vmailmgr: lib/misc/krbauth.c@6f7a81934006 (annotated)

0 6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	1	/*
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	2	* krbauth.c: Check a username/password pair against krb5 by temporarily
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	3	* obtaining a short-lived ticket for the corresponding
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	4	* principal. Returns 1 in case of successful verification,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	5	* 0 otherwise.
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	6	*
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	7	* Nickolai Zeldovich <kolya@MIT.EDU>
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	8	*
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	9	*/
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	10
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	11	#include <stddef.h>
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	12	#include <krb5.h>
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	13	#include <com_err.h>
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	14	#include <string.h>
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	15
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	16	#define KRB5_LIFETIME 5
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	17
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	18	int krbauth(char user, char pass) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	19
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	20	krb5_data tgtname = { 0, KRB5_TGS_NAME_SIZE, KRB5_TGS_NAME };
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	21	krb5_context kcontext;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	22	krb5_error_code code;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	23	krb5_principal me;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	24	krb5_principal server;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	25	krb5_creds my_creds;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	26	krb5_timestamp now;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	27	char *client_name;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	28
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	29	if((code=krb5_init_context (&kcontext))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	30	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	31	com_err("krbauth", code, "while initializing krb5");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	32	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	33	return 0; }
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	34
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	35	if((code=krb5_timeofday(kcontext,&now))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	36	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	37	com_err("krbauth", code, "while getting time of day");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	38	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	39	return 0; }
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	40
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	41	if((code=krb5_parse_name(kcontext, user, &me))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	42	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	43	com_err("krbauth", code, "while parsing name %s", user);
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	44	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	45	return 0; }
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	46
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	47	if((code=krb5_unparse_name(kcontext, me, &client_name))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	48	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	49	com_err("krbauth", code, "when unparsing name");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	50	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	51	return 0; }
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	52
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	53	memset((char *)&my_creds, 0, sizeof(my_creds));
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	54	my_creds.client = me;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	55	if((code=krb5_build_principal_ext(kcontext, &server,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	56	krb5_princ_realm(kcontext, me)->length,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	57	krb5_princ_realm(kcontext, me)->data,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	58	tgtname.length, tgtname.data,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	59	krb5_princ_realm(kcontext, me)->length,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	60	krb5_princ_realm(kcontext, me)->data,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	61	0))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	62	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	63	com_err("krbauth", code, "while building server name");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	64	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	65	return 0; }
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	66
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	67	my_creds.server = server;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	68	my_creds.times.starttime = 0;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	69	my_creds.times.endtime = now + KRB5_LIFETIME;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	70	if((code=krb5_get_in_tkt_with_password(kcontext, 0, 0,
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	71	NULL, NULL, pass, 0, &my_creds, 0))) {
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	72	#ifdef DEBUG
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	73	if(code==KRB5KRB_AP_ERR_BAD_INTEGRITY)
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	74	com_err("krbauth", code, "incorrect password");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	75	else
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	76	com_err("krbauth", code, "while getting initial credentials");
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	77	#endif
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	78	return 0;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	79	}
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	80
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	81	return 1;
6f7a81934006 Imported vmailmgr-0.96.9 "Tomas Zeman <tzeman@volny.cz>" parents: diff changeset	82	}

author	"Tomas Zeman <tzeman@volny.cz>"
	Wed, 16 Jan 2008 22:39:43 +0100
changeset 0	6f7a81934006
permissions	-rw-r--r--