dbird · dbird · commit f0d34321571e · 2013-09-04T17:09:06.000Z
diff --git a/client/pom.xml b/client/pom.xml
@@ -83,6 +83,38 @@
         </executions>
       </plugin>
     </plugins>
-  </build>
+
+    <pluginManagement>
+		<plugins>
+		    <!-- Ignore/Execute plugin execution -->
+		    <plugin>
+		        <groupId>org.eclipse.m2e</groupId>
+		        <artifactId>lifecycle-mapping</artifactId>
+		        <version>1.0.0</version>
+		        <configuration>
+		            <lifecycleMappingMetadata>
+		                <pluginExecutions>
+		                    <!-- copy-dependency plugin -->
+		                    <pluginExecution>
+		                        <pluginExecutionFilter>
+		                            <groupId>org.apache.maven.plugins</groupId>
+		                            <artifactId>maven-dependency-plugin</artifactId>
+		                            <versionRange>[1.0.0,)</versionRange>
+		                            <goals>
+		                                <goal>copy-dependencies</goal>
+		                            </goals>
+		                        </pluginExecutionFilter>
+		                        <action>
+		                            <ignore />
+		                        </action>
+		                    </pluginExecution>
+		                </pluginExecutions>
+		            </lifecycleMappingMetadata>
+		        </configuration>
+		    </plugin>
+	   </plugins>
+   </pluginManagement>
+    
+   </build>
 
 </project>
diff --git a/core/pom.xml b/core/pom.xml
@@ -72,11 +72,13 @@
       </exclusions>
     </dependency>
 
+<!--
     <dependency>
       <groupId>org.gnu</groupId>
       <artifactId>gnu-crypto</artifactId>
       <version>2.0.1</version>
     </dependency>
+-->
 
   </dependencies>
   
diff --git a/core/src/main/java/net/jradius/util/RadiusUtils.java b/core/src/main/java/net/jradius/util/RadiusUtils.java
@@ -163,7 +163,7 @@ public static byte[] decodePapPassword(byte[] encryptedPass, byte[] authenticato
                 }
             }
 
-        	for (int i = 0; i < 16; i++) 
+        	for (int i = 0; i < 16 && (i + n) < pwlen; i++) 
         	{
         		out.write(encryptedPass[i + n] ^ hash[i]);
         	}
diff --git a/dictionary-min/pom.xml b/dictionary-min/pom.xml
@@ -57,6 +57,37 @@
 	</executions>
       </plugin>
     </plugins>
-  </build>
+    
+    <pluginManagement>
+		<plugins>
+		    <!-- Ignore/Execute plugin execution -->
+		    <plugin>
+		        <groupId>org.eclipse.m2e</groupId>
+		        <artifactId>lifecycle-mapping</artifactId>
+		        <version>1.0.0</version>
+		        <configuration>
+		            <lifecycleMappingMetadata>
+		                <pluginExecutions>
+		                    <!-- copy-dependency plugin -->
+		                    <pluginExecution>
+		                        <pluginExecutionFilter>
+		                            <groupId>org.apache.maven.plugins</groupId>
+		                            <artifactId>maven-antrun-plugin</artifactId>
+		                            <versionRange>[1.0.0,)</versionRange>
+		                            <goals>
+		                                <goal>run</goal>
+		                            </goals>
+		                        </pluginExecutionFilter>
+		                        <action>
+		                            <ignore />
+		                        </action>
+		                    </pluginExecution>
+		                </pluginExecutions>
+		            </lifecycleMappingMetadata>
+		        </configuration>
+		    </plugin>
+	   </plugins>
+   </pluginManagement>
+   </build>
 
 </project>
diff --git a/dictionary/pom.xml b/dictionary/pom.xml
@@ -57,6 +57,38 @@
 	</executions>
       </plugin>
     </plugins>
-  </build>
+
+    <pluginManagement>
+		<plugins>
+		    <!-- Ignore/Execute plugin execution -->
+		    <plugin>
+		        <groupId>org.eclipse.m2e</groupId>
+		        <artifactId>lifecycle-mapping</artifactId>
+		        <version>1.0.0</version>
+		        <configuration>
+		            <lifecycleMappingMetadata>
+		                <pluginExecutions>
+		                    <!-- copy-dependency plugin -->
+		                    <pluginExecution>
+		                        <pluginExecutionFilter>
+		                            <groupId>org.apache.maven.plugins</groupId>
+		                            <artifactId>maven-antrun-plugin</artifactId>
+		                            <versionRange>[1.0.0,)</versionRange>
+		                            <goals>
+		                                <goal>run</goal>
+		                            </goals>
+		                        </pluginExecutionFilter>
+		                        <action>
+		                            <ignore />
+		                        </action>
+		                    </pluginExecution>
+		                </pluginExecutions>
+		            </lifecycleMappingMetadata>
+		        </configuration>
+		    </plugin>
+	   </plugins>
+   </pluginManagement>
+    
+   </build>
 
 </project>
diff --git a/extended/src/main/java/net/jradius/client/auth/EAPTLSAuthenticator.java b/extended/src/main/java/net/jradius/client/auth/EAPTLSAuthenticator.java
@@ -461,10 +461,10 @@ protected byte[] tlsResponse(byte flags, byte[] data)
         	else 
         	{ 
         		length -= 1;
-                response[1] = (byte) (length >> 24 & 0xFF);
-                response[2] = (byte) (length >> 16 & 0xFF);
-                response[3] = (byte) (length >> 8 & 0xFF);
-                response[4] = (byte) (length & 0xFF);
+                response[1] = (byte) (eapFragmentedReply.length >> 24 & 0xFF);
+                response[2] = (byte) (eapFragmentedReply.length >> 16 & 0xFF);
+                response[3] = (byte) (eapFragmentedReply.length >> 8 & 0xFF);
+                response[4] = (byte) (eapFragmentedReply.length & 0xFF);
                 System.arraycopy(data, 0, response, 5, data.length);
         	}
         }
diff --git a/extended/src/main/java/net/jradius/util/KeyStoreUtil.java b/extended/src/main/java/net/jradius/util/KeyStoreUtil.java
@@ -43,8 +43,10 @@ public class KeyStoreUtil
 {
 	public static void loadBC()
 	{
-        if (java.security.Security.getProvider("BC") == null)
-        	java.security.Security.addProvider(new BouncyCastleProvider());
+		try {
+			if (java.security.Security.getProvider("BC") == null)
+				java.security.Security.addProvider(new BouncyCastleProvider());
+		} catch (Throwable e) { }
 	}
 	
 	public static KeyManager[] loadKeyManager(String type, InputStream in, String password) throws Exception
diff --git a/extended/src/main/java/net/jradius/webservice/SSOProxyService.java b/extended/src/main/java/net/jradius/webservice/SSOProxyService.java
@@ -20,20 +20,20 @@
 
 package net.jradius.webservice;
 
-import gnu.crypto.cipher.CipherFactory;
-import gnu.crypto.cipher.IBlockCipher;
-import gnu.crypto.util.Base64;
-
 import java.net.URLDecoder;
 import java.security.InvalidKeyException;
 import java.util.HashMap;
 import java.util.Map;
 
+import javax.crypto.Cipher;
+import javax.crypto.spec.SecretKeySpec;
+
 import net.jradius.handler.EventHandlerBase;
 import net.jradius.log.RadiusLog;
 import net.jradius.server.JRadiusEvent;
 import net.jradius.session.JRadiusSession;
 import net.jradius.session.JRadiusSessionManager;
+import net.jradius.util.Base64;
 
 
 public class SSOProxyService extends EventHandlerBase
@@ -64,29 +64,15 @@ public boolean handle(JRadiusEvent event) throws Exception
         
         if (!"sso".equals(command)) throw new WebServiceException("invalid command");
         if (payload == null) throw new WebServiceException("invalid security");
+
+        byte[] KeyData = cipherKey.getBytes();
+        SecretKeySpec KS = new SecretKeySpec(KeyData, cipherType);
+        Cipher cipher = Cipher.getInstance(cipherType);
+        cipher.init(Cipher.DECRYPT_MODE, KS);
         
-        IBlockCipher cipher = CipherFactory.getInstance(cipherType);
-        Map attributes = new HashMap();
-        attributes.put(IBlockCipher.KEY_MATERIAL, cipherKey.getBytes());
-
-        try
-        {
-            cipher.init(attributes);
-        }
-        catch(InvalidKeyException e)
-        {
-            RadiusLog.warn(e.getMessage(), e);
-        }
-
-        int bs = cipher.currentBlockSize();
         byte[] data = Base64.decode(payload);
-        byte[] plaintext = new byte[(data.length / bs + 1) * bs];
+        byte[] plaintext = cipher.doFinal(data);
 
-        for (int i = 0; i + bs < data.length; i += bs)
-        {
-            cipher.decryptBlock(data, i, plaintext, i);
-        }
-        
         String scommand = URLDecoder.decode(new String(plaintext).trim(), "US-ASCII");
         RadiusLog.debug("Secure command: " + scommand);
         String session = scommand.substring("session=".length());
diff --git a/server/pom.xml b/server/pom.xml
@@ -95,6 +95,38 @@
         </executions>
       </plugin>
     </plugins>
-  </build>
+
+    <pluginManagement>
+		<plugins>
+		    <!-- Ignore/Execute plugin execution -->
+		    <plugin>
+		        <groupId>org.eclipse.m2e</groupId>
+		        <artifactId>lifecycle-mapping</artifactId>
+		        <version>1.0.0</version>
+		        <configuration>
+		            <lifecycleMappingMetadata>
+		                <pluginExecutions>
+		                    <!-- copy-dependency plugin -->
+		                    <pluginExecution>
+		                        <pluginExecutionFilter>
+		                            <groupId>org.apache.maven.plugins</groupId>
+		                            <artifactId>maven-dependency-plugin</artifactId>
+		                            <versionRange>[1.0.0,)</versionRange>
+		                            <goals>
+		                                <goal>copy-dependencies</goal>
+		                            </goals>
+		                        </pluginExecutionFilter>
+		                        <action>
+		                            <ignore />
+		                        </action>
+		                    </pluginExecution>
+		                </pluginExecutions>
+		            </lifecycleMappingMetadata>
+		        </configuration>
+		    </plugin>
+	   </plugins>
+   </pluginManagement>
+   
+    </build>
 
 </project>

Original file line number	Diff line number	Diff line change
`@@ -163,7 +163,7 @@ public static byte[] decodePapPassword(byte[] encryptedPass, byte[] authenticato`
`163`	`163`	`}`
`164`	`164`	`}`
`165`	`165`
`166`		`- for (int i = 0; i < 16; i++)`
	`166`	`+ for (int i = 0; i < 16 && (i + n) < pwlen; i++)`
`167`	`167`	`{`
`168`	`168`	`out.write(encryptedPass[i + n] ^ hash[i]);`
`169`	`169`	`}`
Original file line number	Diff line number	Diff line change
`@@ -461,10 +461,10 @@ protected byte[] tlsResponse(byte flags, byte[] data)`
`461`	`461`	`else`
`462`	`462`	`{`
`463`	`463`	`length -= 1;`
`464`		`- response[1] = (byte) (length >> 24 & 0xFF);`
`465`		`- response[2] = (byte) (length >> 16 & 0xFF);`
`466`		`- response[3] = (byte) (length >> 8 & 0xFF);`
`467`		`- response[4] = (byte) (length & 0xFF);`
	`464`	`+ response[1] = (byte) (eapFragmentedReply.length >> 24 & 0xFF);`
	`465`	`+ response[2] = (byte) (eapFragmentedReply.length >> 16 & 0xFF);`
	`466`	`+ response[3] = (byte) (eapFragmentedReply.length >> 8 & 0xFF);`
	`467`	`+ response[4] = (byte) (eapFragmentedReply.length & 0xFF);`
`468`	`468`	`System.arraycopy(data, 0, response, 5, data.length);`
`469`	`469`	`}`
`470`	`470`	`}`
Original file line number	Diff line number	Diff line change
`@@ -43,8 +43,10 @@ public class KeyStoreUtil`
`43`	`43`	`{`
`44`	`44`	`public static void loadBC()`
`45`	`45`	`{`
`46`		`- if (java.security.Security.getProvider("BC") == null)`
`47`		`- java.security.Security.addProvider(new BouncyCastleProvider());`
	`46`	`+ try {`
	`47`	`+ if (java.security.Security.getProvider("BC") == null)`
	`48`	`+ java.security.Security.addProvider(new BouncyCastleProvider());`
	`49`	`+ } catch (Throwable e) { }`
`48`	`50`	`}`
`49`	`51`
`50`	`52`	`public static KeyManager[] loadKeyManager(String type, InputStream in, String password) throws Exception`