2
* Copyright (c) 2005 Doug Rabson
5
* Redistribution and use in source and binary forms, with or without
6
* modification, are permitted provided that the following conditions
8
* 1. Redistributions of source code must retain the above copyright
9
* notice, this list of conditions and the following disclaimer.
10
* 2. Redistributions in binary form must reproduce the above copyright
11
* notice, this list of conditions and the following disclaimer in the
12
* documentation and/or other materials provided with the distribution.
14
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
26
* $FreeBSD: src/lib/libgssapi/gss_init_sec_context.c,v 1.1 2005/12/29 14:40:20 dfr Exp $
29
#include "mech_locl.h"
33
_gss_mech_cred_find(gss_cred_id_t cred_handle, gss_OID mech_type)
35
struct _gss_cred *cred = (struct _gss_cred *)cred_handle;
36
struct _gss_mechanism_cred *mc;
39
return GSS_C_NO_CREDENTIAL;
41
SLIST_FOREACH(mc, &cred->gc_mc, gmc_link) {
42
if (gss_oid_equal(mech_type, mc->gmc_mech_oid))
45
return GSS_C_NO_CREDENTIAL;
48
OM_uint32 GSSAPI_LIB_FUNCTION
49
gss_init_sec_context(OM_uint32 * minor_status,
50
const gss_cred_id_t initiator_cred_handle,
51
gss_ctx_id_t * context_handle,
52
const gss_name_t target_name,
53
const gss_OID input_mech_type,
56
const gss_channel_bindings_t input_chan_bindings,
57
const gss_buffer_t input_token,
58
gss_OID * actual_mech_type,
59
gss_buffer_t output_token,
60
OM_uint32 * ret_flags,
63
OM_uint32 major_status;
64
gssapi_mech_interface m;
65
struct _gss_name *name = (struct _gss_name *) target_name;
66
struct _gss_mechanism_name *mn;
67
struct _gss_context *ctx = (struct _gss_context *) *context_handle;
68
gss_cred_id_t cred_handle;
70
gss_OID mech_type = input_mech_type;
74
_mg_buffer_zero(output_token);
76
*actual_mech_type = GSS_C_NO_OID;
83
* If we haven't allocated a context yet, do so now and lookup
84
* the mechanism switch table. If we have one already, make
85
* sure we use the same mechanism switch as before.
88
if (mech_type == NULL)
89
mech_type = GSS_KRB5_MECHANISM;
91
ctx = malloc(sizeof(struct _gss_context));
93
*minor_status = ENOMEM;
94
return (GSS_S_FAILURE);
96
memset(ctx, 0, sizeof(struct _gss_context));
97
m = ctx->gc_mech = __gss_get_mechanism(mech_type);
100
return (GSS_S_BAD_MECH);
105
mech_type = &ctx->gc_mech->gm_mech_oid;
110
* Find the MN for this mechanism.
112
major_status = _gss_find_mn(minor_status, name, mech_type, &mn);
113
if (major_status != GSS_S_COMPLETE) {
120
* If we have a cred, find the cred for this mechanism.
122
cred_handle = _gss_mech_cred_find(initiator_cred_handle, mech_type);
124
major_status = m->gm_init_sec_context(minor_status,
138
if (major_status != GSS_S_COMPLETE
139
&& major_status != GSS_S_CONTINUE_NEEDED) {
142
_mg_buffer_zero(output_token);
143
_gss_mg_error(m, major_status, *minor_status);
145
*context_handle = (gss_ctx_id_t) ctx;
148
return (major_status);