[PATCH 2/4] Utility functions to move allocations fromk5buf/krb5_data to gss_buffer_t

Kevin Wasserman krwasserman at hotmail.com
Thu Oct 6 13:46:20 EDT 2011


I need to fix these to check for allocation failure.
Actually, we'd ideally like to add a 'gssalloc' type to k5buf to
avoid the need for the extra alloc+copy, but doing so might
generate an unfortunate dependency of k5sprt on gssapi...

-Kevin

-----Original Message----- 
From: Sam Hartman
Sent: Thursday, October 06, 2011 1:25 PM
To: krbdev at MIT.EDU
Cc: Kevin Wasserman
Subject: [PATCH 2/4] Utility functions to move allocations 
fromk5buf/krb5_data to gss_buffer_t

From: Kevin Wasserman <kevin.wasserman at painless-security.com>

On Unix, these simply move the buffer pointer, but on windows they need to
reallocated with gssalloc_malloc and coied since the gss_buffer_t may need
to be freed in a separate module with potentially mismatched c runtime.

Also fix a mismatched parameter warning in generic_gss_copy_oid_set().

Signed-off-by: Kevin Wasserman <kevin.wasserman at painless-security.com>
---
src/lib/gssapi/generic/gssapiP_generic.h |   19 ++++++++++++++++++-
src/lib/gssapi/krb5/gssapiP_krb5.h       |   15 +++++++++++++++
2 files changed, 33 insertions(+), 1 deletions(-)

diff --git a/src/lib/gssapi/generic/gssapiP_generic.h 
b/src/lib/gssapi/generic/gssapiP_generic.h
index e084b81..7e45782 100644
--- a/src/lib/gssapi/generic/gssapiP_generic.h
+++ b/src/lib/gssapi/generic/gssapiP_generic.h
@@ -41,6 +41,7 @@

#include "gssapi_generic.h"
#include "gssapi_ext.h"
+#include <gssapi/gssapi_alloc.h>
#include "gssapi_err_generic.h"
#include <errno.h>

@@ -264,6 +265,22 @@ int gssint_mecherrmap_get(OM_uint32 minor, gss_OID 
mech_oid,
                           OM_uint32 *mech_minor);
OM_uint32 gssint_mecherrmap_map_errcode(OM_uint32 errcode);

+static inline void
+gssint_transfer_k5buf_to_gss_buffer(struct k5buf *input_k5buf,
+                                    gss_buffer_t output_buffer)
+{
+    char *bp = krb5int_buf_data(input_k5buf);
+    output_buffer->length = krb5int_buf_len(input_k5buf)+1;
+#ifdef _WIN32
+    output_buffer->value = gssalloc_malloc(output_buffer->length);
+    memcpy(output_buffer->value, bp, output_buffer->length);
+    krb5int_free_buf(input_k5buf);
+#else
+    output_buffer->value = bp;
+    input_k5buf->xx_data = NULL;
+#endif
+}
+
OM_uint32 generic_gss_create_empty_buffer_set
(OM_uint32 * /*minor_status*/,
             gss_buffer_set_t * /*buffer_set*/);
@@ -279,7 +296,7 @@ OM_uint32 generic_gss_release_buffer_set

OM_uint32 generic_gss_copy_oid_set
(OM_uint32 *, /* minor_status */
-            const gss_OID_set_desc *, /* const oidset*/
+            const gss_OID_set_desc * const /*oidset*/,
             gss_OID_set * /*new_oidset*/);

extern gss_OID_set gss_ma_known_attrs;
diff --git a/src/lib/gssapi/krb5/gssapiP_krb5.h 
b/src/lib/gssapi/krb5/gssapiP_krb5.h
index 08155e8..ae7fd86 100644
--- a/src/lib/gssapi/krb5/gssapiP_krb5.h
+++ b/src/lib/gssapi/krb5/gssapiP_krb5.h
@@ -1186,6 +1186,21 @@ iakerb_verify_finished(krb5_context context,
                        const krb5_data *conv,
                        const krb5_data *finished);

+static inline void
+gss_krb5int_transfer_krb5_data_to_gss_buffer(krb5_data *input_k5data,
+                                             gss_buffer_t output_buffer)
+{
+    output_buffer->length = input_k5data->length;
+#ifdef _WIN32
+    output_buffer->value = gssalloc_malloc(output_buffer->length);
+    memcpy(output_buffer->value, input_k5data->data, 
output_buffer->length);
+    free(input_k5data->data);
+#else
+    output_buffer->value = input_k5data->data;
+#endif
+    input_k5data = NULL;
+}
+
#define KRB5_GSS_EXTS_IAKERB_FINISHED 1

#endif /* _GSSAPIP_KRB5_H_ */
-- 
1.7.6.3

_______________________________________________
krbdev mailing list             krbdev at mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev 




More information about the krbdev mailing list