diff options
| author | Theodore Tso <tytso@mit.edu> | 1991-06-04 13:23:22 +0000 |
|---|---|---|
| committer | Theodore Tso <tytso@mit.edu> | 1991-06-04 13:23:22 +0000 |
| commit | 7bf39f6be87c46f74f7c9da83c87aeffcd384721 (patch) | |
| tree | 407578d1d223035d473e3259429212dc86ac9133 /src/lib/gssapi/verify.c | |
| parent | cae1d5bec69d569c8f6e9e51001cdb20e81ef7ee (diff) | |
| download | krb5-7bf39f6be87c46f74f7c9da83c87aeffcd384721.tar.gz krb5-7bf39f6be87c46f74f7c9da83c87aeffcd384721.tar.xz krb5-7bf39f6be87c46f74f7c9da83c87aeffcd384721.zip | |
*** empty log message ***
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@2148 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib/gssapi/verify.c')
| -rw-r--r-- | src/lib/gssapi/verify.c | 69 |
1 files changed, 69 insertions, 0 deletions
diff --git a/src/lib/gssapi/verify.c b/src/lib/gssapi/verify.c new file mode 100644 index 0000000000..d212655c4e --- /dev/null +++ b/src/lib/gssapi/verify.c @@ -0,0 +1,69 @@ +/* + * verify.c --- verify message + * + * $Source$ + * $Author$ + * $Header$ + * + * Copyright 1991 by the Massachusetts Institute of Technology. + * All Rights Reserved. + * + * For copying and distribution information, please see the file + * <krb5/copyright.h>. + * + */ + +#include <gssapi.h> +#include <krb5/asn1.h> + +OM_uint32 gss_verify(minor_status, context, message_buffer, + token_buffer, qop_state) + OM_uint32 *minor_status; + gss_ctx_id_t context; + gss_buffer_t message_buffer; + gss_buffer_t token_buffer; + int *qop_state; +{ + OM_uint32 retval; + krb5_data inbuf, outbuf, *scratch; + krb5_safe *message; + int safe_flags = 0; + + *minor_status = 0; + + if (retval = gss_check_token(minor_status, message_buffer, + GSS_API_KRB5_TYPE, GSS_API_KRB5_SIGN)) + return(retval); + inbuf.length = token_buffer->length-4; + inbuf.data = ( (char *) token_buffer->value)+4; + if (*minor_status = decode_krb5_safe(&inbuf, &message)) + return(GSS_S_FAILURE); + if (message->user_data.data) + xfree(message->user_data.data); + message->user_data.length = message_buffer->length; + message->user_data.data = message_buffer->value; + if (*minor_status = encode_krb5_safe(&message, &scratch)) { + message->user_data.data = NULL; + krb5_free_safe(message); + return(GSS_S_FAILURE); + } + message->user_data.data = NULL; + krb5_free_safe(message); + if (context->flags & GSS_C_SEQUENCE_FLAG) + safe_flags = KRB5_SAFE_DOSEQUENCE|KRB5_SAFE_NOTIME; + if (*minor_status = krb5_rd_safe(scratch, + context->session_key, + &context->his_address, + &context->my_address, + context->his_seq_num, + safe_flags, + 0, /* no rcache */ + &outbuf)) { + krb5_free_data(scratch); + return(GSS_S_FAILURE); + } + krb5_free_data(scratch); + if (qop_state) + *qop_state = 0; + return(GSS_S_COMPLETE); +} |