|
1 // Copyright (c) 2008-2009 Nokia Corporation and/or its subsidiary(-ies). |
|
2 // All rights reserved. |
|
3 // This component and the accompanying materials are made available |
|
4 // under the terms of "Eclipse Public License v1.0" |
|
5 // which accompanies this distribution, and is available |
|
6 // at the URL "http://www.eclipse.org/legal/epl-v10.html". |
|
7 // |
|
8 // Initial Contributors: |
|
9 // Nokia Corporation - initial contribution. |
|
10 // |
|
11 // Contributors: |
|
12 // |
|
13 // Description: |
|
14 // Name : CSIPSecChallengeAKA.cpp |
|
15 // Part of : SIPSec/DigestPlugin |
|
16 // Version : SIP/6.0 |
|
17 // |
|
18 |
|
19 |
|
20 |
|
21 #include "SipLogs.h" |
|
22 #include "CSIPSecChallengeAKA.h" |
|
23 #include "CSIPSecDigest.h" |
|
24 #include "CSIPSecSIMRecord.h" |
|
25 #include "CSIPSecDigestPlugin.h" |
|
26 #include "sipsecdigestcontext.h" |
|
27 #include "sipstrings.h" |
|
28 #include "sipstrconsts.h" |
|
29 #include <imcvcodc.h> |
|
30 |
|
31 // ============================ MEMBER FUNCTIONS =============================== |
|
32 |
|
33 |
|
34 // ----------------------------------------------------------------------------- |
|
35 // CSIPSecChallengeAKA::CSIPSecAlgAKA |
|
36 // ----------------------------------------------------------------------------- |
|
37 // |
|
38 CSIPSecChallengeAKA::CSIPSecChallengeAKA( CSIPSecDigest::TChallengeType aType, |
|
39 CSIPSecRequestData::TQop aQop ) : |
|
40 CSIPSecChallengeMD5( aType, aQop ) |
|
41 { |
|
42 } |
|
43 |
|
44 // ----------------------------------------------------------------------------- |
|
45 // CSIPSecChallengeAKA::NewLC |
|
46 // ----------------------------------------------------------------------------- |
|
47 // |
|
48 CSIPSecChallengeAKA* |
|
49 CSIPSecChallengeAKA::NewLC( CSIPSecDigest::TChallengeType aType, |
|
50 CSIPAuthenticateHeaderBase& aAuthenticateHeader, |
|
51 CSIPSecRequestData::TQop aQop ) |
|
52 { |
|
53 CSIPSecChallengeAKA* self = new ( ELeave ) CSIPSecChallengeAKA( aType, |
|
54 aQop ); |
|
55 CleanupStack::PushL( self ); |
|
56 self->ConstructL( aAuthenticateHeader ); |
|
57 return self; |
|
58 } |
|
59 |
|
60 // ----------------------------------------------------------------------------- |
|
61 // CSIPSecChallengeAKA::~CSIPSecChallengeAKA |
|
62 // ----------------------------------------------------------------------------- |
|
63 // |
|
64 CSIPSecChallengeAKA::~CSIPSecChallengeAKA() |
|
65 { |
|
66 } |
|
67 |
|
68 // ----------------------------------------------------------------------------- |
|
69 // CSIPSecChallengeAKA::VerifyTypeL |
|
70 // ----------------------------------------------------------------------------- |
|
71 // |
|
72 void CSIPSecChallengeAKA::VerifyTypeL( CSIPSecUserRecord::TType aType ) const |
|
73 { |
|
74 __ASSERT_ALWAYS( aType == CSIPSecUserRecord::EIMS, |
|
75 User::Leave( KErrPermissionDenied ) ); |
|
76 } |
|
77 |
|
78 // ----------------------------------------------------------------------------- |
|
79 // CSIPSecChallengeAKA::CreateUserRecordL |
|
80 // ----------------------------------------------------------------------------- |
|
81 // |
|
82 CSIPSecUserRecord* |
|
83 CSIPSecChallengeAKA::CreateUserRecordL( const TDesC8& aRealm, |
|
84 const MSIPSecUser& aUser, |
|
85 TRegistrationId aRegistrationId, |
|
86 TTransactionId aTransactionId, |
|
87 TUint aResponseCode ) const |
|
88 { |
|
89 CSIPSecSIMRecord* record = CSIPSecSIMRecord::NewL( aRealm, |
|
90 aUser, |
|
91 aRegistrationId, |
|
92 aTransactionId ); |
|
93 record->UpdateMessageCounter( aResponseCode ); |
|
94 return record; |
|
95 } |
|
96 |
|
97 // ----------------------------------------------------------------------------- |
|
98 // CSIPSecChallengeAKA::SupportedAlgorithm |
|
99 // ----------------------------------------------------------------------------- |
|
100 // |
|
101 RStringF CSIPSecChallengeAKA::SupportedAlgorithm() |
|
102 { |
|
103 return SIPStrings::StringF( SipStrConsts::EAKAv1MD5 ); |
|
104 } |
|
105 |
|
106 // ----------------------------------------------------------------------------- |
|
107 // CSIPSecChallengeAKA::AlgorithmName |
|
108 // ----------------------------------------------------------------------------- |
|
109 // |
|
110 RStringF CSIPSecChallengeAKA::AlgorithmName() const |
|
111 { |
|
112 return CSIPSecChallengeAKA::SupportedAlgorithm(); |
|
113 } |
|
114 |
|
115 // ----------------------------------------------------------------------------- |
|
116 // CSIPSecChallengeAKA::ProcessResponseL |
|
117 // ----------------------------------------------------------------------------- |
|
118 // |
|
119 TBool CSIPSecChallengeAKA::ProcessResponseL( TSIPSecDigestCtxSetup& aContext, |
|
120 TBool& aAskCredentials ) const |
|
121 { |
|
122 // AKA gets credentials from SIM card, not from MSIPSecUser |
|
123 aAskCredentials = EFalse; |
|
124 |
|
125 CSIPSecSIMRecord& userData = |
|
126 static_cast< CSIPSecSIMRecord& >( aContext.UserData() ); |
|
127 if ( userData.IsValid() ) |
|
128 { |
|
129 if ( userData.Failure() == CSIPSecSIMRecord::ESQN ) |
|
130 { |
|
131 const TInt KBase64EncodedAutsLength = 20; |
|
132 HBufC8* auts = HBufC8::NewLC( KBase64EncodedAutsLength ); |
|
133 TPtr8 autsPtr( auts->Des() ); |
|
134 |
|
135 TImCodecB64 encoder; |
|
136 User::LeaveIfError( encoder.Encode( userData.AUTS(), autsPtr ) ); |
|
137 aContext.SetParamValueL( SipStrConsts::EAuts, *auts ); |
|
138 |
|
139 CleanupStack::PopAndDestroy( auts ); |
|
140 } |
|
141 if ( userData.SecretData().Length() == 0 ) |
|
142 { |
|
143 CalculateSecretDataA1L( aContext ); |
|
144 } |
|
145 return EFalse; |
|
146 } |
|
147 |
|
148 aContext.RequestUserCredentialsL(); |
|
149 return ETrue; |
|
150 } |
|
151 |
|
152 // ----------------------------------------------------------------------------- |
|
153 // CSIPSecChallengeAKA::ProcessRequestL |
|
154 // ----------------------------------------------------------------------------- |
|
155 // |
|
156 void |
|
157 CSIPSecChallengeAKA::ProcessRequestL( TSIPSecDigestCtxProcess& aContext ) const |
|
158 { |
|
159 __SIP_LOG( "SIPSecChallAKA:ProcessRequestL" ) |
|
160 |
|
161 CSIPSecSIMRecord& userData = |
|
162 static_cast< CSIPSecSIMRecord& >( aContext.UserData() ); |
|
163 __ASSERT_ALWAYS ( userData.Failure() != CSIPSecSIMRecord::EPrivateIdentity, |
|
164 User::Leave( KErrGeneral ) ); |
|
165 |
|
166 if ( userData.Failure() == CSIPSecSIMRecord::EMAC ) |
|
167 { |
|
168 __SIP_LOG( "MAC failure, set empty nonce&response" ) |
|
169 |
|
170 aContext.SetParamWithEmptyValueL( SipStrConsts::ENonce ); |
|
171 aContext.SetParamWithEmptyValueL( SipStrConsts::EResponse ); |
|
172 } |
|
173 else |
|
174 { |
|
175 if ( userData.Failure() == CSIPSecSIMRecord::ESQN && |
|
176 aContext.Parent().Plugin().EmptyResponseAfterSqnFailure() ) |
|
177 { |
|
178 __SIP_LOG( "set empty response parameter after SQN" ) |
|
179 aContext.SetParamWithEmptyValueL( SipStrConsts::EResponse ); |
|
180 } |
|
181 else |
|
182 { |
|
183 CSIPSecChallengeMD5::ProcessRequestL( aContext ); |
|
184 } |
|
185 } |
|
186 } |