Line data Source code
1 : /*
2 : * Copyright (c) 1997 Kungliga Tekniska Högskolan
3 : * (Royal Institute of Technology, Stockholm, Sweden).
4 : * All rights reserved.
5 : *
6 : * Redistribution and use in source and binary forms, with or without
7 : * modification, are permitted provided that the following conditions
8 : * are met:
9 : *
10 : * 1. Redistributions of source code must retain the above copyright
11 : * notice, this list of conditions and the following disclaimer.
12 : *
13 : * 2. Redistributions in binary form must reproduce the above copyright
14 : * notice, this list of conditions and the following disclaimer in the
15 : * documentation and/or other materials provided with the distribution.
16 : *
17 : * 3. Neither the name of the Institute nor the names of its contributors
18 : * may be used to endorse or promote products derived from this software
19 : * without specific prior written permission.
20 : *
21 : * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 : * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 : * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 : * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 : * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 : * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 : * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 : * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 : * SUCH DAMAGE.
32 : */
33 :
34 : /*
35 : *
36 : */
37 :
38 : #include "krb5_locl.h"
39 :
40 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
41 151550 : _krb5_principal2principalname(PrincipalName *p,
42 : krb5_const_principal from)
43 : {
44 151550 : return copy_PrincipalName(&from->name, p);
45 : }
46 :
47 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
48 967626 : _krb5_principalname2krb5_principal (krb5_context context,
49 : krb5_principal *principal,
50 : const PrincipalName from,
51 : const Realm realm)
52 : {
53 26939 : krb5_error_code ret;
54 26939 : krb5_principal p;
55 :
56 967626 : p = calloc(1, sizeof(*p));
57 967626 : if (p == NULL)
58 0 : return krb5_enomem(context);
59 967626 : ret = copy_PrincipalName(&from, &p->name);
60 967626 : if (ret) {
61 0 : free(p);
62 0 : return ret;
63 : }
64 967626 : p->realm = strdup(realm);
65 967626 : if (p->realm == NULL) {
66 0 : free_PrincipalName(&p->name);
67 0 : free(p);
68 0 : return krb5_enomem(context);
69 : }
70 967626 : *principal = p;
71 967626 : return 0;
72 : }
73 :
74 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
75 103840 : _krb5_ticket2krb5_principal(krb5_context context,
76 : krb5_principal *principal,
77 : const EncTicketPart *ticket,
78 : const AuthorizationData *authenticator_ad)
79 : {
80 2539 : krb5_error_code ret;
81 103840 : krb5_principal p = NULL;
82 :
83 103840 : *principal = NULL;
84 :
85 106379 : ret = _krb5_principalname2krb5_principal(context,
86 : &p,
87 : ticket->cname,
88 103840 : ticket->crealm);
89 103840 : if (ret == 0 &&
90 103840 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
91 0 : ret = krb5_enomem(context);
92 103840 : if (ret == 0)
93 103840 : p->nameattrs->authenticated = 1;
94 103840 : if (ret == 0 &&
95 103840 : (p->nameattrs->source =
96 103840 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
97 0 : ret = krb5_enomem(context);
98 103840 : if (ret == 0) {
99 103840 : p->nameattrs->source->element =
100 : choice_PrincipalNameAttrSrc_enc_ticket_part;
101 103840 : ret = copy_EncTicketPart(ticket,
102 101301 : &p->nameattrs->source->u.enc_ticket_part);
103 : /* NOTE: we don't want to keep a copy of the session key here! */
104 103840 : if (ret == 0)
105 103840 : der_free_octet_string(&p->nameattrs->source->u.enc_ticket_part.key.keyvalue);
106 : }
107 103840 : if (ret == 0 && authenticator_ad) {
108 98281 : p->nameattrs->authenticator_ad =
109 98281 : calloc(1, sizeof(p->nameattrs->authenticator_ad[0]));
110 98281 : if (p->nameattrs->authenticator_ad == NULL)
111 0 : ret = krb5_enomem(context);
112 98281 : if (ret == 0)
113 98281 : ret = copy_AuthorizationData(authenticator_ad,
114 98281 : p->nameattrs->authenticator_ad);
115 : }
116 :
117 103840 : if (ret == 0)
118 103840 : *principal = p;
119 : else
120 0 : krb5_free_principal(context, p);
121 103840 : return ret;
122 : }
123 :
124 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
125 58448 : _krb5_kdcrep2krb5_principal(krb5_context context,
126 : krb5_principal *principal,
127 : const EncKDCRepPart *kdcrep)
128 : {
129 2243 : krb5_error_code ret;
130 58448 : krb5_principal p = NULL;
131 :
132 58448 : *principal = NULL;
133 :
134 60691 : ret = _krb5_principalname2krb5_principal(context,
135 : &p,
136 : kdcrep->sname,
137 58448 : kdcrep->srealm);
138 58448 : if (ret == 0 &&
139 58448 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
140 0 : ret = krb5_enomem(context);
141 58448 : if (ret == 0)
142 58448 : p->nameattrs->authenticated = 1;
143 58448 : if (ret == 0 &&
144 58448 : (p->nameattrs->source =
145 58448 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
146 0 : ret = krb5_enomem(context);
147 58448 : if (ret == 0) {
148 58448 : p->nameattrs->source->element =
149 : choice_PrincipalNameAttrSrc_enc_kdc_rep_part;
150 58448 : ret = copy_EncKDCRepPart(kdcrep,
151 56205 : &p->nameattrs->source->u.enc_kdc_rep_part);
152 : /* NOTE: we don't want to keep a copy of the session key here! */
153 58448 : if (ret == 0)
154 58448 : der_free_octet_string(&p->nameattrs->source->u.enc_kdc_rep_part.key.keyvalue);
155 : }
156 :
157 58448 : if (ret == 0)
158 58448 : *principal = p;
159 : else
160 0 : krb5_free_principal(context, p);
161 58448 : return ret;
162 : }
|
