crypto/dist/heimdal/kuser/kverify.c

   1 /*
   2  * Copyright (c) 1997 - 2005, 2007 Kungliga Tekniska Högskolan
   3  * (Royal Institute of Technology, Stockholm, Sweden).
   4  * All rights reserved.
   5  *
   6  * Redistribution and use in source and binary forms, with or without
   7  * modification, are permitted provided that the following conditions
   8  * are met:
   9  *
  10  * 1. Redistributions of source code must retain the above copyright
  11  *    notice, this list of conditions and the following disclaimer.
  12  *
  13  * 2. Redistributions in binary form must reproduce the above copyright
  14  *    notice, this list of conditions and the following disclaimer in the
  15  *    documentation and/or other materials provided with the distribution.
  16  *
  17  * 3. Neither the name of the Institute nor the names of its contributors
  18  *    may be used to endorse or promote products derived from this software
  19  *    without specific prior written permission.
  20  *
  21  * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
  22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
  25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  31  * SUCH DAMAGE.
  32  */
  33
  34 #include "kuser_locl.h"
  35
  36 __RCSID("$Heimdal: kverify.c 19920 2007-01-15 23:21:32Z lha $"
  37         "$NetBSD$");
  38
  39 static int help_flag = 0;
  40 static int version_flag = 0;
  41
  42 static struct getargs args[] = {
  43     { "version",        0,   arg_flag, &version_flag },
  44     { "help",           0,   arg_flag, &help_flag }
  45 };
  46
  47 static void
  48 usage (int ret)
  49 {
  50     arg_printusage (args,
  51                     sizeof(args)/sizeof(*args),
  52                     NULL,
  53                     "[principal]");
  54     exit (ret);
  55 }
  56
  57 int
  58 main(int argc, char **argv)
  59 {
  60     krb5_context context;
  61     krb5_error_code ret;
  62     krb5_creds cred;
  63     krb5_preauthtype pre_auth_types[] = {KRB5_PADATA_ENC_TIMESTAMP};
  64     krb5_get_init_creds_opt *get_options;
  65     krb5_verify_init_creds_opt verify_options;
  66     krb5_principal principal = NULL;
  67     int optidx = 0;
  68
  69     setprogname (argv[0]);
  70
  71     if(getarg(args, sizeof(args) / sizeof(args[0]), argc, argv, &optidx))
  72         usage(1);
  73
  74     if (help_flag)
  75         usage (0);
  76
  77     if(version_flag) {
  78         print_version(NULL);
  79         exit(0);
  80     }
  81
  82     argc -= optidx;
  83     argv += optidx;
  84
  85     ret = krb5_init_context(&context);
  86     if (ret)
  87         errx (1, "krb5_init_context failed: %d", ret);
  88
  89     ret = krb5_get_init_creds_opt_alloc (context, &get_options);
  90     if (ret)
  91         krb5_err(context, 1, ret, "krb5_get_init_creds_opt_alloc");
  92
  93     krb5_get_init_creds_opt_set_preauth_list (get_options,
  94                                               pre_auth_types,
  95                                               1);
  96
  97     krb5_verify_init_creds_opt_init (&verify_options);
  98
  99     if (argc) {
 100         ret = krb5_parse_name(context, argv[0], &principal);
 101         if (ret)
 102             krb5_err(context, 1, ret, "krb5_parse_name: %s", argv[0]);
 103     }
 104
 105     ret = krb5_get_init_creds_password (context,
 106                                         &cred,
 107                                         principal,
 108                                         NULL,
 109                                         krb5_prompter_posix,
 110                                         NULL,
 111                                         0,
 112                                         NULL,
 113                                         get_options);
 114     if (ret)
 115         errx (1, "krb5_get_init_creds: %s", krb5_get_err_text(context, ret));
 116
 117     ret = krb5_verify_init_creds (context,
 118                                   &cred,
 119                                   NULL,
 120                                   NULL,
 121                                   NULL,
 122                                   &verify_options);
 123     if (ret)
 124         errx (1, "krb5_verify_init_creds: %s",
 125               krb5_get_err_text(context, ret));
 126     krb5_free_cred_contents (context, &cred);
 127     krb5_free_context (context);
 128     return 0;
 129 }