diff options
author | Andy Adamson <andros@citi.umich.edu> | 2006-01-18 20:43:24 -0500 |
---|---|---|
committer | Linus Torvalds <torvalds@g5.osdl.org> | 2006-01-18 22:20:25 -0500 |
commit | 822f1005ae1f3a4a8b136f38a6933d3f719f4c4a (patch) | |
tree | 34265fcf1cd957c7b34101b2152b4e5cc9c45086 /net/sunrpc/auth_gss | |
parent | fd44527707f2697fd2959e8bdb321ae588d150e2 (diff) |
[PATCH] svcrpc: gss: handle the GSS_S_CONTINUE
Kerberos context initiation is handled in a single round trip, but other
mechanisms (including spkm3) may require more, so we need to handle the
GSS_S_CONTINUE case in svcauth_gss_accept. Send a null verifier.
Signed-off-by: Andy Adamson <andros@citi.umich.edu>
Signed-off-by: J. Bruce Fields <bfields@citi.umich.edu>
Signed-off-by: Neil Brown <neilb@suse.de>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Diffstat (limited to 'net/sunrpc/auth_gss')
-rw-r--r-- | net/sunrpc/auth_gss/svcauth_gss.c | 30 |
1 files changed, 25 insertions, 5 deletions
diff --git a/net/sunrpc/auth_gss/svcauth_gss.c b/net/sunrpc/auth_gss/svcauth_gss.c index e4ada15ed856..d2ccc7e8faab 100644 --- a/net/sunrpc/auth_gss/svcauth_gss.c +++ b/net/sunrpc/auth_gss/svcauth_gss.c | |||
@@ -586,6 +586,20 @@ gss_verify_header(struct svc_rqst *rqstp, struct rsc *rsci, | |||
586 | } | 586 | } |
587 | 587 | ||
588 | static int | 588 | static int |
589 | gss_write_null_verf(struct svc_rqst *rqstp) | ||
590 | { | ||
591 | u32 *p; | ||
592 | |||
593 | svc_putu32(rqstp->rq_res.head, htonl(RPC_AUTH_NULL)); | ||
594 | p = rqstp->rq_res.head->iov_base + rqstp->rq_res.head->iov_len; | ||
595 | /* don't really need to check if head->iov_len > PAGE_SIZE ... */ | ||
596 | *p++ = 0; | ||
597 | if (!xdr_ressize_check(rqstp, p)) | ||
598 | return -1; | ||
599 | return 0; | ||
600 | } | ||
601 | |||
602 | static int | ||
589 | gss_write_verf(struct svc_rqst *rqstp, struct gss_ctx *ctx_id, u32 seq) | 603 | gss_write_verf(struct svc_rqst *rqstp, struct gss_ctx *ctx_id, u32 seq) |
590 | { | 604 | { |
591 | u32 xdr_seq; | 605 | u32 xdr_seq; |
@@ -876,12 +890,18 @@ svcauth_gss_accept(struct svc_rqst *rqstp, u32 *authp) | |||
876 | case -ENOENT: | 890 | case -ENOENT: |
877 | goto drop; | 891 | goto drop; |
878 | case 0: | 892 | case 0: |
879 | rsci = gss_svc_searchbyctx(&rsip->out_handle); | 893 | if (rsip->major_status == GSS_S_COMPLETE) { |
880 | if (!rsci) { | 894 | rsci = gss_svc_searchbyctx(&rsip->out_handle); |
881 | goto drop; | 895 | if (!rsci) { |
896 | goto drop; | ||
897 | } | ||
898 | if (gss_write_verf(rqstp, rsci->mechctx, | ||
899 | GSS_SEQ_WIN)) | ||
900 | goto drop; | ||
901 | } else { | ||
902 | if (gss_write_null_verf(rqstp)) | ||
903 | goto drop; | ||
882 | } | 904 | } |
883 | if (gss_write_verf(rqstp, rsci->mechctx, GSS_SEQ_WIN)) | ||
884 | goto drop; | ||
885 | if (resv->iov_len + 4 > PAGE_SIZE) | 905 | if (resv->iov_len + 4 > PAGE_SIZE) |
886 | goto drop; | 906 | goto drop; |
887 | svc_putu32(resv, rpc_success); | 907 | svc_putu32(resv, rpc_success); |