1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
|
/*
* $Source$
* $Author$
*
* Copyright 1990,1991 by the Massachusetts Institute of Technology.
* All Rights Reserved.
*
* Export of this software from the United States of America is assumed
* to require a specific license from the United States Government.
* It is the responsibility of any person or organization contemplating
* export to obtain such a license before exporting.
*
* WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
* distribute this software and its documentation for any purpose and
* without fee is hereby granted, provided that the above copyright
* notice appear in all copies and that both that copyright notice and
* this permission notice appear in supporting documentation, and that
* the name of M.I.T. not be used in advertising or publicity pertaining
* to distribution of the software without specific, written prior
* permission. M.I.T. makes no representations about the suitability of
* this software for any purpose. It is provided "as is" without express
* or implied warranty.
*
*
* krb_get_cred for krb425
*/
#if !defined(lint) && !defined(SABER)
static char rcsid_get_cred_c[] =
"$Id$";
#endif /* !lint & !SABER */
#include "krb425.h"
int
krb_get_cred(service, instance, realm, c)
char *service;
char *instance;
char *realm;
CREDENTIALS *c;
{
static krb5_principal client_principal = 0;
krb5_creds creds;
krb5_principal server;
krb5_error_code r;
krb5_ticket *ticket;
if (r = krb5_build_principal(&server,
strlen(realm), realm,
service,
instance,
0)) {
return(krb425error(r));
}
if (!_krb425_ccache)
krb5_cc_default(&_krb425_ccache);
if (!client_principal)
krb5_cc_get_principal(_krb425_ccache, &client_principal);
memset((char *)&creds, 0, sizeof(creds));
creds.client = client_principal;
creds.server = server;
creds.times.endtime = 0;
creds.keyblock.keytype = KEYTYPE_DES;
r = krb5_get_credentials(0, _krb425_ccache, &creds);
krb5_free_principal(server);
if (r)
return(krb425error(r));
#ifdef EBUG
{
int i;
i = 0;
if (creds.server)
while (creds.server[i]) {
EPRINT("server: %d: ``%.*s''\n", i,
creds.server[i]->length,
creds.server[i]->data
? creds.server[i]->data : "");
++i;
}
i = 0;
if (creds.client)
while (creds.client[i]) {
EPRINT("client: %d: ``%.*s''\n", i,
creds.client[i]->length,
creds.client[i]->data
? creds.client[i]->data : "");
++i;
}
}
#endif
set_string(c->pname, ANAME_SZ, krb5_princ_component(creds.client, 1));
set_string(c->pinst, INST_SZ, krb5_princ_component(creds.client, 2));
set_string(c->realm, REALM_SZ, krb5_princ_realm(creds.server));
set_string(c->service, REALM_SZ, krb5_princ_component(creds.server, 1));
set_string(c->instance, REALM_SZ, krb5_princ_component(creds.server, 2));
c->ticket_st.length = creds.ticket.length;
memcpy((char *)c->ticket_st.dat,
(char *)creds.ticket.data,
min(c->ticket_st.length, MAX_KTXT_LEN));
c->ticket_st.mbz = 0;
memcpy((char*)c->session, (char *)creds.keyblock.contents,
sizeof(C_Block));
c->issue_date = creds.times.starttime;
c->lifetime = creds.times.endtime;
decode_krb5_ticket(&creds.ticket, &ticket);
c->kvno = ticket->enc_part.kvno;
krb5_free_ticket(ticket);
return(KSUCCESS);
}
|
