xref: /titanic_41/usr/src/lib/gss_mechs/mech_krb5/krb5/krb/gen_subkey.c (revision 159d09a20817016f09b3ea28d1bdada4a336bb91) 
1 /*
2  * lib/krb5/krb/gen_subkey.c
3  *
4  * Copyright 1991, 2002 by the Massachusetts Institute of Technology.
5  * All Rights Reserved.
6  *
7  * Export of this software from the United States of America may
8  *   require a specific license from the United States Government.
9  *   It is the responsibility of any person or organization contemplating
10  *   export to obtain such a license before exporting.
11  *
12  * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
13  * distribute this software and its documentation for any purpose and
14  * without fee is hereby granted, provided that the above copyright
15  * notice appear in all copies and that both that copyright notice and
16  * this permission notice appear in supporting documentation, and that
17  * the name of M.I.T. not be used in advertising or publicity pertaining
18  * to distribution of the software without specific, written prior
19  * permission.  Furthermore if you modify this software you must label
20  * your software as modified software and not distribute it in such a
21  * fashion that it might be confused with the original M.I.T. software.
22  * M.I.T. makes no representations about the suitability of
23  * this software for any purpose.  It is provided "as is" without express
24  * or implied warranty.
25  *
26  *
27  * Routine to automatically generate a subsession key based on an input key.
28  */
29 
30 #include "k5-int.h"
31 
32 /*ARGSUSED*/
33 krb5_error_code
krb5_generate_subkey(krb5_context context,const krb5_keyblock * key,krb5_keyblock ** subkey)34 krb5_generate_subkey(krb5_context context, const krb5_keyblock *key, krb5_keyblock **subkey)
35 {
36     krb5_error_code retval;
37 
38 #if 0
39 /*
40  * Solaris Kerberos:  Don't bother with this PRNG stuff,
41  * we have /dev/random and PKCS#11 to handle Random Numbers.
42  */
43 
44     krb5_data seed;
45 
46     seed.length = key->length;
47     seed.data = key->contents;
48     if ((retval = krb5_c_random_add_entropy(context, KRB5_C_RANDSOURCE_TRUSTEDPARTY, &seed)))
49 	return(retval);
50 #endif /* 0 */
51 
52     if ((*subkey = (krb5_keyblock *) malloc(sizeof(krb5_keyblock))) == NULL)
53 	return(ENOMEM);
54 
55     /* Solaris Kerberos */
56     (void) memset(*subkey, 0, sizeof(krb5_keyblock));
57 
58     if ((retval = krb5_c_make_random_key(context, key->enctype, *subkey))) {
59 	krb5_xfree(*subkey);
60 	return(retval);
61     }
62 
63     return(0);
64 }
65