1 /* 2 * Copyright 2004 Sun Microsystems, Inc. All rights reserved. 3 * Use is subject to license terms. 4 */ 5 6 #pragma ident "%Z%%M% %I% %E% SMI" 7 8 /* 9 * Copyright (C) 1998 by the FundsXpress, INC. 10 * 11 * All rights reserved. 12 * 13 * Export of this software from the United States of America may require 14 * a specific license from the United States Government. It is the 15 * responsibility of any person or organization contemplating export to 16 * obtain such a license before exporting. 17 * 18 * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and 19 * distribute this software and its documentation for any purpose and 20 * without fee is hereby granted, provided that the above copyright 21 * notice appear in all copies and that both that copyright notice and 22 * this permission notice appear in supporting documentation, and that 23 * the name of FundsXpress. not be used in advertising or publicity pertaining 24 * to distribution of the software without specific, written prior 25 * permission. FundsXpress makes no representations about the suitability of 26 * this software for any purpose. It is provided "as is" without express 27 * or implied warranty. 28 * 29 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR 30 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED 31 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE. 32 */ 33 34 #include <k5-int.h> 35 #include <hash_provider.h> 36 #include <keyhash_provider.h> 37 #include <cksumtypes.h> 38 39 struct krb5_cksumtypes krb5_cksumtypes_list[] = { 40 { CKSUMTYPE_CRC32, KRB5_CKSUMFLAG_NOT_COLL_PROOF, 41 "crc32", "CRC-32", 42 NULL, NULL, &krb5_hash_crc32, 0, 43 #ifdef _KERNEL 44 NULL, 45 CRYPTO_MECH_INVALID 46 #endif /* _KERNEL */ 47 }, 48 49 { CKSUMTYPE_DESCBC, 0, 50 "des-cbc", "DES cbc mode", 51 ENCTYPE_DES_CBC_CRC, &krb5_keyhash_descbc, 52 NULL, NULL, 53 #ifdef _KERNEL 54 NULL, 55 CRYPTO_MECH_INVALID 56 #endif /* _KERNEL */ 57 }, 58 59 { CKSUMTYPE_RSA_MD5, 0, 60 "md5", "RSA-MD5", 61 NULL, NULL, &krb5int_hash_md5, 0, 62 #ifdef _KERNEL 63 SUN_CKM_MD5, 64 CRYPTO_MECH_INVALID 65 #endif /* _KERNEL */ 66 }, 67 { CKSUMTYPE_RSA_MD5_DES, 0, 68 "md5-des", "RSA-MD5 with DES cbc mode", 69 ENCTYPE_DES_CBC_CRC, &krb5_keyhash_md5des, 70 NULL, NULL, 71 #ifdef _KERNEL 72 SUN_CKM_MD5, 73 CRYPTO_MECH_INVALID 74 #endif /* _KERNEL */ 75 }, 76 77 { CKSUMTYPE_NIST_SHA, 0, 78 "sha", "NIST-SHA", 79 NULL, NULL, &krb5_hash_sha1, 0, 80 #ifdef _KERNEL 81 SUN_CKM_SHA1, 82 CRYPTO_MECH_INVALID 83 #endif /* _KERNEL */ 84 }, 85 86 { CKSUMTYPE_HMAC_SHA1_DES3, KRB5_CKSUMFLAG_DERIVE, 87 "hmac-sha1-des3", "HMAC-SHA1 DES3 key", 88 NULL, NULL, &krb5_hash_sha1, 0, 89 #ifdef _KERNEL 90 SUN_CKM_SHA1_HMAC, 91 CRYPTO_MECH_INVALID 92 #endif /* _KERNEL */ 93 }, 94 { CKSUMTYPE_HMAC_SHA1_DES3, KRB5_CKSUMFLAG_DERIVE, 95 "hmac-sha1-des3-kd", "HMAC-SHA1 DES3 key", /* alias */ 96 NULL, NULL, &krb5_hash_sha1, 0, 97 #ifdef _KERNEL 98 SUN_CKM_SHA1_HMAC, 99 CRYPTO_MECH_INVALID 100 #endif /* _KERNEL */ 101 }, 102 { CKSUMTYPE_HMAC_MD5_ARCFOUR, 0, 103 "hmac-md5-rc4", "Microsoft HMAC MD5 (RC4 key)", 104 ENCTYPE_ARCFOUR_HMAC, &krb5int_keyhash_hmac_md5, NULL, 0, 105 #ifdef _KERNEL 106 SUN_CKM_MD5, 107 CRYPTO_MECH_INVALID 108 #endif /* _KERNEL */ 109 }, 110 { CKSUMTYPE_HMAC_MD5_ARCFOUR, 0, 111 "hmac-md5-enc", "Microsoft HMAC MD5 (RC4 key)", /*Heimdal alias*/ 112 ENCTYPE_ARCFOUR_HMAC, &krb5int_keyhash_hmac_md5, NULL, 0, 113 #ifdef _KERNEL 114 SUN_CKM_MD5, 115 CRYPTO_MECH_INVALID 116 #endif /* _KERNEL */ 117 }, 118 { CKSUMTYPE_HMAC_MD5_ARCFOUR, 0, 119 "hmac-md5-earcfour", "Microsoft HMAC MD5 (RC4 key)", /* alias*/ 120 ENCTYPE_ARCFOUR_HMAC, &krb5int_keyhash_hmac_md5, NULL, 0, 121 #ifdef _KERNEL 122 SUN_CKM_MD5, 123 CRYPTO_MECH_INVALID 124 #endif /* _KERNEL */ 125 }, 126 127 { CKSUMTYPE_HMAC_SHA1_96_AES128, KRB5_CKSUMFLAG_DERIVE, 128 "hmac-sha1-96-aes128", "HMAC-SHA1 AES128 key", 129 NULL, NULL, &krb5_hash_sha1, 12, 130 #ifdef _KERNEL 131 SUN_CKM_SHA1_HMAC, 132 CRYPTO_MECH_INVALID 133 #endif /* _KERNEL */ 134 }, 135 { CKSUMTYPE_HMAC_SHA1_96_AES256, KRB5_CKSUMFLAG_DERIVE, 136 "hmac-sha1-96-aes256", "HMAC-SHA1 AES256 key", 137 0, NULL, &krb5_hash_sha1, 12, 138 #ifdef _KERNEL 139 SUN_CKM_SHA1_HMAC, 140 CRYPTO_MECH_INVALID 141 #endif /* _KERNEL */ 142 } 143 144 }; 145 146 const int krb5_cksumtypes_length = 147 sizeof(krb5_cksumtypes_list)/sizeof(struct krb5_cksumtypes); 148 149 #ifdef _KERNEL 150 void 151 setup_kef_cksumtypes() 152 { 153 int i; 154 struct krb5_cksumtypes *ck; 155 156 for (i=0; i<krb5_cksumtypes_length; i++) { 157 ck = (struct krb5_cksumtypes *)&krb5_cksumtypes_list[i]; 158 if (ck != NULL && 159 ck->mt_c_name != NULL && 160 ck->kef_cksum_mt == CRYPTO_MECH_INVALID) { 161 162 ck->kef_cksum_mt = crypto_mech2id(ck->mt_c_name); 163 KRB5_LOG1(KRB5_INFO, "setup_kef_cksumtypes() - " 164 "%s ==> %ld", 165 ck->mt_c_name, (ulong_t)ck->kef_cksum_mt); 166 } 167 } 168 } 169 #endif /* _KERNEL */ 170