diff options
| author | John Kohl <jtkohl@mit.edu> | 1990-02-13 10:20:23 +0000 |
|---|---|---|
| committer | John Kohl <jtkohl@mit.edu> | 1990-02-13 10:20:23 +0000 |
| commit | f0967c0595e890cc64a9a17d04c8ad6e3375dc1c (patch) | |
| tree | 9f949d591f6ba7216623c9e1f022558485703133 /src/lib/kdb/fetch_mkey.c | |
| parent | ddc498dc71c7da82f202c05db4ad8a73a4c3afac (diff) | |
| download | krb5-f0967c0595e890cc64a9a17d04c8ad6e3375dc1c.tar.gz krb5-f0967c0595e890cc64a9a17d04c8ad6e3375dc1c.tar.xz krb5-f0967c0595e890cc64a9a17d04c8ad6e3375dc1c.zip | |
*** empty log message ***
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@350 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib/kdb/fetch_mkey.c')
| -rw-r--r-- | src/lib/kdb/fetch_mkey.c | 76 |
1 files changed, 76 insertions, 0 deletions
diff --git a/src/lib/kdb/fetch_mkey.c b/src/lib/kdb/fetch_mkey.c new file mode 100644 index 0000000000..ce0b11f176 --- /dev/null +++ b/src/lib/kdb/fetch_mkey.c @@ -0,0 +1,76 @@ +/* + * $Source$ + * $Author$ + * + * Copyright 1990 by the Massachusetts Institute of Technology. + * + * For copying and distribution information, please see the file + * <krb5/mit-copyright.h>. + * + * krb5_db_fetch_mkey(): + * Fetch a database master key from somewhere. + */ + +#if !defined(lint) && !defined(SABER) +static char rcsid_fetch_mkey_c[] = +"$Id$"; +#endif /* !lint & !SABER */ + +#include <krb5/copyright.h> +#include <krb5/krb5.h> +#include <krb5/kdb.h> +#include <errno.h> +#include <stdio.h> + +/* these are available to other funcs, and the pointers may be reassigned */ + +char *krb5_mkey_pwd_prompt1 = KRB5_KDC_MKEY_1; +char *krb5_mkey_pwd_prompt2 = KRB5_KDC_MKEY_2; + +/* + * Get the KDC database master key from somewhere, filling it into *key. + * + * key->keytype should be set to the desired key type. + * + * if fromkeyboard is TRUE, then the master key is read as a password + * from the user's terminal. In this case, + * eblock should point to a block with an appropriate string_to_key function. + * + * mname is the name of the key sought; this can be used by the string_to_key + * function or by some other method to isolate the desired key. + * + */ + +krb5_error_code +krb5_db_fetch_mkey(mname, eblock, fromkeyboard, key) +krb5_principal mname; +krb5_encrypt_block *eblock; +krb5_boolean fromkeyboard; +krb5_keyblock *key; +{ + krb5_error_code retval; + char password[BUFSIZ]; + krb5_data pwd; + int size = sizeof(password); + + if (fromkeyboard) { + if (retval = krb5_read_password(krb5_mkey_pwd_prompt1, + krb5_mkey_pwd_prompt2, + password, + &size)) + return(retval); + + pwd.data = password; + pwd.length = size; + retval = (*eblock->crypto_entry->string_to_key)(key->keytype, + key, + &pwd, + mname); + bzero(password, sizeof(password)); /* erase it */ + return retval; + + } else { + /* from somewhere else */ + return EOPNOTSUPP; /* XXX */ + } +} |