[krbdev.mit.edu #7929] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Sat Jul 19 16:25:32 EDT 2014
Move KKDCP OpenSSL code to an internal plugin
Create an internal pluggable interface "tls" with one in-tree dynamic
plugin module named "k5tls". Move all of the OpenSSL calls to the
plugin module, and make the libkrb5 code load and invoke the plugin.
This way we do not load or initialize libssl unless an HTTP proxy is
used.
https://github.com/krb5/krb5/commit/472349d2a47fbc7db82e46ba46411b95c312fc1f
Author: Greg Hudson <ghudson at mit.edu>
Commit: 472349d2a47fbc7db82e46ba46411b95c312fc1f
Branch: master
src/Makefile.in | 3 +-
src/config/pre.in | 1 +
src/configure.in | 6 +
src/include/k5-int.h | 7 +-
src/include/k5-tls.h | 104 +++++++
src/include/k5-trace.h | 33 +-
src/lib/krb5/Makefile.in | 3 +-
src/lib/krb5/krb/copy_ctx.c | 1 +
src/lib/krb5/krb/init_ctx.c | 1 +
src/lib/krb5/krb/plugin.c | 3 +-
src/lib/krb5/krb5_libinit.c | 2 -
src/lib/krb5/os/Makefile.in | 3 +-
src/lib/krb5/os/checkhost.c | 244 ---------------
src/lib/krb5/os/checkhost.h | 39 ---
src/lib/krb5/os/deps | 13 +-
src/lib/krb5/os/locate_kdc.c | 8 -
src/lib/krb5/os/os-proto.h | 1 -
src/lib/krb5/os/sendto_kdc.c | 425 ++++++---------------------
src/plugins/tls/k5tls/Makefile.in | 22 ++
src/plugins/tls/k5tls/deps | 25 ++
src/plugins/tls/k5tls/k5tls.exports | 1 +
src/plugins/tls/k5tls/notls.c | 53 ++++
src/plugins/tls/k5tls/openssl.c | 570 +++++++++++++++++++++++++++++++++++
23 files changed, 899 insertions(+), 669 deletions(-)
More information about the krb5-bugs
mailing list