#include "gssapiP_krb5.h"
OM_uint32
krb5_gss_release_cred(minor_status, cred_handle)
OM_uint32 *minor_status;
gss_cred_id_t *cred_handle;
{
krb5_context context;
krb5_gss_cred_id_t cred;
krb5_error_code code1, code2, code3;
code1 = krb5_gss_init_context(&context);
if (code1) {
*minor_status = code1;
return GSS_S_FAILURE;
}
if (*cred_handle == GSS_C_NO_CREDENTIAL) {
*minor_status = 0;
krb5_free_context(context);
return(GSS_S_COMPLETE);
}
if (! kg_delete_cred_id(*cred_handle)) {
*minor_status = (OM_uint32) G_VALIDATE_FAILED;
krb5_free_context(context);
return(GSS_S_CALL_BAD_STRUCTURE|GSS_S_NO_CRED);
}
cred = (krb5_gss_cred_id_t)*cred_handle;
k5_mutex_destroy(&cred->lock);
if (cred->ccache)
code1 = krb5_cc_close(context, cred->ccache);
else
code1 = 0;
#ifndef LEAN_CLIENT
if (cred->keytab)
code2 = krb5_kt_close(context, cred->keytab);
else
#endif
code2 = 0;
if (cred->rcache)
code3 = krb5_rc_close(context, cred->rcache);
else
code3 = 0;
if (cred->princ)
krb5_free_principal(context, cred->princ);
if (cred->req_enctypes)
free(cred->req_enctypes);
xfree(cred);
*cred_handle = NULL;
*minor_status = 0;
if (code1)
*minor_status = code1;
if (code2)
*minor_status = code2;
if (code3)
*minor_status = code3;
if (*minor_status)
save_error_info(*minor_status, context);
krb5_free_context(context);
return(*minor_status?GSS_S_FAILURE:GSS_S_COMPLETE);
}