cf635440ff
These are the start of a lot of work to clean up the FreeBSD eBones code. these changes include, but are not limited to: - Create prototypes for all the library routines - Make all the libraries compile clean with -Wall set - Fix numerous small bugs shown up in the above process - Prepare the code for libdes's removal to secure/ - add register, registerd and make_keypair to the make Lots more will follow in days to come. OK'ed by: rgrimes
103 lines
2.4 KiB
C
103 lines
2.4 KiB
C
/*
|
|
* Copyright 1986, 1987, 1988 by the Massachusetts Institute
|
|
* of Technology.
|
|
* For copying and distribution information, please see the file
|
|
* <Copyright.MIT>.
|
|
*
|
|
* from: create_ciph.c,v 4.8 89/05/18 21:24:26 jis Exp $
|
|
* $Id: create_ciph.c,v 1.3 1995/07/18 16:38:07 mark Exp $
|
|
*/
|
|
|
|
#if 0
|
|
#ifndef lint
|
|
static char *rcsid =
|
|
"$Id: create_ciph.c,v 1.3 1995/07/18 16:38:07 mark Exp $";
|
|
#endif /* lint */
|
|
#endif
|
|
|
|
#include <krb.h>
|
|
#include <des.h>
|
|
#include <strings.h>
|
|
|
|
/*
|
|
* This routine is used by the authentication server to create
|
|
* a packet for its client, containing a ticket for the requested
|
|
* service (given in "tkt"), and some information about the ticket,
|
|
*
|
|
* Returns KSUCCESS no matter what.
|
|
*
|
|
* The length of the cipher is stored in c->length; the format of
|
|
* c->dat is as follows:
|
|
*
|
|
* variable
|
|
* type or constant data
|
|
* ---- ----------- ----
|
|
*
|
|
*
|
|
* 8 bytes session session key for client, service
|
|
*
|
|
* string service service name
|
|
*
|
|
* string instance service instance
|
|
*
|
|
* string realm KDC realm
|
|
*
|
|
* unsigned char life ticket lifetime
|
|
*
|
|
* unsigned char kvno service key version number
|
|
*
|
|
* unsigned char tkt->length length of following ticket
|
|
*
|
|
* data tkt->dat ticket for service
|
|
*
|
|
* 4 bytes kdc_time KDC's timestamp
|
|
*
|
|
* <=7 bytes null null pad to 8 byte multiple
|
|
*
|
|
*/
|
|
|
|
int create_ciph(KTEXT c, des_cblock session, char *service, char *instance,
|
|
char *realm, unsigned long life, int kvno, KTEXT tkt,
|
|
unsigned long kdc_time, des_cblock key)
|
|
{
|
|
char *ptr;
|
|
Key_schedule key_s;
|
|
|
|
ptr = (char *) c->dat;
|
|
|
|
bcopy((char *) session, ptr, 8);
|
|
ptr += 8;
|
|
|
|
(void) strcpy(ptr,service);
|
|
ptr += strlen(service) + 1;
|
|
|
|
(void) strcpy(ptr,instance);
|
|
ptr += strlen(instance) + 1;
|
|
|
|
(void) strcpy(ptr,realm);
|
|
ptr += strlen(realm) + 1;
|
|
|
|
*(ptr++) = (unsigned char) life;
|
|
*(ptr++) = (unsigned char) kvno;
|
|
*(ptr++) = (unsigned char) tkt->length;
|
|
|
|
bcopy((char *)(tkt->dat),ptr,tkt->length);
|
|
ptr += tkt->length;
|
|
|
|
bcopy((char *) &kdc_time,ptr,4);
|
|
ptr += 4;
|
|
|
|
/* guarantee null padded encrypted data to multiple of 8 bytes */
|
|
bzero(ptr, 7);
|
|
|
|
c->length = (((ptr - (char *) c->dat) + 7) / 8) * 8;
|
|
|
|
#ifndef NOENCRYPTION
|
|
key_sched((des_cblock *)key,key_s);
|
|
pcbc_encrypt((des_cblock *)c->dat,(des_cblock *)c->dat,(long) c->length,
|
|
key_s,(des_cblock *)key,ENCRYPT);
|
|
#endif /* NOENCRYPTION */
|
|
|
|
return(KSUCCESS);
|
|
}
|