source-git / gnutls

Clone
Source Code
GIT

Blame lib/auth/anon.c

c8 c8s master
  1.   c8
  2.   lib
  3.   auth
  4.   anon.c
Blob History Raw
Packit aea12f 
/*
Packit aea12f 
 * Copyright (C) 2000-2012 Free Software Foundation, Inc.
Packit aea12f 
 * Copyright (C) 2017 Red Hat, Inc.
Packit aea12f 
 *
Packit aea12f 
 * Author: Nikos Mavrogiannopoulos
Packit aea12f 
 *
Packit aea12f 
 * This file is part of GnuTLS.
Packit aea12f 
 *
Packit aea12f 
 * The GnuTLS is free software; you can redistribute it and/or
Packit aea12f 
 * modify it under the terms of the GNU Lesser General Public License
Packit aea12f 
 * as published by the Free Software Foundation; either version 2.1 of
Packit aea12f 
 * the License, or (at your option) any later version.
Packit aea12f 
 *
Packit aea12f 
 * This library is distributed in the hope that it will be useful, but
Packit aea12f 
 * WITHOUT ANY WARRANTY; without even the implied warranty of
Packit aea12f 
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit aea12f 
 * Lesser General Public License for more details.
Packit aea12f 
 *
Packit aea12f 
 * You should have received a copy of the GNU Lesser General Public License
Packit aea12f 
 * along with this program.  If not, see <https://www.gnu.org/licenses/>
Packit aea12f 
 *
Packit aea12f 
 */
Packit aea12f
Packit aea12f 
/* This file contains the Anonymous Diffie-Hellman key exchange part of
Packit aea12f 
 * the anonymous authentication. The functions here are used in the
Packit aea12f 
 * handshake.
Packit aea12f 
 */
Packit aea12f
Packit aea12f 
#include "gnutls_int.h"
Packit aea12f
Packit aea12f 
#if defined(ENABLE_ANON) && defined(ENABLE_DHE)
Packit aea12f
Packit aea12f 
#include "auth.h"
Packit aea12f 
#include "errors.h"
Packit aea12f 
#include "dh.h"
Packit aea12f 
#include "auth/anon.h"
Packit aea12f 
#include "num.h"
Packit aea12f 
#include "mpi.h"
Packit aea12f 
#include <state.h>
Packit aea12f 
#include <auth/dh_common.h>
Packit aea12f
Packit aea12f 
static int gen_anon_server_kx(gnutls_session_t, gnutls_buffer_st *);
Packit aea12f 
static int proc_anon_client_kx(gnutls_session_t, uint8_t *, size_t);
Packit aea12f 
static int proc_anon_server_kx(gnutls_session_t, uint8_t *, size_t);
Packit aea12f
Packit aea12f 
const mod_auth_st anon_auth_struct = {
Packit aea12f 
	"ANON",
Packit aea12f 
	NULL,
Packit aea12f 
	NULL,
Packit aea12f 
	gen_anon_server_kx,
Packit aea12f 
	_gnutls_gen_dh_common_client_kx,	/* this can be shared */
Packit aea12f 
	NULL,
Packit aea12f 
	NULL,
Packit aea12f
Packit aea12f 
	NULL,
Packit aea12f 
	NULL,			/* certificate */
Packit aea12f 
	proc_anon_server_kx,
Packit aea12f 
	proc_anon_client_kx,
Packit aea12f 
	NULL,
Packit aea12f 
	NULL
Packit aea12f 
};
Packit aea12f
Packit aea12f 
static int
Packit aea12f 
gen_anon_server_kx(gnutls_session_t session, gnutls_buffer_st * data)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_anon_server_credentials_t cred;
Packit aea12f
Packit aea12f 
	cred = (gnutls_anon_server_credentials_t)
Packit aea12f 
	    _gnutls_get_cred(session, GNUTLS_CRD_ANON);
Packit aea12f 
	if (cred == NULL) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if ((ret =
Packit aea12f 
	     _gnutls_auth_info_init(session, GNUTLS_CRD_ANON,
Packit aea12f 
				   sizeof(anon_auth_info_st), 1)) < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_figure_dh_params(session, cred->dh_params, cred->params_func, cred->dh_sec_param);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		return gnutls_assert_val(ret);
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    _gnutls_dh_common_print_server_kx(session, data);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f
Packit aea12f 
static int
Packit aea12f 
proc_anon_client_kx(gnutls_session_t session, uint8_t * data,
Packit aea12f 
		    size_t _data_size)
Packit aea12f 
{
Packit aea12f 
	return
Packit aea12f 
	    _gnutls_proc_dh_common_client_kx(session, data, _data_size, NULL);
Packit aea12f
Packit aea12f 
}
Packit aea12f
Packit aea12f 
int
Packit aea12f 
proc_anon_server_kx(gnutls_session_t session, uint8_t * data,
Packit aea12f 
		    size_t _data_size)
Packit aea12f 
{
Packit aea12f
Packit aea12f 
	int ret;
Packit aea12f
Packit aea12f 
	/* set auth_info */
Packit aea12f 
	if ((ret =
Packit aea12f 
	     _gnutls_auth_info_init(session, GNUTLS_CRD_ANON,
Packit aea12f 
				   sizeof(anon_auth_info_st), 1)) < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_proc_dh_common_server_kx(session, data, _data_size);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	return 0;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
#endif				/* ENABLE_ANON */

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation