src/modules/m_spanningtree/hmac.cpp

   1 /*       +------------------------------------+
   2  *       | Inspire Internet Relay Chat Daemon |
   3  *       +------------------------------------+
   4  *
   5  *  InspIRCd: (C) 2002-2010 InspIRCd Development Team
   6  * See: http://wiki.inspircd.org/Credits
   7  *
   8  * This program is free but copyrighted software; see
   9  *            the file COPYING for details.
  10  *
  11  * ---------------------------------------------------
  12  */
  13
  14 #include "inspircd.h"
  15 #include "socket.h"
  16 #include "xline.h"
  17 #include "../m_hash.h"
  18 #include "../ssl.h"
  19 #include "socketengine.h"
  20
  21 #include "main.h"
  22 #include "utils.h"
  23 #include "treeserver.h"
  24 #include "link.h"
  25 #include "treesocket.h"
  26 #include "resolvers.h"
  27
  28 const std::string& TreeSocket::GetOurChallenge()
  29 {
  30         return capab->ourchallenge;
  31 }
  32
  33 void TreeSocket::SetOurChallenge(const std::string &c)
  34 {
  35         capab->ourchallenge = c;
  36 }
  37
  38 const std::string& TreeSocket::GetTheirChallenge()
  39 {
  40         return capab->theirchallenge;
  41 }
  42
  43 void TreeSocket::SetTheirChallenge(const std::string &c)
  44 {
  45         capab->theirchallenge = c;
  46 }
  47
  48 std::string TreeSocket::MakePass(const std::string &password, const std::string &challenge)
  49 {
  50         /* This is a simple (maybe a bit hacky?) HMAC algorithm, thanks to jilles for
  51          * suggesting the use of HMAC to secure the password against various attacks.
  52          *
  53          * Note: If m_sha256.so is not loaded, we MUST fall back to plaintext with no
  54          *       HMAC challenge/response.
  55          */
  56         HashProvider* sha256 = ServerInstance->Modules->FindDataService<HashProvider>("hash/sha256");
  57         if (Utils->ChallengeResponse && sha256 && !challenge.empty())
  58         {
  59                 /* This is how HMAC is supposed to be done:
  60                  *
  61                  * sha256( (pass xor 0x5c) + sha256((pass xor 0x36) + m) )
  62                  *
  63                  * 5c and 36 were chosen as part of the HMAC standard, because they
  64                  * flip the bits in a way likely to strengthen the function.
  65                  */
  66                 std::string hmac1, hmac2;
  67
  68                 for (size_t n = 0; n < password.length(); n++)
  69                 {
  70                         hmac1.push_back(static_cast<char>(password[n] ^ 0x5C));
  71                         hmac2.push_back(static_cast<char>(password[n] ^ 0x36));
  72                 }
  73
  74                 if (proto_version >= 1202)
  75                 {
  76                         hmac2.append(challenge);
  77                         std::string hmac = sha256->hexsum(hmac1 + sha256->sum(hmac2));
  78
  79                         return "AUTH:" + hmac;
  80                 }
  81                 else
  82                 {
  83                         // version 1.2 used a weaker HMAC, using hex output in the intermediate step
  84                         hmac2.append(challenge);
  85                         hmac2 = sha256->hexsum(hmac2);
  86
  87                         std::string hmac = hmac1 + hmac2;
  88                         hmac = sha256->hexsum(hmac);
  89
  90                         return "HMAC-SHA256:"+ hmac;
  91                 }
  92         }
  93         else if (!challenge.empty() && !sha256)
  94                 ServerInstance->Logs->Log("m_spanningtree",DEFAULT,"Not authenticating to server using SHA256/HMAC because we don't have m_sha256 loaded!");
  95
  96         return password;
  97 }
  98
  99 bool TreeSocket::ComparePass(const Link& link, const std::string &theirs)
 100 {
 101         capab->auth_fingerprint = !link.Fingerprint.empty();
 102         capab->auth_challenge = !capab->ourchallenge.empty() && !capab->theirchallenge.empty();
 103
 104         std::string fp;
 105         if (GetIOHook())
 106         {
 107                 SocketCertificateRequest req(this, Utils->Creator);
 108                 if (req.cert)
 109                 {
 110                         fp = req.cert->GetFingerprint();
 111                 }
 112         }
 113
 114         if (capab->auth_challenge)
 115         {
 116                 std::string our_hmac = MakePass(link.RecvPass, capab->ourchallenge);
 117
 118                 /* Straight string compare of hashes */
 119                 if (our_hmac != theirs)
 120                         return false;
 121         }
 122         else
 123         {
 124                 /* Straight string compare of plaintext */
 125                 if (link.RecvPass != theirs)
 126                         return false;
 127         }
 128
 129         if (capab->auth_fingerprint)
 130         {
 131                 /* Require fingerprint to exist and match */
 132                 if (link.Fingerprint != fp)
 133                 {
 134                         ServerInstance->SNO->WriteToSnoMask('l',"Invalid SSL fingerprint on link %s: need \"%s\" got \"%s\"",
 135                                 link.Name.c_str(), link.Fingerprint.c_str(), fp.c_str());
 136                         SendError("Provided invalid SSL fingerprint " + fp + " - expected " + link.Fingerprint);
 137                         return false;
 138                 }
 139         }
 140         else if (!fp.empty())
 141         {
 142                 ServerInstance->SNO->WriteToSnoMask('l', "SSL fingerprint for link %s is \"%s\". "
 143                         "You can improve security by specifying this in <link:fingerprint>.", link.Name.c_str(), fp.c_str());
 144         }
 145         return true;
 146 }