krb5_get_in_tkt ignores lifetime

author Sam Hartman <hartmans@mit.edu>

Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)

committer Sam Hartman <hartmans@mit.edu>

Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)
author Sam Hartman <hartmans@mit.edu>
Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)
committer Sam Hartman <hartmans@mit.edu>
Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)
diff --git a/src/include/ChangeLog b/src/include/ChangeLog

index 6b87eda61ca501104dedbbd0fa6db193f44dd0bf..cb87feb7a6bf017b24876c78bfcf9d5b7fc050e7 100644 (file)
--- a/src/include/ChangeLog
+++ b/src/include/ChangeLog
@@ -1,3 +1,8 @@
+2004-04-16  Sam Hartman  <hartmans@mit.edu>
+
+       * k5-int.h: krb5int_populate_gic_opt now takes credentials  so it
+       can get lifetime related options out of them 
+
  2004-04-02  Ken Raeburn  <raeburn@mit.edu>
  
         * k5-int.h (krb5int_prng_cleanup): Declare.
diff --git a/src/include/k5-int.h b/src/include/k5-int.h

index d4e0f85b5f5a7878414313a04f7ca27dad10bf42..bd79b6804d4375b80394d050e22a4fddac38604d 100644 (file)
--- a/src/include/k5-int.h
+++ b/src/include/k5-int.h
@@ -957,7 +957,7 @@ krb5_get_init_creds
  void krb5int_populate_gic_opt (
      krb5_context, krb5_get_init_creds_opt *,
      krb5_flags options, krb5_address * const *addrs, krb5_enctype *ktypes,
-    krb5_preauthtype *pre_auth_types);
+    krb5_preauthtype *pre_auth_types, krb5_creds *creds);
  
  
  krb5_error_code krb5_do_preauth
diff --git a/src/lib/krb5/krb/ChangeLog b/src/lib/krb5/krb/ChangeLog

index 139cb5aca31d9f43c235ef1f6b277b6d765694f8..e36fced37d00f343f7a9dd4821aa80672da2df45 100644 (file)
--- a/src/lib/krb5/krb/ChangeLog
+++ b/src/lib/krb5/krb/ChangeLog
@@ -1,3 +1,10 @@
+2004-04-16  Sam Hartman  <hartmans@mit.edu>
+
+
+       * gic_pwd.c (krb5int_populate_gic_opt): Take credentials and populate lifetime options based on them.
+
+       * gic_keytab.c gic_pwd.c :  update callers
+
  2004-04-15  Sam Hartman  <hartmans@mit.edu>
  
         * gic_pwd.c (krb5_get_init_creds_password): Free the as reply in
diff --git a/src/lib/krb5/krb/gic_keytab.c b/src/lib/krb5/krb/gic_keytab.c

index 3a10c55837e2b909e6eca54f01536ef9b8a32625..a3cd443b1d2df9031ee5938e7abd6679196567ef 100644 (file)
--- a/src/lib/krb5/krb/gic_keytab.c
+++ b/src/lib/krb5/krb/gic_keytab.c
@@ -158,7 +158,7 @@ krb5_get_in_tkt_with_keytab(krb5_context context, krb5_flags options,
      
      krb5int_populate_gic_opt(context, &opt,
                              options, addrs, ktypes,
-                            pre_auth_types);
+                            pre_auth_types, creds);
      if (arg_keytab == NULL) {
         retval = krb5_kt_default(context, &keytab);
         if (retval)
diff --git a/src/lib/krb5/krb/gic_pwd.c b/src/lib/krb5/krb/gic_pwd.c

index 79f2e8540eabb144fdfb4951768dd36a17dfa809..de0f47df3d84c90eb484a9c34297a44d34bc34a4 100644 (file)
--- a/src/lib/krb5/krb/gic_pwd.c
+++ b/src/lib/krb5/krb/gic_pwd.c
@@ -376,9 +376,11 @@ cleanup:
  void krb5int_populate_gic_opt (
      krb5_context context, krb5_get_init_creds_opt *opt,
      krb5_flags options, krb5_address * const *addrs, krb5_enctype *ktypes,
-    krb5_preauthtype *pre_auth_types)
+    krb5_preauthtype *pre_auth_types, krb5_creds *creds)
  {
    int i;
+  krb5_int32 starttime;
+
      krb5_get_init_creds_opt_init(opt);
      if (addrs)
        krb5_get_init_creds_opt_set_address_list(opt, (krb5_address **) addrs);
@@ -398,8 +400,11 @@ void krb5int_populate_gic_opt (
      if (options&KDC_OPT_PROXIABLE)
         krb5_get_init_creds_opt_set_proxiable(opt, 1);
      else krb5_get_init_creds_opt_set_proxiable(opt, 0);
-    
-
+    if (creds && creds->times.endtime) {
+        krb5_timeofday(context, &starttime);
+        if (creds->times.starttime) starttime = creds->times.starttime;
+        krb5_get_init_creds_opt_set_tkt_life(opt, creds->times.endtime - starttime);
+    }
  }
  
  /*
@@ -451,7 +456,7 @@ krb5_get_in_tkt_with_password(krb5_context context, krb5_flags options,
      }
      krb5int_populate_gic_opt(context, &opt,
                              options, addrs, ktypes,
-                            pre_auth_types);
+                            pre_auth_types, creds);
      retval = krb5_unparse_name( context, creds->server, &server);
      if (retval)
        return (retval);
author	Sam Hartman <hartmans@mit.edu>
	Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)
committer	Sam Hartman <hartmans@mit.edu>
	Fri, 16 Apr 2004 19:10:24 +0000 (19:10 +0000)
src/include/ChangeLog		patch \| blob \| history
src/include/k5-int.h		patch \| blob \| history
src/lib/krb5/krb/ChangeLog		patch \| blob \| history
src/lib/krb5/krb/gic_keytab.c		patch \| blob \| history
src/lib/krb5/krb/gic_pwd.c		patch \| blob \| history