1 /* 2 * Copyright (c) 1997 - 1999, 2002 Kungliga Tekniska H�gskolan 3 * (Royal Institute of Technology, Stockholm, Sweden). 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 17 * 3. Neither the name of the Institute nor the names of its contributors 18 * may be used to endorse or promote products derived from this software 19 * without specific prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND 22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE 25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 */ 33 34 #include "rsh_locl.h" 35 RCSID("$Id: common.c,v 1.14 2002/02/18 20:01:05 joda Exp $"); 36 37 #if defined(KRB4) || defined(KRB5) 38 39 ssize_t 40 do_read (int fd, 41 void *buf, 42 size_t sz) 43 { 44 if (do_encrypt) { 45 #ifdef KRB4 46 if (auth_method == AUTH_KRB4) { 47 return des_enc_read (fd, buf, sz, schedule, &iv); 48 } else 49 #endif /* KRB4 */ 50 #ifdef KRB5 51 if(auth_method == AUTH_KRB5) { 52 krb5_error_code ret; 53 u_int32_t len, outer_len; 54 int status; 55 krb5_data data; 56 void *edata; 57 58 ret = krb5_net_read (context, &fd, &len, 4); 59 if (ret <= 0) 60 return ret; 61 len = ntohl(len); 62 if (len > sz) 63 abort (); 64 outer_len = krb5_get_wrapped_length (context, crypto, len); 65 edata = malloc (outer_len); 66 if (edata == NULL) 67 errx (1, "malloc: cannot allocate %u bytes", outer_len); 68 ret = krb5_net_read (context, &fd, edata, outer_len); 69 if (ret <= 0) 70 return ret; 71 72 status = krb5_decrypt(context, crypto, KRB5_KU_OTHER_ENCRYPTED, 73 edata, outer_len, &data); 74 free (edata); 75 76 if (status) 77 errx (1, "%s", krb5_get_err_text (context, status)); 78 memcpy (buf, data.data, len); 79 krb5_data_free (&data); 80 return len; 81 } else 82 #endif /* KRB5 */ 83 abort (); 84 } else 85 return read (fd, buf, sz); 86 } 87 88 ssize_t 89 do_write (int fd, void *buf, size_t sz) 90 { 91 if (do_encrypt) { 92 #ifdef KRB4 93 if(auth_method == AUTH_KRB4) { 94 return des_enc_write (fd, buf, sz, schedule, &iv); 95 } else 96 #endif /* KRB4 */ 97 #ifdef KRB5 98 if(auth_method == AUTH_KRB5) { 99 krb5_error_code status; 100 krb5_data data; 101 u_int32_t len; 102 int ret; 103 104 status = krb5_encrypt(context, crypto, KRB5_KU_OTHER_ENCRYPTED, 105 buf, sz, &data); 106 107 if (status) 108 errx (1, "%s", krb5_get_err_text(context, status)); 109 110 assert (krb5_get_wrapped_length (context, crypto, 111 sz) == data.length); 112 113 len = htonl(sz); 114 ret = krb5_net_write (context, &fd, &len, 4); 115 if (ret != 4) 116 return ret; 117 ret = krb5_net_write (context, &fd, data.data, data.length); 118 if (ret != data.length) 119 return ret; 120 free (data.data); 121 return sz; 122 } else 123 #endif /* KRB5 */ 124 abort(); 125 } else 126 return write (fd, buf, sz); 127 } 128 #endif /* KRB4 || KRB5 */ 129