krb5: krb5_cc_ops backward compatibility and extensibility
The krb5_cc_ops structure is an extensible structure to which new
functionality has been added over the years.
Version zero was the original. It included all functions up to
and including get_default_name().
Version one added set_default().
Version two added lastchange().
Version three added set_kdc_offset() and get_kdc_offset().
Version four broke compatibility by modifying the signatures
of get_name() and resolve(). This was in change
7bf4d76e75 ("krb5: Improve cccol sub
naming; add gss_store_cred_into2()").
Version five restores the original signatures of get_name()
and resolve() and introduces get_name_2() and resolve_2() that
provide the additional cccol functionality.
This change
* introduces version five
* documents which functions are part of each version
* replaces KRB5_CC_OPS_VERSION with KRB5_CC_OPS_VERSION_0,
KRB5_CC_OPS_VERSION_1, KRB5_CC_OPS_VERSION_2, KRB5_CC_OPS_VERSION_3,
and KRB5_CC_OPS_VERSION_5. KRB5_CC_OPS_VERSION_4 is skipped
because of the aforementioned breakage.
* compatibility logic is added to permit ccache plugins to implement
any of version one, two, three, five or a future version.
* all in-tree krb5_cc_ops implementations are updated to version 5.
Change-Id: Iadfce01d10834bc6151939e4d9d196f03001626e
This commit is contained in:
Jeffrey Altman
committed by
Nico Williams
Nico Williams
parent
33bb2479b9
commit
d84512b8d2
@@ -491,16 +491,19 @@ typedef struct krb5_creds {
|
||||
|
||||
typedef struct krb5_cc_cache_cursor_data *krb5_cc_cache_cursor;
|
||||
|
||||
#define KRB5_CC_OPS_VERSION 4
|
||||
#define KRB5_CC_OPS_VERSION_0 0
|
||||
#define KRB5_CC_OPS_VERSION_1 1
|
||||
#define KRB5_CC_OPS_VERSION_2 2
|
||||
#define KRB5_CC_OPS_VERSION_3 3
|
||||
#define KRB5_CC_OPS_VERSION_5 5
|
||||
|
||||
/* Only extend the structure. Do not change signatures. */
|
||||
typedef struct krb5_cc_ops {
|
||||
/* Version 0 */
|
||||
int version;
|
||||
const char *prefix;
|
||||
krb5_error_code (KRB5_CALLCONV * get_name)(krb5_context, krb5_ccache,
|
||||
const char **, const char **,
|
||||
const char **);
|
||||
krb5_error_code (KRB5_CALLCONV * resolve)(krb5_context, krb5_ccache *, const char *,
|
||||
const char *);
|
||||
const char* (KRB5_CALLCONV * get_name)(krb5_context, krb5_ccache);
|
||||
krb5_error_code (KRB5_CALLCONV * resolve)(krb5_context, krb5_ccache *, const char *);
|
||||
krb5_error_code (KRB5_CALLCONV * gen_new)(krb5_context, krb5_ccache *);
|
||||
krb5_error_code (KRB5_CALLCONV * init)(krb5_context, krb5_ccache, krb5_principal);
|
||||
krb5_error_code (KRB5_CALLCONV * destroy)(krb5_context, krb5_ccache);
|
||||
@@ -523,10 +526,20 @@ typedef struct krb5_cc_ops {
|
||||
krb5_error_code (KRB5_CALLCONV * end_cache_get)(krb5_context, krb5_cc_cursor);
|
||||
krb5_error_code (KRB5_CALLCONV * move)(krb5_context, krb5_ccache, krb5_ccache);
|
||||
krb5_error_code (KRB5_CALLCONV * get_default_name)(krb5_context, char **);
|
||||
/* Version 1 */
|
||||
krb5_error_code (KRB5_CALLCONV * set_default)(krb5_context, krb5_ccache);
|
||||
/* Version 2 */
|
||||
krb5_error_code (KRB5_CALLCONV * lastchange)(krb5_context, krb5_ccache, krb5_timestamp *);
|
||||
/* Version 3 */
|
||||
krb5_error_code (KRB5_CALLCONV * set_kdc_offset)(krb5_context, krb5_ccache, krb5_deltat);
|
||||
krb5_error_code (KRB5_CALLCONV * get_kdc_offset)(krb5_context, krb5_ccache, krb5_deltat *);
|
||||
/* Version 5 */
|
||||
krb5_error_code (KRB5_CALLCONV * get_name_2)(krb5_context, krb5_ccache,
|
||||
const char **id, const char **res,
|
||||
const char **sub);
|
||||
krb5_error_code (KRB5_CALLCONV * resolve_2)(krb5_context, krb5_ccache *id, const char *res,
|
||||
const char *sub);
|
||||
/* Add new functions here for versions 6 and above */
|
||||
} krb5_cc_ops;
|
||||
|
||||
typedef struct heim_config_binding krb5_config_binding;
|
||||
|
||||
Reference in New Issue
Block a user