facebookincubator
diff --git a/‎client.go‎
Lines changed: 3 additions & 3 deletions b/‎client.go‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎crypt.go‎
Lines changed: 99 additions & 20 deletions b/‎crypt.go‎
Lines changed: 99 additions & 20 deletions
@@ -29,7 +29,7 @@ func SetClientDialer(network, address string, secret []byte) ClientOption {
 		if err != nil {
 			return err
 		}
-		c.crypter = newCrypter(secret, conn, false)
+		c.crypter = newCrypter(secret, conn, false, false)
 		return nil
 	}
 }
@@ -39,7 +39,7 @@ func SetClientDialer(network, address string, secret []byte) ClientOption {
 // A secret for the connection must also be provided.
 func SetClientWithConn(conn *net.TCPConn, secret []byte) ClientOption {
 	return func(c *Client) error {
-		c.crypter = newCrypter(secret, conn, false)
+		c.crypter = newCrypter(secret, conn, false, false)
 		return nil
 	}
 }
@@ -64,7 +64,7 @@ func SetClientDialerWithLocalAddr(network, raddr, laddr string, secret []byte) C
 		if err != nil {
 			return err
 		}
-		c.crypter = newCrypter(secret, conn, false)
+		c.crypter = newCrypter(secret, conn, false, false)
 		return nil
 	}
 }
 
@@ -89,8 +89,8 @@ func crypt(secret []byte, p *Packet) error {
 }
 
 // newCrypter makes a new crypter
-func newCrypter(secret []byte, c net.Conn, proxy bool) *crypter {
-	return &crypter{secret: secret, Conn: c, Reader: bufio.NewReaderSize(c, 107), proxy: proxy}
+func newCrypter(secret []byte, c net.Conn, proxy, tls bool) *crypter {
+	return &crypter{secret: secret, Conn: c, Reader: bufio.NewReaderSize(c, 107), proxy: proxy, tls: tls}
 }
 
 // crypter wraps the net.Conn and performs reads and writes and crypt ops
@@ -106,6 +106,10 @@ type crypter struct {
 	secret []byte
 	// proxy if set, will strip the ha-proxy style ascii header
 	proxy bool
+
+	// setting the tls parameters enables RFC 9887 specific handling
+	// within the crypter
+	tls bool
 }
 
 // read will read a packet from the underlying net.Conn and decyrpt it
@@ -154,22 +158,43 @@ func (c *crypter) read() (*Packet, error) {
 		crypterUnmarshalError.Inc()
 		return nil, err
 	}
-	// run crypt first before we look for bad secrets
-	if err := crypt(c.secret, &p); err != nil {
-		crypterCryptError.Inc()
-		return nil, err
-	}
-	// if err is != nil, we hit a bug
-	// if reply is != nil, we found a bad secret.
-	// if both are non nil, we only inspect the error as that
-	// is a higher error condition in the server than a bad secret is
-	if reply, err := c.detectBadSecret(&p); err != nil {
-		return nil, err
-	} else if reply != nil {
-		if _, err := c.write(reply); err != nil {
-			return nil, fmt.Errorf("bad secret, crypt write fail for ip [%s]: %v", c.RemoteAddr().String(), err)
+
+	if !c.tls {
+		// obfuscation mechanism only applies to non-tls connections
+		// run crypt first before we look for bad secrets
+		if err := crypt(c.secret, &p); err != nil {
+			crypterCryptError.Inc()
+			return nil, err
+		}
+		// if err is != nil, we hit a bug
+		// if reply is != nil, we found a bad secret.
+		// if both are non nil, we only inspect the error as that
+		// is a higher error condition in the server than a bad secret is
+		if reply, err := c.detectBadSecret(&p); err != nil {
+			return nil, err
+		} else if reply != nil {
+			if _, err := c.write(reply); err != nil {
+				return nil, fmt.Errorf("bad secret, crypt write fail for ip [%s]: %w", c.RemoteAddr().String(), err)
+			}
+			return nil, fmt.Errorf("bad secret detected for ip [%s]", c.RemoteAddr().String())
+		}
+	} else {
+		/*
+			A TLS TACACS+ server that receives a packet with the TAC_PLUS_UNENCRYPTED_FLAG bit
+			not set to 1 over a TLS connection, MUST return an error of TAC_PLUS_AUTHEN_STATUS_ERROR,
+			TAC_PLUS_AUTHOR_STATUS_ERROR, or TAC_PLUS_ACCT_STATUS_ERROR as appropriate for the
+			TACACS+ message type, with the TAC_PLUS_UNENCRYPTED_FLAG bit set to 1, and terminate the session
+		*/
+		if !p.Header.Flags.Has(UnencryptedFlag) {
+			reply, err := c.unsetFlagReply(p.Header)
+			if err != nil {
+				return nil, err
+			}
+			if _, err := c.write(reply); err != nil {
+				return nil, fmt.Errorf("unencrypted flag not set, crypt write fail for ip [%s]: %w", c.RemoteAddr().String(), err)
+			}
+			return nil, fmt.Errorf("unencrypted flag not set for ip [%s]", c.RemoteAddr().String())
 		}
-		return nil, fmt.Errorf("bad secret detected for ip [%s]", c.RemoteAddr().String())
 	}
 
 	crypterRead.Inc()
@@ -185,10 +210,17 @@ func (c *crypter) write(p *Packet) (int, error) {
 		return 0, fmt.Errorf("handler error, packet.Body cannot be nil")
 	}
 	p.Header.Length = uint32(len(p.Body))
-	if err := crypt(c.secret, p); err != nil {
-		crypterCryptError.Inc()
-		return 0, err
+	if !c.tls {
+		if err := crypt(c.secret, p); err != nil {
+			crypterCryptError.Inc()
+			return 0, err
+		}
+	} else {
+		// before we marshal, we need to set the unencrypted flag
+		// on packets when tls is enabled
+		p.Header.Flags.Set(UnencryptedFlag)
 	}
+
 	b, err := p.MarshalBinary()
 	if err != nil {
 		crypterMarshalError.Inc()
@@ -266,6 +298,53 @@ func (c crypter) detectBadSecret(p *Packet) (*Packet, error) {
 	return nil, nil
 }
 
+func (c crypter) unsetFlagReply(h *Header) (*Packet, error) {
+	var b []byte
+	var err error
+	switch h.Type {
+	case Authenticate:
+		b, err = NewAuthenReply(
+			SetAuthenReplyStatus(AuthenStatusError),
+			SetAuthenReplyServerMsg("unencrypted flag not set"),
+		).MarshalBinary()
+		if err != nil {
+			crypterMarshalError.Inc()
+			return nil, err
+		}
+	case Authorize:
+		b, err = NewAuthorReply(
+			SetAuthorReplyStatus(AuthorStatusError),
+			SetAuthorReplyServerMsg("unencrypted flag not set"),
+		).MarshalBinary()
+		if err != nil {
+			crypterMarshalError.Inc()
+			return nil, err
+		}
+	case Accounting:
+		b, err = NewAcctReply(
+			SetAcctReplyStatus(AcctReplyStatusError),
+			SetAcctReplyServerMsg("unencrypted flag not set"),
+		).MarshalBinary()
+		if err != nil {
+			crypterMarshalError.Inc()
+			return nil, err
+		}
+	default:
+		return nil, fmt.Errorf("unknown header type [%v]", h.Type)
+	}
+	// reset some flags and state for this error reply.
+	// under error conditions it can be common in the rfc to reset the sequence to 1
+	// if the error is particularly egregious.  an unset encrypted flag on a TLS connection seems like it fits and
+	// the rfc is unclear for this particular condition on what to do
+	h.SeqNo = SequenceNumber(1)
+	h.Flags.Set(UnencryptedFlag)
+
+	return NewPacket(
+		SetPacketHeader(h),
+		SetPacketBody(b),
+	), nil
+}
+
 func (c crypter) badSecretReply(h *Header) (*Packet, error) {
 	var b []byte
 	var err error
Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ func SetClientDialer(network, address string, secret []byte) ClientOption {`
`29`	`29`	`if err != nil {`
`30`	`30`	`return err`
`31`	`31`	`}`
`32`		`- c.crypter = newCrypter(secret, conn, false)`
	`32`	`+ c.crypter = newCrypter(secret, conn, false, false)`
`33`	`33`	`return nil`
`34`	`34`	`}`
`35`	`35`	`}`
`@@ -39,7 +39,7 @@ func SetClientDialer(network, address string, secret []byte) ClientOption {`
`39`	`39`	`// A secret for the connection must also be provided.`
`40`	`40`	`func SetClientWithConn(conn *net.TCPConn, secret []byte) ClientOption {`
`41`	`41`	`return func(c *Client) error {`
`42`		`- c.crypter = newCrypter(secret, conn, false)`
	`42`	`+ c.crypter = newCrypter(secret, conn, false, false)`
`43`	`43`	`return nil`
`44`	`44`	`}`
`45`	`45`	`}`
`@@ -64,7 +64,7 @@ func SetClientDialerWithLocalAddr(network, raddr, laddr string, secret []byte) C`
`64`	`64`	`if err != nil {`
`65`	`65`	`return err`
`66`	`66`	`}`
`67`		`- c.crypter = newCrypter(secret, conn, false)`
	`67`	`+ c.crypter = newCrypter(secret, conn, false, false)`
`68`	`68`	`return nil`
`69`	`69`	`}`
`70`	`70`	`}`