From eb11fb691679c13b5e2ee013a9b3affded7c0447 Mon Sep 17 00:00:00 2001 From: Simo Sorce Date: Wed, 25 Jan 2012 14:21:35 -0500 Subject: Use the gp_rpc prefix for files that implement the rpc interface --- proxy/src/gp_accept_sec_context.c | 166 ---------------------------------- proxy/src/gp_rpc_accept_sec_context.c | 166 ++++++++++++++++++++++++++++++++++ 2 files changed, 166 insertions(+), 166 deletions(-) delete mode 100644 proxy/src/gp_accept_sec_context.c create mode 100644 proxy/src/gp_rpc_accept_sec_context.c (limited to 'proxy/src') diff --git a/proxy/src/gp_accept_sec_context.c b/proxy/src/gp_accept_sec_context.c deleted file mode 100644 index d7a6821..0000000 --- a/proxy/src/gp_accept_sec_context.c +++ /dev/null @@ -1,166 +0,0 @@ -/* - GSS-PROXY - - Copyright (C) 2011 Red Hat, Inc. - Copyright (C) 2011 Simo Sorce - - Permission is hereby granted, free of charge, to any person obtaining a - copy of this software and associated documentation files (the "Software"), - to deal in the Software without restriction, including without limitation - the rights to use, copy, modify, merge, publish, distribute, sublicense, - and/or sell copies of the Software, and to permit persons to whom the - Software is furnished to do so, subject to the following conditions: - - The above copyright notice and this permission notice shall be included in - all copies or substantial portions of the Software. - - THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR - IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, - FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL - THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER - LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING - FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER - DEALINGS IN THE SOFTWARE. -*/ - -#include "config.h" -#include -#include -#include -#include "gp_utils.h" -#include "gp_conv.h" -#include "gp_export.h" -#include "gp_rpc_process.h" - -int gp_accept_sec_context(struct gssproxy_ctx *gpctx, - union gp_rpc_arg *arg, - union gp_rpc_res *res) -{ - struct gssx_arg_accept_sec_context *asca; - struct gssx_res_accept_sec_context *ascr; - uint32_t ret_maj; - uint32_t ret_min; - gss_ctx_id_t ctx = NULL; - gss_cred_id_t ach; - gss_buffer_desc ibuf; - struct gss_channel_bindings_struct cbs; - gss_channel_bindings_t pcbs; - gss_name_t src_name = NULL; - gss_OID oid; - gss_buffer_desc obuf = { 0, NULL }; - uint32_t ret_flags; - uint32_t time_rec; - gss_cred_id_t dch = NULL; - int ret; - - asca = &arg->gssx_arg_accept_sec_context_arg; - ascr = &res->gssx_res_accept_sec_context_res; - - /* FIXME: set context id from asca->call_ctx */ - ctx = GSS_C_NO_CONTEXT; - - if (asca->cred_handle) { - /* FIXME: deal with actually acquired credentials */ - ach = GSS_C_NO_CREDENTIAL; - } else { - ach = GSS_C_NO_CREDENTIAL; - } - - gp_conv_gssx_to_buffer(&asca->input_token, &ibuf); - - if (asca->input_cb) { - pcbs = &cbs; - gp_conv_gssx_to_cb(asca->input_cb, pcbs); - } else { - pcbs = GSS_C_NO_CHANNEL_BINDINGS; - } - - ret_maj = gss_accept_sec_context(&ret_min, - &ctx, - ach, - &ibuf, - pcbs, - &src_name, - &oid, - &obuf, - &ret_flags, - &time_rec, - &dch); - - ascr->status.major_status = ret_maj; - ret = gp_conv_oid_to_gssx(oid, &ascr->status.mech); - if (ret) { - goto done; - } - ascr->status.minor_status = ret_min; - if (ret_maj) { - ret = gp_conv_err_to_gssx_string(ret_maj, GSS_C_GSS_CODE, oid, - &ascr->status.major_status_string); - if (ret) { - goto done; - } - } - if (ret_min) { - ret = gp_conv_err_to_gssx_string(ret_min, GSS_C_MECH_CODE, oid, - &ascr->status.minor_status_string); - if (ret) { - goto done; - } - } - /* Only used with PGSS, ignore for now */ - /* ascr->status.server_ctx; */ - - if (ret_maj) { - ret = 0; - goto done; - } - - ascr->context_handle = calloc(1, sizeof(gssx_ctx)); - if (!ascr->context_handle) { - ret = ENOMEM; - goto done; - } - ret = gp_conv_ctx_id_to_gssx(&ctx, ascr->context_handle); - if (ret) { - goto done; - } - - ascr->output_token = calloc(1, sizeof(gssx_buffer)); - if (!ascr->output_token) { - ret = ENOMEM; - goto done; - } - ret = gp_conv_buffer_to_gssx(&obuf, ascr->output_token); - if (ret) { - goto done; - } - - if (ret_flags & GSS_C_DELEG_FLAG) { - ascr->delegated_cred_handle = calloc(1, sizeof(gssx_cred)); - if (!ascr->delegated_cred_handle) { - ret = ENOMEM; - goto done; - } - ret = gp_export_gssx_cred(&dch, ascr->delegated_cred_handle); - if (ret) { - goto done; - } - } - -done: - if (ret) { - if (ascr->context_handle) { - xdr_free((xdrproc_t)xdr_gssx_ctx, (char *)ascr->context_handle); - free(ascr->context_handle); - } - if (ascr->output_token) { - xdr_free((xdrproc_t)xdr_gssx_buffer, (char *)ascr->output_token); - free(ascr->output_token); - } - } - gss_release_name(&ret_min, &src_name); - gss_release_buffer(&ret_min, &obuf); - gss_release_cred(&ret_min, &dch); - gss_delete_sec_context(&ret_min, &ctx, GSS_C_NO_BUFFER); - return ret; -} diff --git a/proxy/src/gp_rpc_accept_sec_context.c b/proxy/src/gp_rpc_accept_sec_context.c new file mode 100644 index 0000000..d7a6821 --- /dev/null +++ b/proxy/src/gp_rpc_accept_sec_context.c @@ -0,0 +1,166 @@ +/* + GSS-PROXY + + Copyright (C) 2011 Red Hat, Inc. + Copyright (C) 2011 Simo Sorce + + Permission is hereby granted, free of charge, to any person obtaining a + copy of this software and associated documentation files (the "Software"), + to deal in the Software without restriction, including without limitation + the rights to use, copy, modify, merge, publish, distribute, sublicense, + and/or sell copies of the Software, and to permit persons to whom the + Software is furnished to do so, subject to the following conditions: + + The above copyright notice and this permission notice shall be included in + all copies or substantial portions of the Software. + + THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR + IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, + FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL + THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER + LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING + FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER + DEALINGS IN THE SOFTWARE. +*/ + +#include "config.h" +#include +#include +#include +#include "gp_utils.h" +#include "gp_conv.h" +#include "gp_export.h" +#include "gp_rpc_process.h" + +int gp_accept_sec_context(struct gssproxy_ctx *gpctx, + union gp_rpc_arg *arg, + union gp_rpc_res *res) +{ + struct gssx_arg_accept_sec_context *asca; + struct gssx_res_accept_sec_context *ascr; + uint32_t ret_maj; + uint32_t ret_min; + gss_ctx_id_t ctx = NULL; + gss_cred_id_t ach; + gss_buffer_desc ibuf; + struct gss_channel_bindings_struct cbs; + gss_channel_bindings_t pcbs; + gss_name_t src_name = NULL; + gss_OID oid; + gss_buffer_desc obuf = { 0, NULL }; + uint32_t ret_flags; + uint32_t time_rec; + gss_cred_id_t dch = NULL; + int ret; + + asca = &arg->gssx_arg_accept_sec_context_arg; + ascr = &res->gssx_res_accept_sec_context_res; + + /* FIXME: set context id from asca->call_ctx */ + ctx = GSS_C_NO_CONTEXT; + + if (asca->cred_handle) { + /* FIXME: deal with actually acquired credentials */ + ach = GSS_C_NO_CREDENTIAL; + } else { + ach = GSS_C_NO_CREDENTIAL; + } + + gp_conv_gssx_to_buffer(&asca->input_token, &ibuf); + + if (asca->input_cb) { + pcbs = &cbs; + gp_conv_gssx_to_cb(asca->input_cb, pcbs); + } else { + pcbs = GSS_C_NO_CHANNEL_BINDINGS; + } + + ret_maj = gss_accept_sec_context(&ret_min, + &ctx, + ach, + &ibuf, + pcbs, + &src_name, + &oid, + &obuf, + &ret_flags, + &time_rec, + &dch); + + ascr->status.major_status = ret_maj; + ret = gp_conv_oid_to_gssx(oid, &ascr->status.mech); + if (ret) { + goto done; + } + ascr->status.minor_status = ret_min; + if (ret_maj) { + ret = gp_conv_err_to_gssx_string(ret_maj, GSS_C_GSS_CODE, oid, + &ascr->status.major_status_string); + if (ret) { + goto done; + } + } + if (ret_min) { + ret = gp_conv_err_to_gssx_string(ret_min, GSS_C_MECH_CODE, oid, + &ascr->status.minor_status_string); + if (ret) { + goto done; + } + } + /* Only used with PGSS, ignore for now */ + /* ascr->status.server_ctx; */ + + if (ret_maj) { + ret = 0; + goto done; + } + + ascr->context_handle = calloc(1, sizeof(gssx_ctx)); + if (!ascr->context_handle) { + ret = ENOMEM; + goto done; + } + ret = gp_conv_ctx_id_to_gssx(&ctx, ascr->context_handle); + if (ret) { + goto done; + } + + ascr->output_token = calloc(1, sizeof(gssx_buffer)); + if (!ascr->output_token) { + ret = ENOMEM; + goto done; + } + ret = gp_conv_buffer_to_gssx(&obuf, ascr->output_token); + if (ret) { + goto done; + } + + if (ret_flags & GSS_C_DELEG_FLAG) { + ascr->delegated_cred_handle = calloc(1, sizeof(gssx_cred)); + if (!ascr->delegated_cred_handle) { + ret = ENOMEM; + goto done; + } + ret = gp_export_gssx_cred(&dch, ascr->delegated_cred_handle); + if (ret) { + goto done; + } + } + +done: + if (ret) { + if (ascr->context_handle) { + xdr_free((xdrproc_t)xdr_gssx_ctx, (char *)ascr->context_handle); + free(ascr->context_handle); + } + if (ascr->output_token) { + xdr_free((xdrproc_t)xdr_gssx_buffer, (char *)ascr->output_token); + free(ascr->output_token); + } + } + gss_release_name(&ret_min, &src_name); + gss_release_buffer(&ret_min, &obuf); + gss_release_cred(&ret_min, &dch); + gss_delete_sec_context(&ret_min, &ctx, GSS_C_NO_BUFFER); + return ret; +} -- cgit