summaryrefslogtreecommitdiffstats
path: root/src/gss_sec_ctx.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/gss_sec_ctx.c')
-rw-r--r--src/gss_sec_ctx.c91
1 files changed, 38 insertions, 53 deletions
diff --git a/src/gss_sec_ctx.c b/src/gss_sec_ctx.c
index 89972e6..265d24e 100644
--- a/src/gss_sec_ctx.c
+++ b/src/gss_sec_ctx.c
@@ -15,7 +15,6 @@
License along with this library; if not, see <http://www.gnu.org/licenses/>.
*/
-#include <ctype.h>
#include <errno.h>
#include <stdlib.h>
#include <string.h>
@@ -41,8 +40,10 @@ uint32_t gssntlm_init_sec_context(uint32_t *minor_status,
struct gssntlm_ctx *ctx;
struct gssntlm_name *server = NULL;
struct gssntlm_cred *cred = NULL;
- char *env_name;
- char *workstation = NULL;
+ char *computer_name = NULL;
+ char *nb_computer_name = NULL;
+ char *nb_domain_name = NULL;
+ struct gssntlm_name *client_name = NULL;
const char *domain = NULL;
uint32_t in_flags;
uint32_t msg_type;
@@ -185,40 +186,41 @@ uint32_t gssntlm_init_sec_context(uint32_t *minor_status,
domain = cred->cred.user.user.data.user.domain;
}
- env_name = getenv("NETBIOS_COMPUTER_NAME");
- if (env_name) {
- workstation = strdup(env_name);
- } else {
/* acquire our own name */
- gss_buffer_desc tmpbuf = { 0, discard_const("") };
- struct gssntlm_name *tmpname;
- char *p;
+ if (!client_name) {
+ gss_buffer_desc tmpbuf;
+ tmpbuf.value = discard_const("");
+ tmpbuf.length = 0;
retmaj = gssntlm_import_name_by_mech(&retmin,
&gssntlm_oid,
&tmpbuf,
GSS_C_NT_HOSTBASED_SERVICE,
- (gss_name_t *)&tmpname);
+ (gss_name_t *)&client_name);
if (retmaj) goto done;
- p = strchr(tmpname->data.server.name, '.');
- if (p) {
- workstation = strndup(tmpname->data.server.name,
- p - tmpname->data.server.name);
- } else {
- workstation = strdup(tmpname->data.server.name);
- }
- for (p = workstation; p && *p; p++) {
- /* Can only be ASCII, so toupper is safe */
- *p = toupper(*p);
- }
- gssntlm_release_name(&tmpmin, (gss_name_t *)&tmpname);
}
- if (!workstation) {
+
+ computer_name = strdup(client_name->data.server.name);
+ if (!computer_name) {
retmin = ENOMEM;
retmaj = GSS_S_FAILURE;
goto done;
}
+
+ retmin = netbios_get_names(computer_name,
+ &nb_computer_name, &nb_domain_name);
+ if (retmin) {
+ retmaj = GSS_S_FAILURE;
+ goto done;
+ }
+
+ ctx->workstation = strdup(nb_computer_name);
+ if (!ctx->workstation) {
+ retmin = ENOMEM;
+ retmaj = GSS_S_FAILURE;
+ goto done;
+ }
+
ctx->neg_flags |= NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED;
- ctx->workstation = workstation;
lm_compat_lvl = gssntlm_get_lm_compatibility_level();
sec_req = gssntlm_required_security(lm_compat_lvl, ctx->role);
@@ -266,7 +268,7 @@ uint32_t gssntlm_init_sec_context(uint32_t *minor_status,
}
retmin = ntlm_encode_neg_msg(ctx->ntlm, ctx->neg_flags,
- domain, workstation, &ctx->nego_msg);
+ domain, ctx->workstation, &ctx->nego_msg);
if (retmin) {
retmaj = GSS_S_FAILURE;
goto done;
@@ -694,6 +696,10 @@ done:
/* do not leak it, if not passed in */
gssntlm_release_cred(&tmpmin, (gss_cred_id_t *)&cred);
}
+ gssntlm_release_name(&tmpmin, (gss_name_t *)&client_name);
+ safefree(computer_name);
+ safefree(nb_computer_name);
+ safefree(nb_domain_name);
safefree(trgt_name);
ntlm_free_buffer_data(&client_target_info);
ntlm_free_buffer_data(&target_info);
@@ -787,9 +793,7 @@ uint32_t gssntlm_accept_sec_context(uint32_t *minor_status,
char *computer_name = NULL;
char *nb_computer_name = NULL;
char *nb_domain_name = NULL;
- char *env_name;
char *chal_target_name;
- gss_buffer_desc tmpbuf;
uint64_t timestamp;
struct ntlm_buffer target_info = { 0 };
struct ntlm_buffer nt_chal_resp = { 0 };
@@ -813,7 +817,6 @@ uint32_t gssntlm_accept_sec_context(uint32_t *minor_status,
struct ntlm_buffer unhashed_cb = { 0 };
struct ntlm_buffer av_cb = { 0 };
uint8_t sec_req;
- char *p;
if (context_handle == NULL) return GSS_S_CALL_INACCESSIBLE_READ;
if (output_token == GSS_C_NO_BUFFER) {
@@ -963,6 +966,7 @@ uint32_t gssntlm_accept_sec_context(uint32_t *minor_status,
/* acquire our own name */
if (!server_name) {
+ gss_buffer_desc tmpbuf;
tmpbuf.value = discard_const("");
tmpbuf.length = 0;
retmaj = gssntlm_import_name_by_mech(&retmin,
@@ -986,34 +990,15 @@ uint32_t gssntlm_accept_sec_context(uint32_t *minor_status,
goto done;
}
- env_name = getenv("NETBIOS_COMPUTER_NAME");
- if (env_name) {
- nb_computer_name = strdup(env_name);
- } else {
- p = strchr(computer_name, '.');
- if (p) {
- nb_computer_name = strndup(computer_name, p - computer_name);
- } else {
- nb_computer_name = strdup(computer_name);
- }
- for (p = nb_computer_name; p && *p; p++) {
- /* Can only be ASCII, so toupper is safe */
- *p = toupper(*p);
- }
- }
- if (!nb_computer_name) {
- retmin = ENOMEM;
+ retmin = netbios_get_names(computer_name,
+ &nb_computer_name, &nb_domain_name);
+ if (retmin) {
retmaj = GSS_S_FAILURE;
goto done;
}
- env_name = getenv("NETBIOS_DOMAIN_NAME");
- if (env_name) {
- nb_domain_name = strdup(env_name);
- } else {
- nb_domain_name = strdup("WORKGROUP");
- }
- if (!nb_domain_name) {
+ ctx->workstation = strdup(nb_computer_name);
+ if (!ctx->workstation) {
retmin = ENOMEM;
retmaj = GSS_S_FAILURE;
goto done;
generated by cgit (git 2.34.1) at 2024-06-03 16:19:54 +0000