search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
No empty .Rs/.Re
[netbsd-mini2440.git] / crypto / dist / heimdal / lib / krb5 / v4_glue.c
blobc01963f9b64e2044ffb3994fd9caa609e9fd83ec
1 /*
2 * Copyright (c) 1997 - 2005 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 #include "krb5_locl.h"
35 __RCSID("$Heimdal: v4_glue.c 22071 2007-11-14 20:04:50Z lha $"
36 "$NetBSD$");
37
38 #include "krb5-v4compat.h"
39
40 /*
41 *
42 */
43
44 #define RCHECK(r,func,label) \
45 do { (r) = func ; if (r) goto label; } while(0);
46
47
48 /* include this here, to avoid dependencies on libkrb */
49
50 static const int _tkt_lifetimes[TKTLIFENUMFIXED] = {
51 38400, 41055, 43894, 46929, 50174, 53643, 57352, 61318,
52 65558, 70091, 74937, 80119, 85658, 91581, 97914, 104684,
53 111922, 119661, 127935, 136781, 146239, 156350, 167161, 178720,
54 191077, 204289, 218415, 233517, 249664, 266926, 285383, 305116,
55 326213, 348769, 372885, 398668, 426234, 455705, 487215, 520904,
56 556921, 595430, 636601, 680618, 727680, 777995, 831789, 889303,
57 950794, 1016537, 1086825, 1161973, 1242318, 1328218, 1420057, 1518247,
58 1623226, 1735464, 1855462, 1983758, 2120925, 2267576, 2424367, 2592000
59 };
60
61 int KRB5_LIB_FUNCTION
62 _krb5_krb_time_to_life(time_t start, time_t end)
63 {
64 int i;
65 time_t life = end - start;
66
67 if (life > MAXTKTLIFETIME || life <= 0)
68 return 0;
69 #if 0
70 if (krb_no_long_lifetimes)
71 return (life + 5*60 - 1)/(5*60);
72 #endif
73
74 if (end >= NEVERDATE)
75 return TKTLIFENOEXPIRE;
76 if (life < _tkt_lifetimes[0])
77 return (life + 5*60 - 1)/(5*60);
78 for (i=0; i<TKTLIFENUMFIXED; i++)
79 if (life <= _tkt_lifetimes[i])
80 return i + TKTLIFEMINFIXED;
81 return 0;
82
83 }
84
85 time_t KRB5_LIB_FUNCTION
86 _krb5_krb_life_to_time(int start, int life_)
87 {
88 unsigned char life = (unsigned char) life_;
89
90 #if 0
91 if (krb_no_long_lifetimes)
92 return start + life*5*60;
93 #endif
94
95 if (life == TKTLIFENOEXPIRE)
96 return NEVERDATE;
97 if (life < TKTLIFEMINFIXED)
98 return start + life*5*60;
99 if (life > TKTLIFEMAXFIXED)
100 return start + MAXTKTLIFETIME;
101 return start + _tkt_lifetimes[life - TKTLIFEMINFIXED];
102 }
103
104 /*
105 * Get the name of the krb4 credentials cache, will use `tkfile' as
106 * the name if that is passed in. `cc' must be free()ed by caller,
107 */
108
109 static krb5_error_code
110 get_krb4_cc_name(const char *tkfile, char **cc)
111 {
112
113 *cc = NULL;
114 if(tkfile == NULL) {
115 char *path;
116 if(!issuid()) {
117 path = getenv("KRBTKFILE");
118 if (path)
119 *cc = strdup(path);
120 }
121 if(*cc == NULL)
122 if (asprintf(cc, "%s%u", TKT_ROOT, (unsigned)getuid()) < 0)
123 return errno;
124 } else {
125 *cc = strdup(tkfile);
126 if (*cc == NULL)
127 return ENOMEM;
128 }
129 return 0;
130 }
131
132 /*
133 * Write a Kerberos 4 ticket file
134 */
135
136 #define KRB5_TF_LCK_RETRY_COUNT 50
137 #define KRB5_TF_LCK_RETRY 1
138
139 static krb5_error_code
140 write_v4_cc(krb5_context context, const char *tkfile,
141 krb5_storage *sp, int append)
142 {
143 krb5_error_code ret;
144 struct stat sb;
145 krb5_data data;
146 char *path;
147 int fd, i;
148
149 ret = get_krb4_cc_name(tkfile, &path);
150 if (ret) {
151 krb5_set_error_string(context,
152 "krb5_krb_tf_setup: failed getting "
153 "the krb4 credentials cache name");
154 return ret;
155 }
156
157 fd = open(path, O_WRONLY|O_CREAT, 0600);
158 if (fd < 0) {
159 ret = errno;
160 krb5_set_error_string(context,
161 "krb5_krb_tf_setup: error opening file %s",
162 path);
163 free(path);
164 return ret;
165 }
166
167 if (fstat(fd, &sb) != 0 || !S_ISREG(sb.st_mode)) {
168 krb5_set_error_string(context,
169 "krb5_krb_tf_setup: tktfile %s is not a file",
170 path);
171 free(path);
172 close(fd);
173 return KRB5_FCC_PERM;
174 }
175
176 for (i = 0; i < KRB5_TF_LCK_RETRY_COUNT; i++) {
177 if (flock(fd, LOCK_EX | LOCK_NB) < 0) {
178 sleep(KRB5_TF_LCK_RETRY);
179 } else
180 break;
181 }
182 if (i == KRB5_TF_LCK_RETRY_COUNT) {
183 krb5_set_error_string(context,
184 "krb5_krb_tf_setup: failed to lock %s",
185 path);
186 free(path);
187 close(fd);
188 return KRB5_FCC_PERM;
189 }
190
191 if (!append) {
192 ret = ftruncate(fd, 0);
193 if (ret < 0) {
194 flock(fd, LOCK_UN);
195 krb5_set_error_string(context,
196 "krb5_krb_tf_setup: failed to truncate %s",
197 path);
198 free(path);
199 close(fd);
200 return KRB5_FCC_PERM;
201 }
202 }
203 ret = lseek(fd, 0L, SEEK_END);
204 if (ret < 0) {
205 ret = errno;
206 flock(fd, LOCK_UN);
207 free(path);
208 close(fd);
209 return ret;
210 }
211
212 krb5_storage_to_data(sp, &data);
213
214 ret = write(fd, data.data, data.length);
215 if (ret != data.length)
216 ret = KRB5_CC_IO;
217
218 krb5_free_data_contents(context, &data);
219
220 flock(fd, LOCK_UN);
221 free(path);
222 close(fd);
223
224 return 0;
225 }
226
227 /*
228 *
229 */
230
231 krb5_error_code KRB5_LIB_FUNCTION
232 _krb5_krb_tf_setup(krb5_context context,
233 struct credentials *v4creds,
234 const char *tkfile,
235 int append)
236 {
237 krb5_error_code ret;
238 krb5_storage *sp;
239
240 sp = krb5_storage_emem();
241 if (sp == NULL)
242 return ENOMEM;
243
244 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_HOST);
245 krb5_storage_set_eof_code(sp, KRB5_CC_IO);
246
247 krb5_clear_error_string(context);
248
249 if (!append) {
250 RCHECK(ret, krb5_store_stringz(sp, v4creds->pname), error);
251 RCHECK(ret, krb5_store_stringz(sp, v4creds->pinst), error);
252 }
253
254 /* cred */
255 RCHECK(ret, krb5_store_stringz(sp, v4creds->service), error);
256 RCHECK(ret, krb5_store_stringz(sp, v4creds->instance), error);
257 RCHECK(ret, krb5_store_stringz(sp, v4creds->realm), error);
258 ret = krb5_storage_write(sp, v4creds->session, 8);
259 if (ret != 8) {
260 ret = KRB5_CC_IO;
261 goto error;
262 }
263 RCHECK(ret, krb5_store_int32(sp, v4creds->lifetime), error);
264 RCHECK(ret, krb5_store_int32(sp, v4creds->kvno), error);
265 RCHECK(ret, krb5_store_int32(sp, v4creds->ticket_st.length), error);
266
267 ret = krb5_storage_write(sp, v4creds->ticket_st.dat,
268 v4creds->ticket_st.length);
269 if (ret != v4creds->ticket_st.length) {
270 ret = KRB5_CC_IO;
271 goto error;
272 }
273 RCHECK(ret, krb5_store_int32(sp, v4creds->issue_date), error);
274
275 ret = write_v4_cc(context, tkfile, sp, append);
276
277 error:
278 krb5_storage_free(sp);
279
280 return ret;
281 }
282
283 /*
284 *
285 */
286
287 krb5_error_code KRB5_LIB_FUNCTION
288 _krb5_krb_dest_tkt(krb5_context context, const char *tkfile)
289 {
290 krb5_error_code ret;
291 char *path;
292
293 ret = get_krb4_cc_name(tkfile, &path);
294 if (ret) {
295 krb5_set_error_string(context,
296 "krb5_krb_tf_setup: failed getting "
297 "the krb4 credentials cache name");
298 return ret;
299 }
300
301 if (unlink(path) < 0) {
302 ret = errno;
303 krb5_set_error_string(context,
304 "krb5_krb_dest_tkt failed removing the cache "
305 "with error %s", strerror(ret));
306 }
307 free(path);
308
309 return ret;
310 }
311
312 /*
313 *
314 */
315
316 static krb5_error_code
317 decrypt_etext(krb5_context context, const krb5_keyblock *key,
318 const krb5_data *cdata, krb5_data *data)
319 {
320 krb5_error_code ret;
321 krb5_crypto crypto;
322
323 ret = krb5_crypto_init(context, key, ETYPE_DES_PCBC_NONE, &crypto);
324 if (ret)
325 return ret;
326
327 ret = krb5_decrypt(context, crypto, 0, cdata->data, cdata->length, data);
328 krb5_crypto_destroy(context, crypto);
329
330 return ret;
331 }
332
333
334 /*
335 *
336 */
337
338 static const char eightzeros[8] = "\x00\x00\x00\x00\x00\x00\x00\x00";
339
340 static krb5_error_code
341 storage_to_etext(krb5_context context,
342 krb5_storage *sp,
343 const krb5_keyblock *key,
344 krb5_data *enc_data)
345 {
346 krb5_error_code ret;
347 krb5_crypto crypto;
348 krb5_ssize_t size;
349 krb5_data data;
350
351 /* multiple of eight bytes */
352
353 size = krb5_storage_seek(sp, 0, SEEK_END);
354 if (size < 0)
355 return KRB4ET_RD_AP_UNDEC;
356 size = 8 - (size & 7);
357
358 ret = krb5_storage_write(sp, eightzeros, size);
359 if (ret != size)
360 return KRB4ET_RD_AP_UNDEC;
361
362 ret = krb5_storage_to_data(sp, &data);
363 if (ret)
364 return ret;
365
366 ret = krb5_crypto_init(context, key, ETYPE_DES_PCBC_NONE, &crypto);
367 if (ret) {
368 krb5_data_free(&data);
369 return ret;
370 }
371
372 ret = krb5_encrypt(context, crypto, 0, data.data, data.length, enc_data);
373
374 krb5_data_free(&data);
375 krb5_crypto_destroy(context, crypto);
376
377 return ret;
378 }
379
380 /*
381 *
382 */
383
384 static krb5_error_code
385 put_nir(krb5_storage *sp, const char *name,
386 const char *instance, const char *realm)
387 {
388 krb5_error_code ret;
389
390 RCHECK(ret, krb5_store_stringz(sp, name), error);
391 RCHECK(ret, krb5_store_stringz(sp, instance), error);
392 if (realm) {
393 RCHECK(ret, krb5_store_stringz(sp, realm), error);
394 }
395 error:
396 return ret;
397 }
398
399 /*
400 *
401 */
402
403 krb5_error_code KRB5_LIB_FUNCTION
404 _krb5_krb_create_ticket(krb5_context context,
405 unsigned char flags,
406 const char *pname,
407 const char *pinstance,
408 const char *prealm,
409 int32_t paddress,
410 const krb5_keyblock *session,
411 int16_t life,
412 int32_t life_sec,
413 const char *sname,
414 const char *sinstance,
415 const krb5_keyblock *key,
416 krb5_data *enc_data)
417 {
418 krb5_error_code ret;
419 krb5_storage *sp;
420
421 krb5_data_zero(enc_data);
422
423 sp = krb5_storage_emem();
424 if (sp == NULL) {
425 krb5_set_error_string(context, "malloc: out of memory");
426 return ENOMEM;
427 }
428 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
429
430 RCHECK(ret, krb5_store_int8(sp, flags), error);
431 RCHECK(ret, put_nir(sp, pname, pinstance, prealm), error);
432 RCHECK(ret, krb5_store_int32(sp, ntohl(paddress)), error);
433
434 /* session key */
435 ret = krb5_storage_write(sp,
436 session->keyvalue.data,
437 session->keyvalue.length);
438 if (ret != session->keyvalue.length) {
439 ret = KRB4ET_INTK_PROT;
440 goto error;
441 }
442
443 RCHECK(ret, krb5_store_int8(sp, life), error);
444 RCHECK(ret, krb5_store_int32(sp, life_sec), error);
445 RCHECK(ret, put_nir(sp, sname, sinstance, NULL), error);
446
447 ret = storage_to_etext(context, sp, key, enc_data);
448
449 error:
450 krb5_storage_free(sp);
451 if (ret)
452 krb5_set_error_string(context, "Failed to encode kerberos 4 ticket");
453
454 return ret;
455 }
456
457 /*
458 *
459 */
460
461 krb5_error_code KRB5_LIB_FUNCTION
462 _krb5_krb_create_ciph(krb5_context context,
463 const krb5_keyblock *session,
464 const char *service,
465 const char *instance,
466 const char *realm,
467 uint32_t life,
468 unsigned char kvno,
469 const krb5_data *ticket,
470 uint32_t kdc_time,
471 const krb5_keyblock *key,
472 krb5_data *enc_data)
473 {
474 krb5_error_code ret;
475 krb5_storage *sp;
476
477 krb5_data_zero(enc_data);
478
479 sp = krb5_storage_emem();
480 if (sp == NULL) {
481 krb5_set_error_string(context, "malloc: out of memory");
482 return ENOMEM;
483 }
484 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
485
486 /* session key */
487 ret = krb5_storage_write(sp,
488 session->keyvalue.data,
489 session->keyvalue.length);
490 if (ret != session->keyvalue.length) {
491 ret = KRB4ET_INTK_PROT;
492 goto error;
493 }
494
495 RCHECK(ret, put_nir(sp, service, instance, realm), error);
496 RCHECK(ret, krb5_store_int8(sp, life), error);
497 RCHECK(ret, krb5_store_int8(sp, kvno), error);
498 RCHECK(ret, krb5_store_int8(sp, ticket->length), error);
499 ret = krb5_storage_write(sp, ticket->data, ticket->length);
500 if (ret != ticket->length) {
501 ret = KRB4ET_INTK_PROT;
502 goto error;
503 }
504 RCHECK(ret, krb5_store_int32(sp, kdc_time), error);
505
506 ret = storage_to_etext(context, sp, key, enc_data);
507
508 error:
509 krb5_storage_free(sp);
510 if (ret)
511 krb5_set_error_string(context, "Failed to encode kerberos 4 ticket");
512
513 return ret;
514 }
515
516 /*
517 *
518 */
519
520 krb5_error_code KRB5_LIB_FUNCTION
521 _krb5_krb_create_auth_reply(krb5_context context,
522 const char *pname,
523 const char *pinst,
524 const char *prealm,
525 int32_t time_ws,
526 int n,
527 uint32_t x_date,
528 unsigned char kvno,
529 const krb5_data *cipher,
530 krb5_data *data)
531 {
532 krb5_error_code ret;
533 krb5_storage *sp;
534
535 krb5_data_zero(data);
536
537 sp = krb5_storage_emem();
538 if (sp == NULL) {
539 krb5_set_error_string(context, "malloc: out of memory");
540 return ENOMEM;
541 }
542 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
543
544 RCHECK(ret, krb5_store_int8(sp, KRB_PROT_VERSION), error);
545 RCHECK(ret, krb5_store_int8(sp, AUTH_MSG_KDC_REPLY), error);
546 RCHECK(ret, put_nir(sp, pname, pinst, prealm), error);
547 RCHECK(ret, krb5_store_int32(sp, time_ws), error);
548 RCHECK(ret, krb5_store_int8(sp, n), error);
549 RCHECK(ret, krb5_store_int32(sp, x_date), error);
550 RCHECK(ret, krb5_store_int8(sp, kvno), error);
551 RCHECK(ret, krb5_store_int16(sp, cipher->length), error);
552 ret = krb5_storage_write(sp, cipher->data, cipher->length);
553 if (ret != cipher->length) {
554 ret = KRB4ET_INTK_PROT;
555 goto error;
556 }
557
558 ret = krb5_storage_to_data(sp, data);
559
560 error:
561 krb5_storage_free(sp);
562 if (ret)
563 krb5_set_error_string(context, "Failed to encode kerberos 4 ticket");
564
565 return ret;
566 }
567
568 /*
569 *
570 */
571
572 krb5_error_code KRB5_LIB_FUNCTION
573 _krb5_krb_cr_err_reply(krb5_context context,
574 const char *name,
575 const char *inst,
576 const char *realm,
577 uint32_t time_ws,
578 uint32_t e,
579 const char *e_string,
580 krb5_data *data)
581 {
582 krb5_error_code ret;
583 krb5_storage *sp;
584
585 krb5_data_zero(data);
586
587 if (name == NULL) name = "";
588 if (inst == NULL) inst = "";
589 if (realm == NULL) realm = "";
590 if (e_string == NULL) e_string = "";
591
592 sp = krb5_storage_emem();
593 if (sp == NULL) {
594 krb5_set_error_string(context, "malloc: out of memory");
595 return ENOMEM;
596 }
597 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
598
599 RCHECK(ret, krb5_store_int8(sp, KRB_PROT_VERSION), error);
600 RCHECK(ret, krb5_store_int8(sp, AUTH_MSG_ERR_REPLY), error);
601 RCHECK(ret, put_nir(sp, name, inst, realm), error);
602 RCHECK(ret, krb5_store_int32(sp, time_ws), error);
603 /* If it is a Kerberos 4 error-code, remove the et BASE */
604 if (e >= ERROR_TABLE_BASE_krb && e <= ERROR_TABLE_BASE_krb + 255)
605 e -= ERROR_TABLE_BASE_krb;
606 RCHECK(ret, krb5_store_int32(sp, e), error);
607 RCHECK(ret, krb5_store_stringz(sp, e_string), error);
608
609 ret = krb5_storage_to_data(sp, data);
610
611 error:
612 krb5_storage_free(sp);
613 if (ret)
614 krb5_set_error_string(context, "Failed to encode kerberos 4 error");
615
616 return 0;
617 }
618
619 static krb5_error_code
620 get_v4_stringz(krb5_storage *sp, char **str, size_t max_len)
621 {
622 krb5_error_code ret;
623
624 ret = krb5_ret_stringz(sp, str);
625 if (ret)
626 return ret;
627 if (strlen(*str) > max_len) {
628 free(*str);
629 *str = NULL;
630 return KRB4ET_INTK_PROT;
631 }
632 return 0;
633 }
634
635 /*
636 *
637 */
638
639 krb5_error_code KRB5_LIB_FUNCTION
640 _krb5_krb_decomp_ticket(krb5_context context,
641 const krb5_data *enc_ticket,
642 const krb5_keyblock *key,
643 const char *local_realm,
644 char **sname,
645 char **sinstance,
646 struct _krb5_krb_auth_data *ad)
647 {
648 krb5_error_code ret;
649 krb5_ssize_t size;
650 krb5_storage *sp = NULL;
651 krb5_data ticket;
652 unsigned char des_key[8];
653
654 memset(ad, 0, sizeof(*ad));
655 krb5_data_zero(&ticket);
656
657 *sname = NULL;
658 *sinstance = NULL;
659
660 RCHECK(ret, decrypt_etext(context, key, enc_ticket, &ticket), error);
661
662 sp = krb5_storage_from_data(&ticket);
663 if (sp == NULL) {
664 krb5_data_free(&ticket);
665 krb5_set_error_string(context, "alloc: out of memory");
666 return ENOMEM;
667 }
668
669 krb5_storage_set_eof_code(sp, KRB4ET_INTK_PROT);
670
671 RCHECK(ret, krb5_ret_int8(sp, &ad->k_flags), error);
672 RCHECK(ret, get_v4_stringz(sp, &ad->pname, ANAME_SZ), error);
673 RCHECK(ret, get_v4_stringz(sp, &ad->pinst, INST_SZ), error);
674 RCHECK(ret, get_v4_stringz(sp, &ad->prealm, REALM_SZ), error);
675 RCHECK(ret, krb5_ret_uint32(sp, &ad->address), error);
676
677 size = krb5_storage_read(sp, des_key, sizeof(des_key));
678 if (size != sizeof(des_key)) {
679 ret = KRB4ET_INTK_PROT;
680 goto error;
681 }
682
683 RCHECK(ret, krb5_ret_uint8(sp, &ad->life), error);
684
685 if (ad->k_flags & 1)
686 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_LE);
687 else
688 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
689
690 RCHECK(ret, krb5_ret_uint32(sp, &ad->time_sec), error);
691
692 RCHECK(ret, get_v4_stringz(sp, sname, ANAME_SZ), error);
693 RCHECK(ret, get_v4_stringz(sp, sinstance, INST_SZ), error);
694
695 ret = krb5_keyblock_init(context, ETYPE_DES_PCBC_NONE,
696 des_key, sizeof(des_key), &ad->session);
697 if (ret)
698 goto error;
699
700 if (strlen(ad->prealm) == 0) {
701 free(ad->prealm);
702 ad->prealm = strdup(local_realm);
703 if (ad->prealm == NULL) {
704 ret = ENOMEM;
705 goto error;
706 }
707 }
708
709 error:
710 memset(des_key, 0, sizeof(des_key));
711 if (sp)
712 krb5_storage_free(sp);
713 krb5_data_free(&ticket);
714 if (ret) {
715 if (*sname) {
716 free(*sname);
717 *sname = NULL;
718 }
719 if (*sinstance) {
720 free(*sinstance);
721 *sinstance = NULL;
722 }
723 _krb5_krb_free_auth_data(context, ad);
724 krb5_set_error_string(context, "Failed to decode v4 ticket");
725 }
726 return ret;
727 }
728
729 /*
730 *
731 */
732
733 krb5_error_code KRB5_LIB_FUNCTION
734 _krb5_krb_rd_req(krb5_context context,
735 krb5_data *authent,
736 const char *service,
737 const char *instance,
738 const char *local_realm,
739 int32_t from_addr,
740 const krb5_keyblock *key,
741 struct _krb5_krb_auth_data *ad)
742 {
743 krb5_error_code ret;
744 krb5_storage *sp;
745 krb5_data ticket, eaut, aut;
746 krb5_ssize_t size;
747 int little_endian;
748 int8_t pvno;
749 int8_t type;
750 int8_t s_kvno;
751 uint8_t ticket_length;
752 uint8_t eaut_length;
753 uint8_t time_5ms;
754 char *realm = NULL;
755 char *sname = NULL;
756 char *sinstance = NULL;
757 char *r_realm = NULL;
758 char *r_name = NULL;
759 char *r_instance = NULL;
760
761 uint32_t r_time_sec; /* Coarse time from authenticator */
762 unsigned long delta_t; /* Time in authenticator - local time */
763 long tkt_age; /* Age of ticket */
764
765 struct timeval tv;
766
767 krb5_data_zero(&ticket);
768 krb5_data_zero(&eaut);
769 krb5_data_zero(&aut);
770
771 sp = krb5_storage_from_data(authent);
772 if (sp == NULL) {
773 krb5_set_error_string(context, "alloc: out of memory");
774 return ENOMEM;
775 }
776
777 krb5_storage_set_eof_code(sp, KRB4ET_INTK_PROT);
778
779 ret = krb5_ret_int8(sp, &pvno);
780 if (ret) {
781 krb5_set_error_string(context, "Failed reading v4 pvno");
782 goto error;
783 }
784
785 if (pvno != KRB_PROT_VERSION) {
786 ret = KRB4ET_RD_AP_VERSION;
787 krb5_set_error_string(context, "Failed v4 pvno not 4");
788 goto error;
789 }
790
791 ret = krb5_ret_int8(sp, &type);
792 if (ret) {
793 krb5_set_error_string(context, "Failed readin v4 type");
794 goto error;
795 }
796
797 little_endian = type & 1;
798 type &= ~1;
799
800 if(type != AUTH_MSG_APPL_REQUEST && type != AUTH_MSG_APPL_REQUEST_MUTUAL) {
801 ret = KRB4ET_RD_AP_MSG_TYPE;
802 krb5_set_error_string(context, "Not a valid v4 request type");
803 goto error;
804 }
805
806 RCHECK(ret, krb5_ret_int8(sp, &s_kvno), error);
807 RCHECK(ret, get_v4_stringz(sp, &realm, REALM_SZ), error);
808 RCHECK(ret, krb5_ret_uint8(sp, &ticket_length), error);
809 RCHECK(ret, krb5_ret_uint8(sp, &eaut_length), error);
810 RCHECK(ret, krb5_data_alloc(&ticket, ticket_length), error);
811
812 size = krb5_storage_read(sp, ticket.data, ticket.length);
813 if (size != ticket.length) {
814 ret = KRB4ET_INTK_PROT;
815 krb5_set_error_string(context, "Failed reading v4 ticket");
816 goto error;
817 }
818
819 /* Decrypt and take apart ticket */
820 ret = _krb5_krb_decomp_ticket(context, &ticket, key, local_realm,
821 &sname, &sinstance, ad);
822 if (ret)
823 goto error;
824
825 RCHECK(ret, krb5_data_alloc(&eaut, eaut_length), error);
826
827 size = krb5_storage_read(sp, eaut.data, eaut.length);
828 if (size != eaut.length) {
829 ret = KRB4ET_INTK_PROT;
830 krb5_set_error_string(context, "Failed reading v4 authenticator");
831 goto error;
832 }
833
834 krb5_storage_free(sp);
835 sp = NULL;
836
837 ret = decrypt_etext(context, &ad->session, &eaut, &aut);
838 if (ret)
839 goto error;
840
841 sp = krb5_storage_from_data(&aut);
842 if (sp == NULL) {
843 ret = ENOMEM;
844 krb5_set_error_string(context, "alloc: out of memory");
845 goto error;
846 }
847
848 if (little_endian)
849 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_LE);
850 else
851 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_BE);
852
853 RCHECK(ret, get_v4_stringz(sp, &r_name, ANAME_SZ), error);
854 RCHECK(ret, get_v4_stringz(sp, &r_instance, INST_SZ), error);
855 RCHECK(ret, get_v4_stringz(sp, &r_realm, REALM_SZ), error);
856
857 RCHECK(ret, krb5_ret_uint32(sp, &ad->checksum), error);
858 RCHECK(ret, krb5_ret_uint8(sp, &time_5ms), error);
859 RCHECK(ret, krb5_ret_uint32(sp, &r_time_sec), error);
860
861 if (strcmp(ad->pname, r_name) != 0 ||
862 strcmp(ad->pinst, r_instance) != 0 ||
863 strcmp(ad->prealm, r_realm) != 0) {
864 krb5_set_error_string(context, "v4 principal mismatch");
865 ret = KRB4ET_RD_AP_INCON;
866 goto error;
867 }
868
869 if (from_addr && ad->address && from_addr != ad->address) {
870 krb5_set_error_string(context, "v4 bad address in ticket");
871 ret = KRB4ET_RD_AP_BADD;
872 goto error;
873 }
874
875 gettimeofday(&tv, NULL);
876 delta_t = abs((int)(tv.tv_sec - r_time_sec));
877 if (delta_t > CLOCK_SKEW) {
878 ret = KRB4ET_RD_AP_TIME;
879 krb5_set_error_string(context, "v4 clock skew");
880 goto error;
881 }
882
883 /* Now check for expiration of ticket */
884
885 tkt_age = tv.tv_sec - ad->time_sec;
886
887 if ((tkt_age < 0) && (-tkt_age > CLOCK_SKEW)) {
888 ret = KRB4ET_RD_AP_NYV;
889 krb5_set_error_string(context, "v4 clock skew for expiration");
890 goto error;
891 }
892
893 if (tv.tv_sec > _krb5_krb_life_to_time(ad->time_sec, ad->life)) {
894 ret = KRB4ET_RD_AP_EXP;
895 krb5_set_error_string(context, "v4 ticket expired");
896 goto error;
897 }
898
899 ret = 0;
900 error:
901 krb5_data_free(&ticket);
902 krb5_data_free(&eaut);
903 krb5_data_free(&aut);
904 if (realm)
905 free(realm);
906 if (sname)
907 free(sname);
908 if (sinstance)
909 free(sinstance);
910 if (r_name)
911 free(r_name);
912 if (r_instance)
913 free(r_instance);
914 if (r_realm)
915 free(r_realm);
916 if (sp)
917 krb5_storage_free(sp);
918
919 if (ret)
920 krb5_clear_error_string(context);
921
922 return ret;
923 }
924
925 /*
926 *
927 */
928
929 void KRB5_LIB_FUNCTION
930 _krb5_krb_free_auth_data(krb5_context context, struct _krb5_krb_auth_data *ad)
931 {
932 if (ad->pname)
933 free(ad->pname);
934 if (ad->pinst)
935 free(ad->pinst);
936 if (ad->prealm)
937 free(ad->prealm);
938 krb5_free_keyblock_contents(context, &ad->session);
939 memset(ad, 0, sizeof(*ad));
940 }
NetBSD on the FriendlyARM MINI2440