1/* 2 * Copyright (c) 1997 - 2006 Kungliga Tekniska H�gskolan 3 * (Royal Institute of Technology, Stockholm, Sweden). 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 17 * 3. Neither the name of the Institute nor the names of its contributors 18 * may be used to endorse or promote products derived from this software 19 * without specific prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND 22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE 25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 */ 33 34/* This file for code taken from the Heimdal code, to preserve licence */ 35/* Modified by Andrew Bartlett <abartlet@samba.org> */ 36 37#include "includes.h" 38#include "system/kerberos.h" 39#include "auth/kerberos/kerberos.h" 40 41/* Taken from accept_sec_context.c,v 1.65 */ 42krb5_error_code smb_rd_req_return_stuff(krb5_context context, 43 krb5_auth_context *auth_context, 44 const krb5_data *inbuf, 45 krb5_keytab keytab, 46 krb5_principal acceptor_principal, 47 krb5_data *outbuf, 48 krb5_ticket **ticket, 49 krb5_keyblock **keyblock) 50{ 51 krb5_rd_req_in_ctx in = NULL; 52 krb5_rd_req_out_ctx out = NULL; 53 krb5_error_code kret; 54 55 *keyblock = NULL; 56 *ticket = NULL; 57 outbuf->length = 0; 58 outbuf->data = NULL; 59 60 kret = krb5_rd_req_in_ctx_alloc(context, &in); 61 if (kret == 0) 62 kret = krb5_rd_req_in_set_keytab(context, in, keytab); 63 if (kret) { 64 if (in) 65 krb5_rd_req_in_ctx_free(context, in); 66 return kret; 67 } 68 69 kret = krb5_rd_req_ctx(context, 70 auth_context, 71 inbuf, 72 acceptor_principal, 73 in, &out); 74 krb5_rd_req_in_ctx_free(context, in); 75 if (kret) { 76 return kret; 77 } 78 79 /* 80 * We need to remember some data on the context_handle. 81 */ 82 kret = krb5_rd_req_out_get_ticket(context, out, 83 ticket); 84 if (kret == 0) { 85 kret = krb5_rd_req_out_get_keyblock(context, out, 86 keyblock); 87 } 88 krb5_rd_req_out_ctx_free(context, out); 89 90 if (kret == 0) { 91 kret = krb5_mk_rep(context, *auth_context, outbuf); 92 } 93 94 if (kret) { 95 krb5_free_ticket(context, *ticket); 96 krb5_free_keyblock(context, *keyblock); 97 krb5_data_free(outbuf); 98 } 99 100 return kret; 101} 102 103