Provided by: heimdal-dev_7.8.git20221117.28daf24+dfsg-1ubuntu1_amd64
NAME
krb5_string_to_key, krb5_string_to_key_data, krb5_string_to_key_data_salt, krb5_string_to_key_data_salt_opaque, krb5_string_to_key_salt, krb5_string_to_key_salt_opaque, krb5_get_pw_salt, krb5_free_salt — turns a string to a Kerberos key
LIBRARY
Kerberos 5 Library (libkrb5, -lkrb5)
SYNOPSIS
#include <krb5.h> krb5_error_code krb5_string_to_key(krb5_context context, krb5_enctype enctype, const char *password, krb5_principal principal, krb5_keyblock *key); krb5_error_code krb5_string_to_key_data(krb5_context context, krb5_enctype enctype, krb5_data password, krb5_principal principal, krb5_keyblock *key); krb5_error_code krb5_string_to_key_data_salt(krb5_context context, krb5_enctype enctype, krb5_data password, krb5_salt salt, krb5_keyblock *key); krb5_error_code krb5_string_to_key_data_salt_opaque(krb5_context context, krb5_enctype enctype, krb5_data password, krb5_salt salt, krb5_data opaque, krb5_keyblock *key); krb5_error_code krb5_string_to_key_salt(krb5_context context, krb5_enctype enctype, const char *password, krb5_salt salt, krb5_keyblock *key); krb5_error_code krb5_string_to_key_salt_opaque(krb5_context context, krb5_enctype enctype, const char *password, krb5_salt salt, krb5_data opaque, krb5_keyblock *key); krb5_error_code krb5_get_pw_salt(krb5_context context, krb5_const_principal principal, krb5_salt *salt); krb5_error_code krb5_free_salt(krb5_context context, krb5_salt salt);
DESCRIPTION
The string to key functions convert a string to a kerberos key. krb5_string_to_key_data_salt_opaque() is the function that does all the work, the rest of the functions are just wrappers around krb5_string_to_key_data_salt_opaque() that calls it with default values. krb5_string_to_key_data_salt_opaque() transforms the password with the given salt-string salt and the opaque, encryption type specific parameter opaque to a encryption key key according to the string to key function associated with enctype. The key should be freed with krb5_free_keyblock_contents(). If one of the functions that doesn't take a krb5_salt as it argument krb5_get_pw_salt() is used to get the salt value. krb5_get_pw_salt() get the default password salt for a principal, use krb5_free_salt() to free the salt when done. krb5_free_salt() frees the content of salt.
SEE ALSO
krb5(3), krb5_data(3), krb5_keyblock(3), kerberos(8)