| blob | 63f254d0022ae95c267a81c147713c402e3207bd |
2 /*
3 * Copyright (c) 1997 - 2001, 2003 - 2004 Kungliga Tekniska Högskolan
4 * (Royal Institute of Technology, Stockholm, Sweden).
5 * All rights reserved.
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 *
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 *
14 * 2. Redistributions in binary form must reproduce the above copyright
15 * notice, this list of conditions and the following disclaimer in the
16 * documentation and/or other materials provided with the distribution.
17 *
18 * 3. Neither the name of the Institute nor the names of its contributors
19 * may be used to endorse or promote products derived from this software
20 * without specific prior written permission.
21 *
22 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * SUCH DAMAGE.
33 */
37 /*
38 * free all the memory used by (len, keys)
39 */
41 void
43 {
53 }
55 }
57 }
59 /*
60 * for each entry in `default_keys' try to parse it as a sequence
61 * of etype:salttype:salt, syntax of this if something like:
62 * [(des|des3|etype):](pw-salt|afs3)[:string], if etype is omitted it
63 * means all etypes, and if string is omitted is means the default
64 * string (for that principal). Additional special values:
65 * v5 == pw-salt, and
66 * v4 == des:pw-salt:
67 * afs or afs3 == des:afs3-salt
68 */
71 ETYPE_DES_CBC_MD5,
72 ETYPE_DES_CBC_MD4,
73 ETYPE_DES_CBC_CRC
74 };
77 ETYPE_AES256_CTS_HMAC_SHA1_96,
78 ETYPE_ARCFOUR_HMAC_MD5,
79 ETYPE_DES3_CBC_SHA1
80 };
82 static krb5_error_code
86 {
91 krb5_enctype e;
93 krb5_error_code ret;
100 /* split p in a list of :-separated strings */
110 /* this might be a etype specifier */
111 /* XXX there should be a string_to_etypes handling
112 special cases like `des' and `all' */
127 }
129 }
131 /* interpret string as a salt specifier, if no etype
132 is set, this sets default values */
133 /* XXX should perhaps use string_to_salttype, but that
134 interface sucks */
139 }
145 }
147 }
149 }
151 {
152 /* if there is a final string, use it as the string to
153 salt with, this is mostly useful with null salt for
154 v4 compat, and a cell name for afs compat */
159 }
161 }
162 }
167 }
169 /* if no salt was specified make up default salt */
178 "out of memory while "
181 }
184 }
185 }
192 }
197 }
199 static krb5_error_code
202 {
203 krb5_error_code ret;
223 }
234 }
243 }
246 /*
247 * Generate the `key_set' from the [kadmin]default_keys statement. If
248 * `no_salt' is set, salt is not important (and will not be set) since
249 * it's random keys that is going to be created.
250 */
252 krb5_error_code
255 {
257 krb5_error_code ret;
264 NULL
265 };
279 krb5_salt salt;
284 /* check alias */
302 }
305 /* find duplicates */
320 }
321 }
322 /* not a duplicate, lets add it */
330 }
331 }
332 }
335 }
339 out:
354 }
357 }
360 krb5_error_code
362 krb5_principal principal,
365 {
366 krb5_error_code ret;
375 krb5_salt salt;
383 password,
384 salt,
389 }
394 }
396 }