oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Rename HDB-Ext-PKINIT-certificate to HDB-Ext-PKINIT-hash.

Browse Source 
Add trust anchor to HDB-Ext-PKINIT-acl.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17829 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2006-07-13 18:22:22 +00:00
parent ae8b26789f
commit c0c59a96f2
1 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
lib/hdb/hdb.asn1
View File

@@ -54,10 +54,14 @@ GENERATION ::= SEQUENCE {
HDB-Ext-PKINIT-acl ::= SEQUENCE OF SEQUENCE { HDB-Ext-PKINIT-acl ::= SEQUENCE OF SEQUENCE {
subject[0] UTF8String, subject[0] UTF8String,
issuer[1] UTF8String issuer[1] UTF8String OPTIONAL,
anchor[2] UTF8String OPTIONAL
} }
HDB-Ext-PKINIT-certificate ::= SEQUENCE OF OCTET STRING HDB-Ext-PKINIT-hash ::= SEQUENCE OF SEQUENCE {
digest-type[0] OBJECT IDENTIFIER,
digest[1] OCTET STRING
}
HDB-Ext-Constrained-delegation-acl ::= SEQUENCE OF Principal HDB-Ext-Constrained-delegation-acl ::= SEQUENCE OF Principal
@@ -82,7 +86,7 @@ HDB-extension ::= SEQUENCE {
-- be rejected -- be rejected
data[1] CHOICE { data[1] CHOICE {
pkinit-acl[0] HDB-Ext-PKINIT-acl, pkinit-acl[0] HDB-Ext-PKINIT-acl,
pkinit-cert[1] HDB-Ext-PKINIT-certificate, pkinit-cert-hash[1] HDB-Ext-PKINIT-hash,
allowed-to-delegate-to[2] HDB-Ext-Constrained-delegation-acl, allowed-to-delegate-to[2] HDB-Ext-Constrained-delegation-acl,
-- referral-info[3] HDB-Ext-Referrals, -- referral-info[3] HDB-Ext-Referrals,
lm-owf[4] HDB-Ext-Lan-Manager-OWF, lm-owf[4] HDB-Ext-Lan-Manager-OWF,