1/*
2 * lib/krb5/krb/gen_subkey.c
3 *
4 * Copyright 1991, 2002 by the Massachusetts Institute of Technology.
5 * All Rights Reserved.
6 *
7 * Export of this software from the United States of America may
8 *   require a specific license from the United States Government.
9 *   It is the responsibility of any person or organization contemplating
10 *   export to obtain such a license before exporting.
11 *
12 * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
13 * distribute this software and its documentation for any purpose and
14 * without fee is hereby granted, provided that the above copyright
15 * notice appear in all copies and that both that copyright notice and
16 * this permission notice appear in supporting documentation, and that
17 * the name of M.I.T. not be used in advertising or publicity pertaining
18 * to distribution of the software without specific, written prior
19 * permission.  Furthermore if you modify this software you must label
20 * your software as modified software and not distribute it in such a
21 * fashion that it might be confused with the original M.I.T. software.
22 * M.I.T. makes no representations about the suitability of
23 * this software for any purpose.  It is provided "as is" without express
24 * or implied warranty.
25 *
26 *
27 * Routine to automatically generate a subsession key based on an input key.
28 */
29
30#include "k5-int.h"
31
32/*ARGSUSED*/
33krb5_error_code
34krb5_generate_subkey(krb5_context context, const krb5_keyblock *key, krb5_keyblock **subkey)
35{
36    krb5_error_code retval;
37
38#if 0
39/*
40 * Solaris Kerberos:  Don't bother with this PRNG stuff,
41 * we have /dev/random and PKCS#11 to handle Random Numbers.
42 */
43
44    krb5_data seed;
45
46    seed.length = key->length;
47    seed.data = key->contents;
48    if ((retval = krb5_c_random_add_entropy(context, KRB5_C_RANDSOURCE_TRUSTEDPARTY, &seed)))
49	return(retval);
50#endif /* 0 */
51
52    if ((*subkey = (krb5_keyblock *) malloc(sizeof(krb5_keyblock))) == NULL)
53	return(ENOMEM);
54
55    /* Solaris Kerberos */
56    (void) memset(*subkey, 0, sizeof(krb5_keyblock));
57
58    if ((retval = krb5_c_make_random_key(context, key->enctype, *subkey))) {
59	krb5_xfree(*subkey);
60	return(retval);
61    }
62
63    return(0);
64}
65