Ticket History #1454: Need support for etype_info2

Fix typo.


To generate a diff of this commit:



cvs diff -r5.13 -r5.14 krb5/src/lib/krb5/krb/kfree.c

* IMplement etype_info in KDC. If the request contains any new
enctypes (currently AES but anything not explicitly listed as old)
then only etype_info2 is sent back in response. Send back etype_info2
all the time. Also send back etype_info2 to provide salt and
s2kparams with AS reply not just for preauth errors.

* Expose interface for getting string2key with parameters (previously
implemented but not exported)

* IN the client (at least for get_init_creds interface) prfer
etype_info2 to etype_info and pw_salt. Pass s2kparams and use
string2key_with_params.


To generate a diff of this commit:



cvs diff -r1.358 -r1.359 krb5/src/include/ChangeLog
cvs diff -r1.139 -r1.140 krb5/src/include/k5-int.h
cvs diff -r1.156 -r1.157 krb5/src/include/krb5.hin
cvs diff -r5.257 -r5.258 krb5/src/kdc/ChangeLog
cvs diff -r5.38 -r5.39 krb5/src/kdc/kdc_preauth.c
cvs diff -r1.121 -r1.122 krb5/src/lib/ChangeLog
cvs diff -r1.34 -r1.35 krb5/src/lib/krb5_32.def
cvs diff -r5.137 -r5.138 krb5/src/lib/crypto/ChangeLog
cvs diff -r5.6 -r5.7 krb5/src/lib/crypto/string_to_key.c
cvs diff -r5.391 -r5.392 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.101 -r5.102 krb5/src/lib/krb5/krb/get_in_tkt.c
cvs diff -r5.10 -r5.11 krb5/src/lib/krb5/krb/gic_keytab.c
cvs diff -r5.19 -r5.20 krb5/src/lib/krb5/krb/gic_pwd.c
cvs diff -r5.23 -r5.24 krb5/src/lib/krb5/krb/preauth2.c

On Sun, May 11, 2003 at 11:03:07PM -0400, Sam Hartman via RT wrote:

Is it easier than fixing ksu and kadmin to use krb5_gic_pwd()?


IMO you should deprecate get_in_tkt. Sure, that means chaning ksu and
kadmin - but I think it's worth it (ok, yes, I might think that,
particularly since you'd be doing the work :)

Cheers,

Nico
--

Yes, I think so. I'll look at that too, but even if I change kadmin
and ksu I'll have to change krb5_get_in_tkt to ignore AES.

I think krb5_get_in_tkt is public and potentially used by external
applications, but it is (or will be) marked as deprecated and you'll
have to compile with a special define to get a prototype.

pullups from trunk


To generate a diff of this commit:



cvs diff -r1.348.2.5 -r1.348.2.6 krb5/src/include/ChangeLog
cvs diff -r1.135.2.1 -r1.135.2.2 krb5/src/include/k5-int.h
cvs diff -r1.154.2.2 -r1.154.2.3 krb5/src/include/krb5.hin
cvs diff -r5.251.2.5 -r5.251.2.6 krb5/src/kdc/ChangeLog
cvs diff -r5.35.2.2 -r5.35.2.3 krb5/src/kdc/kdc_preauth.c
cvs diff -r1.119.2.2 -r1.119.2.3 krb5/src/lib/ChangeLog
cvs diff -r1.32.2.2 -r1.32.2.3 krb5/src/lib/krb5_32.def
cvs diff -r5.136 -r5.136.2.1 krb5/src/lib/crypto/ChangeLog
cvs diff -r5.6 -r5.6.2.1 krb5/src/lib/crypto/string_to_key.c
cvs diff -r5.135.2.2 -r5.135.2.3 krb5/src/lib/krb5/asn.1/ChangeLog
cvs diff -r5.43.2.1 -r5.43.2.2
krb5/src/lib/krb5/asn.1/asn1_k_decode.c
cvs diff -r5.29 -r5.29.2.1 krb5/src/lib/krb5/asn.1/asn1_k_encode.c
cvs diff -r5.14 -r5.14.2.1 krb5/src/lib/krb5/asn.1/asn1_k_encode.h
cvs diff -r5.40 -r5.40.2.1 krb5/src/lib/krb5/asn.1/krb5_decode.c
cvs diff -r5.25.2.1 -r5.25.2.2
krb5/src/lib/krb5/asn.1/krb5_encode.c
cvs diff -r5.378.2.5 -r5.378.2.6 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.101 -r5.101.2.1 krb5/src/lib/krb5/krb/get_in_tkt.c
cvs diff -r5.10 -r5.10.2.1 krb5/src/lib/krb5/krb/gic_keytab.c
cvs diff -r5.19 -r5.19.2.1 krb5/src/lib/krb5/krb/gic_pwd.c
cvs diff -r5.10.2.1 -r5.10.2.2 krb5/src/lib/krb5/krb/kfree.c
cvs diff -r5.23 -r5.23.2.1 krb5/src/lib/krb5/krb/preauth2.c
cvs diff -r1.71 -r1.71.2.1 krb5/src/tests/asn.1/ChangeLog
cvs diff -r1.19 -r1.19.4.1 krb5/src/tests/asn.1/krb5_encode_test.c
cvs diff -r1.16 -r1.16.4.1 krb5/src/tests/asn.1/ktest.c
cvs diff -r1.9 -r1.9.2.1 krb5/src/tests/asn.1/ktest.h
krb5/src/tests/asn.1/reference_encode.out
cvs diff -r1.11 -r1.11.2.1 krb5/src/tests/asn.1/trval_reference.out