03656ac1b0
the "core" Kerberos functionality. The rest of the userland will get their own changes later.
106 lines
3.3 KiB
C
106 lines
3.3 KiB
C
/*
|
|
* $Id: prot.h,v 1.7 1997/03/23 03:52:27 joda Exp $
|
|
*
|
|
* Copyright 1985, 1986, 1987, 1988 by the Massachusetts Institute
|
|
* of Technology.
|
|
*
|
|
* For copying and distribution information, please see the file
|
|
* <mit-copyright.h>.
|
|
*
|
|
* Include file with authentication protocol information.
|
|
*/
|
|
|
|
#ifndef PROT_DEFS
|
|
#define PROT_DEFS
|
|
|
|
#define KRB_SERVICE "kerberos-iv"
|
|
#define KRB_PORT 750 /* PC's don't have
|
|
* /etc/services */
|
|
#define KRB_PROT_VERSION 4
|
|
#define MAX_PKT_LEN 1000
|
|
#define MAX_TXT_LEN 1000
|
|
|
|
/* Macro's to obtain various fields from a packet */
|
|
|
|
#define pkt_version(packet) (unsigned int) *(packet->dat)
|
|
#define pkt_msg_type(packet) (unsigned int) *(packet->dat+1)
|
|
#define pkt_a_name(packet) (packet->dat+2)
|
|
#define pkt_a_inst(packet) \
|
|
(packet->dat+3+strlen((char *)pkt_a_name(packet)))
|
|
#define pkt_a_realm(packet) \
|
|
(pkt_a_inst(packet)+1+strlen((char *)pkt_a_inst(packet)))
|
|
|
|
/* Macro to obtain realm from application request */
|
|
#define apreq_realm(auth) (auth->dat + 3)
|
|
|
|
#define pkt_time_ws(packet) (char *) \
|
|
(packet->dat+5+strlen((char *)pkt_a_name(packet)) + \
|
|
strlen((char *)pkt_a_inst(packet)) + \
|
|
strlen((char *)pkt_a_realm(packet)))
|
|
|
|
#define pkt_no_req(packet) (unsigned short) \
|
|
*(packet->dat+9+strlen((char *)pkt_a_name(packet)) + \
|
|
strlen((char *)pkt_a_inst(packet)) + \
|
|
strlen((char *)pkt_a_realm(packet)))
|
|
#define pkt_x_date(packet) (char *) \
|
|
(packet->dat+10+strlen((char *)pkt_a_name(packet)) + \
|
|
strlen((char *)pkt_a_inst(packet)) + \
|
|
strlen((char *)pkt_a_realm(packet)))
|
|
#define pkt_err_code(packet) ( (char *) \
|
|
(packet->dat+9+strlen((char *)pkt_a_name(packet)) + \
|
|
strlen((char *)pkt_a_inst(packet)) + \
|
|
strlen((char *)pkt_a_realm(packet))))
|
|
#define pkt_err_text(packet) \
|
|
(packet->dat+13+strlen((char *)pkt_a_name(packet)) + \
|
|
strlen((char *)pkt_a_inst(packet)) + \
|
|
strlen((char *)pkt_a_realm(packet)))
|
|
|
|
/* Routines to create and read packets may be found in prot.c */
|
|
|
|
KTEXT create_auth_reply(char *pname, char *pinst, char *prealm,
|
|
int32_t time_ws, int n, u_int32_t x_date,
|
|
int kvno, KTEXT cipher);
|
|
#ifdef DEBUG
|
|
KTEXT krb_create_death_packet(char *a_name);
|
|
#endif
|
|
|
|
/* Message types , always leave lsb for byte order */
|
|
|
|
#define AUTH_MSG_KDC_REQUEST 1<<1
|
|
#define AUTH_MSG_KDC_REPLY 2<<1
|
|
#define AUTH_MSG_APPL_REQUEST 3<<1
|
|
#define AUTH_MSG_APPL_REQUEST_MUTUAL 4<<1
|
|
#define AUTH_MSG_ERR_REPLY 5<<1
|
|
#define AUTH_MSG_PRIVATE 6<<1
|
|
#define AUTH_MSG_SAFE 7<<1
|
|
#define AUTH_MSG_APPL_ERR 8<<1
|
|
#define AUTH_MSG_KDC_FORWARD 9<<1
|
|
#define AUTH_MSG_KDC_RENEW 10<<1
|
|
#define AUTH_MSG_DIE 63<<1
|
|
|
|
/* values for kerb error codes */
|
|
|
|
#define KERB_ERR_OK 0
|
|
#define KERB_ERR_NAME_EXP 1
|
|
#define KERB_ERR_SERVICE_EXP 2
|
|
#define KERB_ERR_AUTH_EXP 3
|
|
#define KERB_ERR_PKT_VER 4
|
|
#define KERB_ERR_NAME_MAST_KEY_VER 5
|
|
#define KERB_ERR_SERV_MAST_KEY_VER 6
|
|
#define KERB_ERR_BYTE_ORDER 7
|
|
#define KERB_ERR_PRINCIPAL_UNKNOWN 8
|
|
#define KERB_ERR_PRINCIPAL_NOT_UNIQUE 9
|
|
#define KERB_ERR_NULL_KEY 10
|
|
#define KERB_ERR_TIMEOUT 11
|
|
|
|
/* sendauth - recvauth */
|
|
|
|
/*
|
|
* If the protocol changes, you will need to change the version string
|
|
* be sure to support old versions of krb_sendauth!
|
|
*/
|
|
|
|
#define KRB_SENDAUTH_VERS "AUTHV0.1" /* MUST be KRB_SENDAUTH_VLEN chars */
|
|
|
|
#endif /* PROT_DEFS */
|