From hartmans@MIT.EDU Mon Nov 26 16:04:36 2001
Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83])
by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id QAA17073
for <bugs@RT-11.mit.edu>; Mon, 26 Nov 2001 16:04:36 -0500 (EST)
Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82])
by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id QAA09940
for <bugs@RT-11.mit.edu>; Mon, 26 Nov 2001 16:04:35 -0500 (EST)
Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86])
by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA21495
for <krb5-bugs@MIT.EDU>; Mon, 26 Nov 2001 16:04:35 -0500 (EST)
Received: from tir-na-nogth.mit.edu (TIR-NA-NOGTH.MIT.EDU [18.18.1.6])
by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id QAA20504
for <krb5-bugs@mit.edu>; Mon, 26 Nov 2001 16:04:34 -0500 (EST)
Received: (from hartmans@localhost) by tir-na-nogth.mit.edu (8.9.3)
id QAA23325; Mon, 26 Nov 2001 16:04:33 -0500 (EST)
Message-Id: <200111262104.QAA23325@tir-na-nogth.mit.edu>
Date: Mon, 26 Nov 2001 16:04:33 -0500 (EST)
From: hartmans@MIT.EDU
Reply-To: hartmans@MIT.EDU
To: krb5-bugs@MIT.EDU
Subject: v4 has its own random number generator
X-Send-Pr-Version: 3.99
System: SunOS tir-na-nogth.mit.edu 5.8 Generic_108528-08 sun4u sparc SUNW,Sun-Blade-100
Architecture: sun4
Perhaps it should use the v5 RNG even for v4 keys.
From: Ken Raeburn <raeburn@MIT.EDU>
To: hartmans@MIT.EDU
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 26 Nov 2001 17:18:52 -0500
The KDC code calls into the krb4 code, but the krb4 (des425) code is
now a wrapper around the krb5 code. So we *are* using the krb5 code,
just indirectly....
From: Sam Hartman <hartmans@MIT.EDU>
To: Ken Raeburn <raeburn@MIT.EDU>
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 26 Nov 2001 18:56:35 -0500
Then wy do we initialize both the v5 and v4 code then?
From: Ken Raeburn <raeburn@MIT.EDU>
To: Sam Hartman <hartmans@MIT.EDU>
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 27 Nov 2001 11:56:50 -0500
Probably because the v4 code in the KDC still is largely the v4 KDC
code, which talked to the v4 DES code. (In other words, not a recent
design decision, but perhaps an old one that isn't really relevant any
more.)
krb4 has its own random number generator
Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83])
by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id QAA17073
for <bugs@RT-11.mit.edu>; Mon, 26 Nov 2001 16:04:36 -0500 (EST)
Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82])
by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id QAA09940
for <bugs@RT-11.mit.edu>; Mon, 26 Nov 2001 16:04:35 -0500 (EST)
Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86])
by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA21495
for <krb5-bugs@MIT.EDU>; Mon, 26 Nov 2001 16:04:35 -0500 (EST)
Received: from tir-na-nogth.mit.edu (TIR-NA-NOGTH.MIT.EDU [18.18.1.6])
by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id QAA20504
for <krb5-bugs@mit.edu>; Mon, 26 Nov 2001 16:04:34 -0500 (EST)
Received: (from hartmans@localhost) by tir-na-nogth.mit.edu (8.9.3)
id QAA23325; Mon, 26 Nov 2001 16:04:33 -0500 (EST)
Message-Id: <200111262104.QAA23325@tir-na-nogth.mit.edu>
Date: Mon, 26 Nov 2001 16:04:33 -0500 (EST)
From: hartmans@MIT.EDU
Reply-To: hartmans@MIT.EDU
To: krb5-bugs@MIT.EDU
Subject: v4 has its own random number generator
X-Send-Pr-Version: 3.99
Show quoted text
>Number: 1019
>Category: krb5-libs
>Synopsis: v4 has its own random number generator
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: krb5-unassigned
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Mon Nov 26 16:05:00 EST 2001
>Last-Modified: Tue Nov 27 11:57:01 EST 2001
>Originator: Sam Hartman
>Organization:
MIT>Category: krb5-libs
>Synopsis: v4 has its own random number generator
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: krb5-unassigned
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Mon Nov 26 16:05:00 EST 2001
>Last-Modified: Tue Nov 27 11:57:01 EST 2001
>Originator: Sam Hartman
>Organization:
Show quoted text
>Release: 1.2
>Environment:
>Environment:
System: SunOS tir-na-nogth.mit.edu 5.8 Generic_108528-08 sun4u sparc SUNW,Sun-Blade-100
Architecture: sun4
Show quoted text
>Description:
The KDC code still calls des_init_random etc to use the krb4 RNG.Perhaps it should use the v5 RNG even for v4 keys.
Show quoted text
>How-To-Repeat:
Show quoted text
>Fix:
Show quoted text
>Audit-Trail:
From: Ken Raeburn <raeburn@MIT.EDU>
To: hartmans@MIT.EDU
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 26 Nov 2001 17:18:52 -0500
The KDC code calls into the krb4 code, but the krb4 (des425) code is
now a wrapper around the krb5 code. So we *are* using the krb5 code,
just indirectly....
From: Sam Hartman <hartmans@MIT.EDU>
To: Ken Raeburn <raeburn@MIT.EDU>
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 26 Nov 2001 18:56:35 -0500
Show quoted text
>>>>> "Ken" == Ken Raeburn <raeburn@MIT.EDU> writes:
Show quoted text
Ken> The KDC code calls into the krb4 code, but the krb4 (des425)
Ken> code is now a wrapper around the krb5 code. So we *are*
Ken> using the krb5 code, just indirectly....
Ken> code is now a wrapper around the krb5 code. So we *are*
Ken> using the krb5 code, just indirectly....
Then wy do we initialize both the v5 and v4 code then?
From: Ken Raeburn <raeburn@MIT.EDU>
To: Sam Hartman <hartmans@MIT.EDU>
Cc: krb5-bugs@MIT.EDU
Subject: Re: krb5-libs/1019: v4 has its own random number generator
Date: 27 Nov 2001 11:56:50 -0500
Probably because the v4 code in the KDC still is largely the v4 KDC
code, which talked to the v4 DES code. (In other words, not a recent
design decision, but perhaps an old one that isn't really relevant any
more.)
Show quoted text
>Unformatted:
krb4 has its own random number generator