2 * Copyright (c) 1999 - 2000 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "gssapi_locl.h"
39 gss_export_sec_context (
40 OM_uint32
* minor_status
,
41 gss_ctx_id_t
* context_handle
,
42 gss_buffer_t interprocess_token
47 unsigned char auth_buf
[1024];
51 gss_buffer_desc buffer
;
55 if (!((*context_handle
)->flags
& GSS_C_TRANS_FLAG
))
56 return GSS_S_UNAVAILABLE
;
58 sp
= krb5_storage_emem ();
60 *minor_status
= ENOMEM
;
63 ac
= (*context_handle
)->auth_context
;
65 /* flagging included fields */
68 if (ac
->local_address
)
69 flags
|= SC_LOCAL_ADDRESS
;
70 if (ac
->remote_address
)
71 flags
|= SC_REMOTE_ADDRESS
;
75 flags
|= SC_LOCAL_SUBKEY
;
76 if (ac
->remote_subkey
)
77 flags
|= SC_REMOTE_SUBKEY
;
79 krb5_store_int32 (sp
, flags
);
81 /* marshall auth context */
83 krb5_store_int32 (sp
, ac
->flags
);
84 if (ac
->local_address
)
85 krb5_store_address (sp
, *ac
->local_address
);
86 if (ac
->remote_address
)
87 krb5_store_address (sp
, *ac
->remote_address
);
88 krb5_store_int16 (sp
, ac
->local_port
);
89 krb5_store_int16 (sp
, ac
->remote_port
);
91 krb5_store_keyblock (sp
, *ac
->keyblock
);
93 krb5_store_keyblock (sp
, *ac
->local_subkey
);
94 if (ac
->remote_subkey
)
95 krb5_store_keyblock (sp
, *ac
->remote_subkey
);
96 krb5_store_int32 (sp
, ac
->local_seqnumber
);
97 krb5_store_int32 (sp
, ac
->remote_seqnumber
);
100 ret
= encode_Authenticator (auth_buf
, sizeof(auth_buf
),
101 ac
->authenticator
, &sz
);
103 krb5_storage_free (sp
);
105 return GSS_S_FAILURE
;
107 data
.data
= auth_buf
;
109 krb5_store_data (sp
, data
);
111 krb5_store_int32 (sp
, ac
->keytype
);
112 krb5_store_int32 (sp
, ac
->cksumtype
);
116 gss_export_name (minor_status
, (*context_handle
)->source
, &buffer
);
117 data
.data
= buffer
.value
;
118 data
.length
= buffer
.length
;
119 krb5_store_data (sp
, data
);
121 gss_export_name (minor_status
, (*context_handle
)->target
, &buffer
);
122 data
.data
= buffer
.value
;
123 data
.length
= buffer
.length
;
124 krb5_store_data (sp
, data
);
126 krb5_store_int32 (sp
, (*context_handle
)->flags
);
127 krb5_store_int32 (sp
, (*context_handle
)->more_flags
);
129 ret
= krb5_storage_to_data (sp
, &data
);
130 krb5_storage_free (sp
);
133 return GSS_S_FAILURE
;
135 interprocess_token
->length
= data
.length
;
136 interprocess_token
->value
= data
.data
;
137 ret
= gss_delete_sec_context (minor_status
, context_handle
,
139 if (ret
!= GSS_S_COMPLETE
)
140 gss_release_buffer (NULL
, interprocess_token
);