diff options
Diffstat (limited to 'crypto/krb5/src/tests/hist.c')
| -rw-r--r-- | crypto/krb5/src/tests/hist.c | 113 | 
1 files changed, 0 insertions, 113 deletions
| diff --git a/crypto/krb5/src/tests/hist.c b/crypto/krb5/src/tests/hist.c deleted file mode 100644 index b2f8ba5d781f..000000000000 --- a/crypto/krb5/src/tests/hist.c +++ /dev/null @@ -1,113 +0,0 @@ -/* -*- mode: c; c-basic-offset: 4; indent-tabs-mode: nil -*- */ -/* tests/hist.c - Perform unusual operations on history keys */ -/* - * Copyright (C) 2012 by the Massachusetts Institute of Technology. - * All rights reserved. - * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * - * * Redistributions of source code must retain the above copyright - *   notice, this list of conditions and the following disclaimer. - * - * * Redistributions in binary form must reproduce the above copyright - *   notice, this list of conditions and the following disclaimer in - *   the documentation and/or other materials provided with the - *   distribution. - * - * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS - * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT - * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS - * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE - * COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, - * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES - * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR - * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) - * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, - * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) - * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED - * OF THE POSSIBILITY OF SUCH DAMAGE. - */ - -/* - * This program is invoked from t_policy.py to simulate some conditions - * normally only seen in older databases.  It expects one argument, which can - * be: - * - *   make: The kadmin/history entry is created with two keys.  (Since krb5 1.3 - *   we ordinarily ensure that there's only one.) - * - *   swap: The kadmin/history entry previously created with "make" is modified - *   to swap the order of its keys.  We use this operation to simulate the case - *   where krb5 1.7 or earlier chose something other than the first history key - *   to create password history entries. - * - *   des: The kadmin/history entry is modified to change its first key type to - *   des-cbc-crc.  The key length and contents are not changed.  (DES support - *   was removed in krb5 1.18.) - */ - -#include <k5-int.h> -#include <kadm5/admin.h> - -static void -check(krb5_error_code ret) -{ -    if (ret) { -	fprintf(stderr, "Unexpected failure, aborting\n"); -	abort(); -    } -} - -int -main(int argc, char **argv) -{ -    krb5_context ctx; -    krb5_db_entry *ent; -    krb5_principal hprinc; -    kadm5_principal_ent_rec kent; -    krb5_key_salt_tuple ks[2]; -    krb5_key_data kd; -    kadm5_config_params params = { 0 }; -    void *handle; -    char *realm; -    long mask = KADM5_PRINCIPAL | KADM5_MAX_LIFE | KADM5_ATTRIBUTES; - -    check(kadm5_init_krb5_context(&ctx)); -    check(krb5_parse_name(ctx, "kadmin/history", &hprinc)); -    check(krb5_get_default_realm(ctx, &realm)); -    params.mask |= KADM5_CONFIG_REALM; -    params.realm = realm; -    check(kadm5_init(ctx, "user", "", "", ¶ms, KADM5_STRUCT_VERSION, -                     KADM5_API_VERSION_4, NULL, &handle)); -    if (strcmp(argv[1], "make") == 0) { -        memset(&kent, 0, sizeof(kent)); -        kent.principal = hprinc; -        kent.max_life = KRB5_KDB_DISALLOW_ALL_TIX; -        kent.attributes = 0; -	ks[0].ks_enctype = ENCTYPE_AES256_CTS_HMAC_SHA1_96; -	ks[0].ks_salttype = KRB5_KDB_SALTTYPE_NORMAL; -	ks[1].ks_enctype = ENCTYPE_AES128_CTS_HMAC_SHA1_96; -	ks[1].ks_salttype = KRB5_KDB_SALTTYPE_NORMAL; -        check(kadm5_create_principal_3(handle, &kent, mask, 2, ks, NULL)); -    } else if (strcmp(argv[1], "swap") == 0) { -        check(krb5_db_get_principal(ctx, hprinc, 0, &ent)); -	kd = ent->key_data[0]; -	ent->key_data[0] = ent->key_data[1]; -	ent->key_data[1] = kd; -        check(krb5_db_put_principal(ctx, ent)); -        krb5_db_free_principal(ctx, ent); -    } else if (strcmp(argv[1], "des") == 0) { -        check(krb5_db_get_principal(ctx, hprinc, 0, &ent)); -        assert(ent->n_key_data >= 1); -        ent->key_data[0].key_data_type[0] = ENCTYPE_DES_CBC_CRC; -        check(krb5_db_put_principal(ctx, ent)); -        krb5_db_free_principal(ctx, ent); -    } -    krb5_free_default_realm(ctx, realm); -    kadm5_destroy(handle); -    krb5_free_principal(ctx, hprinc); -    krb5_free_context(ctx); -    return 0; -} | 
