1 // SPDX-License-Identifier: GPL-2.0-or-later
2
3 #include <linux/module.h>
4 #include <linux/kernel.h>
5 #include <linux/oid_registry.h>
6 #include "cifsglob.h"
7 #include "cifs_debug.h"
8 #include "cifsproto.h"
9 #include "cifs_spnego_negtokeninit.asn1.h"
10
11 int
decode_negTokenInit(unsigned char * security_blob,int length,struct TCP_Server_Info * server)12 decode_negTokenInit(unsigned char *security_blob, int length,
13 struct TCP_Server_Info *server)
14 {
15 if (asn1_ber_decoder(&cifs_spnego_negtokeninit_decoder, server,
16 security_blob, length) == 0)
17 return 1;
18 else
19 return 0;
20 }
21
cifs_gssapi_this_mech(void * context,size_t hdrlen,unsigned char tag,const void * value,size_t vlen)22 int cifs_gssapi_this_mech(void *context, size_t hdrlen,
23 unsigned char tag, const void *value, size_t vlen)
24 {
25 enum OID oid;
26
27 oid = look_up_OID(value, vlen);
28 if (oid != OID_spnego) {
29 char buf[50];
30
31 sprint_oid(value, vlen, buf, sizeof(buf));
32 cifs_dbg(FYI, "Error decoding negTokenInit header: unexpected OID %s\n",
33 buf);
34 return -EBADMSG;
35 }
36 return 0;
37 }
38
cifs_neg_token_init_mech_type(void * context,size_t hdrlen,unsigned char tag,const void * value,size_t vlen)39 int cifs_neg_token_init_mech_type(void *context, size_t hdrlen,
40 unsigned char tag,
41 const void *value, size_t vlen)
42 {
43 struct TCP_Server_Info *server = context;
44 enum OID oid;
45
46 oid = look_up_OID(value, vlen);
47 if (oid == OID_mskrb5)
48 server->sec_mskerberos = true;
49 else if (oid == OID_krb5u2u)
50 server->sec_kerberosu2u = true;
51 else if (oid == OID_krb5)
52 server->sec_kerberos = true;
53 else if (oid == OID_ntlmssp)
54 server->sec_ntlmssp = true;
55 else {
56 char buf[50];
57
58 sprint_oid(value, vlen, buf, sizeof(buf));
59 cifs_dbg(FYI, "Decoding negTokenInit: unsupported OID %s\n",
60 buf);
61 }
62 return 0;
63 }
64