Line data Source code
1 : /*
2 : * Copyright (c) 1997 Kungliga Tekniska Högskolan
3 : * (Royal Institute of Technology, Stockholm, Sweden).
4 : * All rights reserved.
5 : *
6 : * Redistribution and use in source and binary forms, with or without
7 : * modification, are permitted provided that the following conditions
8 : * are met:
9 : *
10 : * 1. Redistributions of source code must retain the above copyright
11 : * notice, this list of conditions and the following disclaimer.
12 : *
13 : * 2. Redistributions in binary form must reproduce the above copyright
14 : * notice, this list of conditions and the following disclaimer in the
15 : * documentation and/or other materials provided with the distribution.
16 : *
17 : * 3. Neither the name of the Institute nor the names of its contributors
18 : * may be used to endorse or promote products derived from this software
19 : * without specific prior written permission.
20 : *
21 : * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 : * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 : * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 : * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 : * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 : * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 : * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 : * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 : * SUCH DAMAGE.
32 : */
33 :
34 : /*
35 : *
36 : */
37 :
38 : #include "krb5_locl.h"
39 :
40 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
41 93640 : _krb5_principal2principalname(PrincipalName *p,
42 : krb5_const_principal from)
43 : {
44 93640 : return copy_PrincipalName(&from->name, p);
45 : }
46 :
47 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
48 745227 : _krb5_principalname2krb5_principal (krb5_context context,
49 : krb5_principal *principal,
50 : const PrincipalName from,
51 : const Realm realm)
52 : {
53 : krb5_error_code ret;
54 : krb5_principal p;
55 :
56 745227 : p = calloc(1, sizeof(*p));
57 745227 : if (p == NULL)
58 0 : return krb5_enomem(context);
59 745227 : ret = copy_PrincipalName(&from, &p->name);
60 745227 : if (ret) {
61 0 : free(p);
62 0 : return ret;
63 : }
64 745227 : p->realm = strdup(realm);
65 745227 : if (p->realm == NULL) {
66 0 : free_PrincipalName(&p->name);
67 0 : free(p);
68 0 : return krb5_enomem(context);
69 : }
70 745227 : *principal = p;
71 745227 : return 0;
72 : }
73 :
74 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
75 82895 : _krb5_ticket2krb5_principal(krb5_context context,
76 : krb5_principal *principal,
77 : const EncTicketPart *ticket,
78 : const AuthorizationData *authenticator_ad)
79 : {
80 : krb5_error_code ret;
81 82895 : krb5_principal p = NULL;
82 :
83 82895 : *principal = NULL;
84 :
85 82895 : ret = _krb5_principalname2krb5_principal(context,
86 : &p,
87 : ticket->cname,
88 : ticket->crealm);
89 165790 : if (ret == 0 &&
90 82895 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
91 0 : ret = krb5_enomem(context);
92 82895 : if (ret == 0)
93 82895 : p->nameattrs->authenticated = 1;
94 165790 : if (ret == 0 &&
95 165790 : (p->nameattrs->source =
96 82895 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
97 0 : ret = krb5_enomem(context);
98 82895 : if (ret == 0) {
99 82895 : p->nameattrs->source->element =
100 : choice_PrincipalNameAttrSrc_enc_ticket_part;
101 82895 : ret = copy_EncTicketPart(ticket,
102 82895 : &p->nameattrs->source->u.enc_ticket_part);
103 : /* NOTE: we don't want to keep a copy of the session key here! */
104 82895 : if (ret == 0)
105 82895 : der_free_octet_string(&p->nameattrs->source->u.enc_ticket_part.key.keyvalue);
106 : }
107 82895 : if (ret == 0 && authenticator_ad) {
108 159994 : p->nameattrs->authenticator_ad =
109 79997 : calloc(1, sizeof(p->nameattrs->authenticator_ad[0]));
110 79997 : if (p->nameattrs->authenticator_ad == NULL)
111 0 : ret = krb5_enomem(context);
112 79997 : if (ret == 0)
113 79997 : ret = copy_AuthorizationData(authenticator_ad,
114 79997 : p->nameattrs->authenticator_ad);
115 : }
116 :
117 82895 : if (ret == 0)
118 82895 : *principal = p;
119 : else
120 0 : krb5_free_principal(context, p);
121 82895 : return ret;
122 : }
123 :
124 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
125 43583 : _krb5_kdcrep2krb5_principal(krb5_context context,
126 : krb5_principal *principal,
127 : const EncKDCRepPart *kdcrep)
128 : {
129 : krb5_error_code ret;
130 43583 : krb5_principal p = NULL;
131 :
132 43583 : *principal = NULL;
133 :
134 43583 : ret = _krb5_principalname2krb5_principal(context,
135 : &p,
136 : kdcrep->sname,
137 : kdcrep->srealm);
138 87166 : if (ret == 0 &&
139 43583 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
140 0 : ret = krb5_enomem(context);
141 43583 : if (ret == 0)
142 43583 : p->nameattrs->authenticated = 1;
143 87166 : if (ret == 0 &&
144 87166 : (p->nameattrs->source =
145 43583 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
146 0 : ret = krb5_enomem(context);
147 43583 : if (ret == 0) {
148 43583 : p->nameattrs->source->element =
149 : choice_PrincipalNameAttrSrc_enc_kdc_rep_part;
150 43583 : ret = copy_EncKDCRepPart(kdcrep,
151 43583 : &p->nameattrs->source->u.enc_kdc_rep_part);
152 : /* NOTE: we don't want to keep a copy of the session key here! */
153 43583 : if (ret == 0)
154 43583 : der_free_octet_string(&p->nameattrs->source->u.enc_kdc_rep_part.key.keyvalue);
155 : }
156 :
157 43583 : if (ret == 0)
158 43583 : *principal = p;
159 : else
160 0 : krb5_free_principal(context, p);
161 43583 : return ret;
162 : }
|
