| blob | d8941b20bf2d018948c1d57331a8c4b30d92e88c |
1 /*
2 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
3 * Use is subject to license terms.
4 */
7 /*
8 * lib/krb5/krb/recvauth.c
9 *
10 * Copyright 1991 by the Massachusetts Institute of Technology.
11 * All Rights Reserved.
12 *
13 * Export of this software from the United States of America may
14 * require a specific license from the United States Government.
15 * It is the responsibility of any person or organization contemplating
16 * export to obtain such a license before exporting.
17 *
18 * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
19 * distribute this software and its documentation for any purpose and
20 * without fee is hereby granted, provided that the above copyright
21 * notice appear in all copies and that both that copyright notice and
22 * this permission notice appear in supporting documentation, and that
23 * the name of M.I.T. not be used in advertising or publicity pertaining
24 * to distribution of the software without specific, written prior
25 * permission. Furthermore if you modify this software you must label
26 * your software as modified software and not distribute it in such a
27 * fashion that it might be confused with the original M.I.T. software.
28 * M.I.T. makes no representations about the suitability of
29 * this software for any purpose. It is provided "as is" without express
30 * or implied warranty.
31 *
32 *
33 * convenience sendauth/recvauth functions
34 */
39 #include <errno.h>
40 #include <stdio.h>
41 #include <string.h>
45 static krb5_error_code
48 /* IN */
49 krb5_pointer fd,
51 krb5_principal server,
52 krb5_int32 flags,
53 krb5_keytab keytab,
54 /* OUT */
57 {
58 krb5_auth_context new_auth_context;
59 krb5_flags ap_option;
61 krb5_data inbuf;
62 krb5_data outbuf;
64 krb5_octet response;
65 krb5_data null_server;
69 /*
70 * Zero out problem variable. If problem is set at the end of
71 * the intial version negotiation section, it means that we
72 * need to send an error code back to the client application
73 * and exit.
74 */
78 /*
79 * First read the sendauth version string and check it.
80 */
85 }
87 }
91 /*
92 * Do the same thing for the application version string.
93 */
99 }
102 else
104 /*
105 * OK, now check the problem variable. If it's zero, we're
106 * fine and we can continue. Otherwise, we have to signal an
107 * error to the client side and bail out.
108 */
120 /*
121 * Should never happen!
122 */
124 #ifdef SENDAUTH_DEBUG
126 problem);
128 #endif
130 }
131 /*
132 * Now we actually write the response. If the response is non-zero,
133 * exit with a return value of problem
134 */
137 }
141 /* We are clear of errors here */
143 /*
144 * Now, let's read the AP_REQ message and decode it
145 */
153 }
156 /*
157 * Setup the replay cache.
158 */
166 }
170 }
175 }
177 /*
178 * If there was a problem, send back a krb5_error message,
179 * preceeded by the length of the krb5_error message. If
180 * everything's ok, send back 0 for the length.
181 */
183 krb5_error error;
191 /* If this fails - ie. ENOMEM we are hosed
192 we cannot even send the error if we wanted to... */
195 }
205 }
207 /* Solaris Kerberos */
211 }
219 }
224 /* We sent back an error, we need cleanup then return */
227 }
231 /* Here lies the mutual authentication stuff... */
235 }
238 }
240 cleanup:;
244 /* Solaris Kerberos */
247 /* Solaris Kerberos */
250 }
251 }
253 }
255 krb5_error_code KRB5_CALLCONV
256 krb5_recvauth(krb5_context context, krb5_auth_context *auth_context, krb5_pointer fd, char *appl_version, krb5_principal server, krb5_int32 flags, krb5_keytab keytab, krb5_ticket **ticket)
257 {
260 }
262 krb5_error_code KRB5_CALLCONV
265 /* IN */
266 krb5_pointer fd,
267 krb5_principal server,
268 krb5_int32 flags,
269 krb5_keytab keytab,
270 /* OUT */
273 {
276 }