diff options
| author | John Kohl <jtkohl@mit.edu> | 1990-01-30 18:04:09 +0000 |
|---|---|---|
| committer | John Kohl <jtkohl@mit.edu> | 1990-01-30 18:04:09 +0000 |
| commit | 0e9954d0c71a429801feb55590bbf720645b0f65 (patch) | |
| tree | 26ab45448bf096a201f31e9d2b825e28253820a7 /src/lib/krb5/krb/decrypt_tk.c | |
| parent | 5609ce1fe6272b6b92346a76fe438e70e9ec3681 (diff) | |
| download | krb5-0e9954d0c71a429801feb55590bbf720645b0f65.tar.gz krb5-0e9954d0c71a429801feb55590bbf720645b0f65.tar.xz krb5-0e9954d0c71a429801feb55590bbf720645b0f65.zip | |
*** empty log message ***
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@211 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib/krb5/krb/decrypt_tk.c')
| -rw-r--r-- | src/lib/krb5/krb/decrypt_tk.c | 92 |
1 files changed, 92 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/decrypt_tk.c b/src/lib/krb5/krb/decrypt_tk.c new file mode 100644 index 000000000..aae30a095 --- /dev/null +++ b/src/lib/krb5/krb/decrypt_tk.c @@ -0,0 +1,92 @@ +/* + * $Source$ + * $Author$ + * + * Copyright 1990 by the Massachusetts Institute of Technology. + * + * For copying and distribution information, please see the file + * <krb5/mit-copyright.h>. + * + * krb5_decrypt_tkt_part() function. + */ + +#if !defined(lint) && !defined(SABER) +static char rcsid_decrypt_tk_c[] = +"$Id$"; +#endif /* !lint & !SABER */ + +#include <krb5/copyright.h> + +#include <krb5/krb5.h> +#include <krb5/asn1.h> +#include <krb5/krb5_err.h> + +#include <errno.h> + +#include <krb5/ext-proto.h> + + +/* array of pointers into encryption systems */ +extern krb5_cs_table_entry *csarray[]; +extern int max_cryptosystem; + +/* + Takes encrypted dec_ticket->enc_part, encrypts with dec_ticket->etype + using *srv_key, and places result in dec_ticket->enc_part2. + The storage of dec_ticket->enc_part2 will be allocated before return. + + returns errors from encryption routines, system errors + +*/ + +krb5_error_code +krb5_decrypt_tkt_part(srv_key, ticket) +krb5_keyblock *srv_key; +register krb5_ticket *ticket; +{ + krb5_enc_tkt_part *dec_tkt_part; + krb5_encrypt_block eblock; + krb5_data scratch; + krb5_error_code retval; + + if (ticket->etype > max_cryptosystem || + ticket->etype < 0 || + !csarray[ticket->etype]) + return KRB5KDC_ERR_ETYPE_NOSUPP; + + /* put together an eblock for this encryption */ + + eblock.crypto_entry = csarray[ticket->etype]->system; + + scratch.length = ticket->enc_part.length; + if (!(scratch.data = malloc(ticket->enc_part.length))) + return(ENOMEM); + + /* do any necessary key pre-processing */ + if (retval = (*eblock.crypto_entry->process_key)(&eblock, srv_key)) { + free(scratch.data); + return(retval); + } + + /* call the encryption routine */ + if (retval = + (*eblock.crypto_entry->decrypt_func)((krb5_pointer) ticket->enc_part.data, + (krb5_pointer) scratch.data, + scratch.length, &eblock)) { + (void) (*eblock.crypto_entry->finish_key)(&eblock); + free(scratch.data); + return retval; + } +#define clean_scratch() {bzero(scratch.data, scratch.length); free(scratch.data);} + if (retval = (*eblock.crypto_entry->finish_key)(&eblock)) { + + clean_scratch(); + return retval; + } + /* now decode the decrypted stuff */ + if (!(retval = decode_krb5_enc_tkt_part(&scratch, &dec_tkt_part))) { + ticket->enc_part2 = dec_tkt_part; + } + clean_scratch(); + return retval; +} |