Home
last modified time | relevance | path

Searched refs:creds (Results 1 – 25 of 160) sorted by relevance

1234567

/freebsd/tools/regression/security/proc_to_proc/
H A Dscenario.c68 static struct cred creds[] = { variable
92 { &creds[0], &creds[0], 0, 0, 0, 0, 0, 0, "0. priv on priv"},
93 { &creds[0], &creds[1], 0, 0, 0, 0, 0, 0, "1. priv on priv"},
94 { &creds[1], &creds[0], 0, 0, 0, 0, 0, 0, "2. priv on priv"},
95 { &creds[1], &creds[1], 0, 0, 0, 0, 0, 0, "3. priv on priv"},
97 { &creds[0], &creds[2], 0, 0, 0, 0, 0, 0, "4. priv on unpriv1"},
98 { &creds[0], &creds[3], 0, 0, 0, 0, 0, 0, "5. priv on unpriv1"},
99 { &creds[1], &creds[2], 0, 0, 0, 0, 0, 0, "6. priv on unpriv1"},
100 { &creds[1], &creds[3], 0, 0, 0, 0, 0, 0, "7. priv on unpriv1"},
102 { &creds[2], &creds[0], EPERM, EPERM, EPERM, EPERM, 0, EPERM, "8. unpriv1 on priv"},
[all …]
/freebsd/crypto/heimdal/lib/krb5/
H A Drd_error.c73 const krb5_creds *creds) in krb5_error_from_rd_error() argument
83 if (creds != NULL) { in krb5_error_from_rd_error()
84 krb5_unparse_name_fixed(context, creds->client, in krb5_error_from_rd_error()
86 krb5_unparse_name_fixed(context, creds->server, in krb5_error_from_rd_error()
94 creds ? "(" : "", in krb5_error_from_rd_error()
95 creds ? clientname : "", in krb5_error_from_rd_error()
96 creds ? ")" : ""); in krb5_error_from_rd_error()
101 creds ? "(" : "", in krb5_error_from_rd_error()
102 creds ? servername : "", in krb5_error_from_rd_error()
103 creds ? ")" : ""); in krb5_error_from_rd_error()
[all …]
H A Dstore.c1304 krb5_store_creds(krb5_storage *sp, krb5_creds *creds) in krb5_store_creds() argument
1308 ret = krb5_store_principal(sp, creds->client); in krb5_store_creds()
1311 ret = krb5_store_principal(sp, creds->server); in krb5_store_creds()
1314 ret = krb5_store_keyblock(sp, creds->session); in krb5_store_creds()
1317 ret = krb5_store_times(sp, creds->times); in krb5_store_creds()
1320 ret = krb5_store_int8(sp, creds->second_ticket.length != 0); /* is_skey */ in krb5_store_creds()
1325 ret = krb5_store_int32(sp, creds->flags.i); in krb5_store_creds()
1327 ret = krb5_store_int32(sp, bitswap32(TicketFlags2int(creds->flags.b))); in krb5_store_creds()
1331 ret = krb5_store_addrs(sp, creds->addresses); in krb5_store_creds()
1334 ret = krb5_store_authdata(sp, creds->authdata); in krb5_store_creds()
[all …]
H A Drd_cred.c260 krb5_creds *creds; in krb5_rd_cred() local
262 creds = calloc(1, sizeof(*creds)); in krb5_rd_cred()
263 if(creds == NULL) { in krb5_rd_cred()
270 ASN1_MALLOC_ENCODE(Ticket, creds->ticket.data, creds->ticket.length, in krb5_rd_cred()
273 free(creds); in krb5_rd_cred()
276 if(creds->ticket.length != len) in krb5_rd_cred()
278 copy_EncryptionKey (&kci->key, &creds->session); in krb5_rd_cred()
281 &creds->client, in krb5_rd_cred()
285 creds->flags.b = *kci->flags; in krb5_rd_cred()
287 creds->times.authtime = *kci->authtime; in krb5_rd_cred()
[all …]
H A Dcreds.c210 const krb5_creds * mcreds, const krb5_creds * creds) in krb5_compare_creds() argument
217 creds->server); in krb5_compare_creds()
220 creds->server); in krb5_compare_creds()
226 creds->client); in krb5_compare_creds()
229 creds->client); in krb5_compare_creds()
233 match = mcreds->session.keytype == creds->session.keytype; in krb5_compare_creds()
236 match = mcreds->flags.i == creds->flags.i; in krb5_compare_creds()
239 match = (creds->flags.i & mcreds->flags.i) == mcreds->flags.i; in krb5_compare_creds()
242 match = krb5_times_equal(&mcreds->times, &creds->times); in krb5_compare_creds()
246 match = (mcreds->times.renew_till <= creds->times.renew_till) && in krb5_compare_creds()
[all …]
H A Dticket.c652 krb5_creds *creds, in _krb5_extract_ticket() argument
679 creds->session.keyvalue.length = 0; in _krb5_extract_ticket()
680 creds->session.keyvalue.data = NULL; in _krb5_extract_ticket()
681 creds->session.keytype = rep->enc_part.key.keytype; in _krb5_extract_ticket()
682 ret = krb5_data_copy (&creds->session.keyvalue, in _krb5_extract_ticket()
702 creds->client, in _krb5_extract_ticket()
704 &creds->session); in _krb5_extract_ticket()
710 krb5_free_principal (context, creds->client); in _krb5_extract_ticket()
711 creds->client = tmp_principal; in _krb5_extract_ticket()
724 creds->server, in _krb5_extract_ticket()
[all …]
H A Dmcache.c46 } *creds; member
98 m->creds = NULL; in mcc_alloc()
220 l = m->creds; in mcc_destroy()
229 m->creds = NULL; in mcc_destroy()
237 krb5_creds *creds) in mcc_store_cred() argument
252 l->next = m->creds; in mcc_store_cred()
253 m->creds = l; in mcc_store_cred()
255 ret = krb5_copy_creds_contents (context, creds, &l->cred); in mcc_store_cred()
257 m->creds = l->next; in mcc_store_cred()
289 *cursor = m->creds; in mcc_get_first()
[all …]
H A Dverify_init.c72 krb5_creds *creds, in krb5_verify_init_creds() argument
124 creds->client); in krb5_verify_init_creds()
129 creds); in krb5_verify_init_creds()
134 if (!krb5_principal_compare (context, server, creds->server)) { in krb5_verify_init_creds()
139 match_cred.client = creds->client; in krb5_verify_init_creds()
152 creds = new_creds; in krb5_verify_init_creds()
159 creds, in krb5_verify_init_creds()
216 krb5_creds *creds, in krb5_get_validated_creds() argument
225 if (krb5_principal_compare(context, creds->client, client) != TRUE) { in krb5_get_validated_creds()
239 ret = krb5_verify_init_creds(context, creds, server, NULL, NULL, &vopt); in krb5_get_validated_creds()
/freebsd/crypto/krb5/src/lib/krb5/ccache/
H A Dcc_retr.c59 const krb5_creds *mcreds, const krb5_creds *creds) in princs_match() argument
62 !krb5_principal_compare(context, mcreds->client, creds->client)) in princs_match()
68 creds->server); in princs_match()
70 return krb5_principal_compare(context, mcreds->server, creds->server); in princs_match()
153 krb5_creds *mcreds, krb5_creds *creds) in krb5int_cc_creds_match_request() argument
157 if (!princs_match(context, whichfields, mcreds, creds)) in krb5int_cc_creds_match_request()
163 if (creds->is_skey != is_skey) in krb5int_cc_creds_match_request()
167 mcreds->ticket_flags != creds->ticket_flags) in krb5int_cc_creds_match_request()
170 (creds->ticket_flags & mcreds->ticket_flags) != mcreds->ticket_flags) in krb5int_cc_creds_match_request()
174 !times_match_exact(&mcreds->times, &creds->times)) in krb5int_cc_creds_match_request()
[all …]
H A Dccmarshal.c288 krb5_creds *creds) in k5_unmarshal_cred() argument
293 creds->client = unmarshal_princ(&in, version); in k5_unmarshal_cred()
294 creds->server = unmarshal_princ(&in, version); in k5_unmarshal_cred()
295 unmarshal_keyblock(&in, version, &creds->keyblock); in k5_unmarshal_cred()
296 creds->times.authtime = get32(&in, version); in k5_unmarshal_cred()
297 creds->times.starttime = get32(&in, version); in k5_unmarshal_cred()
298 creds->times.endtime = get32(&in, version); in k5_unmarshal_cred()
299 creds->times.renew_till = get32(&in, version); in k5_unmarshal_cred()
300 creds->is_skey = k5_input_get_byte(&in); in k5_unmarshal_cred()
301 creds->ticket_flags = get32(&in, version); in k5_unmarshal_cred()
[all …]
H A Dccfns.c81 krb5_creds *creds) in krb5_cc_store_cred() argument
83 TRACE_CC_STORE(context, cache, creds); in krb5_cc_store_cred()
84 return cache->ops->store(context, cache, creds); in krb5_cc_store_cred()
90 krb5_creds *creds) in krb5_cc_retrieve_cred() argument
95 ret = cache->ops->retrieve(context, cache, flags, mcreds, creds); in krb5_cc_retrieve_cred()
108 ret = cache->ops->retrieve(context, cache, flags, mcreds, creds); in krb5_cc_retrieve_cred()
130 krb5_cc_cursor *cursor, krb5_creds *creds) in krb5_cc_next_cred() argument
132 return cache->ops->get_next(context, cache, cursor, creds); in krb5_cc_next_cred()
144 krb5_creds *creds) in krb5_cc_remove_cred() argument
146 TRACE_CC_REMOVE(context, cache, creds); in krb5_cc_remove_cred()
[all …]
/freebsd/crypto/krb5/src/lib/krb5/krb/
H A Din_tkt_sky.c73 krb5_creds *creds, krb5_kdc_rep **ret_as_reply) in krb5_get_in_tkt_with_skey() argument
81 pre_auth_types, creds); in krb5_get_in_tkt_with_skey()
91 retval = krb5_get_init_creds_keytab(context, creds, creds->client, in krb5_get_in_tkt_with_skey()
93 creds->times.starttime, in krb5_get_in_tkt_with_skey()
100 retval = krb5_unparse_name(context, creds->server, &server); in krb5_get_in_tkt_with_skey()
103 server_princ = creds->server; in krb5_get_in_tkt_with_skey()
104 client_princ = creds->client; in krb5_get_in_tkt_with_skey()
105 retval = k5_get_init_creds(context, creds, creds->client, in krb5_get_in_tkt_with_skey()
111 krb5_free_principal( context, creds->server); in krb5_get_in_tkt_with_skey()
112 krb5_free_principal( context, creds->client); in krb5_get_in_tkt_with_skey()
[all …]
H A Dfwd_tgt.c49 krb5_creds creds, tgt; in krb5_fwd_tgt_creds() local
58 memset(&creds, 0, sizeof(creds)); in krb5_fwd_tgt_creds()
59 memset(&tgt, 0, sizeof(creds)); in krb5_fwd_tgt_creds()
96 if ((retval = krb5_copy_principal(context, client, &creds.client))) in krb5_fwd_tgt_creds()
100 &creds.server); in krb5_fwd_tgt_creds()
107 &creds, &tgt); in krb5_fwd_tgt_creds()
113 if (!krb5_principal_compare(context, tgt.client, creds.client)) { in krb5_fwd_tgt_creds()
147 creds.keyblock.enctype = enctype; in krb5_fwd_tgt_creds()
148 creds.times = tgt.times; in krb5_fwd_tgt_creds()
149 creds.times.starttime = 0; in krb5_fwd_tgt_creds()
[all …]
H A Dvfy_increds.c40 krb5_creds *creds) in nofail() argument
47 if (krb5int_libdefault_boolean(context, &creds->client->realm, in nofail()
60 krb5_creds creds; in copy_creds_except() local
66 while (!(ret = krb5_cc_next_cred(context, incc, &cur, &creds))) { in copy_creds_except()
67 if (!krb5_principal_compare(context, princ, creds.server)) in copy_creds_except()
68 ret = krb5_cc_store_cred(context, outcc, &creds); in copy_creds_except()
69 krb5_free_cred_contents(context, &creds); in copy_creds_except()
79 get_vfy_cred(krb5_context context, krb5_creds *creds, krb5_principal server, in get_vfy_cred() argument
90 if (krb5_principal_compare(context, server, creds->server)) { in get_vfy_cred()
92 ret = krb5_mk_req_extended(context, &authcon, 0, NULL, creds, &ap_req); in get_vfy_cred()
[all …]
H A Dmk_cred.c74 create_krbcred(krb5_context context, krb5_creds **creds, krb5_key key, in create_krbcred() argument
91 for (ncreds = 0; creds[ncreds] != NULL; ncreds++); in create_krbcred()
108 ret = decode_krb5_ticket(&creds[i]->ticket, &tickets[i]); in create_krbcred()
113 tinfos[i].times = creds[i]->times; in create_krbcred()
114 tinfos[i].flags = creds[i]->ticket_flags; in create_krbcred()
115 tinfos[i].session = &creds[i]->keyblock; in create_krbcred()
116 tinfos[i].client = creds[i]->client; in create_krbcred()
117 tinfos[i].server = creds[i]->server; in create_krbcred()
118 tinfos[i].caddrs = creds[i]->addresses; in create_krbcred()
155 krb5_creds **creds, krb5_data **der_out, in krb5_mk_ncred() argument
[all …]
H A Dmk_req.c58 krb5_creds creds; in krb5_mk_req() local
66 memset(&creds, 0, sizeof(creds)); in krb5_mk_req()
67 if ((retval = krb5_copy_principal(context, server, &creds.server))) in krb5_mk_req()
70 if ((retval = krb5_cc_get_principal(context, ccache, &creds.client))) in krb5_mk_req()
74 ccache, &creds, &credsp))) in krb5_mk_req()
83 krb5_free_cred_contents(context, &creds); in krb5_mk_req()
H A Dt_ad_fx_armor.c21 krb5_creds creds, *out_creds = NULL; in main() local
24 memset(&creds, 0, sizeof(creds)); in main()
25 creds.authdata = array; in main()
27 test(krb5_cc_get_principal(context, ccache, &creds.client)); in main()
28 test(krb5_parse_name(context, argv[1], &creds.server)); in main()
29 test(krb5_get_credentials(context, 0, ccache, &creds, &out_creds)); in main()
H A Dgic_keytab.c235 get_init_creds_keytab(krb5_context context, krb5_creds *creds, in get_init_creds_keytab() argument
263 ret = krb5_init_creds_get_creds(context, ctx, creds); in get_init_creds_keytab()
275 krb5_creds *creds, in krb5_get_init_creds_keytab() argument
300 ret = get_init_creds_keytab(context, creds, client, keytab, start_time, in krb5_get_init_creds_keytab()
318 ret = get_init_creds_keytab(context, creds, client, keytab, in krb5_get_init_creds_keytab()
347 krb5_creds *creds, krb5_kdc_rep **ret_as_reply) in krb5_get_in_tkt_with_keytab() argument
356 pre_auth_types, creds); in krb5_get_in_tkt_with_keytab()
367 retval = krb5_unparse_name( context, creds->server, &server); in krb5_get_in_tkt_with_keytab()
370 server_princ = creds->server; in krb5_get_in_tkt_with_keytab()
371 client_princ = creds->client; in krb5_get_in_tkt_with_keytab()
[all …]
/freebsd/crypto/krb5/src/lib/krb5/os/
H A Dt_trace.c72 krb5_creds creds; in main() local
219 creds.magic = 0; in main()
220 creds.client = &principal_data; in main()
224 creds.server = &principal_data2; in main()
225 memcpy(&creds.keyblock, &key.keyblock, sizeof(creds.keyblock)); in main()
226 creds.times.authtime = 0; in main()
227 creds.times.starttime = 1; in main()
228 creds.times.endtime = 2; in main()
229 creds.times.renew_till = 3; in main()
230 creds.is_skey = FALSE; in main()
[all …]
H A Dchangepw.c206 krb5_creds *creds, in change_set_password() argument
238 creds, in change_set_password()
245 code = locate_kpasswd(callback_ctx.context, &creds->server->realm, &sl); in change_set_password()
258 code = k5_sendto(callback_ctx.context, NULL, &creds->server->realm, in change_set_password()
262 code = k5_sendto(callback_ctx.context, NULL, &creds->server->realm, in change_set_password()
309 krb5_creds *creds, in krb5_change_password() argument
315 return change_set_password(context, creds, newpw, NULL, in krb5_change_password()
326 krb5_creds *creds, in krb5_set_password() argument
334 return change_set_password(context, creds, newpw, change_password_for, in krb5_set_password()
348 krb5_creds creds; in krb5_set_password_using_ccache() local
[all …]
/freebsd/contrib/pam-krb5/module/
H A Dauth.c330 password_auth(struct pam_args *args, krb5_creds *creds, in password_auth() argument
356 retval = krb5_get_init_creds_password(ctx->context, creds, ctx->princ, in password_auth()
374 ctx->context, creds, ctx->princ, (char *) pass, in password_auth()
381 krb5_free_cred_contents(ctx->context, creds); in password_auth()
382 explicit_bzero(creds, sizeof(krb5_creds)); in password_auth()
399 k5login_password_auth(struct pam_args *args, krb5_creds *creds, in k5login_password_auth() argument
427 return krb5_get_init_creds_password(ctx->context, creds, ctx->princ, in k5login_password_auth()
484 ctx->context, creds, princ, (char *) pass, pamk5_prompter_krb5, in k5login_password_auth()
529 pkinit_auth(struct pam_args *args, const char *service, krb5_creds **creds) in pkinit_auth() argument
562 *creds = calloc(1, sizeof(krb5_creds)); in pkinit_auth()
[all …]
/freebsd/crypto/krb5/src/lib/gssapi/krb5/
H A Dimport_cred.c351 json_to_creds(krb5_context context, k5_json_value v, krb5_creds *creds) in json_to_creds() argument
360 memset(creds, 0, sizeof(*creds)); in json_to_creds()
368 &creds->client)) in json_to_creds()
372 &creds->server)) in json_to_creds()
375 if (json_to_keyblock(k5_json_array_get(array, 2), &creds->keyblock)) in json_to_creds()
381 creds->times.authtime = k5_json_number_value(n); in json_to_creds()
386 creds->times.starttime = k5_json_number_value(n); in json_to_creds()
391 creds->times.endtime = k5_json_number_value(n); in json_to_creds()
396 creds->times.renew_till = k5_json_number_value(n); in json_to_creds()
401 creds->is_skey = k5_json_bool_value(b); in json_to_creds()
[all …]
H A Dexport_cred.c251 json_creds(krb5_context context, krb5_creds *creds, k5_json_value *val_out) in json_creds() argument
259 ret = json_principal(context, creds->client, &client); in json_creds()
262 ret = json_principal(context, creds->server, &server); in json_creds()
265 ret = json_keyblock(&creds->keyblock, &keyblock); in json_creds()
268 ret = json_addresses(creds->addresses, &addrs); in json_creds()
271 ret = json_authdata(creds->authdata, &authdata); in json_creds()
276 creds->times.authtime, creds->times.starttime, in json_creds()
277 creds->times.endtime, creds->times.renew_till, in json_creds()
278 creds->is_skey, creds->ticket_flags, addrs, in json_creds()
279 (void *)creds->ticket.data, in json_creds()
[all …]
/freebsd/crypto/krb5/src/appl/user_user/
H A Dclient.c47 krb5_creds creds, *new_creds; in main() local
134 memset (&creds, 0, sizeof(creds)); in main()
136 retval = krb5_cc_get_principal(context, cc, &creds.client); in main()
142 retval = krb5_unparse_name(context, creds.client, &princ); in main()
157 krb5_build_principal_ext(context, &creds.server, in main()
159 creds.client)->length, in main()
161 creds.client)->data, in main()
164 creds.client)->length, in main()
166 creds.client)->data, in main()
175 &creds, &new_creds); in main()
[all …]
H A Dserver.c50 krb5_creds creds, *new_creds; in main() local
133 memset (&creds, 0, sizeof(creds)); in main()
134 retval = krb5_cc_get_principal(context, cc, &creds.client); in main()
143 retval = krb5_parse_name(context, pname_data.data, &creds.server); in main()
149 creds.second_ticket = tkt_data; in main()
151 creds.second_ticket.length); in main()
154 &creds, &new_creds); in main()
213 NULL, &creds, cc, NULL, NULL, NULL); in main()
240 krb5_free_cred_contents(context, &creds); in main()

1234567