blob: e36cfd459b051c9ff3c7e6dce64676505b5238c5 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
|
krb5_rd_cred - Read and validate a KRB-CRED message.
======================================================
..
.. c:function:: krb5_error_code krb5_rd_cred(krb5_context context, krb5_auth_context auth_context, krb5_data * creddata, krb5_creds *** creds_out, krb5_replay_data * rdata_out)
..
:param:
**[in]** **context** - Library context
**[in]** **auth_context** - Authentication context
**[in]** **creddata** - **KRB-CRED** message
**[out]** **creds_out** - Null-terminated array of forwarded credentials
**[out]** **rdata_out** - Replay data (NULL if not needed)
..
:retval:
- 0 Success; otherwise - Kerberos error codes
..
*creddata* will be decrypted using the receiving subkey if it is present in *auth_context* , or the session key if the receiving subkey is not present or fails to decrypt the message.
Use krb5_free_tgt_creds() to free *creds_out* when it is no longer needed.
..
.. note::
The *rdata_out* argument is required if the KRB5_AUTH_CONTEXT_RET_TIME or KRB5_AUTH_CONTEXT_RET_SEQUENCE flag is set in *auth_context* .`
|
