diff options
| author | Theodore Tso <tytso@mit.edu> | 1993-06-03 00:24:28 +0000 |
|---|---|---|
| committer | Theodore Tso <tytso@mit.edu> | 1993-06-03 00:24:28 +0000 |
| commit | f9cbaaf6ac664d8f8b69c3ee5abc083f0ee09fab (patch) | |
| tree | d482e6ddfbc0b3c784c113aa0e84d32c2c745e92 /src/lib | |
| parent | da2da9ae4600cd2dde44fb76594a6db171eaa9f5 (diff) | |
Chnages to support the new KRB5_CRED message
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@2566 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/krb5/asn.1/KRB5-asn.py | 35 |
1 files changed, 32 insertions, 3 deletions
diff --git a/src/lib/krb5/asn.1/KRB5-asn.py b/src/lib/krb5/asn.1/KRB5-asn.py index 93692687f..26b40c764 100644 --- a/src/lib/krb5/asn.1/KRB5-asn.py +++ b/src/lib/krb5/asn.1/KRB5-asn.py @@ -237,13 +237,13 @@ KRB-SAFE-BODY ::= SEQUENCE { usec[2] INTEGER OPTIONAL, seq-number[3] INTEGER OPTIONAL, s-address[4] HostAddress, -- sender's addr - r-address[5] HostAddress OPTIONAL -- recip's addr + r-address[5] HostAddress OPTIONAL -- recip's addr } KRB-PRIV ::= [APPLICATION 21] SEQUENCE { pvno[0] INTEGER, msg-type[1] INTEGER, - enc-part[3] EncryptedData -- EncKrbPrivPart + enc-part[3] EncryptedData -- EncKrbPrivPart } EncKrbPrivPart ::= [APPLICATION 28] SEQUENCE { @@ -252,7 +252,36 @@ EncKrbPrivPart ::= [APPLICATION 28] SEQUENCE { usec[2] INTEGER OPTIONAL, seq-number[3] INTEGER OPTIONAL, s-address[4] HostAddress, -- sender's addr - r-address[5] HostAddress OPTIONAL -- recip's addr + r-address[5] HostAddress OPTIONAL -- recip's addr +} + +-- These two definitions are added to allow easy forwarding of +-- credentials. + +KRB-CRED ::= [APPLICATION 22] SEQUENCE { + pvno[0] INTEGER, + msg-type[1] INTEGER, -- KRB_CRED + tickets[2] SEQUENCE OF Ticket, + enc-part[3] EncryptedData -- EncKrbCredPart +} + +EncKrbCredPart ::= [APPLICATION 29] SEQUENCE OF SEQUENCE { + key[0] EncryptionKey, + nonce[1] INTEGER OPTIONAL, + timestamp[2] KerberosTime, + usec[3] INTEGER, + s-address[4] HostAddress OPTIONAL, + r-address[5] HostAddress OPTIONAL, + prealm[6] Realm OPTIONAL, + pname[7] PrincipalName OPTIONAL, + flags[8] TicketFlags OPTIONAL, + authtime[9] KerberosTime OPTIONAL, + starttime[10] KerberosTime OPTIONAL, + endtime[11] KerberosTime OPTIONAL, + renew-till[12] KerberosTime OPTIONAL, + srealm[13] Realm OPTIONAL, + sname[14] PrincipalName OPTIONAL, + caddr[15] HostAddresses OPTIONAL } KRB-ERROR ::= [APPLICATION 30] SEQUENCE { |