2 * Copyright (c) 2008 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "gsskrb5_locl.h"
38 OM_uint32 GSSAPI_CALLCONV
39 _gk_wrap_iov(OM_uint32
* minor_status
,
40 gss_ctx_id_t context_handle
,
44 gss_iov_buffer_desc
*iov
,
47 const gsskrb5_ctx ctx
= (const gsskrb5_ctx
) context_handle
;
53 GSSAPI_KRB5_INIT (&context
);
55 if (ctx
->more_flags
& IS_CFX
)
56 return _gssapi_wrap_cfx_iov(minor_status
, ctx
, context
,
57 conf_req_flag
, conf_state
,
60 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
61 ret
= _gsskrb5i_get_token_key(ctx
, context
, &key
);
62 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
67 krb5_enctype_to_keytype(context
, key
->keytype
, &keytype
);
71 case KEYTYPE_ARCFOUR_56
:
72 ret
= _gssapi_wrap_iov_arcfour(minor_status
, ctx
, context
,
73 conf_req_flag
, conf_state
,
82 krb5_free_keyblock(context
, key
);
86 OM_uint32 GSSAPI_CALLCONV
87 _gk_unwrap_iov(OM_uint32
*minor_status
,
88 gss_ctx_id_t context_handle
,
91 gss_iov_buffer_desc
*iov
,
94 const gsskrb5_ctx ctx
= (const gsskrb5_ctx
) context_handle
;
100 GSSAPI_KRB5_INIT (&context
);
102 if (ctx
->more_flags
& IS_CFX
)
103 return _gssapi_unwrap_cfx_iov(minor_status
, ctx
, context
,
104 conf_state
, qop_state
, iov
, iov_count
);
106 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
107 ret
= _gsskrb5i_get_token_key(ctx
, context
, &key
);
108 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
111 return GSS_S_FAILURE
;
113 krb5_enctype_to_keytype(context
, key
->keytype
, &keytype
);
116 case KEYTYPE_ARCFOUR
:
117 case KEYTYPE_ARCFOUR_56
:
118 ret
= _gssapi_unwrap_iov_arcfour(minor_status
, ctx
, context
,
119 conf_state
, qop_state
,
120 iov
, iov_count
, key
);
128 krb5_free_keyblock(context
, key
);
132 OM_uint32 GSSAPI_CALLCONV
133 _gk_wrap_iov_length(OM_uint32
* minor_status
,
134 gss_ctx_id_t context_handle
,
138 gss_iov_buffer_desc
*iov
,
141 const gsskrb5_ctx ctx
= (const gsskrb5_ctx
) context_handle
;
142 krb5_context context
;
144 krb5_keytype keytype
;
147 GSSAPI_KRB5_INIT (&context
);
149 if (ctx
->more_flags
& IS_CFX
)
150 return _gssapi_wrap_iov_length_cfx(minor_status
, ctx
, context
,
151 conf_req_flag
, qop_req
, conf_state
,
154 HEIMDAL_MUTEX_lock(&ctx
->ctx_id_mutex
);
155 ret
= _gsskrb5i_get_token_key(ctx
, context
, &key
);
156 HEIMDAL_MUTEX_unlock(&ctx
->ctx_id_mutex
);
159 return GSS_S_FAILURE
;
161 krb5_enctype_to_keytype(context
, key
->keytype
, &keytype
);
164 case KEYTYPE_ARCFOUR
:
165 case KEYTYPE_ARCFOUR_56
:
166 ret
= _gssapi_wrap_iov_length_arcfour(minor_status
, ctx
, context
,
167 conf_req_flag
, qop_req
, conf_state
,
176 krb5_free_keyblock(context
, key
);