kdc: Add krb5_is_enctype_old() to determine whether an enctype is older
AES256 and AES128 are newer enctypes because they are officially specified in RFC4120 and RFC8009, while enctypes not officially specified since RFC4120 are considered older. This function differs from older_enctype() in that it does not report unknown or non-existent enctypes as being 'newer'. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
This commit is contained in:
Joseph Sutton
committed by
Luke Howard
Luke Howard
parent
87348cf27a
commit
91e86460cd
@@ -52,6 +52,7 @@ struct _krb5_key_usage;
|
||||
#define F_PSEUDO 0x0010 /* not a real protocol type */
|
||||
#define F_DISABLED 0x0020 /* enctype/checksum disabled */
|
||||
#define F_WEAK 0x0040 /* enctype is considered weak */
|
||||
#define F_OLD 0x0080 /* enctype is old */
|
||||
|
||||
#define F_RFC3961_ENC 0x0100 /* RFC3961 simplified profile */
|
||||
#define F_SPECIAL 0x0200 /* backwards */
|
||||
|
||||
Reference in New Issue
Block a user