Strona główna Odkrywaj Pomoc
Zaloguj się
vimacs
/
openconnect
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Gałąź: h3cssl
Gałęzie Tagi
openconnect
/
esp.c

esp.c 14 KB
Bezpośredni odnośnik Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503 
  1. /*
    2. 

  2.  * OpenConnect (SSL + DTLS) VPN client
    3. 

  3.  *
    4. 

  4.  * Copyright © 2008-2015 Intel Corporation.
    5. 

  5.  *
    6. 

  6.  * Author: David Woodhouse <dwmw2@infradead.org>
    7. 

  7.  *
    8. 

  8.  * This program is free software; you can redistribute it and/or
    9. 

  9.  * modify it under the terms of the GNU Lesser General Public License
    10. 

  10.  * version 2.1, as published by the Free Software Foundation.
    11. 

  11.  *
    12. 

  12.  * This program is distributed in the hope that it will be useful, but
    13. 

  13.  * WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    15. 

  15.  * Lesser General Public License for more details.
    16. 

  16.  */
    17. 

  17. 

  18. #include <config.h>
    19. 

  19. 

  20. #include "openconnect-internal.h"
    21. 

  21. 

  22. #include "lzo.h"
    23. 

  23. 

  24. #include <unistd.h>
    25. 

  25. 

  26. #include <stdio.h>
    27. 

  27. #include <stdint.h>
    28. 

  28. #include <string.h>
    29. 

  29. #include <stdlib.h>
    30. 

  30. #include <errno.h>
    31. 

  31. 

  32. int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp)
    33. 

  33. {
    34. 

  34. 	int i;
    35. 

  35. 	const char *enctype, *mactype;
    36. 

  36. 	char enckey[256], mackey[256];
    37. 

  37. 

  38. 	switch(vpninfo->esp_enc) {
    39. 

  39. 	case ENC_AES_128_CBC:
    40. 

  40. 		enctype = "AES-128-CBC (RFC3602)";
    41. 

  41. 		break;
    42. 

  42. 	case ENC_AES_256_CBC:
    43. 

  43. 		enctype = "AES-256-CBC (RFC3602)";
    44. 

  44. 		break;
    45. 

  45. 	default:
    46. 

  46. 		return -EINVAL;
    47. 

  47. 	}
    48. 

  48. 	switch(vpninfo->esp_hmac) {
    49. 

  49. 	case HMAC_MD5:
    50. 

  50. 		mactype = "HMAC-MD5-96 (RFC2403)";
    51. 

  51. 		break;
    52. 

  52. 	case HMAC_SHA1:
    53. 

  53. 		mactype = "HMAC-SHA-1-96 (RFC2404)";
    54. 

  54. 		break;
    55. 

  55. 	case HMAC_SHA256:
    56. 

  56. 		mactype = "HMAC-SHA-256-128 (RFC4868)";
    57. 

  57. 		break;
    58. 

  58. 	default:
    59. 

  59. 		return -EINVAL;
    60. 

  60. 	}
    61. 

  61. 

  62. 	for (i = 0; i < vpninfo->enc_key_len; i++)
    63. 

  63. 		sprintf(enckey + (2 * i), "%02x", esp->enc_key[i]);
    64. 

  64. 	for (i = 0; i < vpninfo->hmac_key_len; i++)
    65. 

  65. 		sprintf(mackey + (2 * i), "%02x", esp->hmac_key[i]);
    66. 

  66. 

  67. 	vpn_progress(vpninfo, PRG_TRACE,
    68. 

  68. 		     _("Parameters for %s ESP: SPI 0x%08x\n"),
    69. 

  69. 		     name, (unsigned)ntohl(esp->spi));
    70. 

  70. 	vpn_progress(vpninfo, PRG_TRACE,
    71. 

  71. 		     _("ESP encryption type %s key 0x%s\n"),
    72. 

  72. 		     enctype, enckey);
    73. 

  73. 	vpn_progress(vpninfo, PRG_TRACE,
    74. 

  74. 		     _("ESP authentication type %s key 0x%s\n"),
    75. 

  75. 		     mactype, mackey);
    76. 

  76. 	return 0;
    77. 

  77. }
    78. 

  78. 

  79. int esp_setup(struct openconnect_info *vpninfo)
    80. 

  80. {
    81. 

  81. 	if (vpninfo->dtls_state == DTLS_DISABLED ||
    82. 

  82. 	    vpninfo->dtls_state == DTLS_NOSECRET)
    83. 

  83. 		return -EINVAL;
    84. 

  84. 

  85. 	/* XX: set ESP DPD interval if not already set */
    86. 

  86. 	if (!vpninfo->dtls_times.dpd) {
    87. 

  87. 		if (vpninfo->esp_ssl_fallback)
    88. 

  88. 			vpninfo->dtls_times.dpd = vpninfo->esp_ssl_fallback;
    89. 

  89. 		else
    90. 

  90. 			vpninfo->dtls_times.dpd = vpninfo->dtls_attempt_period;
    91. 

  91. 	}
    92. 

  92. 

  93. 	print_esp_keys(vpninfo, _("incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]);
    94. 

  94. 	print_esp_keys(vpninfo, _("outgoing"), &vpninfo->esp_out);
    95. 

  95. 

  96. 	vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n"));
    97. 

  97. 	if (vpninfo->proto->udp_send_probes)
    98. 

  98. 		vpninfo->proto->udp_send_probes(vpninfo);
    99. 

  99. 

  100. 	return 0;
    101. 

  101. }
    102. 

  102. 

  103. int construct_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, uint8_t next_hdr)
    104. 

  104. {
    105. 

  105. 	const int blksize = 16;
    106. 

  106. 	int i, padlen, ret;
    107. 

  107. 

  108. 	if (!next_hdr) {
    109. 

  109. 		if ((pkt->data[0] & 0xf0) == 0x60) /* iph->ip_v */
    110. 

  110. 			next_hdr = IPPROTO_IPV6;
    111. 

  111. 		else
    112. 

  112. 			next_hdr = IPPROTO_IPIP;
    113. 

  113. 	}
    114. 

  114. 

  115. 	/* This gets much more fun if the IV is variable-length */
    116. 

  116. 	pkt->esp.spi = vpninfo->esp_out.spi;
    117. 

  117. 	pkt->esp.seq = htonl(vpninfo->esp_out.seq++);
    118. 

  118. 

  119. 	padlen = blksize - 1 - ((pkt->len + 1) % blksize);
    120. 

  120. 	for (i=0; i<padlen; i++)
    121. 

  121. 		pkt->data[pkt->len + i] = i + 1;
    122. 

  122. 	pkt->data[pkt->len + padlen] = padlen;
    123. 

  123. 	pkt->data[pkt->len + padlen + 1] = next_hdr;
    124. 

  124. 

  125. 	memcpy(pkt->esp.iv, vpninfo->esp_out.iv, sizeof(pkt->esp.iv));
    126. 

  126. 

  127. 	ret = encrypt_esp_packet(vpninfo, pkt, pkt->len + padlen + 2);
    128. 

  128. 	if (ret)
    129. 

  129. 		return ret;
    130. 

  130. 

  131. 	return sizeof(pkt->esp) + pkt->len + padlen + 2 + vpninfo->hmac_out_len;
    132. 

  132. }
    133. 

  133. 

  134. int esp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable)
    135. 

  135. {
    136. 

  136. 	struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in];
    137. 

  137. 	struct esp *old_esp = &vpninfo->esp_in[vpninfo->current_esp_in ^ 1];
    138. 

  138. 	struct pkt *this;
    139. 

  139. 	int work_done = 0;
    140. 

  140. 	int ret;
    141. 

  141. 

  142. 	/* Some servers send us packets that are larger than negotiated
    143. 

  143. 	   MTU, or lack the ability to negotiate MTU (see gpst.c). We
    144. 

  144. 	   reserve some extra space to handle that */
    145. 

  145. 	int receive_mtu = MAX(2048, vpninfo->ip_info.mtu + 256);
    146. 

  146. 

  147. 	if (vpninfo->dtls_state == DTLS_SLEEPING) {
    148. 

  148. 		if (ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + vpninfo->dtls_attempt_period)
    149. 

  149. 		    || vpninfo->dtls_need_reconnect) {
    150. 

  150. 			vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n"));
    151. 

  151. 			if (vpninfo->proto->udp_send_probes)
    152. 

  152. 				vpninfo->proto->udp_send_probes(vpninfo);
    153. 

  153. 		}
    154. 

  154. 	}
    155. 

  155. 	if (vpninfo->dtls_fd == -1)
    156. 

  156. 		return 0;
    157. 

  157. 

  158. 	while (readable) {
    159. 

  159. 		int len = receive_mtu + vpninfo->pkt_trailer;
    160. 

  160. 		int i;
    161. 

  161. 		struct pkt *pkt;
    162. 

  162. 

  163. 		if (!vpninfo->dtls_pkt) {
    164. 

  164. 			vpninfo->dtls_pkt = alloc_pkt(vpninfo, len);
    165. 

  165. 			if (!vpninfo->dtls_pkt) {
    166. 

  166. 				vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n"));
    167. 

  167. 				break;
    168. 

  168. 			}
    169. 

  169. 		}
    170. 

  170. 		pkt = vpninfo->dtls_pkt;
    171. 

  171. 		len = recv(vpninfo->dtls_fd, (void *)&pkt->esp, len + sizeof(pkt->esp), 0);
    172. 

  172. 		if (!len)
    173. 

  173. 			break;
    174. 

  174. 		if (len < 0) {
    175. 

  175. #ifdef _WIN32
    176. 

  176. 			int err = WSAGetLastError();
    177. 

  177. 			if (err == WSAEWOULDBLOCK)
    178. 

  178. 				break;
    179. 

  179. 

  180. 			char *errstr = openconnect__win32_strerror(err);
    181. 

  181. 			vpn_progress(vpninfo, PRG_ERR,
    182. 

  182. 				     _("ESP receive error: %s\n"),
    183. 

  183. 				     errstr);
    184. 

  184. 			free(errstr);
    185. 

  185. #else
    186. 

  186. 			if (errno == EAGAIN || errno == EWOULDBLOCK)
    187. 

  187. 				break;
    188. 

  188. 			vpn_progress(vpninfo, PRG_ERR,
    189. 

  189. 				     _("ESP receive error: %s\n"),
    190. 

  190. 				     strerror(errno));
    191. 

  191. #endif
    192. 

  192. 			/* On *real* errors, close the UDP socket and try again later. */
    193. 

  193. 			vpninfo->proto->udp_close(vpninfo);
    194. 

  194. 			return 0;
    195. 

  195. 		}
    196. 

  196. 

  197. 		work_done = 1;
    198. 

  198. 

  199. 		/* both supported algos (SHA1 and MD5) have 12-byte MAC lengths (RFC2403 and RFC2404) */
    200. 

  200. 		if (len <= sizeof(pkt->esp) + vpninfo->hmac_out_len)
    201. 

  201. 			continue;
    202. 

  202. 

  203. 		len -= sizeof(pkt->esp) + vpninfo->hmac_out_len;
    204. 

  204. 		pkt->len = len;
    205. 

  205. 

  206. 		if (pkt->esp.spi == esp->spi) {
    207. 

  207. 			if (decrypt_esp_packet(vpninfo, esp, pkt))
    208. 

  208. 				continue;
    209. 

  209. 		} else if (pkt->esp.spi == old_esp->spi &&
    210. 

  210. 			   ntohl(pkt->esp.seq) + esp->seq < vpninfo->old_esp_maxseq) {
    211. 

  211. 			vpn_progress(vpninfo, PRG_TRACE,
    212. 

  212. 				     _("Received ESP packet from old SPI 0x%x, seq %u\n"),
    213. 

  213. 				     (unsigned)ntohl(old_esp->spi), (unsigned)ntohl(pkt->esp.seq));
    214. 

  214. 			if (decrypt_esp_packet(vpninfo, old_esp, pkt))
    215. 

  215. 				continue;
    216. 

  216. 		} else {
    217. 

  217. 			vpn_progress(vpninfo, PRG_DEBUG,
    218. 

  218. 				     _("Received ESP packet with invalid SPI 0x%08x\n"),
    219. 

  219. 				     (unsigned)ntohl(pkt->esp.spi));
    220. 

  220. 			continue;
    221. 

  221. 		}
    222. 

  222. 

  223. 		/* Possible values of the Next Header field are:
    224. 

  224. 		   0x04: IP[v4]-in-IP
    225. 

  225. 		   0x05: supposed to mean Internet Stream Protocol
    226. 

  226. 		         (XXX: but used for LZO compressed IPv4 packets by Juniper)
    227. 

  227. 		   0x29: IPv6 encapsulation */
    228. 

  228. 		if (pkt->data[len - 1] == 0x04)
    229. 

  229. 			vpn_progress(vpninfo, PRG_TRACE, _("Received ESP Legacy IP packet of %d bytes\n"),
    230. 

  230. 				     len);
    231. 

  231. 		else if (pkt->data[len - 1] == 0x05)
    232. 

  232. 			vpn_progress(vpninfo, PRG_TRACE, _("Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n"),
    233. 

  233. 				     len);
    234. 

  234. 		else if (pkt->data[len - 1] == 0x29)
    235. 

  235. 			vpn_progress(vpninfo, PRG_TRACE, _("Received ESP IPv6 packet of %d bytes\n"),
    236. 

  236. 				     len);
    237. 

  237. 		else {
    238. 

  238. 			vpn_progress(vpninfo, PRG_ERR,
    239. 

  239. 				     _("Received ESP packet of %d bytes with unrecognised payload type %02x\n"),
    240. 

  240. 				     len, pkt->data[len-1]);
    241. 

  241. 			continue;
    242. 

  242. 		}
    243. 

  243. 

  244. 		if (len <= 2 + pkt->data[len - 2]) {
    245. 

  245. 			vpn_progress(vpninfo, PRG_ERR,
    246. 

  246. 				     _("Invalid padding length %02x in ESP\n"),
    247. 

  247. 				     pkt->data[len - 2]);
    248. 

  248. 			continue;
    249. 

  249. 		}
    250. 

  250. 		pkt->len = len - 2 - pkt->data[len - 2];
    251. 

  251. 		for (i = 0 ; i < pkt->data[len - 2]; i++) {
    252. 

  252. 			if (pkt->data[pkt->len + i] != i + 1)
    253. 

  253. 				break; /* We can't just 'continue' here because it
    254. 

  254. 					* would only break out of this 'for' loop */
    255. 

  255. 		}
    256. 

  256. 		if (i != pkt->data[len - 2]) {
    257. 

  257. 			vpn_progress(vpninfo, PRG_ERR,
    258. 

  258. 				     _("Invalid padding bytes in ESP\n"));
    259. 

  259. 			continue; /* We can here, though */
    260. 

  260. 		}
    261. 

  261. 		vpninfo->dtls_times.last_rx = time(NULL);
    262. 

  262. 

  263. 		if (vpninfo->proto->udp_catch_probe) {
    264. 

  264. 			if (vpninfo->proto->udp_catch_probe(vpninfo, pkt)) {
    265. 

  265. 				if (vpninfo->dtls_state == DTLS_SLEEPING) {
    266. 

  266. 					vpn_progress(vpninfo, PRG_INFO,
    267. 

  267. 						     _("ESP session established with server\n"));
    268. 

  268. 					vpninfo->dtls_state = DTLS_CONNECTED;
    269. 

  269. 				}
    270. 

  270. 				continue;
    271. 

  271. 			}
    272. 

  272. 		}
    273. 

  273. 		if (pkt->data[len - 1] == 0x05) {
    274. 

  274. 			struct pkt *newpkt = alloc_pkt(vpninfo, receive_mtu + vpninfo->pkt_trailer);
    275. 

  275. 			int newlen = receive_mtu;
    276. 

  276. 			if (!newpkt) {
    277. 

  277. 				vpn_progress(vpninfo, PRG_ERR,
    278. 

  278. 					     _("Failed to allocate memory to decrypt ESP packet\n"));
    279. 

  279. 				continue;
    280. 

  280. 			}
    281. 

  281. 			if (av_lzo1x_decode(newpkt->data, &newlen,
    282. 

  282. 					    pkt->data, &pkt->len) || pkt->len) {
    283. 

  283. 				vpn_progress(vpninfo, PRG_ERR,
    284. 

  284. 					     _("LZO decompression of ESP packet failed\n"));
    285. 

  285. 				free_pkt(vpninfo, newpkt);
    286. 

  286. 				continue;
    287. 

  287. 			}
    288. 

  288. 			newpkt->len = receive_mtu - newlen;
    289. 

  289. 			vpn_progress(vpninfo, PRG_TRACE,
    290. 

  290. 				     _("LZO decompressed %d bytes into %d\n"),
    291. 

  291. 				     len - 2 - pkt->data[len-2], newpkt->len);
    292. 

  292. 			queue_packet(&vpninfo->incoming_queue, newpkt);
    293. 

  293. 		} else {
    294. 

  294. 			queue_packet(&vpninfo->incoming_queue, pkt);
    295. 

  295. 			vpninfo->dtls_pkt = NULL;
    296. 

  296. 		}
    297. 

  297. 	}
    298. 

  298. 

  299. 	if (vpninfo->dtls_state != DTLS_ESTABLISHED)
    300. 

  300. 		return 0;
    301. 

  301. 

  302. 	switch (keepalive_action(&vpninfo->dtls_times, timeout)) {
    303. 

  303. 	case KA_REKEY:
    304. 

  304. 		vpn_progress(vpninfo, PRG_ERR, _("Rekey not implemented for ESP\n"));
    305. 

  305. 		break;
    306. 

  306. 

  307. 	case KA_DPD_DEAD:
    308. 

  308. 		vpn_progress(vpninfo, PRG_ERR, _("ESP detected dead peer\n"));
    309. 

  309. 		if (vpninfo->proto->udp_close)
    310. 

  310. 			vpninfo->proto->udp_close(vpninfo);
    311. 

  311. 		if (vpninfo->proto->udp_send_probes)
    312. 

  312. 			vpninfo->proto->udp_send_probes(vpninfo);
    313. 

  313. 		return 1;
    314. 

  314. 

  315. 	case KA_DPD:
    316. 

  316. 		vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes for DPD\n"));
    317. 

  317. 		if (vpninfo->proto->udp_send_probes)
    318. 

  318. 			vpninfo->proto->udp_send_probes(vpninfo);
    319. 

  319. 		work_done = 1;
    320. 

  320. 		break;
    321. 

  321. 

  322. 	case KA_KEEPALIVE:
    323. 

  323. 		vpn_progress(vpninfo, PRG_ERR, _("Keepalive not implemented for ESP\n"));
    324. 

  324. 		break;
    325. 

  325. 

  326. 	case KA_NONE:
    327. 

  327. 		break;
    328. 

  328. 	}
    329. 

  329. 	while (1) {
    330. 

  330. 		int len;
    331. 

  331. 		int ip_version;
    332. 

  332. 

  333. 		if (vpninfo->deflate_pkt) {
    334. 

  334. 			this = vpninfo->deflate_pkt;
    335. 

  335. 			len = this->len;
    336. 

  336. 			ip_version = this->data[0] >> 4;
    337. 

  337. 		} else {
    338. 

  338. 			this = dequeue_packet(&vpninfo->outgoing_queue);
    339. 

  339. 			if (!this)
    340. 

  340. 				break;
    341. 

  341. 			ip_version = this->data[0] >> 4;
    342. 

  342. 

  343. 			if (vpninfo->proto->proto == PROTO_PULSE) {
    344. 

  344. 				uint8_t dontsend;
    345. 

  345. 

  346. 				/* Pulse can only accept ESP of the same protocol as the one
    347. 

  347. 				 * you connected to it with. The other has to go over IF-T/TLS. */
    348. 

  348. 				if (vpninfo->dtls_addr->sa_family == AF_INET6)
    349. 

  349. 					dontsend = 4;
    350. 

  350. 				else
    351. 

  351. 					dontsend = 6;
    352. 

  352. 

  353. 				if (ip_version == dontsend) {
    354. 

  354. 					store_be32(&this->pulse.vendor, 0xa4c);
    355. 

  355. 					store_be32(&this->pulse.type, 4);
    356. 

  356. 					store_be32(&this->pulse.len, this->len + 16);
    357. 

  357. 					queue_packet(&vpninfo->tcp_control_queue, this);
    358. 

  358. 					work_done = 1;
    359. 

  359. 					continue;
    360. 

  360. 				}
    361. 

  361. 			} else if (vpninfo->proto->proto == PROTO_NC &&
    362. 

  362. 				   vpninfo->dtls_addr->sa_family == AF_INET6) {
    363. 

  363. 				/* Juniper/NC cannot do ESP-over-IPv6, and it cannot send
    364. 

  364. 				 * tunneled IPv6 packets at all; they just get dropped.
    365. 

  365. 				 * It shouldn't even send any ESP options/keys when connecting
    366. 

  366. 				 * to the server via IPv6. This should never happen.
    367. 

  367. 				 */
    368. 

  368. 				vpninfo->quit_reason = "Juniper/NC ESP tunnel over IPv6 should never happen.";
    369. 

  369. 				return 1;
    370. 

  370. 			}
    371. 

  371. 

  372. 			/* XX: Must precede in-place encryption of the packet, because
    373. 

  373. 			   IP header fields (version and TOS) are garbled afterward.
    374. 

  374. 			   If TOS optname is set, we want to copy the TOS/TCLASS header
    375. 

  375. 			   to the outer UDP packet */
    376. 

  376. 			if (vpninfo->dtls_tos_optname)
    377. 

  377. 				udp_tos_update(vpninfo, this);
    378. 

  378. 

  379. 			len = construct_esp_packet(vpninfo, this, 0);
    380. 

  380. 			if (len < 0) {
    381. 

  381. 				/* Should we disable ESP? */
    382. 

  382. 				free_pkt(vpninfo, this);
    383. 

  383. 				work_done = 1;
    384. 

  384. 				continue;
    385. 

  385. 			}
    386. 

  386. 		}
    387. 

  387. 

  388. 		ret = send(vpninfo->dtls_fd, (void *)&this->esp, len, 0);
    389. 

  389. 		if (ret < 0) {
    390. 

  390. 			/* Not that this is likely to happen with UDP, but... */
    391. 

  391. 			if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) {
    392. 

  392. 				vpninfo->deflate_pkt = this;
    393. 

  393. 				this->len = len;
    394. 

  394. 				vpn_progress(vpninfo, PRG_DEBUG,
    395. 

  395. 					     _("Requeueing failed ESP send: %s\n"),
    396. 

  396. 					     strerror(errno));
    397. 

  397. 				monitor_write_fd(vpninfo, dtls);
    398. 

  398. 				return work_done;
    399. 

  399. 			} else {
    400. 

  400. 				/* A real error in sending. Fall back to TCP? */
    401. 

  401. 				vpn_progress(vpninfo, PRG_ERR,
    402. 

  402. 					_("Failed to send ESP packet: %s\n"),
    403. 

  403. 					strerror(errno));
    404. 

  404. 			}
    405. 

  405. 		} else {
    406. 

  406. 			vpninfo->dtls_times.last_tx = time(NULL);
    407. 

  407. 

  408. 			vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP IPv%d packet of %d bytes\n"),
    409. 

  409. 				     ip_version, len);
    410. 

  410. 		}
    411. 

  411. 		if (this == vpninfo->deflate_pkt) {
    412. 

  412. 			unmonitor_write_fd(vpninfo, dtls);
    413. 

  413. 			vpninfo->deflate_pkt = NULL;
    414. 

  414. 		}
    415. 

  415. 		free_pkt(vpninfo, this);
    416. 

  416. 		work_done = 1;
    417. 

  417. 	}
    418. 

  418. 

  419. 	return work_done;
    420. 

  420. }
    421. 

  421. 

  422. void esp_close(struct openconnect_info *vpninfo)
    423. 

  423. {
    424. 

  424. 	/* We close and reopen the socket in case we roamed and our
    425. 

  425. 	   local IP address has changed. */
    426. 

  426. 	if (vpninfo->dtls_fd != -1) {
    427. 

  427. 		unmonitor_fd(vpninfo, dtls);
    428. 

  428. 		closesocket(vpninfo->dtls_fd);
    429. 

  429. 		vpninfo->dtls_fd = -1;
    430. 

  430. 	}
    431. 

  431. 	if (vpninfo->dtls_state > DTLS_DISABLED)
    432. 

  432. 		vpninfo->dtls_state = DTLS_SLEEPING;
    433. 

  433. 	if (vpninfo->deflate_pkt) {
    434. 

  434. 		free_pkt(vpninfo, vpninfo->deflate_pkt);
    435. 

  435. 		vpninfo->deflate_pkt = NULL;
    436. 

  436. 	}
    437. 

  437. }
    438. 

  438. 

  439. void esp_shutdown(struct openconnect_info *vpninfo)
    440. 

  440. {
    441. 

  441. 	destroy_esp_ciphers(&vpninfo->esp_in[0]);
    442. 

  442. 	destroy_esp_ciphers(&vpninfo->esp_in[1]);
    443. 

  443. 	destroy_esp_ciphers(&vpninfo->esp_out);
    444. 

  444. 	if (vpninfo->proto->udp_close)
    445. 

  445. 		vpninfo->proto->udp_close(vpninfo);
    446. 

  446. 	if (vpninfo->dtls_state != DTLS_DISABLED)
    447. 

  447. 		vpninfo->dtls_state = DTLS_NOSECRET;
    448. 

  448. }
    449. 

  449. 

  450. int openconnect_setup_esp_keys(struct openconnect_info *vpninfo, int new_keys)
    451. 

  451. {
    452. 

  452. 	struct esp *esp_in;
    453. 

  453. 	int ret;
    454. 

  454. 

  455. 	if (vpninfo->dtls_state == DTLS_DISABLED)
    456. 

  456. 		return -EOPNOTSUPP;
    457. 

  457. 	if (!vpninfo->dtls_addr)
    458. 

  458. 		return -EINVAL;
    459. 

  459. 

  460. 	if (vpninfo->esp_hmac == HMAC_SHA256)
    461. 

  461. 		vpninfo->hmac_out_len = 16;
    462. 

  462. 	else /* MD5 and SHA1 */
    463. 

  463. 		vpninfo->hmac_out_len = 12;
    464. 

  464. 

  465. 	if (new_keys) {
    466. 

  466. 		vpninfo->old_esp_maxseq = vpninfo->esp_in[vpninfo->current_esp_in].seq + 32;
    467. 

  467. 		vpninfo->current_esp_in ^= 1;
    468. 

  468. 	}
    469. 

  469. 

  470. 	esp_in = &vpninfo->esp_in[vpninfo->current_esp_in];
    471. 

  471. 

  472. 	if (new_keys) {
    473. 

  473. 		if (openconnect_random(&esp_in->spi, sizeof(esp_in->spi)) ||
    474. 

  474. 		    openconnect_random((void *)&esp_in->enc_key, vpninfo->enc_key_len) ||
    475. 

  475. 		    openconnect_random((void *)&esp_in->hmac_key, vpninfo->hmac_key_len)) {
    476. 

  476. 			vpn_progress(vpninfo, PRG_ERR,
    477. 

  477. 				     _("Failed to generate random keys for ESP\n"));
    478. 

  478. 			return -EIO;
    479. 

  479. 		}
    480. 

  480. 	}
    481. 

  481. 

  482. 	if (openconnect_random(vpninfo->esp_out.iv, sizeof(vpninfo->esp_out.iv))) {
    483. 

  483. 		vpn_progress(vpninfo, PRG_ERR,
    484. 

  484. 			     _("Failed to generate initial IV for ESP\n"));
    485. 

  485. 		return -EIO;
    486. 

  486. 	}
    487. 

  487. 

  488. 	/* This is the minimum; some implementations may increase it */
    489. 

  489. 	vpninfo->pkt_trailer = MAX_ESP_PAD + MAX_IV_SIZE + MAX_HMAC_SIZE;
    490. 

  490. 

  491. 	vpninfo->esp_out.seq = vpninfo->esp_out.seq_backlog = 0;
    492. 

  492. 	esp_in->seq = esp_in->seq_backlog = 0;
    493. 

  493. 

  494. 	ret = init_esp_ciphers(vpninfo, &vpninfo->esp_out, esp_in);
    495. 

  495. 	if (ret)
    496. 

  496. 		return ret;
    497. 

  497. 

  498. 	if (vpninfo->dtls_state == DTLS_NOSECRET)
    499. 

  499. 		vpninfo->dtls_state = DTLS_SECRET;
    500. 

  500. 

  501. 	return 0;
    502. 

  502. }
    503. 

  503.