2000-07-14 Ken Raeburn <raeburn@mit.edu>
+ * t_stdio.c, t_file.c, t_memory.c: Test cases copied from old
+ subdirectories. Currently unused.
+ * Makefile.in (t_stdio): New target, basically same as 'test' in
+ old stdio/Makefile.in.
+ * file, memory, stdio: Subdirectories deleted.
+
* cc_file.c, cc_stdio.c, cc_memory.c: New files, built from source
files of appropriate subdirectories.
* fcc.h: New file, copied from file/fcc.h; temporary.
all-unix:: all-libobjs
+t_stdio: t_stdio.o
+ ${CC} -o t_stdio ${OBJS} t_stdio.o
+
all-windows:: subdirs $(OBJFILE)
##DOS##subdirs:: ccapi\$(OUTPRE)file.lst
/* cc_file.c - file ccache implementation
* Copyright 2000 MIT blah blah...
+ */
+/*
+If OPENCLOSE is defined, ecah of the functions opens and closes the
+file whenever it needs to access it. Otherwise, the file is opened
+once in initialize and closed once is close.
+
+This library depends on UNIX-like file descriptors, and UNIX-like
+behavior from the functions: open, close, read, write, lseek.
+
+The quasi-BNF grammar for a credentials cache:
+
+file ::=
+ principal list-of-credentials
+
+credential ::=
+ client (principal)
+ server (principal)
+ keyblock (keyblock)
+ times (ticket_times)
+ is_skey (boolean)
+ ticket_flags (flags)
+ ticket (data)
+ second_ticket (data)
+
+principal ::=
+ number of components (int32)
+ component 1 (data)
+ component 2 (data)
+ ...
+
+data ::=
+ length (int32)
+ string of length bytes
+
+etc.
+ */
+/* todo:
+Make sure that each time a function returns KRB5_NOMEM, everything
+allocated earlier in the function and stack tree is freed.
+
+File locking
+
+fcc_nseq.c and fcc_read don't check return values a lot.
+
*/
#include "k5-int.h"
/* cc_stdio.c - stdio ccache implementation
* Copyright 2000 MIT blah blah...
*/
+/*
+If OPENCLOSE is defined, ecah of the functions opens and closes the
+file whenever it needs to access it. Otherwise, the file is opened
+once in initialize and closed once is close.
+
+This library depends on ANSI C library routines for file handling. It
+may also have some implicit assumptions about UNIX, but we'll get
+those out as much as possible.
+
+If you are running a UNIX system, you probably want to use the
+UNIX-based "file" cache package instead of this.
+
+The quasi-BNF grammar for a credentials cache:
+
+file ::=
+ format-vno principal list-of-credentials
+
+credential ::=
+ client (principal)
+ server (principal)
+ keyblock (keyblock)
+ times (ticket_times)
+ is_skey (boolean)
+ ticket_flags (flags)
+ ticket (data)
+ second_ticket (data)
+
+principal ::=
+ number of components (int32)
+ component 1 (data)
+ component 2 (data)
+ ...
+
+data ::=
+ length (int32)
+ string of length bytes
+
+format-vno ::= <int16>
+
+etc.
+ */
+/*todo:
+Make sure that each time a function returns KRB5_NOMEM, everything
+allocated earlier in the function and stack tree is freed.
+
+Overwrite cache file with nulls before removing it.
+
+Check return values and sanity-check parameters more thoroughly. This
+code was derived from UNIX file I/O code, and the conversion of
+error-trapping may be incomplete. Probably lots of bugs dealing with
+end-of-file versus other errors.
+ */
#include "k5-int.h"
/* start of former stdio/scc-proto.h */
/*
+++ /dev/null
-# Sanitize.in for Kerberos V5
-
-# Each directory to survive it's way into a release will need a file
-# like this one called "./.Sanitize". All keyword lines must exist,
-# and must exist in the order specified by this file. Each directory
-# in the tree will be processed, top down, in the following order.
-
-# Hash started lines like this one are comments and will be deleted
-# before anything else is done. Blank lines will also be squashed
-# out.
-
-# The lines between the "Do-first:" line and the "Things-to-keep:"
-# line are executed as a /bin/sh shell script before anything else is
-# done in this
-
-Do-first:
-
-# All files listed between the "Things-to-keep:" line and the
-# "Files-to-sed:" line will be kept. All other files will be removed.
-# Directories listed in this section will have their own Sanitize
-# called. Directories not listed will be removed in their entirety
-# with rm -rf.
-
-Things-to-keep:
-
-.cvsignore
-.rconf
-ChangeLog
-Makefile.in
-README
-configure
-configure.in
-fcc-proto.h
-fcc.h
-fcc_close.c
-fcc_defops.c
-fcc_destry.c
-fcc_errs.c
-fcc_eseq.c
-fcc_gennew.c
-fcc_getnam.c
-fcc_gprin.c
-fcc_init.c
-fcc_maybe.c
-fcc_nseq.c
-fcc_ops.c
-fcc_read.c
-fcc_reslv.c
-fcc_retrv.c
-fcc_sflags.c
-fcc_skip.c
-fcc_sseq.c
-fcc_store.c
-fcc_test.c
-fcc_write.c
-todo
-
-Things-to-lose:
-
-Do-last:
-
-# End of file.
+++ /dev/null
-ignore fcc_test.c
+++ /dev/null
-2000-06-28 Ezra Peisach <epeisach@mit.edu>
-
- * fcc_gprin.c (krb5_fcc_get_principal): Remove unused variable.
-
-1999-10-26 Wilfredo Sanchez <tritan@mit.edu>
-
- * Makefile.in: Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES,
- LOCAL_INCLUDES such that one can override CFLAGS from the command
- line without losing CPP search patchs and defines. Some associated
- Makefile cleanup.
-
-1999-08-23 Ken Raeburn <raeburn@mit.edu>
-
- * fcc_retrv.c (krb5_fcc_retrieve): Replace with a version that
- calls krb5_cc_retrieve_cred_default.
-
-1999-06-10 Danilo Almeida <dalmeida@mit.edu>
-
- * fcc_ops.c (krb5_cache_change): Use PostMessage instead of
- SendMessage so that we don't block.
-
-Mon May 10 15:24:49 1999 Danilo Almeida <dalmeida@mit.edu>
-
- * Makefile.in: Do win32 build in subdir.
-
-1998-11-13 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Set the myfulldir and mydir variables (which are
- relative to buildtop and thisconfigdir, respectively.)
-
-1998-10-31 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * fcc_maybe.c (fcc_lock_file): Removed all of the
- filesystem-dependent mess for file locking, which has been
- now properly moved to krb5_lock_file(), where it belongs.
-
-Fri Feb 27 18:03:33 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Changed thisconfigdir to point at the lib/krb5
- directory, since we've moved all of the configure.in
- tests to the toplevel lib/krb5 configure.in
-
-Wed Feb 18 16:19:40 1998 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in: Remove trailing slash from thisconfigdir. Fix up
- BUILDTOP for new conventions.
-
-Mon Feb 2 17:02:29 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Define BUILDTOP and thisconfigdir in the Makefile
-
-Thu Sep 25 21:23:11 1997 Tom Yu <tlyu@mit.edu>
-
- * fcc_maybe.c: Replace KRB5_USE_INET with something more sane.
-
- * fcc_gennew.c: Replace KRB5_USE_INET with something more sane.
-
-Mon Sep 15 15:15:33 1997 Ezra Peisach <epeisach@mit.edu>
-
- * fcc-proto.h, fcc_reslv.c (krb5_fcc_resolve): Incoming name
- is const char *
-
-Sat Feb 22 22:25:09 1997 Richard Basch <basch@lehman.com>
-
- * Makefile.in: Use some of the new library list build rules in
- win-post.in
-
-Thu Nov 21 11:55:16 EST 1996 Richard Basch <basch@lehman.com>
-
- * Makefile.in: win32 build
-
- * configure.in: Test for chmod and fchmod (not on Windows)
-
- * fcc-proto.h, fcc_close.c, fcc_destry.c, fcc_eseq.c, fcc_gennew.c,
- fcc_getnam.c, fcc_gprin.c, fcc_init.c, fcc_nseq.c, fcc_ops.c,
- fcc_reslv.c, fcc_retrv.c, fcc_sflags.c, fcc_sseq.c, fcc_store.c:
- Changed the calling conventions of the internal ccache
- functions to comply with the new function calling
- conventions of the ccache dispatch functions (win16/win32)
-
-Thu Jan 2 16:59:19 1997 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in:
- * configure.in: Update to new lib build procedure.
-
-Thu Aug 15 16:46:00 1996 Tom Yu <tlyu@mit.edu>
-
- * fcc_retrv.c (flags_match): Add parens to def'n of flags_match to
- make comparison correct. (== has higher precedence than &)
-
-Wed Jun 12 01:04:27 1996 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * fcc-proto.h: Change use of PROTOTYPE to KRB5_PROTOTYPE.
- Change use of INTERFACE to KRB5_CALLCONV and KRB5_DLLIMP.
-
- * fcc-getnam.c: Change use of INTERFACE to KRB5_CALLCONV and
- KRB5_DLLIMP, since fcc_getname returns a char * and the
- old INTERFACE method bombs out when the return type
- contains an indirection.
-
-Mon Jun 10 21:44:07 1996 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * fcc_read.c:
- * fcc_ops.c: Change _WINDOWS to _MSDOS, and add check for _WIN32.
-
-Wed Feb 14 10:44:27 1996 <tytso@rsts-11.mit.edu>
-
- * fcc_read.c (krb5_fcc_read_keyblock, krb5_fcc_read_data,
- krb5_fcc_read_authdatum, krb5_fcc_read_addr): For windows,
- mask off low 16 bits because Gradient DCE does things
- wrong.
-
-Wed Mar 20 22:48:51 1996 Theodore Y. Ts'o <tytso@dcl>
-
- * fcc-proto.h (krb5_fcc_skip_header): Added prototype (fix Windows
- lint flames).
-
-Sat Feb 24 19:16:23 1996 Theodore Y. Ts'o <tytso@dcl>
-
- * fcc_destry.c (krb5_fcc_destroy): For MS-DOS filesystems, you
- must close the file before unlinking it, otherwise the
- unlink() will fail.
-
-Thu Feb 15 14:55:56 1996 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * fcc_skip.c (krb5_fcc_skip_header): If version is not FVNO_4, do not
- seek forward a random stack value.
-
-Thu Feb 1 15:45:23 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * fcc_retrv.c (ktype_reasonable): removed.
- (krb5_fcc_retrieve): Accept any enctype unless specific enctype is
- being matched.
-
-Wed Jan 24 21:36:34 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * fcc_retrv.c (ktype_reasonable): Renamed ktype_match because it
- didn't really match enctypes. Instead, it just determined whether
- they were something the TGS would likely return. When I ask for
- an exact enctype match, I want an enctype match.
- (krb5_fcc_retrieve): Match keytype exactly if matching enctype.
-
-Wed Jan 10 21:14:31 1996 Theodore Y. Ts'o <tytso@dcl>
-
- * fcc.h (KRB5_FCC_DEFAULT_VNO): Remove KRB5_FCC_DEFAULT_VNO; now
- set in init_ctx.c.
-
- * fcc_maybe.c (krb5_fcc_open_file):
- * fcc_gennew.c (krb5_fcc_generate_new): Use
- context->fcc_default_format to determine the credentials
- cache type.
-
- * fcc_read.c (krb5_fcc_read_keyblock): If reading in a version 3
- credentials cache, ignore the second enctype stored in the
- ccache; just read it into a dummy variable.
-
-Thu Dec 21 18:28:09 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * fcc_maybe.c (krb5_fcc_open_file): In the case of
- FCC_OPEN_AND_ERASE, unlink the old filename, and then add
- the O_EXCL open flag, to prevent O_CREAT from following a
- symbolic link.
- (krb5_fcc_open_file): Use KRB5_CC_FORMAT as an error code
- instead of KRB5_CCACHE_BADVNO, when it's really a format
- error in the credentials cache file.
-
-Fri Oct 6 22:03:16 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * Makefile.in: Remove ##DOS!include of config/windows.in.
- config/windows.in is now included by wconfig.
-
-Mon Sep 25 16:56:41 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * Makefile.in: Removed "foo:: foo-$(WHAT)" lines from the
- Makefile.
-
-Wed Sep 13 10:56:00 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc_maybe.c: signed/unsigned mismatch.
-
-Mon Sep 11 21:05:40 1995 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * fcc_maybe.c (krb5_fcc_open_file): use THREEPARAMOPEN instead of
- just open.
-
-Wed Sep 06 14:20:57 1995 Chris Provenzano (proven@mit.edu)
-
- * file_read.c, file_write.c : s/keytype/enctype/g, s/KEYTYPE/ENCTYPE/g
-
-Wed Sept 6 12:00:00 EDT 1995 James Mattly (mattly@fusion.com)
-
- * fcc_retrv.c: for _MACINTOSH, defined register to null for compiler
- prototype problems.
-
- * fcc_maybe.c: included <stdio.h>
-
-Tue Sep 05 22:58:52 1995
-
- * fcc.h : Add another KRB5_FCC_FVNO but don't up the default.
- * fcc_gennew.c, fcc_maybe.c : New version saves a length after
- version for whatever we want to put into the ccache before
- the first credential (like a time skew)
- * fcc_read.c, fcc_write.c : Remove krb5_enctype references, and
- replace with krb5_keytype where appropriate
-
-Tue Aug 29 13:36:00 EDT 1995 Paul Park (pjpark@mit.edu)
- * fcc_reslv.c - Set magic number in successfully resolved ccache.
-
-Tue Jul 11 19:26:47 1995 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * fcc-proto.h: Add prototype for krb5_fcc_read. Indicate that
- krb5_change_cache takes no arguments.
-
-
-Wed July 5 15:52:31 1995 James Mattly <mattly@fusion.com>
- * fcc_destroy.c changed open to THREEPARAMOPEN for macintosh
- opens
- * fcc_gennew.c conditons for HAS_MACSOCK_H and THREEPARAMOPEN
- * fcc_maybe.c conditons for HAS_MACSOCK_H
-
-Wed Nov 15 20:39:18 1995 Mark Eichin <eichin@cygnus.com>
-
- * fcc_maybe.c (fcc_lock_file_posix): initialize lock_arg to a copy
- of a static (thus zero) struct flock, to avoid panic'ing sunos
- 4.1.4.
-
-Wed Jun 14 23:54:09 1995 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_errs.c (krb5_fcc_interpret): Add #ifdef around switch
- statement for ETXTBUSY.
-
-Sat Jun 10 00:01:23 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * fcc_init.c (krb5_fcc_initialize): Make sure the status return
- from krb5_fcc_store_principal is reflected in the return
- status of krb5_fcc_initialize().
-
-Fri Jun 9 19:30:01 1995 <tytso@rsx-11.mit.edu>
-
- * configure.in: Remove standardized set of autoconf macros, which
- are now handled by CONFIG_RULES.
-
- * fcc_maybe.c: Fix -Wall nits
-
-Fri May 26 20:19:39 1995 Theodore Y. Ts'o (tytso@dcl)
-
- * configure.in, Makefile.in: Add support for building shared libraries.
-
-Thu May 25 15:37:39 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc_maybe.c: the NEED_SOCKETS has to be before the #include line.
-
-Tue May 23 16:28:07 1995 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_maybe.c: Rearrange #include files so that krb5.h gets
- included first, so that the debugging information can be
- more efficiently collapsed since the type numbers will be
- the same.
-
-Tue May 9 16:23:39 1995 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * fcc_close.c (krb5_fcc_close): Remove <malloc.h> as not all
- platforms have it and k5-int.h already takes care of
- malloc declarations.
-
-Thu Apr 13 15:49:16 1995 Keith Vetter (keithv@fusion.com)
-
- * *.[ch]: removed unneeded INTERFACE from non-api functions.
-
-Wed Mar 22 11:24:07 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc-proto.h: added prototype for cache changing hook,
- * fcc.h: changed cache file location for the PC (out of /tmp).
- * fcc_ops.h: made the cache changing hook return an error code.
-
-Tue Mar 21 19:14:49 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc_destroy.c: open file on the PC in binary mode, worked around
- the unixism of working with deleted files.
- * fcc_genn.c: open file on the PC in binary mode.
- * fcc_init.c: uninitialized variable on the PC.
- * fcc_maybe.c: open file on the PC in binary mode.
- * fcc_read.c: a real clever one-line piece of code to turn 4 bytes
- into a 32 bit integer fails miserbly on 16 bit machines. Fixed.
- * fcc_ops.c: added hooks to notify programs when the ccache changes.
- For windows, the code is taken from the K4 release, for other
- platforms it does nothing.
- * fcc_destroy.c, fcc_genn.c, fcc_init.c, fcc_store.c: added calls to
- the hook described for fcc_ops.c.
-
-Fri Mar 17 19:23:09 1995 John Gilmore (gnu at toad.com)
-
- * Makefile.in (LDFLAGS): Eliminate, duplicates config/pre.in.
-
-Wed Mar 15 12:07:28 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc_eseq.c, fcc_init.c, fcc_maybe.c, fcc_dest.c:
- Initialized return code.
- * fcc_genn.c, fcc_init.c: removed chmod call for the PC
-
-Thu Mar 09 18:43:10 1995 Chris Provenzano (proven@mit.edu)
-
- * fcc_destry.c (krb5_fcc_destroy())
- * fcc_init.c (krb5_fcc_initialize())
- Initialize kret before returning it.
-
- * fcc_maybe.c (fcc_lock_file()) Initialize st before returning it.
-
-Tue Mar 7 19:54:48 1995 Mark Eichin <eichin@cygnus.com>
-
- * configure.in: take out ISODE_DEFS.
-
-Tue Mar 7 15:58:15 1995 Keith Vetter (keithv@fusion.com)
-
- * fcc.h: alwas pull in low-level i/o stuff for the PC.
- * *.c, fcc-proto.h: added windows INTERFACE keyword.
- * fcc_dest.c, fcc_init.c, fcc_maybe.c, fcc_nseq.c, fcc_read.c,
- fcc_sseq.c, fcc_write.c: fixed up some int/long and
- signed/unsigned problems.
-
-Tue Feb 28 00:35:55 1995 John Gilmore (gnu at toad.com)
-
- * fcc.h, fcc_gennew.c, fcc_maybe.c: Avoid <krb5/...> includes.
-
-Tue Feb 21 16:14:25 1995 Mark Eichin (eichin@cygnus.com)
-
- * configure.in: check for HAVE_FLOCK, since we may need to use
- both flock and fcntl.
- * fcc_maybe.c: try fcntl lock, if we get EINVAL specifically, fall
- back to flock (if we have it.)
-
-Fri Jan 27 00:49:36 1995 Chris Provenzano (proven@mit.edu)
-
- * Fix fcc_read.c (krb5_fcc_read_authdatum()) krb5_authdatatype
- is of type unsigned int and therefore shouldn't be the
- argument to krb5_fcc_read_ui_2().
-
-Fri Jan 13 15:23:47 1995 Chris Provenzano (proven@mit.edu)
-
- * Added krb5_context to all krb5_routines
-
-Wed Dec 7 16:58:59 1994 <tytso@rsx-11.mit.edu>
-
- * fcc_write.c (krb5_fcc_store_addrs): If a null addresses is
- passed in, don't core dump.
-
-Fri Nov 18 17:22:51 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_read.c (krb5_fcc_read_principal): Fix to return correct
- error code, instead of always returning KRB5_CC_NOMEM.
-
-Wed Nov 16 23:31:49 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc-proto.h, fcc.h, fcc_maybe.c (krb5_fcc_open_file), fcc_nseq.c
- (krb5_fcc_next_cred), fcc_store.c (krb5_fcc_store), fcc_read.c,
- fcc_write.c: Changes to implement FCC format version #3, which
- is architecture independent, and includes the key
- encryption type information.
-
- * fcc_gennew.c (krb5_fcc_generate_new): Generate new ccaches using
- whatever version is marked as the default.
-
- * fcc_read.c (krb5_fcc_read_keyblock): Insert keyblock magic
- number and initialize etype value. Also add magic numbers
- for the krb5_principal, krb5_data, krb5_address, and
- krb5_authdata structures.
-
-Mon Oct 31 17:02:04 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_maybe.c: Back out POSIX_FILE_LOCKS change. (Should be
- depending on autoconf.h to supply this #define if
- necessary.)
-
-Thu Oct 13 17:23:42 1994 Theodore Y. Ts'o (tytso@maytag)
-
- * configure.in: Add ISODE_DEFS
-
-Fri Oct 7 14:18:44 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * configure.in: Add test for unistd.h
- * fcc_maybe.c: Use POSIX_FILE_LOCKS if _POSIX_VERSION is defined.
-
-Fri Sep 30 21:54:20 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_defops.c (krb5_cc_file_ops):
- fcc_ops.c (krb5_fcc_ops): Add placeholder for magic number
-
-Thu Sep 22 21:37:15 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * fcc_destry.c (krb5_fcc_destroy): Make sure memory associated
- with the credentials cache is freed after it is destroyed.
-
-Thu Aug 18 16:33:33 1994 Theodore Y. Ts'o (tytso at tsx-11)
-
- * fcc_retrv.c (srvname_match): Fix bug in srvname_match where so
- that the server realm is really ignored in the compare, like it's
- supposed to be.
-
-Mon Jun 20 19:36:19 1994 Theodore Y. Ts'o (tytso at tsx-11)
-
- * fcc.h: #include <krb5/osconf.h> so that build works using imake.
-
-
+++ /dev/null
-thisconfigdir=./../..
-myfulldir=lib/krb5/ccache/file
-mydir=ccache/file
-BUILDTOP=$(REL)$(U)$(S)$(U)$(S)$(U)$(S)$(U)
-
-##DOS##BUILDTOP = ..\..\..\..
-##DOS##PREFIXDIR = ccache\file
-##DOS##OBJFILE = $(OUTPRE)file.lst
-##WIN16##LIBNAME=..\..\krb5.lib
-
-STLIBOBJS = \
- fcc_close.o fcc_destry.o fcc_eseq.o \
- fcc_gennew.o fcc_getnam.o fcc_gprin.o \
- fcc_init.o fcc_nseq.o fcc_read.o \
- fcc_reslv.o fcc_retrv.o fcc_sseq.o \
- fcc_store.o fcc_skip.o fcc_ops.o \
- fcc_write.o fcc_sflags.o fcc_defops.o \
- fcc_errs.o fcc_maybe.o
-
-OBJS = $(OUTPRE)fcc_close.$(OBJEXT) $(OUTPRE)fcc_destry.$(OBJEXT) $(OUTPRE)fcc_eseq.$(OBJEXT) \
- $(OUTPRE)fcc_gennew.$(OBJEXT) $(OUTPRE)fcc_getnam.$(OBJEXT) $(OUTPRE)fcc_gprin.$(OBJEXT) \
- $(OUTPRE)fcc_init.$(OBJEXT) $(OUTPRE)fcc_nseq.$(OBJEXT) $(OUTPRE)fcc_read.$(OBJEXT) \
- $(OUTPRE)fcc_reslv.$(OBJEXT) $(OUTPRE)fcc_retrv.$(OBJEXT) $(OUTPRE)fcc_sseq.$(OBJEXT) \
- $(OUTPRE)fcc_store.$(OBJEXT) $(OUTPRE)fcc_skip.$(OBJEXT) $(OUTPRE)fcc_ops.$(OBJEXT) \
- $(OUTPRE)fcc_write.$(OBJEXT) $(OUTPRE)fcc_sflags.$(OBJEXT) $(OUTPRE)fcc_defops.$(OBJEXT) \
- $(OUTPRE)fcc_errs.$(OBJEXT) $(OUTPRE)fcc_maybe.$(OBJEXT)
-
-SRCS = $(srcdir)/fcc_close.c $(srcdir)/fcc_destry.c $(srcdir)/fcc_eseq.c \
- $(srcdir)/fcc_gennew.c $(srcdir)/fcc_getnam.c $(srcdir)/fcc_gprin.c \
- $(srcdir)/fcc_init.c $(srcdir)/fcc_nseq.c $(srcdir)/fcc_read.c \
- $(srcdir)/fcc_reslv.c $(srcdir)/fcc_retrv.c $(srcdir)/fcc_sseq.c \
- $(srcdir)/fcc_store.c $(srcdir)/fcc_skip.c $(srcdir)/fcc_ops.c \
- $(srcdir)/fcc_write.c $(srcdir)/fcc_sflags.c $(srcdir)/fcc_defops.c \
- $(srcdir)/fcc_errs.c $(srcdir)/fcc_maybe.c
-
-##DOS##LIBOBJS = $(OBJS)
-
-all-unix:: all-libobjs
-clean-unix:: clean-libobjs
+++ /dev/null
-If OPENCLOSE is defined, ecah of the functions opens and closes the
-file whenever it needs to access it. Otherwise, the file is opened
-once in initialize and closed once is close.
-
-This library depends on UNIX-like file descriptors, and UNIX-like
-behavior from the functions: open, close, read, write, lseek.
-
-The quasi-BNF grammar for a credentials cache:
-
-file ::=
- principal list-of-credentials
-
-credential ::=
- client (principal)
- server (principal)
- keyblock (keyblock)
- times (ticket_times)
- is_skey (boolean)
- ticket_flags (flags)
- ticket (data)
- second_ticket (data)
-
-principal ::=
- number of components (int32)
- component 1 (data)
- component 2 (data)
- ...
-
-data ::=
- length (int32)
- string of length bytes
-
-etc.
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc-proto.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * Prototypes for File-based credentials cache
- */
-
-
-#ifndef KRB5_FCC_PROTO__
-#define KRB5_FCC_PROTO__
-
-/* fcc_close.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_close
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* fcc_defnam.c */
-char * krb5_fcc_default_name
- KRB5_PROTOTYPE((krb5_context));
-
-/* fcc_destry.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_destroy
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* fcc_eseq.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_end_seq_get
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_cc_cursor *cursor ));
-
-/* fcc_gennew.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_generate_new
- KRB5_PROTOTYPE((krb5_context, krb5_ccache *id ));
-
-/* fcc_getnam.c */
-KRB5_DLLIMP char * KRB5_CALLCONV krb5_fcc_get_name
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* fcc_gprin.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_get_principal
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal *princ ));
-
-/* fcc_init.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_initialize
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal princ ));
-
-/* fcc_nseq.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_next_cred
- KRB5_PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_cc_cursor *cursor ,
- krb5_creds *creds ));
-
-/* fcc_read.c */
-krb5_error_code krb5_fcc_read
- KRB5_PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_pointer buf,
- int len));
-krb5_error_code krb5_fcc_read_principal
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal *princ ));
-krb5_error_code krb5_fcc_read_keyblock
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_keyblock *keyblock ));
-krb5_error_code krb5_fcc_read_data
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_data *data ));
-krb5_error_code krb5_fcc_read_int32
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_int32 *i ));
-krb5_error_code krb5_fcc_read_ui_2
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_ui_2 *i ));
-krb5_error_code krb5_fcc_read_octet
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_octet *i ));
-krb5_error_code krb5_fcc_read_times
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_ticket_times *t ));
-krb5_error_code krb5_fcc_read_addrs
- KRB5_PROTOTYPE((krb5_context, krb5_ccache, krb5_address ***));
-krb5_error_code krb5_fcc_read_addr
- KRB5_PROTOTYPE((krb5_context, krb5_ccache, krb5_address *));
-krb5_error_code krb5_fcc_read_authdata
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_authdata ***));
-krb5_error_code krb5_fcc_read_authdatum
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_authdata *));
-
-/* fcc_reslv.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_resolve
- KRB5_PROTOTYPE((krb5_context, krb5_ccache *id , const char *residual ));
-
-/* fcc_retrv.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_retrieve
- KRB5_PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_flags whichfields ,
- krb5_creds *mcreds ,
- krb5_creds *creds ));
-
-/* fcc_sseq.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_start_seq_get
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_cc_cursor *cursor ));
-
-/* fcc_store.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_store
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_creds *creds ));
-
-/* fcc_skip.c */
-krb5_error_code krb5_fcc_skip_header
- KRB5_PROTOTYPE((krb5_context, krb5_ccache));
-krb5_error_code krb5_fcc_skip_principal
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* fcc_sflags.c */
-KRB5_DLLIMP krb5_error_code KRB5_CALLCONV krb5_fcc_set_flags
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_flags flags ));
-
-/* fcc_ops.c */
-KRB5_DLLIMP extern krb5_cc_ops krb5_cc_file_ops;
-krb5_error_code krb5_change_cache
- KRB5_PROTOTYPE((void));
-
-
-/* fcc_write.c */
-krb5_error_code krb5_fcc_write
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_pointer buf , int len ));
-krb5_error_code krb5_fcc_store_principal
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal princ ));
-krb5_error_code krb5_fcc_store_keyblock
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_keyblock *keyblock ));
-krb5_error_code krb5_fcc_store_data
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_data *data ));
-krb5_error_code krb5_fcc_store_int32
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_int32 i ));
-krb5_error_code krb5_fcc_store_ui_2
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_int32 i ));
-krb5_error_code krb5_fcc_store_octet
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_int32 i ));
-krb5_error_code krb5_fcc_store_times
- KRB5_PROTOTYPE((krb5_context, krb5_ccache id , krb5_ticket_times *t ));
-krb5_error_code krb5_fcc_store_addrs
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_address ** ));
-krb5_error_code krb5_fcc_store_addr
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_address * ));
-krb5_error_code krb5_fcc_store_authdata
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_authdata **));
-krb5_error_code krb5_fcc_store_authdatum
- KRB5_PROTOTYPE((krb5_context, krb5_ccache , krb5_authdata *));
-
-/* fcc_errs.c */
-krb5_error_code krb5_fcc_interpret
- KRB5_PROTOTYPE((krb5_context, int ));
-
-/* fcc_maybe.c */
-krb5_error_code krb5_fcc_close_file
- KRB5_PROTOTYPE((krb5_context, krb5_ccache));
-krb5_error_code krb5_fcc_open_file
- KRB5_PROTOTYPE((krb5_context, krb5_ccache, int));
-
-#endif /* KRB5_FCC_PROTO__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains constant and function declarations used in the
- * file-based credential cache routines.
- */
-
-#ifndef __KRB5_FILE_CCACHE__
-#define __KRB5_FILE_CCACHE__
-
-#define NEED_LOWLEVEL_IO
-#include "k5-int.h"
-#include "fcc-proto.h"
-#include <stdio.h>
-
-#define KRB5_OK 0
-
-#define KRB5_FCC_MAXLEN 100
-
-/*
- * FCC version 2 contains type information for principals. FCC
- * version 1 does not.
- *
- * FCC version 3 contains keyblock encryption type information, and is
- * architecture independent. Previous versions are not.
- *
- * The code will accept version 1, 2, and 3 ccaches, and depending
- * what KRB5_FCC_DEFAULT_FVNO is set to, it will create version 1, 2,
- * or 3 FCC caches.
- *
- * The default credentials cache should be type 3 for now (see
- * init_ctx.c).
- */
-
-#define KRB5_FCC_FVNO_1 0x0501 /* krb5 v5, fcc v1 */
-#define KRB5_FCC_FVNO_2 0x0502 /* krb5 v5, fcc v2 */
-#define KRB5_FCC_FVNO_3 0x0503 /* krb5 v5, fcc v3 */
-#define KRB5_FCC_FVNO_4 0x0504 /* krb5 v5, fcc v4 */
-
-#define FCC_OPEN_AND_ERASE 1
-#define FCC_OPEN_RDWR 2
-#define FCC_OPEN_RDONLY 3
-
-/* Credential file header tags.
- * The header tags are constructed as:
- * krb5_ui_2 tag
- * krb5_ui_2 len
- * krb5_octet data[len]
- * This format allows for older versions of the fcc processing code to skip
- * past unrecognized tag formats.
- */
-#define FCC_TAG_DELTATIME 1
-
-#ifndef TKT_ROOT
-#ifdef MSDOS_FILESYSTEM
-#define TKT_ROOT "\\tkt"
-#else
-#define TKT_ROOT "/tmp/tkt"
-#endif
-#endif
-
-/* macros to make checking flags easier */
-#define OPENCLOSE(id) (((krb5_fcc_data *)id->data)->flags & KRB5_TC_OPENCLOSE)
-
-typedef struct _krb5_fcc_data {
- char *filename;
- int fd;
- krb5_flags flags;
- int mode; /* needed for locking code */
- int version; /* version number of the file */
-} krb5_fcc_data;
-
-/* An off_t can be arbitrarily complex */
-typedef struct _krb5_fcc_cursor {
- off_t pos;
-} krb5_fcc_cursor;
-
-#define MAYBE_OPEN(CONTEXT, ID, MODE) \
-{ \
- if (OPENCLOSE (ID)) { \
- krb5_error_code maybe_open_ret = krb5_fcc_open_file (CONTEXT,ID,MODE); \
- if (maybe_open_ret) return maybe_open_ret; } }
-
-#define MAYBE_CLOSE(CONTEXT, ID, RET) \
-{ \
- if (OPENCLOSE (ID)) { \
- krb5_error_code maybe_close_ret = krb5_fcc_close_file (CONTEXT,ID); \
- if (!(RET)) RET = maybe_close_ret; } }
-
-#define MAYBE_CLOSE_IGNORE(CONTEXT, ID) \
-{ \
- if (OPENCLOSE (ID)) { \
- (void) krb5_fcc_close_file (CONTEXT,ID); } }
-
-/* DO NOT ADD ANYTHING AFTER THIS #endif */
-#endif /* __KRB5_FILE_CCACHE__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_close.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_close.
- */
-
-
-
-#include "fcc.h"
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Closes the file cache, invalidates the id, and frees any resources
- * associated with the cache.
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_close(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- register int closeval = KRB5_OK;
-
- if (((krb5_fcc_data *) id->data)->fd >= 0)
- krb5_fcc_close_file(context, id);
-
- krb5_xfree(((krb5_fcc_data *) id->data)->filename);
- krb5_xfree(((krb5_fcc_data *) id->data));
- krb5_xfree(id);
-
- return closeval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_defops.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the structure krb5_cc_dfl_ops.
- */
-
-
-
-#include "fcc.h"
-
-krb5_cc_ops krb5_cc_file_ops = {
- 0,
- "FILE",
- krb5_fcc_get_name,
- krb5_fcc_resolve,
- krb5_fcc_generate_new,
- krb5_fcc_initialize,
- krb5_fcc_destroy,
- krb5_fcc_close,
- krb5_fcc_store,
- krb5_fcc_retrieve,
- krb5_fcc_get_principal,
- krb5_fcc_start_seq_get,
- krb5_fcc_next_cred,
- krb5_fcc_end_seq_get,
- NULL, /* XXX krb5_fcc_remove, */
- krb5_fcc_set_flags,
-};
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_destry.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_destroy.
- */
-
-#include <errno.h>
-#include "fcc.h"
-
-/*
- * Effects:
- * Destroys the contents of id.
- *
- * Errors:
- * system errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_destroy(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- struct stat buf;
- unsigned long i, size;
- unsigned int wlen;
- char zeros[BUFSIZ];
- register int ret;
- krb5_error_code kret = 0;
-
-
- if (OPENCLOSE(id)) {
- ret = THREEPARAMOPEN(((krb5_fcc_data *) id->data)->filename, O_RDWR | O_BINARY, 0);
- if (ret < 0) {
- kret = krb5_fcc_interpret(context, errno);
- goto cleanup;
- }
- ((krb5_fcc_data *) id->data)->fd = ret;
- }
- else
- lseek(((krb5_fcc_data *) id->data)->fd, 0, SEEK_SET);
-
-#ifdef MSDOS_FILESYSTEM
-/* "disgusting bit of UNIX trivia" - that's how the writers of NFS describe
-** the ability of UNIX to still write to a file which has been unlinked.
-** Naturally, the PC can't do this. As a result, we have to delete the file
-** after we wipe it clean but that throws off all the error handling code.
-** So we have do the work ourselves.
-*/
- ret = fstat(((krb5_fcc_data *) id->data)->fd, &buf);
- if (ret == -1) {
- kret = krb5_fcc_interpret(context, errno);
- size = 0; /* Nothing to wipe clean */
- } else
- size = (unsigned long) buf.st_size;
-
- memset(zeros, 0, BUFSIZ);
- while (size > 0) {
- wlen = (int) ((size > BUFSIZ) ? BUFSIZ : size); /* How much to write */
- i = write(((krb5_fcc_data *) id->data)->fd, zeros, wlen);
- if (i < 0) {
- kret = krb5_fcc_interpret(context, errno);
- /* Don't jump to cleanup--we still want to delete the file. */
- break;
- }
- size -= i; /* We've read this much */
- }
-
- if (OPENCLOSE(id)) {
- (void) close(((krb5_fcc_data *)id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
- }
-
- ret = unlink(((krb5_fcc_data *) id->data)->filename);
- if (ret < 0) {
- kret = krb5_fcc_interpret(context, errno);
- goto cleanup;
- }
-
-#else /* MSDOS_FILESYSTEM */
-
- ret = unlink(((krb5_fcc_data *) id->data)->filename);
- if (ret < 0) {
- kret = krb5_fcc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) close(((krb5_fcc_data *)id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
- kret = ret;
- }
- goto cleanup;
- }
-
- ret = fstat(((krb5_fcc_data *) id->data)->fd, &buf);
- if (ret < 0) {
- kret = krb5_fcc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) close(((krb5_fcc_data *)id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
- }
- goto cleanup;
- }
-
- /* XXX This may not be legal XXX */
- size = (unsigned long) buf.st_size;
- memset(zeros, 0, BUFSIZ);
- for (i=0; i < size / BUFSIZ; i++)
- if (write(((krb5_fcc_data *) id->data)->fd, zeros, BUFSIZ) < 0) {
- kret = krb5_fcc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) close(((krb5_fcc_data *)id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
- }
- goto cleanup;
- }
-
- wlen = (unsigned int) (size % BUFSIZ);
- if (write(((krb5_fcc_data *) id->data)->fd, zeros, wlen) < 0) {
- kret = krb5_fcc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) close(((krb5_fcc_data *)id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
- }
- goto cleanup;
- }
-
- ret = close(((krb5_fcc_data *) id->data)->fd);
- ((krb5_fcc_data *) id->data)->fd = -1;
-
- if (ret)
- kret = krb5_fcc_interpret(context, errno);
-
-#endif /* MSDOS_FILESYSTEM */
-
- cleanup:
- krb5_xfree(((krb5_fcc_data *) id->data)->filename);
- krb5_xfree(id->data);
- krb5_xfree(id);
-
- krb5_change_cache ();
- return kret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_errs.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * error code interpretation routine
- */
-
-
-
-#include "fcc.h"
-
-krb5_error_code
-krb5_fcc_interpret(context, errnum)
- krb5_context context;
-int errnum;
-{
- register krb5_error_code retval;
- switch (errnum) {
- case ENOENT:
- retval = KRB5_FCC_NOFILE;
- break;
- case EPERM:
- case EACCES:
- case EISDIR:
- case ENOTDIR:
-#ifdef ELOOP
- case ELOOP: /* XXX */
-#endif
-#ifdef ETXTBSY
- case ETXTBSY:
-#endif
- case EBUSY:
- case EROFS:
- retval = KRB5_FCC_PERM;
- break;
- case EINVAL:
- case EEXIST: /* XXX */
- case EFAULT:
- case EBADF:
-#ifdef ENAMETOOLONG
- case ENAMETOOLONG:
-#endif
-#ifdef EWOULDBLOCK
- case EWOULDBLOCK:
-#endif
- retval = KRB5_FCC_INTERNAL;
- break;
-#ifdef EDQUOT
- case EDQUOT:
-#endif
- case ENOSPC:
- case EIO:
- case ENFILE:
- case EMFILE:
- case ENXIO:
- default:
- retval = KRB5_CC_IO; /* XXX */
- }
- return retval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_eseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_end_seq_get.
- */
-
-
-#include "fcc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_fcc_start_seq_get.
- *
- * Modifies:
- * id, cursor
- *
- * Effects:
- * Finishes sequential processing of the file credentials ccache id,
- * and invalidates the cursor (it must never be used after this call).
- */
-/* ARGSUSED */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_end_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- krb5_error_code kret = KRB5_OK;
-
- /* don't close; it may be left open by the caller,
- and if not, fcc_start_seq_get and/or fcc_next_cred will do the
- MAYBE_CLOSE.
- MAYBE_CLOSE(context, id, kret); */
- krb5_xfree((krb5_fcc_cursor *) *cursor);
-
- return kret;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_gennew.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_generate_new.
- */
-
-#define NEED_SOCKETS
-#include <errno.h>
-#include "fcc.h"
-#include "k5-int.h"
-
-#ifdef HAVE_NETINET_IN_H
-#if !defined(_WINSOCKAPI_) && !defined(HAVE_MACSOCK_H)
-#include <netinet/in.h>
-#endif
-#else
- #error find some way to use net-byte-order file version numbers.
-#endif
-
-extern krb5_cc_ops krb5_fcc_ops;
-
-/*
- * Effects:
- * Creates a new file cred cache whose name is guaranteed to be
- * unique. The name begins with the string TKT_ROOT (from fcc.h).
- * The cache is not opened, but the new filename is reserved.
- *
- * Returns:
- * The filled in krb5_ccache id.
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * system errors (from open)
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_generate_new (context, id)
- krb5_context context;
- krb5_ccache *id;
-{
- krb5_ccache lid;
- int ret;
- krb5_error_code retcode = 0;
- char scratch[sizeof(TKT_ROOT)+6+1]; /* +6 for the scratch part, +1 for
- NUL */
-
- /* Allocate memory */
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_fcc_ops;
-
- (void) strcpy(scratch, TKT_ROOT);
- (void) strcat(scratch, "XXXXXX");
- mktemp(scratch);
-
- lid->data = (krb5_pointer) malloc(sizeof(krb5_fcc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- /*
- * The file is initially closed at the end of this call...
- */
- ((krb5_fcc_data *) lid->data)->fd = -1;
-
- ((krb5_fcc_data *) lid->data)->filename = (char *)
- malloc(strlen(scratch) + 1);
- if (((krb5_fcc_data *) lid->data)->filename == NULL) {
- krb5_xfree(((krb5_fcc_data *) lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_fcc_data *) lid->data)->flags = 0;
-
- /* Set up the filename */
- strcpy(((krb5_fcc_data *) lid->data)->filename, scratch);
-
- /* Make sure the file name is reserved */
- ret = THREEPARAMOPEN(((krb5_fcc_data *) lid->data)->filename,
- O_CREAT | O_EXCL | O_WRONLY | O_BINARY, 0);
- if (ret == -1) {
- retcode = krb5_fcc_interpret(context, errno);
- goto err_out;
- } else {
- krb5_int16 fcc_fvno = htons(context->fcc_default_format);
- krb5_int16 fcc_flen = 0;
- int errsave, cnt;
-
- /* Ignore user's umask, set mode = 0600 */
-#ifndef HAVE_FCHMOD
-#ifdef HAVE_CHMOD
- chmod(((krb5_fcc_data *) lid->data)->filename, S_IRUSR | S_IWUSR);
-#endif
-#else
- fchmod(ret, S_IRUSR | S_IWUSR);
-#endif
- if ((cnt = write(ret, (char *)&fcc_fvno, sizeof(fcc_fvno)))
- != sizeof(fcc_fvno)) {
- errsave = errno;
- (void) close(ret);
- (void) unlink(((krb5_fcc_data *) lid->data)->filename);
- retcode = (cnt == -1) ? krb5_fcc_interpret(context, errsave) : KRB5_CC_IO;
- goto err_out;
- }
- /* For version 4 we save a length for the rest of the header */
- if (context->fcc_default_format == KRB5_FCC_FVNO_4) {
- if ((cnt = write(ret, (char *)&fcc_flen, sizeof(fcc_flen)))
- != sizeof(fcc_flen)) {
- errsave = errno;
- (void) close(ret);
- (void) unlink(((krb5_fcc_data *) lid->data)->filename);
- retcode = (cnt == -1) ? krb5_fcc_interpret(context, errsave) : KRB5_CC_IO;
- goto err_out;
- }
- }
- if (close(ret) == -1) {
- errsave = errno;
- (void) unlink(((krb5_fcc_data *) lid->data)->filename);
- retcode = krb5_fcc_interpret(context, errsave);
- goto err_out;
- }
-
- *id = lid;
-
- krb5_change_cache ();
- return KRB5_OK;
- }
-
-err_out:
- krb5_xfree(((krb5_fcc_data *) lid->data)->filename);
- krb5_xfree(((krb5_fcc_data *) lid->data));
- krb5_xfree(lid);
- return retcode;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_getnam.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_get_name.
- */
-
-
-
-#include "fcc.h"
-
-/*
- * Requires:
- * id is a file credential cache
- *
- * Returns:
- * The name of the file cred cache id.
- */
-char * KRB5_CALLCONV
-krb5_fcc_get_name (context, id)
- krb5_context context;
- krb5_ccache id;
-{
- return (char *) ((krb5_fcc_data *) id->data)->filename;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_gprin.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_get_principal.
- */
-
-
-#include "fcc.h"
-
-/*
- * Modifies:
- * id, princ
- *
- * Effects:
- * Retrieves the primary principal from id, as set with
- * krb5_fcc_initialize. The principal is returned is allocated
- * storage that must be freed by the caller via krb5_free_principal.
- *
- * Errors:
- * system errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_get_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal *princ;
-{
- krb5_error_code kret = KRB5_OK;
-
- MAYBE_OPEN(context, id, FCC_OPEN_RDONLY);
-
- /* make sure we're beyond the header */
- kret = krb5_fcc_skip_header(context, id);
- if (kret) goto done;
- kret = krb5_fcc_read_principal(context, id, princ);
-
-done:
- MAYBE_CLOSE(context, id, kret);
- return kret;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_init.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_initialize.
- */
-
-
-#include <errno.h>
-#include "fcc.h"
-
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Creates/refreshes the file cred cache id. If the cache exists, its
- * contents are destroyed.
- *
- * Errors:
- * system errors
- * permission errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_initialize(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal princ;
-{
- krb5_error_code kret = 0;
- int reti = 0;
-
- MAYBE_OPEN(context, id, FCC_OPEN_AND_ERASE);
-
-#ifndef HAVE_FCHMOD
-#ifdef HAVE_CHMOD
- reti = chmod(((krb5_fcc_data *) id->data)->filename, S_IREAD | S_IWRITE);
-#endif
-#else
- reti = fchmod(((krb5_fcc_data *) id->data)->fd, S_IREAD | S_IWRITE);
-#endif
- if (reti == -1) {
- kret = krb5_fcc_interpret(context, errno);
- MAYBE_CLOSE(context, id, kret);
- return kret;
- }
- kret = krb5_fcc_store_principal(context, id, princ);
-
- MAYBE_CLOSE(context, id, kret);
- krb5_change_cache ();
- return kret;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_maybe.c
- *
- * Copyright 1990, 1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for conditional open/close calls.
- */
-
-#define NEED_SOCKETS /* Only for ntohs, etc. */
-#define NEED_LOWLEVEL_IO
-#include "k5-int.h"
-
-#if HAVE_UNISTD_H
-#include <unistd.h>
-#endif
-
-#include "fcc.h"
-
-#ifdef HAVE_NETINET_IN_H
-#if !defined(_WINSOCKAPI_) && !defined(HAVE_MACSOCK_H)
-#include <netinet/in.h>
-#endif
-#else
- #error find some way to use net-byte-order file version numbers.
-#endif
-
-krb5_error_code
-krb5_fcc_close_file (context, id)
- krb5_context context;
- krb5_ccache id;
-{
- int ret;
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code retval;
-
- if (data->fd == -1)
- return KRB5_FCC_INTERNAL;
-
- retval = krb5_unlock_file(context, data->fd);
- ret = close (data->fd);
- data->fd = -1;
- if (retval)
- return retval;
- else
- return (ret == -1) ? krb5_fcc_interpret (context, errno) : 0;
-}
-
-krb5_error_code
-krb5_fcc_open_file (context, id, mode)
- krb5_context context;
- krb5_ccache id;
- int mode;
-{
- krb5_os_context os_ctx = (krb5_os_context)context->os_context;
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_ui_2 fcc_fvno;
- krb5_ui_2 fcc_flen;
- krb5_ui_2 fcc_tag;
- krb5_ui_2 fcc_taglen;
- int fd;
- int open_flag, lock_flag;
- krb5_error_code retval = 0;
-
- if (data->fd != -1) {
- /* Don't know what state it's in; shut down and start anew. */
- (void) krb5_unlock_file(context, data->fd);
- (void) close (data->fd);
- data->fd = -1;
- }
- data->mode = mode;
- switch(mode) {
- case FCC_OPEN_AND_ERASE:
- unlink(data->filename);
- open_flag = O_CREAT|O_EXCL|O_TRUNC|O_RDWR;
- break;
- case FCC_OPEN_RDWR:
- open_flag = O_RDWR;
- break;
- case FCC_OPEN_RDONLY:
- default:
- open_flag = O_RDONLY;
- break;
- }
-
- fd = THREEPARAMOPEN (data->filename, open_flag | O_BINARY, 0600);
- if (fd == -1)
- return krb5_fcc_interpret (context, errno);
-
- if (data->mode == FCC_OPEN_RDONLY)
- lock_flag = KRB5_LOCKMODE_SHARED;
- else
- lock_flag = KRB5_LOCKMODE_EXCLUSIVE;
-
- if ((retval = krb5_lock_file(context, fd, lock_flag))) {
- (void) close(fd);
- return retval;
- }
-
- if (mode == FCC_OPEN_AND_ERASE) {
- /* write the version number */
- int cnt;
-
- fcc_fvno = htons(context->fcc_default_format);
- data->version = context->fcc_default_format;
- if ((cnt = write(fd, (char *)&fcc_fvno, sizeof(fcc_fvno))) !=
- sizeof(fcc_fvno)) {
- retval = ((cnt == -1) ? krb5_fcc_interpret(context, errno) :
- KRB5_CC_IO);
- goto done;
- }
-
- data->fd = fd;
-
- if (data->version == KRB5_FCC_FVNO_4) {
- /* V4 of the credentials cache format allows for header tags */
-
- fcc_flen = 0;
-
- if (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID)
- fcc_flen += (2*sizeof(krb5_ui_2) + 2*sizeof(krb5_int32));
-
- /* Write header length */
- retval = krb5_fcc_store_ui_2(context, id, (krb5_int32)fcc_flen);
- if (retval) goto done;
-
- if (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID) {
- /* Write time offset tag */
- fcc_tag = FCC_TAG_DELTATIME;
- fcc_taglen = 2*sizeof(krb5_int32);
-
- retval = krb5_fcc_store_ui_2(context,id,(krb5_int32)fcc_tag);
- if (retval) goto done;
- retval = krb5_fcc_store_ui_2(context,id,(krb5_int32)fcc_taglen);
- if (retval) goto done;
- retval = krb5_fcc_store_int32(context,id,os_ctx->time_offset);
- if (retval) goto done;
- retval = krb5_fcc_store_int32(context,id,os_ctx->usec_offset);
- if (retval) goto done;
- }
- }
- goto done;
- }
-
- /* verify a valid version number is there */
- if (read(fd, (char *)&fcc_fvno, sizeof(fcc_fvno)) !=
- sizeof(fcc_fvno)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- if ((fcc_fvno != htons(KRB5_FCC_FVNO_4)) &&
- (fcc_fvno != htons(KRB5_FCC_FVNO_3)) &&
- (fcc_fvno != htons(KRB5_FCC_FVNO_2)) &&
- (fcc_fvno != htons(KRB5_FCC_FVNO_1)))
- {
- retval = KRB5_CCACHE_BADVNO;
- goto done;
- }
-
- data->version = ntohs(fcc_fvno);
- data->fd = fd;
-
- if (data->version == KRB5_FCC_FVNO_4) {
- char buf[1024];
-
- if (krb5_fcc_read_ui_2(context, id, &fcc_flen) ||
- (fcc_flen > sizeof(buf)))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
-
- while (fcc_flen) {
- if ((fcc_flen < (2 * sizeof(krb5_ui_2))) ||
- krb5_fcc_read_ui_2(context, id, &fcc_tag) ||
- krb5_fcc_read_ui_2(context, id, &fcc_taglen) ||
- (fcc_taglen > (fcc_flen - 2*sizeof(krb5_ui_2))))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
-
- switch (fcc_tag) {
- case FCC_TAG_DELTATIME:
- if (fcc_taglen != 2*sizeof(krb5_int32)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- if (!(context->library_options & KRB5_LIBOPT_SYNC_KDCTIME) ||
- (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID))
- {
- if (krb5_fcc_read(context, id, buf, fcc_taglen)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- break;
- }
- if (krb5_fcc_read_int32(context, id, &os_ctx->time_offset) ||
- krb5_fcc_read_int32(context, id, &os_ctx->usec_offset))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- os_ctx->os_flags =
- ((os_ctx->os_flags & ~KRB5_OS_TOFFSET_TIME) |
- KRB5_OS_TOFFSET_VALID);
- break;
- default:
- if (fcc_taglen && krb5_fcc_read(context,id,buf,fcc_taglen)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- break;
- }
- fcc_flen -= (2*sizeof(krb5_ui_2) + fcc_taglen);
- }
- }
-
-done:
- if (retval) {
- data->fd = -1;
- (void) krb5_unlock_file(context, fd);
- (void) close(fd);
- }
- return retval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_nseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_next_cred.
- */
-
-
-#include <errno.h>
-#include "fcc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_fcc_start_seq_get.
- *
- * Modifes:
- * cursor, creds
- *
- * Effects:
- * Fills in creds with the "next" credentals structure from the cache
- * id. The actual order the creds are returned in is arbitrary.
- * Space is allocated for the variable length fields in the
- * credentials structure, so the object returned must be passed to
- * krb5_destroy_credential.
- *
- * The cursor is updated for the next call to krb5_fcc_next_cred.
- *
- * Errors:
- * system errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_next_cred(context, id, cursor, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
- krb5_creds *creds;
-{
-#define TCHECK(ret) if (ret != KRB5_OK) goto lose;
- krb5_error_code kret;
- krb5_fcc_cursor *fcursor;
- krb5_int32 int32;
- krb5_octet octet;
-
- memset((char *)creds, 0, sizeof(*creds));
-
- MAYBE_OPEN(context, id, FCC_OPEN_RDONLY);
-
- fcursor = (krb5_fcc_cursor *) *cursor;
-
- kret = lseek(((krb5_fcc_data *) id->data)->fd, fcursor->pos, SEEK_SET);
- if (kret < 0) {
- kret = krb5_fcc_interpret(context, errno);
- MAYBE_CLOSE(context, id, kret);
- return kret;
- }
-
- kret = krb5_fcc_read_principal(context, id, &creds->client);
- TCHECK(kret);
- kret = krb5_fcc_read_principal(context, id, &creds->server);
- TCHECK(kret);
- kret = krb5_fcc_read_keyblock(context, id, &creds->keyblock);
- TCHECK(kret);
- kret = krb5_fcc_read_times(context, id, &creds->times);
- TCHECK(kret);
- kret = krb5_fcc_read_octet(context, id, &octet);
- TCHECK(kret);
- creds->is_skey = octet;
- kret = krb5_fcc_read_int32(context, id, &int32);
- TCHECK(kret);
- creds->ticket_flags = int32;
- kret = krb5_fcc_read_addrs(context, id, &creds->addresses);
- TCHECK(kret);
- kret = krb5_fcc_read_authdata(context, id, &creds->authdata);
- TCHECK(kret);
- kret = krb5_fcc_read_data(context, id, &creds->ticket);
- TCHECK(kret);
- kret = krb5_fcc_read_data(context, id, &creds->second_ticket);
- TCHECK(kret);
-
- fcursor->pos = lseek(((krb5_fcc_data *) id->data)->fd, 0, SEEK_CUR);
- cursor = (krb5_cc_cursor *) fcursor;
-
-lose:
- MAYBE_CLOSE(context, id, kret); /* won't overwrite kret
- if already set */
- if (kret != KRB5_OK)
- krb5_free_cred_contents(context, creds);
- return kret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_ops.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the structure krb5_fcc_ops.
- */
-
-#define NEED_WINDOWS
-#include "fcc.h"
-
-krb5_cc_ops krb5_fcc_ops = {
- 0,
- "FILE",
- krb5_fcc_get_name,
- krb5_fcc_resolve,
- krb5_fcc_generate_new,
- krb5_fcc_initialize,
- krb5_fcc_destroy,
- krb5_fcc_close,
- krb5_fcc_store,
- krb5_fcc_retrieve,
- krb5_fcc_get_principal,
- krb5_fcc_start_seq_get,
- krb5_fcc_next_cred,
- krb5_fcc_end_seq_get,
- NULL, /* XXX krb5_fcc_remove, */
- krb5_fcc_set_flags,
-};
-
-#if defined(_MSDOS) || defined(_WIN32)
-
-/*
- * krb5_change_cache should be called after the cache changes.
- * A notification message is is posted out to all top level
- * windows so that they may recheck the cache based on the
- * changes made. We register a unique message type with which
- * we'll communicate to all other processes.
- */
-
-krb5_error_code
-krb5_change_cache (void) {
-
- PostMessage(HWND_BROADCAST, krb5_get_notification_message(), 0, 0);
-
- return 0;
-}
-
-KRB5_DLLIMP unsigned int KRB5_CALLCONV
-krb5_get_notification_message (void) {
- static unsigned int message = 0;
-
- if (message == 0)
- message = RegisterWindowMessage(WM_KERBEROS5_CHANGED);
-
- return message;
-}
-#else /* _MSDOS || _WIN32 */
-
-krb5_error_code
-krb5_change_cache ()
-{
- return 0;
-}
-unsigned int
-krb5_get_notification_message ()
-{
- return 0;
-}
-
-#endif /* _MSDOS || _WIN32 */
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_read.c
- *
- * Copyright 1990,1991,1992,1993,1994 by the Massachusetts Institute
- * of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for reading variables from a
- * credentials cache. These are not library-exported functions.
- */
-
-
-#include <errno.h>
-#include "fcc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) goto errout;
-
-/*
- * Effects:
- * Reads len bytes from the cache id, storing them in buf.
- *
- * Errors:
- * KRB5_CC_END - there were not len bytes available
- * system errors (read)
- */
-krb5_error_code
-krb5_fcc_read(context, id, buf, len)
- krb5_context context;
- krb5_ccache id;
- krb5_pointer buf;
- int len;
-{
- int ret;
-
- ret = read(((krb5_fcc_data *) id->data)->fd, (char *) buf, len);
- if (ret == -1)
- return krb5_fcc_interpret(context, errno);
- else if (ret != len)
- return KRB5_CC_END;
- else
- return KRB5_OK;
-}
-
-/*
- * FOR ALL OF THE FOLLOWING FUNCTIONS:
- *
- * Requires:
- * id is open and set to read at the appropriate place in the file
- *
- * Effects:
- * Fills in the second argument with data of the appropriate type from
- * the file. In some cases, the functions have to allocate space for
- * variable length fields; therefore, krb5_destroy_<type> must be
- * called for each filled in structure.
- *
- * Errors:
- * system errors (read errors)
- * KRB5_CC_NOMEM
- */
-
-krb5_error_code
-krb5_fcc_read_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal *princ;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code kret;
- register krb5_principal tmpprinc;
- krb5_int32 length, type, msize;
- int i;
-
- if (data->version == KRB5_FCC_FVNO_1) {
- type = KRB5_NT_UNKNOWN;
- } else {
- /* Read principal type */
- kret = krb5_fcc_read_int32(context, id, &type);
- if (kret != KRB5_OK)
- return kret;
- }
-
- /* Read the number of components */
- kret = krb5_fcc_read_int32(context, id, &length);
- if (kret != KRB5_OK)
- return kret;
-
- /*
- * DCE includes the principal's realm in the count; the new format
- * does not.
- */
- if (data->version == KRB5_FCC_FVNO_1)
- length--;
-
- tmpprinc = (krb5_principal) malloc(sizeof(krb5_principal_data));
- if (tmpprinc == NULL)
- return KRB5_CC_NOMEM;
- if (length) {
- tmpprinc->data = 0;
- msize = length * sizeof(krb5_data);
- if ((msize & VALID_UINT_BITS) == msize) /* Not overflow size_t */
- tmpprinc->data = (krb5_data *) malloc((size_t) msize);
- if (tmpprinc->data == (krb5_data *) 0) {
- free((char *)tmpprinc);
- return KRB5_CC_NOMEM;
- }
- } else
- tmpprinc->data = 0;
- tmpprinc->magic = KV5M_PRINCIPAL;
- tmpprinc->length = length;
- tmpprinc->type = type;
-
- kret = krb5_fcc_read_data(context, id, krb5_princ_realm(context, tmpprinc));
-
- i = 0;
- CHECK(kret);
-
- for (i=0; i < length; i++) {
- kret = krb5_fcc_read_data(context, id, krb5_princ_component(context, tmpprinc, i));
- CHECK(kret);
- }
- *princ = tmpprinc;
- return KRB5_OK;
-
- errout:
- while(--i >= 0)
- free(krb5_princ_component(context, tmpprinc, i)->data);
- free((char *)tmpprinc->data);
- free((char *)tmpprinc);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_addrs(context, id, addrs)
- krb5_context context;
- krb5_ccache id;
- krb5_address ***addrs;
-{
- krb5_error_code kret;
- krb5_int32 length, msize;
- int i;
-
- *addrs = 0;
-
- /* Read the number of components */
- kret = krb5_fcc_read_int32(context, id, &length);
- CHECK(kret);
-
- /* Make *addrs able to hold length pointers to krb5_address structs
- * Add one extra for a null-terminated list
- */
- msize = length+1;
- if ((msize & VALID_UINT_BITS) != msize) /* Overflow size_t??? */
- return KRB5_CC_NOMEM;
- *addrs = (krb5_address **) calloc((size_t) msize, sizeof(krb5_address *));
- if (*addrs == NULL)
- return KRB5_CC_NOMEM;
-
- for (i=0; i < length; i++) {
- (*addrs)[i] = (krb5_address *) malloc(sizeof(krb5_address));
- if ((*addrs)[i] == NULL) {
- krb5_free_addresses(context, *addrs);
- return KRB5_CC_NOMEM;
- }
- kret = krb5_fcc_read_addr(context, id, (*addrs)[i]);
- CHECK(kret);
- }
-
- return KRB5_OK;
- errout:
- if (*addrs)
- krb5_free_addresses(context, *addrs);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_keyblock(context, id, keyblock)
- krb5_context context;
- krb5_ccache id;
- krb5_keyblock *keyblock;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code kret;
- krb5_ui_2 ui2;
- krb5_int32 int32;
-
- keyblock->magic = KV5M_KEYBLOCK;
- keyblock->contents = 0;
-
- kret = krb5_fcc_read_ui_2(context, id, &ui2);
- keyblock->enctype = ui2;
- CHECK(kret);
- if (data->version == KRB5_FCC_FVNO_3) {
- kret = krb5_fcc_read_ui_2(context, id, &ui2);
- /* keyblock->enctype = ui2; */
- CHECK(kret);
- }
-
- kret = krb5_fcc_read_int32(context, id, &int32);
- CHECK(kret);
-#if defined(_MSDOS)
- int32 &= VALID_INT_BITS; /* Gradient does not write correctly */
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow size_t??? */
- return KRB5_CC_NOMEM;
-#endif
- keyblock->length = (int) int32;
- if ( keyblock->length == 0 )
- return KRB5_OK;
- keyblock->contents = (unsigned char *) malloc(keyblock->length*
- sizeof(krb5_octet));
- if (keyblock->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_fcc_read(context, id, keyblock->contents, keyblock->length);
- if (kret)
- goto errout;
-
- return KRB5_OK;
- errout:
- if (keyblock->contents)
- krb5_xfree(keyblock->contents);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_data(context, id, data)
- krb5_context context;
- krb5_ccache id;
- krb5_data *data;
-{
- krb5_error_code kret;
- krb5_int32 len;
-
- data->magic = KV5M_DATA;
- data->data = 0;
-
- kret = krb5_fcc_read_int32(context, id, &len);
- CHECK(kret);
-#if defined(_MSDOS)
- len &= VALID_INT_BITS;
-#else
- if ((len & VALID_INT_BITS) != len)
- return KRB5_CC_NOMEM;
-#endif
- data->length = (int) len;
-
- if (data->length == 0) {
- data->data = 0;
- return KRB5_OK;
- }
-
- data->data = (char *) malloc(data->length+1);
- if (data->data == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_fcc_read(context, id, data->data, data->length);
- CHECK(kret);
-
- data->data[data->length] = 0; /* Null terminate, just in case.... */
- return KRB5_OK;
- errout:
- if (data->data)
- krb5_xfree(data->data);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_addr(context, id, addr)
- krb5_context context;
- krb5_ccache id;
- krb5_address *addr;
-{
- krb5_error_code kret;
- krb5_ui_2 ui2;
- krb5_int32 int32;
-
- addr->magic = KV5M_ADDRESS;
- addr->contents = 0;
-
- kret = krb5_fcc_read_ui_2(context, id, &ui2);
- CHECK(kret);
- addr->addrtype = ui2;
-
- kret = krb5_fcc_read_int32(context, id, &int32);
- CHECK(kret);
-#if defined(_MSDOS)
- int32 &= VALID_INT_BITS; /* Gradient DCE does this wrong */
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow int??? */
- return KRB5_CC_NOMEM;
-#endif
- addr->length = (int) int32;
-
- if (addr->length == 0)
- return KRB5_OK;
-
- addr->contents = (krb5_octet *) malloc(addr->length);
- if (addr->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_fcc_read(context, id, addr->contents, addr->length);
- CHECK(kret);
-
- return KRB5_OK;
- errout:
- if (addr->contents)
- krb5_xfree(addr->contents);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_int32(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 *i;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code retval;
- unsigned char buf[4];
- krb5_int32 val;
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2))
- return krb5_fcc_read(context, id, (krb5_pointer) i, sizeof(krb5_int32));
- else {
- retval = krb5_fcc_read(context, id, buf, 4);
- if (retval)
- return retval;
- val = buf[0];
- val = (val << 8) | buf[1];
- val = (val << 8) | buf[2];
- val = (val << 8) | buf[3];
- *i = val;
- return 0;
- }
-}
-
-krb5_error_code
-krb5_fcc_read_ui_2(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_ui_2 *i;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code retval;
- unsigned char buf[2];
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2))
- return krb5_fcc_read(context, id, (krb5_pointer) i, sizeof(krb5_ui_2));
- else {
- retval = krb5_fcc_read(context, id, buf, 2);
- if (retval)
- return retval;
- *i = (buf[0] << 8) + buf[1];
- return 0;
- }
-}
-
-krb5_error_code
-krb5_fcc_read_octet(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_octet *i;
-{
- return krb5_fcc_read(context, id, (krb5_pointer) i, 1);
-}
-
-
-krb5_error_code
-krb5_fcc_read_times(context, id, t)
- krb5_context context;
- krb5_ccache id;
- krb5_ticket_times *t;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code retval;
- krb5_int32 i;
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2))
- return krb5_fcc_read(context, id, (krb5_pointer) t, sizeof(krb5_ticket_times));
- else {
- retval = krb5_fcc_read_int32(context, id, &i);
- CHECK(retval);
- t->authtime = i;
-
- retval = krb5_fcc_read_int32(context, id, &i);
- CHECK(retval);
- t->starttime = i;
-
- retval = krb5_fcc_read_int32(context, id, &i);
- CHECK(retval);
- t->endtime = i;
-
- retval = krb5_fcc_read_int32(context, id, &i);
- CHECK(retval);
- t->renew_till = i;
- }
- return 0;
-errout:
- return retval;
-}
-
-krb5_error_code
-krb5_fcc_read_authdata(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata ***a;
-{
- krb5_error_code kret;
- krb5_int32 length, msize;
- int i;
-
- *a = 0;
-
- /* Read the number of components */
- kret = krb5_fcc_read_int32(context, id, &length);
- CHECK(kret);
-
- if (length == 0)
- return KRB5_OK;
-
- /* Make *a able to hold length pointers to krb5_authdata structs
- * Add one extra for a null-terminated list
- */
- msize = length+1;
- if ((msize & VALID_UINT_BITS) != msize) /* Overflow size_t??? */
- return KRB5_CC_NOMEM;
- *a = (krb5_authdata **) calloc((size_t) msize, sizeof(krb5_authdata *));
- if (*a == NULL)
- return KRB5_CC_NOMEM;
-
- for (i=0; i < length; i++) {
- (*a)[i] = (krb5_authdata *) malloc(sizeof(krb5_authdata));
- if ((*a)[i] == NULL) {
- krb5_free_authdata(context, *a);
- return KRB5_CC_NOMEM;
- }
- kret = krb5_fcc_read_authdatum(context, id, (*a)[i]);
- CHECK(kret);
- }
-
- return KRB5_OK;
- errout:
- if (*a)
- krb5_free_authdata(context, *a);
- return kret;
-}
-
-krb5_error_code
-krb5_fcc_read_authdatum(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata *a;
-{
- krb5_error_code kret;
- krb5_int32 int32;
- krb5_ui_2 ui2;
-
- a->magic = KV5M_AUTHDATA;
- a->contents = NULL;
-
- kret = krb5_fcc_read_ui_2(context, id, &ui2);
- CHECK(kret);
- a->ad_type = (krb5_authdatatype)ui2;
- kret = krb5_fcc_read_int32(context, id, &int32);
- CHECK(kret);
-#ifdef _MSDOS
- int32 &= VALID_INT_BITS;
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow int??? */
- return KRB5_CC_NOMEM;
-#endif
- a->length = (int) int32;
-
- if (a->length == 0 )
- return KRB5_OK;
-
- a->contents = (krb5_octet *) malloc(a->length);
- if (a->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_fcc_read(context, id, a->contents, a->length);
- CHECK(kret);
-
- return KRB5_OK;
- errout:
- if (a->contents)
- krb5_xfree(a->contents);
- return kret;
-
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_reslv.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_resolve.
- */
-
-
-
-#include "fcc.h"
-
-extern krb5_cc_ops krb5_fcc_ops;
-
-/*
- * Requires:
- * residual is a legal path name, and a null-terminated string
- *
- * Modifies:
- * id
- *
- * Effects:
- * creates a file-based cred cache that will reside in the file
- * residual. The cache is not opened, but the filename is reserved.
- *
- * Returns:
- * A filled in krb5_ccache structure "id".
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * permission errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_resolve (context, id, residual)
- krb5_context context;
- krb5_ccache *id;
- const char *residual;
-{
- krb5_ccache lid;
-
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_fcc_ops;
-
- lid->data = (krb5_pointer) malloc(sizeof(krb5_fcc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_fcc_data *) lid->data)->filename = (char *)
- malloc(strlen(residual) + 1);
-
- if (((krb5_fcc_data *) lid->data)->filename == NULL) {
- krb5_xfree(((krb5_fcc_data *) lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- /* default to open/close on every trn */
- ((krb5_fcc_data *) lid->data)->flags = KRB5_TC_OPENCLOSE;
- ((krb5_fcc_data *) lid->data)->fd = -1;
-
- /* Set up the filename */
- strcpy(((krb5_fcc_data *) lid->data)->filename, residual);
-
- lid->magic = KV5M_CCACHE;
-
- /* other routines will get errors on open, and callers must expect them,
- if cache is non-existent/unusable */
- *id = lid;
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_retrv.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_retrieve.
- */
-
-#if 0
-
-#include "fcc.h"
-
-#ifdef macintosh
-#define register
-#endif
-
-#define set(bits) (whichfields & bits)
-#define flags_match(a,b) (((a) & (b)) == (a))
-#define times_match_exact(t1,t2) (memcmp((char *)(t1), (char *)(t2), sizeof(*(t1))) == 0)
-
-static krb5_boolean times_match PROTOTYPE((const krb5_ticket_times *,
- const krb5_ticket_times *));
-static krb5_boolean standard_fields_match
- PROTOTYPE((krb5_context,
- const krb5_creds *,
- const krb5_creds *));
-
-static krb5_boolean srvname_match
- PROTOTYPE((krb5_context,
- const krb5_creds *,
- const krb5_creds *));
-
-static krb5_boolean authdata_match
- PROTOTYPE ((krb5_authdata * const *, krb5_authdata * const *));
-
-
-static krb5_boolean
-data_match(data1, data2)
-register const krb5_data *data1, *data2;
-{
- if (!data1) {
- if (!data2)
- return TRUE;
- else
- return FALSE;
- }
- if (!data2) return FALSE;
-
- if (data1->length != data2->length)
- return FALSE;
- else
- return memcmp(data1->data, data2->data, data1->length) ? FALSE : TRUE;
-}
-
-
-
-/*
- * Effects:
- * Searches the file cred cache is for a credential matching mcreds,
- * with the fields specified by whichfields. If one if found, it is
- * returned in creds, which should be freed by the caller with
- * krb5_free_credentials().
- *
- * The fields are interpreted in the following way (all constants are
- * preceded by KRB5_TC_). MATCH_IS_SKEY requires the is_skey field to
- * match exactly. MATCH_TIMES requires the requested lifetime to be
- * at least as great as that specified; MATCH_TIMES_EXACT requires the
- * requested lifetime to be exactly that specified. MATCH_FLAGS
- * requires only the set bits in mcreds be set in creds;
- * MATCH_FLAGS_EXACT requires all bits to match.
- *
- * Errors:
- * system errors
- * permission errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- /* This function could be considerably faster if it kept indexing */
- /* information.. sounds like a "next version" idea to me. :-) */
-
- krb5_cc_cursor cursor;
- krb5_error_code kret;
- krb5_creds fetchcreds;
-
- kret = krb5_fcc_start_seq_get(context, id, &cursor);
- if (kret != KRB5_OK)
- return kret;
-
- while ((kret = krb5_fcc_next_cred(context, id, &cursor, &fetchcreds)) == KRB5_OK) {
- if (((set(KRB5_TC_MATCH_SRV_NAMEONLY) &&
- srvname_match(context, mcreds, &fetchcreds)) ||
- standard_fields_match(context, mcreds, &fetchcreds))
- &&
- (! set(KRB5_TC_MATCH_IS_SKEY) ||
- mcreds->is_skey == fetchcreds.is_skey)
- &&
- (! set(KRB5_TC_MATCH_FLAGS_EXACT) ||
- mcreds->ticket_flags == fetchcreds.ticket_flags)
- &&
- (! set(KRB5_TC_MATCH_FLAGS) ||
- flags_match(mcreds->ticket_flags, fetchcreds.ticket_flags))
- &&
- (! set(KRB5_TC_MATCH_TIMES_EXACT) ||
- times_match_exact(&mcreds->times, &fetchcreds.times))
- &&
- (! set(KRB5_TC_MATCH_TIMES) ||
- times_match(&mcreds->times, &fetchcreds.times))
- &&
- ( ! set(KRB5_TC_MATCH_AUTHDATA) ||
- authdata_match(mcreds->authdata, fetchcreds.authdata))
- &&
- (! set(KRB5_TC_MATCH_2ND_TKT) ||
- data_match (&mcreds->second_ticket, &fetchcreds.second_ticket))
- &&
- ((! set(KRB5_TC_MATCH_KTYPE))||
- (mcreds->keyblock.enctype == fetchcreds.keyblock.enctype)))
- {
- krb5_fcc_end_seq_get(context, id, &cursor);
- *creds = fetchcreds;
- return KRB5_OK;
- }
-
- /* This one doesn't match */
- krb5_free_cred_contents(context, &fetchcreds);
- }
-
- /* If we get here, a match wasn't found */
- krb5_fcc_end_seq_get(context, id, &cursor);
- return KRB5_CC_NOTFOUND;
-}
-
-static krb5_boolean
-times_match(t1, t2)
-register const krb5_ticket_times *t1;
-register const krb5_ticket_times *t2;
-{
- if (t1->renew_till) {
- if (t1->renew_till > t2->renew_till)
- return FALSE; /* this one expires too late */
- }
- if (t1->endtime) {
- if (t1->endtime > t2->endtime)
- return FALSE; /* this one expires too late */
- }
- /* only care about expiration on a times_match */
- return TRUE;
-}
-
-static krb5_boolean
-standard_fields_match(context, mcreds, creds)
-krb5_context context;
-const krb5_creds *mcreds;
-const krb5_creds *creds;
-{
-krb5_boolean clientcmp;
-krb5_boolean servercmp;
- clientcmp = krb5_principal_compare(context, mcreds->client,creds->client);
- servercmp = krb5_principal_compare(context, mcreds->server,creds->server);
- return (clientcmp && servercmp);
-}
-
-/* only match the server name portion, not the server realm portion */
-
-static krb5_boolean
-srvname_match(context, mcreds, creds)
- krb5_context context;
-register const krb5_creds *mcreds, *creds;
-{
- krb5_boolean retval;
- krb5_principal_data p1, p2;
-
- retval = krb5_principal_compare(context, mcreds->client,creds->client);
- if (retval != TRUE)
- return retval;
- /*
- * Hack to ignore the server realm for the purposes of the compare.
- */
- p1 = *mcreds->server;
- p2 = *creds->server;
- p1.realm = p2.realm;
- return krb5_principal_compare(context, &p1, &p2);
-}
-
-static krb5_boolean
-authdata_match(mdata, data)
- register krb5_authdata * const *mdata, * const *data;
-{
- register const krb5_authdata *mdatap, *datap;
-
- if (mdata == data)
- return TRUE;
-
- if (mdata == NULL)
- return *data == NULL;
-
- if (data == NULL)
- return *mdata == NULL;
-
- while ((mdatap = *mdata) && (datap = *data)) {
- if ((mdatap->ad_type != datap->ad_type) ||
- (mdatap->length != datap->length) ||
- (memcmp ((char *)mdatap->contents,
- (char *)datap->contents, mdatap->length) != 0))
- return FALSE;
- mdata++;
- data++;
- }
- return (*mdata == NULL) && (*data == NULL);
-}
-
-#else
-
-#include "k5-int.h"
-
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- return krb5_cc_retrieve_cred_default (context, id, whichfields,
- mcreds, creds);
-}
-
-#endif
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_sflags.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_set_flags.
- */
-
-
-
-#include "fcc.h"
-
-/*
- * Requires:
- * id is a cred cache returned by krb5_fcc_resolve or
- * krb5_fcc_generate_new, but has not been opened by krb5_fcc_initialize.
- *
- * Modifies:
- * id
- *
- * Effects:
- * Sets the operational flags of id to flags.
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_set_flags(context, id, flags)
- krb5_context context;
- krb5_ccache id;
- krb5_flags flags;
-{
- /* XXX This should check for illegal combinations, if any.. */
- if (flags & KRB5_TC_OPENCLOSE) {
- /* asking to turn on OPENCLOSE mode */
- if (!OPENCLOSE(id)) {
- (void) krb5_fcc_close_file (context, id);
- }
- } else {
- /* asking to turn off OPENCLOSE mode, meaning it must be
- left open. We open if it's not yet open */
- MAYBE_OPEN(context, id, FCC_OPEN_RDONLY);
- }
-
- ((krb5_fcc_data *) id->data)->flags = flags;
- return KRB5_OK;
-}
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_skip.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for reading variables from a
- * credentials cache. These are not library-exported functions.
- */
-
-
-#include "fcc.h"
-
-krb5_error_code
-krb5_fcc_skip_header(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code kret;
- krb5_ui_2 fcc_flen;
-
- lseek(data->fd, sizeof(krb5_ui_2), SEEK_SET);
- if (data->version == KRB5_FCC_FVNO_4) {
- kret = krb5_fcc_read_ui_2(context, id, &fcc_flen);
- if (kret) return kret;
- if(lseek(data->fd, fcc_flen, SEEK_CUR) < 0)
- return errno;
- }
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_fcc_skip_principal(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_error_code kret;
- krb5_principal princ;
-
- kret = krb5_fcc_read_principal(context, id, &princ);
- if (kret != KRB5_OK)
- return kret;
-
- krb5_free_principal(context, princ);
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_sseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_start_seq_get.
- */
-
-
-#include "fcc.h"
-
-/*
- * Effects:
- * Prepares for a sequential search of the credentials cache.
- * Returns and krb5_cc_cursor to be used with krb5_fcc_next_cred and
- * krb5_fcc_end_seq_get.
- *
- * If the cache is modified between the time of this call and the time
- * of the final krb5_fcc_end_seq_get, the results are undefined.
- *
- * Errors:
- * KRB5_CC_NOMEM
- * system errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_start_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- krb5_fcc_cursor *fcursor;
- krb5_error_code kret = KRB5_OK;
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
-
- fcursor = (krb5_fcc_cursor *) malloc(sizeof(krb5_fcc_cursor));
- if (fcursor == NULL)
- return KRB5_CC_NOMEM;
- if (OPENCLOSE(id)) {
- kret = krb5_fcc_open_file(context, id, FCC_OPEN_RDONLY);
- if (kret) {
- krb5_xfree(fcursor);
- return kret;
- }
- }
-
- /* Make sure we start reading right after the primary principal */
- kret = krb5_fcc_skip_header(context, id);
- if (kret) goto done;
- kret = krb5_fcc_skip_principal(context, id);
- if (kret) goto done;
-
- fcursor->pos = lseek(data->fd, 0, SEEK_CUR);
- *cursor = (krb5_cc_cursor) fcursor;
-
-done:
- MAYBE_CLOSE(context, id, kret);
- return kret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_store.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_store.
- */
-
-
-#include <errno.h>
-#include "fcc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) return ret;
-
-/*
- * Modifies:
- * the file cache
- *
- * Effects:
- * stores creds in the file cred cache
- *
- * Errors:
- * system errors
- * storage failure errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_fcc_store(context, id, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_creds *creds;
-{
-#define TCHECK(ret) if (ret != KRB5_OK) goto lose;
- krb5_error_code ret;
-
- MAYBE_OPEN(context, id, FCC_OPEN_RDWR);
-
- /* Make sure we are writing to the end of the file */
- ret = lseek(((krb5_fcc_data *) id->data)->fd, 0, SEEK_END);
- if (ret < 0) {
- MAYBE_CLOSE_IGNORE(context, id);
- return krb5_fcc_interpret(context, errno);
- }
-
- ret = krb5_fcc_store_principal(context, id, creds->client);
- TCHECK(ret);
- ret = krb5_fcc_store_principal(context, id, creds->server);
- TCHECK(ret);
- ret = krb5_fcc_store_keyblock(context, id, &creds->keyblock);
- TCHECK(ret);
- ret = krb5_fcc_store_times(context, id, &creds->times);
- TCHECK(ret);
- ret = krb5_fcc_store_octet(context, id, creds->is_skey);
- TCHECK(ret);
- ret = krb5_fcc_store_int32(context, id, creds->ticket_flags);
- TCHECK(ret);
- ret = krb5_fcc_store_addrs(context, id, creds->addresses);
- TCHECK(ret);
- ret = krb5_fcc_store_authdata(context, id, creds->authdata);
- TCHECK(ret);
- ret = krb5_fcc_store_data(context, id, &creds->ticket);
- TCHECK(ret);
- ret = krb5_fcc_store_data(context, id, &creds->second_ticket);
- TCHECK(ret);
-
-lose:
- MAYBE_CLOSE(context, id, ret);
- krb5_change_cache ();
- return ret;
-#undef TCHECK
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/fcc_write.c
- *
- * Copyright 1990,1991,1992,1993,1994 by the Massachusetts Institute
- * of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_fcc_write_<type>.
- */
-
-
-#include <errno.h>
-#include "fcc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) return ret;
-
-/*
- * Requires:
- * id is open
- *
- * Effects:
- * Writes len bytes from buf into the file cred cache id.
- *
- * Errors:
- * system errors
- */
-krb5_error_code
-krb5_fcc_write(context, id, buf, len)
- krb5_context context;
- krb5_ccache id;
- krb5_pointer buf;
- int len;
-{
- int ret;
-
- ret = write(((krb5_fcc_data *)id->data)->fd, (char *) buf, len);
- if (ret < 0)
- return krb5_fcc_interpret(context, errno);
- if (ret != len)
- return KRB5_CC_WRITE;
- return KRB5_OK;
-}
-
-/*
- * FOR ALL OF THE FOLLOWING FUNCTIONS:
- *
- * Requires:
- * ((krb5_fcc_data *) id->data)->fd is open and at the right position.
- *
- * Effects:
- * Stores an encoded version of the second argument in the
- * cache file.
- *
- * Errors:
- * system errors
- */
-
-krb5_error_code
-krb5_fcc_store_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal princ;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code ret;
- krb5_int32 i, length, tmp, type;
-
- type = krb5_princ_type(context, princ);
- tmp = length = krb5_princ_size(context, princ);
-
- if (data->version == KRB5_FCC_FVNO_1) {
- /*
- * DCE-compatible format means that the length count
- * includes the realm. (It also doesn't include the
- * principal type information.)
- */
- tmp++;
- } else {
- ret = krb5_fcc_store_int32(context, id, type);
- CHECK(ret);
- }
-
- ret = krb5_fcc_store_int32(context, id, tmp);
- CHECK(ret);
-
- ret = krb5_fcc_store_data(context, id, krb5_princ_realm(context, princ));
- CHECK(ret);
-
- for (i=0; i < length; i++) {
- ret = krb5_fcc_store_data(context, id, krb5_princ_component(context, princ, i));
- CHECK(ret);
- }
-
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_fcc_store_addrs(context, id, addrs)
- krb5_context context;
- krb5_ccache id;
- krb5_address ** addrs;
-{
- krb5_error_code ret;
- krb5_address **temp;
- krb5_int32 i, length = 0;
-
- /* Count the number of components */
- if (addrs) {
- temp = addrs;
- while (*temp++)
- length += 1;
- }
-
- ret = krb5_fcc_store_int32(context, id, length);
- CHECK(ret);
- for (i=0; i < length; i++) {
- ret = krb5_fcc_store_addr(context, id, addrs[i]);
- CHECK(ret);
- }
-
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_fcc_store_keyblock(context, id, keyblock)
- krb5_context context;
- krb5_ccache id;
- krb5_keyblock *keyblock;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code ret;
-
- ret = krb5_fcc_store_ui_2(context, id, keyblock->enctype);
- CHECK(ret);
- if (data->version == KRB5_FCC_FVNO_3) {
- ret = krb5_fcc_store_ui_2(context, id, keyblock->enctype);
- CHECK(ret);
- }
- ret = krb5_fcc_store_int32(context, id, keyblock->length);
- CHECK(ret);
- return krb5_fcc_write(context, id, (char *) keyblock->contents, keyblock->length);
-}
-
-krb5_error_code
-krb5_fcc_store_addr(context, id, addr)
- krb5_context context;
- krb5_ccache id;
- krb5_address *addr;
-{
- krb5_error_code ret;
-
- ret = krb5_fcc_store_ui_2(context, id, addr->addrtype);
- CHECK(ret);
- ret = krb5_fcc_store_int32(context, id, addr->length);
- CHECK(ret);
- return krb5_fcc_write(context, id, (char *) addr->contents, addr->length);
-}
-
-
-krb5_error_code
-krb5_fcc_store_data(context, id, data)
- krb5_context context;
- krb5_ccache id;
- krb5_data *data;
-{
- krb5_error_code ret;
-
- ret = krb5_fcc_store_int32(context, id, data->length);
- CHECK(ret);
- return krb5_fcc_write(context, id, data->data, data->length);
-}
-
-krb5_error_code
-krb5_fcc_store_int32(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- unsigned char buf[4];
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2))
- return krb5_fcc_write(context, id, (char *) &i, sizeof(krb5_int32));
- else {
- buf[3] = (unsigned char) (i & 0xFF);
- i >>= 8;
- buf[2] = (unsigned char) (i & 0xFF);
- i >>= 8;
- buf[1] = (unsigned char) (i & 0xFF);
- i >>= 8;
- buf[0] = (unsigned char) (i & 0xFF);
-
- return krb5_fcc_write(context, id, buf, 4);
- }
-}
-
-krb5_error_code
-krb5_fcc_store_ui_2(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_ui_2 ibuf;
- unsigned char buf[2];
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2)) {
- ibuf = (krb5_ui_2) i;
- return krb5_fcc_write(context, id, (char *) &ibuf, sizeof(krb5_ui_2));
- } else {
- buf[1] = (unsigned char) (i & 0xFF);
- i >>= 8;
- buf[0] = (unsigned char) (i & 0xFF);
-
- return krb5_fcc_write(context, id, buf, 2);
- }
-}
-
-krb5_error_code
-krb5_fcc_store_octet(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_octet ibuf;
-
- ibuf = (krb5_octet) i;
- return krb5_fcc_write(context, id, (char *) &ibuf, 1);
-}
-
-krb5_error_code
-krb5_fcc_store_times(context, id, t)
- krb5_context context;
- krb5_ccache id;
- krb5_ticket_times *t;
-{
- krb5_fcc_data *data = (krb5_fcc_data *)id->data;
- krb5_error_code retval;
-
- if ((data->version == KRB5_FCC_FVNO_1) ||
- (data->version == KRB5_FCC_FVNO_2))
- return krb5_fcc_write(context, id, (char *) t, sizeof(krb5_ticket_times));
- else {
- retval = krb5_fcc_store_int32(context, id, t->authtime);
- CHECK(retval);
- retval = krb5_fcc_store_int32(context, id, t->starttime);
- CHECK(retval);
- retval = krb5_fcc_store_int32(context, id, t->endtime);
- CHECK(retval);
- retval = krb5_fcc_store_int32(context, id, t->renew_till);
- CHECK(retval);
- return 0;
- }
-}
-
-krb5_error_code
-krb5_fcc_store_authdata(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata **a;
-{
- krb5_error_code ret;
- krb5_authdata **temp;
- krb5_int32 i, length=0;
-
- if (a != NULL) {
- for (temp=a; *temp; temp++)
- length++;
- }
-
- ret = krb5_fcc_store_int32(context, id, length);
- CHECK(ret);
- for (i=0; i<length; i++) {
- ret = krb5_fcc_store_authdatum (context, id, a[i]);
- CHECK(ret);
- }
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_fcc_store_authdatum (context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata *a;
-{
- krb5_error_code ret;
- ret = krb5_fcc_store_ui_2(context, id, a->ad_type);
- CHECK(ret);
- ret = krb5_fcc_store_int32(context, id, a->length);
- CHECK(ret);
- return krb5_fcc_write(context, id, (krb5_pointer) a->contents, a->length);
-}
+++ /dev/null
-Make sure that each time a function returns KRB5_NOMEM, everything
-allocated earlier in the function and stack tree is freed.
-
-File locking
-
-fcc_nseq.c and fcc_read don't check return values a lot.
-
+++ /dev/null
-# Sanitize.in for Kerberos V5
-
-# Each directory to survive it's way into a release will need a file
-# like this one called "./.Sanitize". All keyword lines must exist,
-# and must exist in the order specified by this file. Each directory
-# in the tree will be processed, top down, in the following order.
-
-# Hash started lines like this one are comments and will be deleted
-# before anything else is done. Blank lines will also be squashed
-# out.
-
-# The lines between the "Do-first:" line and the "Things-to-keep:"
-# line are executed as a /bin/sh shell script before anything else is
-# done in this
-
-Do-first:
-
-# All files listed between the "Things-to-keep:" line and the
-# "Files-to-sed:" line will be kept. All other files will be removed.
-# Directories listed in this section will have their own Sanitize
-# called. Directories not listed will be removed in their entirety
-# with rm -rf.
-
-Things-to-keep:
-
-.cvsignore
-.rconf
-ChangeLog
-Makefile.in
-configure
-configure.in
-mcc-proto.h
-mcc.h
-mcc_close.c
-mcc_destry.c
-mcc_eseq.c
-mcc_gennew.c
-mcc_getnam.c
-mcc_gprin.c
-mcc_init.c
-mcc_nseq.c
-mcc_ops.c
-mcc_reslv.c
-mcc_retrv.c
-mcc_sflags.c
-mcc_sseq.c
-mcc_store.c
-mcc_test.c
-
-Things-to-lose:
-
-Do-last:
-
-# End of file.
+++ /dev/null
-ignore mcc_test.c
+++ /dev/null
-1999-11-23 Ken Raeburn <raeburn@mit.edu>
-
- * mcc.h (mcc_head): Define as macro to give exported name a krb5
- prefix.
-
-1999-10-26 Wilfredo Sanchez <tritan@mit.edu>
-
- * Makefile.in: Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES,
- LOCAL_INCLUDES such that one can override CFLAGS from the command
- line without losing CPP search patchs and defines. Some associated
- Makefile cleanup.
-
-1999-08-23 Ken Raeburn <raeburn@mit.edu>
-
- * mcc_retrv.c (krb5_mcc_retrieve): Replace with a version that
- calls krb5_cc_retrieve_cred_default.
-
-Mon May 10 15:25:06 1999 Danilo Almeida <dalmeida@mit.edu>
-
- * Makefile.in: Do win32 build in subdir.
-
-1998-11-13 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Set the myfulldir and mydir variables (which are
- relative to buildtop and thisconfigdir, respectively.)
-
-1998-05-27 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Update Makefile so that it can be built under
- Windows
-
-Fri Feb 27 18:03:33 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Changed thisconfigdir to point at the lib/krb5
- directory, since we've moved all of the configure.in
- tests to the toplevel lib/krb5 configure.in
-
-Wed Feb 18 16:20:15 1998 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in: Remove trailing slash from thisconfigdir. Fix up
- BUILDTOP for new conventions.
-
-Mon Feb 2 17:02:29 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Define BUILDTOP and thisconfigdir in the Makefile
-
-Mon Sep 15 15:15:33 1997 Ezra Peisach <epeisach@mit.edu>
-
- * mcc-proto.h, mcc_reslv.c (krb5_mcc_resolve): Incoming name
- is const char *
-
-Thu Jan 2 17:02:00 1997 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in:
- * configure.in: Update to new library build procedure.
-
-Thu Aug 15 16:48:22 1996 Tom Yu <tlyu@mit.edu>
-
- * mcc_retrv.c: Add parens to def'n of flags_match because == has
- higher precedence than &. (noticed by -Wall)
-
-Tue Jun 11 20:15:01 1996 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * mcc_close.c (krb5_mcc_close): Remove inclusion of malloc.h
-
-Thu Feb 1 15:47:25 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * mcc_retrv.c (ktype_reasonable): removed.
- (krb5_mcc_retrieve): Accept any enctype unless matching spefic enctype match.
-
-Thu Jan 25 14:50:51 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * mcc_retrv.c (ktype_reasonable): Rename ktype_match
- (krb5_mcc_retrieve): Match enctype exactly if requested.
-
-Sat Nov 4 00:45:42 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * mcc_ops.c: Remove excess code which is defined in fcc_ops.c
- (which may not be the right place for it anyway).
-
- * mcc.h: Remove use of krb5_ccache_sessions
-
- * mcc_destry.c (krb5_mcc_destroy): Remove use of krb5_ccache_sessions
-
- * mcc_gennew.c (krb5_mcc_generate_new): Remove use of
- krb5_ccache_sessions
-
- * mcc_reslv.c (krb5_mcc_resolve): Remove use of krb5_ccache_sessions
-
+++ /dev/null
-thisconfigdir=./../..
-myfulldir=lib/krb5/ccache/memory
-mydir=ccache/memory
-BUILDTOP=$(REL)$(U)$(S)$(U)$(S)$(U)$(S)$(U)
-
-##DOS##BUILDTOP = ..\..\..\..
-##DOS##PREFIXDIR = ccache\memory
-##DOS##OBJFILE = $(OUTPRE)file.lst
-##WIN16##LIBNAME=..\..\krb5.lib
-
-
-STLIBOBJS = \
- mcc_close.o mcc_destry.o mcc_eseq.o \
- mcc_gennew.o mcc_getnam.o mcc_gprin.o \
- mcc_init.o mcc_nseq.o \
- mcc_reslv.o mcc_retrv.o mcc_sseq.o \
- mcc_store.o mcc_ops.o \
- mcc_sflags.o
-
-OBJS = $(OUTPRE)mcc_close.$(OBJEXT) $(OUTPRE)mcc_destry.$(OBJEXT) $(OUTPRE)mcc_eseq.$(OBJEXT) \
- $(OUTPRE)mcc_gennew.$(OBJEXT) $(OUTPRE)mcc_getnam.$(OBJEXT) $(OUTPRE)mcc_gprin.$(OBJEXT) \
- $(OUTPRE)mcc_init.$(OBJEXT) $(OUTPRE)mcc_nseq.$(OBJEXT) \
- $(OUTPRE)mcc_reslv.$(OBJEXT) $(OUTPRE)mcc_retrv.$(OBJEXT) $(OUTPRE)mcc_sseq.$(OBJEXT) \
- $(OUTPRE)mcc_store.$(OBJEXT) $(OUTPRE)mcc_ops.$(OBJEXT) \
- $(OUTPRE)mcc_sflags.$(OBJEXT)
-
-SRCS = $(srcdir)/mcc_close.c $(srcdir)/mcc_destry.c $(srcdir)/mcc_eseq.c \
- $(srcdir)/mcc_gennew.c $(srcdir)/mcc_getnam.c $(srcdir)/mcc_gprin.c \
- $(srcdir)/mcc_init.c $(srcdir)/mcc_nseq.c \
- $(srcdir)/mcc_reslv.c $(srcdir)/mcc_retrv.c $(srcdir)/mcc_sseq.c \
- $(srcdir)/mcc_store.c $(srcdir)/mcc_ops.c \
- $(srcdir)/mcc_sflags.c
-
-##DOS##LIBOBJS = $(OBJS)
-
-all-unix:: all-libobjs
-all-windows:: $(OBJS)
-
-clean-unix:: clean-libobjs
-
-clean-windows::
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc-proto.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * Prototypes for Memory-based credentials cache
- */
-
-
-#ifndef KRB5_MCC_PROTO__
-#define KRB5_MCC_PROTO__
-
-/* mcc_close.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_close
- PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* mcc_destry.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_destroy
- PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* mcc_eseq.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_end_seq_get
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_cc_cursor *cursor ));
-
-/* mcc_gennew.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_generate_new
- PROTOTYPE((krb5_context, krb5_ccache *id ));
-
-/* mcc_getnam.c */
-char * KRB5_CALLCONV krb5_mcc_get_name
- PROTOTYPE((krb5_context, krb5_ccache id ));
-
-/* mcc_gprin.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_get_principal
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal *princ ));
-
-/* mcc_init.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_initialize
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_principal princ ));
-
-/* mcc_nseq.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_next_cred
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_cc_cursor *cursor ,
- krb5_creds *creds ));
-
-/* mcc_reslv.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_resolve
- PROTOTYPE((krb5_context, krb5_ccache *id , const char *residual ));
-
-/* mcc_retrv.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_retrieve
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_flags whichfields ,
- krb5_creds *mcreds ,
- krb5_creds *creds ));
-
-/* mcc_sseq.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_start_seq_get
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_cc_cursor *cursor ));
-
-/* mcc_store.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_store
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_creds *creds ));
-
-/* mcc_sflags.c */
-krb5_error_code KRB5_CALLCONV krb5_mcc_set_flags
- PROTOTYPE((krb5_context, krb5_ccache id , krb5_flags flags ));
-
-/* mcc_ops.c */
-extern krb5_cc_ops krb5_mcc_ops;
-krb5_error_code krb5_change_cache
- PROTOTYPE(());
-#endif /* KRB5_MCC_PROTO__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains constant and function declarations used in the
- * memory-based credential cache routines.
- */
-
-#ifndef __KRB5_MEMORY_CCACHE__
-#define __KRB5_MEMORY_CCACHE__
-
-#include "k5-int.h"
-#include "mcc-proto.h"
-
-#define KRB5_OK 0
-
-typedef struct _krb5_mcc_link {
- struct _krb5_mcc_link *next;
- krb5_creds *creds;
-} krb5_mcc_link, FAR *krb5_mcc_cursor;
-
-typedef struct _krb5_mcc_data {
- struct _krb5_mcc_data *next;
- char *name;
- krb5_principal prin;
- krb5_mcc_cursor link;
-} krb5_mcc_data;
-
-#define mcc_head krb5int_mcc_head
-extern krb5_mcc_data FAR *mcc_head;
-#if 0
-extern int krb5_cache_sessions;
-#endif
-
-#endif /* __KRB5_MEMORY_CCACHE__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_close.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_close.
- */
-
-
-
-#include "mcc.h"
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Closes the file cache, invalidates the id, and frees any resources
- * associated with the cache.
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_close(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_xfree(id);
-
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc_destry.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_destroy.
- */
-
-#include <errno.h>
-#include "mcc.h"
-
-void
-krb5_mcc_free(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_mcc_cursor curr,next;
-
- for (curr = ((krb5_mcc_data *)id->data)->link; curr;)
- {
- krb5_free_creds(context, curr->creds);
- next = curr->next;
- krb5_xfree(curr);
- curr = next;
- }
- ((krb5_mcc_data *)id->data)->link = NULL;
- krb5_free_principal(context, ((krb5_mcc_data *)id->data)->prin);
-}
-
-/*
- * Effects:
- * Destroys the contents of id.
- *
- * Errors:
- * none
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_destroy(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_mcc_data *curr;
-
- if (mcc_head && ((krb5_mcc_data *)id->data) == mcc_head)
- mcc_head = mcc_head->next;
- else {
- for (curr=mcc_head; curr; curr=curr->next)
- if (curr->next == ((krb5_mcc_data *)id->data)) {
- curr->next = curr->next->next;
- break;
- }
- }
-
- krb5_mcc_free(context, id);
-
- krb5_xfree(((krb5_mcc_data *)id->data)->name);
- krb5_xfree(id->data);
- krb5_xfree(id);
-#if 0
- --krb5_cache_sessions;
-#endif
-
- krb5_change_cache ();
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc_eseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_end_seq_get.
- */
-
-
-#include "mcc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_mcc_start_seq_get.
- *
- * Modifies:
- * id, cursor
- *
- * Effects:
- * Finishes sequential processing of the file credentials ccache id,
- * and invalidates the cursor (it must never be used after this call).
- */
-/* ARGSUSED */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_end_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- *cursor = 0L;
- return KRB5_OK;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc_gennew.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_generate_new.
- */
-
-#include "mcc.h"
-#include "k5-int.h"
-
-extern krb5_cc_ops krb5_mcc_ops;
-
-/*
- * Effects:
- * Creates a new file cred cache whose name is guaranteed to be
- * unique. The name begins with the string TKT_ROOT (from mcc.h).
- * The cache is not opened, but the new filename is reserved.
- *
- * Returns:
- * The filled in krb5_ccache id.
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * system errors (from open)
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_generate_new (context, id)
- krb5_context context;
- krb5_ccache *id;
-{
- krb5_ccache lid;
- char scratch[6+1]; /* 6 for the scratch part, +1 for NUL */
-
- /* Allocate memory */
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_mcc_ops;
-
- (void) strcpy(scratch, "XXXXXX");
- mktemp(scratch);
-
- lid->data = (krb5_pointer) malloc(sizeof(krb5_mcc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_mcc_data *) lid->data)->name = (char *)
- malloc(strlen(scratch) + 1);
- if (((krb5_mcc_data *) lid->data)->name == NULL) {
- krb5_xfree(((krb5_mcc_data *) lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
- ((krb5_mcc_data *) lid->data)->link = NULL;
- ((krb5_mcc_data *) lid->data)->prin = NULL;
-
- /* Set up the filename */
- strcpy(((krb5_mcc_data *) lid->data)->name, scratch);
-
- *id = lid;
-#if 0
- ++krb5_cache_sessions;
-#endif
- ((krb5_mcc_data *)lid->data)->next = mcc_head;
- mcc_head = (krb5_mcc_data *)lid->data;
-
- krb5_change_cache ();
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_getnam.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_get_name.
- */
-
-
-
-#include "mcc.h"
-
-/*
- * Requires:
- * id is a file credential cache
- *
- * Returns:
- * The name of the file cred cache id.
- */
-char * KRB5_CALLCONV
-krb5_mcc_get_name (context, id)
- krb5_context context;
- krb5_ccache id;
-{
- return (char *) ((krb5_mcc_data *) id->data)->name;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_gprin.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_get_principal.
- */
-
-
-#include "mcc.h"
-
-/*
- * Modifies:
- * id, princ
- *
- * Effects:
- * Retrieves the primary principal from id, as set with
- * krb5_mcc_initialize. The principal is returned is allocated
- * storage that must be freed by the caller via krb5_free_principal.
- *
- * Errors:
- * system errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_get_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal *princ;
-{
- krb5_mcc_data *ptr = (krb5_mcc_data *)id->data;
- if (!ptr->prin)
- {
- *princ = 0L;
- return KRB5_FCC_NOFILE;
- }
- return krb5_copy_principal(context, ptr->prin, princ);
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/memory/mcc_init.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_initialize.
- */
-
-#include "mcc.h"
-
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Creates/refreshes the file cred cache id. If the cache exists, its
- * contents are destroyed.
- *
- * Errors:
- * system errors
- * permission errors
- */
-void krb5_mcc_free KRB5_PROTOTYPE((krb5_context context, krb5_ccache id));
-
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_initialize(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal princ;
-{
- krb5_error_code ret;
-
- krb5_mcc_free(context, id);
- ret = krb5_copy_principal(context, princ,
- &((krb5_mcc_data *)id->data)->prin);
- if (ret == KRB5_OK)
- krb5_change_cache();
- return ret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_nseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_next_cred.
- */
-
-#include "mcc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_mcc_start_seq_get.
- *
- * Modifes:
- * cursor, creds
- *
- * Effects:
- * Fills in creds with the "next" credentals structure from the cache
- * id. The actual order the creds are returned in is arbitrary.
- * Space is allocated for the variable length fields in the
- * credentials structure, so the object returned must be passed to
- * krb5_destroy_credential.
- *
- * The cursor is updated for the next call to krb5_mcc_next_cred.
- *
- * Errors:
- * system errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_next_cred(context, id, cursor, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
- krb5_creds *creds;
-{
- krb5_mcc_cursor mcursor;
- krb5_error_code retval;
- krb5_data *scratch;
-
- mcursor = (krb5_mcc_cursor) *cursor;
- if (mcursor == NULL)
- return KRB5_CC_END;
- memset(creds, 0, sizeof(krb5_creds));
- if (mcursor->creds) {
- *creds = *mcursor->creds;
- retval = krb5_copy_principal(context, mcursor->creds->client, &creds->client);
- if (retval)
- return retval;
- retval = krb5_copy_principal(context, mcursor->creds->server,
- &creds->server);
- if (retval)
- goto cleanclient;
- retval = krb5_copy_keyblock_contents(context, &mcursor->creds->keyblock,
- &creds->keyblock);
- if (retval)
- goto cleanserver;
- retval = krb5_copy_addresses(context, mcursor->creds->addresses,
- &creds->addresses);
- if (retval)
- goto cleanblock;
- retval = krb5_copy_data(context, &mcursor->creds->ticket, &scratch);
- if (retval)
- goto cleanaddrs;
- creds->ticket = *scratch;
- krb5_xfree(scratch);
- retval = krb5_copy_data(context, &mcursor->creds->second_ticket, &scratch);
- if (retval)
- goto cleanticket;
- creds->second_ticket = *scratch;
- krb5_xfree(scratch);
- retval = krb5_copy_authdata(context, mcursor->creds->authdata,
- &creds->authdata);
- if (retval)
- goto clearticket;
- }
- *cursor = (krb5_cc_cursor)mcursor->next;
- return KRB5_OK;
-
-clearticket:
- memset(creds->ticket.data,0,creds->ticket.length);
-cleanticket:
- krb5_xfree(creds->ticket.data);
-cleanaddrs:
- krb5_free_addresses(context, creds->addresses);
-cleanblock:
- krb5_xfree(creds->keyblock.contents);
-cleanserver:
- krb5_free_principal(context, creds->server);
-cleanclient:
- krb5_free_principal(context, creds->client);
- return retval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_ops.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the structure krb5_mcc_ops.
- */
-
-#define NEED_WINDOWS
-#include "mcc.h"
-
-krb5_cc_ops krb5_mcc_ops = {
- 0,
- "MEMORY",
- krb5_mcc_get_name,
- krb5_mcc_resolve,
- krb5_mcc_generate_new,
- krb5_mcc_initialize,
- krb5_mcc_destroy,
- krb5_mcc_close,
- krb5_mcc_store,
- krb5_mcc_retrieve,
- krb5_mcc_get_principal,
- krb5_mcc_start_seq_get,
- krb5_mcc_next_cred,
- krb5_mcc_end_seq_get,
- NULL, /* XXX krb5_mcc_remove, */
- krb5_mcc_set_flags,
-};
-
-krb5_mcc_data *mcc_head=0L;
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_reslv.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_resolve.
- */
-
-
-
-#include "mcc.h"
-
-extern krb5_cc_ops krb5_mcc_ops;
-
-/*
- * Requires:
- * residual is a legal path name, and a null-terminated string
- *
- * Modifies:
- * id
- *
- * Effects:
- * creates a file-based cred cache that will reside in the file
- * residual. The cache is not opened, but the filename is reserved.
- *
- * Returns:
- * A filled in krb5_ccache structure "id".
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * permission errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_resolve (context, id, residual)
- krb5_context context;
- krb5_ccache *id;
- const char *residual;
-{
- krb5_ccache lid;
- krb5_mcc_data *ptr;
-
-
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_mcc_ops;
-
- for (ptr = mcc_head; ptr; ptr=ptr->next)
- if (!strcmp(ptr->name, residual))
- break;
- if (ptr) {
- lid->data = ptr;
- } else {
- lid->data = (krb5_pointer) malloc(sizeof(krb5_mcc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_mcc_data *) lid->data)->name = (char *)
- malloc(strlen(residual) + 1);
- if (((krb5_mcc_data *)lid->data)->name == NULL) {
- krb5_xfree(((krb5_mcc_data *)lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
- strcpy(((krb5_mcc_data *)lid->data)->name, residual);
- ((krb5_mcc_data *)lid->data)->link = 0L;
- ((krb5_mcc_data *)lid->data)->prin = 0L;
-
-
- ((krb5_mcc_data *)lid->data)->next = mcc_head;
- mcc_head = (krb5_mcc_data *)lid->data;
-#if 0
- ++krb5_cache_sessions;
-#endif
- }
- *id = lid;
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_retrv.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_retrieve.
- */
-
-#if 0
-
-#include "mcc.h"
-
-#define set(bits) (whichfields & bits)
-#define flags_match(a,b) (((a) & (b)) == (a))
-#define times_match_exact(t1,t2) (memcmp((char *)(t1), (char *)(t2), sizeof(*(t1))) == 0)
-
-static krb5_boolean times_match PROTOTYPE((const krb5_ticket_times *,
- const krb5_ticket_times *));
-static krb5_boolean standard_fields_match
- PROTOTYPE((krb5_context,
- const krb5_creds *,
- const krb5_creds *));
-
-static krb5_boolean srvname_match
- PROTOTYPE((krb5_context,
- const krb5_creds *,
- const krb5_creds *));
-
-static krb5_boolean authdata_match
- PROTOTYPE ((krb5_authdata * const *, krb5_authdata * const *));
-
-
-static krb5_boolean
-data_match(data1, data2)
-register const krb5_data *data1, *data2;
-{
- if (!data1) {
- if (!data2)
- return TRUE;
- else
- return FALSE;
- }
- if (!data2) return FALSE;
-
- if (data1->length != data2->length)
- return FALSE;
- else
- return memcmp(data1->data, data2->data, data1->length) ? FALSE : TRUE;
-}
-
-
-
-/*
- * Effects:
- * Searches the file cred cache for a credential matching mcreds,
- * with the fields specified by whichfields. If one if found, it is
- * returned in creds, which should be freed by the caller with
- * krb5_free_credentials().
- *
- * The fields are interpreted in the following way (all constants are
- * preceded by KRB5_TC_). MATCH_IS_SKEY requires the is_skey field to
- * match exactly. MATCH_TIMES requires the requested lifetime to be
- * at least as great as that specified; MATCH_TIMES_EXACT requires the
- * requested lifetime to be exactly that specified. MATCH_FLAGS
- * requires only the set bits in mcreds be set in creds;
- * MATCH_FLAGS_EXACT requires all bits to match.
- *
- * Errors:
- * system errors
- * permission errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- /* This function could be considerably faster if it kept indexing */
- /* information.. sounds like a "next version" idea to me. :-) */
-
- krb5_cc_cursor cursor;
- krb5_error_code kret;
- krb5_creds fetchcreds;
-
- kret = krb5_mcc_start_seq_get(context, id, &cursor);
- if (kret != KRB5_OK)
- return kret;
-
- while ((kret = krb5_mcc_next_cred(context, id, &cursor, &fetchcreds)) == KRB5_OK) {
- if (((set(KRB5_TC_MATCH_SRV_NAMEONLY) &&
- srvname_match(context, mcreds, &fetchcreds)) ||
- standard_fields_match(context, mcreds, &fetchcreds))
- &&
- (! set(KRB5_TC_MATCH_IS_SKEY) ||
- mcreds->is_skey == fetchcreds.is_skey)
- &&
- (! set(KRB5_TC_MATCH_FLAGS_EXACT) ||
- mcreds->ticket_flags == fetchcreds.ticket_flags)
- &&
- (! set(KRB5_TC_MATCH_FLAGS) ||
- flags_match(mcreds->ticket_flags, fetchcreds.ticket_flags))
- &&
- (! set(KRB5_TC_MATCH_TIMES_EXACT) ||
- times_match_exact(&mcreds->times, &fetchcreds.times))
- &&
- (! set(KRB5_TC_MATCH_TIMES) ||
- times_match(&mcreds->times, &fetchcreds.times))
- &&
- ( ! set(KRB5_TC_MATCH_AUTHDATA) ||
- authdata_match(mcreds->authdata, fetchcreds.authdata))
- &&
- (! set(KRB5_TC_MATCH_2ND_TKT) ||
- data_match (&mcreds->second_ticket, &fetchcreds.second_ticket))
- &&
- ((! set(KRB5_TC_MATCH_KTYPE))||
- (mcreds->keyblock.enctype == fetchcreds.keyblock.enctype))
- )
- {
- krb5_mcc_end_seq_get(context, id, &cursor);
- *creds = fetchcreds;
- return KRB5_OK;
- }
-
- /* This one doesn't match */
- krb5_free_cred_contents(context, &fetchcreds);
- }
-
- /* If we get here, a match wasn't found */
- krb5_mcc_end_seq_get(context, id, &cursor);
- return KRB5_CC_NOTFOUND;
-}
-
-static krb5_boolean
-times_match(t1, t2)
-register const krb5_ticket_times *t1;
-register const krb5_ticket_times *t2;
-{
- if (t1->renew_till) {
- if (t1->renew_till > t2->renew_till)
- return FALSE; /* this one expires too late */
- }
- if (t1->endtime) {
- if (t1->endtime > t2->endtime)
- return FALSE; /* this one expires too late */
- }
- /* only care about expiration on a times_match */
- return TRUE;
-}
-
-static krb5_boolean
-standard_fields_match(context, mcreds, creds)
- krb5_context context;
-register const krb5_creds *mcreds, *creds;
-{
- return (krb5_principal_compare(context, mcreds->client,creds->client) &&
- krb5_principal_compare(context, mcreds->server,creds->server));
-}
-
-/* only match the server name portion, not the server realm portion */
-
-static krb5_boolean
-srvname_match(context, mcreds, creds)
- krb5_context context;
-register const krb5_creds *mcreds, *creds;
-{
- krb5_boolean retval;
- krb5_principal_data p1, p2;
-
- retval = krb5_principal_compare(context, mcreds->client,creds->client);
- if (retval != TRUE)
- return retval;
- /*
- * Hack to ignore the server realm for the purposes of the compare.
- */
- p1 = *mcreds->server;
- p2 = *creds->server;
- p1.realm = p2.realm;
- return krb5_principal_compare(context, &p1, &p2);
-}
-
-static krb5_boolean
-authdata_match(mdata, data)
- register krb5_authdata * const *mdata, * const *data;
-{
- register const krb5_authdata *mdatap, *datap;
-
- if (mdata == data)
- return TRUE;
-
- if (mdata == NULL)
- return *data == NULL;
-
- if (data == NULL)
- return *mdata == NULL;
-
- while ((mdatap = *mdata) && (datap = *data)) {
- if ((mdatap->ad_type != datap->ad_type) ||
- (mdatap->length != datap->length) ||
- (memcmp ((char *)mdatap->contents,
- (char *)datap->contents, mdatap->length) != 0))
- return FALSE;
- mdata++;
- data++;
- }
- return (*mdata == NULL) && (*data == NULL);
-}
-
-#else
-
-#include "k5-int.h"
-
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- return krb5_cc_retrieve_cred_default (context, id, whichfields,
- mcreds, creds);
-}
-
-#endif
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_sflags.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_set_flags.
- */
-
-
-
-#include "mcc.h"
-
-/*
- * Requires:
- * id is a cred cache returned by krb5_mcc_resolve or
- * krb5_mcc_generate_new, but has not been opened by krb5_mcc_initialize.
- *
- * Modifies:
- * id
- *
- * Effects:
- * Sets the operational flags of id to flags.
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_set_flags(context, id, flags)
- krb5_context context;
- krb5_ccache id;
- krb5_flags flags;
-{
- return KRB5_OK;
-}
-
+++ /dev/null
-/*
- * lib/krb5/ccache/file/mcc_sseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_mcc_start_seq_get.
- */
-
-
-#include "mcc.h"
-
-/*
- * Effects:
- * Prepares for a sequential search of the credentials cache.
- * Returns a krb5_cc_cursor to be used with krb5_mcc_next_cred and
- * krb5_mcc_end_seq_get.
- *
- * If the cache is modified between the time of this call and the time
- * of the final krb5_mcc_end_seq_get, the results are undefined.
- *
- * Errors:
- * KRB5_CC_NOMEM
- * system errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_start_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- krb5_mcc_cursor mcursor;
-
- mcursor = ((krb5_mcc_data *)id->data)->link;
- *cursor = (krb5_cc_cursor) mcursor;
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/ccache/memory/mcc_store.c
- *
- * Copyright 1995 Locus Computing Corporation
- *
- * This file contains the source code for krb5_mcc_store.
- */
-
-
-#include <errno.h>
-#include "mcc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) return ret;
-
-/*
- * Modifies:
- * the memory cache
- *
- * Effects:
- * stores creds in the memory cred cache
- *
- * Errors:
- * system errors
- * storage failure errors
- */
-krb5_error_code KRB5_CALLCONV
-krb5_mcc_store(context, id, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_creds *creds;
-{
- krb5_error_code ret;
- krb5_mcc_cursor mcursor;
-
- mcursor = (krb5_mcc_cursor)malloc(sizeof(krb5_mcc_link));
- if (mcursor == NULL)
- return KRB5_CC_NOMEM;
- ret = krb5_copy_creds(context, creds, &mcursor->creds);
- if (ret == KRB5_OK) {
- mcursor->next = ((krb5_mcc_data *)id->data)->link;
- ((krb5_mcc_data *)id->data)->link = mcursor;
- krb5_change_cache();
- }
- return ret;
-}
-
+++ /dev/null
-# Sanitize.in for Kerberos V5
-
-# Each directory to survive it's way into a release will need a file
-# like this one called "./.Sanitize". All keyword lines must exist,
-# and must exist in the order specified by this file. Each directory
-# in the tree will be processed, top down, in the following order.
-
-# Hash started lines like this one are comments and will be deleted
-# before anything else is done. Blank lines will also be squashed
-# out.
-
-# The lines between the "Do-first:" line and the "Things-to-keep:"
-# line are executed as a /bin/sh shell script before anything else is
-# done in this
-
-Do-first:
-
-# All files listed between the "Things-to-keep:" line and the
-# "Files-to-sed:" line will be kept. All other files will be removed.
-# Directories listed in this section will have their own Sanitize
-# called. Directories not listed will be removed in their entirety
-# with rm -rf.
-
-Things-to-keep:
-
-.cvsignore
-.rconf
-ChangeLog
-Makefile.in
-README
-configure
-configure.in
-scc-proto.h
-scc.h
-scc_close.c
-scc_defops.c
-scc_destry.c
-scc_errs.c
-scc_eseq.c
-scc_gennew.c
-scc_getnam.c
-scc_gprin.c
-scc_init.c
-scc_maybe.c
-scc_nseq.c
-scc_ops.c
-scc_read.c
-scc_reslv.c
-scc_retrv.c
-scc_sflags.c
-scc_skip.c
-scc_sseq.c
-scc_store.c
-scc_test.c
-scc_write.c
-todo
-
-Things-to-lose:
-
-Do-last:
-
-# End of file.
+++ /dev/null
-2000-06-28 Ezra Peisach <epeisach@mit.edu>
-
- * scc_skip.c (krb5_scc_skip_header): Remove unused variables.
-
-1999-10-26 Wilfredo Sanchez <tritan@mit.edu>
-
- * Makefile.in: Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES,
- LOCAL_INCLUDES such that one can override CFLAGS from the command
- line without losing CPP search patchs and defines. Some associated
- Makefile cleanup.
-
-1999-08-23 Ken Raeburn <raeburn@mit.edu>
-
- * scc_retrv.c (krb5_scc_retrieve): Replace with a version that
- calls krb5_cc_retrieve_cred_default.
-
-1998-11-13 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Set the myfulldir and mydir variables (which are
- relative to buildtop and thisconfigdir, respectively.)
-
-Fri Feb 27 18:03:33 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Changed thisconfigdir to point at the lib/krb5
- directory, since we've moved all of the configure.in
- tests to the toplevel lib/krb5 configure.in
-
-Wed Feb 18 16:20:44 1998 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in: Remove trailing slash from thisconfigdir. Fix up
- BUILDTOP for new conventions.
-
-Mon Feb 2 17:02:29 1998 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * Makefile.in: Define BUILDTOP and thisconfigdir in the Makefile
-
-Wed Oct 29 15:57:31 1997 Theodore Y. Ts'o <tytso@mit.edu>
-
- * scc_maybe.c: Added kludge for the Macintosh, since fopen()
- doesn't set errno, although open() does.
-
-Thu Sep 25 21:04:47 1997 Tom Yu <tlyu@mit.edu>
-
- * scc_maybe.c (krb5_scc_open_file): Replace HAS_SETVBUF with
- something more sane.
-
-Mon Sep 15 15:15:33 1997 Ezra Peisach <epeisach@mit.edu>
-
- * scc-proto.h, scc_reslv.c (krb5_scc_resolve): Incoming name
- is const char *.
-
-Thu Jan 2 17:03:44 1997 Tom Yu <tlyu@mit.edu>
-
- * Makefile.in:
- * configure.in: Update to new library build procedure.
-
-Thu Aug 15 16:44:32 1996 Tom Yu <tlyu@mit.edu>
-
- * scc_retrv.c: Fix def'n of flags_match to be properly
- parenthesized (noticed by -Wall)
-
-Mon Jun 10 21:46:06 1996 Theodore Ts'o <tytso@rsts-11.mit.edu>
-
- * scc_read.c:
- * scc_gennew.c (krb5_scc_generate_new): Change _WINDOWS to _MSDOS,
- and add check for _WIN32.
-
-Wed Feb 14 10:44:27 1996 <tytso@rsts-11.mit.edu>
-
- * scc_read.c (krb5_scc_read_keyblock, krb5_scc_read_data,
- krb5_scc_read_authdatum, krb5_scc_read_addr): For windows,
- mask off low 16 bits because Gradient DCE does things
- wrong.
-
-Wed Mar 20 22:50:05 1996 Theodore Y. Ts'o <tytso@dcl>
-
- * scc-proto.h (krb5_scc_skip_header): Added prototype (to fix lint
- flames).
-
-Thu Feb 1 15:50:29 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * scc_retrv.c (krb5_scc_retrieve): Accept any enctype unless doing a specific match.
-
-Thu Jan 25 14:44:48 1996 Sam Hartman <hartmans@tertius.mit.edu>
-
- * scc_retrv.c (ktype_reasonable): Rename ktype_match; see fcc for explanation.
- (krb5_scc_retrieve): Match exactly on enctype if requested to do so.
-
-Wed Jan 10 22:44:43 1996 Theodore Y. Ts'o <tytso@dcl>
-
- * scc.h (KRB5_SCC_DEFAULT_VNO): Remove KRB5_SCC_DEFAULT_VNO; now
- set in init_ctx.c.
-
- * scc_maybe.c (krb5_scc_open_file):
- * scc_gennew.c (krb5_scc_generate_new): Use
- context->scc_default_format to determine the credentials
- cache type.
-
- * scc_read.c (krb5_scc_read_keyblock): If reading in a version 3
- credentials cache, ignore the second enctype stored in the
- ccache; just read it into a dummy variable.
-
-Thu Dec 21 18:33:39 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * scc_maybe.c (krb5_scc_open_file): In the case of
- SCC_OPEN_AND_ERASE, unlink the filename first, in case
- there's a symbolic link lurking about. (We should do an
- exclusive open then, but there's no such thing in stdio.)
- (krb5_scc_open_file): Use KRB5_CC_FORMAT as an error code
- instead of KRB5_CCACHE_BADVNO, when it's really a format
- error in the credentials cache file.
-
-Mon Sep 25 16:56:51 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * Makefile.in: Removed "foo:: foo-$(WHAT)" lines from the
- Makefile.
-
-Thu Sept 7 12:00:00 EDT 1995 James Mattly (mattly@fusion.com)
-
- * scc_retrv.c: fixed paramter passing in a call to standard_fields_match.
- prototypes would have caught this.
-
-Thu Sep 7 18:07:56 1995 Mark Eichin <eichin@cygnus.com>
-
- * scc_gennew.c (krb5_scc_generate_new): don't use automatic
- aggregate initialization.
-
-Wed Sep 06 14:20:57 1995 Chris Provenzano (proven@mit.edu)
-
- * scc_read.c, scc_write.c : s/keytype/enctype/g, s/KEYTYPE/ENCTYPE/g
-
-Tue Sep 05 22:58:52 1995
-
- * scc.h : Add another KRB5_SCC_FVNO but don't up the default.
- * scc_gennew.c, scc_maybe.c : New version saves a length after
- version for whatever we want to put into the ccache before
- the first credential (like a time skew)
- * scc_read.c, scc_write.c : Remove krb5_enctype references, and
- replace with krb5_keytype where appropriate
-
-Tue Aug 29 13:36:39 EDT 1995 Paul Park (pjpark@mit.edu)
- * scc_reslv.c - Set magic number in successfully resolved ccache.
-
-Wed Aug 16 02:45:19 1995 Chris Provenzano <proven@mit.edu>
-
- * scc_maybe.c: Pass fds to krb5_lock_file() and krb5_unlock_file()
-
-Tue Jul 11 19:22:17 1995 Ezra Peisach <epeisach@kangaroo.mit.edu>
-
- * scc-proto.h: Add prototype for krb5_scc_read.
-
-Wed Jun 14 23:55:24 1995 Theodore Y. Ts'o (tytso@dcl)
-
- * scc_errs.c (krb5_scc_interpret): Add #ifdef around switch
- statement for ETXTBUSY.
-
-
-Sat Jun 10 00:04:02 1995 Theodore Y. Ts'o <tytso@dcl>
-
- * scc_init.c (krb5_scc_initialize): Make sure the status return
- from krb5_scc_store_principal is reflected in the return
- status of krb5_scc_initialize().
-
-Fri Jun 9 19:30:35 1995 <tytso@rsx-11.mit.edu>
-
- * configure.in: Remove standardized set of autoconf macros, which
- are now handled by CONFIG_RULES.
-
- * scc_maybe.c: Fix -Wall nit
-
-Fri May 26 20:19:49 1995 Theodore Y. Ts'o (tytso@dcl)
-
- * configure.in, Makefile.in: Add support for building shared libraries.
-
-Thu Apr 13 16:32:12 1995 Keith Vetter (keithv@fusion.com)
-
- * scc_genn.c: __STDC__ conditional also checks the _WINDOWS define.
-
-Sat Mar 25 14:42:37 1995 Tom Yu (tlyu@dragons-lair)
-
- * scc_maybe.c (krb5_scc_open_file): fixed typo (extra & in
- reference to fvno_bytes)
-
- * scc_gennew.c: Ultrix cc (and K&R compilers) doesn't deal with
- automatic aggregate initialization, so fixed scc_fvno usage.
-
-Fri Mar 17 19:24:05 1995 John Gilmore (gnu at toad.com)
-
- * scc_errs.c: Mac doesn't have EISDIR error.
- * scc_gennew.c, scc_maybe.c: Eliminate the use of htons and ntohs
- for byte order handling; just do it by hand.
- * scc_read.c (krb5_scc_read_authdatum): Zap unused variable "ret".
- * Makefile.in (LDFLAGS): Eliminate, duplicates config/pre.in.
-
-Tue Mar 7 19:55:01 1995 Mark Eichin <eichin@cygnus.com>
-
- * configure.in: take out ISODE_DEFS.
-
-Tue Feb 28 00:36:36 1995 John Gilmore (gnu at toad.com)
-
- * scc.h, scc_gennew.c, scc_maybe.c: Avoid <krb5/...> includes.
-
-Fri Jan 27 00:49:36 1995 Chris Provenzano (proven@mit.edu)
-
- * Fix scc_read.c (krb5_scc_read_authdatum()) krb5_authdatatype
- is of type unsigned int and therefore shouldn't be the
- argument to krb5_scc_read_ui_2().
-
-Fri Jan 13 15:23:47 1995 Chris Provenzano (proven@mit.edu)
-
- * Added krb5_context to all krb5_routines
-
-Tue Dec 13 15:42:50 1994 <tytso@rsx-11.mit.edu>
-
- * scc_write.c (krb5_scc_store_addrs): If a null addresses is
- passed in, don't core dump.
-
-Fri Nov 18 14:47:33 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * scc-proto.h, scc.h, scc_maybe.c (krb5_scc_open_file), scc_nseq.c
- (krb5_scc_next_cred), scc_store.c (krb5_scc_store), scc_read.c,
- scc_write.c: Changes to implement SCC format version #3, which
- is architecture independent, and includes the key
- encryption type information.
-
-Wed Nov 16 23:40:16 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * scc_gennew.c (krb5_scc_generate_new): Generate new ccaches using
- whatever version is marked as the default.
-
- * scc_read.c (krb5_scc_read_keyblock): Insert keyblock magic
- number and initialize etype value. Also add magic numbers
- for the krb5_principal, krb5_data, krb5_address, and
- krb5_authdata structures.
-
-Thu Oct 13 17:24:00 1994 Theodore Y. Ts'o (tytso@maytag)
-
- * configure.in: Add ISODE_DEFS
-
-Fri Sep 30 21:53:31 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * scc_defops.c (krb5_cc_stdio_ops):
- scc_ops.c (krb5_scc_ops): Add placeholder for magic number
-
-Thu Sep 22 21:38:09 1994 Theodore Y. Ts'o (tytso@dcl)
-
- * scc_destry.c (krb5_scc_destroy): Make sure memory associated
- with the credentials cache is freed after it is destroyed.
-
-Thu Aug 18 16:34:51 1994 Theodore Y. Ts'o (tytso at tsx-11)
-
- * scc_retrv.c (srvname_match): Fix bug in srvname_match where so
- that the server realm is really ignored in the compare, like it's
- supposed to be.
-
-Tue Aug 2 04:07:17 1994 Tom Yu (tlyu@dragons-lair)
-
- * scc_maybe.c (krb5_scc_open_file): changed an #ifdef from
- ANSI_STDIO to HAS_SETVBUF
-
+++ /dev/null
-thisconfigdir=./../..
-myfulldir=lib/krb5/ccache/stdio
-mydir=ccache/stdio
-BUILDTOP=$(REL)$(U)$(S)$(U)$(S)$(U)$(S)$(U)
-
-STLIBOBJS = \
- scc_close.o scc_destry.o scc_eseq.o \
- scc_gennew.o scc_getnam.o scc_gprin.o scc_init.o \
- scc_nseq.o scc_read.o scc_reslv.o scc_retrv.o \
- scc_sseq.o scc_store.o scc_skip.o scc_ops.o scc_write.o \
- scc_sflags.o scc_defops.o scc_errs.o scc_maybe.o
-
-OBJS = scc_close.o scc_destry.o scc_eseq.o \
- scc_gennew.o scc_getnam.o scc_gprin.o scc_init.o \
- scc_nseq.o scc_read.o scc_reslv.o scc_retrv.o \
- scc_sseq.o scc_store.o scc_skip.o scc_ops.o scc_write.o \
- scc_sflags.o scc_defops.o scc_errs.o scc_maybe.o
-
-SRCS = $(srcdir)/scc_close.c $(srcdir)/scc_destry.c $(srcdir)/scc_eseq.c \
- $(srcdir)/scc_gennew.c $(srcdir)/scc_getnam.c $(srcdir)/scc_gprin.c \
- $(srcdir)/scc_init.c $(srcdir)/scc_nseq.c $(srcdir)/scc_read.c \
- $(srcdir)/scc_reslv.c $(srcdir)/scc_retrv.c $(srcdir)/scc_sseq.c \
- $(srcdir)/scc_store.c $(srcdir)/scc_skip.c $(srcdir)/scc_ops.c \
- $(srcdir)/scc_write.c $(srcdir)/scc_sflags.c $(srcdir)/scc_defops.c \
- $(srcdir)/scc_errs.c $(srcdir)/scc_maybe.c
-
-
-all-unix:: all-libobjs
-all-windows:: $(OBJS)
-
-test: ${OBJS} scc_test.o
- ${CC} -o test ${OBJS} scc_test.o
-
-clean-unix:: clean-libobjs
-clean-windows::
-
-
+++ /dev/null
-If OPENCLOSE is defined, ecah of the functions opens and closes the
-file whenever it needs to access it. Otherwise, the file is opened
-once in initialize and closed once is close.
-
-This library depends on ANSI C library routines for file handling. It
-may also have some implicit assumptions about UNIX, but we'll get
-those out as much as possible.
-
-If you are running a UNIX system, you probably want to use the
-UNIX-based "file" cache package instead of this.
-
-The quasi-BNF grammar for a credentials cache:
-
-file ::=
- format-vno principal list-of-credentials
-
-credential ::=
- client (principal)
- server (principal)
- keyblock (keyblock)
- times (ticket_times)
- is_skey (boolean)
- ticket_flags (flags)
- ticket (data)
- second_ticket (data)
-
-principal ::=
- number of components (int32)
- component 1 (data)
- component 2 (data)
- ...
-
-data ::=
- length (int32)
- string of length bytes
-
-format-vno ::= <int16>
-
-etc.
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc-proto.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * Prototypes for File-based credentials cache
- */
-
-
-#ifndef KRB5_SCC_PROTO__
-#define KRB5_SCC_PROTO__
-
-/* scc_close.c */
-krb5_error_code krb5_scc_close
- PROTOTYPE((krb5_context,
- krb5_ccache id ));
-
-/* scc_defnam.c */
-char *krb5_scc_default_name
- PROTOTYPE((krb5_context));
-
-/* scc_destry.c */
-krb5_error_code krb5_scc_destroy
- PROTOTYPE((krb5_context,
- krb5_ccache id ));
-
-/* scc_eseq.c */
-krb5_error_code krb5_scc_end_seq_get
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_cc_cursor *cursor ));
-
-/* scc_gennew.c */
-krb5_error_code krb5_scc_generate_new
- PROTOTYPE((krb5_context,
- krb5_ccache *id ));
-
-/* scc_getnam.c */
-char *krb5_scc_get_name
- PROTOTYPE((krb5_context,
- krb5_ccache id ));
-
-/* scc_gprin.c */
-krb5_error_code krb5_scc_get_principal
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_principal *princ ));
-
-/* scc_init.c */
-krb5_error_code krb5_scc_initialize
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_principal princ ));
-
-/* scc_maybe.c */
-krb5_error_code krb5_scc_close_file
- PROTOTYPE((krb5_context,
- krb5_ccache));
-krb5_error_code krb5_scc_open_file
- PROTOTYPE((krb5_context,
- krb5_ccache,
- int));
-
-/* scc_nseq.c */
-krb5_error_code krb5_scc_next_cred
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_cc_cursor *cursor ,
- krb5_creds *creds ));
-
-/* scc_read.c */
-krb5_error_code krb5_scc_read
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_pointer buf,
- int len));
-krb5_error_code krb5_scc_read_principal
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_principal *princ ));
-krb5_error_code krb5_scc_read_keyblock
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_keyblock *keyblock ));
-krb5_error_code krb5_scc_read_data
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_data *data ));
-krb5_error_code krb5_scc_read_int32
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_int32 *i ));
-krb5_error_code krb5_scc_read_ui_2
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_ui_2 *i ));
-krb5_error_code krb5_scc_read_octet
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_octet *i ));
-krb5_error_code krb5_scc_read_times
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_ticket_times *t ));
-krb5_error_code krb5_scc_read_addrs
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_address ***));
-krb5_error_code krb5_scc_read_addr
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_address *));
-krb5_error_code krb5_scc_read_authdata
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_authdata***));
-krb5_error_code krb5_scc_read_authdatum
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_authdata*));
-
-/* scc_reslv.c */
-krb5_error_code krb5_scc_resolve
- PROTOTYPE((krb5_context,
- krb5_ccache *id ,
- const char *residual ));
-
-/* scc_retrv.c */
-krb5_error_code krb5_scc_retrieve
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_flags whichfields ,
- krb5_creds *mcreds ,
- krb5_creds *creds ));
-
-/* scc_sseq.c */
-krb5_error_code krb5_scc_start_seq_get
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_cc_cursor *cursor ));
-
-/* scc_store.c */
-krb5_error_code krb5_scc_store
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_creds *creds ));
-
-/* scc_skip.c */
-krb5_error_code krb5_scc_skip_header
- PROTOTYPE((krb5_context, krb5_ccache));
-krb5_error_code krb5_scc_skip_principal
- PROTOTYPE((krb5_context,
- krb5_ccache id ));
-
-/* scc_sflags.c */
-krb5_error_code krb5_scc_set_flags
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_flags flags ));
-
-/* scc_ops.c */
-extern krb5_cc_ops krb5_scc_ops;
-
-/* scc_write.c */
-krb5_error_code krb5_scc_write
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_pointer buf ,
- int len ));
-krb5_error_code krb5_scc_store_principal
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_principal princ ));
-krb5_error_code krb5_scc_store_keyblock
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_keyblock *keyblock ));
-krb5_error_code krb5_scc_store_data
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_data *data ));
-krb5_error_code krb5_scc_store_int32
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_int32 i ));
-krb5_error_code krb5_scc_store_ui_2
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_int32 i ));
-krb5_error_code krb5_scc_store_octet
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_int32 i ));
-krb5_error_code krb5_scc_store_times
- PROTOTYPE((krb5_context,
- krb5_ccache id ,
- krb5_ticket_times *t ));
-krb5_error_code krb5_scc_store_addrs
- PROTOTYPE((krb5_context,
- krb5_ccache ,
- krb5_address ** ));
-krb5_error_code krb5_scc_store_addr
- PROTOTYPE((krb5_context,
- krb5_ccache ,
- krb5_address * ));
-krb5_error_code krb5_scc_store_authdata
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_authdata **));
-krb5_error_code krb5_scc_store_authdatum
- PROTOTYPE((krb5_context,
- krb5_ccache,
- krb5_authdata *));
-
-/* scc_errs.c */
-krb5_error_code krb5_scc_interpret
- PROTOTYPE((krb5_context,
- int ));
-
-#endif /* KRB5_SCC_PROTO__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc.h
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains constant and function declarations used in the
- * file-based credential cache routines.
- */
-
-#ifndef __KRB5_FILE_CCACHE__
-#define __KRB5_FILE_CCACHE__
-
-#include "k5-int.h"
-#include "scc-proto.h"
-#include <stdio.h>
-
-#define KRB5_OK 0
-
-#define KRB5_SCC_MAXLEN 100
-
-/*
- * SCC version 2 contains type information for principals. SCC
- * version 1 does not. The code will accept either, and depending on
- * what KRB5_SCC_DEFAULT_FVNO is set to, it will create version 1 or
- * version 2 SCC caches.
- *
- */
-
-#define KRB5_SCC_FVNO_1 0x0501 /* krb v5, scc v1 */
-#define KRB5_SCC_FVNO_2 0x0502 /* krb v5, scc v2 */
-#define KRB5_SCC_FVNO_3 0x0503 /* krb v5, scc v3 */
-#define KRB5_SCC_FVNO_4 0x0504 /* krb v5, scc v4 */
-
-#define SCC_OPEN_AND_ERASE 1
-#define SCC_OPEN_RDWR 2
-#define SCC_OPEN_RDONLY 3
-
-/* Credential file header tags.
- * The header tags are constructed as:
- * krb5_ui_2 tag
- * krb5_ui_2 len
- * krb5_octet data[len]
- * This format allows for older versions of the fcc processing code to skip
- * past unrecognized tag formats.
- */
-#define SCC_TAG_DELTATIME 1
-
-#ifndef TKT_ROOT
-#define TKT_ROOT "/tmp/tkt"
-#endif
-
-/* macros to make checking flags easier */
-#define OPENCLOSE(id) (((krb5_scc_data *)id->data)->flags & KRB5_TC_OPENCLOSE)
-
-typedef struct _krb5_scc_data {
- char *filename;
- FILE *file;
- krb5_flags flags;
- char stdio_buffer[BUFSIZ];
- int version;
-} krb5_scc_data;
-
-/* An off_t can be arbitrarily complex */
-typedef struct _krb5_scc_cursor {
- long pos;
-} krb5_scc_cursor;
-
-#define MAYBE_OPEN(context, ID, MODE) \
-{ \
- if (OPENCLOSE (ID)) { \
- krb5_error_code maybe_open_ret = krb5_scc_open_file (context, ID,MODE); \
- if (maybe_open_ret) return maybe_open_ret; } }
-
-#define MAYBE_CLOSE(context, ID, RET) \
-{ \
- if (OPENCLOSE (ID)) { \
- krb5_error_code maybe_close_ret = krb5_scc_close_file (context, ID); \
- if (!(RET)) RET = maybe_close_ret; } }
-
-/* DO NOT ADD ANYTHING AFTER THIS #endif */
-#endif /* __KRB5_FILE_CCACHE__ */
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_close.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_close.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Closes the file cache, invalidates the id, and frees any resources
- * associated with the cache.
- */
-krb5_error_code
-krb5_scc_close(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- register int closeval = KRB5_OK;
- register krb5_scc_data *data = (krb5_scc_data *) id->data;
-
- if (!OPENCLOSE(id)) {
- closeval = fclose (data->file);
- data->file = 0;
- if (closeval == -1) {
- closeval = krb5_scc_interpret(context, errno);
- } else
- closeval = KRB5_OK;
-
- }
- krb5_xfree (data->filename);
- krb5_xfree (data);
- krb5_xfree (id);
-
- return closeval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_defops.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the structure krb5_cc_dfl_ops.
- */
-
-
-
-#include "scc.h"
-
-krb5_cc_ops krb5_cc_stdio_ops = {
- 0,
- "STDIO",
- krb5_scc_get_name,
- krb5_scc_resolve,
- krb5_scc_generate_new,
- krb5_scc_initialize,
- krb5_scc_destroy,
- krb5_scc_close,
- krb5_scc_store,
- krb5_scc_retrieve,
- krb5_scc_get_principal,
- krb5_scc_start_seq_get,
- krb5_scc_next_cred,
- krb5_scc_end_seq_get,
- NULL, /* XXX krb5_scc_remove, */
- krb5_scc_set_flags,
-};
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_destry.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_destroy.
- */
-
-
-
-#include "scc.h"
-
-#ifndef SEEK_SET
-#define SEEK_SET 0
-#endif
-
-/*
- * Effects:
- * Destroys the contents of id.
- *
- * Errors:
- * system errors
- */
-krb5_error_code krb5_scc_destroy(context, id)
- krb5_context context;
- krb5_ccache id;
-{
-#if 0
- unsigned long size;
- char zeros[BUFSIZ];
-#endif
- krb5_scc_data *data = (krb5_scc_data *) id->data;
- register int ret;
-
- if (!OPENCLOSE(id)) {
- (void) fclose(data->file);
- data->file = 0;
- }
-
- ret = remove (data->filename);
- if (ret < 0) {
- ret = krb5_scc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) fclose(data->file);
- data->file = 0;
- }
- goto cleanup;
- }
-
-#if 0
- /*
- * Possible future extension: Read entire file to determine
- * length, then write nulls all over it. This was the UNIX
- * version...
- */
- ret = fstat(fileno(data->file), &buf);
- if (ret < 0) {
- ret = krb5_scc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) fclose(data->file);
- data->file = 0;
- }
- goto cleanup;
- }
-
- /* XXX This may not be legal XXX */
- size = (unsigned long) buf.st_size;
-
- memset (zeros, 0, BUFSIZ);
- for (i=0; i < size / BUFSIZ; i++)
- if (fwrite(data->file, zeros, BUFSIZ) < 0) {
- ret = krb5_scc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) fclose(data->file);
- data->file = 0;
- }
- goto cleanup;
- }
-
- if (fwrite(data->file, zeros, size % BUFSIZ) < 0) {
- ret = krb5_scc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- (void) fclose(data->file);
- data->file = 0;
- }
- goto cleanup;
- }
-
- ret = fclose(data->file);
- data->file = 0;
-#endif
-
- if (ret)
- ret = krb5_scc_interpret(context, errno);
-
- cleanup:
- krb5_xfree(data->filename);
- krb5_xfree(data);
- krb5_xfree(id);
-
- return ret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_errs.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * error code interpretation routine
- */
-
-
-
-#include "scc.h"
-
-krb5_error_code
-krb5_scc_interpret(context, errnum)
- krb5_context context;
-int errnum;
-{
- register int retval;
- switch (errnum) {
-#ifdef ELOOP
- case ELOOP: /* Bad symlink is like no file. */
-#endif
- case ENOENT:
- retval = KRB5_FCC_NOFILE;
- break;
- case EPERM:
- case EACCES:
-#ifdef EISDIR
- case EISDIR: /* Mac doesn't have EISDIR */
-#endif
- case ENOTDIR:
-#ifdef ETXTBSY
- case ETXTBSY:
-#endif
- case EBUSY:
- case EROFS:
- retval = KRB5_FCC_PERM;
- break;
- case EINVAL:
- case EEXIST: /* XXX */
- case EFAULT:
- case EBADF:
-#ifdef ENAMETOOLONG
- case ENAMETOOLONG:
-#endif
-#ifdef EWOULDBLOCK
- case EWOULDBLOCK:
-#endif
- retval = KRB5_FCC_INTERNAL;
- break;
-#ifdef EDQUOT
- case EDQUOT:
-#endif
- case ENOSPC:
- case EIO:
- case ENFILE:
- case EMFILE:
- case ENXIO:
- default:
- retval = KRB5_CC_IO; /* XXX */
- }
- return retval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_eseq.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_end_seq_get.
- */
-
-
-#include "scc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_scc_start_seq_get.
- *
- * Modifies:
- * id, cursor
- *
- * Effects:
- * Finishes sequential processing of the file credentials ccache id,
- * and invalidates the cursor (it must never be used after this call).
- */
-/* ARGSUSED */
-krb5_error_code
-krb5_scc_end_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- int ret = KRB5_OK;
-/* MAYBE_CLOSE (context, id, ret); */
-
- krb5_xfree((krb5_scc_cursor *) *cursor);
-
- return ret;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_gennew.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_generate_new.
- */
-
-#include "scc.h"
-#include "k5-int.h"
-
-extern krb5_cc_ops krb5_scc_ops;
-
-/*
- * Effects:
- * Creates a new file cred cache whose name is guaranteed to be
- * unique. The name begins with the string TKT_ROOT (from scc.h).
- * The cache is not opened, but the new filename is reserved.
- *
- * Returns:
- * The filled in krb5_ccache id.
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * system errors (from open)
- */
-krb5_error_code
-krb5_scc_generate_new (context, id)
- krb5_context context;
- krb5_ccache *id;
-{
- krb5_ccache lid;
- FILE *f;
- krb5_error_code retcode = 0;
- char scratch[sizeof(TKT_ROOT)+6+1]; /* +6 for the scratch part, +1 for
- NUL */
-
- /* Allocate memory */
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_scc_ops;
-
- (void) strcpy(scratch, TKT_ROOT);
- (void) strcat(scratch, "XXXXXX");
- mktemp(scratch);
-
- lid->data = (krb5_pointer) malloc(sizeof(krb5_scc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_scc_data *) lid->data)->filename = (char *)
- malloc(strlen(scratch) + 1);
- if (((krb5_scc_data *) lid->data)->filename == NULL) {
- krb5_xfree(((krb5_scc_data *) lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_scc_data *) lid->data)->flags = 0;
- ((krb5_scc_data *) lid->data)->file = 0;
-
- /* Set up the filename */
- strcpy(((krb5_scc_data *) lid->data)->filename, scratch);
-
- /* Make sure the file name is useable */
-#if defined(__STDC__) || defined(_MSDOS) || defined(_WIN32)
- f = fopen (((krb5_scc_data *) lid->data)->filename, "wb+");
-#else
- f = fopen (((krb5_scc_data *) lid->data)->filename, "w+");
-#endif
- if (!f) {
- retcode = krb5_scc_interpret (context, errno);
- goto err_out;
- } else {
- unsigned char scc_fvno[2];
-
- scc_fvno[0] = (unsigned char) ((context->scc_default_format >> 8) & 0xFF);
- scc_fvno[1] = (unsigned char) (context->scc_default_format & 0xFF);
-
- if (!fwrite((char *)scc_fvno, sizeof(scc_fvno), 1, f)) {
- retcode = krb5_scc_interpret(context, errno);
- (void) fclose(f);
- (void) remove(((krb5_scc_data *) lid->data)->filename);
- goto err_out;
- }
- /* For version 4 we save a length for the rest of the header */
- if (context->scc_default_format == KRB5_SCC_FVNO_4) {
- unsigned char scc_flen[2];
- scc_flen[0] = 0;
- scc_flen[1] = 0;
- if (!fwrite((char *)scc_flen, sizeof(scc_flen), 1, f)) {
- retcode = krb5_scc_interpret(context, errno);
- (void) fclose(f);
- (void) remove(((krb5_scc_data *) lid->data)->filename);
- goto err_out;
- }
- }
- if (fclose(f) == EOF) {
- retcode = krb5_scc_interpret(context, errno);
- (void) remove(((krb5_scc_data *) lid->data)->filename);
- goto err_out;
- }
- *id = lid;
- return KRB5_OK;
- }
-err_out:
- krb5_xfree(((krb5_scc_data *) lid->data)->filename);
- krb5_xfree(((krb5_scc_data *) lid->data));
- krb5_xfree(lid);
- return retcode;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_getnam.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_get_name.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Requires:
- * id is a file credential cache
- *
- * Returns:
- * The name of the file cred cache id.
- */
-char *
-krb5_scc_get_name (context, id)
- krb5_context context;
- krb5_ccache id;
-{
- return (char *) ((krb5_scc_data *) id->data)->filename;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_gprin.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_get_principal.
- */
-
-
-#include "scc.h"
-
-/*
- * Modifies:
- * id, princ
- *
- * Effects:
- * Retrieves the primary principal from id, as set with
- * krb5_scc_initialize. The principal is returned is allocated
- * storage that must be freed by the caller via krb5_free_principal.
- *
- * Errors:
- * system errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code
-krb5_scc_get_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal *princ;
-{
- krb5_error_code kret;
-
- MAYBE_OPEN (context, id, SCC_OPEN_RDONLY);
-
- kret = krb5_scc_skip_header(context, id);
- if (kret) goto done;
-
- kret = krb5_scc_read_principal(context, id, princ);
-
-done:
- MAYBE_CLOSE (context, id, kret);
- return kret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_init.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_initialize.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Modifies:
- * id
- *
- * Effects:
- * Creates/refreshes the file cred cache id. If the cache exists, its
- * contents are destroyed.
- *
- * Errors:
- * system errors
- * permission errors
- */
-krb5_error_code
-krb5_scc_initialize(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal princ;
-{
- krb5_error_code kret;
-
- kret = krb5_scc_open_file (context, id, SCC_OPEN_AND_ERASE);
- if (kret < 0)
- return krb5_scc_interpret(context, errno);
-
-#if 0
- kret = fchmod(((krb5_scc_data *) id->data)->fd, S_IREAD | S_IWRITE);
- if (kret == -1) {
- kret = krb5_scc_interpret(context, errno);
- if (OPENCLOSE(id)) {
- close(((krb5_scc_data *)id->data)->fd);
- ((krb5_scc_data *) id->data)->fd = -1;
- }
- return kret;
- }
-#endif
- kret = krb5_scc_store_principal(context, id, princ);
-
- MAYBE_CLOSE (context, id, kret);
- return kret;
-}
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_maybe.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Copyright 1995 by Cygnus Support.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for conditional open/close calls.
- */
-
-#include "scc.h"
-#include "k5-int.h"
-
-#ifdef macintosh
-/*
- * Kludge for the Macintosh, since fopen doesn't set errno, but open
- * does...
- */
-static FILE *my_fopen(char *path, char *mode)
-{
- int fd, open_flags;
- FILE *f;
-
- f = fopen(path, mode);
- if (f)
- return f;
- /*
- * OK, fopen failed; let's try to figure out why....
- */
- if (strchr(mode, '+'))
- open_flags = O_RDWR;
- else if (strchr(mode, 'w') || strchr(mode, 'a'))
- open_flags = O_WRONLY;
- else
- open_flags = O_RDONLY;
- if (strchr(mode, 'a'))
- open_flags |= O_APPEND;
-
- fd = open(path, open_flags);
- if (fd == -1)
- return NULL;
- /*
- * fopen failed, but open succeeded? W*E*I*R*D.....
- */
- close(fd);
- errno = KRB5_CC_IO;
-
- return NULL;
-}
-#endif
-
-krb5_error_code
-krb5_scc_close_file (context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_scc_data *data;
- int ret;
- krb5_error_code retval;
-
- data = (krb5_scc_data *) id->data;
- if (data->file == (FILE *) NULL)
- return KRB5_FCC_INTERNAL;
-#ifdef ultrix
- errno = 0;
-#endif
- ret = fflush (data->file);
-#ifdef ultrix
- /* their LIBC refuses to allow an fflush() of a read-only buffer!
- We patch around it by only calling it an error if errno is set by a
- (failed) syscall */
- if (ret == EOF && !errno) ret = 0;
-#endif
- memset (data->stdio_buffer, 0, sizeof (data->stdio_buffer));
- if (ret == EOF) {
- int errsave = errno;
- (void) krb5_unlock_file(context, fileno(data->file));
- (void) fclose (data->file);
- data->file = 0;
- return krb5_scc_interpret (context, errsave);
- }
- retval = krb5_unlock_file(context, fileno(data->file));
- ret = fclose (data->file);
- data->file = 0;
- if (retval)
- return retval;
- else
- return ret ? krb5_scc_interpret (context, errno) : 0;
-}
-
-krb5_error_code
-krb5_scc_open_file (context, id, mode)
- krb5_context context;
- krb5_ccache id;
- int mode;
-{
- krb5_os_context os_ctx = (krb5_os_context) context->os_context;
- krb5_scc_data *data = (krb5_scc_data *) id->data;
- char fvno_bytes[2]; /* In nework byte order */
- krb5_ui_2 scc_tag;
- krb5_ui_2 scc_taglen;
- krb5_ui_2 scc_hlen;
- FILE *f;
- char *open_flag;
- krb5_error_code retval = 0;
-
- if (data->file) {
- /* Don't know what state it's in; shut down and start anew. */
- (void) krb5_unlock_file(context, fileno(data->file));
- (void) fclose (data->file);
- data->file = 0;
- }
-#ifdef ANSI_STDIO
- switch(mode) {
- case SCC_OPEN_AND_ERASE:
- unlink(data->filename);
- /* XXX should do an exclusive open here, but no way to do */
- /* this under stdio */
- open_flag = "wb+";
- break;
- case SCC_OPEN_RDWR:
- open_flag = "rb+";
- break;
- case SCC_OPEN_RDONLY:
- default:
- open_flag = "rb";
- break;
- }
-#else
- switch(mode) {
- case SCC_OPEN_AND_ERASE:
- unlink(data->filename);
- /* XXX should do an exclusive open here, but no way to do */
- /* this under stdio */
- open_flag = "w+";
- break;
- case SCC_OPEN_RDWR:
- open_flag = "r+";
- break;
- case SCC_OPEN_RDONLY:
- default:
- open_flag = "r";
- break;
- }
-#endif
-
-#ifdef macintosh
- f = my_fopen (data->filename, open_flag);
-#else
- f = fopen (data->filename, open_flag);
-#endif
- if (!f)
- return krb5_scc_interpret (context, errno);
-#ifdef HAVE_SETVBUF
- setvbuf(f, data->stdio_buffer, _IOFBF, sizeof (data->stdio_buffer));
-#else
- setbuf (f, data->stdio_buffer);
-#endif
- switch (mode) {
- case SCC_OPEN_RDONLY:
- if ((retval = krb5_lock_file(context,fileno(f),KRB5_LOCKMODE_SHARED))){
- (void) fclose(f);
- return retval;
- }
- break;
- case SCC_OPEN_RDWR:
- case SCC_OPEN_AND_ERASE:
- if ((retval = krb5_lock_file(context, fileno(f),
- KRB5_LOCKMODE_EXCLUSIVE))) {
- (void) fclose(f);
- return retval;
- }
- break;
- }
- if (mode == SCC_OPEN_AND_ERASE) {
- /* write the version number */
-
- data->file = f;
- data->version = context->scc_default_format;
- retval = krb5_scc_store_ui_2(context, id, data->version);
- if (retval) goto done;
-
- if (data->version == KRB5_SCC_FVNO_4) {
- scc_hlen = 0;
-
- if (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID)
- scc_hlen += (2*sizeof(krb5_ui_2) + 2*sizeof(krb5_int32));
-
- /* Write header length */
- retval = krb5_scc_store_ui_2(context, id, (krb5_int32)scc_hlen);
- if (retval) goto done;
-
- if (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID) {
- /* Write time offset tag */
- scc_tag = SCC_TAG_DELTATIME;
- scc_taglen = 2*sizeof(krb5_int32);
-
- retval = krb5_scc_store_ui_2(context,id,(krb5_int32)scc_tag);
- if (retval) goto done;
- retval = krb5_scc_store_ui_2(context,id,(krb5_int32)scc_taglen);
- if (retval) goto done;
- retval = krb5_scc_store_int32(context,id,os_ctx->time_offset);
- if (retval) goto done;
- retval = krb5_scc_store_int32(context,id,os_ctx->usec_offset);
- if (retval) goto done;
- }
- }
- goto done;
- }
-
- /* verify a valid version number is there */
- if (!fread((char *)fvno_bytes, sizeof(fvno_bytes), 1, f))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- data->version = (fvno_bytes[0] << 8) + fvno_bytes[1];
- if ((data->version != KRB5_SCC_FVNO_1) &&
- (data->version != KRB5_SCC_FVNO_2) &&
- (data->version != KRB5_SCC_FVNO_3) &&
- (data->version != KRB5_SCC_FVNO_4))
- {
- retval = KRB5_CCACHE_BADVNO;
- goto done;
- }
-
- data->file = f;
-
- if (data->version == KRB5_SCC_FVNO_4) {
- char buf[1024];
-
- if (krb5_scc_read_ui_2(context, id, &scc_hlen) ||
- (scc_hlen > sizeof(buf)))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
-
- while (scc_hlen) {
- if ((scc_hlen < (2*sizeof(krb5_ui_2))) ||
- krb5_scc_read_ui_2(context, id, &scc_tag) ||
- krb5_scc_read_ui_2(context, id, &scc_taglen) ||
- (scc_taglen > (scc_hlen - 2*sizeof(krb5_ui_2))))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
-
- switch (scc_tag) {
- case SCC_TAG_DELTATIME:
- if (scc_taglen != 2*sizeof(krb5_int32)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- if (!(context->library_options & KRB5_LIBOPT_SYNC_KDCTIME) ||
- (os_ctx->os_flags & KRB5_OS_TOFFSET_VALID))
- {
- if (krb5_scc_read(context, id, buf, scc_taglen)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- break;
- }
- if (krb5_scc_read_int32(context, id, &os_ctx->time_offset) ||
- krb5_scc_read_int32(context, id, &os_ctx->usec_offset))
- {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- os_ctx->os_flags =
- ((os_ctx->os_flags & ~KRB5_OS_TOFFSET_TIME) |
- KRB5_OS_TOFFSET_VALID);
- break;
- default:
- if (scc_taglen && krb5_scc_read(context,id,buf,scc_taglen)) {
- retval = KRB5_CC_FORMAT;
- goto done;
- }
- break;
- }
- scc_hlen -= (2*sizeof(krb5_ui_2) + scc_taglen);
- }
- }
-
-done:
- if (retval)
- if (f) {
- data->file = 0;
- (void) krb5_unlock_file(context, fileno(f));
- (void) fclose(f);
- }
- return retval;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_nseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_next_cred.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Requires:
- * cursor is a krb5_cc_cursor originally obtained from
- * krb5_scc_start_seq_get.
- *
- * Modifes:
- * cursor, creds
- *
- * Effects:
- * Fills in creds with the "next" credentals structure from the cache
- * id. The actual order the creds are returned in is arbitrary.
- * Space is allocated for the variable length fields in the
- * credentials structure, so the object returned must be passed to
- * krb5_destroy_credential.
- *
- * The cursor is updated for the next call to krb5_scc_next_cred.
- *
- * Errors:
- * system errors
- */
-krb5_error_code
-krb5_scc_next_cred(context, id, cursor, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
- krb5_creds *creds;
-{
-#define TCHECK(ret) if (ret != KRB5_OK) goto lose;
- int ret;
- krb5_error_code kret;
- krb5_scc_cursor *fcursor;
- krb5_int32 int32;
- krb5_octet octet;
-
-#define Z(field) creds->field = 0
- Z (client);
- Z (server);
- Z (keyblock.contents);
- Z (authdata);
- Z (ticket.data);
- Z (second_ticket.data);
- Z (addresses);
-#undef Z
-
- MAYBE_OPEN (context, id, SCC_OPEN_RDONLY);
-
- fcursor = (krb5_scc_cursor *) *cursor;
- ret = fseek(((krb5_scc_data *) id->data)->file, fcursor->pos, 0);
- if (ret < 0) {
- ret = krb5_scc_interpret(context, errno);
- MAYBE_CLOSE (context, id, ret);
- return ret;
- }
-
- kret = krb5_scc_read_principal(context, id, &creds->client);
- TCHECK(kret);
- kret = krb5_scc_read_principal(context, id, &creds->server);
- TCHECK(kret);
- kret = krb5_scc_read_keyblock(context, id, &creds->keyblock);
- TCHECK(kret);
- kret = krb5_scc_read_times(context, id, &creds->times);
- TCHECK(kret);
- kret = krb5_scc_read_octet(context, id, &octet);
- TCHECK(kret);
- creds->is_skey = octet;
- kret = krb5_scc_read_int32(context, id, &int32);
- TCHECK(kret);
- creds->ticket_flags = int32;
- kret = krb5_scc_read_addrs(context, id, &creds->addresses);
- TCHECK(kret);
- kret = krb5_scc_read_authdata (context, id, &creds->authdata);
- TCHECK (kret);
- kret = krb5_scc_read_data(context, id, &creds->ticket);
- TCHECK(kret);
- kret = krb5_scc_read_data(context, id, &creds->second_ticket);
- TCHECK(kret);
-
- fcursor->pos = ftell(((krb5_scc_data *) id->data)->file);
- cursor = (krb5_cc_cursor *) fcursor;
-
-lose:
- if (kret != KRB5_OK) {
- krb5_free_cred_contents(context, creds);
- }
- MAYBE_CLOSE (context, id, kret);
- return kret;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_ops.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the structure krb5_scc_ops.
- */
-
-
-
-#include "scc.h"
-
-krb5_cc_ops krb5_scc_ops = {
- 0,
- "STDIO",
- krb5_scc_get_name,
- krb5_scc_resolve,
- krb5_scc_generate_new,
- krb5_scc_initialize,
- krb5_scc_destroy,
- krb5_scc_close,
- krb5_scc_store,
- krb5_scc_retrieve,
- krb5_scc_get_principal,
- krb5_scc_start_seq_get,
- krb5_scc_next_cred,
- krb5_scc_end_seq_get,
- NULL, /* XXX krb5_scc_remove, */
- krb5_scc_set_flags,
-};
-
-
-
-
-
-
-
-
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_read.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for reading variables from a
- * credentials cache. These are not library-exported functions.
- */
-
-
-#include "scc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) goto errout;
-
-/*
- * Effects:
- * Reads len bytes from the cache id, storing them in buf.
- *
- * Errors:
- * KRB5_CC_END - there were not len bytes available
- * system errors (read)
- */
-krb5_error_code
-krb5_scc_read(context, id, buf, len)
- krb5_context context;
- krb5_ccache id;
- krb5_pointer buf;
- int len;
-{
- int ret;
-
- errno = 0;
- ret = fread((char *) buf, 1, len, ((krb5_scc_data *) id->data)->file);
- if ((ret == 0) && errno)
- return krb5_scc_interpret(context, errno);
- else if (ret != len)
- return KRB5_CC_END;
- else
- return KRB5_OK;
-}
-
-/*
- * FOR ALL OF THE FOLLOWING FUNCTIONS:
- *
- * Requires:
- * id is open and set to read at the appropriate place in the file
- *
- * Effects:
- * Fills in the second argument with data of the appropriate type from
- * the file. In some cases, the functions have to allocate space for
- * variable length fields; therefore, krb5_destroy_<type> must be
- * called for each filled in structure.
- *
- * Errors:
- * system errors (read errors)
- * KRB5_CC_NOMEM
- */
-
-krb5_error_code
-krb5_scc_read_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal *princ;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code kret;
- register krb5_principal tmpprinc;
- krb5_int32 length, type;
- int i;
-
- if (data->version == KRB5_SCC_FVNO_1) {
- type = KRB5_NT_UNKNOWN;
- } else {
- /* Read principal type */
- kret = krb5_scc_read_int32(context, id, &type);
- if (kret != KRB5_OK)
- return kret;
- }
-
- /* Read the number of components */
- kret = krb5_scc_read_int32(context, id, &length);
- if (kret != KRB5_OK)
- return kret;
-
- /*
- * DCE includes the principal's realm in the count; the new format
- * does not.
- */
- if (data->version == KRB5_SCC_FVNO_1)
- length--;
-
- tmpprinc = (krb5_principal) malloc(sizeof(krb5_principal_data));
- if (tmpprinc == NULL)
- return KRB5_CC_NOMEM;
- if (length) {
- tmpprinc->data = (krb5_data *) malloc(length * sizeof(krb5_data));
- if (tmpprinc->data == 0) {
- free((char *)tmpprinc);
- return KRB5_CC_NOMEM;
- }
- } else
- tmpprinc->data = 0;
- tmpprinc->magic = KV5M_PRINCIPAL;
- tmpprinc->length = length;
- tmpprinc->type = type;
-
- kret = krb5_scc_read_data(context, id, krb5_princ_realm(context, tmpprinc));
-
- i = 0;
- CHECK(kret);
-
- for (i=0; i < length; i++) {
- kret = krb5_scc_read_data(context, id, krb5_princ_component(context, tmpprinc, i));
- CHECK(kret);
- }
- *princ = tmpprinc;
- return KRB5_OK;
-
- errout:
- while(--i >= 0)
- free(krb5_princ_component(context, tmpprinc, i)->data);
- free((char *)tmpprinc->data);
- free((char *)tmpprinc);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_addrs(context, id, addrs)
- krb5_context context;
- krb5_ccache id;
- krb5_address ***addrs;
-{
- krb5_error_code kret;
- krb5_int32 length;
- int i;
-
- *addrs = 0;
-
- /* Read the number of components */
- kret = krb5_scc_read_int32(context, id, &length);
- CHECK(kret);
-
- /* Make *addrs able to hold length pointers to krb5_address structs
- * Add one extra for a null-terminated list
- */
- *addrs = (krb5_address **) calloc(length+1, sizeof(krb5_address *));
- if (*addrs == NULL)
- return KRB5_CC_NOMEM;
-
- for (i=0; i < length; i++) {
- (*addrs)[i] = (krb5_address *) malloc(sizeof(krb5_address));
- if ((*addrs)[i] == NULL) {
- krb5_free_addresses(context, *addrs);
- return KRB5_CC_NOMEM;
- }
- kret = krb5_scc_read_addr(context, id, (*addrs)[i]);
- CHECK(kret);
- }
-
- return KRB5_OK;
- errout:
- if (*addrs)
- krb5_free_addresses(context, *addrs);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_keyblock(context, id, keyblock)
- krb5_context context;
- krb5_ccache id;
- krb5_keyblock *keyblock;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code kret;
- krb5_ui_2 ui2;
- krb5_int32 int32;
-
- keyblock->magic = KV5M_KEYBLOCK;
- keyblock->contents = 0;
-
- kret = krb5_scc_read_ui_2(context, id, &ui2);
- keyblock->enctype = ui2;
- CHECK(kret);
- if (data->version == KRB5_SCC_FVNO_3) {
- /* This works because the old etype is the same as the new enctype. */
- kret = krb5_scc_read_ui_2(context, id, &ui2);
- /* keyblock->enctype = ui2; */
- CHECK(kret);
- }
-
- kret = krb5_scc_read_int32(context, id, &int32);
- CHECK(kret);
-#ifdef _MSDOS
- int32 &= VALID_INT_BITS; /* Gradient does not write correctly */
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow size_t??? */
- return KRB5_CC_NOMEM;
-#endif
- keyblock->length = int32;
- if ( keyblock->length == 0 )
- return KRB5_OK;
- keyblock->contents = (unsigned char *) malloc(keyblock->length*
- sizeof(krb5_octet));
- if (keyblock->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_scc_read(context, id, keyblock->contents, keyblock->length);
- if (kret)
- goto errout;
-
- return KRB5_OK;
- errout:
- if (keyblock->contents)
- krb5_xfree(keyblock->contents);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_data(context, id, data)
- krb5_context context;
- krb5_ccache id;
- krb5_data *data;
-{
- krb5_error_code kret;
- krb5_int32 len;
-
- data->magic = KV5M_DATA;
- data->data = 0;
-
- kret = krb5_scc_read_int32(context, id, &len);
- CHECK(kret);
-#ifdef _MSDOS
- len &= VALID_INT_BITS;
-#else
- if ((len & VALID_INT_BITS) != len)
- return KRB5_CC_NOMEM;
-#endif
- data->length = (int) len;
-
- if (data->length == 0) {
- data->data = 0;
- return KRB5_OK;
- }
-
- data->data = (char *) malloc(data->length+1);
- if (data->data == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_scc_read(context, id, data->data, data->length);
- CHECK(kret);
-
- data->data[data->length] = 0; /* Null terminate, just in case.... */
- return KRB5_OK;
- errout:
- if (data->data)
- krb5_xfree(data->data);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_addr(context, id, addr)
- krb5_context context;
- krb5_ccache id;
- krb5_address *addr;
-{
- krb5_error_code kret;
- krb5_ui_2 ui2;
- krb5_int32 int32;
-
- addr->magic = KV5M_ADDRESS;
- addr->contents = 0;
-
- kret = krb5_scc_read_ui_2(context, id, &ui2);
- CHECK(kret);
- addr->addrtype = ui2;
-
- kret = krb5_scc_read_int32(context, id, &int32);
- CHECK(kret);
-#ifdef _MSDOS
- int32 &= VALID_INT_BITS; /* Gradient DCE does this wrong */
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow int??? */
- return KRB5_CC_NOMEM;
-#endif
- addr->length = int32;
-
- if (addr->length == 0)
- return KRB5_OK;
-
- addr->contents = (krb5_octet *) malloc(addr->length);
- if (addr->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_scc_read(context, id, addr->contents, addr->length);
- CHECK(kret);
-
- return KRB5_OK;
- errout:
- if (addr->contents)
- krb5_xfree(addr->contents);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_int32(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 *i;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code retval;
- unsigned char buf[4];
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2))
- return krb5_scc_read(context, id, (krb5_pointer) i, sizeof(krb5_int32));
- else {
- retval = krb5_scc_read(context, id, buf, 4);
- if (retval)
- return retval;
- *i = (((((buf[0] << 8) + buf[1]) << 8 ) + buf[2]) << 8) + buf[3];
- return 0;
- }
-}
-
-krb5_error_code
-krb5_scc_read_ui_2(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_ui_2 *i;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code retval;
- unsigned char buf[2];
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2))
- return krb5_scc_read(context, id, (krb5_pointer) i, sizeof(krb5_ui_2));
- else {
- retval = krb5_scc_read(context, id, buf, 2);
- if (retval)
- return retval;
- *i = (buf[0] << 8) + buf[1];
- return 0;
- }
-}
-
-krb5_error_code
-krb5_scc_read_octet(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_octet *i;
-{
- return krb5_scc_read(context, id, (krb5_pointer) i, 1);
-}
-
-
-krb5_error_code
-krb5_scc_read_times(context, id, t)
- krb5_context context;
- krb5_ccache id;
- krb5_ticket_times *t;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code retval;
- krb5_int32 i;
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2))
- return krb5_scc_read(context, id, (krb5_pointer) t, sizeof(krb5_ticket_times));
- else {
- retval = krb5_scc_read_int32(context, id, &i);
- CHECK(retval);
- t->authtime = i;
-
- retval = krb5_scc_read_int32(context, id, &i);
- CHECK(retval);
- t->starttime = i;
-
- retval = krb5_scc_read_int32(context, id, &i);
- CHECK(retval);
- t->endtime = i;
-
- retval = krb5_scc_read_int32(context, id, &i);
- CHECK(retval);
- t->renew_till = i;
- }
- return 0;
-errout:
- return retval;
-}
-
-krb5_error_code
-krb5_scc_read_authdata(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata ***a;
-{
- krb5_error_code kret;
- krb5_int32 length;
- int i;
-
- *a = 0;
-
- /* Read the number of components */
- kret = krb5_scc_read_int32(context, id, &length);
- CHECK(kret);
-
- if (length == 0)
- return KRB5_OK;
-
- /* Make *a able to hold length pointers to krb5_authdata structs
- * Add one extra for a null-terminated list
- */
- *a = (krb5_authdata **) calloc(length+1, sizeof(krb5_authdata *));
- if (*a == NULL)
- return KRB5_CC_NOMEM;
-
- for (i=0; i < length; i++) {
- (*a)[i] = (krb5_authdata *) malloc(sizeof(krb5_authdata));
- if ((*a)[i] == NULL) {
- krb5_free_authdata(context, *a);
- return KRB5_CC_NOMEM;
- }
- kret = krb5_scc_read_authdatum(context, id, (*a)[i]);
- CHECK(kret);
- }
-
- return KRB5_OK;
- errout:
- if (*a)
- krb5_free_authdata(context, *a);
- return kret;
-}
-
-krb5_error_code
-krb5_scc_read_authdatum(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata *a;
-{
- krb5_error_code kret;
- krb5_int32 int32;
- krb5_ui_2 ui2;
-
- a->magic = KV5M_AUTHDATA;
- a->contents = NULL;
-
- kret = krb5_scc_read_ui_2(context, id, &ui2);
- CHECK(kret);
- a->ad_type = (krb5_authdatatype)ui2;
- kret = krb5_scc_read_int32(context, id, &int32);
- CHECK(kret);
-#ifdef _MSDOS
- int32 &= VALID_INT_BITS;
-#else
- if ((int32 & VALID_INT_BITS) != int32) /* Overflow int??? */
- return KRB5_CC_NOMEM;
-#endif
- a->length = int32;
-
- if (a->length == 0 )
- return KRB5_OK;
-
- a->contents = (krb5_octet *) malloc(a->length);
- if (a->contents == NULL)
- return KRB5_CC_NOMEM;
-
- kret = krb5_scc_read(context, id, a->contents, a->length);
- CHECK(kret);
-
- return KRB5_OK;
- errout:
- if (a->contents)
- krb5_xfree(a->contents);
- return kret;
-
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_reslv.c
- *
- * Copyright 1990 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_resolve.
- */
-
-
-
-#include "scc.h"
-
-extern krb5_cc_ops krb5_scc_ops;
-
-/*
- * Requires:
- * residual is a legal path name, and a null-terminated string
- *
- * Modifies:
- * id
- *
- * Effects:
- * creates a file-based cred cache that will reside in the file
- * residual. The cache is not opened, but the filename is reserved.
- *
- * Returns:
- * A filled in krb5_ccache structure "id".
- *
- * Errors:
- * KRB5_CC_NOMEM - there was insufficient memory to allocate the
- * krb5_ccache. id is undefined.
- * permission errors
- */
-krb5_error_code
-krb5_scc_resolve (context, id, residual)
- krb5_context context;
- krb5_ccache *id;
- const char *residual;
-{
- krb5_ccache lid;
-
- lid = (krb5_ccache) malloc(sizeof(struct _krb5_ccache));
- if (lid == NULL)
- return KRB5_CC_NOMEM;
-
- lid->ops = &krb5_scc_ops;
-
- lid->data = (krb5_pointer) malloc(sizeof(krb5_scc_data));
- if (lid->data == NULL) {
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- ((krb5_scc_data *) lid->data)->filename = (char *)
- malloc(strlen(residual) + 1);
-
- if (((krb5_scc_data *) lid->data)->filename == NULL) {
- krb5_xfree(((krb5_scc_data *) lid->data));
- krb5_xfree(lid);
- return KRB5_CC_NOMEM;
- }
-
- /* default to open/close on every trn */
- ((krb5_scc_data *) lid->data)->flags = KRB5_TC_OPENCLOSE;
- ((krb5_scc_data *) lid->data)->file = 0;
-
- /* Set up the filename */
- strcpy(((krb5_scc_data *) lid->data)->filename, residual);
-
- lid->magic = KV5M_CCACHE;
-
- /* other routines will get errors on open, and callers must expect them,
- if cache is non-existent/unusable */
- *id = lid;
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_retrv.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_retrieve.
- */
-
-#if 0
-
-#include "scc.h"
-
-#define set(bits) (whichfields & bits)
-#define flags_match(a,b) (((a) & (b)) == (a))
-
-static krb5_boolean
-times_match(t1, t2)
-register const krb5_ticket_times *t1;
-register const krb5_ticket_times *t2;
-{
- if (t1->renew_till) {
- if (t1->renew_till > t2->renew_till)
- return FALSE; /* this one expires too late */
- }
- if (t1->endtime) {
- if (t1->endtime > t2->endtime)
- return FALSE; /* this one expires too late */
- }
- /* only care about expiration on a times_match */
- return TRUE;
-}
-
-static krb5_boolean
-times_match_exact (t1, t2)
- register const krb5_ticket_times *t1, *t2;
-{
- return (t1->authtime == t2->authtime
- && t1->starttime == t2->starttime
- && t1->endtime == t2->endtime
- && t1->renew_till == t2->renew_till);
-}
-
-static krb5_boolean
-standard_fields_match(context, mcreds, creds)
- krb5_context context;
-register const krb5_creds *mcreds, *creds;
-{
- return (krb5_principal_compare(context, mcreds->client,creds->client) &&
- krb5_principal_compare(context, mcreds->server,creds->server));
-}
-
-/* only match the server name portion, not the server realm portion */
-
-static krb5_boolean
-srvname_match(context, mcreds, creds)
- krb5_context context;
-register const krb5_creds *mcreds, *creds;
-{
- krb5_boolean retval;
- krb5_principal_data p1, p2;
-
- retval = krb5_principal_compare(context, mcreds->client,creds->client);
- if (retval != TRUE)
- return retval;
- /*
- * Hack to ignore the server realm for the purposes of the compare.
- */
- p1 = *mcreds->server;
- p2 = *creds->server;
- p1.realm = p2.realm;
- return krb5_principal_compare(context, &p1, &p2);
-}
-
-
-static krb5_boolean
-authdata_match(mdata, data)
- krb5_authdata *const *mdata, *const *data;
-{
- const krb5_authdata *mdatap, *datap;
-
- if (mdata == data)
- return TRUE;
-
- if (mdata == NULL)
- return *data == NULL;
-
- if (data == NULL)
- return *mdata == NULL;
-
- while ((mdatap = *mdata)
- && (datap = *data)
- && mdatap->ad_type == datap->ad_type
- && mdatap->length == datap->length
- && !memcmp ((char *) mdatap->contents, (char *) datap->contents,
- datap->length)) {
- mdata++;
- data++;
- }
-
- return !*mdata && !*data;
-}
-
-static krb5_boolean
-data_match(data1, data2)
-register const krb5_data *data1, *data2;
-{
- if (!data1) {
- if (!data2)
- return TRUE;
- else
- return FALSE;
- }
- if (!data2) return FALSE;
-
- if (data1->length != data2->length)
- return FALSE;
- else
- return memcmp(data1->data, data2->data, data1->length) ? FALSE : TRUE;
-}
-
-
-/*
- * Effects:
- * Searches the file cred cache is for a credential matching mcreds,
- * with the fields specified by whichfields. If one if found, it is
- * returned in creds, which should be freed by the caller with
- * krb5_free_credentials().
- *
- * The fields are interpreted in the following way (all constants are
- * preceded by KRB5_TC_). MATCH_IS_SKEY requires the is_skey field to
- * match exactly. MATCH_TIMES requires the requested lifetime to be
- * at least as great as that specified; MATCH_TIMES_EXACT requires the
- * requested lifetime to be exactly that specified. MATCH_FLAGS
- * requires only the set bits in mcreds be set in creds;
- * MATCH_FLAGS_EXACT requires all bits to match.
- *
- * Errors:
- * system errors
- * permission errors
- * KRB5_CC_NOMEM
- */
-krb5_error_code
-krb5_scc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- /* This function could be considerably faster if it kept indexing */
- /* information.. sounds like a "next version" idea to me. :-) */
-
- krb5_cc_cursor cursor;
- krb5_error_code kret;
- krb5_creds fetchcreds;
-
- kret = krb5_scc_start_seq_get(context, id, &cursor);
- if (kret != KRB5_OK)
- return kret;
-
- while ((kret = krb5_scc_next_cred(context, id, &cursor, &fetchcreds)) == KRB5_OK) {
- if (((set(KRB5_TC_MATCH_SRV_NAMEONLY) &&
- srvname_match(context, mcreds, &fetchcreds)) ||
- standard_fields_match(context, mcreds, &fetchcreds))
- &&
- (! set(KRB5_TC_MATCH_IS_SKEY) ||
- mcreds->is_skey == fetchcreds.is_skey)
- &&
- (! set(KRB5_TC_MATCH_FLAGS_EXACT) ||
- mcreds->ticket_flags == fetchcreds.ticket_flags)
- &&
- (! set(KRB5_TC_MATCH_FLAGS) ||
- flags_match(mcreds->ticket_flags, fetchcreds.ticket_flags))
- &&
- (! set(KRB5_TC_MATCH_TIMES_EXACT) ||
- times_match_exact(&mcreds->times, &fetchcreds.times))
- &&
- (! set(KRB5_TC_MATCH_TIMES) ||
- times_match(&mcreds->times, &fetchcreds.times))
- &&
- (! set(KRB5_TC_MATCH_AUTHDATA) ||
- authdata_match (mcreds->authdata, fetchcreds.authdata))
- &&
- (! set(KRB5_TC_MATCH_2ND_TKT) ||
- data_match (&mcreds->second_ticket, &fetchcreds.second_ticket))
- &&
- ((! set(KRB5_TC_MATCH_KTYPE))||
- (mcreds->keyblock.enctype == fetchcreds.keyblock.enctype))
- )
- {
- krb5_scc_end_seq_get(context, id, &cursor);
- *creds = fetchcreds;
- return KRB5_OK;
- }
-
- /* This one doesn't match */
- krb5_free_cred_contents(context, &fetchcreds);
- }
-
- /* If we get here, a match wasn't found */
- krb5_scc_end_seq_get(context, id, &cursor);
- return KRB5_CC_NOTFOUND;
-}
-
-#else
-
-#include "k5-int.h"
-
-krb5_error_code KRB5_CALLCONV
-krb5_scc_retrieve(context, id, whichfields, mcreds, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_flags whichfields;
- krb5_creds *mcreds;
- krb5_creds *creds;
-{
- return krb5_cc_retrieve_cred_default (context, id, whichfields,
- mcreds, creds);
-}
-
-#endif
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_sflags.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_set_flags.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Requires:
- * id is a cred cache returned by krb5_scc_resolve or
- * krb5_scc_generate_new, but has not been opened by krb5_scc_initialize.
- *
- * Modifies:
- * id
- *
- * Effects:
- * Sets the operational flags of id to flags.
- */
-krb5_error_code
-krb5_scc_set_flags(context, id, flags)
- krb5_context context;
- krb5_ccache id;
- krb5_flags flags;
-{
- krb5_error_code ret = 0;
-
- /* XXX This should check for illegal combinations, if any.. */
- if (flags & KRB5_TC_OPENCLOSE) {
- /* asking to turn on OPENCLOSE mode */
- if (!OPENCLOSE(id))
- ret = krb5_scc_close_file (context, id);
- } else {
- /* asking to turn off OPENCLOSE mode, meaning it must be
- left open. We open if it's not yet open */
- if (OPENCLOSE(id)) {
- ret = krb5_scc_open_file (context, id, SCC_OPEN_RDWR);
- }
- }
-
- ((krb5_scc_data *) id->data)->flags = flags;
- return ret;
-}
-
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_skip.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for reading variables from a
- * credentials cache. These are not library-exported functions.
- */
-
-
-#include "scc.h"
-
-krb5_error_code
-krb5_scc_skip_header(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_error_code kret;
- krb5_scc_data *data = (krb5_scc_data *) id->data;
- krb5_ui_2 scc_flen;
-
- if (fseek(data->file, sizeof(krb5_ui_2), SEEK_SET))
- return errno;
- if (data->version == KRB5_SCC_FVNO_4) {
- kret = krb5_scc_read_ui_2(context, id, &scc_flen);
- if (kret) return kret;
- if (fseek(data->file, scc_flen, SEEK_CUR))
- return errno;
- }
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_scc_skip_principal(context, id)
- krb5_context context;
- krb5_ccache id;
-{
- krb5_error_code kret;
- krb5_principal princ;
-
- kret = krb5_scc_read_principal(context, id, &princ);
- if (kret != KRB5_OK)
- return kret;
-
- krb5_free_principal(context, princ);
- return KRB5_OK;
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_sseq.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_start_seq_get.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Effects:
- * Prepares for a sequential search of the credentials cache.
- * Returns and krb5_cc_cursor to be used with krb5_scc_next_cred and
- * krb5_scc_end_seq_get.
- *
- * If the cache is modified between the time of this call and the time
- * of the final krb5_scc_end_seq_get, the results are undefined.
- *
- * Errors:
- * KRB5_CC_NOMEM
- * system errors
- */
-krb5_error_code
-krb5_scc_start_seq_get(context, id, cursor)
- krb5_context context;
- krb5_ccache id;
- krb5_cc_cursor *cursor;
-{
- krb5_scc_cursor *fcursor;
- int ret = 0;
-
- fcursor = (krb5_scc_cursor *) malloc(sizeof(krb5_scc_cursor));
- if (fcursor == NULL)
- return KRB5_CC_NOMEM;
-
- /* Make sure we start reading right after the primary principal */
- MAYBE_OPEN (context, id, SCC_OPEN_RDONLY);
-
- ret = krb5_scc_skip_header(context, id);
- if (ret) goto done;
- ret = krb5_scc_skip_principal(context, id);
- if (ret) goto done;
-
- fcursor->pos = ftell(((krb5_scc_data *) id->data)->file);
- *cursor = (krb5_cc_cursor) fcursor;
-
-done:
- MAYBE_CLOSE (context, id, ret);
- return(ret);
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_store.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_store.
- */
-
-
-
-#include "scc.h"
-
-/*
- * Modifies:
- * the file cache
- *
- * Effects:
- * stores creds in the file cred cache
- *
- * Errors:
- * system errors
- * storage failure errors
- */
-krb5_error_code
-krb5_scc_store(context, id, creds)
- krb5_context context;
- krb5_ccache id;
- krb5_creds *creds;
-{
-#define TCHECK(ret) if (ret != KRB5_OK) goto lose;
- krb5_error_code ret;
-
- /* Make sure we are writing to the end of the file */
- MAYBE_OPEN (context, id, SCC_OPEN_RDWR);
-
- ret = fseek(((krb5_scc_data *) id->data)->file, 0, 2);
- if (ret < 0)
- return krb5_scc_interpret(context, errno);
-
- ret = krb5_scc_store_principal(context, id, creds->client);
- TCHECK(ret);
- ret = krb5_scc_store_principal(context, id, creds->server);
- TCHECK(ret);
- ret = krb5_scc_store_keyblock(context, id, &creds->keyblock);
- TCHECK(ret);
- ret = krb5_scc_store_times(context, id, &creds->times);
- TCHECK(ret);
- ret = krb5_scc_store_octet(context, id, creds->is_skey);
- TCHECK(ret);
- ret = krb5_scc_store_int32(context, id, creds->ticket_flags);
- TCHECK(ret);
- ret = krb5_scc_store_addrs(context, id, creds->addresses);
- TCHECK(ret);
- ret = krb5_scc_store_authdata(context, id, creds->authdata);
- TCHECK(ret);
- ret = krb5_scc_store_data(context, id, &creds->ticket);
- TCHECK(ret);
- ret = krb5_scc_store_data(context, id, &creds->second_ticket);
- TCHECK(ret);
-
-lose:
-
- MAYBE_CLOSE (context, id, ret);
- return ret;
-#undef TCHECK
-}
+++ /dev/null
-/*
- * lib/krb5/ccache/stdio/scc_write.c
- *
- * Copyright 1990,1991 by the Massachusetts Institute of Technology.
- * All Rights Reserved.
- *
- * Export of this software from the United States of America may
- * require a specific license from the United States Government.
- * It is the responsibility of any person or organization contemplating
- * export to obtain such a license before exporting.
- *
- * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
- * distribute this software and its documentation for any purpose and
- * without fee is hereby granted, provided that the above copyright
- * notice appear in all copies and that both that copyright notice and
- * this permission notice appear in supporting documentation, and that
- * the name of M.I.T. not be used in advertising or publicity pertaining
- * to distribution of the software without specific, written prior
- * permission. Furthermore if you modify this software you must label
- * your software as modified software and not distribute it in such a
- * fashion that it might be confused with the original M.I.T. software.
- * M.I.T. makes no representations about the suitability of
- * this software for any purpose. It is provided "as is" without express
- * or implied warranty.
- *
- *
- * This file contains the source code for krb5_scc_write_<type>.
- */
-
-
-
-#include "scc.h"
-
-#define CHECK(ret) if (ret != KRB5_OK) return ret;
-
-/*
- * Requires:
- * id is open
- *
- * Effects:
- * Writes len bytes from buf into the file cred cache id.
- *
- * Errors:
- * system errors
- */
-krb5_error_code
-krb5_scc_write(context, id, buf, len)
- krb5_context context;
- krb5_ccache id;
- krb5_pointer buf;
- int len;
-{
- int ret;
-
- errno = 0;
- ret = fwrite((char *) buf, 1, len, ((krb5_scc_data *)id->data)->file);
- if ((ret == 0) && errno) {
- return krb5_scc_interpret (context, errno);
- } else if (ret != len)
- return KRB5_CC_END;
- return KRB5_OK;
-}
-
-/*
- * FOR ALL OF THE FOLLOWING FUNCTIONS:
- *
- * Requires:
- * ((krb5_scc_data *) id->data)->file is open and at the right position.
- *
- * Effects:
- * Stores an encoded version of the second argument in the
- * cache file.
- *
- * Errors:
- * system errors
- */
-
-krb5_error_code
-krb5_scc_store_principal(context, id, princ)
- krb5_context context;
- krb5_ccache id;
- krb5_principal princ;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code ret;
- krb5_int32 i, length, tmp, type;
-
- type = krb5_princ_type(context, princ);
- tmp = length = krb5_princ_size(context, princ);
-
- if (data->version == KRB5_SCC_FVNO_1) {
- /*
- * DCE-compatible format means that the length count
- * includes the realm. (It also doesn't include the
- * principal type information.)
- */
- tmp++;
- } else {
- ret = krb5_scc_store_int32(context, id, type);
- CHECK(ret);
- }
-
- ret = krb5_scc_store_int32(context, id, tmp);
- CHECK(ret);
-
- ret = krb5_scc_store_data(context, id, krb5_princ_realm(context, princ));
- CHECK(ret);
-
- for (i=0; i < length; i++) {
- ret = krb5_scc_store_data(context, id,
- krb5_princ_component(context, princ, i));
- CHECK(ret);
- }
-
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_scc_store_addrs(context, id, addrs)
- krb5_context context;
- krb5_ccache id;
- krb5_address ** addrs;
-{
- krb5_error_code ret;
- krb5_address **temp;
- krb5_int32 i, length = 0;
-
- /* Count the number of components */
- if (addrs) {
- temp = addrs;
- while (*temp++)
- length += 1;
- }
-
- ret = krb5_scc_store_int32(context, id, length);
- CHECK(ret);
- for (i=0; i < length; i++) {
- ret = krb5_scc_store_addr(context, id, addrs[i]);
- CHECK(ret);
- }
-
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_scc_store_keyblock(context, id, keyblock)
- krb5_context context;
- krb5_ccache id;
- krb5_keyblock *keyblock;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code ret;
-
- ret = krb5_scc_store_ui_2(context, id, keyblock->enctype);
- CHECK(ret);
- if (data->version == KRB5_SCC_FVNO_3) {
- ret = krb5_scc_store_ui_2(context, id, keyblock->enctype);
- CHECK(ret);
- }
- ret = krb5_scc_store_int32(context, id, keyblock->length);
- CHECK(ret);
- return krb5_scc_write(context, id, (char *) keyblock->contents, keyblock->length);
-}
-
-krb5_error_code
-krb5_scc_store_addr(context, id, addr)
- krb5_context context;
- krb5_ccache id;
- krb5_address *addr;
-{
- krb5_error_code ret;
-
- ret = krb5_scc_store_ui_2(context, id, addr->addrtype);
- CHECK(ret);
- ret = krb5_scc_store_int32(context, id, addr->length);
- CHECK(ret);
- return krb5_scc_write(context, id, (char *) addr->contents, addr->length);
-}
-
-
-krb5_error_code
-krb5_scc_store_data(context, id, data)
- krb5_context context;
- krb5_ccache id;
- krb5_data *data;
-{
- krb5_error_code ret;
-
- ret = krb5_scc_store_int32(context, id, data->length);
- CHECK(ret);
- return krb5_scc_write(context, id, data->data, data->length);
-}
-
-krb5_error_code
-krb5_scc_store_int32(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- unsigned char buf[4];
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2))
- return krb5_scc_write(context, id, (char *) &i, sizeof(krb5_int32));
- else {
- buf[3] = i & 0xFF;
- i >>= 8;
- buf[2] = i & 0xFF;
- i >>= 8;
- buf[1] = i & 0xFF;
- i >>= 8;
- buf[0] = i & 0xFF;
-
- return krb5_scc_write(context, id, buf, 4);
- }
-}
-
-krb5_error_code
-krb5_scc_store_ui_2(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_ui_2 ibuf;
- unsigned char buf[2];
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2)) {
- ibuf = i;
- return krb5_scc_write(context, id, (char *) &ibuf, sizeof(krb5_ui_2));
- } else {
- buf[1] = i & 0xFF;
- i >>= 8;
- buf[0] = i & 0xFF;
-
- return krb5_scc_write(context, id, buf, 2);
- }
-}
-
-krb5_error_code
-krb5_scc_store_octet(context, id, i)
- krb5_context context;
- krb5_ccache id;
- krb5_int32 i;
-{
- krb5_octet ibuf;
-
- ibuf = i;
- return krb5_scc_write(context, id, (char *) &ibuf, 1);
-}
-
-krb5_error_code
-krb5_scc_store_times(context, id, t)
- krb5_context context;
- krb5_ccache id;
- krb5_ticket_times *t;
-{
- krb5_scc_data *data = (krb5_scc_data *)id->data;
- krb5_error_code retval;
-
- if ((data->version == KRB5_SCC_FVNO_1) ||
- (data->version == KRB5_SCC_FVNO_2))
- return krb5_scc_write(context, id, (char *) t, sizeof(krb5_ticket_times));
- else {
- retval = krb5_scc_store_int32(context, id, t->authtime);
- CHECK(retval);
- retval = krb5_scc_store_int32(context, id, t->starttime);
- CHECK(retval);
- retval = krb5_scc_store_int32(context, id, t->endtime);
- CHECK(retval);
- retval = krb5_scc_store_int32(context, id, t->renew_till);
- CHECK(retval);
- return 0;
- }
-}
-
-krb5_error_code
-krb5_scc_store_authdata(context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata **a;
-{
- krb5_error_code ret;
- krb5_authdata **temp;
- krb5_int32 i, length=0;
-
- if (a != NULL) {
- for (temp=a; *temp; temp++)
- length++;
- }
-
- ret = krb5_scc_store_int32(context, id, length);
- CHECK(ret);
- for (i=0; i<length; i++) {
- ret = krb5_scc_store_authdatum (context, id, a[i]);
- CHECK(ret);
- }
- return KRB5_OK;
-}
-
-krb5_error_code
-krb5_scc_store_authdatum (context, id, a)
- krb5_context context;
- krb5_ccache id;
- krb5_authdata *a;
-{
- krb5_error_code ret;
- ret = krb5_scc_store_ui_2(context, id, a->ad_type);
- CHECK(ret);
- ret = krb5_scc_store_int32(context, id, a->length);
- CHECK(ret);
- return krb5_scc_write(context, id, (krb5_pointer) a->contents, a->length);
-}
+++ /dev/null
-Make sure that each time a function returns KRB5_NOMEM, everything
-allocated earlier in the function and stack tree is freed.
-
-Overwrite cache file with nulls before removing it.
-
-Check return values and sanity-check parameters more thoroughly. This
-code was derived from UNIX file I/O code, and the conversion of
-error-trapping may be incomplete. Probably lots of bugs dealing with
-end-of-file versus other errors.
projects / krb5.git / commitdiff