Gitiles
Code Review Sign In
code.illumos.org / illumos-gate / 1700af3add37a7b6db478d0876536849c3f691fe / . / usr / src / lib / libgss / g_compare_name.c
blob: f4789fc50fd0629a113369148a3b4319a94ea14e [file] [log] [blame]
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License (the "License").
* You may not use this file except in compliance with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* or http://www.opensolaris.org/os/licensing.
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
* Copyright (c) 1999, 2010, Oracle and/or its affiliates. All rights reserved.
*/
/*
* glue routine for gss_compare_name
*
*/
#include <mechglueP.h>
#include "gssapiP_generic.h"
#ifdef HAVE_STDLIB_H
#include <stdlib.h>
#endif
#include <string.h>
static OM_uint32
val_comp_name_args(
OM_uint32 *minor_status,
gss_name_t name1,
gss_name_t name2,
int *name_equal)
{
/* Initialize outputs. */
if (minor_status != NULL)
*minor_status = 0;
/* Validate arguments. */
if (name1 == GSS_C_NO_NAME || name2 == GSS_C_NO_NAME)
return (GSS_S_CALL_INACCESSIBLE_READ | GSS_S_BAD_NAME);
if (name_equal == NULL)
return (GSS_S_CALL_INACCESSIBLE_WRITE);
return (GSS_S_COMPLETE);
}
OM_uint32
gss_compare_name(minor_status,
name1,
name2,
name_equal)
OM_uint32 *minor_status;
const gss_name_t name1;
const gss_name_t name2;
int *name_equal;
{
OM_uint32 major_status, temp_minor;
gss_union_name_t union_name1, union_name2;
gss_mechanism mech = NULL;
gss_name_t internal_name;
major_status = val_comp_name_args(minor_status,
name1, name2, name_equal);
if (major_status != GSS_S_COMPLETE)
return (major_status);
union_name1 = (gss_union_name_t)name1;
union_name2 = (gss_union_name_t)name2;
/*
* Try our hardest to make union_name1 be the mechanism-specific
* name. (Of course we can't if both names aren't
* mechanism-specific.)
*/
if (union_name1->mech_type == 0) {
union_name1 = (gss_union_name_t)name2;
union_name2 = (gss_union_name_t)name1;
}
/*
* If union_name1 is mechanism specific, then fetch its mechanism
* information.
*/
if (union_name1->mech_type) {
mech = __gss_get_mechanism(union_name1->mech_type);
if (!mech)
return (GSS_S_BAD_MECH);
if (!mech->gss_compare_name)
return (GSS_S_UNAVAILABLE);
}
*name_equal = 0; /* Default to *not* equal.... */
/*
* First case... both names are mechanism-specific
*/
if (union_name1->mech_type && union_name2->mech_type) {
if (!g_OID_equal(union_name1->mech_type,
union_name2->mech_type))
return (GSS_S_COMPLETE);
if ((union_name1->mech_name == 0) ||
(union_name2->mech_name == 0))
/* should never happen */
return (GSS_S_BAD_NAME);
if (!mech)
return (GSS_S_BAD_MECH);
if (!mech->gss_compare_name)
return (GSS_S_UNAVAILABLE);
major_status = mech->gss_compare_name(mech->context,
minor_status,
union_name1->mech_name,
union_name2->mech_name,
name_equal);
if (major_status != GSS_S_COMPLETE)
map_error(minor_status, mech);
return major_status;
}
/*
* Second case... both names are NOT mechanism specific.
*
* All we do here is make sure the two name_types are equal and then
* that the external_names are equal. Note the we do not take care
* of the case where two different external names map to the same
* internal name. We cannot determine this, since we as yet do not
* know what mechanism to use for calling the underlying
* gss_import_name().
*/
if (!union_name1->mech_type && !union_name2->mech_type) {
/*
* Second case, first sub-case... one name has null
* name_type, the other doesn't.
*
* Not knowing a mech_type we can't import the name with
* null name_type so we can't compare.
*/
if ((union_name1->name_type == GSS_C_NULL_OID &&
union_name2->name_type != GSS_C_NULL_OID) ||
(union_name1->name_type != GSS_C_NULL_OID &&
union_name2->name_type == GSS_C_NULL_OID))
return (GSS_S_COMPLETE);
/*
* Second case, second sub-case... both names have
* name_types, but they are different.
*/
if ((union_name1->name_type != GSS_C_NULL_OID &&
union_name2->name_type != GSS_C_NULL_OID) &&
!g_OID_equal(union_name1->name_type,
union_name2->name_type))
return (GSS_S_COMPLETE);
/*
* Second case, third sub-case... both names have equal
* name_types (and both have no mech_types) so we just
* compare the external_names.
*/
if ((union_name1->external_name->length !=
union_name2->external_name->length) ||
(memcmp(union_name1->external_name->value,
union_name2->external_name->value,
union_name1->external_name->length) != 0))
return (GSS_S_COMPLETE);
*name_equal = 1;
return (GSS_S_COMPLETE);
}
/*
* Final case... one name is mechanism specific, the other isn't.
*
* We attempt to convert the general name to the mechanism type of
* the mechanism-specific name, and then do the compare. If we
* can't import the general name, then we return that the name is
* _NOT_ equal.
*/
if (union_name2->mech_type) {
/* We make union_name1 the mechanism specific name. */
union_name1 = (gss_union_name_t)name2;
union_name2 = (gss_union_name_t)name1;
}
major_status = __gss_import_internal_name(minor_status,
union_name1->mech_type,
union_name2,
&internal_name);
if (major_status != GSS_S_COMPLETE)
return (GSS_S_COMPLETE); /* return complete, but not equal */
if (!mech)
return (GSS_S_BAD_MECH);
if (!mech->gss_compare_name)
return (GSS_S_UNAVAILABLE);
major_status = mech->gss_compare_name(mech->context, minor_status,
union_name1->mech_name,
internal_name,
name_equal);
if (major_status != GSS_S_COMPLETE)
map_error(minor_status, mech);
(void) __gss_release_internal_name(&temp_minor, union_name1->mech_type,
&internal_name);
return (major_status);
}