1/*
2 * Copyright (c) 1997 - 2004 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 *    notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 *    notice, this list of conditions and the following disclaimer in the
15 *    documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 *    may be used to endorse or promote products derived from this software
19 *    without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34#include "krb5_locl.h"
35
36KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
37krb5_mk_req_exact(krb5_context context,
38		  krb5_auth_context *auth_context,
39		  const krb5_flags ap_req_options,
40		  const krb5_principal server,
41		  krb5_data *in_data,
42		  krb5_ccache ccache,
43		  krb5_data *outbuf)
44{
45    krb5_error_code ret;
46    krb5_creds this_cred, *cred;
47
48    memset(&this_cred, 0, sizeof(this_cred));
49
50    ret = krb5_cc_get_principal(context, ccache, &this_cred.client);
51
52    if(ret)
53	return ret;
54
55    ret = krb5_copy_principal (context, server, &this_cred.server);
56    if (ret) {
57	krb5_free_cred_contents (context, &this_cred);
58	return ret;
59    }
60
61    this_cred.times.endtime = 0;
62    if (auth_context && *auth_context && (*auth_context)->keytype)
63	this_cred.session.keytype = (*auth_context)->keytype;
64
65    ret = krb5_get_credentials (context, 0, ccache, &this_cred, &cred);
66    krb5_free_cred_contents(context, &this_cred);
67    if (ret)
68	return ret;
69
70    ret = krb5_mk_req_extended (context,
71				auth_context,
72				ap_req_options,
73				in_data,
74				cred,
75				outbuf);
76    krb5_free_creds(context, cred);
77    return ret;
78}
79
80KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
81krb5_mk_req(krb5_context context,
82	    krb5_auth_context *auth_context,
83	    const krb5_flags ap_req_options,
84	    const char *service,
85	    const char *hostname,
86	    krb5_data *in_data,
87	    krb5_ccache ccache,
88	    krb5_data *outbuf)
89{
90    krb5_error_code ret;
91    char **realms;
92    char *real_hostname;
93    krb5_principal server;
94
95    ret = krb5_expand_hostname_realms (context, hostname,
96				       &real_hostname, &realms);
97    if (ret)
98	return ret;
99
100    ret = krb5_make_principal(context, &server,
101			      *realms,
102			      service,
103			      real_hostname,
104			      NULL);
105    free (real_hostname);
106    krb5_free_host_realm (context, realms);
107    if (ret)
108	return ret;
109    ret = krb5_mk_req_exact (context, auth_context, ap_req_options,
110			     server, in_data, ccache, outbuf);
111    krb5_free_principal (context, server);
112    return ret;
113}
114