50 make_pa_tgs_req(krb5_context context,  in make_pa_tgs_req()  argument
66 	krb5_abortx(context, "internal error in ASN.1 encoder");  in make_pa_tgs_req()
70     ret = _krb5_mk_req_internal(context, &ac, 0, &in_data, creds,  in make_pa_tgs_req()
87 set_auth_data (krb5_context context,  in set_auth_data()  argument
103 	    krb5_abortx(context, "internal error in ASN.1 encoder");  in set_auth_data()
108 	    krb5_set_error_message(context, ENOMEM,  in set_auth_data()
112 	ret = krb5_crypto_init(context, subkey, 0, &crypto);  in set_auth_data()
119 	krb5_encrypt_EncryptedData(context,  in set_auth_data()
127 	krb5_crypto_destroy(context, crypto);  in set_auth_data()
141 init_tgs_req (krb5_context context,  in init_tgs_req()  argument
163 	    krb5_set_error_message(context, ret,  in init_tgs_req()
169 	ret = _krb5_init_etype(context,  in init_tgs_req()
185 	krb5_set_error_message(context, ret, N_("malloc: out of memory", ""));  in init_tgs_req()
201 	krb5_set_error_message(context, ret, N_("malloc: out of memory", ""));  in init_tgs_req()
211 	    krb5_set_error_message(context, ret,  in init_tgs_req()
218 	    krb5_set_error_message(context, ret,  in init_tgs_req()
229 	krb5_set_error_message(context, ret, N_("malloc: out of memory", ""));  in init_tgs_req()
235 	krb5_set_error_message(context, ret, N_("malloc: out of memory", ""));  in init_tgs_req()
243 		krb5_set_error_message(context, ret,  in init_tgs_req()
250     ret = krb5_auth_con_init(context, &ac);  in init_tgs_req()
254     ret = krb5_auth_con_generatelocalsubkey(context, ac, &krbtgt->session);  in init_tgs_req()
258     ret = set_auth_data (context, &t->req_body, &in_creds->authdata,  in init_tgs_req()
263     ret = make_pa_tgs_req(context,  in init_tgs_req()
271     ret = krb5_auth_con_getlocalsubkey(context, ac, subkey);  in init_tgs_req()
277 	krb5_auth_con_free(context, ac);  in init_tgs_req()
286 _krb5_get_krbtgt(krb5_context context,  in _krb5_get_krbtgt()  argument
296     ret = krb5_cc_get_principal(context, id, &tmp_cred.client);  in _krb5_get_krbtgt()
300     ret = krb5_make_principal(context,  in _krb5_get_krbtgt()
307 	krb5_free_principal(context, tmp_cred.client);  in _krb5_get_krbtgt()
310     ret = krb5_get_credentials(context,  in _krb5_get_krbtgt()
315     krb5_free_principal(context, tmp_cred.client);  in _krb5_get_krbtgt()
316     krb5_free_principal(context, tmp_cred.server);  in _krb5_get_krbtgt()
324 decrypt_tkt_with_subkey (krb5_context context,  in decrypt_tkt_with_subkey()  argument
344 	ret = krb5_crypto_init(context, subkey, 0, &crypto);  in decrypt_tkt_with_subkey()
347 	ret = krb5_decrypt_EncryptedData (context,  in decrypt_tkt_with_subkey()
357 	    ret = krb5_decrypt_EncryptedData(context,  in decrypt_tkt_with_subkey()
363 	krb5_crypto_destroy(context, crypto);  in decrypt_tkt_with_subkey()
366 	ret = krb5_crypto_init(context, key, 0, &crypto);  in decrypt_tkt_with_subkey()
369 	ret = krb5_decrypt_EncryptedData (context,  in decrypt_tkt_with_subkey()
374 	krb5_crypto_destroy(context, crypto);  in decrypt_tkt_with_subkey()
389       krb5_set_error_message(context, ret,  in decrypt_tkt_with_subkey()
396 get_cred_kdc(krb5_context context,  in get_cred_kdc()  argument
447 	ret = _krb5_s4u2self_to_checksumdata(context, &self, &data);  in get_cred_kdc()
453 	ret = krb5_crypto_init(context, &krbtgt->session, 0, &crypto);  in get_cred_kdc()
460 	ret = krb5_create_checksum(context,  in get_cred_kdc()
467 	krb5_crypto_destroy(context, crypto);  in get_cred_kdc()
480 	    krb5_abortx(context, "internal asn1 error");  in get_cred_kdc()
482 	ret = krb5_padata_add(context, &padata, KRB5_PADATA_FOR_USER, buf, len);  in get_cred_kdc()
487     ret = init_tgs_req (context,  in get_cred_kdc()
505 	krb5_abortx(context, "internal error in ASN.1 encoder");  in get_cred_kdc()
516 	ret = krb5_sendto_ctx_alloc(context, &stctx);  in get_cred_kdc()
521 	ret = krb5_sendto_context (context, stctx, &enc,  in get_cred_kdc()
524 	krb5_sendto_ctx_free(context, stctx);  in get_cred_kdc()
533 	ret = krb5_copy_principal(context,  in get_cred_kdc()
538 	ret = krb5_copy_principal(context,  in get_cred_kdc()
550 	ret = _krb5_extract_ticket(context,  in get_cred_kdc()
562 	krb5_free_kdc_rep(context, &rep);  in get_cred_kdc()
563     } else if(krb5_rd_error(context, &resp, &error) == 0) {  in get_cred_kdc()
564 	ret = krb5_error_from_rd_error(context, &error, in_creds);  in get_cred_kdc()
565 	krb5_free_error_contents(context, &error);  in get_cred_kdc()
568 	krb5_clear_error_message(context);  in get_cred_kdc()
571 	krb5_clear_error_message(context);  in get_cred_kdc()
581 	krb5_free_keyblock(context, subkey);  in get_cred_kdc()
592 get_cred_kdc_address(krb5_context context,  in get_cred_kdc_address()  argument
613 	krb5_appdefault_boolean(context, NULL, krbtgt->server->realm,  in get_cred_kdc_address()
617 	    krb5_get_all_client_addrs(context, &addresses);  in get_cred_kdc_address()
624     ret = get_cred_kdc(context, id, flags, addrs, in_creds,  in get_cred_kdc_address()
627     krb5_free_addresses(context, &addresses);  in get_cred_kdc_address()
632 krb5_get_kdc_cred(krb5_context context,  in krb5_get_kdc_cred()  argument
646 	krb5_set_error_message(context, ENOMEM,  in krb5_get_kdc_cred()
650     ret = _krb5_get_krbtgt (context,  in krb5_get_kdc_cred()
659     ret = get_cred_kdc(context, id, flags, addresses,  in krb5_get_kdc_cred()
661     krb5_free_creds (context, krbtgt);  in krb5_get_kdc_cred()
670 not_found(krb5_context context, krb5_const_principal p, krb5_error_code code)  in not_found()  argument
675     ret = krb5_unparse_name(context, p, &str);  in not_found()
677 	krb5_clear_error_message(context);  in not_found()
680     krb5_set_error_message(context, code,  in not_found()
687 find_cred(krb5_context context,  in find_cred()  argument
698     ret = krb5_cc_retrieve_cred(context, id, KRB5_TC_DONT_MATCH_REALM,  in find_cred()
703 	if(krb5_compare_creds(context, KRB5_TC_DONT_MATCH_REALM,  in find_cred()
705 	    ret = krb5_copy_creds_contents(context, *tgts, out_creds);  in find_cred()
710     return not_found(context, server, KRB5_CC_NOTFOUND);  in find_cred()
714 add_cred(krb5_context context, krb5_creds const *tkt, krb5_creds ***tgts)  in add_cred()  argument
723 	krb5_set_error_message(context, ENOMEM,  in add_cred()
728     ret = krb5_copy_creds(context, tkt, &tmp[i]);  in add_cred()
734 get_cred_kdc_capath_worker(krb5_context context,  in get_cred_kdc_capath_worker()  argument
751     client_realm = krb5_principal_get_realm(context, in_creds->client);  in get_cred_kdc_capath_worker()
752     server_realm = krb5_principal_get_realm(context, in_creds->server);  in get_cred_kdc_capath_worker()
754     ret = krb5_copy_principal(context, in_creds->client, &tmp_creds.client);  in get_cred_kdc_capath_worker()
758     ret = krb5_make_principal(context,  in get_cred_kdc_capath_worker()
765 	krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
771 	ret = find_cred(context, ccache, tmp_creds.server,  in get_cred_kdc_capath_worker()
781 		krb5_set_error_message(context, ret,  in get_cred_kdc_capath_worker()
784 		ret = get_cred_kdc_address(context, ccache, flags, NULL,  in get_cred_kdc_capath_worker()
795 	    krb5_free_cred_contents(context, &tgts);  in get_cred_kdc_capath_worker()
796 	    krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
797 	    krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
801     if(krb5_realm_compare(context, in_creds->client, in_creds->server))  in get_cred_kdc_capath_worker()
802 	return not_found(context, in_creds->server, KRB5_CC_NOTFOUND);  in get_cred_kdc_capath_worker()
808 	ret = get_cred_kdc_capath(context, flags, ccache, &tmp_creds,  in get_cred_kdc_capath_worker()
811 	    krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
812 	    krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
824 	ret = add_cred(context, tgt, ret_tgts);  in get_cred_kdc_capath_worker()
826 	    krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
827 	    krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
833 	krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
835 	ret = krb5_make_principal(context, &tmp_creds.server,  in get_cred_kdc_capath_worker()
838 	    krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
839 	    krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
842 	ret = krb5_free_creds(context, tgt);  in get_cred_kdc_capath_worker()
844 	    krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
845 	    krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
850     krb5_free_principal(context, tmp_creds.server);  in get_cred_kdc_capath_worker()
851     krb5_free_principal(context, tmp_creds.client);  in get_cred_kdc_capath_worker()
855 	krb5_set_error_message(context, ret, N_("malloc: out of memory", ""));  in get_cred_kdc_capath_worker()
857 	ret = get_cred_kdc_address (context, ccache, flags, NULL,  in get_cred_kdc_capath_worker()
865     krb5_free_creds(context, tgt);  in get_cred_kdc_capath_worker()
885 get_cred_kdc_capath(krb5_context context,  in get_cred_kdc_capath()  argument
897     client_realm = krb5_principal_get_realm(context, in_creds->client);  in get_cred_kdc_capath()
898     server_realm = krb5_principal_get_realm(context, in_creds->server);  in get_cred_kdc_capath()
901     ret = get_cred_kdc_capath_worker(context, flags, ccache, in_creds, try_realm,  in get_cred_kdc_capath()
906         try_realm = krb5_config_get_string(context, NULL, "capaths",  in get_cred_kdc_capath()
910             ret = get_cred_kdc_capath_worker(context, flags, ccache, in_creds,  in get_cred_kdc_capath()
920 get_cred_kdc_referral(krb5_context context,  in get_cred_kdc_referral()  argument
936 	krb5_set_error_message(context, KRB5KDC_ERR_PATH_NOT_ACCEPTED,  in get_cred_kdc_referral()
948     client_realm = krb5_principal_get_realm(context, in_creds->client);  in get_cred_kdc_referral()
954 	ret = krb5_make_principal(context, &tgtname,  in get_cred_kdc_referral()
962 	ret = find_cred(context, ccache, tgtname, *ret_tgts, &tgt);  in get_cred_kdc_referral()
963 	krb5_free_principal(context, tgtname);  in get_cred_kdc_referral()
969     ret = krb5_copy_principal(context, in_creds->server, &referral.server);  in get_cred_kdc_referral()
971 	krb5_free_cred_contents(context, &tgt);  in get_cred_kdc_referral()
974     ret = krb5_principal_set_realm(context, referral.server, client_realm);  in get_cred_kdc_referral()
976 	krb5_free_cred_contents(context, &tgt);  in get_cred_kdc_referral()
977 	krb5_free_principal(context, referral.server);  in get_cred_kdc_referral()
990 	    ret = krb5_cc_retrieve_cred(context, ccache, 0, &mcreds, &ticket);  in get_cred_kdc_referral()
995 	    ret = get_cred_kdc_address(context, ccache, flags, NULL,  in get_cred_kdc_referral()
1003 	if (krb5_principal_compare_any_realm(context,  in get_cred_kdc_referral()
1008 	if (!krb5_principal_is_krbtgt(context, ticket.server)) {  in get_cred_kdc_referral()
1009 	    krb5_set_error_message(context, KRB5KRB_AP_ERR_NOT_US,  in get_cred_kdc_referral()
1025 	    if(krb5_compare_creds(context,  in get_cred_kdc_referral()
1030 		krb5_set_error_message(context, KRB5_GET_IN_TKT_LOOP,  in get_cred_kdc_referral()
1051 	ret = add_cred(context, &ticket, ret_tgts);  in get_cred_kdc_referral()
1056 	ret = krb5_principal_set_realm(context,  in get_cred_kdc_referral()
1059 	krb5_free_cred_contents(context, &tgt);  in get_cred_kdc_referral()
1066     ret = krb5_copy_creds(context, &ticket, out_creds);  in get_cred_kdc_referral()
1069     krb5_free_principal(context, referral.server);  in get_cred_kdc_referral()
1070     krb5_free_cred_contents(context, &tgt);  in get_cred_kdc_referral()
1071     krb5_free_cred_contents(context, &ticket);  in get_cred_kdc_referral()
1082 _krb5_get_cred_kdc_any(krb5_context context,  in _krb5_get_cred_kdc_any()  argument
1094     ret = krb5_cc_get_kdc_offset(context, ccache, &offset);  in _krb5_get_cred_kdc_any()
1096 	context->kdc_sec_offset = offset;  in _krb5_get_cred_kdc_any()
1097 	context->kdc_usec_offset = 0;  in _krb5_get_cred_kdc_any()
1100     ret = get_cred_kdc_referral(context,  in _krb5_get_cred_kdc_any()
1110     return get_cred_kdc_capath(context,  in _krb5_get_cred_kdc_any()
1122 krb5_get_credentials_with_flags(krb5_context context,  in krb5_get_credentials_with_flags()  argument
1135 	ret = krb5_enctype_valid(context, in_creds->session.keytype);  in krb5_get_credentials_with_flags()
1143 	krb5_set_error_message(context, ENOMEM,  in krb5_get_credentials_with_flags()
1155     ret = krb5_cc_retrieve_cred(context,  in krb5_get_credentials_with_flags()
1173 	krb5_timeofday(context, &timeret);  in krb5_get_credentials_with_flags()
1179 	    krb5_cc_remove_cred(context, ccache, 0, res_creds);  in krb5_get_credentials_with_flags()
1187 	return not_found(context, in_creds->server, KRB5_CC_NOTFOUND);  in krb5_get_credentials_with_flags()
1195     ret = _krb5_get_cred_kdc_any(context, flags, ccache,  in krb5_get_credentials_with_flags()
1198 	krb5_cc_store_cred(context, ccache, tgts[i]);  in krb5_get_credentials_with_flags()
1199 	krb5_free_creds(context, tgts[i]);  in krb5_get_credentials_with_flags()
1203 	krb5_cc_store_cred(context, ccache, *out_creds);  in krb5_get_credentials_with_flags()
1208 krb5_get_credentials(krb5_context context,  in krb5_get_credentials()  argument
1216     return krb5_get_credentials_with_flags(context, options, flags,  in krb5_get_credentials()
1229 krb5_get_creds_opt_alloc(krb5_context context, krb5_get_creds_opt *opt)  in krb5_get_creds_opt_alloc()  argument
1233 	krb5_set_error_message(context, ENOMEM,  in krb5_get_creds_opt_alloc()
1241 krb5_get_creds_opt_free(krb5_context context, krb5_get_creds_opt opt)  in krb5_get_creds_opt_free()  argument
1244 	krb5_free_principal(context, opt->self);  in krb5_get_creds_opt_free()
1254 krb5_get_creds_opt_set_options(krb5_context context,  in krb5_get_creds_opt_set_options()  argument
1262 krb5_get_creds_opt_add_options(krb5_context context,  in krb5_get_creds_opt_add_options()  argument
1270 krb5_get_creds_opt_set_enctype(krb5_context context,  in krb5_get_creds_opt_set_enctype()  argument
1278 krb5_get_creds_opt_set_impersonate(krb5_context context,  in krb5_get_creds_opt_set_impersonate()  argument
1283 	krb5_free_principal(context, opt->self);  in krb5_get_creds_opt_set_impersonate()
1284     return krb5_copy_principal(context, self, &opt->self);  in krb5_get_creds_opt_set_impersonate()
1288 krb5_get_creds_opt_set_ticket(krb5_context context,  in krb5_get_creds_opt_set_ticket()  argument
1302 	    krb5_set_error_message(context, ENOMEM,  in krb5_get_creds_opt_set_ticket()
1310 	    krb5_set_error_message(context, ret,  in krb5_get_creds_opt_set_ticket()
1321 krb5_get_creds(krb5_context context,  in krb5_get_creds()  argument
1336 	ret = krb5_enctype_valid(context, opt->enctype);  in krb5_get_creds()
1344     ret = krb5_cc_get_principal(context, ccache, &in_creds.client);  in krb5_get_creds()
1357 	krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1358 	krb5_set_error_message(context, ENOMEM,  in krb5_get_creds()
1372     ret = krb5_cc_retrieve_cred(context,  in krb5_get_creds()
1386 	    krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1390 	krb5_timeofday(context, &timeret);  in krb5_get_creds()
1393 	    krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1397 	    krb5_cc_remove_cred(context, ccache, 0, res_creds);  in krb5_get_creds()
1401 	krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1406 	krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1407 	ret = not_found(context, in_creds.server, KRB5_CC_NOTFOUND);  in krb5_get_creds()
1426     ret = _krb5_get_cred_kdc_any(context, flags, ccache,  in krb5_get_creds()
1429     krb5_free_principal(context, in_creds.client);  in krb5_get_creds()
1431 	krb5_cc_store_cred(context, ccache, tgts[i]);  in krb5_get_creds()
1432 	krb5_free_creds(context, tgts[i]);  in krb5_get_creds()
1436 	krb5_cc_store_cred(context, ccache, *out_creds);  in krb5_get_creds()
1439     _krb5_debug(context, 5, "krb5_get_creds: ret = %d", ret);  in krb5_get_creds()
1449 krb5_get_renewed_creds(krb5_context context,  in krb5_get_renewed_creds()  argument
1462     ret = krb5_copy_principal(context, client, &in.client);  in krb5_get_renewed_creds()
1467 	ret = krb5_parse_name(context, in_tkt_service, &in.server);  in krb5_get_renewed_creds()
1469 	    krb5_free_principal(context, in.client);  in krb5_get_renewed_creds()
1473 	const char *realm = krb5_principal_get_realm(context, client);  in krb5_get_renewed_creds()
1475 	ret = krb5_make_principal(context, &in.server, realm, KRB5_TGS_NAME,  in krb5_get_renewed_creds()
1478 	    krb5_free_principal(context, in.client);  in krb5_get_renewed_creds()
1490     ret = krb5_get_credentials(context, KRB5_GC_CACHED, ccache, &in, &template);  in krb5_get_renewed_creds()
1494 	krb5_free_creds (context, template);  in krb5_get_renewed_creds()
1497     ret = krb5_get_kdc_cred(context, ccache, flags, NULL, NULL, &in, &out);  in krb5_get_renewed_creds()
1498     krb5_free_principal(context, in.client);  in krb5_get_renewed_creds()
1499     krb5_free_principal(context, in.server);  in krb5_get_renewed_creds()
1503     ret = krb5_copy_creds_contents(context, out, creds);  in krb5_get_renewed_creds()
1504     krb5_free_creds(context, out);  in krb5_get_renewed_creds()