![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to create_ciph.c CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDReno / kerberosIV / krb|
Return to create_ciph.c CVS log | Up to [CSRG BSD Unix] / 43BSDReno / kerberosIV / krb |
1.1 ! root 1: /* ! 2: * $Source: /usr/src/kerberosIV/krb/RCS/create_ciph.c,v $ ! 3: * $Author: kfall $ ! 4: * ! 5: * Copyright 1986, 1987, 1988 by the Massachusetts Institute ! 6: * of Technology. ! 7: * ! 8: * For copying and distribution information, please see the file ! 9: * <mit-copyright.h>. ! 10: */ ! 11: ! 12: #ifndef lint ! 13: static char *rcsid_create_ciph_c = ! 14: "$Header: /usr/src/kerberosIV/krb/RCS/create_ciph.c,v 4.9 90/06/25 20:55:25 kfall Exp $"; ! 15: #endif /* lint */ ! 16: ! 17: #include <mit-copyright.h> ! 18: #include <des.h> ! 19: #include <krb.h> ! 20: #include <strings.h> ! 21: ! 22: /* ! 23: * This routine is used by the authentication server to create ! 24: * a packet for its client, containing a ticket for the requested ! 25: * service (given in "tkt"), and some information about the ticket, ! 26: #ifndef NOENCRYPTION ! 27: * all encrypted in the given key ("key"). ! 28: #endif ! 29: * ! 30: * Returns KSUCCESS no matter what. ! 31: * ! 32: * The length of the cipher is stored in c->length; the format of ! 33: * c->dat is as follows: ! 34: * ! 35: * variable ! 36: * type or constant data ! 37: * ---- ----------- ---- ! 38: * ! 39: * ! 40: * 8 bytes session session key for client, service ! 41: * ! 42: * string service service name ! 43: * ! 44: * string instance service instance ! 45: * ! 46: * string realm KDC realm ! 47: * ! 48: * unsigned char life ticket lifetime ! 49: * ! 50: * unsigned char kvno service key version number ! 51: * ! 52: * unsigned char tkt->length length of following ticket ! 53: * ! 54: * data tkt->dat ticket for service ! 55: * ! 56: * 4 bytes kdc_time KDC's timestamp ! 57: * ! 58: * <=7 bytes null null pad to 8 byte multiple ! 59: * ! 60: */ ! 61: ! 62: create_ciph(c, session, service, instance, realm, life, kvno, tkt, ! 63: kdc_time, key) ! 64: KTEXT c; /* Text block to hold ciphertext */ ! 65: C_Block session; /* Session key to send to user */ ! 66: char *service; /* Service name on ticket */ ! 67: char *instance; /* Instance name on ticket */ ! 68: char *realm; /* Realm of this KDC */ ! 69: unsigned long life; /* Lifetime of the ticket */ ! 70: int kvno; /* Key version number for service */ ! 71: KTEXT tkt; /* The ticket for the service */ ! 72: unsigned long kdc_time; /* KDC time */ ! 73: C_Block key; /* Key to encrypt ciphertext with */ ! 74: { ! 75: char *ptr; ! 76: Key_schedule key_s; ! 77: ! 78: ptr = (char *) c->dat; ! 79: ! 80: bcopy((char *) session, ptr, 8); ! 81: ptr += 8; ! 82: ! 83: (void) strcpy(ptr,service); ! 84: ptr += strlen(service) + 1; ! 85: ! 86: (void) strcpy(ptr,instance); ! 87: ptr += strlen(instance) + 1; ! 88: ! 89: (void) strcpy(ptr,realm); ! 90: ptr += strlen(realm) + 1; ! 91: ! 92: *(ptr++) = (unsigned char) life; ! 93: *(ptr++) = (unsigned char) kvno; ! 94: *(ptr++) = (unsigned char) tkt->length; ! 95: ! 96: bcopy((char *)(tkt->dat),ptr,tkt->length); ! 97: ptr += tkt->length; ! 98: ! 99: bcopy((char *) &kdc_time,ptr,4); ! 100: ptr += 4; ! 101: ! 102: /* guarantee null padded encrypted data to multiple of 8 bytes */ ! 103: bzero(ptr, 7); ! 104: ! 105: c->length = (((ptr - (char *) c->dat) + 7) / 8) * 8; ! 106: ! 107: #ifndef NOENCRYPTION ! 108: key_sched(key,key_s); ! 109: pcbc_encrypt((C_Block *)c->dat,(C_Block *)c->dat, ! 110: (long) c->length,key_s,key,ENCRYPT); ! 111: #endif /* NOENCRYPTION */ ! 112: ! 113: return(KSUCCESS); ! 114: }
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.