add sam encoders, decoders, including "optional string" macros

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7771 dc483132-0cff-0310-8789-dd5450dbe970
author: Mark Eichin <eichin@mit.edu> 1996-04-09 22:51:38 +0000
committer: Mark Eichin <eichin@mit.edu> 1996-04-09 22:51:38 +0000
commit: e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a (patch)
tree: 5671d58ff08a08fd5e01c8a9ed67d508c17c990d /src/lib/krb5/asn.1/KRB5-asn.py
parent: 9c71d7d00b78e804e4e2ba0400d3c65a20c9bc8b (diff)
download: krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.zip
krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.tar.gz
krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.tar.bz2
1 files changed, 46 insertions, 0 deletions
diff --git a/src/lib/krb5/asn.1/KRB5-asn.py b/src/lib/krb5/asn.1/KRB5-asn.py
index 036d10d..73afd94 100644
--- a/src/lib/krb5/asn.1/KRB5-asn.py
+++ b/src/lib/krb5/asn.1/KRB5-asn.py
@@ -349,4 +349,50 @@ PasswdData ::= SEQUENCE {
 	passwd-sequence[1]		SEQUENCE OF PasswdSequence
 }
 
+-- encodings from 
+-- Integrating Single-use Authentication Mechanisms with Kerberos
+
+PA-SAM-CHALLENGE ::= SEQUENCE {
+    sam-type[0]                 INTEGER,
+    sam-flags[1]                SAMFlags,
+    sam-type-name[2]            GeneralString OPTIONAL,
+    sam-track-id[3]             GeneralString OPTIONAL,
+    sam-challenge-label[4]      GeneralString OPTIONAL,
+    sam-challenge[5]            GeneralString OPTIONAL,
+    sam-response-prompt[6]      GeneralString OPTIONAL,
+    sam-pk-for-sad[7]           EncryptionKey OPTIONAL,
+    sam-nonce[8]                INTEGER OPTIONAL,
+    sam-cksum[9]                Checksum OPTIONAL
+}
+
+-- these are [0].. [2] in the draft
+SAMFlags ::= BIT STRING {
+    use-sad-as-key(0),
+    send-encrypted-sad(1),
+    must-pk-encrypt-sad(2)
+}
+
+PA-SAM-RESPONSE ::= SEQUENCE {
+    sam-type[0]                 INTEGER,
+    sam-flags[1]                SAMFlags,
+    sam-track-id[2]             GeneralString OPTIONAL,
+    -- sam-enc-key is reserved for future use, so I'm making it OPTIONAL - mwe
+    sam-enc-key[3]              EncryptedData
+                                   -- PA-ENC-SAM-KEY,
+    sam-enc-nonce-or-ts[4]      EncryptedData
+                                   -- PA-ENC-SAM-RESPONSE-ENC,
+    sam-nonce[5]                INTEGER OPTIONAL,
+    sam-patimestamp[6]          KerberosTime OPTIONAL
+}
+
+PA-ENC-SAM-KEY ::= SEQUENCE {
+             sam-key[0]                 EncryptionKey
+}
+
+PA-ENC-SAM-RESPONSE-ENC ::= SEQUENCE {
+     sam-nonce[0]               INTEGER OPTIONAL,
+     sam-timestamp[1]           KerberosTime OPTIONAL,
+     sam-usec[2]                INTEGER OPTIONAL,
+     sam-passcode[3]            GeneralString OPTIONAL
+}
 END
author	Mark Eichin <eichin@mit.edu>	1996-04-09 22:51:38 +0000
committer	Mark Eichin <eichin@mit.edu>	1996-04-09 22:51:38 +0000
commit	e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a (patch)
tree	5671d58ff08a08fd5e01c8a9ed67d508c17c990d /src/lib/krb5/asn.1/KRB5-asn.py
parent	9c71d7d00b78e804e4e2ba0400d3c65a20c9bc8b (diff)
download	krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.zip krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.tar.gz krb5-e38ac4f90c324b76d6ffcd3a84a9ee8a3a8d7b6a.tar.bz2