diff options
| author | John Kohl <jtkohl@mit.edu> | 1990-09-28 10:30:25 +0000 |
|---|---|---|
| committer | John Kohl <jtkohl@mit.edu> | 1990-09-28 10:30:25 +0000 |
| commit | ad085f3dbb2d398f638d4cb2c040d4e1dfec2fbb (patch) | |
| tree | 41af20b5afd8933aac4b0bb92403ef91b49476cb /src/lib/krb5/krb/rd_rep.c | |
| parent | 99b816cb79300ce33feefe38206ff8f380358632 (diff) | |
| download | krb5-ad085f3dbb2d398f638d4cb2c040d4e1dfec2fbb.zip krb5-ad085f3dbb2d398f638d4cb2c040d4e1dfec2fbb.tar.gz krb5-ad085f3dbb2d398f638d4cb2c040d4e1dfec2fbb.tar.bz2 | |
*** empty log message ***
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@1152 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib/krb5/krb/rd_rep.c')
| -rw-r--r-- | src/lib/krb5/krb/rd_rep.c | 97 |
1 files changed, 97 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/rd_rep.c b/src/lib/krb5/krb/rd_rep.c new file mode 100644 index 0000000..78cc9d7 --- /dev/null +++ b/src/lib/krb5/krb/rd_rep.c @@ -0,0 +1,97 @@ +/* + * $Source$ + * $Author$ + * + * Copyright 1990 by the Massachusetts Institute of Technology. + * + * For copying and distribution information, please see the file + * <krb5/copyright.h>. + * + * krb5_rd_rep() + */ + +#if !defined(lint) && !defined(SABER) +static char rcsid_rd_req_dec_c[] = +"$Id$"; +#endif /* !lint & !SABER */ + +#include <krb5/copyright.h> +#include <krb5/krb5.h> +#include <krb5/ext-proto.h> +#include <krb5/libos-proto.h> +#include <krb5/asn1.h> + +/* + Parses a KRB_AP_REP message, returning its contents. + + repl is filled in with the fields from the encrypted response. + + creds supplies the encryption key used to decrypt the message. + + returns system errors, encryption errors, replay errors + */ + +krb5_error_code +krb5_rd_rep(inbuf, creds, repl) +const krb5_data *inbuf; +const krb5_creds *creds; +krb5_ap_rep_enc_part *repl; +{ + krb5_error_code retval; + krb5_ap_rep *reply; + krb5_encrypt_block eblock; + krb5_data scratch; + krb5_ap_rep_enc_part *local_repl; + + if (!krb5_is_ap_rep(inbuf)) + return KRB5KRB_AP_ERR_MSG_TYPE; + + if (!valid_keytype(creds->keyblock.keytype)) + return KRB5_PROG_KEYTYPE_NOSUPP; + + /* decode it */ + + if (retval = decode_krb5_ap_rep(inbuf, &reply)) + return retval; + + /* put together an eblock for this encryption */ + + eblock.crypto_entry = krb5_keytype_array[creds->keyblock.keytype]->system; + + scratch.length = reply->enc_part.length; + if (!(scratch.data = malloc(scratch.length))) { + krb5_free_ap_rep(reply); + return(ENOMEM); + } + + /* do any necessary key pre-processing */ + if (retval = krb5_process_key(&eblock, &creds->keyblock)) { + errout: + free(scratch.data); + krb5_free_ap_rep(reply); + return(retval); + } + + /* call the encryption routine */ + if (retval = krb5_decrypt((krb5_pointer) reply->enc_part.data, + (krb5_pointer) scratch.data, + scratch.length, &eblock, 0)) { + (void) krb5_finish_key(&eblock); + goto errout; + } +#define clean_scratch() {bzero(scratch.data, scratch.length); free(scratch.data);} + /* finished with the top-level encoding of the ap_rep */ + krb5_free_ap_rep(reply); + if (retval = krb5_finish_key(&eblock)) { + + clean_scratch(); + return retval; + } + /* now decode the decrypted stuff */ + if (!(retval = decode_krb5_ap_rep_enc_part(&scratch, &local_repl))) { + *repl = *local_repl; + free((char *)local_repl); + } + clean_scratch(); + return retval; +} |