| blob | c20eaae557268cdffa37f59a8a5ed2ad862c83cf |
1 /*
2 * (c) Copyright 1995 HEWLETT-PACKARD COMPANY
3 *
4 * To anyone who acknowledges that this file is provided
5 * "AS IS" without any express or implied warranty:
6 * permission to use, copy, modify, and distribute this
7 * file for any purpose is hereby granted without fee,
8 * provided that the above copyright notice and this
9 * notice appears in all copies, and that the name of
10 * Hewlett-Packard Company not be used in advertising or
11 * publicity pertaining to distribution of the software
12 * without specific, written prior permission. Hewlett-
13 * Packard Company makes no representations about the
14 * suitability of this software for any purpose.
15 *
16 */
17 /*
18 * k5dcecon - Program to convert a K5 TGT to a DCE context,
19 * for use with DFS and its PAG.
20 *
21 * The program is designed to be called as a sub process,
22 * and return via stdout the name of the cache which implies
23 * the PAG which should be used. This program itself does not
24 * use the cache or PAG itself, so the PAG in the kernel for
25 * this program may not be set.
26 *
27 * The calling program can then use the name of the cache
28 * to set the KRB5CCNAME and PAG for itself and its children.
29 *
30 * If no ticket was passed, an attemplt to join an existing
31 * PAG will be made.
32 *
33 * If a forwarded K5 TGT is passed in, either a new DCE
34 * context will be created, or an existing one will be updated.
35 * If the same ticket was already used to create an existing
36 * context, it will be joined instead.
37 *
38 * Parts of this program are based on k5dceauth,c which was
39 * given to me by HP and by the k5dcelogin.c which I developed.
40 * A slightly different version of k5dcelogin.c, was added to
41 * DCE 1.2.2
42 *
43 * D. E. Engert 6/17/97 ANL
44 */
46 #include <stdio.h>
47 #include <stdlib.h>
48 #include <fcntl.h>
49 #include <sys/types.h>
50 #include <dirent.h>
51 #include <sys/stat.h>
52 #include <locale.h>
53 #include <pwd.h>
54 #include <string.h>
55 #include <time.h>
57 #include <errno.h>
60 #include <dce/sec_login.h>
61 #include <dce/dce_error.h>
62 #include <dce/passwd.h>
64 /* #define DEBUG */
65 #if defined(DEBUG)
66 #define DEEDEBUG(A) fprintf(stderr,A); fflush(stderr)
67 #define DEEDEBUG2(A,B) fprintf(stderr,A,B); fflush(stderr)
68 #else
69 #define DEEDEBUG(A)
70 #define DEEDEBUG2(A,B)
71 #endif
73 #ifdef __hpux
74 #define seteuid(A) setresuid(-1,A,-1)
75 #endif
88 #ifdef notdef
89 #ifdef _AIX
90 /*---------------------------------------------*/
91 /* AIX with DCE 1.1 does not have the com_err in the libdce.a
92 * do a half hearted job of substituting for it.
93 */
95 {
97 dce_error_string_t err_string;
100 }
102 /*---------------------------------------------*/
104 {
106 }
107 #endif
108 #endif
111 /*------------------------------------------------*/
112 /* find a cache to use for our new pag */
113 /* Since there is no simple way to determine which
114 * caches are associated with a pag, we will have
115 * do look around and see what makes most sense on
116 * different systems.
117 * on a Solaris system, and in the DCE source,
118 * the pags always start with a 41.
119 * this is not true on the IBM, where there does not
120 * appear to be any pattern.
121 *
122 * But since we are always certifing our creds when
123 * they are received, we can us that fact, and look
124 * at the first word of the associated data file
125 * to see that it has a "5". If not don't use.
126 */
129 uid_t luid;
133 krb5_flags tflags;
134 {
137 off_t size;
138 krb5_timestamp endtime;
143 krb5_timestamp prev_endtime;
144 off_t prev_size;
149 error_status_t st;
151 dce_error_string_t err_string;
159 }
163 /*
164 * (but root has the ffffffff which we are not interested in)
165 */
169 /* looks like a cache name, lets do the stat, etc */
174 /* it's one of our caches, see if it is better
175 * i.e. the endtime is farther, and if the endtimes
176 * are the same, take the larger, as he who has the
177 * most tickets wins.
178 * it must also had the same set of flags at least
179 * i.e. if the forwarded TGT is forwardable, this one must
180 * be as well.
181 */
195 }
199 }
200 }
208 }
209 }
210 }
211 }
212 }
227 }
230 /*----------------------------------------------*/
231 /* see if this cache is for this this principal */
234 uid_t luid;
239 {
241 krb5_ccache cache;
247 /* DEEDEBUG2("k5dcematch called: cache=%s\n",ccname+38); */
254 /* DEEDEBUG2("Checking the .data file for %s\n",ccdata); */
268 }
270 /* DEEDEBUG2(".data file status = %d\n", status); */
282 }
285 }
288 /*----------------------------------------*/
289 /* k5dcegettgt - get the tgt from a cache */
297 {
298 krb5_ccache cache;
299 krb5_cc_cursor cur;
300 krb5_creds creds;
303 krb5_principal princ;
305 krb5_flags flags;
308 /* Since DCE does not expose much of the Kerberos interface,
309 * we will have to use what we can. This means setting the
310 * KRB5CCNAME for each file we want to test
311 * We will also not worry about freeing extra cache structures
312 * as this this routine is also not exposed, and this should not
313 * effect this module.
314 * We should also free the creds contents, but that is not exposed
315 * either.
316 */
325 }
332 }
337 }
342 }
349 }
353 realm++;
358 }
369 }
377 }
384 }
387 }
388 /* we should do a krb5_free_cred_contents(creds); */
389 }
394 }
396 return1:
400 return2:
405 }
408 /*------------------------------------------*/
409 /* Convert a forwarded TGT to a DCE context */
411 uid_t luid;
414 {
418 unsigned32 dfspag;
421 dce_error_string_t err_string;
423 krb5_ccache fcache;
430 krb5_timestamp endtime;
433 /* If there is no cache to be converted, we should not be here */
438 }
443 }
450 }
454 #define TKT_ACCEPTABLE (TKT_FLG_FORWARDABLE | TKT_FLG_PROXIABLE \
455 | TKT_FLG_MAY_POSTDATE | TKT_FLG_RENEWABLE | TKT_FLG_HW_AUTH \
456 | TKT_FLG_PRE_AUTH)
466 }
467 }
468 /* see if the tgts match up */
472 }
474 /*
475 * Destroy the Kerberos5 cred cache file.
476 * but dont care aout the return code.
477 */
482 }
484 }
487 /*--------------------------------------------------*/
488 /* k5dceupdate - update the cache with a new TGT */
489 /* Assumed that the KRB5CCNAME has been set */
494 {
496 krb5_ccache ccache;
502 }
507 }
509 /* krb5_cc_store_cred */
513 }
517 }
518 /*--------------------------------------------------*/
519 /* k5dcecreate - create a new DCE context */
522 uid_t luid;
526 {
532 uid_t uid;
534 error_status_t st;
539 dce_error_string_t err_string;
546 /* if run as root, change to user, so as to have the
547 * cache created for the local user even if cross-cell
548 * If run as a user, let standard file protection work.
549 */
554 }
563 /* now build the username as a single string or a /.../cell/user
564 * if this is a cross cell
565 */
570 }
574 }
584 }
586 /*
587 * Setup a DCE login context
588 */
593 /*
594 * Add our TGT.
595 */
604 }
606 /*
607 * Now "validate" and certify the identity,
608 * usually we would pass a password here, but...
609 * sec_login_valid_and_cert_ident
610 * sec_login_validate_identity
611 */
621 }
626 }
630 }
634 username);
635 }
637 fprintf(stderr, "Validated %s from local override entry, no network credentials obtained\n", username);
640 }
641 /*
642 * Actually create the cred files.
643 */
652 }
654 /*
655 * Now free up the local context and leave the
656 * network context with its pag
657 */
658 #if 0
666 }
667 #endif
668 }
674 err_string);
676 }
677 }
684 }
686 done:
687 /* if we were root, get back to root */
694 }
699 abort:
702 }
706 }
710 /*-------------------------------------------------*/
714 {
724 uid_t luid;
725 uid_t myuid;
729 #ifdef DEBUG
732 #endif
737 }
751 fflag++;
755 }
756 }
762 /* if lusername == NULL, Then user is passed as the USER= variable */
769 }
770 }
775 }
783 }
788 }
792 }