sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-24 02:04:21 +03:00
Code

s4:kdc: Add function to determine whether a KDC entry represents a trust

Browse Source 
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
This commit is contained in:
Joseph Sutton 2023-09-29 20:11:52 +13:00 committed by Joseph Sutton
parent 1ea4b27162
commit 79b33eeacc
2 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
source4/kdc/pac-glue.c
View File

@ -854,6 +854,11 @@ NTSTATUS samba_kdc_add_compounded_auth(enum samba_compounded_auth compounded_aut
return NT_STATUS_INVALID_PARAMETER;
}
bool samba_kdc_entry_is_trust(const struct samba_kdc_entry *entry)
{
return entry != NULL && entry->is_trust;
}
/*
* Return true if this entry has an associated PAC issued or signed by a KDC
* that our KDC trusts. We trust the main krbtgt account, but we dont trust any

2
source4/kdc/pac-glue.h
View File

@ -57,6 +57,8 @@ enum {
SAMBA_KDC_FLAG_DELEGATED_PROXY_IS_TRUSTED = 0x00000040,
};
bool samba_kdc_entry_is_trust(const struct samba_kdc_entry *entry);
struct samba_kdc_entry_pac {
struct samba_kdc_entry *entry;
krb5_const_pac pac; /* NULL indicates that no PAC is present. */