Added TicketChecksum PAC buffer.

Author: tyranid

NtApiDotNet/Win32/Security/Authentication/Kerberos/KerberosAuthorizationDataPAC.cs

@@ -86,6 +86,7 @@ internal static bool Parse(byte[] data, out KerberosAuthorizationDataPAC auth_da
                         break;
                     case KerberosAuthorizationDataPACEntryType.KDCChecksum:
                     case KerberosAuthorizationDataPACEntryType.ServerChecksum:
+                    case KerberosAuthorizationDataPACEntryType.TicketChecksum:
                         if (!KerberosAuthorizationDataPACSignature.Parse(entry_type, entry_data, out pac_entry))
                             pac_entry = null;
                         break;

NtApiDotNet/Win32/Security/Authentication/Kerberos/KerberosAuthorizationDataPACEntry.cs

@@ -32,7 +32,8 @@ public enum KerberosAuthorizationDataPACEntryType
         UserPrincipalName = 0xC,
         UserClaims = 0xD,
         Device = 0xE,
-        DeviceClaims = 0xF
+        DeviceClaims = 0xF,
+        TicketChecksum = 0x10,
     }
 #pragma warning restore 1591
 

NtApiDotNet/Win32/Security/Authentication/Kerberos/KerberosAuthorizationDataPACSignature.cs

@@ -35,8 +35,8 @@ public class KerberosAuthorizationDataPACSignature : KerberosAuthorizationDataPA
         /// </summary>
         public int? RODCIdentifier { get; }
 
-        private KerberosAuthorizationDataPACSignature(KerberosAuthorizationDataPACEntryType type, byte[] data, KerberosChecksumType sig_type,
-            byte[] signature, int? rodc_id)
+        private KerberosAuthorizationDataPACSignature(KerberosAuthorizationDataPACEntryType type, 
+            byte[] data, KerberosChecksumType sig_type, byte[] signature, int? rodc_id)
             : base(type, data)
         {
             SignatureType = sig_type;
@@ -60,9 +60,9 @@ internal static bool Parse(KerberosAuthorizationDataPACEntryType type, byte[] da
 
             if (data.Length < 4)
                 return false;
-
-            int signature_length = 0;
             KerberosChecksumType signature_type = (KerberosChecksumType)BitConverter.ToInt32(data, 0);
+
+            int signature_length;
             switch (signature_type)
             {
                 case KerberosChecksumType.HMAC_MD5:
@@ -85,7 +85,6 @@ internal static bool Parse(KerberosAuthorizationDataPACEntryType type, byte[] da
             {
                 rodc_id = BitConverter.ToUInt16(data, total_size);
             }
-                
             entry = new KerberosAuthorizationDataPACSignature(type, data, signature_type, signature, rodc_id);
             return true;
         }