| blob | 3ffa89dfa937c096197523cadb9514712e0fe50f |
1 /* principal.c get and set default principal
2 * Copyright (C) 2002, 2003 Simon Josefsson
3 *
4 * This file is part of Shishi.
5 *
6 * Shishi is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * Shishi is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with Shishi; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19 *
20 */
24 /**
25 * shishi_principal_default_guess:
26 *
27 * Guesses a principal using getpwuid(getuid)), or if it fails, the
28 * string "user".
29 *
30 * Return value: Returns guessed default principal for user as a string that
31 * has to be deallocated with free() by the caller.
32 **/
35 {
36 uid_t uid;
44 else
46 }
49 /**
50 * shishi_principal_default:
51 * @handle: Shishi library handle create by shishi_init().
52 *
53 * Return value: Returns the default principal name used in the
54 * library. (Not a copy of it, so don't modify or deallocate it.)
55 **/
58 {
60 {
65 }
68 }
70 /**
71 * shishi_principal_default_set:
72 * @handle: Shishi library handle create by shishi_init().
73 * @principal: string with new default principal name, or NULL to
74 * reset to default.
75 *
76 * Set the default realm used in the library. The string is copied
77 * into the library, so you can dispose of the variable immediately
78 * after calling this function.
79 **/
80 void
82 {
87 else
89 }
91 int
94 {
109 {
112 }
115 {
129 }
134 }
136 /*
137 2.1.1. Kerberos Principal Name Form
139 This name form shall be represented by the Object Identifier {iso(1)
140 member-body(2) United States(840) mit(113554) infosys(1) gssapi(2)
141 krb5(2) krb5_name(1)}. The recommended symbolic name for this type
142 is "GSS_KRB5_NT_PRINCIPAL_NAME".
144 This name type corresponds to the single-string representation of a
145 Kerberos name. (Within the MIT Kerberos V5 implementation, such
146 names are parseable with the krb5_parse_name() function.) The
147 elements included within this name representation are as follows,
148 proceeding from the beginning of the string:
150 (1) One or more principal name components; if more than one
151 principal name component is included, the components are
152 separated by `/`. Arbitrary octets may be included within
153 principal name components, with the following constraints and
154 special considerations:
156 (1a) Any occurrence of the characters `@` or `/` within a
157 name component must be immediately preceded by the `\`
158 quoting character, to prevent interpretation as a component
159 or realm separator.
161 (1b) The ASCII newline, tab, backspace, and null characters
162 may occur directly within the component or may be
163 represented, respectively, by `\n`, `\t`, `\b`, or `\0`.
165 (1c) If the `\` quoting character occurs outside the contexts
166 described in (1a) and (1b) above, the following character is
167 interpreted literally. As a special case, this allows the
168 doubled representation `\\` to represent a single occurrence
169 of the quoting character.
171 (1d) An occurrence of the `\` quoting character as the last
172 character of a component is illegal.
174 (2) Optionally, a `@` character, signifying that a realm name
175 immediately follows. If no realm name element is included, the
176 local realm name is assumed. The `/` , `:`, and null characters
177 may not occur within a realm name; the `@`, newline, tab, and
178 backspace characters may be included using the quoting
179 conventions described in (1a), (1b), and (1c) above.
180 */
182 int
184 Shishi_asn1 namenode,
186 {
193 /* FIXME: allocate output instead of writing inline */
203 {
212 {
214 {
219 len++;
220 totlen++;
221 j++;
222 }
223 totlen++;
224 }
227 {
231 totlen++;
232 }
233 }
238 }
240 int
242 Shishi_asn1 namenode,
244 Shishi_asn1 realmnode,
247 {
252 /* FIXME: allocate output instead of writing inline */
260 {
268 }
270 {
281 totlen--;
284 else
286 }
291 }
293 /**
294 * shishi_principal_name_set:
295 * @handle: shishi handle as allocated by shishi_init().
296 * @namenode: ASN.1 structure with principal in @namefield.
297 * @namefield: name of field in namenode containing principal name.
298 * @name_type: type of principial, see Shishi_name_type, usually
299 * SHISHI_NT_UNKNOWN.
300 * @name: zero-terminated input array with principal name.
301 *
302 * Set the given principal name field to given name.
303 *
304 * Return value: Returns SHISHI_OK iff successful.
305 **/
306 int
308 Shishi_asn1 namenode,
311 {
330 {
343 i++;
344 }
347 }
349 /**
350 * shishi_principal_set:
351 * @handle: shishi handle as allocated by shishi_init().
352 * @namenode: ASN.1 structure with principal in @namefield.
353 * @namefield: name of field in namenode containing principal name.
354 * @name: zero-terminated string with principal name on RFC 1964 form.
355 *
356 * Set principal name field in ASN.1 structure to given name.
357 *
358 * Return value: Returns SHISHI_OK iff successful.
359 **/
360 int
362 Shishi_asn1 namenode,
364 {
376 {
378 }
385 {
389 }
392 }
396 {
411 }