NAME¶

krb5_check_transited, krb5_check_transited_realms, krb5_domain_x500_decode, krb5_domain_x500_encode — realm transit verification and encoding/decoding functions

LIBRARY¶

Kerberos 5 Library (libkrb5, -lkrb5)

SYNOPSIS¶

#include <krb5.h>

krb5_error_code
krb5_check_transited(krb5_context context, krb5_const_realm client_realm, krb5_const_realm server_realm, krb5_realm *realms, int num_realms, int *bad_realm);

krb5_error_code
krb5_check_transited_realms(krb5_context context, const char *const *realms, int num_realms, int *bad_realm);

krb5_error_code
krb5_domain_x500_decode(krb5_context context, krb5_data tr, char ***realms, int *num_realms, const char *client_realm, const char *server_realm);

krb5_error_code
krb5_domain_x500_encode(char **realms, int num_realms, krb5_data *encoding);

DESCRIPTION¶

krb5_check_transited() checks the path from client_realm to server_realm where realms and num_realms is the realms between them. If the function returns an error value, bad_realm will be set to the realm in the list causing the error. krb5_check_transited() is used internally by the KDC and libkrb5 and should not be called by client applications.

krb5_check_transited_realms() is deprecated.

krb5_domain_x500_encode() and krb5_domain_x500_decode() encodes and decodes the realm names in the X500 format that Kerberos uses to describe the transited realms in krbtgts.

Source file:	krb5_check_transited.3.en.gz (from heimdal-dev 7.8.git20221117.28daf24+dfsg-4)
Source last updated:	2024-01-03T00:43:58Z
Converted to HTML:	2024-03-25T04:51:57Z

NAME¶

LIBRARY¶

SYNOPSIS¶

DESCRIPTION¶

SEE ALSO¶