/crypto/heimdal/kuser/kverify.c

https://bitbucket.org/freebsd/freebsd-head/ · C · 130 lines · 80 code · 18 blank · 32 comment · 11 complexity · 2accd935c24e0eca736c739cf74ef408 MD5 · raw file

  1. /*
  2. * Copyright (c) 1997 - 2005, 2007 Kungliga Tekniska Hรถgskolan
  3. * (Royal Institute of Technology, Stockholm, Sweden).
  4. * All rights reserved.
  5. *
  6. * Redistribution and use in source and binary forms, with or without
  7. * modification, are permitted provided that the following conditions
  8. * are met:
  9. *
  10. * 1. Redistributions of source code must retain the above copyright
  11. * notice, this list of conditions and the following disclaimer.
  12. *
  13. * 2. Redistributions in binary form must reproduce the above copyright
  14. * notice, this list of conditions and the following disclaimer in the
  15. * documentation and/or other materials provided with the distribution.
  16. *
  17. * 3. Neither the name of the Institute nor the names of its contributors
  18. * may be used to endorse or promote products derived from this software
  19. * without specific prior written permission.
  20. *
  21. * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
  22. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  23. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  24. * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
  25. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  26. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  27. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  28. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  29. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  30. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  31. * SUCH DAMAGE.
  32. */
  33. #include "kuser_locl.h"
  34. static int help_flag = 0;
  35. static int version_flag = 0;
  36. static struct getargs args[] = {
  37. { "version", 0, arg_flag, &version_flag },
  38. { "help", 0, arg_flag, &help_flag }
  39. };
  40. static void
  41. usage (int ret)
  42. {
  43. arg_printusage (args,
  44. sizeof(args)/sizeof(*args),
  45. NULL,
  46. "[principal]");
  47. exit (ret);
  48. }
  49. int
  50. main(int argc, char **argv)
  51. {
  52. krb5_context context;
  53. krb5_error_code ret;
  54. krb5_creds cred;
  55. krb5_preauthtype pre_auth_types[] = {KRB5_PADATA_ENC_TIMESTAMP};
  56. krb5_get_init_creds_opt *get_options;
  57. krb5_verify_init_creds_opt verify_options;
  58. krb5_principal principal = NULL;
  59. int optidx = 0;
  60. setprogname (argv[0]);
  61. if(getarg(args, sizeof(args) / sizeof(args[0]), argc, argv, &optidx))
  62. usage(1);
  63. if (help_flag)
  64. usage (0);
  65. if(version_flag) {
  66. print_version(NULL);
  67. exit(0);
  68. }
  69. argc -= optidx;
  70. argv += optidx;
  71. ret = krb5_init_context(&context);
  72. if (ret)
  73. errx (1, "krb5_init_context failed: %d", ret);
  74. ret = krb5_get_init_creds_opt_alloc (context, &get_options);
  75. if (ret)
  76. krb5_err(context, 1, ret, "krb5_get_init_creds_opt_alloc");
  77. krb5_get_init_creds_opt_set_preauth_list (get_options,
  78. pre_auth_types,
  79. 1);
  80. krb5_verify_init_creds_opt_init (&verify_options);
  81. if (argc) {
  82. ret = krb5_parse_name(context, argv[0], &principal);
  83. if (ret)
  84. krb5_err(context, 1, ret, "krb5_parse_name: %s", argv[0]);
  85. } else {
  86. ret = krb5_get_default_principal(context, &principal);
  87. if (ret)
  88. krb5_err(context, 1, ret, "krb5_get_default_principal");
  89. }
  90. ret = krb5_get_init_creds_password (context,
  91. &cred,
  92. principal,
  93. NULL,
  94. krb5_prompter_posix,
  95. NULL,
  96. 0,
  97. NULL,
  98. get_options);
  99. if (ret)
  100. krb5_err(context, 1, ret, "krb5_get_init_creds");
  101. ret = krb5_verify_init_creds (context,
  102. &cred,
  103. NULL,
  104. NULL,
  105. NULL,
  106. &verify_options);
  107. if (ret)
  108. krb5_err(context, 1, ret, "krb5_verify_init_creds");
  109. krb5_free_cred_contents (context, &cred);
  110. krb5_free_context (context);
  111. return 0;
  112. }