",
this->peer_cfg->get_name(this->peer_cfg), comply_error);
this->peer_cfg->destroy(this->peer_cfg);
}
if (this->candidates->remove_first(this->candidates,
(void**)&this->peer_cfg) != SUCCESS)
{
DBG1(DBG_CFG, "no alternative config found");
this->peer_cfg = NULL;
}
else
{
DBG1(DBG_CFG, "switching to peer config '%s'",
this->peer_cfg->get_name(this->peer_cfg));
this->ike_sa->set_peer_cfg(this->ike_sa, this->peer_cfg);
}
}
while (this->peer_cfg);
return this->peer_cfg != NULL;
}
/**
* Currently defined PPK_ID types
*/
#define PPK_ID_OPAQUE 1
#define PPK_ID_FIXED 2
/**
* Parse the payload data of the given PPK_IDENTITY notify
*/
static bool parse_ppk_identity(notify_payload_t *notify, identification_t **id)
{
chunk_t data;
data = notify->get_notification_data(notify);
if (data.len < 2)
{
return FALSE;
}
switch (data.ptr[0])
{
case PPK_ID_FIXED:
data = chunk_skip(data, 1);
break;
default:
return FALSE;
}
*id = identification_create_from_data(data);
return TRUE;
}
/**
* Add a PPK_IDENTITY with the given PPK_ID to the given message
*/
static void add_ppk_identity(identification_t *id, message_t *msg)
{
chunk_t data;
uint8_t type = PPK_ID_FIXED;
/* we currently only support one type */
data = chunk_cata("cc", chunk_from_thing(type), id->get_encoding(id));
msg->add_notify(msg, FALSE, PPK_IDENTITY, data);
}
/**
* Use the given PPK_ID to find a PPK and store it and the ID in the task
*/
static bool get_ppk(private_ike_auth_t *this, identification_t *ppk_id)
{
shared_key_t *key;
key = lib->credmgr->get_shared(lib->credmgr, SHARED_PPK, ppk_id, NULL);
if (!key)
{
if (this->peer_cfg->ppk_required(this->peer_cfg))
{
DBG1(DBG_CFG, "PPK required but no PPK found for '%Y'", ppk_id);
return FALSE;
}
DBG1(DBG_CFG, "no PPK for '%Y' found, ignored because PPK is not "
"required", ppk_id);
return TRUE;
}
this->ppk = chunk_clone(key->get_key(key));
this->ppk_id = ppk_id->clone(ppk_id);
key->destroy(key);
return TRUE;
}
/**
* Check if we have a PPK available and, if not, whether we require one as
* initiator
*/
static bool get_ppk_i(private_ike_auth_t *this)
{
identification_t *ppk_id;
if (!this->ike_sa->supports_extension(this->ike_sa, EXT_PPK))
{
if (this->peer_cfg->ppk_required(this->peer_cfg))
{
DBG1(DBG_CFG, "PPK required but peer does not support PPK");
return FALSE;
}
return TRUE;
}
ppk_id = this->peer_cfg->get_ppk_id(this->peer_cfg);
if (!ppk_id)
{
if (this->peer_cfg->ppk_required(this->peer_cfg))
{
DBG1(DBG_CFG, "PPK required but no PPK_ID configured");
return FALSE;
}
return TRUE;
}
return get_ppk(this, ppk_id);
}
/**
* Check if we have a PPK available and if not whether we require one as
* responder
*/
static bool get_ppk_r(private_ike_auth_t *this, message_t *msg)
{
notify_payload_t *notify;
identification_t *ppk_id, *ppk_id_cfg;
bool result;
if (!this->ike_sa->supports_extension(this->ike_sa, EXT_PPK))
{
if (this->peer_cfg->ppk_required(this->peer_cfg))
{
DBG1(DBG_CFG, "PPK required but peer does not support PPK");
return FALSE;
}
return TRUE;
}
notify = msg->get_notify(msg, PPK_IDENTITY);
if (!notify || !parse_ppk_identity(notify, &ppk_id))
{
if (this->peer_cfg->ppk_required(this->peer_cfg))
{
DBG1(DBG_CFG, "PPK required but no PPK_IDENTITY received");
return FALSE;
}
return TRUE;
}
ppk_id_cfg = this->peer_cfg->get_ppk_id(this->peer_cfg);
if (ppk_id_cfg && !ppk_id->matches(ppk_id, ppk_id_cfg))
{
DBG1(DBG_CFG, "received PPK_ID '%Y', but require '%Y'", ppk_id,
ppk_id_cfg);
ppk_id->destroy(ppk_id);
return FALSE;
}
result = get_ppk(this, ppk_id);
ppk_id->destroy(ppk_id);
return result;
}
METHOD(task_t, build_i, status_t,
private_ike_auth_t *this, message_t *message)
{
auth_cfg_t *cfg;
if (message->get_exchange_type(message) == IKE_SA_INIT)
{
return collect_my_init_data(this, message);
}
if (!this->peer_cfg)
{
this->peer_cfg = this->ike_sa->get_peer_cfg(this->ike_sa);
this->peer_cfg->get_ref(this->peer_cfg);
}
if (message->get_message_id(message) == 1)
{ /* in the first IKE_AUTH ... */
if (this->ike_sa->supports_extension(this->ike_sa, EXT_MULTIPLE_AUTH))
{ /* indicate support for multiple authentication */
message->add_notify(message, FALSE, MULTIPLE_AUTH_SUPPORTED,
chunk_empty);
}
/* indicate support for EAP-only authentication */
message->add_notify(message, FALSE, EAP_ONLY_AUTHENTICATION,
chunk_empty);
/* indicate support for RFC 6311 Message ID synchronization */
message->add_notify(message, FALSE, IKEV2_MESSAGE_ID_SYNC_SUPPORTED,
chunk_empty);
/* only use a PPK in the first round */
if (!get_ppk_i(this))
{
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
return FAILED;
}
}
if (!this->do_another_auth && !this->my_auth)
{ /* we have done our rounds */
return NEED_MORE;
}
/* check if an authenticator is in progress */
if (!this->my_auth)
{
identification_t *idi, *idr = NULL;
id_payload_t *id_payload;
/* clean up authentication config from a previous round */
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, TRUE);
cfg->purge(cfg, TRUE);
/* add (optional) IDr */
cfg = get_auth_cfg(this, FALSE);
if (cfg)
{
idr = cfg->get(cfg, AUTH_RULE_IDENTITY);
if (!cfg->get(cfg, AUTH_RULE_IDENTITY_LOOSE) && idr &&
!idr->contains_wildcards(idr))
{
this->ike_sa->set_other_id(this->ike_sa, idr->clone(idr));
id_payload = id_payload_create_from_identification(
PLV2_ID_RESPONDER, idr);
message->add_payload(message, (payload_t*)id_payload);
}
}
/* add IDi */
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, TRUE);
cfg->merge(cfg, get_auth_cfg(this, TRUE), TRUE);
idi = cfg->get(cfg, AUTH_RULE_IDENTITY);
if (!idi || idi->get_type(idi) == ID_ANY)
{ /* ID_ANY is invalid as IDi, use local IP address instead */
host_t *me;
DBG1(DBG_CFG, "no IDi configured, fall back on IP address");
me = this->ike_sa->get_my_host(this->ike_sa);
idi = identification_create_from_sockaddr(me->get_sockaddr(me));
cfg->add(cfg, AUTH_RULE_IDENTITY, idi);
}
this->ike_sa->set_my_id(this->ike_sa, idi->clone(idi));
id_payload = id_payload_create_from_identification(PLV2_ID_INITIATOR, idi);
get_reserved_id_bytes(this, id_payload);
message->add_payload(message, (payload_t*)id_payload);
if (idr && !idr->contains_wildcards(idr) &&
message->get_message_id(message) == 1 &&
this->peer_cfg->get_unique_policy(this->peer_cfg) != UNIQUE_NEVER)
{
host_t *host;
host = this->ike_sa->get_other_host(this->ike_sa);
if (!charon->ike_sa_manager->has_contact(charon->ike_sa_manager,
idi, idr, host->get_family(host)))
{
message->add_notify(message, FALSE, INITIAL_CONTACT, chunk_empty);
}
}
/* build authentication data */
this->my_auth = authenticator_create_builder(this->ike_sa, cfg,
this->other_nonce, this->my_nonce,
this->other_packet->get_data(this->other_packet),
this->my_packet->get_data(this->my_packet),
this->reserved);
if (!this->my_auth)
{
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
return FAILED;
}
}
/* for authentication methods that return NEED_MORE, the PPK will be reset
* in process_i() for messages without PPK_ID notify, so we always set it
* during the first round (afterwards the PPK won't be available) */
if (this->ppk.ptr && this->my_auth->use_ppk)
{
this->my_auth->use_ppk(this->my_auth, this->ppk,
!this->peer_cfg->ppk_required(this->peer_cfg));
}
switch (this->my_auth->build(this->my_auth, message))
{
case SUCCESS:
apply_auth_cfg(this, TRUE);
this->my_auth->destroy(this->my_auth);
this->my_auth = NULL;
break;
case NEED_MORE:
break;
default:
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
return FAILED;
}
/* add a PPK_IDENTITY notify to the message that contains AUTH */
if (this->ppk_id && message->get_payload(message, PLV2_AUTH))
{
add_ppk_identity(this->ppk_id, message);
}
/* check for additional authentication rounds */
if (do_another_auth(this))
{
if (message->get_payload(message, PLV2_AUTH))
{
message->add_notify(message, FALSE, ANOTHER_AUTH_FOLLOWS, chunk_empty);
}
}
else
{
this->do_another_auth = FALSE;
}
return NEED_MORE;
}
METHOD(task_t, process_r, status_t,
private_ike_auth_t *this, message_t *message)
{
auth_cfg_t *cfg, *cand;
id_payload_t *id_payload;
identification_t *id;
if (message->get_exchange_type(message) == IKE_SA_INIT)
{
return collect_other_init_data(this, message);
}
if (!this->my_auth && this->do_another_auth)
{
/* handle (optional) IDr payload, apply proposed identity */
id_payload = (id_payload_t*)message->get_payload(message, PLV2_ID_RESPONDER);
if (id_payload)
{
id = id_payload->get_identification(id_payload);
}
else
{
id = identification_create_from_encoding(ID_ANY, chunk_empty);
}
this->ike_sa->set_my_id(this->ike_sa, id);
}
if (!this->expect_another_auth)
{
return NEED_MORE;
}
if (message->get_message_id(message) == 1)
{ /* check for extensions in the first IKE_AUTH */
if (message->get_notify(message, MULTIPLE_AUTH_SUPPORTED))
{
this->ike_sa->enable_extension(this->ike_sa, EXT_MULTIPLE_AUTH);
}
if (message->get_notify(message, EAP_ONLY_AUTHENTICATION))
{
this->ike_sa->enable_extension(this->ike_sa,
EXT_EAP_ONLY_AUTHENTICATION);
}
if (message->get_notify(message, INITIAL_CONTACT))
{
this->initial_contact = TRUE;
}
}
if (!this->other_auth)
{
/* handle IDi payload */
id_payload = (id_payload_t*)message->get_payload(message, PLV2_ID_INITIATOR);
if (!id_payload)
{
DBG1(DBG_IKE, "IDi payload missing");
return FAILED;
}
id = id_payload->get_identification(id_payload);
get_reserved_id_bytes(this, id_payload);
this->ike_sa->set_other_id(this->ike_sa, id);
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, FALSE);
cfg->add(cfg, AUTH_RULE_IDENTITY, id->clone(id));
if (!this->peer_cfg)
{
if (!load_cfg_candidates(this))
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
}
if (!message->get_payload(message, PLV2_AUTH))
{ /* before authenticating with EAP, we need a EAP config */
cand = get_auth_cfg(this, FALSE);
while (!cand || (
(uintptr_t)cand->get(cand, AUTH_RULE_EAP_TYPE) == EAP_NAK &&
(uintptr_t)cand->get(cand, AUTH_RULE_EAP_VENDOR) == 0))
{ /* peer requested EAP, but current config does not match */
DBG1(DBG_IKE, "peer requested EAP, config unacceptable");
this->peer_cfg->destroy(this->peer_cfg);
this->peer_cfg = NULL;
if (!update_cfg_candidates(this, FALSE))
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
cand = get_auth_cfg(this, FALSE);
}
/* copy over the EAP specific rules for authentication */
cfg->add(cfg, AUTH_RULE_EAP_TYPE,
cand->get(cand, AUTH_RULE_EAP_TYPE));
cfg->add(cfg, AUTH_RULE_EAP_VENDOR,
cand->get(cand, AUTH_RULE_EAP_VENDOR));
id = (identification_t*)cand->get(cand, AUTH_RULE_EAP_IDENTITY);
if (id)
{
cfg->add(cfg, AUTH_RULE_EAP_IDENTITY, id->clone(id));
}
id = (identification_t*)cand->get(cand, AUTH_RULE_AAA_IDENTITY);
if (id)
{
cfg->add(cfg, AUTH_RULE_AAA_IDENTITY, id->clone(id));
}
}
/* verify authentication data */
this->other_auth = authenticator_create_verifier(this->ike_sa,
message, this->other_nonce, this->my_nonce,
this->other_packet->get_data(this->other_packet),
this->my_packet->get_data(this->my_packet),
this->reserved);
if (!this->other_auth)
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
}
if (message->get_payload(message, PLV2_AUTH) &&
is_first_round(this, FALSE))
{
if (!get_ppk_r(this, message))
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
else if (this->ppk.ptr && this->other_auth->use_ppk)
{
this->other_auth->use_ppk(this->other_auth, this->ppk, FALSE);
}
}
switch (this->other_auth->process(this->other_auth, message))
{
case SUCCESS:
this->other_auth->destroy(this->other_auth);
this->other_auth = NULL;
break;
case NEED_MORE:
if (message->get_payload(message, PLV2_AUTH))
{ /* AUTH verification successful, but another build() needed */
break;
}
return NEED_MORE;
default:
this->authentication_failed = TRUE;
return NEED_MORE;
}
/* another auth round done, invoke authorize hook */
if (!charon->bus->authorize(charon->bus, FALSE))
{
DBG1(DBG_IKE, "authorization hook forbids IKE_SA, cancelling");
this->authentication_failed = TRUE;
return NEED_MORE;
}
apply_auth_cfg(this, FALSE);
if (!update_cfg_candidates(this, FALSE))
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
if (!message->get_notify(message, ANOTHER_AUTH_FOLLOWS))
{
this->expect_another_auth = FALSE;
if (!update_cfg_candidates(this, TRUE))
{
this->authentication_failed = TRUE;
return NEED_MORE;
}
}
return NEED_MORE;
}
/**
* Clear the PPK and PPK_ID
*/
static void clear_ppk(private_ike_auth_t *this)
{
DESTROY_IF(this->ppk_id);
this->ppk_id = NULL;
chunk_clear(&this->ppk);
}
/**
* Derive new keys and clear the PPK
*/
static bool apply_ppk(private_ike_auth_t *this)
{
keymat_v2_t *keymat;
if (this->ppk.ptr)
{
keymat = (keymat_v2_t*)this->ike_sa->get_keymat(this->ike_sa);
if (!keymat->derive_ike_keys_ppk(keymat, this->ppk))
{
return FALSE;
}
DBG1(DBG_CFG, "using PPK for PPK_ID '%Y'", this->ppk_id);
this->ike_sa->set_condition(this->ike_sa, COND_PPK, TRUE);
}
clear_ppk(this);
return TRUE;
}
METHOD(task_t, build_r, status_t,
private_ike_auth_t *this, message_t *message)
{
identification_t *gateway;
auth_cfg_t *cfg;
if (message->get_exchange_type(message) == IKE_SA_INIT)
{
if (multiple_auth_enabled())
{
message->add_notify(message, FALSE, MULTIPLE_AUTH_SUPPORTED,
chunk_empty);
}
return collect_my_init_data(this, message);
}
if (this->authentication_failed || !this->peer_cfg)
{
goto peer_auth_failed;
}
if (!this->my_auth && this->do_another_auth)
{
identification_t *id, *id_cfg;
id_payload_t *id_payload;
/* add IDr */
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, TRUE);
cfg->purge(cfg, TRUE);
cfg->merge(cfg, get_auth_cfg(this, TRUE), TRUE);
id_cfg = cfg->get(cfg, AUTH_RULE_IDENTITY);
id = this->ike_sa->get_my_id(this->ike_sa);
if (id->get_type(id) == ID_ANY)
{ /* no IDr received, apply configured ID */
if (!id_cfg || id_cfg->contains_wildcards(id_cfg))
{ /* no ID configured, use local IP address */
host_t *me;
DBG1(DBG_CFG, "no IDr configured, fall back on IP address");
me = this->ike_sa->get_my_host(this->ike_sa);
id_cfg = identification_create_from_sockaddr(
me->get_sockaddr(me));
cfg->add(cfg, AUTH_RULE_IDENTITY, id_cfg);
}
this->ike_sa->set_my_id(this->ike_sa, id_cfg->clone(id_cfg));
id = id_cfg;
}
else
{ /* IDr received, check if it matches configuration */
if (id_cfg && !id->matches(id, id_cfg))
{
DBG1(DBG_CFG, "received IDr %Y, but require %Y", id, id_cfg);
goto peer_auth_failed;
}
}
id_payload = id_payload_create_from_identification(PLV2_ID_RESPONDER, id);
get_reserved_id_bytes(this, id_payload);
message->add_payload(message, (payload_t*)id_payload);
if ((uintptr_t)cfg->get(cfg, AUTH_RULE_AUTH_CLASS) == AUTH_CLASS_EAP)
{ /* EAP-only authentication */
if (!this->ike_sa->supports_extension(this->ike_sa,
EXT_EAP_ONLY_AUTHENTICATION))
{
if (lib->settings->get_bool(lib->settings,
"%s.force_eap_only_authentication", FALSE, lib->ns))
{
DBG1(DBG_IKE, "ignore missing %N notify and use EAP-only "
"authentication", notify_type_names,
EAP_ONLY_AUTHENTICATION);
}
else
{
DBG1(DBG_IKE, "configured EAP-only authentication, but "
"peer does not support it");
goto peer_auth_failed;
}
}
}
else
{
/* build authentication data */
this->my_auth = authenticator_create_builder(this->ike_sa, cfg,
this->other_nonce, this->my_nonce,
this->other_packet->get_data(this->other_packet),
this->my_packet->get_data(this->my_packet),
this->reserved);
if (!this->my_auth)
{
goto local_auth_failed;
}
}
}
if (this->other_auth)
{
switch (this->other_auth->build(this->other_auth, message))
{
case SUCCESS:
this->other_auth->destroy(this->other_auth);
this->other_auth = NULL;
break;
case NEED_MORE:
break;
default:
if (message->get_payload(message, PLV2_EAP))
{ /* skip AUTHENTICATION_FAILED if we have EAP_FAILURE */
goto peer_auth_failed_no_notify;
}
goto peer_auth_failed;
}
}
if (this->my_auth)
{
if (this->ppk.ptr && this->my_auth->use_ppk)
{
this->my_auth->use_ppk(this->my_auth, this->ppk, FALSE);
}
switch (this->my_auth->build(this->my_auth, message))
{
case SUCCESS:
apply_auth_cfg(this, TRUE);
this->my_auth->destroy(this->my_auth);
this->my_auth = NULL;
break;
case NEED_MORE:
break;
default:
goto local_auth_failed;
}
}
/* add a PPK_IDENTITY notify and derive new keys and clear the PPK */
if (this->ppk.ptr)
{
message->add_notify(message, FALSE, PPK_IDENTITY, chunk_empty);
if (!apply_ppk(this))
{
goto local_auth_failed;
}
}
/* check for additional authentication rounds */
if (do_another_auth(this))
{
message->add_notify(message, FALSE, ANOTHER_AUTH_FOLLOWS, chunk_empty);
}
else
{
this->do_another_auth = FALSE;
}
if (this->do_another_auth || this->expect_another_auth)
{
return NEED_MORE;
}
if (charon->ike_sa_manager->check_uniqueness(charon->ike_sa_manager,
this->ike_sa, this->initial_contact))
{
DBG1(DBG_IKE, "cancelling IKE_SA setup due to uniqueness policy");
charon->bus->alert(charon->bus, ALERT_UNIQUE_KEEP);
message->add_notify(message, TRUE, AUTHENTICATION_FAILED,
chunk_empty);
return FAILED;
}
if (!charon->bus->authorize(charon->bus, TRUE))
{
DBG1(DBG_IKE, "final authorization hook forbids IKE_SA, cancelling");
goto peer_auth_failed;
}
if (this->ike_sa->supports_extension(this->ike_sa, EXT_IKE_REDIRECTION) &&
charon->redirect->redirect_on_auth(charon->redirect, this->ike_sa,
&gateway))
{
delete_ike_sa_job_t *job;
chunk_t data;
DBG1(DBG_IKE, "redirecting peer to %Y", gateway);
data = redirect_data_create(gateway, chunk_empty);
message->add_notify(message, FALSE, REDIRECT, data);
gateway->destroy(gateway);
chunk_free(&data);
/* we use this condition to prevent the CHILD_SA from getting created */
this->ike_sa->set_condition(this->ike_sa, COND_REDIRECTED, TRUE);
/* if the peer does not delete the SA we do so after a while */
job = delete_ike_sa_job_create(this->ike_sa->get_id(this->ike_sa), TRUE);
lib->scheduler->schedule_job(lib->scheduler, (job_t*)job,
lib->settings->get_int(lib->settings,
"%s.half_open_timeout", HALF_OPEN_IKE_SA_TIMEOUT,
lib->ns));
}
DBG0(DBG_IKE, "IKE_SA %s[%d] established between %H[%Y]...%H[%Y]",
this->ike_sa->get_name(this->ike_sa),
this->ike_sa->get_unique_id(this->ike_sa),
this->ike_sa->get_my_host(this->ike_sa),
this->ike_sa->get_my_id(this->ike_sa),
this->ike_sa->get_other_host(this->ike_sa),
this->ike_sa->get_other_id(this->ike_sa));
this->ike_sa->set_state(this->ike_sa, IKE_ESTABLISHED);
charon->bus->ike_updown(charon->bus, this->ike_sa, TRUE);
return SUCCESS;
peer_auth_failed:
message->add_notify(message, TRUE, AUTHENTICATION_FAILED, chunk_empty);
peer_auth_failed_no_notify:
charon->bus->alert(charon->bus, ALERT_PEER_AUTH_FAILED);
return FAILED;
local_auth_failed:
message->add_notify(message, TRUE, AUTHENTICATION_FAILED, chunk_empty);
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
return FAILED;
}
/**
* Send an INFORMATIONAL message with an AUTH_FAILED before closing IKE_SA
*/
static void send_auth_failed_informational(private_ike_auth_t *this,
message_t *reply)
{
message_t *message;
packet_t *packet;
host_t *host;
message = message_create(IKEV2_MAJOR_VERSION, IKEV2_MINOR_VERSION);
message->set_message_id(message, reply->get_message_id(reply) + 1);
host = this->ike_sa->get_my_host(this->ike_sa);
message->set_source(message, host->clone(host));
host = this->ike_sa->get_other_host(this->ike_sa);
message->set_destination(message, host->clone(host));
message->set_exchange_type(message, INFORMATIONAL);
message->add_notify(message, FALSE, AUTHENTICATION_FAILED, chunk_empty);
if (this->ike_sa->generate_message(this->ike_sa, message,
&packet) == SUCCESS)
{
charon->sender->send(charon->sender, packet);
}
message->destroy(message);
}
/**
* Check if strict constraint fulfillment required to continue current auth
*/
static bool require_strict(private_ike_auth_t *this, bool mutual_eap)
{
auth_cfg_t *cfg;
if (this->eap_acceptable)
{
return FALSE;
}
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, TRUE);
switch ((uintptr_t)cfg->get(cfg, AUTH_RULE_AUTH_CLASS))
{
case AUTH_CLASS_EAP:
if (mutual_eap && this->my_auth)
{
this->eap_acceptable = TRUE;
return !this->my_auth->is_mutual(this->my_auth);
}
return TRUE;
case AUTH_CLASS_PSK:
return TRUE;
case AUTH_CLASS_PUBKEY:
case AUTH_CLASS_ANY:
default:
return FALSE;
}
}
METHOD(task_t, process_i, status_t,
private_ike_auth_t *this, message_t *message)
{
enumerator_t *enumerator;
payload_t *payload;
auth_cfg_t *cfg;
bool mutual_eap = FALSE, ppk_id_received = FALSE;
if (message->get_exchange_type(message) == IKE_SA_INIT)
{
if (message->get_notify(message, MULTIPLE_AUTH_SUPPORTED) &&
multiple_auth_enabled())
{
this->ike_sa->enable_extension(this->ike_sa, EXT_MULTIPLE_AUTH);
}
return collect_other_init_data(this, message);
}
enumerator = message->create_payload_enumerator(message);
while (enumerator->enumerate(enumerator, &payload))
{
if (payload->get_type(payload) == PLV2_NOTIFY)
{
notify_payload_t *notify = (notify_payload_t*)payload;
notify_type_t type = notify->get_notify_type(notify);
switch (type)
{
case NO_PROPOSAL_CHOSEN:
case SINGLE_PAIR_REQUIRED:
case NO_ADDITIONAL_SAS:
case INTERNAL_ADDRESS_FAILURE:
case FAILED_CP_REQUIRED:
case TS_UNACCEPTABLE:
case INVALID_SELECTORS:
/* these are errors, but are not critical as only the
* CHILD_SA won't get build, but IKE_SA establishes anyway */
break;
case MOBIKE_SUPPORTED:
case ADDITIONAL_IP4_ADDRESS:
case ADDITIONAL_IP6_ADDRESS:
/* handled in ike_mobike task */
break;
case AUTH_LIFETIME:
/* handled in ike_auth_lifetime task */
break;
case ME_ENDPOINT:
/* handled in ike_me task */
break;
case REDIRECT:
DESTROY_IF(this->redirect_to);
this->redirect_to = redirect_data_parse(
notify->get_notification_data(notify), NULL);
if (!this->redirect_to)
{
DBG1(DBG_IKE, "received invalid REDIRECT notify");
}
break;
case IKEV2_MESSAGE_ID_SYNC_SUPPORTED:
this->ike_sa->enable_extension(this->ike_sa,
EXT_IKE_MESSAGE_ID_SYNC);
break;
case PPK_IDENTITY:
ppk_id_received = TRUE;
break;
default:
{
if (type <= 16383)
{
DBG1(DBG_IKE, "received %N notify error",
notify_type_names, type);
enumerator->destroy(enumerator);
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
return FAILED;
}
DBG2(DBG_IKE, "received %N notify",
notify_type_names, type);
break;
}
}
}
}
enumerator->destroy(enumerator);
if (this->expect_another_auth)
{
if (!this->other_auth)
{
id_payload_t *id_payload;
identification_t *id;
/* handle IDr payload */
id_payload = (id_payload_t*)message->get_payload(message,
PLV2_ID_RESPONDER);
if (!id_payload)
{
DBG1(DBG_IKE, "IDr payload missing");
goto peer_auth_failed;
}
id = id_payload->get_identification(id_payload);
get_reserved_id_bytes(this, id_payload);
this->ike_sa->set_other_id(this->ike_sa, id);
cfg = this->ike_sa->get_auth_cfg(this->ike_sa, FALSE);
cfg->add(cfg, AUTH_RULE_IDENTITY, id->clone(id));
if (message->get_payload(message, PLV2_AUTH))
{
/* verify authentication data */
this->other_auth = authenticator_create_verifier(this->ike_sa,
message, this->other_nonce, this->my_nonce,
this->other_packet->get_data(this->other_packet),
this->my_packet->get_data(this->my_packet),
this->reserved);
if (!this->other_auth)
{
goto peer_auth_failed;
}
}
else
{
/* responder omitted AUTH payload, indicating EAP-only */
mutual_eap = TRUE;
}
}
if (this->other_auth)
{
if (ppk_id_received && is_first_round(this, FALSE) &&
this->other_auth->use_ppk)
{
this->other_auth->use_ppk(this->other_auth, this->ppk, FALSE);
}
switch (this->other_auth->process(this->other_auth, message))
{
case SUCCESS:
break;
case NEED_MORE:
return NEED_MORE;
default:
goto peer_auth_failed;
}
this->other_auth->destroy(this->other_auth);
this->other_auth = NULL;
}
/* another auth round done, invoke authorize hook */
if (!charon->bus->authorize(charon->bus, FALSE))
{
DBG1(DBG_IKE, "authorization forbids IKE_SA, cancelling");
goto peer_auth_failed;
}
if (!mutual_eap)
{
apply_auth_cfg(this, FALSE);
}
}
if (require_strict(this, mutual_eap))
{
if (!update_cfg_candidates(this, TRUE))
{
goto peer_auth_failed;
}
}
if (this->my_auth)
{
/* while we already set the PPK in build_i(), we MUST not use it if
* the peer did not reply with a PPK_ID notify */
if (this->ppk.ptr && this->my_auth->use_ppk)
{
this->my_auth->use_ppk(this->my_auth,
ppk_id_received ? this->ppk : chunk_empty,
FALSE);
}
switch (this->my_auth->process(this->my_auth, message))
{
case SUCCESS:
apply_auth_cfg(this, TRUE);
if (this->my_auth->is_mutual(this->my_auth))
{
apply_auth_cfg(this, FALSE);
}
this->my_auth->destroy(this->my_auth);
this->my_auth = NULL;
this->do_another_auth = do_another_auth(this);
break;
case NEED_MORE:
break;
default:
goto local_auth_failed;
}
}
/* change keys and clear PPK after we are done with our authentication, so
* we only explicitly use it for the first round, afterwards we just use the
* changed SK_p keys implicitly */
if (!this->my_auth && this->ppk_id)
{
if (ppk_id_received)
{
if (!apply_ppk(this))
{
goto local_auth_failed;
}
}
else
{
DBG1(DBG_CFG, "peer didn't use PPK for PPK_ID '%Y'", this->ppk_id);
}
clear_ppk(this);
}
if (mutual_eap)
{
if (!this->my_auth || !this->my_auth->is_mutual(this->my_auth))
{
DBG1(DBG_IKE, "do not allow non-mutual EAP-only authentication");
goto peer_auth_failed;
}
DBG1(DBG_IKE, "allow mutual EAP-only authentication");
}
if (!message->get_notify(message, ANOTHER_AUTH_FOLLOWS))
{
this->expect_another_auth = FALSE;
}
if (this->expect_another_auth || this->do_another_auth || this->my_auth)
{
return NEED_MORE;
}
if (!update_cfg_candidates(this, TRUE))
{
goto peer_auth_failed;
}
if (!charon->bus->authorize(charon->bus, TRUE))
{
DBG1(DBG_IKE, "final authorization hook forbids IKE_SA, "
"cancelling");
goto peer_auth_failed;
}
DBG0(DBG_IKE, "IKE_SA %s[%d] established between %H[%Y]...%H[%Y]",
this->ike_sa->get_name(this->ike_sa),
this->ike_sa->get_unique_id(this->ike_sa),
this->ike_sa->get_my_host(this->ike_sa),
this->ike_sa->get_my_id(this->ike_sa),
this->ike_sa->get_other_host(this->ike_sa),
this->ike_sa->get_other_id(this->ike_sa));
this->ike_sa->set_state(this->ike_sa, IKE_ESTABLISHED);
charon->bus->ike_updown(charon->bus, this->ike_sa, TRUE);
if (this->redirect_to)
{
this->ike_sa->handle_redirect(this->ike_sa, this->redirect_to);
}
return SUCCESS;
peer_auth_failed:
charon->bus->alert(charon->bus, ALERT_PEER_AUTH_FAILED);
send_auth_failed_informational(this, message);
return FAILED;
local_auth_failed:
charon->bus->alert(charon->bus, ALERT_LOCAL_AUTH_FAILED);
send_auth_failed_informational(this, message);
return FAILED;
}
METHOD(task_t, get_type, task_type_t,
private_ike_auth_t *this)
{
return TASK_IKE_AUTH;
}
METHOD(task_t, migrate, void,
private_ike_auth_t *this, ike_sa_t *ike_sa)
{
clear_ppk(this);
chunk_free(&this->my_nonce);
chunk_free(&this->other_nonce);
DESTROY_IF(this->my_packet);
DESTROY_IF(this->other_packet);
DESTROY_IF(this->peer_cfg);
DESTROY_IF(this->my_auth);
DESTROY_IF(this->other_auth);
DESTROY_IF(this->redirect_to);
this->candidates->destroy_offset(this->candidates, offsetof(peer_cfg_t, destroy));
this->my_packet = NULL;
this->other_packet = NULL;
this->ike_sa = ike_sa;
this->peer_cfg = NULL;
this->my_auth = NULL;
this->other_auth = NULL;
this->redirect_to = NULL;
this->do_another_auth = TRUE;
this->expect_another_auth = TRUE;
this->authentication_failed = FALSE;
this->candidates = linked_list_create();
}
METHOD(task_t, destroy, void,
private_ike_auth_t *this)
{
clear_ppk(this);
chunk_free(&this->my_nonce);
chunk_free(&this->other_nonce);
DESTROY_IF(this->my_packet);
DESTROY_IF(this->other_packet);
DESTROY_IF(this->my_auth);
DESTROY_IF(this->other_auth);
DESTROY_IF(this->peer_cfg);
DESTROY_IF(this->redirect_to);
this->candidates->destroy_offset(this->candidates, offsetof(peer_cfg_t, destroy));
free(this);
}
/*
* Described in header.
*/
ike_auth_t *ike_auth_create(ike_sa_t *ike_sa, bool initiator)
{
private_ike_auth_t *this;
INIT(this,
.public = {
.task = {
.get_type = _get_type,
.migrate = _migrate,
.build = _build_r,
.process = _process_r,
.destroy = _destroy,
},
},
.ike_sa = ike_sa,
.initiator = initiator,
.candidates = linked_list_create(),
.do_another_auth = TRUE,
.expect_another_auth = TRUE,
);
if (initiator)
{
this->public.task.build = _build_i;
this->public.task.process = _process_i;
}
return &this->public;
}
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to ike_auth.c CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / strongswan / src / libcharon / sa / ikev2 / tasks