249 lines
18 KiB
C++
249 lines
18 KiB
C++
/*
|
||
Copyright 2015-2016 Amebis
|
||
Copyright 2016 GÉANT
|
||
|
||
This file is part of GÉANTLink.
|
||
|
||
GÉANTLink is free software: you can redistribute it and/or modify it
|
||
under the terms of the GNU General Public License as published by
|
||
the Free Software Foundation, either version 3 of the License, or
|
||
(at your option) any later version.
|
||
|
||
GÉANTLink is distributed in the hope that it will be useful, but
|
||
WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||
GNU General Public License for more details.
|
||
|
||
You should have received a copy of the GNU General Public License
|
||
along with GÉANTLink. If not, see <http://www.gnu.org/licenses/>.
|
||
*/
|
||
|
||
#include "EAPMethods.h"
|
||
#include "EAPSerialize.h"
|
||
#include "PAP.h"
|
||
|
||
#include <WinStd/Crypt.h>
|
||
|
||
|
||
namespace eap
|
||
{
|
||
class config_ttls;
|
||
class session_ttls;
|
||
class peer_ttls;
|
||
class peer_ttls_ui;
|
||
}
|
||
|
||
namespace eapserial
|
||
{
|
||
inline void pack(_Inout_ unsigned char *&cursor, _In_ const eap::config_ttls &val);
|
||
inline size_t get_pk_size(const eap::config_ttls &val);
|
||
inline void unpack(_Inout_ const unsigned char *&cursor, _Out_ eap::config_ttls &val);
|
||
}
|
||
|
||
#pragma once
|
||
|
||
|
||
namespace eap
|
||
{
|
||
// config classes do not need an assignment operator actually, so the C4512 warning is safely ignored.
|
||
#pragma warning(push)
|
||
#pragma warning(disable: 4512)
|
||
|
||
///
|
||
/// TTLS configuration
|
||
///
|
||
class config_ttls : public config
|
||
{
|
||
public:
|
||
config_ttls(_In_ module &mod);
|
||
virtual ~config_ttls();
|
||
virtual DWORD save(_In_ IXMLDOMDocument2 *pDoc, _Inout_ IXMLDOMNode *pConfigRoot, _Out_ EAP_ERROR **ppEapError) const;
|
||
virtual DWORD load(_In_ IXMLDOMNode *pConfigRoot, _Out_ EAP_ERROR **ppEapError);
|
||
|
||
public:
|
||
std::wstring m_outer_identity; ///< Outer identity
|
||
config_tls m_outer; ///< TLS configuration (outer authentication)
|
||
config *m_inner; ///< Inner authentication configuration
|
||
};
|
||
|
||
#pragma warning(pop)
|
||
|
||
|
||
class session_ttls : public session
|
||
{
|
||
public:
|
||
///
|
||
/// Constructor
|
||
///
|
||
session_ttls();
|
||
};
|
||
|
||
|
||
class peer_ttls : public peer
|
||
{
|
||
public:
|
||
///
|
||
/// Constructor
|
||
///
|
||
peer_ttls();
|
||
};
|
||
|
||
|
||
class peer_ttls_ui : public peer_ui
|
||
{
|
||
public:
|
||
///
|
||
/// Constructor
|
||
///
|
||
peer_ttls_ui();
|
||
|
||
///
|
||
/// Converts the configuration BLOB to XML.
|
||
///
|
||
/// The configuration BLOB is returned in the ppConnectionDataOut parameter of the EapPeerInvokeConfigUI function.
|
||
///
|
||
/// \sa [EapPeerConfigBlob2Xml function](https://msdn.microsoft.com/en-us/library/windows/desktop/aa363601.aspx)
|
||
///
|
||
virtual DWORD config_blob_to_xml(
|
||
_In_ DWORD dwFlags,
|
||
_In_count_(dwConfigInSize) const BYTE *pConfigIn,
|
||
_In_ DWORD dwConfigInSize,
|
||
_Out_ IXMLDOMDocument2 **ppConfigDoc,
|
||
_Out_ EAP_ERROR **ppEapError);
|
||
|
||
///
|
||
/// Converts XML into the configuration BLOB.
|
||
///
|
||
/// \sa [EapPeerConfigXml2Blob function](https://msdn.microsoft.com/en-us/library/windows/desktop/aa363602.aspx)
|
||
///
|
||
virtual DWORD config_xml_to_blob(
|
||
_In_ DWORD dwFlags,
|
||
_In_ IXMLDOMDocument2 *pConfigDoc,
|
||
_Out_ BYTE **ppConfigOut,
|
||
_Out_ DWORD *pdwConfigOutSize,
|
||
_Out_ EAP_ERROR **ppEapError);
|
||
|
||
///
|
||
/// Raises the EAP method's specific connection configuration user interface dialog on the client.
|
||
///
|
||
/// \sa [EapPeerInvokeConfigUI function](https://msdn.microsoft.com/en-us/library/windows/desktop/aa363614.aspx)
|
||
///
|
||
virtual DWORD invoke_config_ui(
|
||
_In_ HWND hwndParent,
|
||
_In_ DWORD dwFlags,
|
||
_In_ DWORD dwConnectionDataInSize,
|
||
_In_count_(dwConnectionDataInSize) const BYTE *pConnectionDataIn,
|
||
_Out_ DWORD *pdwConnectionDataOutSize,
|
||
_Out_ BYTE **ppConnectionDataOut,
|
||
_Out_ EAP_ERROR **ppEapError);
|
||
|
||
///
|
||
/// Raises a custom interactive user interface dialog to obtain user identity information for the EAP method on the client.
|
||
///
|
||
/// \sa [EapPeerInvokeIdentityUI function](https://msdn.microsoft.com/en-us/library/windows/desktop/aa363615.aspx)
|
||
///
|
||
virtual DWORD invoke_identity_ui(
|
||
_In_ DWORD dwFlags,
|
||
_In_ HWND hwndParent,
|
||
_In_ DWORD dwConnectionDataSize,
|
||
_In_count_(dwConnectionDataSize) const BYTE *pConnectionData,
|
||
_In_ DWORD dwUserDataSize,
|
||
_In_count_(dwUserDataSize) const BYTE *pUserData,
|
||
_Out_ DWORD *pdwUserDataOutSize,
|
||
_Out_ BYTE **ppUserDataOut,
|
||
_Out_ LPWSTR *ppwszIdentity,
|
||
_Out_ EAP_ERROR **ppEapError);
|
||
|
||
///
|
||
/// Raises a custom interactive user interface dialog for the EAP method on the client.
|
||
///
|
||
/// \sa [EapPeerInvokeInteractiveUI function](https://msdn.microsoft.com/en-us/library/windows/desktop/aa363616.aspx)
|
||
///
|
||
virtual DWORD invoke_interactive_ui(
|
||
_In_ HWND hwndParent,
|
||
_In_ DWORD dwUIContextDataSize,
|
||
_In_count_(dwUIContextDataSize) const BYTE *pUIContextData,
|
||
_Out_ DWORD *pdwDataFromInteractiveUISize,
|
||
_Out_ BYTE **ppDataFromInteractiveUI,
|
||
_Out_ EAP_ERROR **ppEapError);
|
||
};
|
||
}
|
||
|
||
|
||
namespace eapserial
|
||
{
|
||
///
|
||
/// Packs a TTLS based method configuration
|
||
///
|
||
/// \param[inout] cursor Memory cursor
|
||
/// \param[in] val Configuration to pack
|
||
///
|
||
inline void pack(_Inout_ unsigned char *&cursor, _In_ const eap::config_ttls &val)
|
||
{
|
||
pack(cursor, (const eap::config&)val);
|
||
pack(cursor, val.m_outer_identity );
|
||
pack(cursor, val.m_outer );
|
||
if (val.m_inner) {
|
||
if (dynamic_cast<eap::config_pap*>(val.m_inner)) {
|
||
pack(cursor, (unsigned char)EAP_TYPE_PAP);
|
||
pack(cursor, (const eap::config_pap&)*val.m_inner);
|
||
} else {
|
||
assert(0); // Unsupported inner authentication method type.
|
||
pack(cursor, (unsigned char)0);
|
||
}
|
||
} else
|
||
pack(cursor, (unsigned char)0);
|
||
}
|
||
|
||
|
||
///
|
||
/// Returns packed size of a TTLS based method configuration
|
||
///
|
||
/// \param[in] val Configuration to pack
|
||
///
|
||
/// \returns Size of data when packed (in bytes)
|
||
///
|
||
inline size_t get_pk_size(const eap::config_ttls &val)
|
||
{
|
||
size_t size_inner = sizeof(unsigned char);
|
||
if (val.m_inner) {
|
||
if (dynamic_cast<eap::config_pap*>(val.m_inner))
|
||
size_inner += get_pk_size((const eap::config_pap&)*val.m_inner);
|
||
else
|
||
assert(0); // Unsupported inner authentication method type.
|
||
}
|
||
|
||
return
|
||
get_pk_size((const eap::config&)val) +
|
||
get_pk_size(val.m_outer_identity ) +
|
||
get_pk_size(val.m_outer ) +
|
||
size_inner;
|
||
}
|
||
|
||
|
||
///
|
||
/// Unpacks a TTLS based method configuration
|
||
///
|
||
/// \param[inout] cursor Memory cursor
|
||
/// \param[out] val Configuration to unpack to
|
||
///
|
||
inline void unpack(_Inout_ const unsigned char *&cursor, _Out_ eap::config_ttls &val)
|
||
{
|
||
unpack(cursor, (eap::config&)val );
|
||
unpack(cursor, val.m_outer_identity);
|
||
unpack(cursor, val.m_outer );
|
||
|
||
assert(!val.m_inner);
|
||
unsigned char eap_type;
|
||
unpack(cursor, eap_type);
|
||
switch (eap_type) {
|
||
case EAP_TYPE_PAP:
|
||
val.m_inner = new eap::config_pap(val.m_module);
|
||
unpack(cursor, (eap::config_pap&)*val.m_inner);
|
||
break;
|
||
case 0 : break;
|
||
default : assert(0); // Unsupported inner authentication method type.
|
||
}
|
||
}
|
||
}
|