2 * Copyright (c) 1997 - 2000 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "test_locl.h"
37 #include "nt_gss_common.h"
42 * This program tries to act as a server for the sample in `Sample
43 * SSPI Code' in Windows 2000 RC1 SDK.
45 * use --dump-auth to get a binary dump of the authorization data in the ticket
49 static int version_flag
;
50 static char *port_str
;
51 char *service
= SERVICE
;
52 static char *auth_file
;
54 static struct getargs args
[] = {
55 { "port", 'p', arg_string
, &port_str
, "port to listen to", "port" },
56 { "service", 's', arg_string
, &service
, "service to use", "service" },
57 { "dump-auth", 0, arg_string
, &auth_file
, "dump authorization data",
59 { "help", 'h', arg_flag
, &help_flag
},
60 { "version", 0, arg_flag
, &version_flag
}
63 static int num_args
= sizeof(args
) / sizeof(args
[0]);
66 proto (int sock
, const char *service
)
68 struct sockaddr_in remote
, local
;
70 gss_ctx_id_t context_hdl
= GSS_C_NO_CONTEXT
;
71 gss_buffer_t input_token
, output_token
;
72 gss_buffer_desc real_input_token
, real_output_token
;
73 OM_uint32 maj_stat
, min_stat
;
74 gss_name_t client_name
;
75 gss_buffer_desc name_token
;
77 addrlen
= sizeof(local
);
78 if (getsockname (sock
, (struct sockaddr
*)&local
, &addrlen
) < 0
79 || addrlen
!= sizeof(local
))
80 err (1, "getsockname)");
82 addrlen
= sizeof(remote
);
83 if (getpeername (sock
, (struct sockaddr
*)&remote
, &addrlen
) < 0
84 || addrlen
!= sizeof(remote
))
85 err (1, "getpeername");
87 input_token
= &real_input_token
;
88 output_token
= &real_output_token
;
91 nt_read_token (sock
, input_token
);
93 gss_accept_sec_context (&min_stat
,
97 GSS_C_NO_CHANNEL_BINDINGS
,
104 if(GSS_ERROR(maj_stat
))
105 gss_err (1, min_stat
, "gss_accept_sec_context");
106 if (output_token
->length
!= 0)
107 nt_write_token (sock
, output_token
);
108 if (GSS_ERROR(maj_stat
)) {
109 if (context_hdl
!= GSS_C_NO_CONTEXT
)
110 gss_delete_sec_context (&min_stat
,
115 } while(maj_stat
& GSS_S_CONTINUE_NEEDED
);
117 if (auth_file
!= NULL
) {
118 int fd
= open (auth_file
, O_WRONLY
| O_CREAT
, 0666);
123 ticket
= context_hdl
->ticket
;
124 data
= &ticket
->ticket
.authorization_data
->val
[0].ad_data
;
127 err (1, "open %s", auth_file
);
128 if (write (fd
, data
->data
, data
->length
) != data
->length
)
129 errx (1, "write to %s failed", auth_file
);
132 err (1, "close %s", auth_file
);
135 maj_stat
= gss_display_name (&min_stat
,
139 if (GSS_ERROR(maj_stat
))
140 gss_err (1, min_stat
, "gss_display_name");
142 fprintf (stderr
, "User is `%.*s'\n", (int)name_token
.length
,
143 (char *)name_token
.value
);
145 /* write something back */
147 output_token
->value
= strdup ("hejsan");
148 output_token
->length
= strlen (output_token
->value
) + 1;
149 nt_write_token (sock
, output_token
);
151 output_token
->value
= strdup ("hoppsan");
152 output_token
->length
= strlen (output_token
->value
) + 1;
153 nt_write_token (sock
, output_token
);
159 doit (int port
, const char *service
)
162 struct sockaddr_in my_addr
;
165 sock
= socket (AF_INET
, SOCK_STREAM
, 0);
169 memset (&my_addr
, 0, sizeof(my_addr
));
170 my_addr
.sin_family
= AF_INET
;
171 my_addr
.sin_port
= port
;
172 my_addr
.sin_addr
.s_addr
= INADDR_ANY
;
174 if (setsockopt (sock
, SOL_SOCKET
, SO_REUSEADDR
,
175 (void *)&one
, sizeof(one
)) < 0)
176 warn ("setsockopt SO_REUSEADDR");
178 if (bind (sock
, (struct sockaddr
*)&my_addr
, sizeof(my_addr
)) < 0)
181 if (listen (sock
, 1) < 0)
184 sock2
= accept (sock
, NULL
, NULL
);
188 return proto (sock2
, service
);
192 usage(int code
, struct getargs
*args
, int num_args
)
194 arg_printusage(args
, num_args
, NULL
, "");
199 common_setup(krb5_context
*context
, int *argc
, char **argv
,
200 void (*usage
)(int, struct getargs
*, int))
203 *argc
= krb5_program_setup(context
, *argc
, argv
, args
, num_args
, usage
);
206 (*usage
)(0, args
, num_args
);
213 struct servent
*s
= roken_getservbyname(port_str
, "tcp");
219 port
= strtol (port_str
, &ptr
, 10);
220 if (port
== 0 && ptr
== port_str
)
221 errx (1, "Bad port `%s'", port_str
);
227 port
= krb5_getportbyname (*context
, PORT
, "tcp", 4711);
233 setup(krb5_context
*context
, int argc
, char **argv
)
235 int port
= common_setup(context
, &argc
, argv
, usage
);
236 if(argv
[argc
] != NULL
)
237 usage(1, args
, num_args
);
242 main(int argc
, char **argv
)
244 krb5_context context
= NULL
; /* XXX */
245 int port
= setup(&context
, argc
, argv
);
246 return doit (port
, service
);