1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
|
/*
* $Source$
* $Author$
*
* Copyright 1990 by the Massachusetts Institute of Technology.
*
* For copying and distribution information, please see the file
* <krb5/copyright.h>.
*
* krb5_get_credentials()
*/
#if !defined(lint) && !defined(SABER)
static char rcsid_get_creds_c[] =
"$Id$";
#endif /* !lint & !SABER */
#include <krb5/copyright.h>
/*
Attempts to use the credentials cache or TGS exchange to get an additional
ticket for the
client identified by creds->client, the server identified by
creds->server, with options options, expiration date specified in
creds->times.endtime (0 means as long as possible), session key type
specified in creds->keyblock.keytype (if non-zero)
Any returned ticket and intermediate ticket-granting tickets are
stored in ccache.
returns errors from encryption routines, system errors
*/
#include <krb5/krb5.h>
#include <krb5/ext-proto.h>
krb5_error_code
krb5_get_credentials(options, ccache, creds)
const krb5_flags options;
krb5_ccache ccache;
krb5_creds *creds;
{
krb5_error_code retval, rv2;
krb5_creds **tgts;
krb5_creds mcreds;
krb5_flags fields;
memset((char *)&mcreds, 0, sizeof(mcreds));
mcreds.server = creds->server;
mcreds.client = creds->client;
mcreds.times.endtime = creds->times.endtime;
mcreds.keyblock = creds->keyblock;
mcreds.authdata = creds->authdata;
fields = KRB5_TC_MATCH_TIMES /*XXX |KRB5_TC_MATCH_SKEY_TYPE */
| KRB5_TC_MATCH_AUTHDATA;
switch(retval = krb5_cc_retrieve_cred(ccache, fields, &mcreds, creds)) {
case KRB5_CC_NOTFOUND:
break;
default:
return retval;
}
retval = krb5_get_cred_from_kdc(ccache, creds, &tgts);
if (tgts) {
register int i = 0;
while (tgts[i]) {
if (rv2 = krb5_cc_store_cred(ccache, tgts[i])) {
retval = rv2;
break;
}
i++;
}
krb5_free_tgt_creds(tgts);
}
if (!retval)
retval = krb5_cc_store_cred(ccache, creds);
return retval;
}
|