| blob | 76e6ea1c3e1b249cab122cec37c434995db78100 |
1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License, Version 1.0 only
6 * (the "License"). You may not use this file except in compliance
7 * with the License.
8 *
9 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10 * or http://www.opensolaris.org/os/licensing.
11 * See the License for the specific language governing permissions
12 * and limitations under the License.
13 *
14 * When distributing Covered Code, include this CDDL HEADER in each
15 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16 * If applicable, add the following below this CDDL HEADER, with the
17 * fields enclosed by brackets "[]" replaced with your own identifying
18 * information: Portions Copyright [yyyy] [name of copyright owner]
19 *
20 * CDDL HEADER END
21 */
22 /*
23 * Copyright 1996,1997,1999,2002-2003 Sun Microsystems, Inc.
24 * All rights reserved. Use is subject to license terms.
25 */
27 /*
28 * Copyright 1993 OpenVision Technologies, Inc., All Rights Reserved.
29 *
30 * $Header:
31 * /afs/gza.com/product/secure/rel-eng/src/1.1/rpc/RCS/auth_gssapi_misc.c,v 1.10
32 * 1994/10/27 12:39:23 jik Exp $
33 */
35 /*
36 * Copyright (c) 2013 by Delphix. All rights reserved.
37 */
39 #include <sys/param.h>
40 #include <sys/types.h>
41 #include <sys/stream.h>
42 #include <sys/strsubr.h>
43 #include <sys/cmn_err.h>
44 #include <gssapi/gssapi.h>
45 #include <rpc/rpc.h>
46 #include <rpc/rpcsec_defs.h>
48 /*
49 * The initial allocation size for dynamic allocation.
50 */
51 #define CKU_INITSIZE 2048
53 /*
54 * The size of additional allocations, if required. It is larger to
55 * reduce the number of actual allocations.
56 */
57 #define CKU_ALLOCSIZE 8192
60 /*
61 * Miscellaneous XDR routines.
62 */
63 bool_t
66 gss_buffer_t buf;
67 {
70 /*
71 * We go through this contortion because size_t is a now a ulong,
72 * GSS-API uses ulongs.
73 */
79 }
87 }
90 }
92 bool_t
96 {
104 }
106 bool_t
110 {
114 }
116 bool_t
120 {
128 }
130 /*
131 * Generic routine to wrap data used by client and server sides.
132 */
133 bool_t
136 OM_uint32 qop;
137 rpc_gss_service_t service;
138 gss_ctx_id_t context;
139 uint_t seq_num;
142 caddr_t xdr_ptr;
143 {
146 XDR temp_xdrs;
148 bool_t conf_state;
152 /*
153 * Create a temporary XDR/buffer to hold the data to be wrapped.
154 * We need an extra bit for the sequence number serialized first.
155 */
162 /*
163 * serialize the sequence number into tmp memory
164 */
168 /*
169 * serialize the arguments into tmp memory
170 */
174 /*
175 * Data to be wrapped goes in in_buf. If privacy is used,
176 * out_buf will have wrapped data (in_buf will no longer be
177 * needed). If integrity is used, out_buf will have checksum
178 * which will follow the data in in_buf.
179 */
191 }
202 }
206 }
208 /*
209 * write out in_buf and out_buf as needed
210 */
214 }
219 fail:
224 }
226 /*
227 * Generic routine to unwrap data used by client and server sides.
228 */
229 bool_t
232 rpc_gss_service_t service;
233 gss_ctx_id_t context;
234 uint_t seq_num;
235 OM_uint32 qop_check;
238 caddr_t xdr_ptr;
239 {
241 XDR temp_xdrs;
242 uint_t seq_num2;
250 /*
251 * Pull out wrapped data. For privacy service, this is the
252 * encrypted data. For integrity service, this is the data
253 * followed by a checksum.
254 */
257 }
268 }
269 /*
270 * Keep the returned token (unencrypted data) in in_buf.
271 */
275 /*
276 * If privacy was not used, or if QOP is not what we are
277 * expecting, fail.
278 */
285 }
294 }
296 /*
297 * If QOP is not what we are expecting, fail.
298 */
301 }
305 /*
306 * The data consists of the sequence number followed by the
307 * arguments. Make sure sequence number is what we are
308 * expecting (i.e., the value in the header).
309 */
315 /*
316 * Deserialize the arguments into xdr_ptr, and release in_buf.
317 */
320 }
324 else
328 fail:
332 else
335 }