From c98c4faf073f673339265df5db302a5e8893df5b Mon Sep 17 00:00:00 2001
From: jbjohnso <jbjohnso@8638fb3e-16cb-4fca-ae20-7b5d299a9bcd>
Date: Fri, 29 Jan 2010 03:17:19 +0000
Subject: [PATCH] -Process received IPMI 2 IPMI payload with authentication

git-svn-id: https://svn.code.sf.net/p/xcat/code/xcat-core/trunk@5076 8638fb3e-16cb-4fca-ae20-7b5d299a9bcd
---
 xCAT-server/lib/perl/xCAT/IPMI.pm | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)

diff --git a/xCAT-server/lib/perl/xCAT/IPMI.pm b/xCAT-server/lib/perl/xCAT/IPMI.pm
index a773eb099..f56976941 100644
--- a/xCAT-server/lib/perl/xCAT/IPMI.pm
+++ b/xCAT-server/lib/perl/xCAT/IPMI.pm
@@ -388,6 +388,29 @@ sub handle_ipmi_packet {
             $self->got_rakp2(splice @rsp,16);
         } elsif (($rsp[5]& 0b00111111) == 0x15) {
             $self->got_rakp4(splice @rsp,16);
+        } elsif (($rsp[5]& 0b00111111) == 0x0) {
+            my $encrypted;
+            if ($rsp[5]&0b10000000) {
+                $encrypted=1;
+            }
+            unless ($rsp[5]&0b01000000) {
+                return 3; #we refuse to examine unauthenticated packets
+            }
+            splice (@rsp,0,4); #ditch the header
+            my @authcode = splice(@rsp,-12);
+            my @expectedcode = unpack("C*",hmac_sha1(pack("C*",@rsp),$self->{k1}));
+            splice (@expectedcode,12);
+            foreach (@expectedcode) {
+                unless ($_ == shift @authcode) {
+                   return 3;
+                }
+            }
+            if ($encrypted) {
+#TODO: encryption
+            }
+            my $psize = $rsp[10]+($rsp[11]<<8);
+            my @payload = splice(@rsp,12,$psize);
+            $self->parse_ipmi_payload(@payload);
         }
     }
 }