[30773] in Kerberos
Re: FIPS certification
daemon@ATHENA.MIT.EDU (Theodore Tso)
Sat Feb 28 16:04:11 2009
Date: Sat, 28 Feb 2009 16:03:25 -0500
From: Theodore Tso <tytso@MIT.EDU>
To: Ken Raeburn <raeburn@MIT.EDU>
Message-ID: <20090228210325.GF6935@mit.edu>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <70288C02-967E-4F6E-A512-BBC2BECC21F9@mit.edu>
X-SA-Exim-Mail-From: tytso@mit.edu
Cc: Kerberos mailing list <kerberos@MIT.EDU>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@MIT.EDU
On Sat, Feb 28, 2009 at 01:07:50PM -0500, Ken Raeburn wrote:
> We'd also still need to handle the krb5_keyblock structure embedded in
> krb5_creds; in that instance it wouldn't be extensible.
>
> It'd be so nice to be able to do a new API for a v2.0 someday. :-)
But then I wouldn't be able to use Krb5 as the poster child for badly
designed legacy API's that make ABI compatibility really hard any
more. <grin>
(My excuse, since a large amount of it was my fault, was that I was
young and folish.... :-)
Seriously, that might not be a bad idea, one of these days....
- Ted
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
