summaryrefslogtreecommitdiffstats
path: root/external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp
diff options
context:
space:
mode:
authorDan Klein <danklei@cisco.com>2015-08-24 17:28:17 +0300
committerDan Klein <danklei@cisco.com>2015-08-24 17:28:17 +0300
commit7d3be8c612e295820649779335288c197b80ccb2 (patch)
tree78e9636bc8780dedc919c30378a621f425e1cbfc /external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp
parentdab741a80699f86e86c91718872a052cca9bbb25 (diff)
Changes location of console and fixed dependencies
Diffstat (limited to 'external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp')
-rw-r--r--external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp347
1 files changed, 0 insertions, 347 deletions
diff --git a/external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp b/external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp
deleted file mode 100644
index 355f1528..00000000
--- a/external_libs/python/pyzmq-14.7.0/bundled/zeromq/src/gssapi_mechanism_base.cpp
+++ /dev/null
@@ -1,347 +0,0 @@
-/*
- Copyright (c) 2007-2015 Contributors as noted in the AUTHORS file
-
- This file is part of libzmq, the ZeroMQ core engine in C++.
-
- libzmq is free software; you can redistribute it and/or modify it under
- the terms of the GNU Lesser General Public License (LGPL) as published
- by the Free Software Foundation; either version 3 of the License, or
- (at your option) any later version.
-
- As a special exception, the Contributors give you permission to link
- this library with independent modules to produce an executable,
- regardless of the license terms of these independent modules, and to
- copy and distribute the resulting executable under terms of your choice,
- provided that you also meet, for each linked independent module, the
- terms and conditions of the license of that module. An independent
- module is a module which is not derived from or based on this library.
- If you modify this library, you must extend this exception to your
- version of the library.
-
- libzmq is distributed in the hope that it will be useful, but WITHOUT
- ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
- FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public
- License for more details.
-
- You should have received a copy of the GNU Lesser General Public License
- along with this program. If not, see <http://www.gnu.org/licenses/>.
-*/
-
-#include "platform.hpp"
-
-#ifdef HAVE_LIBGSSAPI_KRB5
-
-#ifdef ZMQ_HAVE_WINDOWS
-#include "windows.hpp"
-#endif
-
-#include <string.h>
-#include <string>
-
-#include "msg.hpp"
-#include "session_base.hpp"
-#include "err.hpp"
-#include "gssapi_mechanism_base.hpp"
-#include "wire.hpp"
-
-zmq::gssapi_mechanism_base_t::gssapi_mechanism_base_t (const options_t & options_) :
- mechanism_t(options_),
- send_tok (),
- recv_tok (),
- /// FIXME remove? in_buf (),
- target_name (GSS_C_NO_NAME),
- principal_name (NULL),
- maj_stat (GSS_S_COMPLETE),
- min_stat (0),
- init_sec_min_stat (0),
- ret_flags (0),
- gss_flags (GSS_C_MUTUAL_FLAG | GSS_C_REPLAY_FLAG),
- cred (GSS_C_NO_CREDENTIAL),
- context (GSS_C_NO_CONTEXT),
- do_encryption (!options_.gss_plaintext)
-{
-}
-
-zmq::gssapi_mechanism_base_t::~gssapi_mechanism_base_t ()
-{
- if(target_name)
- gss_release_name(&min_stat, &target_name);
- if(context)
- gss_delete_sec_context(&min_stat, &context, GSS_C_NO_BUFFER);
-}
-
-int zmq::gssapi_mechanism_base_t::encode_message (msg_t *msg_)
-{
- // Wrap the token value
- int state;
- gss_buffer_desc plaintext;
- gss_buffer_desc wrapped;
-
- uint8_t flags = 0;
- if (msg_->flags () & msg_t::more)
- flags |= 0x01;
-
- uint8_t *plaintext_buffer = static_cast <uint8_t *>(malloc(msg_->size ()+1));
- plaintext_buffer[0] = flags;
- memcpy (plaintext_buffer+1, msg_->data(), msg_->size());
-
- plaintext.value = plaintext_buffer;
- plaintext.length = msg_->size ()+1;
-
- maj_stat = gss_wrap(&min_stat, context, 1, GSS_C_QOP_DEFAULT,
- &plaintext, &state, &wrapped);
-
- zmq_assert (maj_stat == GSS_S_COMPLETE);
- zmq_assert (state);
-
- // Re-initialize msg_ for wrapped text
- int rc = msg_->close ();
- zmq_assert (rc == 0);
-
- rc = msg_->init_size (8 + 4 + wrapped.length);
- zmq_assert (rc == 0);
-
- uint8_t *ptr = static_cast <uint8_t *> (msg_->data ());
-
- // Add command string
- memcpy (ptr, "\x07MESSAGE", 8);
- ptr += 8;
-
- // Add token length
- put_uint32 (ptr, static_cast <uint32_t> (wrapped.length));
- ptr += 4;
-
- // Add wrapped token value
- memcpy (ptr, wrapped.value, wrapped.length);
- ptr += wrapped.length;
-
- gss_release_buffer (&min_stat, &wrapped);
-
- return 0;
-}
-
-int zmq::gssapi_mechanism_base_t::decode_message (msg_t *msg_)
-{
- const uint8_t *ptr = static_cast <uint8_t *> (msg_->data ());
- size_t bytes_left = msg_->size ();
-
- // Get command string
- if (bytes_left < 8 || memcmp (ptr, "\x07MESSAGE", 8)) {
- errno = EPROTO;
- return -1;
- }
- ptr += 8;
- bytes_left -= 8;
-
- // Get token length
- if (bytes_left < 4) {
- errno = EPROTO;
- return -1;
- }
- gss_buffer_desc wrapped;
- wrapped.length = get_uint32 (ptr);
- ptr += 4;
- bytes_left -= 4;
-
- // Get token value
- if (bytes_left < wrapped.length) {
- errno = EPROTO;
- return -1;
- }
- // TODO: instead of malloc/memcpy, can we just do: wrapped.value = ptr;
- const size_t alloc_length = wrapped.length? wrapped.length: 1;
- wrapped.value = static_cast <char *> (malloc (alloc_length));
- if (wrapped.length) {
- alloc_assert (wrapped.value);
- memcpy(wrapped.value, ptr, wrapped.length);
- ptr += wrapped.length;
- bytes_left -= wrapped.length;
- }
-
- // Unwrap the token value
- int state;
- gss_buffer_desc plaintext;
- maj_stat = gss_unwrap(&min_stat, context, &wrapped, &plaintext,
- &state, (gss_qop_t *) NULL);
-
- zmq_assert(maj_stat == GSS_S_COMPLETE);
- zmq_assert(state);
-
- // Re-initialize msg_ for plaintext
- int rc = msg_->close ();
- zmq_assert (rc == 0);
-
- rc = msg_->init_size (plaintext.length-1);
- zmq_assert (rc == 0);
-
- const uint8_t flags = static_cast <char *> (plaintext.value)[0];
- if (flags & 0x01)
- msg_->set_flags (msg_t::more);
-
- memcpy (msg_->data (), static_cast <char *> (plaintext.value)+1, plaintext.length-1);
-
- gss_release_buffer (&min_stat, &plaintext);
- gss_release_buffer (&min_stat, &wrapped);
-
- if (bytes_left > 0) {
- errno = EPROTO;
- return -1;
- }
-
- return 0;
-}
-
-int zmq::gssapi_mechanism_base_t::produce_initiate (msg_t *msg_, void *token_value_, size_t token_length_)
-{
- zmq_assert (token_value_);
- zmq_assert (token_length_ <= 0xFFFFFFFFUL);
-
- const size_t command_size = 9 + 4 + token_length_;
-
- const int rc = msg_->init_size (command_size);
- errno_assert (rc == 0);
-
- uint8_t *ptr = static_cast <uint8_t *> (msg_->data ());
-
- // Add command string
- memcpy (ptr, "\x08INITIATE", 9);
- ptr += 9;
-
- // Add token length
- put_uint32 (ptr, static_cast <uint32_t> (token_length_));
- ptr += 4;
-
- // Add token value
- memcpy (ptr, token_value_, token_length_);
- ptr += token_length_;
-
- return 0;
-}
-
-int zmq::gssapi_mechanism_base_t::process_initiate (msg_t *msg_, void **token_value_, size_t &token_length_)
-{
- zmq_assert (token_value_);
-
- const uint8_t *ptr = static_cast <uint8_t *> (msg_->data ());
- size_t bytes_left = msg_->size ();
-
- // Get command string
- if (bytes_left < 9 || memcmp (ptr, "\x08INITIATE", 9)) {
- errno = EPROTO;
- return -1;
- }
- ptr += 9;
- bytes_left -= 9;
-
- // Get token length
- if (bytes_left < 4) {
- errno = EPROTO;
- return -1;
- }
- token_length_ = get_uint32 (ptr);
- ptr += 4;
- bytes_left -= 4;
-
- // Get token value
- if (bytes_left < token_length_) {
- errno = EPROTO;
- return -1;
- }
- *token_value_ = static_cast <char *> (malloc (token_length_ ? token_length_ : 1));
- if (token_length_) {
- alloc_assert (*token_value_);
- memcpy(*token_value_, ptr, token_length_);
- ptr += token_length_;
- bytes_left -= token_length_;
- }
-
- if (bytes_left > 0) {
- errno = EPROTO;
- return -1;
- }
-
- return 0;
-}
-
-int zmq::gssapi_mechanism_base_t::produce_ready (msg_t *msg_)
-{
- unsigned char * const command_buffer = (unsigned char *) malloc (512);
- alloc_assert (command_buffer);
-
- unsigned char *ptr = command_buffer;
-
- // Add command name
- memcpy (ptr, "\x05READY", 6);
- ptr += 6;
-
- // Add socket type property
- const char *socket_type = socket_type_string (options.type);
- ptr += add_property (ptr, "Socket-Type", socket_type, strlen (socket_type));
-
- // Add identity property
- if (options.type == ZMQ_REQ
- || options.type == ZMQ_DEALER
- || options.type == ZMQ_ROUTER)
- ptr += add_property (ptr, "Identity", options.identity, options.identity_size);
-
- const size_t command_size = ptr - command_buffer;
- const int rc = msg_->init_size (command_size);
- errno_assert (rc == 0);
- memcpy (msg_->data (), command_buffer, command_size);
- free (command_buffer);
-
- if (do_encryption)
- return encode_message (msg_);
-
- return 0;
-}
-
-int zmq::gssapi_mechanism_base_t::process_ready (msg_t *msg_)
-{
- if (do_encryption) {
- const int rc = decode_message (msg_);
- if (rc != 0)
- return rc;
- }
-
- const unsigned char *ptr = static_cast <unsigned char *> (msg_->data ());
- size_t bytes_left = msg_->size ();
-
- if (bytes_left < 6 || memcmp (ptr, "\x05READY", 6)) {
- errno = EPROTO;
- return -1;
- }
- ptr += 6;
- bytes_left -= 6;
- return parse_metadata (ptr, bytes_left);
-}
-
-int zmq::gssapi_mechanism_base_t::acquire_credentials (char * service_name_, gss_cred_id_t * cred_)
-{
- OM_uint32 maj_stat;
- OM_uint32 min_stat;
- gss_name_t server_name;
-
- gss_buffer_desc name_buf;
- name_buf.value = service_name_;
- name_buf.length = strlen ((char *) name_buf.value) + 1;
-
- maj_stat = gss_import_name (&min_stat, &name_buf,
- GSS_C_NT_HOSTBASED_SERVICE, &server_name);
-
- if (maj_stat != GSS_S_COMPLETE)
- return -1;
-
- maj_stat = gss_acquire_cred (&min_stat, server_name, 0,
- GSS_C_NO_OID_SET, GSS_C_ACCEPT,
- cred_, NULL, NULL);
-
- if (maj_stat != GSS_S_COMPLETE)
- return -1;
-
- gss_release_name(&min_stat, &server_name);
-
- return 0;
-}
-
-#endif