1178825Sdfr/* 2233294Sstas * Copyright (c) 1995 - 2005 Kungliga Tekniska H��gskolan 3178825Sdfr * (Royal Institute of Technology, Stockholm, Sweden). 4178825Sdfr * All rights reserved. 5233294Sstas * 6178825Sdfr * Redistribution and use in source and binary forms, with or without 7178825Sdfr * modification, are permitted provided that the following conditions 8178825Sdfr * are met: 9233294Sstas * 10178825Sdfr * 1. Redistributions of source code must retain the above copyright 11178825Sdfr * notice, this list of conditions and the following disclaimer. 12233294Sstas * 13178825Sdfr * 2. Redistributions in binary form must reproduce the above copyright 14178825Sdfr * notice, this list of conditions and the following disclaimer in the 15178825Sdfr * documentation and/or other materials provided with the distribution. 16233294Sstas * 17178825Sdfr * 3. Neither the name of the Institute nor the names of its contributors 18178825Sdfr * may be used to endorse or promote products derived from this software 19178825Sdfr * without specific prior written permission. 20233294Sstas * 21178825Sdfr * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND 22178825Sdfr * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23178825Sdfr * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24178825Sdfr * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE 25178825Sdfr * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26178825Sdfr * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27178825Sdfr * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28178825Sdfr * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29178825Sdfr * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30178825Sdfr * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31178825Sdfr * SUCH DAMAGE. 32178825Sdfr */ 33178825Sdfr 34178825Sdfr#include "ftpd_locl.h" 35178825Sdfr 36178825Sdfr#ifdef KRB5 37178825Sdfr 38178825Sdfrstatic int 39178825Sdfrprint_cred(krb5_context context, krb5_creds *cred) 40178825Sdfr{ 41178825Sdfr char t1[128], t2[128], *str; 42178825Sdfr krb5_error_code ret; 43178825Sdfr krb5_timestamp sec; 44178825Sdfr 45178825Sdfr krb5_timeofday (context, &sec); 46178825Sdfr 47178825Sdfr if(cred->times.starttime) 48178825Sdfr krb5_format_time(context, cred->times.starttime, t1, sizeof(t1), 1); 49178825Sdfr else 50178825Sdfr krb5_format_time(context, cred->times.authtime, t1, sizeof(t1), 1); 51233294Sstas 52178825Sdfr if(cred->times.endtime > sec) 53178825Sdfr krb5_format_time(context, cred->times.endtime, t2, sizeof(t2), 1); 54178825Sdfr else 55178825Sdfr strlcpy(t2, ">>>Expired<<<", sizeof(t2)); 56178825Sdfr 57178825Sdfr ret = krb5_unparse_name (context, cred->server, &str); 58178825Sdfr if (ret) { 59178825Sdfr lreply(500, "krb5_unparse_name: %d", ret); 60178825Sdfr return 1; 61178825Sdfr } 62178825Sdfr 63178825Sdfr lreply(200, "%-20s %-20s %s", t1, t2, str); 64178825Sdfr free(str); 65178825Sdfr return 0; 66178825Sdfr} 67178825Sdfr 68178825Sdfrstatic int 69178825Sdfrprint_tickets (krb5_context context, 70178825Sdfr krb5_ccache ccache, 71178825Sdfr krb5_principal principal) 72178825Sdfr{ 73178825Sdfr krb5_error_code ret; 74178825Sdfr krb5_cc_cursor cursor; 75178825Sdfr krb5_creds cred; 76178825Sdfr char *str; 77178825Sdfr 78178825Sdfr ret = krb5_unparse_name (context, principal, &str); 79178825Sdfr if (ret) { 80178825Sdfr lreply(500, "krb5_unparse_name: %d", ret); 81178825Sdfr return 500; 82178825Sdfr } 83178825Sdfr 84233294Sstas lreply(200, "%17s: %s:%s", 85178825Sdfr "Credentials cache", 86178825Sdfr krb5_cc_get_type(context, ccache), 87178825Sdfr krb5_cc_get_name(context, ccache)); 88178825Sdfr lreply(200, "%17s: %s", "Principal", str); 89178825Sdfr free (str); 90178825Sdfr 91178825Sdfr ret = krb5_cc_start_seq_get (context, ccache, &cursor); 92178825Sdfr if (ret) { 93178825Sdfr lreply(500, "krb5_cc_start_seq_get: %d", ret); 94178825Sdfr return 500; 95178825Sdfr } 96178825Sdfr 97178825Sdfr lreply(200, " Issued Expires Principal"); 98178825Sdfr 99178825Sdfr while ((ret = krb5_cc_next_cred (context, 100178825Sdfr ccache, 101178825Sdfr &cursor, 102178825Sdfr &cred)) == 0) { 103178825Sdfr if (print_cred(context, &cred)) 104233294Sstas return 500; 105178825Sdfr krb5_free_cred_contents (context, &cred); 106178825Sdfr } 107178825Sdfr if (ret != KRB5_CC_END) { 108178825Sdfr lreply(500, "krb5_cc_get_next: %d", ret); 109178825Sdfr return 500; 110178825Sdfr } 111178825Sdfr ret = krb5_cc_end_seq_get (context, ccache, &cursor); 112178825Sdfr if (ret) { 113178825Sdfr lreply(500, "krb5_cc_end_seq_get: %d", ret); 114178825Sdfr return 500; 115178825Sdfr } 116178825Sdfr 117178825Sdfr return 200; 118178825Sdfr} 119178825Sdfr 120178825Sdfrstatic int 121178825Sdfrklist5(void) 122178825Sdfr{ 123178825Sdfr krb5_error_code ret; 124178825Sdfr krb5_context context; 125178825Sdfr krb5_ccache ccache; 126178825Sdfr krb5_principal principal; 127178825Sdfr int exit_status = 200; 128178825Sdfr 129178825Sdfr ret = krb5_init_context (&context); 130178825Sdfr if (ret) { 131178825Sdfr lreply(500, "krb5_init_context failed: %d", ret); 132178825Sdfr return 500; 133178825Sdfr } 134178825Sdfr 135178825Sdfr if (k5ccname) 136178825Sdfr ret = krb5_cc_resolve(context, k5ccname, &ccache); 137178825Sdfr else 138178825Sdfr ret = krb5_cc_default (context, &ccache); 139178825Sdfr if (ret) { 140233294Sstas lreply(500, "krb5_cc_default: %d", ret); 141178825Sdfr return 500; 142178825Sdfr } 143178825Sdfr 144178825Sdfr ret = krb5_cc_get_principal (context, ccache, &principal); 145178825Sdfr if (ret) { 146178825Sdfr if(ret == ENOENT) 147178825Sdfr lreply(500, "No ticket file: %s", 148178825Sdfr krb5_cc_get_name(context, ccache)); 149178825Sdfr else 150178825Sdfr lreply(500, "krb5_cc_get_principal: %d", ret); 151178825Sdfr 152178825Sdfr return 500; 153178825Sdfr } 154178825Sdfr exit_status = print_tickets (context, ccache, principal); 155178825Sdfr 156178825Sdfr ret = krb5_cc_close (context, ccache); 157178825Sdfr if (ret) { 158233294Sstas lreply(500, "krb5_cc_close: %d", ret); 159178825Sdfr exit_status = 500; 160178825Sdfr } 161178825Sdfr 162178825Sdfr krb5_free_principal (context, principal); 163178825Sdfr krb5_free_context (context); 164178825Sdfr return exit_status; 165178825Sdfr} 166178825Sdfr#endif 167178825Sdfr 168178825Sdfrvoid 169178825Sdfrklist(void) 170178825Sdfr{ 171178825Sdfr#if KRB5 172178825Sdfr int res = klist5(); 173178825Sdfr reply(res, " "); 174178825Sdfr#else 175178825Sdfr reply(500, "Command not implemented."); 176178825Sdfr#endif 177178825Sdfr} 178178825Sdfr 179