g_accept_sec_context.c [plain text]
#include "mglueP.h"
#ifdef HAVE_STDLIB_H
#include <stdlib.h>
#endif
#include <string.h>
#include <errno.h>
OM_uint32 KRB5_CALLCONV
gss_accept_sec_context (minor_status,
context_handle,
verifier_cred_handle,
input_token_buffer,
input_chan_bindings,
src_name,
mech_type,
output_token,
ret_flags,
time_rec,
delegated_cred_handle)
OM_uint32 * minor_status;
gss_ctx_id_t * context_handle;
gss_cred_id_t verifier_cred_handle;
gss_buffer_t input_token_buffer;
gss_channel_bindings_t input_chan_bindings;
gss_name_t * src_name;
gss_OID * mech_type;
gss_buffer_t output_token;
OM_uint32 * ret_flags;
OM_uint32 * time_rec;
gss_cred_id_t * delegated_cred_handle;
{
OM_uint32 status, temp_status, temp_minor_status;
gss_union_ctx_id_t union_ctx_id;
gss_union_cred_t union_cred;
gss_cred_id_t input_cred_handle = GSS_C_NO_CREDENTIAL;
gss_name_t internal_name;
gss_OID_desc token_mech_type_desc;
gss_OID token_mech_type = &token_mech_type_desc;
gss_mechanism mech;
gss_initialize();
if (context_handle == NULL)
return GSS_S_NO_CONTEXT;
if(*context_handle == GSS_C_NO_CONTEXT) {
status = __gss_get_mech_type(token_mech_type, input_token_buffer);
if (status)
return status;
status = GSS_S_FAILURE;
union_ctx_id = (gss_union_ctx_id_t)
malloc(sizeof(gss_union_ctx_id_desc));
if (!union_ctx_id) {
*minor_status = ENOMEM;
goto error_out;
}
union_ctx_id->mech_type = (gss_OID) malloc(sizeof(gss_OID_desc));
if (!union_ctx_id->mech_type) {
*minor_status = ENOMEM;
goto error_out;
}
union_ctx_id->mech_type->elements = (void *)
malloc(token_mech_type->length);
if (!union_ctx_id->mech_type->elements) {
*minor_status = ENOMEM;
goto error_out;
}
union_ctx_id->mech_type->length = token_mech_type->length;
memcpy(union_ctx_id->mech_type->elements,
token_mech_type->elements,
token_mech_type->length);
union_ctx_id->internal_ctx_id = *context_handle;
} else {
union_ctx_id = *context_handle;
token_mech_type = union_ctx_id->mech_type;
}
union_cred = (gss_union_cred_t) verifier_cred_handle;
input_cred_handle = __gss_get_mechanism_cred(union_cred, token_mech_type);
mech = __gss_get_mechanism (token_mech_type);
if (mech && mech->gss_accept_sec_context) {
status = mech->gss_accept_sec_context(
mech->context,
minor_status,
&union_ctx_id->internal_ctx_id,
input_cred_handle,
input_token_buffer,
input_chan_bindings,
&internal_name,
mech_type,
output_token,
ret_flags,
time_rec,
delegated_cred_handle);
if (status == GSS_S_CONTINUE_NEEDED)
return GSS_S_CONTINUE_NEEDED;
if (status != GSS_S_COMPLETE)
goto error_out;
if (src_name != NULL && status == GSS_S_COMPLETE) {
temp_status = __gss_convert_name_to_union_name(
&temp_minor_status, mech, internal_name, src_name);
if (temp_status != GSS_S_COMPLETE) {
if (minor_status)
*minor_status = temp_minor_status;
gss_release_buffer(&temp_minor_status, output_token);
__gss_release_internal_name(&temp_minor_status,
&mech->mech_type, &internal_name);
return (temp_status);
}
}
if(*context_handle == GSS_C_NO_CONTEXT)
*context_handle = (gss_ctx_id_t *) union_ctx_id;
return(status);
}
return(GSS_S_BAD_MECH);
error_out:
if (union_ctx_id) {
if (union_ctx_id->mech_type) {
if (union_ctx_id->mech_type->elements)
free(union_ctx_id->mech_type->elements);
free(union_ctx_id->mech_type);
}
free(union_ctx_id);
}
return (status);
}