Add support for MLSD responses from some broken hosts.

[ffftp/ffftp.git] / putty / WINDOWS / WINGSS.C

#ifndef NO_GSSAPI\r
\r
#include "putty.h"\r
\r
#include <security.h>\r
\r
#include "pgssapi.h"\r
#include "sshgss.h"\r
#include "sshgssc.h"\r
\r
#include "misc.h"\r
\r
/* Windows code to set up the GSSAPI library list. */\r
\r
const int ngsslibs = 3;\r
const char *const gsslibnames[3] = {\r
    "MIT Kerberos GSSAPI32.DLL",\r
    "Microsoft SSPI SECUR32.DLL",\r
    "User-specified GSSAPI DLL",\r
};\r
const struct keyvalwhere gsslibkeywords[] = {\r
    { "gssapi32", 0, -1, -1 },\r
    { "sspi", 1, -1, -1 },\r
    { "custom", 2, -1, -1 },\r
};\r
\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      AcquireCredentialsHandleA,\r
                      (SEC_CHAR *, SEC_CHAR *, ULONG, PLUID,\r
                       PVOID, SEC_GET_KEY_FN, PVOID, PCredHandle, PTimeStamp));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      InitializeSecurityContextA,\r
                      (PCredHandle, PCtxtHandle, SEC_CHAR *, ULONG, ULONG,\r
                       ULONG, PSecBufferDesc, ULONG, PCtxtHandle,\r
                       PSecBufferDesc, PULONG, PTimeStamp));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      FreeContextBuffer,\r
                      (PVOID));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      FreeCredentialsHandle,\r
                      (PCredHandle));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      DeleteSecurityContext,\r
                      (PCtxtHandle));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      QueryContextAttributesA,\r
                      (PCtxtHandle, ULONG, PVOID));\r
DECL_WINDOWS_FUNCTION(static, SECURITY_STATUS,\r
                      MakeSignature,\r
                      (PCtxtHandle, ULONG, PSecBufferDesc, ULONG));\r
\r
typedef struct winSsh_gss_ctx {\r
    unsigned long maj_stat;\r
    unsigned long min_stat;\r
    CredHandle cred_handle;\r
    CtxtHandle context;\r
    PCtxtHandle context_handle;\r
    TimeStamp expiry;\r
} winSsh_gss_ctx;\r
\r
\r
const Ssh_gss_buf gss_mech_krb5={9,"\x2A\x86\x48\x86\xF7\x12\x01\x02\x02"};\r
\r
const char *gsslogmsg = NULL;\r
\r
static void ssh_sspi_bind_fns(struct ssh_gss_library *lib);\r
\r
struct ssh_gss_liblist *ssh_gss_setup(const Config *cfg)\r
{\r
    HMODULE module;\r
    HKEY regkey;\r
    struct ssh_gss_liblist *list = snew(struct ssh_gss_liblist);\r
\r
    list->libraries = snewn(3, struct ssh_gss_library);\r
    list->nlibraries = 0;\r
\r
    /* MIT Kerberos GSSAPI implementation */\r
    /* TODO: For 64-bit builds, check for gssapi64.dll */\r
    module = NULL;\r
    if (RegOpenKey(HKEY_LOCAL_MACHINE, "SOFTWARE\\MIT\\Kerberos", &regkey)\r
        == ERROR_SUCCESS) {\r
        DWORD type, size;\r
        LONG ret;\r
        char *buffer;\r
\r
        /* Find out the string length */\r
        ret = RegQueryValueEx(regkey, "InstallDir", NULL, &type, NULL, &size);\r
\r
        if (ret == ERROR_SUCCESS && type == REG_SZ) {\r
            buffer = snewn(size + 20, char);\r
            ret = RegQueryValueEx(regkey, "InstallDir", NULL,\r
                                  &type, buffer, &size);\r
            if (ret == ERROR_SUCCESS && type == REG_SZ) {\r
                strcat(buffer, "\\bin\\gssapi32.dll");\r
                module = LoadLibrary(buffer);\r
            }\r
            sfree(buffer);\r
        }\r
        RegCloseKey(regkey);\r
    }\r
    if (module) {\r
        struct ssh_gss_library *lib =\r
            &list->libraries[list->nlibraries++];\r
\r
        lib->id = 0;\r
        lib->gsslogmsg = "Using GSSAPI from GSSAPI32.DLL";\r
        lib->handle = (void *)module;\r
\r
#define BIND_GSS_FN(name) \\r
    lib->u.gssapi.name = (t_gss_##name) GetProcAddress(module, "gss_" #name)\r
\r
        BIND_GSS_FN(delete_sec_context);\r
        BIND_GSS_FN(display_status);\r
        BIND_GSS_FN(get_mic);\r
        BIND_GSS_FN(import_name);\r
        BIND_GSS_FN(init_sec_context);\r
        BIND_GSS_FN(release_buffer);\r
        BIND_GSS_FN(release_cred);\r
        BIND_GSS_FN(release_name);\r
\r
#undef BIND_GSS_FN\r
\r
        ssh_gssapi_bind_fns(lib);\r
    }\r
\r
    /* Microsoft SSPI Implementation */\r
    module = load_system32_dll("secur32.dll");\r
    if (module) {\r
        struct ssh_gss_library *lib =\r
            &list->libraries[list->nlibraries++];\r
\r
        lib->id = 1;\r
        lib->gsslogmsg = "Using SSPI from SECUR32.DLL";\r
        lib->handle = (void *)module;\r
\r
        GET_WINDOWS_FUNCTION(module, AcquireCredentialsHandleA);\r
        GET_WINDOWS_FUNCTION(module, InitializeSecurityContextA);\r
        GET_WINDOWS_FUNCTION(module, FreeContextBuffer);\r
        GET_WINDOWS_FUNCTION(module, FreeCredentialsHandle);\r
        GET_WINDOWS_FUNCTION(module, DeleteSecurityContext);\r
        GET_WINDOWS_FUNCTION(module, QueryContextAttributesA);\r
        GET_WINDOWS_FUNCTION(module, MakeSignature);\r
\r
        ssh_sspi_bind_fns(lib);\r
    }\r
\r
    /*\r
     * Custom GSSAPI DLL.\r
     */\r
    module = NULL;\r
    if (cfg->ssh_gss_custom.path[0]) {\r
        module = LoadLibrary(cfg->ssh_gss_custom.path);\r
    }\r
    if (module) {\r
        struct ssh_gss_library *lib =\r
            &list->libraries[list->nlibraries++];\r
\r
        lib->id = 2;\r
        lib->gsslogmsg = dupprintf("Using GSSAPI from user-specified"\r
                                   " library '%s'", cfg->ssh_gss_custom.path);\r
        lib->handle = (void *)module;\r
\r
#define BIND_GSS_FN(name) \\r
    lib->u.gssapi.name = (t_gss_##name) GetProcAddress(module, "gss_" #name)\r
\r
        BIND_GSS_FN(delete_sec_context);\r
        BIND_GSS_FN(display_status);\r
        BIND_GSS_FN(get_mic);\r
        BIND_GSS_FN(import_name);\r
        BIND_GSS_FN(init_sec_context);\r
        BIND_GSS_FN(release_buffer);\r
        BIND_GSS_FN(release_cred);\r
        BIND_GSS_FN(release_name);\r
\r
#undef BIND_GSS_FN\r
\r
        ssh_gssapi_bind_fns(lib);\r
    }\r
\r
\r
    return list;\r
}\r
\r
void ssh_gss_cleanup(struct ssh_gss_liblist *list)\r
{\r
    int i;\r
\r
    /*\r
     * LoadLibrary and FreeLibrary are defined to employ reference\r
     * counting in the case where the same library is repeatedly\r
     * loaded, so even in a multiple-sessions-per-process context\r
     * (not that we currently expect ever to have such a thing on\r
     * Windows) it's safe to naively FreeLibrary everything here\r
     * without worrying about destroying it under the feet of\r
     * another SSH instance still using it.\r
     */\r
    for (i = 0; i < list->nlibraries; i++) {\r
        FreeLibrary((HMODULE)list->libraries[i].handle);\r
        if (list->libraries[i].id == 2) {\r
            /* The 'custom' id involves a dynamically allocated message.\r
             * Note that we must cast away the 'const' to free it. */\r
            sfree((char *)list->libraries[i].gsslogmsg);\r
        }\r
    }\r
    sfree(list->libraries);\r
    sfree(list);\r
}\r
\r
static Ssh_gss_stat ssh_sspi_indicate_mech(struct ssh_gss_library *lib,\r
                                           Ssh_gss_buf *mech)\r
{\r
    *mech = gss_mech_krb5;\r
    return SSH_GSS_OK;\r
}\r
\r
\r
static Ssh_gss_stat ssh_sspi_import_name(struct ssh_gss_library *lib,\r
                                         char *host, Ssh_gss_name *srv_name)\r
{\r
    char *pStr;\r
\r
    /* Check hostname */\r
    if (host == NULL) return SSH_GSS_FAILURE;\r
    \r
    /* copy it into form host/FQDN */\r
    pStr = dupcat("host/", host, NULL);\r
\r
    *srv_name = (Ssh_gss_name) pStr;\r
\r
    return SSH_GSS_OK;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_acquire_cred(struct ssh_gss_library *lib,\r
                                          Ssh_gss_ctx *ctx)\r
{\r
    winSsh_gss_ctx *winctx = snew(winSsh_gss_ctx);\r
    memset(winctx, 0, sizeof(winSsh_gss_ctx));\r
\r
    /* prepare our "wrapper" structure */\r
    winctx->maj_stat =  winctx->min_stat = SEC_E_OK;\r
    winctx->context_handle = NULL;\r
\r
    /* Specifying no principal name here means use the credentials of\r
       the current logged-in user */\r
\r
    winctx->maj_stat = p_AcquireCredentialsHandleA(NULL,\r
                                                   "Kerberos",\r
                                                   SECPKG_CRED_OUTBOUND,\r
                                                   NULL,\r
                                                   NULL,\r
                                                   NULL,\r
                                                   NULL,\r
                                                   &winctx->cred_handle,\r
                                                   &winctx->expiry);\r
\r
    if (winctx->maj_stat != SEC_E_OK) return SSH_GSS_FAILURE;\r
    \r
    *ctx = (Ssh_gss_ctx) winctx;\r
    return SSH_GSS_OK;\r
}\r
\r
\r
static Ssh_gss_stat ssh_sspi_init_sec_context(struct ssh_gss_library *lib,\r
                                              Ssh_gss_ctx *ctx,\r
                                              Ssh_gss_name srv_name,\r
                                              int to_deleg,\r
                                              Ssh_gss_buf *recv_tok,\r
                                              Ssh_gss_buf *send_tok)\r
{\r
    winSsh_gss_ctx *winctx = (winSsh_gss_ctx *) *ctx;\r
    SecBuffer wsend_tok = {send_tok->length,SECBUFFER_TOKEN,send_tok->value};\r
    SecBuffer wrecv_tok = {recv_tok->length,SECBUFFER_TOKEN,recv_tok->value};\r
    SecBufferDesc output_desc={SECBUFFER_VERSION,1,&wsend_tok};\r
    SecBufferDesc input_desc ={SECBUFFER_VERSION,1,&wrecv_tok};\r
    unsigned long flags=ISC_REQ_MUTUAL_AUTH|ISC_REQ_REPLAY_DETECT|\r
        ISC_REQ_CONFIDENTIALITY|ISC_REQ_ALLOCATE_MEMORY;\r
    unsigned long ret_flags=0;\r
    \r
    /* check if we have to delegate ... */\r
    if (to_deleg) flags |= ISC_REQ_DELEGATE;\r
    winctx->maj_stat = p_InitializeSecurityContextA(&winctx->cred_handle,\r
                                                    winctx->context_handle,\r
                                                    (char*) srv_name,\r
                                                    flags,\r
                                                    0,          /* reserved */\r
                                                    SECURITY_NATIVE_DREP,\r
                                                    &input_desc,\r
                                                    0,          /* reserved */\r
                                                    &winctx->context,\r
                                                    &output_desc,\r
                                                    &ret_flags,\r
                                                    &winctx->expiry);\r
  \r
    /* prepare for the next round */\r
    winctx->context_handle = &winctx->context;\r
    send_tok->value = wsend_tok.pvBuffer;\r
    send_tok->length = wsend_tok.cbBuffer;\r
  \r
    /* check & return our status */\r
    if (winctx->maj_stat==SEC_E_OK) return SSH_GSS_S_COMPLETE;\r
    if (winctx->maj_stat==SEC_I_CONTINUE_NEEDED) return SSH_GSS_S_CONTINUE_NEEDED;\r
    \r
    return SSH_GSS_FAILURE;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_free_tok(struct ssh_gss_library *lib,\r
                                      Ssh_gss_buf *send_tok)\r
{\r
    /* check input */\r
    if (send_tok == NULL) return SSH_GSS_FAILURE;\r
\r
    /* free Windows buffer */\r
    p_FreeContextBuffer(send_tok->value);\r
    SSH_GSS_CLEAR_BUF(send_tok);\r
    \r
    return SSH_GSS_OK;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_release_cred(struct ssh_gss_library *lib,\r
                                          Ssh_gss_ctx *ctx)\r
{\r
    winSsh_gss_ctx *winctx= (winSsh_gss_ctx *) *ctx;\r
\r
    /* check input */\r
    if (winctx == NULL) return SSH_GSS_FAILURE;\r
\r
    /* free Windows data */\r
    p_FreeCredentialsHandle(&winctx->cred_handle);\r
    p_DeleteSecurityContext(&winctx->context);\r
\r
    /* delete our "wrapper" structure */\r
    sfree(winctx);\r
    *ctx = (Ssh_gss_ctx) NULL;\r
\r
    return SSH_GSS_OK;\r
}\r
\r
\r
static Ssh_gss_stat ssh_sspi_release_name(struct ssh_gss_library *lib,\r
                                          Ssh_gss_name *srv_name)\r
{\r
    char *pStr= (char *) *srv_name;\r
\r
    if (pStr == NULL) return SSH_GSS_FAILURE;\r
    sfree(pStr);\r
    *srv_name = (Ssh_gss_name) NULL;\r
\r
    return SSH_GSS_OK;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_display_status(struct ssh_gss_library *lib,\r
                                            Ssh_gss_ctx ctx, Ssh_gss_buf *buf)\r
{\r
    winSsh_gss_ctx *winctx = (winSsh_gss_ctx *) ctx;\r
    char *msg;\r
\r
    if (winctx == NULL) return SSH_GSS_FAILURE;\r
\r
    /* decode the error code */\r
    switch (winctx->maj_stat) {\r
      case SEC_E_OK: msg="SSPI status OK"; break;\r
      case SEC_E_INVALID_HANDLE: msg="The handle passed to the function"\r
            " is invalid.";\r
        break;\r
      case SEC_E_TARGET_UNKNOWN: msg="The target was not recognized."; break;\r
      case SEC_E_LOGON_DENIED: msg="The logon failed."; break;\r
      case SEC_E_INTERNAL_ERROR: msg="The Local Security Authority cannot"\r
            " be contacted.";\r
        break;\r
      case SEC_E_NO_CREDENTIALS: msg="No credentials are available in the"\r
            " security package.";\r
        break;\r
      case SEC_E_NO_AUTHENTICATING_AUTHORITY:\r
        msg="No authority could be contacted for authentication."\r
            "The domain name of the authenticating party could be wrong,"\r
            " the domain could be unreachable, or there might have been"\r
            " a trust relationship failure.";\r
        break;\r
      case SEC_E_INSUFFICIENT_MEMORY:\r
        msg="One or more of the SecBufferDesc structures passed as"\r
            " an OUT parameter has a buffer that is too small.";\r
        break;\r
      case SEC_E_INVALID_TOKEN:\r
        msg="The error is due to a malformed input token, such as a"\r
            " token corrupted in transit, a token"\r
            " of incorrect size, or a token passed into the wrong"\r
            " security package. Passing a token to"\r
            " the wrong package can happen if client and server did not"\r
            " negotiate the proper security package.";\r
        break;\r
      default:\r
        msg = "Internal SSPI error";\r
        break;\r
    }\r
\r
    buf->value = dupstr(msg);\r
    buf->length = strlen(buf->value);\r
    \r
    return SSH_GSS_OK;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_get_mic(struct ssh_gss_library *lib,\r
                                     Ssh_gss_ctx ctx, Ssh_gss_buf *buf,\r
                                     Ssh_gss_buf *hash)\r
{\r
    winSsh_gss_ctx *winctx= (winSsh_gss_ctx *) ctx;\r
    SecPkgContext_Sizes ContextSizes;\r
    SecBufferDesc InputBufferDescriptor;\r
    SecBuffer InputSecurityToken[2];\r
\r
    if (winctx == NULL) return SSH_GSS_FAILURE;\r
  \r
    winctx->maj_stat = 0;\r
\r
    memset(&ContextSizes, 0, sizeof(ContextSizes));\r
\r
    winctx->maj_stat = p_QueryContextAttributesA(&winctx->context,\r
                                                 SECPKG_ATTR_SIZES,\r
                                                 &ContextSizes);\r
    \r
    if (winctx->maj_stat != SEC_E_OK ||\r
        ContextSizes.cbMaxSignature == 0)\r
        return winctx->maj_stat;\r
\r
    InputBufferDescriptor.cBuffers = 2;\r
    InputBufferDescriptor.pBuffers = InputSecurityToken;\r
    InputBufferDescriptor.ulVersion = SECBUFFER_VERSION;\r
    InputSecurityToken[0].BufferType = SECBUFFER_DATA;\r
    InputSecurityToken[0].cbBuffer = buf->length;\r
    InputSecurityToken[0].pvBuffer = buf->value;\r
    InputSecurityToken[1].BufferType = SECBUFFER_TOKEN;\r
    InputSecurityToken[1].cbBuffer = ContextSizes.cbMaxSignature;\r
    InputSecurityToken[1].pvBuffer = snewn(ContextSizes.cbMaxSignature, char);\r
\r
    winctx->maj_stat = p_MakeSignature(&winctx->context,\r
                                       0,\r
                                       &InputBufferDescriptor,\r
                                       0);\r
\r
    if (winctx->maj_stat == SEC_E_OK) {\r
        hash->length = InputSecurityToken[1].cbBuffer;\r
        hash->value = InputSecurityToken[1].pvBuffer;\r
    }\r
\r
    return winctx->maj_stat;\r
}\r
\r
static Ssh_gss_stat ssh_sspi_free_mic(struct ssh_gss_library *lib,\r
                                      Ssh_gss_buf *hash)\r
{\r
    sfree(hash->value);\r
    return SSH_GSS_OK;\r
}\r
\r
static void ssh_sspi_bind_fns(struct ssh_gss_library *lib)\r
{\r
    lib->indicate_mech = ssh_sspi_indicate_mech;\r
    lib->import_name = ssh_sspi_import_name;\r
    lib->release_name = ssh_sspi_release_name;\r
    lib->init_sec_context = ssh_sspi_init_sec_context;\r
    lib->free_tok = ssh_sspi_free_tok;\r
    lib->acquire_cred = ssh_sspi_acquire_cred;\r
    lib->release_cred = ssh_sspi_release_cred;\r
    lib->get_mic = ssh_sspi_get_mic;\r
    lib->free_mic = ssh_sspi_free_mic;\r
    lib->display_status = ssh_sspi_display_status;\r
}\r
\r
#else\r
\r
/* Dummy function so this source file defines something if NO_GSSAPI\r
   is defined. */\r
\r
void ssh_gss_init(void)\r
{\r
}\r
\r
#endif\r