124 	int retval;  in pam_sm_authenticate()  local
130 	retval = pam_get_user(pamh, &user, USER_PROMPT);  in pam_sm_authenticate()
131 	if (retval != PAM_SUCCESS)  in pam_sm_authenticate()
132 		return (retval);  in pam_sm_authenticate()
136 	retval = pam_get_item(pamh, PAM_RUSER, &sourceuser);  in pam_sm_authenticate()
137 	if (retval != PAM_SUCCESS)  in pam_sm_authenticate()
138 		return (retval);  in pam_sm_authenticate()
150 		retval = PAM_BUF_ERR;  in pam_sm_authenticate()
157 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
175 			retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
183 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
202 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
215 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
222 	retval = pam_get_authtok(pamh, PAM_AUTHTOK, &pass, PASSWORD_PROMPT);  in pam_sm_authenticate()
223 	if (retval != PAM_SUCCESS)  in pam_sm_authenticate()
241 				retval = PAM_USER_UNKNOWN;  in pam_sm_authenticate()
245 			retval = pam_set_item(pamh, PAM_USER, luser);  in pam_sm_authenticate()
246 			if (retval != PAM_SUCCESS)  in pam_sm_authenticate()
255 				retval = PAM_USER_UNKNOWN;  in pam_sm_authenticate()
269 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
289 		retval = PAM_AUTH_ERR;  in pam_sm_authenticate()
301 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
309 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
318 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
333 		retval = PAM_AUTH_ERR;  in pam_sm_authenticate()
339 	retval = pam_get_data(pamh, "ccache", &ccache_data);  in pam_sm_authenticate()
340 	if (retval == PAM_SUCCESS) {  in pam_sm_authenticate()
343 		retval = PAM_AUTH_ERR;  in pam_sm_authenticate()
353 		retval = PAM_BUF_ERR;  in pam_sm_authenticate()
356 	retval = pam_set_data(pamh, "ccache", ccache_name, cleanup_cache);  in pam_sm_authenticate()
357 	if (retval != 0) {  in pam_sm_authenticate()
360 		retval = PAM_SERVICE_ERR;  in pam_sm_authenticate()
391 	if (retval != PAM_SUCCESS)  in pam_sm_authenticate()
395 	return (retval);  in pam_sm_authenticate()
413 	int retval;  in pam_sm_setcred()
442 	retval = pam_get_item(pamh, PAM_USER, &user);  in pam_sm_setcred()
443 	if (retval != PAM_SUCCESS)  in pam_sm_setcred()
444 		return (retval);  in pam_sm_setcred()
462 	retval = pam_get_data(pamh, "ccache", &cache_data);  in pam_sm_setcred()
463 	if (retval != PAM_SUCCESS) {  in pam_sm_setcred()
464 		retval = PAM_CRED_UNAVAIL;  in pam_sm_setcred()
471 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
478 		retval = PAM_USER_UNKNOWN;  in pam_sm_setcred()
486 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
490 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
508 		retval = PAM_BUF_ERR;  in pam_sm_setcred()
544 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
550 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
557 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
569 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
583 			retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
597 			retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
605 			retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
615 	retval = pam_setenv(pamh, "KRB5CCNAME", cache_name, 1);  in pam_sm_setcred()
616 	if (retval != PAM_SUCCESS) {  in pam_sm_setcred()
617 		PAM_LOG("Error pam_setenv(): %s", pam_strerror(pamh, retval));  in pam_sm_setcred()
619 		retval = PAM_SERVICE_ERR;  in pam_sm_setcred()
640 	return (retval);  in pam_sm_setcred()
655 	int retval;  in pam_sm_acct_mgmt()  local
659 	retval = pam_get_item(pamh, PAM_USER, &user);  in pam_sm_acct_mgmt()
660 	if (retval != PAM_SUCCESS)  in pam_sm_acct_mgmt()
661 		return (retval);  in pam_sm_acct_mgmt()
665 	retval = pam_get_data(pamh, "ccache", &ccache_name);  in pam_sm_acct_mgmt()
666 	if (retval != PAM_SUCCESS)  in pam_sm_acct_mgmt()
694 		retval = PAM_PERM_DENIED;  in pam_sm_acct_mgmt()
701 		retval = PAM_SUCCESS;  in pam_sm_acct_mgmt()
703 		retval = PAM_PERM_DENIED;  in pam_sm_acct_mgmt()
712 	return (retval);  in pam_sm_acct_mgmt()
729 	int result_code, retval;  in pam_sm_chauthtok()  local
737 	retval = pam_get_item(pamh, PAM_USER, &user);  in pam_sm_chauthtok()
738 	if (retval != PAM_SUCCESS)  in pam_sm_chauthtok()
739 		return (retval);  in pam_sm_chauthtok()
756 		retval = PAM_USER_UNKNOWN;  in pam_sm_chauthtok()
766 		retval = PAM_SERVICE_ERR;  in pam_sm_chauthtok()
773 	retval = pam_get_authtok(pamh, PAM_OLDAUTHTOK, &pass, PASSWORD_PROMPT);  in pam_sm_chauthtok()
774 	if (retval != PAM_SUCCESS)  in pam_sm_chauthtok()
785 		retval = PAM_SERVICE_ERR;  in pam_sm_chauthtok()
798 		retval = PAM_AUTH_ERR;  in pam_sm_chauthtok()
806 		retval = pam_get_authtok(pamh,  in pam_sm_chauthtok()
808 		if (retval != PAM_TRY_AGAIN)  in pam_sm_chauthtok()
812 	if (retval != PAM_SUCCESS)  in pam_sm_chauthtok()
819 		retval = PAM_BUF_ERR;  in pam_sm_chauthtok()
828 		retval = PAM_AUTHTOK_ERR;  in pam_sm_chauthtok()
833 		retval = PAM_AUTHTOK_ERR;  in pam_sm_chauthtok()
858 	return (retval);  in pam_sm_chauthtok()
882 	krb5_error_code retval;  in verify_krb_v5_tgt_begin()  local
905 	retval = -1;  in verify_krb_v5_tgt_begin()
907 		retval = krb5_sname_to_principal(context, NULL, *service,  in verify_krb_v5_tgt_begin()
909 		if (retval != 0) {  in verify_krb_v5_tgt_begin()
912 				    context, retval);  in verify_krb_v5_tgt_begin()
931 		retval = krb5_kt_read_service_key(context, NULL, princ, 0, 0,  in verify_krb_v5_tgt_begin()
933 		if (retval != 0)  in verify_krb_v5_tgt_begin()
940 	return (retval);  in verify_krb_v5_tgt_begin()
948 	krb5_error_code retval;  in verify_krb_v5_tgt()  local
959 	retval = krb5_mk_req(context, &auth_context, 0, service, phost,  in verify_krb_v5_tgt()
965 	if (retval) {  in verify_krb_v5_tgt()
968 			    retval);  in verify_krb_v5_tgt()
974 		retval = -1;  in verify_krb_v5_tgt()
979 	retval = krb5_rd_req(context, &auth_context, &packet, princ, NULL,  in verify_krb_v5_tgt()
981 	if (retval) {  in verify_krb_v5_tgt()
984 			    retval);  in verify_krb_v5_tgt()
990 		retval = -1;  in verify_krb_v5_tgt()
993 		retval = 1;  in verify_krb_v5_tgt()
998 	return (retval);  in verify_krb_v5_tgt()