root/source4/heimdal/lib/gssapi/krb5/compat.c

/* [<][>][^][v][top][bottom][index][help] */

DEFINITIONS

This source file includes following definitions.
  1. check_compat
  2. _gss_DES3_get_mic_compat
  3. gss_krb5_compat_des3_mic

   1 /*
   2  * Copyright (c) 2003 - 2005 Kungliga Tekniska Högskolan
   3  * (Royal Institute of Technology, Stockholm, Sweden).
   4  * All rights reserved.
   5  *
   6  * Redistribution and use in source and binary forms, with or without
   7  * modification, are permitted provided that the following conditions
   8  * are met:
   9  *
  10  * 1. Redistributions of source code must retain the above copyright
  11  *    notice, this list of conditions and the following disclaimer.
  12  *
  13  * 2. Redistributions in binary form must reproduce the above copyright
  14  *    notice, this list of conditions and the following disclaimer in the
  15  *    documentation and/or other materials provided with the distribution.
  16  *
  17  * 3. Neither the name of the Institute nor the names of its contributors
  18  *    may be used to endorse or promote products derived from this software
  19  *    without specific prior written permission.
  20  *
  21  * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
  22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
  25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  31  * SUCH DAMAGE.
  32  */
  33 
  34 #include "krb5/gsskrb5_locl.h"
  35 
  36 RCSID("$Id$");
  37 
  38 
  39 static krb5_error_code
  40 check_compat(OM_uint32 *minor_status,
     /* [<][>][^][v][top][bottom][index][help] */
  41              krb5_context context, krb5_const_principal name,
  42              const char *option, krb5_boolean *compat,
  43              krb5_boolean match_val)
  44 {
  45     krb5_error_code ret = 0;
  46     char **p, **q;
  47     krb5_principal match;
  48 
  49 
  50     p = krb5_config_get_strings(context, NULL, "gssapi",
  51                                 option, NULL);
  52     if(p == NULL)
  53         return 0;
  54 
  55     match = NULL;
  56     for(q = p; *q; q++) {
  57         ret = krb5_parse_name(context, *q, &match);
  58         if (ret)
  59             break;
  60 
  61         if (krb5_principal_match(context, name, match)) {
  62             *compat = match_val;
  63             break;
  64         }
  65         
  66         krb5_free_principal(context, match);
  67         match = NULL;
  68     }
  69     if (match)
  70         krb5_free_principal(context, match);
  71     krb5_config_free_strings(p);
  72 
  73     if (ret) {
  74         if (minor_status)
  75             *minor_status = ret;
  76         return GSS_S_FAILURE;
  77     }
  78 
  79     return 0;
  80 }
  81 
  82 /*
  83  * ctx->ctx_id_mutex is assumed to be locked
  84  */
  85 
  86 OM_uint32
  87 _gss_DES3_get_mic_compat(OM_uint32 *minor_status,
     /* [<][>][^][v][top][bottom][index][help] */
  88                          gsskrb5_ctx ctx,
  89                          krb5_context context)
  90 {
  91     krb5_boolean use_compat = FALSE;
  92     OM_uint32 ret;
  93 
  94     if ((ctx->more_flags & COMPAT_OLD_DES3_SELECTED) == 0) {
  95         ret = check_compat(minor_status, context, ctx->target,
  96                            "broken_des3_mic", &use_compat, TRUE);
  97         if (ret)
  98             return ret;
  99         ret = check_compat(minor_status, context, ctx->target,
 100                            "correct_des3_mic", &use_compat, FALSE);
 101         if (ret)
 102             return ret;
 103 
 104         if (use_compat)
 105             ctx->more_flags |= COMPAT_OLD_DES3;
 106         ctx->more_flags |= COMPAT_OLD_DES3_SELECTED;
 107     }
 108     return 0;
 109 }
 110 
 111 #if 0
 112 OM_uint32
 113 gss_krb5_compat_des3_mic(OM_uint32 *minor_status, gss_ctx_id_t ctx, int on)
     /* [<][>][^][v][top][bottom][index][help] */
 114 {
 115     *minor_status = 0;
 116 
 117     HEIMDAL_MUTEX_lock(&ctx->ctx_id_mutex);
 118     if (on) {
 119         ctx->more_flags |= COMPAT_OLD_DES3;
 120     } else {
 121         ctx->more_flags &= ~COMPAT_OLD_DES3;
 122     }
 123     ctx->more_flags |= COMPAT_OLD_DES3_SELECTED;
 124     HEIMDAL_MUTEX_unlock(&ctx->ctx_id_mutex);
 125 
 126     return 0;
 127 }
 128 #endif

/* [<][>][^][v][top][bottom][index][help] */