[839] in Kerberos_V5_Development
Proposed new API for dealing with forwarded credentials...
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Thu Jan 26 23:36:13 1995
Date: Thu, 26 Jan 1995 23:35:59 +0500
From: Theodore Ts'o <tytso@MIT.EDU>
To: krbdev@MIT.EDU
The following was proposed by Andre Srinivasan from Oracle.... (and he
has code already to back this up.) Please let me know if you have any
comments.
The intent will be to replace the current forwarding code which had been
in appl/bsd and appl/telnet into the following generic routines which
will be in the library.
- Ted
/*
* translate a krb5_kdc_rep into a krb5_creds
*/
krb5_error_code krb5_kdcrep2creds(pkrep, ppcreds)
krb5_kdc_rep *pkrep;
krb5_creds **ppcreds;
/*
* A convenience function that calls krb5_mk_ncred.
*/
krb5_error_code krb5_mk_1cred(pcreds, nonce, s_address, r_address, etype, pkey,
ppdata)
krb5_creds *pcreds;
krb5_int32 nonce;
krb5_address *s_address;
krb5_address *r_address;
krb5_enctype etype;
krb5_keyblock *pkey;
krb5_data **ppdata;
/*
* This functions takes as input an array of krb5_credentials, and
* outputs an encoded KRB_CRED message suitable for krb5_rd_cred
*/
krb5_error_code krb5_mk_ncred(ppcreds, nonce, s_address, r_address, etype,
pkey, ppdata)
krb5_creds **ppcreds;
krb5_int32 nonce;
krb5_address *s_address;
krb5_address *r_address;
krb5_enctype etype;
krb5_keyblock *pkey;
krb5_data **ppdata;
/*/*
* This functions takes as input an KRB_CRED message, validates it, and
* outputs the nonce and an array of the forwarded credentials.
*/
krb5_error_code krb5_rd_cred(pcreddata, nonce, s_address, r_address, pkey,
pppcreds)
krb5_data *pcreddata;
krb5_int32 nonce;
krb5_address *s_address;
krb5_address *r_address;
krb5_keyblock *pkey;
krb5_creds ***pppcreds;
