1 /* $NetBSD: test_forward.c,v 1.2 2017/01/28 21:31:49 christos Exp $ */ 2 3 /* 4 * Copyright (c) 2008 Kungliga Tekniska Hgskolan 5 * (Royal Institute of Technology, Stockholm, Sweden). 6 * All rights reserved. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 12 * 1. Redistributions of source code must retain the above copyright 13 * notice, this list of conditions and the following disclaimer. 14 * 15 * 2. Redistributions in binary form must reproduce the above copyright 16 * notice, this list of conditions and the following disclaimer in the 17 * documentation and/or other materials provided with the distribution. 18 * 19 * 3. Neither the name of KTH nor the names of its contributors may be 20 * used to endorse or promote products derived from this software without 21 * specific prior written permission. 22 * 23 * THIS SOFTWARE IS PROVIDED BY KTH AND ITS CONTRIBUTORS ``AS IS'' AND ANY 24 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 25 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 26 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL KTH OR ITS CONTRIBUTORS BE 27 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 28 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 29 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR 30 * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, 31 * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR 32 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF 33 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ 34 35 #include "krb5_locl.h" 36 #include <err.h> 37 #include <krb5/getarg.h> 38 39 static int version_flag = 0; 40 static int help_flag = 0; 41 42 static struct getargs args[] = { 43 {"version", 0, arg_flag, &version_flag, 44 "print version", NULL }, 45 {"help", 0, arg_flag, &help_flag, 46 NULL, NULL } 47 }; 48 49 static void 50 usage (int ret) 51 { 52 arg_printusage (args, 53 sizeof(args)/sizeof(*args), 54 NULL, 55 "hostname"); 56 exit (ret); 57 } 58 59 int 60 main(int argc, char **argv) 61 { 62 const char *hostname; 63 krb5_context context; 64 krb5_auth_context ac; 65 krb5_error_code ret; 66 krb5_creds cred; 67 krb5_ccache id; 68 krb5_data data; 69 int optidx = 0; 70 71 setprogname (argv[0]); 72 73 if(getarg(args, sizeof(args) / sizeof(args[0]), argc, argv, &optidx)) 74 usage(1); 75 76 if (help_flag) 77 usage (0); 78 79 if(version_flag){ 80 print_version(NULL); 81 exit(0); 82 } 83 84 argc -= optidx; 85 argv += optidx; 86 87 if (argc < 1) 88 usage(1); 89 90 hostname = argv[0]; 91 92 memset(&cred, 0, sizeof(cred)); 93 94 ret = krb5_init_context(&context); 95 if (ret) 96 errx (1, "krb5_init_context failed: %d", ret); 97 98 ret = krb5_cc_default(context, &id); 99 if (ret) 100 krb5_err(context, 1, ret, "krb5_cc_default failed"); 101 102 ret = krb5_auth_con_init(context, &ac); 103 if (ret) 104 krb5_err(context, 1, ret, "krb5_auth_con_init failed"); 105 106 krb5_auth_con_addflags(context, ac, 107 KRB5_AUTH_CONTEXT_CLEAR_FORWARDED_CRED, NULL); 108 109 ret = krb5_cc_get_principal(context, id, &cred.client); 110 if (ret) 111 krb5_err(context, 1, ret, "krb5_cc_get_principal"); 112 113 ret = krb5_make_principal(context, 114 &cred.server, 115 krb5_principal_get_realm(context, cred.client), 116 KRB5_TGS_NAME, 117 krb5_principal_get_realm(context, cred.client), 118 NULL); 119 if (ret) 120 krb5_err(context, 1, ret, "krb5_make_principal(server)"); 121 122 ret = krb5_get_forwarded_creds (context, 123 ac, 124 id, 125 KDC_OPT_FORWARDABLE, 126 hostname, 127 &cred, 128 &data); 129 if (ret) 130 krb5_err (context, 1, ret, "krb5_get_forwarded_creds"); 131 132 krb5_data_free(&data); 133 krb5_free_context(context); 134 135 return 0; 136 } 137
Indexes created Sat Feb 28 05:31:39 UTC 2026