GSSAPI ticket expiry time is returned from ldap_child and stored in sdap_handle for future reference.

author: eindenbom <eindenbom@gmail.com> 2010-07-02 18:38:48 +0400
committer: Stephen Gallagher <sgallagh@redhat.com> 2010-07-09 11:44:06 -0400
commit: a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e (patch)
tree: df627427a5f2755612e96bedfcfb72edc4ae73fd /src/providers/ldap/sdap_child_helpers.c
parent: 780ffc9f6d5e1fcd4df3d390b56cb98878223cc0 (diff)
download: sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.tar.gz
sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.tar.xz
sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.zip
1 files changed, 18 insertions, 5 deletions
diff --git a/src/providers/ldap/sdap_child_helpers.c b/src/providers/ldap/sdap_child_helpers.c
index 724de28da..58b757efd 100644
--- a/src/providers/ldap/sdap_child_helpers.c
+++ b/src/providers/ldap/sdap_child_helpers.c
@@ -30,6 +30,7 @@
 
 #include "util/util.h"
 #include "providers/ldap/ldap_common.h"
+#include "providers/ldap/sdap_async_private.h"
 #include "providers/child_common.h"
 
 #ifndef SSSD_LIBEXEC_PATH
@@ -204,12 +205,14 @@ static errno_t create_tgt_req_send_buffer(TALLOC_CTX *mem_ctx,
 
 static int parse_child_response(TALLOC_CTX *mem_ctx,
                                 uint8_t *buf, ssize_t size,
-                                int  *result, char **ccache)
+                                int  *result, char **ccache,
+                                time_t *expire_time_out)
 {
     size_t p = 0;
     uint32_t len;
     uint32_t res;
     char *ccn;
+    time_t expire_time;
 
     /* operation result code */
     SAFEALIGN_COPY_UINT32_CHECK(&res, buf + p, size, &p);
@@ -224,11 +227,18 @@ static int parse_child_response(TALLOC_CTX *mem_ctx,
         DEBUG(1, ("talloc_size failed.\n"));
         return ENOMEM;
     }
-    memcpy(ccn, buf+p, sizeof(char) * (len + 1));
+    safealign_memcpy(ccn, buf+p, sizeof(char) * len, &p);
     ccn[len] = '\0';
 
+    if (p + sizeof(time_t) > size) {
+        talloc_free(ccn);
+        return EINVAL;
+    }
+    safealign_memcpy(&expire_time, buf+p, sizeof(time_t), &p);
+
     *result = res;
     *ccache = ccn;
+    *expire_time_out = expire_time;
     return EOK;
 }
 
@@ -363,25 +373,28 @@ static void sdap_get_tgt_done(struct tevent_req *subreq)
 int sdap_get_tgt_recv(struct tevent_req *req,
                            TALLOC_CTX *mem_ctx,
                            int  *result,
-                           char **ccname)
+                           char **ccname,
+                           time_t *expire_time_out)
 {
     struct sdap_get_tgt_state *state = tevent_req_data(req,
                                              struct sdap_get_tgt_state);
     char *ccn;
+    time_t expire_time;
     int  res;
     int ret;
 
     TEVENT_REQ_RETURN_ON_ERROR(req);
 
-    ret = parse_child_response(mem_ctx, state->buf, state->len, &res, &ccn);
+    ret = parse_child_response(mem_ctx, state->buf, state->len, &res, &ccn, &expire_time);
     if (ret != EOK) {
         DEBUG(1, ("Cannot parse child response: [%d][%s]\n", ret, strerror(ret)));
         return ret;
     }
 
-    DEBUG(6, ("Child responded: %d [%s]\n", res, ccn));
+    DEBUG(6, ("Child responded: %d [%s], expired on [%ld]\n", res, ccn, (long)expire_time));
     *result = res;
     *ccname = ccn;
+    *expire_time_out = expire_time;
     return EOK;
 }
author	eindenbom <eindenbom@gmail.com>	2010-07-02 18:38:48 +0400
committer	Stephen Gallagher <sgallagh@redhat.com>	2010-07-09 11:44:06 -0400
commit	a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e (patch)
tree	df627427a5f2755612e96bedfcfb72edc4ae73fd /src/providers/ldap/sdap_child_helpers.c
parent	780ffc9f6d5e1fcd4df3d390b56cb98878223cc0 (diff)
download	sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.tar.gz sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.tar.xz sssd-a2cabe1873c4d01c18ef6617b6b1f10a0ce3560e.zip