diff options
| author | Cy Schubert <cy@FreeBSD.org> | 2025-03-19 22:12:25 +0000 |
|---|---|---|
| committer | Cy Schubert <cy@FreeBSD.org> | 2025-03-19 22:12:25 +0000 |
| commit | 8f7d3ef26dec89a92ec0665de84a5936310a5574 (patch) | |
| tree | 9a465418bd4056bf0d369751320a414eaed29fa4 /doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt | |
| parent | 1a79b20663ca26acc2998b90ea2ff2aefd8af5b1 (diff) | |
Diffstat (limited to 'doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt')
| -rw-r--r-- | doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt b/doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt index e607080cfc17..0d9922ecb2af 100644 --- a/doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt +++ b/doc/html/_sources/appdev/refs/api/krb5_mk_priv.rst.txt @@ -36,7 +36,7 @@ krb5_mk_priv - Format a KRB-PRIV message. -This function is similar to :c:func:`krb5_mk_safe()` , but the message is encrypted and integrity-protected, not just integrity-protected. +This function is similar to krb5_mk_safe(), but the message is encrypted and integrity-protected, not just integrity-protected. @@ -44,15 +44,15 @@ The local address in *auth_context* must be set, and is used to form the sender -If the :data:`KRB5_AUTH_CONTEXT_DO_TIME` flag is set in *auth_context* , a timestamp is included in the KRB-PRIV message, and an entry for the message is entered in an in-memory replay cache to detect if the message is reflected by an attacker. If :data:`KRB5_AUTH_CONTEXT_DO_TIME` is not set, no replay cache is used. If :data:`KRB5_AUTH_CONTEXT_RET_TIME` is set in *auth_context* , a timestamp is included in the KRB-PRIV message and is stored in *rdata_out* . +If the #KRB5_AUTH_CONTEXT_DO_TIME flag is set in *auth_context* , a timestamp is included in the KRB-PRIV message, and an entry for the message is entered in an in-memory replay cache to detect if the message is reflected by an attacker. If #KRB5_AUTH_CONTEXT_DO_TIME is not set, no replay cache is used. If #KRB5_AUTH_CONTEXT_RET_TIME is set in *auth_context* , a timestamp is included in the KRB-PRIV message and is stored in *rdata_out* . -If either :data:`KRB5_AUTH_CONTEXT_DO_SEQUENCE` or :data:`KRB5_AUTH_CONTEXT_RET_SEQUENCE` is set, the *auth_context* local sequence number is included in the KRB-PRIV message and then incremented. If :data:`KRB5_AUTH_CONTEXT_RET_SEQUENCE` is set, the sequence number used is stored in *rdata_out* . +If either #KRB5_AUTH_CONTEXT_DO_SEQUENCE or #KRB5_AUTH_CONTEXT_RET_SEQUENCE is set, the *auth_context* local sequence number is included in the KRB-PRIV message and then incremented. If #KRB5_AUTH_CONTEXT_RET_SEQUENCE is set, the sequence number used is stored in *rdata_out* . -Use :c:func:`krb5_free_data_contents()` to free *der_out* when it is no longer needed. +Use krb5_free_data_contents() to free *der_out* when it is no longer needed. @@ -72,7 +72,7 @@ Use :c:func:`krb5_free_data_contents()` to free *der_out* when it is no longer n .. note:: - The *rdata_out* argument is required if the :data:`KRB5_AUTH_CONTEXT_RET_TIME` or :data:`KRB5_AUTH_CONTEXT_RET_SEQUENCE` flag is set in *auth_context* . + The *rdata_out* argument is required if the #KRB5_AUTH_CONTEXT_RET_TIME or #KRB5_AUTH_CONTEXT_RET_SEQUENCE flag is set in *auth_context* . |