1 /* -*- mode: c; c-basic-offset: 4; indent-tabs-mode: nil -*- */
2 /*
3  * Copyright 1993 by OpenVision Technologies, Inc.
4  *
5  * Permission to use, copy, modify, distribute, and sell this software
6  * and its documentation for any purpose is hereby granted without fee,
7  * provided that the above copyright notice appears in all copies and
8  * that both that copyright notice and this permission notice appear in
9  * supporting documentation, and that the name of OpenVision not be used
10  * in advertising or publicity pertaining to distribution of the software
11  * without specific, written prior permission. OpenVision makes no
12  * representations about the suitability of this software for any
13  * purpose.  It is provided "as is" without express or implied warranty.
14  *
15  * OPENVISION DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE,
16  * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS, IN NO
17  * EVENT SHALL OPENVISION BE LIABLE FOR ANY SPECIAL, INDIRECT OR
18  * CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF
19  * USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR
20  * OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
21  * PERFORMANCE OF THIS SOFTWARE.
22  */
23 
24 #include "gssapiP_krb5.h"
25 
26 /*
27  * $Id$
28  */
29 
30 OM_uint32 KRB5_CALLCONV
krb5_gss_process_context_token(minor_status,context_handle,token_buffer)31 krb5_gss_process_context_token(minor_status, context_handle,
32                                token_buffer)
33     OM_uint32 *minor_status;
34     gss_ctx_id_t context_handle;
35     gss_buffer_t token_buffer;
36 {
37     krb5_gss_ctx_id_rec *ctx;
38     OM_uint32 majerr;
39 
40     ctx = (krb5_gss_ctx_id_t) context_handle;
41 
42     if (ctx->terminated || !ctx->established) {
43         *minor_status = KG_CTX_INCOMPLETE;
44         return(GSS_S_NO_CONTEXT);
45     }
46 
47     /* We only support context deletion tokens for now, and RFC 4121 does not
48      * define a context deletion token. */
49     if (ctx->proto) {
50         *minor_status = 0;
51         return(GSS_S_DEFECTIVE_TOKEN);
52     }
53 
54     /* "unseal" the token */
55 
56     if (GSS_ERROR(majerr = kg_unseal(minor_status, context_handle,
57                                      token_buffer,
58                                      GSS_C_NO_BUFFER, NULL, NULL,
59                                      KG_TOK_DEL_CTX)))
60         return(majerr);
61 
62     /* Mark the context as terminated, but do not delete it (as that would
63      * leave the caller with a dangling context handle). */
64     ctx->terminated = 1;
65     return(GSS_S_COMPLETE);
66 }
67