diff options
author | Greg Hudson <ghudson@mit.edu> | 2009-11-14 04:46:30 +0000 |
---|---|---|
committer | Greg Hudson <ghudson@mit.edu> | 2009-11-14 04:46:30 +0000 |
commit | 0524889196c42d81dcc4c74277522b46f987cabb (patch) | |
tree | 9f906eb1a4a32346ae94837c4fe199410e2dd10f /src/tests/asn.1/ktest_equal.c | |
parent | 26044e2a3c3104b9c3f32a6ae58145e7e6394672 (diff) | |
download | krb5-0524889196c42d81dcc4c74277522b46f987cabb.tar.gz krb5-0524889196c42d81dcc4c74277522b46f987cabb.tar.xz krb5-0524889196c42d81dcc4c74277522b46f987cabb.zip |
Constrained delegation without PAC support
Merge Luke's users/lhoward/s4u2proxy branch to trunk. Implements a
Heimdal-compatible mechanism for allowing constrained delegation
without back-end support for PACs. Back-end support exists in LDAP
only (via a new krbAllowedToDelegateTo attribute), not DB2.
ticket: 6580
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23160 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/tests/asn.1/ktest_equal.c')
-rw-r--r-- | src/tests/asn.1/ktest_equal.c | 36 |
1 files changed, 36 insertions, 0 deletions
diff --git a/src/tests/asn.1/ktest_equal.c b/src/tests/asn.1/ktest_equal.c index 5479f8047a..67c8d7e4f8 100644 --- a/src/tests/asn.1/ktest_equal.c +++ b/src/tests/asn.1/ktest_equal.c @@ -570,6 +570,35 @@ int ktest_equal_ad_kdcissued(ref, var) return p; } +int ktest_equal_ad_signedpath_data(ref, var) + krb5_ad_signedpath_data *ref; + krb5_ad_signedpath_data *var; +{ + int p = TRUE; + if (ref == var) return TRUE; + else if (ref == NULL || var == NULL) return FALSE; + p=p&&ptr_equal(client,ktest_equal_principal_data); + p=p&&scalar_equal(authtime); + p=p&&ptr_equal(delegated,ktest_equal_sequence_of_principal); + p=p&&ptr_equal(method_data,ktest_equal_sequence_of_pa_data); + p=p&&ptr_equal(authorization_data,ktest_equal_authorization_data); + return p; +} + +int ktest_equal_ad_signedpath(ref, var) + krb5_ad_signedpath* ref; + krb5_ad_signedpath* var; +{ + int p = TRUE; + if (ref == var) return TRUE; + else if (ref == NULL || var == NULL) return FALSE; + p=p&&scalar_equal(enctype); + p=p&&struct_equal(checksum,ktest_equal_checksum); + p=p&&ptr_equal(delegated,ktest_equal_sequence_of_principal); + p=p&&ptr_equal(method_data,ktest_equal_sequence_of_pa_data); + return p; +} + #ifdef ENABLE_LDAP static int equal_key_data(ref, var) krb5_key_data *ref; @@ -721,6 +750,13 @@ int ktest_equal_sequence_of_cred_info(ref, var) array_compare(ktest_equal_cred_info); } +int ktest_equal_sequence_of_principal(ref, var) + krb5_principal * ref; + krb5_principal * var; +{ + array_compare(ktest_equal_principal_data); +} + int ktest_equal_array_of_passwd_phrase_element(ref, var) passwd_phrase_element ** ref; passwd_phrase_element ** var; |