[Heimdal-source-changes] [heimdal/heimdal] d8394c: Add new kadmin/ktutil --keep* and --enctypes opts

GitHub noreply at github.com
Tors Jan 3 00:29:10 CET 2019 

  Branch: refs/heads/master
  Home:   https://github.com/heimdal/heimdal
  Commit: d8394c65b763e944e410046fe75f3c548a3e2f18
      https://github.com/heimdal/heimdal/commit/d8394c65b763e944e410046fe75f3c548a3e2f18
  Author: Nicolas Williams <nico at twosigma.com>
  Date:   2019-01-02 (Wed, 02 Jan 2019)

  Changed paths:
    M admin/change.c
    M admin/get.c
    M admin/ktutil-commands.in
    M admin/ktutil.1
    M kadmin/ank.c
    M kadmin/cpw.c
    M kadmin/ext.c
    M kadmin/get.c
    M kadmin/kadmin-commands.in
    M kadmin/kadmin.1
    M kadmin/kadmind.8
    M kadmin/server.c
    M lib/kadm5/randkey_s.c
    M lib/kadm5/version-script-client.map
    M lib/krb5/libkrb5-exports.def.in
    M lib/krb5/salt.c
    M lib/krb5/version-script.map
    M tests/kdc/check-kadmin.in

  Log Message:
  -----------
  Add new kadmin/ktutil --keep* and --enctypes opts

 - Add --keepold/keepallold/pruneall options to various kadmin/ktutil
   commands.  Default behavior to "prune old keys".

 - When setting keys for a service, we need to specify enctypes for it:

    - Always use kadm5_randkey_principal_3() instead of the older
      kadm5_randkey_principal().

    - Add krb5_string_to_keysalts2(), like MIT's krb5_string_to_keysalts(),
      but with a context, and simpler.

    - Add --enctypes options to various kadmin/ktutil commands.

    - Add [libdefaults] supported_enctypes param with enctype[:salttype]
      list.

    - Add [realms] realm supported_enctypes param with enctype[:salttype]
      list.

      Default to aes128-cts-hmac-sha1-96:normal.


  Commit: ff7a969c321a99364fcd9c437b5654eb261b1fdd
      https://github.com/heimdal/heimdal/commit/ff7a969c321a99364fcd9c437b5654eb261b1fdd
  Author: Nicolas Williams <nico at twosigma.com>
  Date:   2019-01-02 (Wed, 02 Jan 2019)

  Changed paths:
    M kadmin/kadmind.8

  Log Message:
  -----------
  Begin documenting [password_quality] configuration


Compare: https://github.com/heimdal/heimdal/compare/7b76d6719fa1...ff7a969c321a
      **NOTE:** This service has been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/

      Functionality will be removed from GitHub.com on January 31st, 2019.

More information about the Heimdal-source-changes mailing list