diff options
Diffstat (limited to 'src/include')
| -rw-r--r-- | src/include/k5-int.h | 30 | ||||
| -rw-r--r-- | src/include/krb5/krb5.hin | 3 |
2 files changed, 33 insertions, 0 deletions
diff --git a/src/include/k5-int.h b/src/include/k5-int.h index 6a85a398e..a9769234c 100644 --- a/src/include/k5-int.h +++ b/src/include/k5-int.h @@ -1075,6 +1075,21 @@ typedef struct _krb5_ad_kdcissued { krb5_authdata **elements; } krb5_ad_kdcissued; +typedef struct _krb5_ad_signedpath_data { + krb5_principal client; + krb5_timestamp authtime; + krb5_principal *delegated; + krb5_pa_data **method_data; + krb5_authdata **authorization_data; +} krb5_ad_signedpath_data; + +typedef struct _krb5_ad_signedpath { + krb5_enctype enctype; + krb5_checksum checksum; + krb5_principal *delegated; + krb5_pa_data **method_data; +} krb5_ad_signedpath; + typedef krb5_error_code (*krb5_preauth_obtain_proc) (krb5_context, krb5_pa_data *, @@ -1386,6 +1401,8 @@ void KRB5_CALLCONV krb5_free_fast_response (krb5_context, krb5_fast_response *); void KRB5_CALLCONV krb5_free_ad_kdcissued (krb5_context, krb5_ad_kdcissued *); +void KRB5_CALLCONV krb5_free_ad_signedpath +(krb5_context, krb5_ad_signedpath *); /* #include "krb5/wordsize.h" -- comes in through base-defs.h. */ #include "com_err.h" @@ -1810,6 +1827,10 @@ krb5_error_code encode_krb5_fast_response krb5_error_code encode_krb5_ad_kdcissued (const krb5_ad_kdcissued *, krb5_data **); +krb5_error_code encode_krb5_ad_signedpath +(const krb5_ad_signedpath *, krb5_data **); +krb5_error_code encode_krb5_ad_signedpath_data +(const krb5_ad_signedpath_data *, krb5_data **); /************************************************************************* * End of prototypes for krb5_encode.c @@ -1989,6 +2010,9 @@ krb5_error_code decode_krb5_fast_response krb5_error_code decode_krb5_ad_kdcissued (const krb5_data *, krb5_ad_kdcissued **); +krb5_error_code decode_krb5_ad_signedpath +(const krb5_data *, krb5_ad_signedpath **); + struct _krb5_key_data; /* kdb.h */ struct ldap_seqof_key_data { @@ -3008,6 +3032,12 @@ krb5_get_credentials_for_proxy(krb5_context context, krb5_ticket *evidence_tkt, krb5_creds **out_creds); +krb5_error_code KRB5_CALLCONV +krb5int_get_authdata_containee_types(krb5_context context, + const krb5_authdata *container, + unsigned int *nad_types, + krb5_authdatatype **ad_types); + krb5_error_code krb5int_parse_enctype_list(krb5_context context, char *profstr, krb5_enctype *default_list, krb5_enctype **result); diff --git a/src/include/krb5/krb5.hin b/src/include/krb5/krb5.hin index 464f3fa30..1b03451f6 100644 --- a/src/include/krb5/krb5.hin +++ b/src/include/krb5/krb5.hin @@ -647,6 +647,8 @@ krb5_error_code KRB5_CALLCONV #define KRB5_KEYUSAGE_PA_S4U_X509_USER_REQUEST 26 /* XXX note conflict with above */ #define KRB5_KEYUSAGE_PA_S4U_X509_USER_REPLY 27 /* XXX note conflict with above */ +#define KRB5_KEYUSAGE_AD_SIGNEDPATH -21 + /* define in draft-ietf-krb-wg-preauth-framework*/ #define KRB5_KEYUSAGE_FAST_REQ_CHKSUM 50 #define KRB5_KEYUSAGE_FAST_ENC 51 @@ -1092,6 +1094,7 @@ krb5_error_code KRB5_CALLCONV krb5_verify_checksum #define KRB5_AUTHDATA_SESAME 65 #define KRB5_AUTHDATA_WIN2K_PAC 128 #define KRB5_AUTHDATA_ETYPE_NEGOTIATION 129 /* RFC 4537 */ +#define KRB5_AUTHDATA_SIGNTICKET 142 #define KRB5_AUTHDATA_FX_ARMOR 71 /* password change constants */ |