From: Richard Levitte <levitte@openssl.org>
Date: Thu, 12 Jul 2001 04:23:57 +0000 (+0000)
Subject: Document the recent Kerberos SSL changes.
X-Git-Tag: OpenSSL_0_9_6c~182^2~13
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=0665dd68524e4b9cb81f946e4ccd74a59b80292d;p=oweals%2Fopenssl.git

Document the recent Kerberos SSL changes.
---

diff --git a/CHANGES b/CHANGES
index 330954dc6f..6393413e03 100644
--- a/CHANGES
+++ b/CHANGES
@@ -12,6 +12,19 @@
          *) applies to 0.9.6a/0.9.6b and 0.9.7
          +) applies to 0.9.7 only
 
+  +) Changes to Kerberos SSL for RFC 2712 compliance:
+     1.  Implemented real KerberosWrapper, instead of just using
+         KRB5 AP_REQ message.  [Thanks to Simon Wilkinson <sxw@sxw.org.uk>]
+     2.  Implemented optional authenticator field of KerberosWrapper.
+
+     Added openssl-style ASN.1 macros for Kerberos ticket, ap_req,
+     and authenticator structs; see crypto/krb5/.
+
+     Generalized Kerberos calls to support multiple Kerberos libraries.
+     [Vern Staats <staatsvr@asc.hpc.mil>,
+      Jeffrey Altman <jaltman@columbia.edu>
+      via Richard Levitte]
+
   +) Cause 'openssl speed' to use fully hard-coded DSA keys as it
      already does with RSA. testdsa.h now has 'priv_key/pub_key'
      values for each of the key sizes rather than having just