search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3:winbindd: use wb_sids2xids instead of wb_sid2uid in winbindd_sid_to_uid
[Samba/gebeck_regimport.git] / source4 / auth / gensec / gensec_krb5_util.c
blob44cb39c51822bab61a1a38c384018934f644a7ab
1 /*
2 * Copyright (c) 1997 - 2006 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 /* This file for code taken from the Heimdal code, to preserve licence */
35 /* Modified by Andrew Bartlett <abartlet@samba.org> */
36
37 #include "includes.h"
38 #include "system/kerberos.h"
39 #include "auth/kerberos/kerberos.h"
40
41 /* Taken from accept_sec_context.c,v 1.65 */
42 krb5_error_code smb_rd_req_return_stuff(krb5_context context,
43 krb5_auth_context *auth_context,
44 const krb5_data *inbuf,
45 krb5_keytab keytab,
46 krb5_principal acceptor_principal,
47 krb5_data *outbuf,
48 krb5_ticket **ticket,
49 krb5_keyblock **keyblock)
50 {
51 krb5_rd_req_in_ctx in = NULL;
52 krb5_rd_req_out_ctx out = NULL;
53 krb5_error_code kret;
54
55 *keyblock = NULL;
56 *ticket = NULL;
57 outbuf->length = 0;
58 outbuf->data = NULL;
59
60 kret = krb5_rd_req_in_ctx_alloc(context, &in);
61 if (kret == 0)
62 kret = krb5_rd_req_in_set_keytab(context, in, keytab);
63 if (kret) {
64 if (in)
65 krb5_rd_req_in_ctx_free(context, in);
66 return kret;
67 }
68
69 kret = krb5_rd_req_ctx(context,
70 auth_context,
71 inbuf,
72 acceptor_principal,
73 in, &out);
74 krb5_rd_req_in_ctx_free(context, in);
75 if (kret) {
76 return kret;
77 }
78
79 /*
80 * We need to remember some data on the context_handle.
81 */
82 kret = krb5_rd_req_out_get_ticket(context, out,
83 ticket);
84 if (kret == 0) {
85 kret = krb5_rd_req_out_get_keyblock(context, out,
86 keyblock);
87 }
88 krb5_rd_req_out_ctx_free(context, out);
89
90 if (kret == 0) {
91 kret = krb5_mk_rep(context, *auth_context, outbuf);
92 }
93
94 if (kret) {
95 krb5_free_ticket(context, *ticket);
96 krb5_free_keyblock(context, *keyblock);
97 krb5_data_free(outbuf);
98 }
99
100 return kret;
101 }
102
reg import