del_enctype.c revision 72445
1/* 2 * Copyright (c) 1999-2000 Kungliga Tekniska H�gskolan 3 * (Royal Institute of Technology, Stockholm, Sweden). 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 17 * 3. Neither the name of the Institute nor the names of its contributors 18 * may be used to endorse or promote products derived from this software 19 * without specific prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND 22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE 25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 */ 33 34#include "kadmin_locl.h" 35 36RCSID("$Id: del_enctype.c,v 1.6 2000/09/10 19:17:23 joda Exp $"); 37 38/* 39 * del_enctype principal enctypes... 40 */ 41 42static struct getargs args[] = { 43 { "help", 'h', arg_flag, NULL } 44}; 45 46static int num_args = sizeof(args) / sizeof(args[0]); 47 48static void 49usage(void) 50{ 51 arg_printusage (args, num_args, "del_enctype", "principal enctypes..."); 52} 53 54 55int 56del_enctype(int argc, char **argv) 57{ 58 int optind = 0; 59 int help_flag = 0; 60 61 kadm5_principal_ent_rec princ; 62 krb5_principal princ_ent = NULL; 63 krb5_error_code ret; 64 const char *princ_name; 65 int i, j, k; 66 krb5_key_data *new_key_data; 67 int n_etypes; 68 krb5_enctype *etypes; 69 70 args[0].value = &help_flag; 71 72 if(getarg(args, num_args, argc, argv, &optind)) { 73 usage (); 74 return 0; 75 } 76 if(argc - optind < 3 || help_flag) { 77 usage (); 78 return 0; 79 } 80 81 memset (&princ, 0, sizeof(princ)); 82 princ_name = argv[1]; 83 n_etypes = argc - 2; 84 etypes = malloc (n_etypes * sizeof(*etypes)); 85 if (etypes == NULL) { 86 krb5_warnx (context, "out of memory"); 87 return 0; 88 } 89 for (i = 0; i < n_etypes; ++i) { 90 ret = krb5_string_to_enctype (context, argv[i + 2], &etypes[i]); 91 if (ret) { 92 krb5_warnx (context, "bad enctype `%s'", argv[i + 2]); 93 goto out2; 94 } 95 } 96 97 ret = krb5_parse_name(context, princ_name, &princ_ent); 98 if (ret) { 99 krb5_warn (context, ret, "krb5_parse_name %s", princ_name); 100 goto out2; 101 } 102 103 ret = kadm5_get_principal(kadm_handle, princ_ent, &princ, 104 KADM5_PRINCIPAL | KADM5_KEY_DATA); 105 if (ret) { 106 krb5_free_principal (context, princ_ent); 107 krb5_warnx (context, "no such principal: %s", princ_name); 108 goto out2; 109 } 110 111 new_key_data = malloc(princ.n_key_data * sizeof(*new_key_data)); 112 if (new_key_data == NULL) { 113 krb5_warnx (context, "out of memory"); 114 goto out; 115 } 116 117 for (i = 0, j = 0; i < princ.n_key_data; ++i) { 118 krb5_key_data *key = &princ.key_data[i]; 119 int docopy = 1; 120 121 for (k = 0; k < n_etypes; ++k) 122 if (etypes[k] == key->key_data_type[0]) { 123 docopy = 0; 124 break; 125 } 126 if (docopy) { 127 new_key_data[j++] = *key; 128 } else { 129 int16_t ignore = 1; 130 131 kadm5_free_key_data (kadm_handle, &ignore, key); 132 } 133 } 134 135 free (princ.key_data); 136 princ.n_key_data = j; 137 princ.key_data = new_key_data; 138 139 ret = kadm5_modify_principal (kadm_handle, &princ, KADM5_KEY_DATA); 140 if (ret) 141 krb5_warn(context, ret, "kadm5_modify_principal"); 142out: 143 krb5_free_principal (context, princ_ent); 144 kadm5_free_principal_ent(kadm_handle, &princ); 145out2: 146 free (etypes); 147 return 0; 148} 149