diff options
| author | Greg Hudson <ghudson@mit.edu> | 2010-04-14 14:01:05 +0000 |
|---|---|---|
| committer | Greg Hudson <ghudson@mit.edu> | 2010-04-14 14:01:05 +0000 |
| commit | 4b04db51943944c1651dfba4abafad6fb6cbbc65 (patch) | |
| tree | 7cea4ec65405949d9627e9f0e73541747983652e /src/clients | |
| parent | cc6dc869a5aa8cebc2ec4c081f11c0e116ae591a (diff) | |
| download | krb5-4b04db51943944c1651dfba4abafad6fb6cbbc65.zip krb5-4b04db51943944c1651dfba4abafad6fb6cbbc65.tar.gz krb5-4b04db51943944c1651dfba4abafad6fb6cbbc65.tar.bz2 | |
Use krb5_get_credentials in ksu instead of krb5_get_cred_from_kdc, so
we can get rid of the latter. (Also simplifies the code.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23899 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/clients')
| -rw-r--r-- | src/clients/ksu/krb_auth_su.c | 30 |
1 files changed, 2 insertions, 28 deletions
diff --git a/src/clients/ksu/krb_auth_su.c b/src/clients/ksu/krb_auth_su.c index 39b8547..b919c39 100644 --- a/src/clients/ksu/krb_auth_su.c +++ b/src/clients/ksu/krb_auth_su.c @@ -52,9 +52,6 @@ krb5_boolean krb5_auth_check(context, client_pname, hostname, options, krb5_principal client, server; krb5_verify_init_creds_opt vfy_opts; krb5_creds tgt, tgtq, in_creds, * out_creds; - krb5_creds **tgts = NULL; /* list of ticket granting tickets */ - - krb5_ticket * target_tkt; /* decrypted ticket for server */ krb5_error_code retval =0; int got_it = 0; krb5_boolean zero_password; @@ -178,8 +175,8 @@ krb5_boolean krb5_auth_check(context, client_pname, hostname, options, return (FALSE) ; } - if ((retval = krb5_get_cred_from_kdc(context, cc, &in_creds, - &out_creds, &tgts))){ + if ((retval = krb5_get_credentials(context, 0, cc, &in_creds, + &out_creds))){ com_err(prog_name, retval, "while getting credentials from kdc"); return (FALSE); } @@ -191,23 +188,6 @@ krb5_boolean krb5_auth_check(context, client_pname, hostname, options, } - if (tgts){ - register int i =0; - - if (auth_debug){ - fprintf(stderr, "krb5_auth_check: went via multiple realms"); - } - while (tgts[i]){ - if ((retval=krb5_cc_store_cred(context,cc,tgts[i]))) { - com_err(prog_name, retval, - "while storing credentials from cross-realm walk"); - return (FALSE); - } - i++; - } - krb5_free_tgt_creds(context, tgts); - } - krb5_verify_init_creds_opt_init(&vfy_opts); krb5_verify_init_creds_opt_set_ap_req_nofail( &vfy_opts, 1); retval = krb5_verify_init_creds(context, out_creds, server, NULL /*keytab*/, @@ -218,12 +198,6 @@ krb5_boolean krb5_auth_check(context, client_pname, hostname, options, return (FALSE); } - if ((retval = krb5_cc_store_cred(context, cc, out_creds))){ - com_err(prog_name, retval, - "While storing credentials"); - return (FALSE); - } - return (TRUE); } |