Line data Source code
1 : /*
2 : * Copyright (c) 1997 Kungliga Tekniska Högskolan
3 : * (Royal Institute of Technology, Stockholm, Sweden).
4 : * All rights reserved.
5 : *
6 : * Redistribution and use in source and binary forms, with or without
7 : * modification, are permitted provided that the following conditions
8 : * are met:
9 : *
10 : * 1. Redistributions of source code must retain the above copyright
11 : * notice, this list of conditions and the following disclaimer.
12 : *
13 : * 2. Redistributions in binary form must reproduce the above copyright
14 : * notice, this list of conditions and the following disclaimer in the
15 : * documentation and/or other materials provided with the distribution.
16 : *
17 : * 3. Neither the name of the Institute nor the names of its contributors
18 : * may be used to endorse or promote products derived from this software
19 : * without specific prior written permission.
20 : *
21 : * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 : * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 : * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 : * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 : * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 : * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 : * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 : * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 : * SUCH DAMAGE.
32 : */
33 :
34 : /*
35 : *
36 : */
37 :
38 : #include "krb5_locl.h"
39 :
40 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
41 152411 : _krb5_principal2principalname(PrincipalName *p,
42 : krb5_const_principal from)
43 : {
44 152411 : return copy_PrincipalName(&from->name, p);
45 : }
46 :
47 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
48 970165 : _krb5_principalname2krb5_principal (krb5_context context,
49 : krb5_principal *principal,
50 : const PrincipalName from,
51 : const Realm realm)
52 : {
53 26939 : krb5_error_code ret;
54 26939 : krb5_principal p;
55 :
56 970165 : p = calloc(1, sizeof(*p));
57 970165 : if (p == NULL)
58 0 : return krb5_enomem(context);
59 970165 : ret = copy_PrincipalName(&from, &p->name);
60 970165 : if (ret) {
61 0 : free(p);
62 0 : return ret;
63 : }
64 970165 : p->realm = strdup(realm);
65 970165 : if (p->realm == NULL) {
66 0 : free_PrincipalName(&p->name);
67 0 : free(p);
68 0 : return krb5_enomem(context);
69 : }
70 970165 : *principal = p;
71 970165 : return 0;
72 : }
73 :
74 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
75 103970 : _krb5_ticket2krb5_principal(krb5_context context,
76 : krb5_principal *principal,
77 : const EncTicketPart *ticket,
78 : const AuthorizationData *authenticator_ad)
79 : {
80 2539 : krb5_error_code ret;
81 103970 : krb5_principal p = NULL;
82 :
83 103970 : *principal = NULL;
84 :
85 106509 : ret = _krb5_principalname2krb5_principal(context,
86 : &p,
87 : ticket->cname,
88 103970 : ticket->crealm);
89 103970 : if (ret == 0 &&
90 103970 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
91 0 : ret = krb5_enomem(context);
92 103970 : if (ret == 0)
93 103970 : p->nameattrs->authenticated = 1;
94 103970 : if (ret == 0 &&
95 103970 : (p->nameattrs->source =
96 103970 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
97 0 : ret = krb5_enomem(context);
98 103970 : if (ret == 0) {
99 103970 : p->nameattrs->source->element =
100 : choice_PrincipalNameAttrSrc_enc_ticket_part;
101 103970 : ret = copy_EncTicketPart(ticket,
102 101431 : &p->nameattrs->source->u.enc_ticket_part);
103 : /* NOTE: we don't want to keep a copy of the session key here! */
104 103970 : if (ret == 0)
105 103970 : der_free_octet_string(&p->nameattrs->source->u.enc_ticket_part.key.keyvalue);
106 : }
107 103970 : if (ret == 0 && authenticator_ad) {
108 98411 : p->nameattrs->authenticator_ad =
109 98411 : calloc(1, sizeof(p->nameattrs->authenticator_ad[0]));
110 98411 : if (p->nameattrs->authenticator_ad == NULL)
111 0 : ret = krb5_enomem(context);
112 98411 : if (ret == 0)
113 98411 : ret = copy_AuthorizationData(authenticator_ad,
114 98411 : p->nameattrs->authenticator_ad);
115 : }
116 :
117 103970 : if (ret == 0)
118 103970 : *principal = p;
119 : else
120 0 : krb5_free_principal(context, p);
121 103970 : return ret;
122 : }
123 :
124 : KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
125 58780 : _krb5_kdcrep2krb5_principal(krb5_context context,
126 : krb5_principal *principal,
127 : const EncKDCRepPart *kdcrep)
128 : {
129 2243 : krb5_error_code ret;
130 58780 : krb5_principal p = NULL;
131 :
132 58780 : *principal = NULL;
133 :
134 61023 : ret = _krb5_principalname2krb5_principal(context,
135 : &p,
136 : kdcrep->sname,
137 58780 : kdcrep->srealm);
138 58780 : if (ret == 0 &&
139 58780 : (p->nameattrs = calloc(1, sizeof(p->nameattrs[0]))) == NULL)
140 0 : ret = krb5_enomem(context);
141 58780 : if (ret == 0)
142 58780 : p->nameattrs->authenticated = 1;
143 58780 : if (ret == 0 &&
144 58780 : (p->nameattrs->source =
145 58780 : calloc(1, sizeof(p->nameattrs->source[0]))) == NULL)
146 0 : ret = krb5_enomem(context);
147 58780 : if (ret == 0) {
148 58780 : p->nameattrs->source->element =
149 : choice_PrincipalNameAttrSrc_enc_kdc_rep_part;
150 58780 : ret = copy_EncKDCRepPart(kdcrep,
151 56537 : &p->nameattrs->source->u.enc_kdc_rep_part);
152 : /* NOTE: we don't want to keep a copy of the session key here! */
153 58780 : if (ret == 0)
154 58780 : der_free_octet_string(&p->nameattrs->source->u.enc_kdc_rep_part.key.keyvalue);
155 : }
156 :
157 58780 : if (ret == 0)
158 58780 : *principal = p;
159 : else
160 0 : krb5_free_principal(context, p);
161 58780 : return ret;
162 : }
|