43     krb5_error_code ret;
48     ret = krb5_crypto_init(context, key, 0, &crypto);
49     if (ret)
50 	return ret;
51     ret = krb5_decrypt_EncryptedData (context,
57     if (ret)
58 	return ret;
60     ret = decode_EncTicketPart(plain.data, plain.length, decr_part, &len);
61     if (ret)
62         krb5_set_error_message(context, ret,
66     return ret;
76     krb5_error_code ret;
81     ret = krb5_crypto_init(context, key, 0, &crypto);
82     if (ret)
83 	return ret;
84     ret = krb5_decrypt_EncryptedData (context,
90     if (ret && usage == KRB5_KU_TGS_REQ_AUTH)
91 	ret = krb5_decrypt_EncryptedData (context,
97     if (ret)
98 	return ret;
100     ret = decode_Authenticator(plain.data, plain.length,
103     return ret;
111     krb5_error_code ret;
113     ret = decode_AP_REQ(inbuf->data, inbuf->length, ap_req, &len);
114     if (ret)
115 	return ret;
139     krb5_error_code ret;
155     ret = krb5_domain_x500_decode(context, enc->transited.contents,
159     if(ret)
160 	return ret;
161     ret = krb5_check_transited(context, enc->crealm,
167     return ret;
175     krb5_error_code ret;
191 	    ret = decode_AD_IF_RELEVANT(ad->val[i].ad_data.data,
195 	    if (ret)
196 		return ret;
211     ret = decode_EtypeList(adIfRelevant.val[0].ad_data.data,
215     if (ret)
220     return ret;
231     krb5_error_code ret;
232     ret = decrypt_tkt_enc_part (context, key, &ticket->enc_part, &t);
233     if (ret)
234 	return ret;
257 	    ret = check_transited(context, ticket, &t);
258 	    if(ret) {
260 		return ret;
278     krb5_error_code ret;
283     ret = krb5_auth_con_getauthenticator (context,
286     if(ret)
287 	return ret;
292     ret = krb5_auth_con_getkey(context, ac, &key);
293     if(ret) {
295 	return ret;
297     ret = krb5_crypto_init(context, key, 0, &crypto);
298     if(ret)
300     ret = krb5_verify_checksum (context,
310     return ret;
348     krb5_error_code ret;
357 	ret = krb5_auth_con_init (context, &ac);
358 	if (ret)
359 	    return ret;
364 	ret = ENOMEM;
370 	ret = krb5_decrypt_ticket(context, &ap_req->ticket,
377 	ret = krb5_decrypt_ticket(context, &ap_req->ticket,
382     if(ret)
385     ret = _krb5_principalname2krb5_principal(context,
389     if (ret) goto out;
390     ret = _krb5_principalname2krb5_principal(context,
394     if (ret) goto out;
396     ret = decrypt_authenticator (context,
401     if (ret)
420 	    ret = KRB5KRB_AP_ERR_BADMATCH;
433 	ret = KRB5KRB_AP_ERR_BADADDR;
445 	    ret = KRB5KRB_AP_ERR_SKEW;
458 	ret = krb5_auth_con_setremotesubkey(context, ac,
460 	if (ret)
464     ret = find_etypelist(context, ac, &etypes);
465     if (ret)
482     ret = krb5_copy_keyblock(context, &t->ticket.key, &ac->keyblock);
483     if (ret) goto out;
511     return ret;
696     krb5_error_code ret;
700     ret = krb5_rd_req_in_ctx_alloc(context, &in);
701     if (ret)
702 	return ret;
704     ret = krb5_rd_req_in_set_keytab(context, in, keytab);
705     if (ret) {
707 	return ret;
710     ret = krb5_rd_req_ctx(context, auth_context, inbuf, server, in, &out);
712     if (ret)
713 	return ret;
718 	ret = krb5_copy_ticket(context, out->ticket, ticket);
719 	if (ret)
725     return ret;
741     krb5_error_code ret;
745     ret = krb5_rd_req_in_ctx_alloc(context, &in);
746     if (ret)
747 	return ret;
749     ret = krb5_rd_req_in_set_keyblock(context, in, keyblock);
750     if (ret) {
752 	return ret;
755     ret = krb5_rd_req_ctx(context, auth_context, inbuf, server, in, &out);
757     if (ret)
758 	return ret;
763 	ret = krb5_copy_ticket(context, out->ticket, ticket);
764 	if (ret)
770     return ret;
785     krb5_error_code ret;
799     ret = krb5_kt_get_entry (context,
805     if(ret)
807     ret = krb5_copy_keyblock(context, &entry.keyblock, out_key);
813     return ret;
848     krb5_error_code ret;
864 	ret = krb5_auth_con_init(context, auth_context);
865 	if (ret)
869     ret = krb5_decode_ap_req(context, inbuf, &ap_req);
870     if(ret)
874     ret = _krb5_principalname2krb5_principal(context,
878     if (ret)
883 	ret = KRB5KRB_AP_ERR_NOKEY;
884 	krb5_set_error_message(context, ret,
894 	ret = krb5_copy_keyblock(context,
897 	if (ret)
900 	ret = krb5_copy_keyblock(context,
903 	if (ret)
915 	    ret = _krb5_principalname2krb5_principal(context,
919 	    if (ret)
924 	ret = get_key_from_keytab(context,
929 	if (ret) {
945 	ret = krb5_verify_ap_req2(context,
955 	if (ret)
972 	ret = krb5_kt_start_seq_get(context, id, &cursor);
973 	if (ret)
980 	    ret = krb5_kt_next_entry(context, id, &entry, &cursor);
981 	    if (ret) {
982 		_krb5_kt_principal_not_found(context, ret, id, o->server,
993 	    ret = krb5_verify_ap_req2(context,
1002 	    if (ret) {
1013 	    ret = krb5_copy_keyblock(context,
1016 	    if (ret) {
1021 	    ret = krb5_copy_principal(context, entry.principal, &p);
1022 	    if (ret) {
1041 	ret = krb5_ticket_get_authorization_data_type(context,
1045 	if (ret == 0) {
1046 	    ret = krb5_pac_parse(context, data.data, data.length, &pac);
1048 	    if (ret)
1051 	    ret = krb5_pac_verify(context,
1058 	    if (ret)
1061 	  ret = 0;
1065     if (ret || outctx == NULL) {
1078     return ret;

Indexes created Sun Jun 30 11:05:36 MDT 2024