appl/test/uu_server.c

   1 /*
   2  * Copyright (c) 1997 - 2000, 2007 Kungliga Tekniska Högskolan
   3  * (Royal Institute of Technology, Stockholm, Sweden).
   4  * All rights reserved.
   5  *
   6  * Redistribution and use in source and binary forms, with or without
   7  * modification, are permitted provided that the following conditions
   8  * are met:
   9  *
  10  * 1. Redistributions of source code must retain the above copyright
  11  *    notice, this list of conditions and the following disclaimer.
  12  *
  13  * 2. Redistributions in binary form must reproduce the above copyright
  14  *    notice, this list of conditions and the following disclaimer in the
  15  *    documentation and/or other materials provided with the distribution.
  16  *
  17  * 3. Neither the name of the Institute nor the names of its contributors
  18  *    may be used to endorse or promote products derived from this software
  19  *    without specific prior written permission.
  20  *
  21  * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
  22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
  25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  31  * SUCH DAMAGE.
  32  */
  33
  34 #include "test_locl.h"
  35 RCSID("$Id$");
  36
  37 krb5_context context;
  38
  39 static int
  40 proto (int sock, const char *service)
  41 {
  42     struct sockaddr_in remote, local;
  43     socklen_t addrlen;
  44     krb5_address remote_addr, local_addr;
  45     krb5_ccache ccache;
  46     krb5_auth_context auth_context;
  47     krb5_error_code status;
  48     krb5_data packet;
  49     krb5_data data;
  50     krb5_data client_name;
  51     krb5_creds in_creds, *out_creds;
  52
  53     addrlen = sizeof(local);
  54     if (getsockname (sock, (struct sockaddr *)&local, &addrlen) < 0
  55         || addrlen != sizeof(local))
  56         err (1, "getsockname)");
  57
  58     addrlen = sizeof(remote);
  59     if (getpeername (sock, (struct sockaddr *)&remote, &addrlen) < 0
  60         || addrlen != sizeof(remote))
  61         err (1, "getpeername");
  62
  63     status = krb5_auth_con_init (context, &auth_context);
  64     if (status)
  65         errx (1, "krb5_auth_con_init: %s",
  66               krb5_get_err_text(context, status));
  67
  68     local_addr.addr_type = AF_INET;
  69     local_addr.address.length = sizeof(local.sin_addr);
  70     local_addr.address.data   = &local.sin_addr;
  71
  72     remote_addr.addr_type = AF_INET;
  73     remote_addr.address.length = sizeof(remote.sin_addr);
  74     remote_addr.address.data   = &remote.sin_addr;
  75
  76     status = krb5_auth_con_setaddrs (context,
  77                                      auth_context,
  78                                      &local_addr,
  79                                      &remote_addr);
  80     if (status)
  81         errx (1, "krb5_auth_con_setaddr: %s",
  82               krb5_get_err_text(context, status));
  83
  84     status = krb5_read_message(context, &sock, &client_name);
  85     if(status)
  86         krb5_err(context, 1, status, "krb5_read_message");
  87
  88     memset(&in_creds, 0, sizeof(in_creds));
  89     status = krb5_cc_default(context, &ccache);
  90     status = krb5_cc_get_principal(context, ccache, &in_creds.client);
  91
  92     status = krb5_read_message(context, &sock, &in_creds.second_ticket);
  93     if(status)
  94         krb5_err(context, 1, status, "krb5_read_message");
  95
  96     status = krb5_parse_name(context, client_name.data, &in_creds.server);
  97     if(status)
  98         krb5_err(context, 1, status, "krb5_parse_name");
  99
 100     status = krb5_get_credentials(context, KRB5_GC_USER_USER, ccache,
 101                                   &in_creds, &out_creds);
 102     if(status)
 103         krb5_err(context, 1, status, "krb5_get_credentials");
 104
 105     status = krb5_cc_default(context, &ccache);
 106
 107     status = krb5_sendauth(context,
 108                            &auth_context,
 109                            &sock,
 110                            VERSION,
 111                            in_creds.client,
 112                            in_creds.server,
 113                            AP_OPTS_USE_SESSION_KEY,
 114                            NULL,
 115                            out_creds,
 116                            ccache,
 117                            NULL,
 118                            NULL,
 119                            NULL);
 120
 121     if (status)
 122         krb5_err(context, 1, status, "krb5_sendauth");
 123
 124     {
 125         char *str;
 126         krb5_unparse_name(context, in_creds.server, &str);
 127         printf ("User is `%s'\n", str);
 128         free(str);
 129         krb5_unparse_name(context, in_creds.client, &str);
 130         printf ("Server is `%s'\n", str);
 131         free(str);
 132     }
 133
 134     krb5_data_zero (&data);
 135     krb5_data_zero (&packet);
 136
 137     status = krb5_read_message(context, &sock, &packet);
 138     if(status)
 139         krb5_err(context, 1, status, "krb5_read_message");
 140
 141     status = krb5_rd_safe (context,
 142                            auth_context,
 143                            &packet,
 144                            &data,
 145                            NULL);
 146     if (status)
 147         errx (1, "krb5_rd_safe: %s",
 148               krb5_get_err_text(context, status));
 149
 150     printf ("safe packet: %.*s\n", (int)data.length,
 151             (char *)data.data);
 152
 153     status = krb5_read_message(context, &sock, &packet);
 154     if(status)
 155         krb5_err(context, 1, status, "krb5_read_message");
 156
 157     status = krb5_rd_priv (context,
 158                            auth_context,
 159                            &packet,
 160                            &data,
 161                            NULL);
 162     if (status)
 163         errx (1, "krb5_rd_priv: %s",
 164               krb5_get_err_text(context, status));
 165
 166     printf ("priv packet: %.*s\n", (int)data.length,
 167             (char *)data.data);
 168
 169     return 0;
 170 }
 171
 172 static int
 173 doit (int port, const char *service)
 174 {
 175     int sock, sock2;
 176     struct sockaddr_in my_addr;
 177     int one = 1;
 178
 179     sock = socket (AF_INET, SOCK_STREAM, 0);
 180     if (sock < 0)
 181         err (1, "socket");
 182
 183     memset (&my_addr, 0, sizeof(my_addr));
 184     my_addr.sin_family      = AF_INET;
 185     my_addr.sin_port        = port;
 186     my_addr.sin_addr.s_addr = INADDR_ANY;
 187
 188     if (setsockopt (sock, SOL_SOCKET, SO_REUSEADDR,
 189                     (void *)&one, sizeof(one)) < 0)
 190         warn ("setsockopt SO_REUSEADDR");
 191
 192     if (bind (sock, (struct sockaddr *)&my_addr, sizeof(my_addr)) < 0)
 193         err (1, "bind");
 194
 195     if (listen (sock, 1) < 0)
 196         err (1, "listen");
 197
 198     sock2 = accept (sock, NULL, NULL);
 199     if (sock2 < 0)
 200         err (1, "accept");
 201
 202     return proto (sock2, service);
 203 }
 204
 205 int
 206 main(int argc, char **argv)
 207 {
 208     int port = server_setup(&context, argc, argv);
 209     return doit (port, service);
 210 }