Jeffrey Altman wrote: > > > ...I've just discovered that changing DES functions to be DES_* clashes > > with Kerberos... for example: > > > > static void > > DES_random_key(krb5_context context, > > krb5_keyblock *key) > > > > - do we have any views on this? > > > > Cheers, > > > > Ben. > > Ben: > > I thought one of the primary reasons for changing the function names > was to ensure that there were no name clashes with Kerberos. > (Kerberos Bones of course being the reason that Eric Young wrote the > DES library in the first place.) Kerberos and OpenSSL need to be able > to be built and used on the same system and in the same applications. > Not just because an application wants to be able to support both a > Kerberos authentication or a TLS session, but because several > protocols including TLS provide the combination of TLS and Kerberos > as an option. > > Someone suggested that the functions be named > > OPENSSL_DES_xxxxxx() > > I think we should accept that suggestion.
The problem with that idea is it is incompatible with all the other functions in OpenSSL. The functions that clash in Kerberos are all (there aren't many) static, so there aren't actually many ramifications to changing them in Kerberos. Cheers, Ben. -- http://www.apache-ssl.org/ben.html "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
