ksmbd: Use HMAC-SHA256 library for message signing and key generation

	select CRYPTO_LIB_DES

	select CRYPTO_LIB_SHA256

	select CRYPTO_LIB_SHA512

	select CRYPTO_SHA256

	select CRYPTO_CMAC

	select CRYPTO_AEAD2

	select CRYPTO_CCM

 * @sig:	signature value generated for client request packet

 *

 */

int ksmbd_sign_smb2_pdu(struct ksmbd_conn *conn, char *key, struct kvec *iov,

void ksmbd_sign_smb2_pdu(struct ksmbd_conn *conn, char *key, struct kvec *iov,

			 int n_vec, char *sig)

{

	struct ksmbd_crypto_ctx *ctx;

	int rc, i;

	ctx = ksmbd_crypto_ctx_find_hmacsha256();

	if (!ctx) {

		ksmbd_debug(AUTH, "could not crypto alloc hmacmd5\n");

		return -ENOMEM;

	}

	rc = crypto_shash_setkey(CRYPTO_HMACSHA256_TFM(ctx),

				 key,

				 SMB2_NTLMV2_SESSKEY_SIZE);

	if (rc)

		goto out;

	struct hmac_sha256_ctx ctx;

	int i;

	rc = crypto_shash_init(CRYPTO_HMACSHA256(ctx));

	if (rc) {

		ksmbd_debug(AUTH, "hmacsha256 init error %d\n", rc);

		goto out;

	}

	for (i = 0; i < n_vec; i++) {

		rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx),

					 iov[i].iov_base,

					 iov[i].iov_len);

		if (rc) {

			ksmbd_debug(AUTH, "hmacsha256 update error %d\n", rc);

			goto out;

		}

	}

	rc = crypto_shash_final(CRYPTO_HMACSHA256(ctx), sig);

	if (rc)

		ksmbd_debug(AUTH, "hmacsha256 generation error %d\n", rc);

out:

	ksmbd_release_crypto_ctx(ctx);

	return rc;

	hmac_sha256_init_usingrawkey(&ctx, key, SMB2_NTLMV2_SESSKEY_SIZE);

	for (i = 0; i < n_vec; i++)

		hmac_sha256_update(&ctx, iov[i].iov_base, iov[i].iov_len);

	hmac_sha256_final(&ctx, sig);

}

/**

	bool binding;

};

static int generate_key(struct ksmbd_conn *conn, struct ksmbd_session *sess,

static void generate_key(struct ksmbd_conn *conn, struct ksmbd_session *sess,

			 struct kvec label, struct kvec context, __u8 *key,

			 unsigned int key_size)

{

	__u8 i[4] = {0, 0, 0, 1};

	__u8 L128[4] = {0, 0, 0, 128};

	__u8 L256[4] = {0, 0, 1, 0};

	int rc;

	unsigned char prfhash[SMB2_HMACSHA256_SIZE];

	unsigned char *hashptr = prfhash;

	struct ksmbd_crypto_ctx *ctx;

	memset(prfhash, 0x0, SMB2_HMACSHA256_SIZE);

	memset(key, 0x0, key_size);

	ctx = ksmbd_crypto_ctx_find_hmacsha256();

	if (!ctx) {

		ksmbd_debug(AUTH, "could not crypto alloc hmacmd5\n");

		return -ENOMEM;

	}

	struct hmac_sha256_ctx ctx;

	rc = crypto_shash_setkey(CRYPTO_HMACSHA256_TFM(ctx),

				 sess->sess_key,

	hmac_sha256_init_usingrawkey(&ctx, sess->sess_key,

				     SMB2_NTLMV2_SESSKEY_SIZE);

	if (rc)

		goto smb3signkey_ret;

	rc = crypto_shash_init(CRYPTO_HMACSHA256(ctx));

	if (rc) {

		ksmbd_debug(AUTH, "hmacsha256 init error %d\n", rc);

		goto smb3signkey_ret;

	}

	rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx), i, 4);

	if (rc) {

		ksmbd_debug(AUTH, "could not update with n\n");

		goto smb3signkey_ret;

	}

	rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx),

				 label.iov_base,

				 label.iov_len);

	if (rc) {

		ksmbd_debug(AUTH, "could not update with label\n");

		goto smb3signkey_ret;

	}

	rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx), &zero, 1);

	if (rc) {

		ksmbd_debug(AUTH, "could not update with zero\n");

		goto smb3signkey_ret;

	}

	rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx),

				 context.iov_base,

				 context.iov_len);

	if (rc) {

		ksmbd_debug(AUTH, "could not update with context\n");

		goto smb3signkey_ret;

	}

	hmac_sha256_update(&ctx, i, 4);

	hmac_sha256_update(&ctx, label.iov_base, label.iov_len);

	hmac_sha256_update(&ctx, &zero, 1);

	hmac_sha256_update(&ctx, context.iov_base, context.iov_len);

	if (key_size == SMB3_ENC_DEC_KEY_SIZE &&

	    (conn->cipher_type == SMB2_ENCRYPTION_AES256_CCM ||

	     conn->cipher_type == SMB2_ENCRYPTION_AES256_GCM))

		rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx), L256, 4);

		hmac_sha256_update(&ctx, L256, 4);

	else

		rc = crypto_shash_update(CRYPTO_HMACSHA256(ctx), L128, 4);

	if (rc) {

		ksmbd_debug(AUTH, "could not update with L\n");

		goto smb3signkey_ret;

	}

		hmac_sha256_update(&ctx, L128, 4);

	rc = crypto_shash_final(CRYPTO_HMACSHA256(ctx), hashptr);

	if (rc) {

		ksmbd_debug(AUTH, "Could not generate hmacmd5 hash error %d\n",

			    rc);

		goto smb3signkey_ret;

	}

	memcpy(key, hashptr, key_size);

smb3signkey_ret:

	ksmbd_release_crypto_ctx(ctx);

	return rc;

	hmac_sha256_final(&ctx, prfhash);

	memcpy(key, prfhash, key_size);

}

static int generate_smb3signingkey(struct ksmbd_session *sess,

				   struct ksmbd_conn *conn,

				   const struct derivation *signing)

{

	int rc;

	struct channel *chann;

	char *key;

	else

		key = sess->smb3signingkey;

	rc = generate_key(conn, sess, signing->label, signing->context, key,

	generate_key(conn, sess, signing->label, signing->context, key,

		     SMB3_SIGN_KEY_SIZE);

	if (rc)

		return rc;

	if (!(conn->dialect >= SMB30_PROT_ID && signing->binding))

		memcpy(chann->smb3signingkey, key, SMB3_SIGN_KEY_SIZE);

	struct derivation decryption;

};

static int generate_smb3encryptionkey(struct ksmbd_conn *conn,

static void generate_smb3encryptionkey(struct ksmbd_conn *conn,

				       struct ksmbd_session *sess,

				       const struct derivation_twin *ptwin)

{

	int rc;

	rc = generate_key(conn, sess, ptwin->encryption.label,

	generate_key(conn, sess, ptwin->encryption.label,

		     ptwin->encryption.context, sess->smb3encryptionkey,

		     SMB3_ENC_DEC_KEY_SIZE);

	if (rc)

		return rc;

	rc = generate_key(conn, sess, ptwin->decryption.label,

	generate_key(conn, sess, ptwin->decryption.label,

		     ptwin->decryption.context,

		     sess->smb3decryptionkey, SMB3_ENC_DEC_KEY_SIZE);

	if (rc)

		return rc;

	ksmbd_debug(AUTH, "dumping generated AES encryption keys\n");

	ksmbd_debug(AUTH, "Cipher type   %d\n", conn->cipher_type);

		ksmbd_debug(AUTH, "ServerOut Key %*ph\n",

			    SMB3_GCM128_CRYPTKEY_SIZE, sess->smb3decryptionkey);

	}

	return 0;

}

int ksmbd_gen_smb30_encryptionkey(struct ksmbd_conn *conn,

void ksmbd_gen_smb30_encryptionkey(struct ksmbd_conn *conn,

				   struct ksmbd_session *sess)

{

	struct derivation_twin twin;

	d->context.iov_base = "ServerIn ";

	d->context.iov_len = 10;

	return generate_smb3encryptionkey(conn, sess, &twin);

	generate_smb3encryptionkey(conn, sess, &twin);

}

int ksmbd_gen_smb311_encryptionkey(struct ksmbd_conn *conn,

void ksmbd_gen_smb311_encryptionkey(struct ksmbd_conn *conn,

				    struct ksmbd_session *sess)

{

	struct derivation_twin twin;

	d->context.iov_base = sess->Preauth_HashValue;

	d->context.iov_len = 64;

	return generate_smb3encryptionkey(conn, sess, &twin);

	generate_smb3encryptionkey(conn, sess, &twin);

}

int ksmbd_gen_preauth_integrity_hash(struct ksmbd_conn *conn, char *buf,

				   struct ksmbd_conn *conn);

int ksmbd_krb5_authenticate(struct ksmbd_session *sess, char *in_blob,

			    int in_len,	char *out_blob, int *out_len);

int ksmbd_sign_smb2_pdu(struct ksmbd_conn *conn, char *key, struct kvec *iov,

void ksmbd_sign_smb2_pdu(struct ksmbd_conn *conn, char *key, struct kvec *iov,

			 int n_vec, char *sig);

int ksmbd_sign_smb3_pdu(struct ksmbd_conn *conn, char *key, struct kvec *iov,

			int n_vec, char *sig);

			       struct ksmbd_conn *conn);

int ksmbd_gen_smb311_signingkey(struct ksmbd_session *sess,

				struct ksmbd_conn *conn);

int ksmbd_gen_smb30_encryptionkey(struct ksmbd_conn *conn,

void ksmbd_gen_smb30_encryptionkey(struct ksmbd_conn *conn,

				   struct ksmbd_session *sess);

int ksmbd_gen_smb311_encryptionkey(struct ksmbd_conn *conn,

void ksmbd_gen_smb311_encryptionkey(struct ksmbd_conn *conn,

				    struct ksmbd_session *sess);

int ksmbd_gen_preauth_integrity_hash(struct ksmbd_conn *conn, char *buf,

				     __u8 *pi_hash);

	case CRYPTO_SHASH_HMACMD5:

		tfm = crypto_alloc_shash("hmac(md5)", 0, 0);

		break;

	case CRYPTO_SHASH_HMACSHA256:

		tfm = crypto_alloc_shash("hmac(sha256)", 0, 0);

		break;

	case CRYPTO_SHASH_CMACAES:

		tfm = crypto_alloc_shash("cmac(aes)", 0, 0);

		break;

	return ____crypto_shash_ctx_find(CRYPTO_SHASH_HMACMD5);

}

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_hmacsha256(void)

{

	return ____crypto_shash_ctx_find(CRYPTO_SHASH_HMACSHA256);

}

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_cmacaes(void)

{

	return ____crypto_shash_ctx_find(CRYPTO_SHASH_CMACAES);

enum {

	CRYPTO_SHASH_HMACMD5	= 0,

	CRYPTO_SHASH_HMACSHA256,

	CRYPTO_SHASH_CMACAES,

	CRYPTO_SHASH_MAX,

};

};

#define CRYPTO_HMACMD5(c)	((c)->desc[CRYPTO_SHASH_HMACMD5])

#define CRYPTO_HMACSHA256(c)	((c)->desc[CRYPTO_SHASH_HMACSHA256])

#define CRYPTO_CMACAES(c)	((c)->desc[CRYPTO_SHASH_CMACAES])

#define CRYPTO_HMACMD5_TFM(c)	((c)->desc[CRYPTO_SHASH_HMACMD5]->tfm)

#define CRYPTO_HMACSHA256_TFM(c)\

				((c)->desc[CRYPTO_SHASH_HMACSHA256]->tfm)

#define CRYPTO_CMACAES_TFM(c)	((c)->desc[CRYPTO_SHASH_CMACAES]->tfm)

#define CRYPTO_GCM(c)		((c)->ccmaes[CRYPTO_AEAD_AES_GCM])

void ksmbd_release_crypto_ctx(struct ksmbd_crypto_ctx *ctx);

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_hmacmd5(void);

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_hmacsha256(void);

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_cmacaes(void);

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_gcm(void);

struct ksmbd_crypto_ctx *ksmbd_crypto_ctx_find_ccm(void);