heimdal/kuser/klist.c

29415Sjmg/*
50723Scg * Copyright (c) 1997-2004 Kungliga Tekniska H�gskolan
39899Sluigi * (Royal Institute of Technology, Stockholm, Sweden).
29415Sjmg * All rights reserved.
29415Sjmg *
29415Sjmg * Redistribution and use in source and binary forms, with or without
29415Sjmg * modification, are permitted provided that the following conditions
50723Scg * are met:
50723Scg *
29415Sjmg * 1. Redistributions of source code must retain the above copyright
29415Sjmg *    notice, this list of conditions and the following disclaimer.
30869Sjmg *
30869Sjmg * 2. Redistributions in binary form must reproduce the above copyright
30869Sjmg *    notice, this list of conditions and the following disclaimer in the
30869Sjmg *    documentation and/or other materials provided with the distribution.
50723Scg *
50723Scg * 3. Neither the name of the Institute nor the names of its contributors
30869Sjmg *    may be used to endorse or promote products derived from this software
50723Scg *    without specific prior written permission.
50723Scg *
50723Scg * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
50723Scg * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
50723Scg * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
50723Scg * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
50723Scg * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
50723Scg * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
50723Scg * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
50723Scg * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
50723Scg * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50723Scg * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50959Speter * SUCH DAMAGE.
29415Sjmg */
29415Sjmg
53465Scg#include "kuser_locl.h"
29415Sjmg#include "rtbl.h"
53465Scg
53553StanimuraRCSID("$Id: klist.c 20516 2007-04-22 10:40:41Z lha $");
29415Sjmg
67803Scgstatic char*
55706Scgprintable_time(time_t t)
55254Scg{
50723Scg    static char s[128];
67803Scg    strlcpy(s, ctime(&t)+ 4, sizeof(s));
67803Scg    s[15] = 0;
67803Scg    return s;
67803Scg}
67803Scg
67803Scgstatic char*
67803Scgprintable_time_long(time_t t)
67803Scg{
67803Scg    static char s[128];
29415Sjmg    strlcpy(s, ctime(&t)+ 4, sizeof(s));
67803Scg    s[20] = 0;
50723Scg    return s;
50723Scg}
64881Scg
50723Scg#define COL_ISSUED		"  Issued"
67803Scg#define COL_EXPIRES		"  Expires"
29415Sjmg#define COL_FLAGS		"Flags"
67803Scg#define COL_PRINCIPAL		"  Principal"
64881Scg#define COL_PRINCIPAL_KVNO	"  Principal (kvno)"
50723Scg#define COL_CACHENAME		"  Cache name"
64881Scg
50723Scgstatic void
67803Scgprint_cred(krb5_context context, krb5_creds *cred, rtbl_t ct, int do_flags)
29415Sjmg{
64881Scg    char *str;
64881Scg    krb5_error_code ret;
64881Scg    krb5_timestamp sec;
64881Scg
64881Scg    krb5_timeofday (context, &sec);
64881Scg
54462Scg
64881Scg    if(cred->times.starttime)
54462Scg	rtbl_add_column_entry(ct, COL_ISSUED,
50723Scg			      printable_time(cred->times.starttime));
67803Scg    else
67803Scg	rtbl_add_column_entry(ct, COL_ISSUED,
67803Scg			      printable_time(cred->times.authtime));
67803Scg
67803Scg    if(cred->times.endtime > sec)
67803Scg	rtbl_add_column_entry(ct, COL_EXPIRES,
67803Scg			      printable_time(cred->times.endtime));
67803Scg    else
65340Scg	rtbl_add_column_entry(ct, COL_EXPIRES, ">>>Expired<<<");
67803Scg    ret = krb5_unparse_name (context, cred->server, &str);
67803Scg    if (ret)
65340Scg	krb5_err(context, 1, ret, "krb5_unparse_name");
65340Scg    rtbl_add_column_entry(ct, COL_PRINCIPAL, str);
65340Scg    if(do_flags) {
65340Scg	char s[16], *sp = s;
65340Scg	if(cred->flags.b.forwardable)
50723Scg	    *sp++ = 'F';
29415Sjmg	if(cred->flags.b.forwarded)
50723Scg	    *sp++ = 'f';
29415Sjmg	if(cred->flags.b.proxiable)
50723Scg	    *sp++ = 'P';
50723Scg	if(cred->flags.b.proxy)
50723Scg	    *sp++ = 'p';
50723Scg	if(cred->flags.b.may_postdate)
67803Scg	    *sp++ = 'D';
67803Scg	if(cred->flags.b.postdated)
50723Scg	    *sp++ = 'd';
29415Sjmg	if(cred->flags.b.renewable)
50723Scg	    *sp++ = 'R';
50723Scg	if(cred->flags.b.initial)
50723Scg	    *sp++ = 'I';
54462Scg	if(cred->flags.b.invalid)
54462Scg	    *sp++ = 'i';
65644Scg	if(cred->flags.b.pre_authent)
55706Scg	    *sp++ = 'A';
29415Sjmg	if(cred->flags.b.hw_authent)
50723Scg	    *sp++ = 'H';
50723Scg	*sp++ = '\0';
67803Scg	rtbl_add_column_entry(ct, COL_FLAGS, s);
50723Scg    }
50723Scg    free(str);
50723Scg}
50723Scg
50723Scgstatic void
50723Scgprint_cred_verbose(krb5_context context, krb5_creds *cred)
50723Scg{
67803Scg    int j;
50723Scg    char *str;
50723Scg    krb5_error_code ret;
50723Scg    int first_flag;
50723Scg    krb5_timestamp sec;
54462Scg
29415Sjmg    krb5_timeofday (context, &sec);
50723Scg
50723Scg    ret = krb5_unparse_name(context, cred->server, &str);
67803Scg    if(ret)
67803Scg	exit(1);
67803Scg    printf("Server: %s\n", str);
50723Scg    free (str);
67803Scg
67803Scg    ret = krb5_unparse_name(context, cred->client, &str);
67803Scg    if(ret)
65340Scg	exit(1);
67652Scg    printf("Client: %s\n", str);
67803Scg    free (str);
67803Scg
50723Scg    {
50723Scg	Ticket t;
50723Scg	size_t len;
50723Scg	char *s;
29415Sjmg
50723Scg	decode_Ticket(cred->ticket.data, cred->ticket.length, &t, &len);
29415Sjmg	ret = krb5_enctype_to_string(context, t.enc_part.etype, &s);
50723Scg	printf("Ticket etype: ");
50723Scg	if (ret == 0) {
50723Scg	    printf("%s", s);
50723Scg	    free(s);
29415Sjmg	} else {
29415Sjmg	    printf("unknown(%d)", t.enc_part.etype);
29415Sjmg	}
50723Scg	if(t.enc_part.kvno)
29415Sjmg	    printf(", kvno %d", *t.enc_part.kvno);
67803Scg	printf("\n");
50723Scg	if(cred->session.keytype != t.enc_part.etype) {
29415Sjmg	    ret = krb5_enctype_to_string(context, cred->session.keytype, &str);
50723Scg	    if(ret)
50723Scg		krb5_warn(context, ret, "session keytype");
50723Scg	    else {
67803Scg		printf("Session key: %s\n", str);
29415Sjmg		free(str);
29415Sjmg	    }
29415Sjmg	}
50723Scg	free_Ticket(&t);
29415Sjmg	printf("Ticket length: %lu\n", (unsigned long)cred->ticket.length);
50723Scg    }
50723Scg    printf("Auth time:  %s\n", printable_time_long(cred->times.authtime));
29415Sjmg    if(cred->times.authtime != cred->times.starttime)
50723Scg	printf("Start time: %s\n", printable_time_long(cred->times.starttime));
50723Scg    printf("End time:   %s", printable_time_long(cred->times.endtime));
50723Scg    if(sec > cred->times.endtime)
50723Scg	printf(" (expired)");
29415Sjmg    printf("\n");
29415Sjmg    if(cred->flags.b.renewable)
50723Scg	printf("Renew till: %s\n",
50723Scg	       printable_time_long(cred->times.renew_till));
50723Scg    printf("Ticket flags: ");
50723Scg#define PRINT_FLAG2(f, s) if(cred->flags.b.f) { if(!first_flag) printf(", "); printf("%s", #s); first_flag = 0; }
50723Scg#define PRINT_FLAG(f) PRINT_FLAG2(f, f)
29415Sjmg    first_flag = 1;
29415Sjmg    PRINT_FLAG(forwardable);
50723Scg    PRINT_FLAG(forwarded);
29415Sjmg    PRINT_FLAG(proxiable);
50723Scg    PRINT_FLAG(proxy);
29415Sjmg    PRINT_FLAG2(may_postdate, may-postdate);
50723Scg    PRINT_FLAG(postdated);
50723Scg    PRINT_FLAG(invalid);
50723Scg    PRINT_FLAG(renewable);
50723Scg    PRINT_FLAG(initial);
50723Scg    PRINT_FLAG2(pre_authent, pre-authenticated);
50723Scg    PRINT_FLAG2(hw_authent, hw-authenticated);
50723Scg    PRINT_FLAG2(transited_policy_checked, transited-policy-checked);
50723Scg    PRINT_FLAG2(ok_as_delegate, ok-as-delegate);
50723Scg    PRINT_FLAG(anonymous);
50723Scg    printf("\n");
29415Sjmg    printf("Addresses: ");
50723Scg    if (cred->addresses.len != 0) {
50723Scg	for(j = 0; j < cred->addresses.len; j++){
50723Scg	    char buf[128];
50723Scg	    size_t len;
50723Scg	    if(j) printf(", ");
50723Scg	    ret = krb5_print_address(&cred->addresses.val[j],
50723Scg				     buf, sizeof(buf), &len);
50723Scg
29415Sjmg	    if(ret == 0)
67803Scg		printf("%s", buf);
50723Scg	}
50723Scg    } else {
50723Scg	printf("addressless");
50723Scg    }
50723Scg    printf("\n\n");
50723Scg}
50723Scg
50723Scg/*
50723Scg * Print all tickets in `ccache' on stdout, verbosily iff do_verbose.
50723Scg */
67803Scg
29415Sjmgstatic void
50723Scgprint_tickets (krb5_context context,
50723Scg	       krb5_ccache ccache,
50723Scg	       krb5_principal principal,
50723Scg	       int do_verbose,
50723Scg	       int do_flags,
50723Scg	       int do_hidden)
50723Scg{
50723Scg    krb5_error_code ret;
50723Scg    char *str;
50723Scg    krb5_cc_cursor cursor;
50723Scg    krb5_creds creds;
29415Sjmg    int32_t sec, usec;
50723Scg
50723Scg    rtbl_t ct = NULL;
50723Scg
50723Scg    ret = krb5_unparse_name (context, principal, &str);
50723Scg    if (ret)
50723Scg	krb5_err (context, 1, ret, "krb5_unparse_name");
50723Scg
50723Scg    printf ("%17s: %s:%s\n",
29415Sjmg	    "Credentials cache",
50723Scg	    krb5_cc_get_type(context, ccache),
50723Scg	    krb5_cc_get_name(context, ccache));
50723Scg    printf ("%17s: %s\n", "Principal", str);
50723Scg    free (str);
50723Scg
50723Scg    if(do_verbose)
50723Scg	printf ("%17s: %d\n", "Cache version",
31361Sjmg		krb5_cc_get_version(context, ccache));
50723Scg
50723Scg    krb5_get_kdc_sec_offset(context, &sec, &usec);
50723Scg
50723Scg    if (do_verbose && sec != 0) {
50723Scg	char buf[BUFSIZ];
29415Sjmg	int val;
50723Scg	int sig;
50723Scg
50723Scg	val = sec;
50723Scg	sig = 1;
50723Scg	if (val < 0) {
50723Scg	    sig = -1;
29415Sjmg	    val = -val;
50723Scg	}
50723Scg
29415Sjmg	unparse_time (val, buf, sizeof(buf));
50723Scg
50723Scg	printf ("%17s: %s%s\n", "KDC time offset",
50723Scg		sig == -1 ? "-" : "", buf);
50723Scg    }
29415Sjmg
50723Scg    printf("\n");
50723Scg
50723Scg    ret = krb5_cc_start_seq_get (context, ccache, &cursor);
50723Scg    if (ret)
50723Scg	krb5_err(context, 1, ret, "krb5_cc_start_seq_get");
50723Scg
50723Scg    if(!do_verbose) {
50723Scg	ct = rtbl_create();
29415Sjmg	rtbl_add_column(ct, COL_ISSUED, 0);
50723Scg	rtbl_add_column(ct, COL_EXPIRES, 0);
50723Scg	if(do_flags)
29415Sjmg	    rtbl_add_column(ct, COL_FLAGS, 0);
50723Scg	rtbl_add_column(ct, COL_PRINCIPAL, 0);
50723Scg	rtbl_set_separator(ct, "  ");
50723Scg    }
50723Scg    while ((ret = krb5_cc_next_cred (context,
50723Scg				     ccache,
50723Scg				     &cursor,
50723Scg				     &creds)) == 0) {
50723Scg	const char *str;
50723Scg	str = krb5_principal_get_comp_string(context, creds.server, 0);
29415Sjmg	if (!do_hidden && str && str[0] == '@') {
29415Sjmg	    ;
67803Scg	}else if(do_verbose){
67803Scg	    print_cred_verbose(context, &creds);
67803Scg	}else{
67803Scg	    print_cred(context, &creds, ct, do_flags);
67803Scg	}
67803Scg	krb5_free_cred_contents (context, &creds);
67803Scg    }
67803Scg    if(ret != KRB5_CC_END)
67803Scg	krb5_err(context, 1, ret, "krb5_cc_get_next");
67803Scg    ret = krb5_cc_end_seq_get (context, ccache, &cursor);
67803Scg    if (ret)
67803Scg	krb5_err (context, 1, ret, "krb5_cc_end_seq_get");
67803Scg    if(!do_verbose) {
67803Scg	rtbl_format(ct, stdout);
67803Scg	rtbl_destroy(ct);
67803Scg    }
67803Scg}
67803Scg
67803Scg/*
67803Scg * Check if there's a tgt for the realm of `principal' and ccache and
67803Scg * if so return 0, else 1
67803Scg */
67803Scg
67803Scgstatic int
67803Scgcheck_for_tgt (krb5_context context,
67803Scg	       krb5_ccache ccache,
67803Scg	       krb5_principal principal,
67803Scg	       time_t *expiration)
67803Scg{
67803Scg    krb5_error_code ret;
67803Scg    krb5_creds pattern;
67803Scg    krb5_creds creds;
67803Scg    krb5_realm *client_realm;
67803Scg    int expired;
67803Scg
67803Scg    krb5_cc_clear_mcred(&pattern);
67803Scg
67803Scg    client_realm = krb5_princ_realm (context, principal);
67803Scg
67803Scg    ret = krb5_make_principal (context, &pattern.server,
67803Scg			       *client_realm, KRB5_TGS_NAME, *client_realm,
67803Scg			       NULL);
67803Scg    if (ret)
67803Scg	krb5_err (context, 1, ret, "krb5_make_principal");
67803Scg    pattern.client = principal;
67803Scg
67803Scg    ret = krb5_cc_retrieve_cred (context, ccache, 0, &pattern, &creds);
67803Scg    krb5_free_principal (context, pattern.server);
67803Scg    if (ret) {
67803Scg	if (ret == KRB5_CC_END)
67803Scg	    return 1;
67803Scg	krb5_err (context, 1, ret, "krb5_cc_retrieve_cred");
67803Scg    }
67803Scg
67803Scg    expired = time(NULL) > creds.times.endtime;
67803Scg
67803Scg    if (expiration)
67803Scg	*expiration = creds.times.endtime;
67803Scg
68376Scg    krb5_free_cred_contents (context, &creds);
67803Scg
67803Scg    return expired;
67803Scg}
67803Scg
67803Scg/*
67803Scg * Print a list of all AFS tokens
67803Scg */
67803Scg
67803Scgstatic void
67803Scgdisplay_tokens(int do_verbose)
67803Scg{
67803Scg    uint32_t i;
67803Scg    unsigned char t[4096];
67803Scg    struct ViceIoctl parms;
67803Scg
67803Scg    parms.in = (void *)&i;
67803Scg    parms.in_size = sizeof(i);
67803Scg    parms.out = (void *)t;
67803Scg    parms.out_size = sizeof(t);
67803Scg
67803Scg    for (i = 0;; i++) {
67803Scg        int32_t size_secret_tok, size_public_tok;
67803Scg        unsigned char *cell;
67803Scg	struct ClearToken ct;
67803Scg	unsigned char *r = t;
67803Scg	struct timeval tv;
67803Scg	char buf1[20], buf2[20];
67803Scg
67803Scg	if(k_pioctl(NULL, VIOCGETTOK, &parms, 0) < 0) {
67803Scg	    if(errno == EDOM)
67803Scg		break;
67803Scg	    continue;
67803Scg	}
67803Scg	if(parms.out_size > sizeof(t))
67803Scg	    continue;
67803Scg	if(parms.out_size < sizeof(size_secret_tok))
67803Scg	    continue;
67803Scg	t[min(parms.out_size,sizeof(t)-1)] = 0;
67803Scg	memcpy(&size_secret_tok, r, sizeof(size_secret_tok));
67803Scg	/* dont bother about the secret token */
67803Scg	r += size_secret_tok + sizeof(size_secret_tok);
67803Scg	if (parms.out_size < (r - t) + sizeof(size_public_tok))
67803Scg	    continue;
67803Scg	memcpy(&size_public_tok, r, sizeof(size_public_tok));
67803Scg	r += sizeof(size_public_tok);
67803Scg	if (parms.out_size < (r - t) + size_public_tok + sizeof(int32_t))
29415Sjmg	    continue;
67803Scg	memcpy(&ct, r, size_public_tok);
29415Sjmg	r += size_public_tok;
50723Scg	/* there is a int32_t with length of cellname, but we dont read it */
65644Scg	r += sizeof(int32_t);
65644Scg	cell = r;
65644Scg
50723Scg	gettimeofday (&tv, NULL);
50723Scg	strlcpy (buf1, printable_time(ct.BeginTimestamp),
50723Scg		 sizeof(buf1));
54462Scg	if (do_verbose || tv.tv_sec < ct.EndTimestamp)
50723Scg	    strlcpy (buf2, printable_time(ct.EndTimestamp),
50723Scg		     sizeof(buf2));
50723Scg	else
54462Scg	    strlcpy (buf2, ">>> Expired <<<", sizeof(buf2));
50723Scg
50723Scg	printf("%s  %s  ", buf1, buf2);
50723Scg
54462Scg	if ((ct.EndTimestamp - ct.BeginTimestamp) & 1)
50723Scg	    printf("User's (AFS ID %d) tokens for %s", ct.ViceId, cell);
50723Scg	else
65644Scg	    printf("Tokens for %s", cell);
65644Scg	if (do_verbose)
65644Scg	    printf(" (%d)", ct.AuthHandle);
65644Scg	putchar('\n');
65644Scg    }
50723Scg}
29415Sjmg
50723Scg/*
67803Scg * display the ccache in `cred_cache'
50723Scg */
54462Scg
54462Scgstatic int
54462Scgdisplay_v5_ccache (const char *cred_cache, int do_test, int do_verbose,
50723Scg		   int do_flags, int do_hidden)
67803Scg{
67803Scg    krb5_error_code ret;
54462Scg    krb5_context context;
50723Scg    krb5_ccache ccache;
67803Scg    krb5_principal principal;
67803Scg    int exit_status = 0;
54462Scg
50723Scg    ret = krb5_init_context (&context);
67803Scg    if (ret)
67803Scg	errx (1, "krb5_init_context failed: %d", ret);
54462Scg
58756Scg    if(cred_cache) {
67803Scg	ret = krb5_cc_resolve(context, cred_cache, &ccache);
29415Sjmg	if (ret)
50723Scg	    krb5_err (context, 1, ret, "%s", cred_cache);
67803Scg    } else {
55424Scg	ret = krb5_cc_default (context, &ccache);
54462Scg	if (ret)
55424Scg	    krb5_err (context, 1, ret, "krb5_cc_resolve");
29415Sjmg    }
50723Scg
54462Scg    ret = krb5_cc_get_principal (context, ccache, &principal);
55424Scg    if (ret) {
54462Scg	if(ret == ENOENT) {
50723Scg	    if (!do_test)
50723Scg		krb5_warnx(context, "No ticket file: %s",
29415Sjmg			   krb5_cc_get_name(context, ccache));
29415Sjmg	    return 1;
54462Scg	} else
67803Scg	    krb5_err (context, 1, ret, "krb5_cc_get_principal");
29415Sjmg    }
67803Scg    if (do_test)
67803Scg	exit_status = check_for_tgt (context, ccache, principal, NULL);
29415Sjmg    else
67803Scg	print_tickets (context, ccache, principal, do_verbose,
67803Scg		       do_flags, do_hidden);
67803Scg
67803Scg    ret = krb5_cc_close (context, ccache);
29415Sjmg    if (ret)
67803Scg	krb5_err (context, 1, ret, "krb5_cc_close");
67803Scg
41653Sbrian    krb5_free_principal (context, principal);
67803Scg    krb5_free_context (context);
67803Scg    return exit_status;
67803Scg}
67803Scg
29415Sjmg/*
67803Scg *
67803Scg */
67803Scg
67803Scgstatic int
67803Scglist_caches(void)
67803Scg{
29415Sjmg    krb5_cc_cache_cursor cursor;
67803Scg    krb5_context context;
67803Scg    krb5_error_code ret;
67803Scg    krb5_ccache id;
67803Scg    rtbl_t ct;
67803Scg
50723Scg    ret = krb5_init_context (&context);
50723Scg    if (ret)
50723Scg	errx (1, "krb5_init_context failed: %d", ret);
50723Scg
67803Scg    ret = krb5_cc_cache_get_first (context, NULL, &cursor);
50723Scg    if (ret == KRB5_CC_NOSUPP)
67803Scg	return 0;
67803Scg    else if (ret)
50723Scg	krb5_err (context, 1, ret, "krb5_cc_cache_get_first");
67803Scg
55706Scg    ct = rtbl_create();
55706Scg    rtbl_add_column(ct, COL_PRINCIPAL, 0);
67803Scg    rtbl_add_column(ct, COL_CACHENAME, 0);
55706Scg    rtbl_add_column(ct, COL_EXPIRES, 0);
55706Scg    rtbl_set_prefix(ct, "   ");
50723Scg    rtbl_set_column_prefix(ct, COL_PRINCIPAL, "");
31361Sjmg
50723Scg    while ((ret = krb5_cc_cache_next (context, cursor, &id)) == 0) {
67803Scg	krb5_principal principal;
50723Scg	char *name;
67803Scg
67803Scg	ret = krb5_cc_get_principal(context, id, &principal);
67803Scg	if (ret == 0) {
29415Sjmg	    time_t t;
67803Scg	    int expired = check_for_tgt (context, id, principal, &t);
67803Scg
67803Scg	    ret = krb5_unparse_name(context, principal, &name);
67803Scg	    if (ret == 0) {
67803Scg		rtbl_add_column_entry(ct, COL_PRINCIPAL, name);
29415Sjmg		rtbl_add_column_entry(ct, COL_CACHENAME,
67803Scg				      krb5_cc_get_name(context, id));
29415Sjmg		rtbl_add_column_entry(ct, COL_EXPIRES,
67803Scg				      expired ? ">>> Expired <<<" :
67803Scg				      printable_time(t));
67803Scg		free(name);
67803Scg		krb5_free_principal(context, principal);
67803Scg	    }
67803Scg	}
67803Scg	krb5_cc_close(context, id);
67803Scg    }
67803Scg
67803Scg    krb5_cc_cache_end_seq_get(context, cursor);
67803Scg
67803Scg    rtbl_format(ct, stdout);
67803Scg    rtbl_destroy(ct);
67803Scg
67803Scg    return 0;
67803Scg}
50723Scg
67803Scg/*
29415Sjmg *
67803Scg */
67803Scg
29415Sjmgstatic int version_flag		= 0;
67803Scgstatic int help_flag		= 0;
67803Scgstatic int do_verbose		= 0;
29415Sjmgstatic int do_list_caches	= 0;
67803Scgstatic int do_test		= 0;
67803Scgstatic int do_tokens		= 0;
67803Scgstatic int do_v5		= 1;
67803Scgstatic char *cred_cache;
55706Scgstatic int do_flags	 	= 0;
67803Scgstatic int do_hidden	 	= 0;
67803Scg
67803Scgstatic struct getargs args[] = {
67803Scg    { NULL, 'f', arg_flag, &do_flags },
67803Scg    { "cache",			'c', arg_string, &cred_cache,
67803Scg      "credentials cache to list", "cache" },
55706Scg    { "test",			't', arg_flag, &do_test,
67803Scg      "test for having tickets", NULL },
67803Scg    { NULL,			's', arg_flag, &do_test },
67803Scg    { "tokens",			'T',   arg_flag, &do_tokens,
67803Scg      "display AFS tokens", NULL },
67803Scg    { "v5",			'5',	arg_flag, &do_v5,
67803Scg      "display v5 cred cache", NULL},
67803Scg    { "list-caches",		'l', arg_flag, &do_list_caches,
67803Scg      "verbose output", NULL },
67803Scg    { "verbose",		'v', arg_flag, &do_verbose,
67803Scg      "verbose output", NULL },
67803Scg    { "hidden",			0,   arg_flag, &do_hidden,
67803Scg      "display hidden credentials", NULL },
67803Scg    { NULL,			'a', arg_flag, &do_verbose },
67803Scg    { NULL,			'n', arg_flag, &do_verbose },
67803Scg    { "version", 		0,   arg_flag, &version_flag,
67803Scg      "print version", NULL },
50723Scg    { "help",			0,   arg_flag, &help_flag,
50723Scg      NULL, NULL}
67803Scg};
67803Scg
67803Scgstatic void
67803Scgusage (int ret)
67803Scg{
67803Scg    arg_printusage (args,
29415Sjmg		    sizeof(args)/sizeof(*args),
67803Scg		    NULL,
67803Scg		    "");
67803Scg    exit (ret);
67803Scg}
67803Scg
67803Scgint
67803Scgmain (int argc, char **argv)
67803Scg{
67803Scg    int optidx = 0;
67803Scg    int exit_status = 0;
67803Scg
67803Scg    setprogname (argv[0]);
67803Scg
67803Scg    if(getarg(args, sizeof(args) / sizeof(args[0]), argc, argv, &optidx))
67803Scg	usage(1);
67803Scg
29415Sjmg    if (help_flag)
67803Scg	usage (0);
67803Scg
50723Scg    if(version_flag){
29415Sjmg	print_version(NULL);
55706Scg	exit(0);
55706Scg    }
67803Scg
55706Scg    argc -= optidx;
55706Scg    argv += optidx;
55706Scg
55706Scg    if (argc != 0)
55706Scg	usage (1);
55706Scg
55706Scg    if (do_list_caches) {
67803Scg	exit_status = list_caches();
67803Scg	return exit_status;
67803Scg    }
55706Scg
55706Scg    if (do_v5)
67803Scg	exit_status = display_v5_ccache (cred_cache, do_test,
55706Scg					 do_verbose, do_flags, do_hidden);
55706Scg
55706Scg    if (!do_test) {
55706Scg	if (do_tokens && k_hasafs ()) {
67803Scg	    if (do_v5)
55706Scg		printf ("\n");
55706Scg	    display_tokens (do_verbose);
67803Scg	}
55706Scg    }
67803Scg
67803Scg    return exit_status;
67803Scg}
67803Scg