2011-12-07 01:38:42 +00:00
|
|
|
/* GSM/GPRS/3G authentication testing tool */
|
|
|
|
|
2012-03-21 16:37:53 +00:00
|
|
|
/* (C) 2010-2012 by Harald Welte <laforge@gnumonks.org>
|
2011-12-07 01:38:42 +00:00
|
|
|
*
|
|
|
|
* All Rights Reserved
|
|
|
|
*
|
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License along
|
|
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <errno.h>
|
|
|
|
#include <string.h>
|
2013-06-02 23:38:57 +00:00
|
|
|
#include <time.h>
|
2011-12-07 01:38:42 +00:00
|
|
|
#include <getopt.h>
|
2012-08-02 06:42:59 +00:00
|
|
|
#include <unistd.h>
|
2013-07-14 07:11:47 +00:00
|
|
|
#include <inttypes.h>
|
|
|
|
#include <time.h>
|
2011-12-07 01:38:42 +00:00
|
|
|
|
|
|
|
#include <osmocom/crypt/auth.h>
|
|
|
|
#include <osmocom/core/utils.h>
|
|
|
|
|
2012-06-27 13:06:19 +00:00
|
|
|
static void dump_triplets_dat(struct osmo_auth_vector *vec)
|
|
|
|
{
|
|
|
|
if (vec->auth_types & OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "triplets.dat doesn't support UMTS!\n");
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
printf("imsi,");
|
|
|
|
printf("%s,", osmo_hexdump_nospc(vec->rand, sizeof(vec->rand)));
|
|
|
|
printf("%s,", osmo_hexdump_nospc(vec->sres, sizeof(vec->sres)));
|
|
|
|
printf("%s\n", osmo_hexdump_nospc(vec->kc, sizeof(vec->kc)));
|
|
|
|
}
|
|
|
|
|
2011-12-07 01:38:42 +00:00
|
|
|
static void dump_auth_vec(struct osmo_auth_vector *vec)
|
|
|
|
{
|
2016-05-18 17:36:42 +00:00
|
|
|
printf("RAND:\t%s\n", osmo_hexdump_nospc(vec->rand, sizeof(vec->rand)));
|
2011-12-07 01:38:42 +00:00
|
|
|
|
|
|
|
if (vec->auth_types & OSMO_AUTH_TYPE_UMTS) {
|
2016-05-18 17:36:42 +00:00
|
|
|
printf("AUTN:\t%s\n", osmo_hexdump_nospc(vec->autn, sizeof(vec->autn)));
|
|
|
|
printf("IK:\t%s\n", osmo_hexdump_nospc(vec->ik, sizeof(vec->ik)));
|
|
|
|
printf("CK:\t%s\n", osmo_hexdump_nospc(vec->ck, sizeof(vec->ck)));
|
|
|
|
printf("RES:\t%s\n", osmo_hexdump_nospc(vec->res, vec->res_len));
|
2011-12-07 01:38:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (vec->auth_types & OSMO_AUTH_TYPE_GSM) {
|
2016-05-18 17:36:42 +00:00
|
|
|
printf("SRES:\t%s\n", osmo_hexdump_nospc(vec->sres, sizeof(vec->sres)));
|
|
|
|
printf("Kc:\t%s\n", osmo_hexdump_nospc(vec->kc, sizeof(vec->kc)));
|
2011-12-07 01:38:42 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
static struct osmo_sub_auth_data test_aud = {
|
|
|
|
.type = OSMO_AUTH_TYPE_NONE,
|
|
|
|
.algo = OSMO_AUTH_ALG_NONE,
|
|
|
|
};
|
|
|
|
|
2012-03-21 07:51:48 +00:00
|
|
|
static void help()
|
|
|
|
{
|
2017-02-03 17:36:32 +00:00
|
|
|
int alg;
|
2012-03-21 07:51:48 +00:00
|
|
|
printf( "-2 --2g\tUse 2G (GSM) authentication\n"
|
|
|
|
"-3 --3g\tUse 3G (UMTS) authentication\n"
|
|
|
|
"-a --algorithm\tSpecify name of the algorithm\n"
|
|
|
|
"-k --key\tSpecify Ki / K\n"
|
|
|
|
"-o --opc\tSpecify OPC (only for 3G)\n"
|
2012-03-21 08:03:16 +00:00
|
|
|
"-O --op\tSpecify OP (only for 3G)\n"
|
2015-05-25 16:11:37 +00:00
|
|
|
"-f --amf\tSpecify AMF (only for 3G)\n"
|
2012-03-21 07:51:48 +00:00
|
|
|
"-s --sqn\tSpecify SQN (only for 3G)\n"
|
2012-03-22 15:45:23 +00:00
|
|
|
"-A --auts\tSpecify AUTS (only for 3G)\n"
|
2012-06-27 13:06:19 +00:00
|
|
|
"-r --rand\tSpecify random value\n"
|
|
|
|
"-I --ipsec\tOutput in triplets.dat format for strongswan\n");
|
2017-02-03 17:36:32 +00:00
|
|
|
|
|
|
|
fprintf(stderr, "\nAvailable algorithms for option -a:\n");
|
|
|
|
for (alg = 1; alg < _OSMO_AUTH_ALG_NUM; alg++)
|
|
|
|
fprintf(stderr, " %s\n",
|
|
|
|
osmo_auth_alg_name(alg));
|
2012-03-21 07:51:48 +00:00
|
|
|
}
|
|
|
|
|
2011-12-07 01:38:42 +00:00
|
|
|
int main(int argc, char **argv)
|
|
|
|
{
|
|
|
|
struct osmo_auth_vector _vec;
|
|
|
|
struct osmo_auth_vector *vec = &_vec;
|
GSUP, OAP, osmo-gen-vec: fix AUTS length to 14, not 16
GSUP transmits AUTS for UMTS authentication procedures, and OAP uses the same
procedures to authenticate. osmo-gen-vec is a utility program that passes AUTS
to our osmo_auth_gen_vec_auts() API.
According to 3GPP 33.102 6.3.3, AUTS = SQN^AK || MAC-S, which are 6 || 8 == 14
bytes. This is confirmed by 24.008 9.2.3a where the TLV has 16 bytes, TL = 2
and AUTS being the V = 14.
It is not harmful for milenage_gen_vec_auts() to pass two more AUTS bytes. But
writing 16 bytes to a GSUP struct is a potential problem when passing in a 14
byte long AUTS buffer to the GSUP API, which then reads past the AUTS buffer.
The API implies the length, so far to be 16, so passing in a 14 byte buffer to
GSUP would require copying to a larger buffer first.
Fix this by using a length of 14 for AUTS everywhere instead.
This constitues an ABI breakage, we may handle it as a "fix before an official
release", otherwise we need a version bump.
The OAP protocol document has also been updated, needs an update in the
osmo-gsm-manuals as well.
Change-Id: If25b173d9ec57ea4c504d860954912b7d82af455
2017-02-02 19:05:14 +00:00
|
|
|
uint8_t _rand[16], _auts[14];
|
2011-12-07 01:38:42 +00:00
|
|
|
int rc, option_index;
|
|
|
|
int rand_is_set = 0;
|
2012-03-22 15:45:23 +00:00
|
|
|
int auts_is_set = 0;
|
2012-06-27 13:06:19 +00:00
|
|
|
int fmt_triplets_dat = 0;
|
2011-12-07 01:38:42 +00:00
|
|
|
|
2012-03-21 16:37:53 +00:00
|
|
|
printf("osmo-auc-gen (C) 2011-2012 by Harald Welte\n");
|
2011-12-07 01:38:42 +00:00
|
|
|
printf("This is FREE SOFTWARE with ABSOLUTELY NO WARRANTY\n\n");
|
|
|
|
|
2012-03-22 15:45:23 +00:00
|
|
|
memset(_auts, 0, sizeof(_auts));
|
|
|
|
|
2011-12-07 01:38:42 +00:00
|
|
|
while (1) {
|
|
|
|
int c;
|
|
|
|
unsigned long ul;
|
|
|
|
static struct option long_options[] = {
|
|
|
|
{ "2g", 0, 0, '2' },
|
|
|
|
{ "3g", 0, 0, '3' },
|
|
|
|
{ "algorithm", 1, 0, 'a' },
|
|
|
|
{ "key", 1, 0, 'k' },
|
|
|
|
{ "opc", 1, 0, 'o' },
|
2012-03-21 08:03:16 +00:00
|
|
|
{ "op", 1, 0, 'O' },
|
2011-12-07 01:38:42 +00:00
|
|
|
{ "amf", 1, 0, 'f' },
|
|
|
|
{ "sqn", 1, 0, 's' },
|
|
|
|
{ "rand", 1, 0, 'r' },
|
2012-03-22 15:45:23 +00:00
|
|
|
{ "auts", 1, 0, 'A' },
|
2012-03-21 07:51:48 +00:00
|
|
|
{ "help", 0, 0, 'h' },
|
2011-12-07 01:38:42 +00:00
|
|
|
{ 0, 0, 0, 0 }
|
|
|
|
};
|
|
|
|
|
|
|
|
rc = 0;
|
|
|
|
|
2012-06-27 13:06:19 +00:00
|
|
|
c = getopt_long(argc, argv, "23a:k:o:f:s:r:hO:A:I", long_options,
|
2011-12-07 01:38:42 +00:00
|
|
|
&option_index);
|
|
|
|
|
|
|
|
if (c == -1)
|
|
|
|
break;
|
|
|
|
|
|
|
|
switch (c) {
|
|
|
|
case '2':
|
|
|
|
test_aud.type = OSMO_AUTH_TYPE_GSM;
|
|
|
|
break;
|
|
|
|
case '3':
|
|
|
|
test_aud.type = OSMO_AUTH_TYPE_UMTS;
|
|
|
|
break;
|
|
|
|
case 'a':
|
|
|
|
rc = osmo_auth_alg_parse(optarg);
|
|
|
|
if (rc < 0)
|
|
|
|
break;
|
|
|
|
test_aud.algo = rc;
|
|
|
|
break;
|
|
|
|
case 'k':
|
|
|
|
switch (test_aud.type) {
|
|
|
|
case OSMO_AUTH_TYPE_GSM:
|
2011-12-07 10:35:02 +00:00
|
|
|
rc = osmo_hexparse(optarg, test_aud.u.gsm.ki,
|
|
|
|
sizeof(test_aud.u.gsm.ki));
|
2011-12-07 01:38:42 +00:00
|
|
|
break;
|
|
|
|
case OSMO_AUTH_TYPE_UMTS:
|
2011-12-07 10:35:02 +00:00
|
|
|
rc = osmo_hexparse(optarg, test_aud.u.umts.k,
|
|
|
|
sizeof(test_aud.u.umts.k));
|
2011-12-07 01:38:42 +00:00
|
|
|
break;
|
|
|
|
default:
|
|
|
|
fprintf(stderr, "please specify 2g/3g first!\n");
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case 'o':
|
|
|
|
if (test_aud.type != OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "Only UMTS has OPC\n");
|
|
|
|
exit(2);
|
|
|
|
}
|
2011-12-07 10:35:02 +00:00
|
|
|
rc = osmo_hexparse(optarg, test_aud.u.umts.opc,
|
|
|
|
sizeof(test_aud.u.umts.opc));
|
2012-03-21 08:03:16 +00:00
|
|
|
test_aud.u.umts.opc_is_op = 0;
|
|
|
|
break;
|
|
|
|
case 'O':
|
|
|
|
if (test_aud.type != OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "Only UMTS has OP\n");
|
|
|
|
exit(2);
|
|
|
|
}
|
|
|
|
rc = osmo_hexparse(optarg, test_aud.u.umts.opc,
|
|
|
|
sizeof(test_aud.u.umts.opc));
|
|
|
|
test_aud.u.umts.opc_is_op = 1;
|
2011-12-07 01:38:42 +00:00
|
|
|
break;
|
2012-03-22 15:45:23 +00:00
|
|
|
case 'A':
|
|
|
|
if (test_aud.type != OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "Only UMTS has AUTS\n");
|
|
|
|
exit(2);
|
|
|
|
}
|
|
|
|
rc = osmo_hexparse(optarg, _auts, sizeof(_auts));
|
|
|
|
auts_is_set = 1;
|
|
|
|
break;
|
2011-12-07 01:38:42 +00:00
|
|
|
case 'f':
|
|
|
|
if (test_aud.type != OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "Only UMTS has AMF\n");
|
|
|
|
exit(2);
|
|
|
|
}
|
2011-12-07 10:35:02 +00:00
|
|
|
rc = osmo_hexparse(optarg, test_aud.u.umts.amf,
|
|
|
|
sizeof(test_aud.u.umts.amf));
|
2011-12-07 01:38:42 +00:00
|
|
|
break;
|
|
|
|
case 's':
|
|
|
|
if (test_aud.type != OSMO_AUTH_TYPE_UMTS) {
|
|
|
|
fprintf(stderr, "Only UMTS has SQN\n");
|
|
|
|
exit(2);
|
|
|
|
}
|
|
|
|
ul = strtoul(optarg, 0, 10);
|
2011-12-07 10:35:02 +00:00
|
|
|
test_aud.u.umts.sqn = ul;
|
2011-12-07 01:38:42 +00:00
|
|
|
break;
|
|
|
|
case 'r':
|
|
|
|
rc = osmo_hexparse(optarg, _rand, sizeof(_rand));
|
|
|
|
rand_is_set = 1;
|
|
|
|
break;
|
2012-06-27 13:06:19 +00:00
|
|
|
case 'I':
|
|
|
|
fmt_triplets_dat = 1;
|
|
|
|
break;
|
2012-03-21 07:51:48 +00:00
|
|
|
case 'h':
|
|
|
|
help();
|
|
|
|
exit(0);
|
|
|
|
default:
|
|
|
|
help();
|
|
|
|
exit(1);
|
2011-12-07 01:38:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (rc < 0) {
|
2017-02-03 17:36:32 +00:00
|
|
|
help();
|
|
|
|
fprintf(stderr, "\nError parsing argument of option `%c'\n", c);
|
2011-12-07 01:38:42 +00:00
|
|
|
exit(2);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!rand_is_set) {
|
2014-06-22 14:53:55 +00:00
|
|
|
int i;
|
2011-12-07 01:38:42 +00:00
|
|
|
printf("WARNING: We're using really weak random numbers!\n\n");
|
|
|
|
srand(time(NULL));
|
2014-06-22 14:53:55 +00:00
|
|
|
|
|
|
|
for (i = 0; i < 4; ++i) {
|
|
|
|
uint32_t r;
|
|
|
|
r = rand();
|
|
|
|
memcpy(&_rand[i*4], &r, 4);
|
|
|
|
}
|
2011-12-07 01:38:42 +00:00
|
|
|
}
|
|
|
|
|
2012-03-21 07:51:48 +00:00
|
|
|
if (test_aud.type == OSMO_AUTH_TYPE_NONE ||
|
|
|
|
test_aud.algo == OSMO_AUTH_ALG_NONE) {
|
|
|
|
help();
|
2017-02-03 17:36:32 +00:00
|
|
|
fprintf(stderr, "\nError: you need to pass at least"
|
|
|
|
" -2 or -3, as well as an algorithm to use.\n");
|
2012-03-21 07:51:48 +00:00
|
|
|
exit(2);
|
|
|
|
}
|
|
|
|
|
2011-12-07 01:38:42 +00:00
|
|
|
memset(vec, 0, sizeof(*vec));
|
|
|
|
|
2012-03-22 15:45:23 +00:00
|
|
|
if (!auts_is_set)
|
|
|
|
rc = osmo_auth_gen_vec(vec, &test_aud, _rand);
|
|
|
|
else
|
|
|
|
rc = osmo_auth_gen_vec_auts(vec, &test_aud, _auts, _rand, _rand);
|
2011-12-07 01:38:42 +00:00
|
|
|
if (rc < 0) {
|
2012-03-22 15:45:23 +00:00
|
|
|
if (!auts_is_set)
|
|
|
|
fprintf(stderr, "error generating auth vector\n");
|
|
|
|
else
|
|
|
|
fprintf(stderr, "AUTS from MS seems incorrect\n");
|
2011-12-07 01:38:42 +00:00
|
|
|
exit(1);
|
|
|
|
}
|
|
|
|
|
2012-06-27 13:06:19 +00:00
|
|
|
if (fmt_triplets_dat)
|
|
|
|
dump_triplets_dat(vec);
|
|
|
|
else
|
|
|
|
dump_auth_vec(vec);
|
2011-12-07 01:38:42 +00:00
|
|
|
|
osmo-auc-gen: cosmetic: clarify output upon AUTS
When calculating a re-sync vector using AUTS, osmo-gen-vec used to print
SQN.MS + 2, the new SQN after vector generation, labeled 'SEQ.MS'.
Firstly, s/SEQ/SQN.
Secondly, print SQN.MS as umts.sqn - 2, which is the actual SQN recovered from
the AUTS. As explained in the comment, SQN.MS + 1 is used to generate the
vector, and then umts.sqn is increased a second time to indicate the next SQN.
With AUTS calculated from SQN.MS == 23, the output was:
AUTS success: SEQ.MS = 25
Output now:
AUTS success: SQN.MS = 23, generated vector with SQN = 24, next SQN = 25
Change-Id: I881bbe8246a5e7d3a5065b4b5b533255723b1a9e
2017-02-03 02:17:51 +00:00
|
|
|
/* Print SQN from AUTS. It makes sense to print actually three SQN
|
|
|
|
* to clarify:
|
|
|
|
* After recovering SQN.MS from AUTS, milenage_gen_vec_auts() does:
|
|
|
|
* aud->u.umts.sqn = 1 + (osmo_load64be_ext(sqn_out, 6) >> 16);
|
|
|
|
* Then calls milenage_gen_vec(), which, after it is done, does:
|
|
|
|
* aud->u.umts.sqn++;
|
|
|
|
*/
|
2012-03-22 15:45:23 +00:00
|
|
|
if (auts_is_set)
|
osmo-auc-gen: cosmetic: clarify output upon AUTS
When calculating a re-sync vector using AUTS, osmo-gen-vec used to print
SQN.MS + 2, the new SQN after vector generation, labeled 'SEQ.MS'.
Firstly, s/SEQ/SQN.
Secondly, print SQN.MS as umts.sqn - 2, which is the actual SQN recovered from
the AUTS. As explained in the comment, SQN.MS + 1 is used to generate the
vector, and then umts.sqn is increased a second time to indicate the next SQN.
With AUTS calculated from SQN.MS == 23, the output was:
AUTS success: SEQ.MS = 25
Output now:
AUTS success: SQN.MS = 23, generated vector with SQN = 24, next SQN = 25
Change-Id: I881bbe8246a5e7d3a5065b4b5b533255723b1a9e
2017-02-03 02:17:51 +00:00
|
|
|
printf("AUTS success: SQN.MS = %" PRIu64
|
|
|
|
", generated vector with SQN = %" PRIu64
|
|
|
|
", next SQN = %" PRIu64 "\n",
|
|
|
|
test_aud.u.umts.sqn - 2,
|
|
|
|
test_aud.u.umts.sqn - 1,
|
|
|
|
test_aud.u.umts.sqn
|
|
|
|
);
|
2011-12-07 01:38:42 +00:00
|
|
|
|
2012-03-22 15:45:23 +00:00
|
|
|
exit(0);
|
2011-12-07 01:38:42 +00:00
|
|
|
}
|