4.3BSD-Reno/share/man/cat3/krb_realmofhost.0
KRB_REALMOFHOST(3) 4.0 KRB_REALMOFHOST(3)
N�NA�AM�ME�E
krb_realmofhost, krb_get_phost, krb_get_krbhst,
krb_get_admhst, krb_get_lrealm - additional Kerberos utility
routines
S�SY�YN�NO�OP�PS�SI�IS�S
#�#i�in�nc�cl�lu�ud�de�e <�<k�ke�er�rb�be�er�ro�os�sI�IV�V/�/k�kr�rb�b.�.h�h>�>
#�#i�in�nc�cl�lu�ud�de�e <�<k�ke�er�rb�be�er�ro�os�sI�IV�V/�/d�de�es�s.�.h�h>�>
#�#i�in�nc�cl�lu�ud�de�e <�<n�ne�et�ti�in�ne�et�t/�/i�in�n.�.h�h>�>
c�ch�ha�ar�r *�*k�kr�rb�b_�_r�re�ea�al�lm�mo�of�fh�ho�os�st�t(�(h�ho�os�st�t)�)
c�ch�ha�ar�r *�*h�ho�os�st�t;�;
c�ch�ha�ar�r *�*k�kr�rb�b_�_g�ge�et�t_�_p�ph�ho�os�st�t(�(a�al�li�ia�as�s)�)
c�ch�ha�ar�r *�*a�al�li�ia�as�s;�;
k�kr�rb�b_�_g�ge�et�t_�_k�kr�rb�bh�hs�st�t(�(h�ho�os�st�t,�,r�re�ea�al�lm�m,�,n�n)�)
c�ch�ha�ar�r *�*h�ho�os�st�t;�;
c�ch�ha�ar�r *�*r�re�ea�al�lm�m;�;
i�in�nt�t n�n;�;
k�kr�rb�b_�_g�ge�et�t_�_a�ad�dm�mh�hs�st�t(�(h�ho�os�st�t,�,r�re�ea�al�lm�m,�,n�n)�)
c�ch�ha�ar�r *�*h�ho�os�st�t;�;
c�ch�ha�ar�r *�*r�re�ea�al�lm�m;�;
i�in�nt�t n�n;�;
k�kr�rb�b_�_g�ge�et�t_�_l�lr�re�ea�al�lm�m(�(r�re�ea�al�lm�m,�,n�n)�)
c�ch�ha�ar�r *�*r�re�ea�al�lm�m;�;
i�in�nt�t n�n;�;
D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
_�k_�r_�b__�r_�e_�a_�l_�m_�o_�f_�h_�o_�s_�t returns the Kerberos realm of the host _�h_�o_�s_�t,
as determined by the translation table
/_�e_�t_�c/_�k_�e_�r_�b_�e_�r_�o_�s_�I_�V/_�k_�r_�b._�r_�e_�a_�l_�m_�s. _�h_�o_�s_�t should be the fully-
qualified domain-style primary host name of the host in
question. In order to prevent certain security attacks,
this routine must either have _�a _�p_�r_�i_�o_�r_�i knowledge of a host's
realm, or obtain such information securely.
The format of the translation file is described by
_�k_�r_�b._�r_�e_�a_�l_�m_�s(5). If _�h_�o_�s_�t exactly matches a host_name line,
the corresponding realm is returned. Otherwise, if the
domain portion of _�h_�o_�s_�t matches a domain_name line, the
corresponding realm is returned. If _�h_�o_�s_�t contains a domain,
but no translation is found, _�h_�o_�s_�t's domain is converted to
upper-case and returned. If _�h_�o_�s_�t contains no discernable
domain, or an error occurs, the local realm name, as sup-
plied by _�k_�r_�b__�g_�e_�t__�l_�r_�e_�a_�l_�m(3), is returned.
_�k_�r_�b__�g_�e_�t__�p_�h_�o_�s_�t converts the hostname _�a_�l_�i_�a_�s (which can be
either an official name or an alias) into the instance name
to be used in obtaining Kerberos tickets for most services,
Printed 7/27/90 Kerberos 1
KRB_REALMOFHOST(3) 4.0 KRB_REALMOFHOST(3)
including the Berkeley rcmd suite (rlogin, rcp, rsh).
The current convention is to return the first segment of the
official domain-style name after conversion to lower case.
_�k_�r_�b__�g_�e_�t__�k_�r_�b_�h_�s_�t fills in _�h_�o_�s_�t with the hostname of the _�nth
host running a Kerberos key distribution center (KDC) for
realm _�r_�e_�a_�l_�m, as specified in the configuration file
(/_�e_�t_�c/_�k_�e_�r_�b_�e_�r_�o_�s_�I_�V/_�k_�r_�b._�c_�o_�n_�f). The configuration file is
described by _�k_�r_�b._�c_�o_�n_�f(5). If the host is successfully
filled in, the routine returns KSUCCESS. If the file cannot
be opened, and _�n equals 1, then the value of KRB_HOST as
defined in <_�k_�r_�b._�h> is filled in, and KSUCCESS is returned.
If there are fewer than _�n hosts running a Kerberos KDC for
the requested realm, or the configuration file is malformed,
the routine returns KFAILURE.
_�k_�r_�b__�g_�e_�t__�a_�d_�m_�h_�s_�t fills in _�h_�o_�s_�t with the hostname of the _�nth
host running a Kerberos KDC database administration server
for realm _�r_�e_�a_�l_�m, as specified in the configuration file
(/_�e_�t_�c/_�k_�e_�r_�b_�e_�r_�o_�s_�I_�V/_�k_�r_�b._�c_�o_�n_�f). If the file cannot be opened or
is malformed, or there are fewer than _�n hosts running a Ker-
beros KDC database administration server, the routine
returns KFAILURE.
The character arrays used as return values for
_�k_�r_�b__�g_�e_�t__�k_�r_�b_�h_�s_�t, _�k_�r_�b__�g_�e_�t__�a_�d_�m_�h_�s_�t, should be large enough to
hold any hostname (MAXHOSTNAMELEN from <sys/param.h>).
_�k_�r_�b__�g_�e_�t__�l_�r_�e_�a_�l_�m fills in _�r_�e_�a_�l_�m with the _�nth realm of the
local host, as specified in the configuration file. _�r_�e_�a_�l_�m
should be at least REALM_SZ (from <_�k_�r_�b._�h>)characters_�l_�o_�n_�g.
S�SE�EE�E A�AL�LS�SO�O
kerberos(3), krb.conf(5), krb.realms(5)
F�FI�IL�LE�ES�S
/etc/kerberosIV/krb.realms
translation file for host-to-realm map-
ping.
/etc/kerberosIV/krb.conf
local realm-name and realm/server confi-
guration file.
B�BU�UG�GS�S
The current convention for instance names is too limited;
the full domain name should be used.
_�k_�r_�b__�g_�e_�t__�l_�r_�e_�a_�l_�m currently only supports _�n = 1. It should
really consult the user's ticket cache to determine the
user's current realm, rather than consulting a file on the
host.
Printed 7/27/90 Kerberos 2