| blob | 38b1da321e1ca8f27d1043722c61c26e57bb647a |
1 /*
2 * Copyright 2008 Sun Microsystems, Inc. All rights reserved.
3 * Use is subject to license terms.
4 */
7 /*
8 * lib/krb5/os/changepw.c
9 *
10 * Copyright 1990,1999 by the Massachusetts Institute of Technology.
11 * All Rights Reserved.
12 *
13 * Export of this software from the United States of America may
14 * require a specific license from the United States Government.
15 * It is the responsibility of any person or organization contemplating
16 * export to obtain such a license before exporting.
17 *
18 * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
19 * distribute this software and its documentation for any purpose and
20 * without fee is hereby granted, provided that the above copyright
21 * notice appear in all copies and that both that copyright notice and
22 * this permission notice appear in supporting documentation, and that
23 * the name of M.I.T. not be used in advertising or publicity pertaining
24 * to distribution of the software without specific, written prior
25 * permission. Furthermore if you modify this software you must label
26 * your software as modified software and not distribute it in such a
27 * fashion that it might be confused with the original M.I.T. software.
28 * M.I.T. makes no representations about the suitability of
29 * this software for any purpose. It is provided "as is" without express
30 * or implied warranty.
31 *
32 */
34 #define NEED_SOCKETS
35 #include <k5-int.h>
36 #include <kadm5/admin.h>
37 #include <client_internal.h>
38 #include <gssapi/gssapi.h>
39 #include <gssapi_krb5.h>
40 #include <gssapiP_krb5.h>
41 #include <krb5.h>
43 /* #include "adm_err.h" */
44 #include <stdio.h>
45 #include <errno.h>
48 krb5_auth_context auth_context,
53 krb5_auth_context auth_context,
57 /*
58 * _kadm5_get_kpasswd_protocol
59 *
60 * returns the password change protocol value to the caller.
61 * Since the 'handle' is an opaque value to higher up callers,
62 * this method is needed to provide a way for them to get a peek
63 * at the protocol being used without having to expose the entire
64 * handle structure.
65 */
66 krb5_chgpwd_prot
68 {
72 }
74 /*
75 * krb5_change_password
76 *
77 * Prepare and send a CHANGEPW request to a password server
78 * using UDP datagrams. This is only used for sending to
79 * non-SEAM servers which support the Marc Horowitz defined
80 * protocol (1998) for password changing.
81 *
82 * SUNW14resync - added _local as it conflicts with one in krb5.h
83 */
84 static krb5_error_code
86 srvr_msg)
87 krb5_context context;
93 {
94 krb5_auth_context auth_context;
109 /* Initialize values so that cleanup call can safely check for NULL */
116 /* initialize auth_context so that we know we have to free it */
121 AP_OPTS_USE_SUBKEY,
125 /*
126 * find the address of the kpasswd_server.
127 */
135 }
144 /*
145 * this is really obscure. s1 is used for all communications. it
146 * is left unconnected in case the server is multihomed and routes
147 * are asymmetric. s2 is connected to resolve routes and get
148 * addresses. this is the *only* way to get proper addresses for
149 * multihomed hosts if routing is asymmetric.
150 *
151 * A related problem in the server, but not the client, is that
152 * many os's have no way to disconnect a connected udp socket, so
153 * the s2 socket needs to be closed and recreated for each
154 * request. The s1 socket must not be closed, or else queued
155 * requests will be lost.
156 *
157 * A "naive" client implementation (one socket, no connect,
158 * hostname resolution to get the local ip addr) will work and
159 * interoperate if the client is single-homed.
160 */
163 {
166 }
169 {
172 }
175 {
176 fd_set fdset;
180 SOCKET_ERROR)
181 {
188 }
193 {
200 }
202 /*
203 * some brain-dead OS's don't return useful information from
204 * the getsockname call. Namely, windows and solaris.
205 */
207 {
214 }
215 else
216 {
229 }
233 {
240 }
248 /*
249 * mk_priv requires that the local address be set.
250 * getsockname is used for this. rd_priv requires that the
251 * remote address be set. recvfrom is used for this. If
252 * rd_priv is given a local address, and the message has the
253 * recipient addr in it, this will be checked. However, there
254 * is simply no way to know ahead of time what address the
255 * message will be delivered *to*. Therefore, it is important
256 * that either no recipient address is in the messages when
257 * mk_priv is called, or that no local address is passed to
258 * rd_priv. Both is a better idea, and I have done that. In
259 * summary, when mk_priv is called, *only* a local address is
260 * specified. when rd_priv is called, *only* a remote address
261 * is specified. Are we having fun yet?
262 */
266 {
269 }
273 {
276 }
281 {
288 }
293 /* XXX need a timeout/retry loop here */
306 /* fall through */
307 ;
308 }
313 {
316 }
338 }
342 cleanup:
360 }
363 /*
364 * kadm5_chpass_principal_v2
365 *
366 * New function used to prepare to make the change password request to a
367 * non-SEAM admin server. The protocol used in this case is not based on
368 * RPCSEC_GSS, it simply makes the request to port 464 (udp and tcp).
369 * This is the same way that MIT KRB5 1.2.1 changes passwords.
370 */
371 kadm5_ret_t
373 krb5_principal princ,
377 {
378 kadm5_ret_t code;
380 krb5_error_code result;
381 krb5_creds mcreds;
382 krb5_creds ncreds;
383 krb5_ccache ccache;
387 /*
388 * The credentials have already been stored in the cache in the
389 * initialization step earlier, but we dont have direct access to it
390 * at this level. Derive the cache and fetch the credentials to use for
391 * sending the request.
392 */
398 /* set the client principal in the credential match structure */
401 /*
402 * set the server principal (kadmin/changepw@REALM) in the credential
403 * match struct
404 */
410 }
415 /* generate the server principal from the name string we generated */
420 }
422 /* Find the credentials in the cache */
427 }
429 /* Now we have all we need to make the change request. */
432 srvr_rsp_code,
433 srvr_msg);
437 }