sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-28 07:21:54 +03:00
Code
4b2e171e6b
samba-mirror/source3/libads/sasl_wrapping.c

352 lines
8.2 KiB
C
Raw Normal View History

r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
/*
Unix SMB/CIFS implementation.
ads sasl wrapping code
Copyright (C) Stefan Metzmacher 2007
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include "includes.h"
s3: avoid global include of ads.h. Guenther
2010-07-02 02:32:52 +04:00
#include "ads.h"
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
void ndr_print_ads_saslwrap_struct(struct ndr_print *ndr, const char *name, const struct ads_saslwrap *r)
{
ndr_print_struct(ndr, name, "saslwrap");
ndr->depth++;
ndr_print_uint16(ndr, "wrap_type", r->wrap_type);
#ifdef HAVE_LDAP_SASL_WRAPPING
ndr_print_ptr(ndr, "sbiod", r->sbiod);
#endif /* HAVE_LDAP_SASL_WRAPPING */
ndr_print_ptr(ndr, "mem_ctx", r->mem_ctx);
ndr_print_ptr(ndr, "wrap_ops", r->wrap_ops);
ndr_print_ptr(ndr, "wrap_private_data", r->wrap_private_data);
ndr_print_struct(ndr, name, "in");
ndr->depth++;
ndr_print_uint32(ndr, "ofs", r->in.ofs);
ndr_print_uint32(ndr, "needed", r->in.needed);
ndr_print_uint32(ndr, "left", r->in.left);
ndr_print_uint32(ndr, "max_wrapped", r->in.max_wrapped);
ndr_print_uint32(ndr, "min_wrapped", r->in.min_wrapped);
ndr_print_uint32(ndr, "size", r->in.size);
ndr_print_array_uint8(ndr, "buf", r->in.buf, r->in.size);
ndr->depth--;
ndr_print_struct(ndr, name, "out");
ndr->depth++;
ndr_print_uint32(ndr, "ofs", r->out.ofs);
ndr_print_uint32(ndr, "left", r->out.left);
ndr_print_uint32(ndr, "max_unwrapped", r->out.max_unwrapped);
ndr_print_uint32(ndr, "sig_size", r->out.sig_size);
ndr_print_uint32(ndr, "size", r->out.size);
ndr_print_array_uint8(ndr, "buf", r->out.buf, r->out.size);
ndr->depth--;
}
r23898: rename HAVE_ADS_SASL_WRAPPING -> HAVE_LDAP_SASL_WRAPPING metze (This used to be commit 873eaff8febb50f00f9dac64c57b2a22c16f4f9b)
2007-07-16 20:08:24 +04:00
#ifdef HAVE_LDAP_SASL_WRAPPING
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
static int ads_saslwrap_setup(Sockbuf_IO_Desc *sbiod, void *arg)
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
struct ads_saslwrap *wrap = (struct ads_saslwrap *)arg;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->sbiod = sbiod;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
sbiod->sbiod_pvt = wrap;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
return 0;
}
static int ads_saslwrap_remove(Sockbuf_IO_Desc *sbiod)
{
return 0;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static ber_slen_t ads_saslwrap_prepare_inbuf(struct ads_saslwrap *wrap)
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.ofs = 0;
wrap->in.needed = 0;
wrap->in.left = 0;
wrap->in.size = 4 + wrap->in.min_wrapped;
wrap->in.buf = talloc_array(wrap->mem_ctx,
uint8_t, wrap->in.size);
if (!wrap->in.buf) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
return -1;
}
return 0;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static ber_slen_t ads_saslwrap_grow_inbuf(struct ads_saslwrap *wrap)
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.size == (4 + wrap->in.needed)) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
return 0;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.size = 4 + wrap->in.needed;
wrap->in.buf = talloc_realloc(wrap->mem_ctx,
wrap->in.buf,
uint8_t, wrap->in.size);
if (!wrap->in.buf) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
return -1;
}
return 0;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static void ads_saslwrap_shrink_inbuf(struct ads_saslwrap *wrap)
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
talloc_free(wrap->in.buf);
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.buf = NULL;
wrap->in.size = 0;
wrap->in.ofs = 0;
wrap->in.needed = 0;
wrap->in.left = 0;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static ber_slen_t ads_saslwrap_read(Sockbuf_IO_Desc *sbiod,
void *buf, ber_len_t len)
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
struct ads_saslwrap *wrap =
(struct ads_saslwrap *)sbiod->sbiod_pvt;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
ber_slen_t ret;
/* If ofs < 4 it means we don't have read the length header yet */
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.ofs < 4) {
ret = ads_saslwrap_prepare_inbuf(wrap);
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
if (ret < 0) return ret;
ret = LBER_SBIOD_READ_NEXT(sbiod,
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.buf + wrap->in.ofs,
4 - wrap->in.ofs);
r23943: - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze (This used to be commit 885d557ae746c318df0aabc0a03dce1587918cce)
2007-07-18 11:30:41 +04:00
if (ret <= 0) return ret;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.ofs += ret;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.ofs < 4) goto eagain;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.needed = RIVAL(wrap->in.buf, 0);
if (wrap->in.needed > wrap->in.max_wrapped) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
errno = EINVAL;
return -1;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.needed < wrap->in.min_wrapped) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
errno = EINVAL;
return -1;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
ret = ads_saslwrap_grow_inbuf(wrap);
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
if (ret < 0) return ret;
}
/*
* if there's more data needed from the remote end,
* we need to read more
*/
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.needed > 0) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
ret = LBER_SBIOD_READ_NEXT(sbiod,
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.buf + wrap->in.ofs,
wrap->in.needed);
r23943: - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze (This used to be commit 885d557ae746c318df0aabc0a03dce1587918cce)
2007-07-18 11:30:41 +04:00
if (ret <= 0) return ret;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->in.ofs += ret;
wrap->in.needed -= ret;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.needed > 0) goto eagain;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
}
/*
* if we have a complete packet and have not yet unwrapped it
* we need to call the mech specific unwrap() hook
*/
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.needed == 0 && wrap->in.left == 0) {
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
ADS_STATUS status;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
status = wrap->wrap_ops->unwrap(wrap);
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
if (!ADS_ERR_OK(status)) {
errno = EACCES;
return -1;
}
}
/*
* if we have unwrapped data give it to the caller
*/
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.left > 0) {
ret = MIN(wrap->in.left, len);
memcpy(buf, wrap->in.buf + wrap->in.ofs, ret);
wrap->in.ofs += ret;
wrap->in.left -= ret;
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
/*
* if no more is left shrink the inbuf,
* this will trigger reading a new SASL packet
* from the remote stream in the next call
*/
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.left == 0) {
ads_saslwrap_shrink_inbuf(wrap);
r23922: implement input buffer handling for the SASL read wrapper metze (This used to be commit 7d8518ebd9470062b499b7074a940e14520e99f2)
2007-07-17 14:13:53 +04:00
}
return ret;
}
/*
* if we don't have anything for the caller yet,
* tell him to ask again
*/
eagain:
errno = EAGAIN;
return -1;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static ber_slen_t ads_saslwrap_prepare_outbuf(struct ads_saslwrap *wrap,
uint32_t len)
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->out.ofs = 0;
wrap->out.left = 0;
wrap->out.size = 4 + wrap->out.sig_size + len;
wrap->out.buf = talloc_array(wrap->mem_ctx,
uint8_t, wrap->out.size);
if (!wrap->out.buf) {
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
return -1;
}
return 0;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static void ads_saslwrap_shrink_outbuf(struct ads_saslwrap *wrap)
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
talloc_free(wrap->out.buf);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->out.buf = NULL;
wrap->out.size = 0;
wrap->out.ofs = 0;
wrap->out.left = 0;
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
static ber_slen_t ads_saslwrap_write(Sockbuf_IO_Desc *sbiod,
void *buf, ber_len_t len)
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
struct ads_saslwrap *wrap =
(struct ads_saslwrap *)sbiod->sbiod_pvt;
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
ber_slen_t ret, rlen;
/* if the buffer is empty, we need to wrap in incoming buffer */
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->out.left == 0) {
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
ADS_STATUS status;
if (len == 0) {
errno = EINVAL;
return -1;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
rlen = MIN(len, wrap->out.max_unwrapped);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
ret = ads_saslwrap_prepare_outbuf(wrap, rlen);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
if (ret < 0) return ret;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
status = wrap->wrap_ops->wrap(wrap, (uint8_t *)buf, rlen);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
if (!ADS_ERR_OK(status)) {
errno = EACCES;
return -1;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
RSIVAL(wrap->out.buf, 0, wrap->out.left - 4);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
} else {
rlen = -1;
}
ret = LBER_SBIOD_WRITE_NEXT(sbiod,
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->out.buf + wrap->out.ofs,
wrap->out.left);
r23943: - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze (This used to be commit 885d557ae746c318df0aabc0a03dce1587918cce)
2007-07-18 11:30:41 +04:00
if (ret <= 0) return ret;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->out.ofs += ret;
wrap->out.left -= ret;
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->out.left == 0) {
ads_saslwrap_shrink_outbuf(wrap);
r23926: implement output buffer handling for the SASL write wrapper metze (This used to be commit 65ce6fa21adec704b3cde30c57001e5620f048e4)
2007-07-17 15:14:42 +04:00
}
if (rlen > 0) return rlen;
errno = EAGAIN;
return -1;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
}
static int ads_saslwrap_ctrl(Sockbuf_IO_Desc *sbiod, int opt, void *arg)
{
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
struct ads_saslwrap *wrap =
(struct ads_saslwrap *)sbiod->sbiod_pvt;
r23933: - implement ctrl SASL wrapping hook - pass down sign or seal hooks - some sasl wrapping fixes metze (This used to be commit 8c64ca3394489b28034310fe64d6998e49827196)
2007-07-17 18:08:53 +04:00
int ret;
switch (opt) {
case LBER_SB_OPT_DATA_READY:
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
if (wrap->in.left > 0) {
r23933: - implement ctrl SASL wrapping hook - pass down sign or seal hooks - some sasl wrapping fixes metze (This used to be commit 8c64ca3394489b28034310fe64d6998e49827196)
2007-07-17 18:08:53 +04:00
return 1;
}
ret = LBER_SBIOD_CTRL_NEXT(sbiod, opt, arg);
break;
default:
ret = LBER_SBIOD_CTRL_NEXT(sbiod, opt, arg);
break;
}
return ret;
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
}
static int ads_saslwrap_close(Sockbuf_IO_Desc *sbiod)
{
return 0;
}
static const Sockbuf_IO ads_saslwrap_sockbuf_io = {
ads_saslwrap_setup, /* sbi_setup */
ads_saslwrap_remove, /* sbi_remove */
ads_saslwrap_ctrl, /* sbi_ctrl */
ads_saslwrap_read, /* sbi_read */
ads_saslwrap_write, /* sbi_write */
ads_saslwrap_close /* sbi_close */
};
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
ADS_STATUS ads_setup_sasl_wrapping(struct ads_saslwrap *wrap, LDAP *ld,
r23933: - implement ctrl SASL wrapping hook - pass down sign or seal hooks - some sasl wrapping fixes metze (This used to be commit 8c64ca3394489b28034310fe64d6998e49827196)
2007-07-17 18:08:53 +04:00
const struct ads_saslwrap_ops *ops,
void *private_data)
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
{
ADS_STATUS status;
Sockbuf *sb;
Sockbuf_IO *io = discard_const_p(Sockbuf_IO, &ads_saslwrap_sockbuf_io);
int rc;
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
rc = ldap_get_option(ld, LDAP_OPT_SOCKBUF, &sb);
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
status = ADS_ERROR_LDAP(rc);
if (!ADS_ERR_OK(status)) {
return status;
}
/* setup the real wrapping callbacks */
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
rc = ber_sockbuf_add_io(sb, io, LBER_SBIOD_LEVEL_TRANSPORT, wrap);
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
status = ADS_ERROR_LDAP(rc);
if (!ADS_ERR_OK(status)) {
return status;
}
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
wrap->wrap_ops = ops;
wrap->wrap_private_data = private_data;
r23933: - implement ctrl SASL wrapping hook - pass down sign or seal hooks - some sasl wrapping fixes metze (This used to be commit 8c64ca3394489b28034310fe64d6998e49827196)
2007-07-17 18:08:53 +04:00
r23893: add dummy callbacks for LDAP SASL wrapping, they're not used yet... metze (This used to be commit a3b97cdce719d9d5e82f26096c0e8c3a86ff3965)
2007-07-16 18:35:33 +04:00
return ADS_SUCCESS;
}
r23943: - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze (This used to be commit 885d557ae746c318df0aabc0a03dce1587918cce)
2007-07-18 11:30:41 +04:00
#else
libads: abstract out SASL wrapping code Prepare for rebasing libads on top of libsmbldap. To make libads using 'struct smbldap_state' instead of direct LDAP structure, we need to abstract out libads logic from connection handling. SASL wrapping does not really depend on availability of LDAP handle and does not need direct access to ADS_STRUCT. As result, we'll be able to move SASL wrapping code under smbldap once the latter is able to pass settings that libads passes to the SASL wrapping. Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2017-05-05 15:37:20 +03:00
ADS_STATUS ads_setup_sasl_wrapping(struct ads_saslwrap *wrap, LDAP *ld,
r23943: - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze (This used to be commit 885d557ae746c318df0aabc0a03dce1587918cce)
2007-07-18 11:30:41 +04:00
const struct ads_saslwrap_ops *ops,
void *private_data)
{
return ADS_ERROR_NT(NT_STATUS_NOT_SUPPORTED);
}
r23898: rename HAVE_ADS_SASL_WRAPPING -> HAVE_LDAP_SASL_WRAPPING metze (This used to be commit 873eaff8febb50f00f9dac64c57b2a22c16f4f9b)
2007-07-16 20:08:24 +04:00
#endif /* HAVE_LDAP_SASL_WRAPPING */
Copy Permalink