[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Splitting lib/krb5/pkinit.c

To: "Geoff Elgey" <Geoff.Elgey@quest.com>
Subject: Re: Splitting lib/krb5/pkinit.c
From: Love Hörnquist Åstrand <lha@kth.se>
Date: Wed, 14 Sep 2005 18:18:56 +0200
Cc: <heimdal-discuss@sics.se>
In-Reply-To: <33AB918726292F48811C428ECA940EBF0431306E@melmbxw01.oz.quest.com> (GeoffElgey's message of "Tue, 13 Sep 2005 20:21:03 +1000")
References: <33AB918726292F48811C428ECA940EBF0431306E@melmbxw01.oz.quest.com>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/22.0.50 (darwin)

"Geoff Elgey" <Geoff.Elgey@quest.com> writes:

> G'day,
[...]
> Of course, this would break compatibility, but offers significant flexibilty.

I'll look closer to your proposal when I'm less busy, like this weekend.

As a counter proprosal I think hx509 should be a good choice. That partly
why the current interface looks like it, its independant enough of the the
underlaying implementation. The current interface doesn't use any OpenSSL
structures, but strings, this to preserve binary compatiblity.

hx509 can be found here:
http://people.su.se/~lha/patches/heimdal/hx509-2005-09-14.tar.gz

It talk pkcs12, pem, and will have pkcs11 support when I get around to it.

There needs to be added a "hx509_context" to most functions, but so far
I've concentrated to get working code.

Love

PGP signature

References:
- Splitting lib/krb5/pkinit.c
  - From: "Geoff Elgey" <Geoff.Elgey@quest.com>

Prev by Date: Re: [SAMBA4][PATCH] Provide a hook for Samba4 intogsskrb5_init_context
Next by Date: Re: Question on logging
Prev by thread: Re: Splitting lib/krb5/pkinit.c
Next by thread: RE: Splitting lib/krb5/pkinit.c
Index(es):
- Date
- Thread