[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: multiple krb5 salted des keys
On 24 Jun 2000, Johan Danielsson wrote:
> krb5_error_code
> hdb_encsalt2key(krb5_context context,
> hdb_entry *e,
> krb5_enctype enctype,
> krb5_salttype salttype,
> krb5_boolean zerosalt,
> Key **key)
> {
> krb5_error_code ret;
> *key = NULL;
> while(1) {
> ret = hdb_next_enctype2key(context, e, enctype, key);
> if(ret)
> break;
> if(salttype == 0)
> break;
> if((*key)->salt == NULL) {
> if(salttype == KRB5_PW_SALT && !zerosalt)
> break;
> continue;
> }
> if(salttype == (*key)->salt->type &&
> (zerosalt && (*key)->salt->salt.length == 0) ||
> (!zerosalt && (*key)->salt->salt.length > 0))
> break;
> }
> return ret;
> }
will you be integrating this and the code to use it?
basically i want to know what i should be building so i don't
inadvertantly branch; something in this vein needs to be done so AFS
kaserver clients and Win2k clients can be supported for the same
principals if the user has a v4 salted DES key now.
-D