Lines Matching refs:request
118 krb5_kdc_req *request, in send_as_request2() argument
142 if (request->nonce == 0) { in send_as_request2()
145 request->nonce = (krb5_int32) time_now; in send_as_request2()
149 if ((retval = encode_krb5_as_req(request, &packet)) != 0) in send_as_request2()
155 krb5_princ_realm(context, request->client), in send_as_request2()
237 krb5_kdc_req *request, in send_as_request() argument
243 request, in send_as_request()
252 krb5_kdc_req *request, in decrypt_as_reply() argument
270 else if (request != NULL) { in decrypt_as_reply()
271 if ((retval = krb5_principal2salt(context, request->client, &salt))) in decrypt_as_reply()
295 if (request != NULL) { in decrypt_as_reply()
296 if (is_in_keytype(request->ktype, request->nktypes, in decrypt_as_reply()
324 krb5_kdc_req *request, in verify_as_reply() argument
334 if (!krb5_principal_compare(context, as_reply->client, request->client) in verify_as_reply()
335 || !krb5_principal_compare(context, as_reply->enc_part2->server, request->server) in verify_as_reply()
336 || !krb5_principal_compare(context, as_reply->ticket->server, request->server) in verify_as_reply()
337 || (request->nonce != as_reply->enc_part2->nonce) in verify_as_reply()
340 || ((request->kdc_options & KDC_OPT_POSTDATED) && in verify_as_reply()
341 (request->from != 0) && in verify_as_reply()
342 (request->from != as_reply->enc_part2->times.starttime)) in verify_as_reply()
343 || ((request->till != 0) && in verify_as_reply()
344 (as_reply->enc_part2->times.endtime > request->till)) in verify_as_reply()
345 || ((request->kdc_options & KDC_OPT_RENEWABLE) && in verify_as_reply()
349 !(request->kdc_options & KDC_OPT_RENEWABLE_OK) && in verify_as_reply()
351 (request->rtime != 0) && in verify_as_reply()
352 (as_reply->enc_part2->times.renew_till > request->rtime)) in verify_as_reply()
353 || ((request->kdc_options & KDC_OPT_RENEWABLE_OK) && in verify_as_reply()
354 !(request->kdc_options & KDC_OPT_RENEWABLE) && in verify_as_reply()
356 (request->till != 0) && in verify_as_reply()
357 (as_reply->enc_part2->times.renew_till > request->till)) in verify_as_reply()
362 || ((request->kdc_options & KDC_OPT_RENEWABLE_OK) && in verify_as_reply()
364 (request->till != 0) && in verify_as_reply()
365 (request->rtime != 0) && in verify_as_reply()
366 (as_reply->enc_part2->times.renew_till > max(request->till, in verify_as_reply()
367 request->rtime))) in verify_as_reply()
377 if ((request->from == 0) && in verify_as_reply()
389 krb5_kdc_req *request, in stash_as_reply() argument
540 krb5_kdc_req request; in krb5_get_in_tkt() local
575 request.magic = KV5M_KDC_REQ; in krb5_get_in_tkt()
576 request.msg_type = KRB5_AS_REQ; in krb5_get_in_tkt()
577 request.addresses = 0; in krb5_get_in_tkt()
578 request.ktype = 0; in krb5_get_in_tkt()
579 request.padata = 0; in krb5_get_in_tkt()
581 request.addresses = (krb5_address **) addrs; in krb5_get_in_tkt()
583 if ((retval = krb5_os_localaddr(context, &request.addresses))) in krb5_get_in_tkt()
585 request.kdc_options = options; in krb5_get_in_tkt()
586 request.client = creds->client; in krb5_get_in_tkt()
587 request.server = creds->server; in krb5_get_in_tkt()
588 request.nonce = 0; in krb5_get_in_tkt()
589 request.from = creds->times.starttime; in krb5_get_in_tkt()
590 request.till = creds->times.endtime; in krb5_get_in_tkt()
591 request.rtime = creds->times.renew_till; in krb5_get_in_tkt()
593 request.ktype = malloc (sizeof(get_in_tkt_enctypes)); in krb5_get_in_tkt()
594 if (request.ktype == NULL) { in krb5_get_in_tkt()
598 memcpy(request.ktype, get_in_tkt_enctypes, sizeof(get_in_tkt_enctypes)); in krb5_get_in_tkt()
599 for (request.nktypes = 0;request.ktype[request.nktypes];request.nktypes++); in krb5_get_in_tkt()
603 if (ktypes[req] == request.ktype[next]) { in krb5_get_in_tkt()
607 for (i = next + 1; i < request.nktypes; i++) in krb5_get_in_tkt()
608 if (ktypes[req] == request.ktype[i]) { in krb5_get_in_tkt()
614 t = request.ktype[next]; in krb5_get_in_tkt()
615 request.ktype[next] = request.ktype[i]; in krb5_get_in_tkt()
616 request.ktype[i] = t; in krb5_get_in_tkt()
623 request.ktype[next] = 0; in krb5_get_in_tkt()
624 request.nktypes = next; in krb5_get_in_tkt()
626 request.authorization_data.ciphertext.length = 0; in krb5_get_in_tkt()
627 request.authorization_data.ciphertext.data = 0; in krb5_get_in_tkt()
628 request.unenc_authdata = 0; in krb5_get_in_tkt()
629 request.second_ticket = 0; in krb5_get_in_tkt()
666 keyseed, creds, &request)) != 0) in krb5_get_in_tkt()
682 request.nonce = (krb5_int32) time_now; in krb5_get_in_tkt()
684 if ((retval = send_as_request2(context, &request, &err_reply, in krb5_get_in_tkt()
699 &request.server->realm, in krb5_get_in_tkt()
715 if ((retval = krb5_process_padata(context, &request, as_reply, in krb5_get_in_tkt()
725 if ((retval = decrypt_as_reply(context, &request, as_reply, key_proc, in krb5_get_in_tkt()
730 if ((retval = verify_as_reply(context, time_now, &request, as_reply))) in krb5_get_in_tkt()
733 if ((retval = stash_as_reply(context, time_now, &request, as_reply, in krb5_get_in_tkt()
738 if (request.ktype) in krb5_get_in_tkt()
739 free(request.ktype); in krb5_get_in_tkt()
740 if (!addrs && request.addresses) in krb5_get_in_tkt()
741 krb5_free_addresses(context, request.addresses); in krb5_get_in_tkt()
742 if (request.padata) in krb5_get_in_tkt()
743 krb5_free_pa_data(context, request.padata); in krb5_get_in_tkt()
996 krb5_kdc_req request; in krb5_get_init_creds() local
1018 request.server = NULL; in krb5_get_init_creds()
1019 request.ktype = NULL; in krb5_get_init_creds()
1020 request.addresses = NULL; in krb5_get_init_creds()
1021 request.padata = NULL; in krb5_get_init_creds()
1037 request.magic = KV5M_KDC_REQ; in krb5_get_init_creds()
1038 request.msg_type = KRB5_AS_REQ; in krb5_get_init_creds()
1041 request.nonce = 0; in krb5_get_init_creds()
1045 request.kdc_options = context->kdc_default_options; in krb5_get_init_creds()
1058 request.kdc_options |= KDC_OPT_FORWARDABLE; in krb5_get_init_creds()
1071 request.kdc_options |= KDC_OPT_PROXIABLE; in krb5_get_init_creds()
1076 request.kdc_options |= (KDC_OPT_ALLOW_POSTDATE|KDC_OPT_POSTDATED); in krb5_get_init_creds()
1080 if ((ret = krb5_timeofday(context, &request.from))) in krb5_get_init_creds()
1082 request.from = krb5int_addint32(request.from, start_time); in krb5_get_init_creds()
1098 request.till = krb5int_addint32(request.from, tkt_life); in krb5_get_init_creds()
1116 request.kdc_options |= KDC_OPT_RENEWABLE; in krb5_get_init_creds()
1119 request.rtime = krb5int_addint32(request.from, renew_life); in krb5_get_init_creds()
1120 if (request.rtime < request.till) { in krb5_get_init_creds()
1122 request.rtime = request.till; in krb5_get_init_creds()
1125 request.kdc_options &= ~(KDC_OPT_RENEWABLE_OK); in krb5_get_init_creds()
1127 request.rtime = 0; in krb5_get_init_creds()
1132 request.client = client; in krb5_get_init_creds()
1141 if ((ret = krb5_parse_name(context, in_tkt_service, &request.server))) in krb5_get_init_creds()
1146 if (request.server->realm.length < request.client->realm.length) in krb5_get_init_creds()
1147 if ((request.server->realm.data = in krb5_get_init_creds()
1148 (char *) realloc(request.server->realm.data, in krb5_get_init_creds()
1149 request.client->realm.length)) == NULL) { in krb5_get_init_creds()
1154 request.server->realm.length = request.client->realm.length; in krb5_get_init_creds()
1155 memcpy(request.server->realm.data, request.client->realm.data, in krb5_get_init_creds()
1156 request.client->realm.length); in krb5_get_init_creds()
1158 if ((ret = krb5_build_principal_ext(context, &request.server, in krb5_get_init_creds()
1159 request.client->realm.length, in krb5_get_init_creds()
1160 request.client->realm.data, in krb5_get_init_creds()
1163 request.client->realm.length, in krb5_get_init_creds()
1164 request.client->realm.data, in krb5_get_init_creds()
1174 request.ktype = options->etype_list; in krb5_get_init_creds()
1175 request.nktypes = options->etype_list_length; in krb5_get_init_creds()
1177 &request.ktype)) == 0) { in krb5_get_init_creds()
1178 for (request.nktypes = 0; in krb5_get_init_creds()
1179 request.ktype[request.nktypes]; in krb5_get_init_creds()
1180 request.nktypes++) in krb5_get_init_creds()
1188 request.addresses = options->address_list; in krb5_get_init_creds()
1203 if ((ret = krb5_os_localaddr(context, &request.addresses))) in krb5_get_init_creds()
1207 request.authorization_data.ciphertext.length = 0; in krb5_get_init_creds()
1208 request.authorization_data.ciphertext.data = 0; in krb5_get_init_creds()
1209 request.unenc_authdata = 0; in krb5_get_init_creds()
1210 request.second_ticket = 0; in krb5_get_init_creds()
1239 request.nonce = (krb5_int32) time_now; in krb5_get_init_creds()
1242 krb5_preauth_prepare_request(context, options, &request); in krb5_get_init_creds()
1243 ret = encode_krb5_kdc_req_body(&request, &encoded_request_body); in krb5_get_init_creds()
1252 if (request.padata) { in krb5_get_init_creds()
1253 krb5_free_pa_data(context, request.padata); in krb5_get_init_creds()
1254 request.padata = NULL; in krb5_get_init_creds()
1259 &request, in krb5_get_init_creds()
1262 preauth_to_use, &request.padata, in krb5_get_init_creds()
1275 &request, in krb5_get_init_creds()
1278 preauth_to_use, &request.padata, in krb5_get_init_creds()
1303 ret = encode_krb5_as_req(&request, &encoded_previous_request); in krb5_get_init_creds()
1313 if ((ret = send_as_request2(context, &request, &err_reply, in krb5_get_init_creds()
1333 &request.server->realm, in krb5_get_init_creds()
1381 if ((ret = sort_krb5_padata_sequence(context, &request.server->realm, in krb5_get_init_creds()
1386 &request, in krb5_get_init_creds()
1417 if ((ret = ((*gak_fct)(context, request.client, in krb5_get_init_creds()
1429 if ((ret = verify_as_reply(context, time_now, &request, local_as_reply))) in krb5_get_init_creds()
1439 if ((ret = stash_as_reply(context, time_now, &request, local_as_reply, in krb5_get_init_creds()
1546 if (request.server) in krb5_get_init_creds()
1547 krb5_free_principal(context, request.server); in krb5_get_init_creds()
1548 if (request.ktype && in krb5_get_init_creds()
1550 free(request.ktype); in krb5_get_init_creds()
1551 if (request.addresses && in krb5_get_init_creds()
1554 krb5_free_addresses(context, request.addresses); in krb5_get_init_creds()
1559 if (request.padata) in krb5_get_init_creds()
1560 krb5_free_pa_data(context, request.padata); in krb5_get_init_creds()