svn rev #22236: branches/krb5-1-7/src/lib/krb5/krb/
tlyu@MIT.EDU
tlyu at MIT.EDU
Wed Apr 15 16:06:47 EDT 2009
http://src.mit.edu/fisheye/changelog/krb5/?cs=22236
Commit By: tlyu
Log Message:
ticket: 6393
pull up r22044 from trunk
------------------------------------------------------------------------
r22044 | hartmans | 2009-02-23 11:22:47 -0500 (Mon, 23 Feb 2009) | 10 lines
Changed paths:
M /trunk/src/lib/krb5/krb/send_tgs.c
Ticket: 6393
send_tgs.c:
* Move generation of subkey into krb5int_send_tgs from construct_authenticator so that it is available for encrypting authorization data.
* Initialize rep->message_type and note that rep is touched on
unsuccessful calls (this has always been true).
* Do not set *subkey until successful return.
Thanks to Greg Hudson for pointing out these problems.
Changed Files:
U branches/krb5-1-7/src/lib/krb5/krb/send_tgs.c
Modified: branches/krb5-1-7/src/lib/krb5/krb/send_tgs.c
===================================================================
--- branches/krb5-1-7/src/lib/krb5/krb/send_tgs.c 2009-04-15 20:06:44 UTC (rev 22235)
+++ branches/krb5-1-7/src/lib/krb5/krb/send_tgs.c 2009-04-15 20:06:47 UTC (rev 22236)
@@ -49,7 +49,7 @@
*/
static krb5_error_code
tgs_construct_tgsreq(krb5_context context, krb5_data *in_data,
- krb5_creds *in_cred, krb5_data *outbuf, krb5_keyblock **subkey)
+ krb5_creds *in_cred, krb5_data *outbuf, krb5_keyblock *subkey)
{
krb5_error_code retval;
krb5_checksum checksum;
@@ -58,11 +58,11 @@
krb5_data * scratch;
krb5_data * toutbuf;
checksum.contents = NULL;
-/* Generate subkey*/
- if ((retval = krb5_generate_subkey( context, &in_cred->keyblock,
- subkey)) != 0)
- return retval;
+ request.authenticator.ciphertext.data = NULL;
+ request.authenticator.kvno = 0;
+ request.ap_options = 0;
+ request.ticket = 0;
/* Generate checksum */
if ((retval = krb5_c_make_checksum(context, context->kdc_req_sumtype,
@@ -74,7 +74,7 @@
}
/* gen authenticator */
- authent.subkey = *subkey; /*owned by caller*/
+ authent.subkey = subkey; /*owned by caller*/
authent.seq_number = 0;
authent.checksum = &checksum;
authent.client = in_cred->client;
@@ -92,10 +92,6 @@
free(checksum.contents);
checksum.contents = NULL;
- request.authenticator.ciphertext.data = NULL;
- request.authenticator.kvno = 0;
- request.ap_options = 0;
- request.ticket = 0;
if ((retval = decode_krb5_ticket(&(in_cred)->ticket, &request.ticket)))
/* Cleanup scratch and scratch data */
@@ -126,13 +122,11 @@
free(scratch);
}
- if (*subkey && retval != 0) {
- krb5_free_keyblock(context, *subkey);
- *subkey = NULL;
- }
return retval;
}
-
+/*
+ * Note that this function fills in part of rep even on failure.
+ */
krb5_error_code
krb5int_send_tgs(krb5_context context, krb5_flags kdcoptions,
const krb5_ticket_times *timestruct, const krb5_enctype *ktypes,
@@ -150,6 +144,7 @@
krb5_pa_data **combined_padata;
krb5_pa_data ap_req_padata;
int tcp_only = 0, use_master;
+ krb5_keyblock *local_subkey = NULL;
assert (subkey != NULL);
*subkey = NULL;
@@ -166,22 +161,29 @@
tgsreq.server = (krb5_principal) sname;
tgsreq.from = timestruct->starttime;
- tgsreq.till = timestruct->endtime ? timestruct->endtime :
- in_cred->times.endtime;
- tgsreq.rtime = timestruct->renew_till;
- if ((retval = krb5_timeofday(context, &time_now)))
- return(retval);
- /* XXX we know they are the same size... */
- rep->expected_nonce = tgsreq.nonce = (krb5_int32) time_now;
- rep->request_time = time_now;
+ tgsreq.till = timestruct->endtime ? timestruct->endtime : in_cred->times.endtime;
+ tgsreq.authorization_data.ciphertext.data = NULL;
+ tgsreq.rtime = timestruct->renew_till;
+ if ((retval = krb5_timeofday(context, &time_now)))
+ return(retval);
+ /* XXX we know they are the same size... */
+ rep->expected_nonce = tgsreq.nonce = (krb5_int32) time_now;
+ rep->request_time = time_now;
+ rep->message_type = KRB5_ERROR; /*caller only uses the response
+ * element on successful return*/
tgsreq.addresses = (krb5_address **) addrs;
+/* Generate subkey*/
+ if ((retval = krb5_generate_subkey( context, &in_cred->keyblock,
+ &local_subkey)) != 0)
+ return retval;
+
if (authorization_data) {
/* need to encrypt it in the request */
if ((retval = encode_krb5_authdata(authorization_data, &scratch)))
- return(retval);
+ goto send_tgs_error_1;
if ((retval = krb5_encrypt_helper(context, *subkey,
KRB5_KEYUSAGE_TGS_REQ_AD_SUBKEY,
@@ -189,7 +191,7 @@
&tgsreq.authorization_data))) {
free(tgsreq.authorization_data.ciphertext.data);
krb5_free_data(context, scratch);
- return retval;
+ goto send_tgs_error_1;
}
krb5_free_data(context, scratch);
@@ -226,7 +228,7 @@
* Get an ap_req.
*/
if ((retval = tgs_construct_tgsreq(context, scratch, in_cred
- , &scratch2, subkey))) {
+ , &scratch2, local_subkey))) {
krb5_free_data(context, scratch);
goto send_tgs_error_2;
}
@@ -297,8 +299,10 @@
;
}
rep->message_type = KRB5_ERROR;
- } else if (krb5_is_tgs_rep(&rep->response))
+ } else if (krb5_is_tgs_rep(&rep->response)) {
rep->message_type = KRB5_TGS_REP;
+ *subkey = local_subkey;
+ }
else /* XXX: assume it's an error */
rep->message_type = KRB5_ERROR;
}
@@ -317,10 +321,9 @@
tgsreq.authorization_data.ciphertext.length);
free(tgsreq.authorization_data.ciphertext.data);
}
- if (rep->message_type != KRB5_TGS_REP && *subkey){
+ if (rep->message_type != KRB5_TGS_REP && local_subkey){
krb5_free_keyblock(context, *subkey);
- *subkey = NULL;
- }
+ }
return retval;
More information about the cvs-krb5
mailing list