Fri Jan 12 04:37:23 1996  Mark Eichin  <eichin@cygnus.com>

	* cnv_tkt_skey.c (krb524_convert_tkt_skey): rather than apply fit
 	an extended v5 lifetime into a v4 range, give out a v4 ticket with
 	as much of the v5 lifetime is available "now" instead.

Sat Jan 27 01:31:12 1996  Sam Hartman  <hartmans@tertius.mit.edu>

	* krb524d.c (kdc_get_server_key): If an enctype is given, then use
        iit even after falling back from trying a v4salt.  If we don't, we
        have a good chance fo getting the DES3 TGT service key, and that
        just doesn't do what we want.

Thu Jan 25 02:07:46 1996  Sam Hartman  <hartmans@tertius.mit.edu>

	* cnv_tkt_skey.c (krb524_convert_tkt_skey): Take both a v5 and v4
 	service key.  Use the v5 service key to decrypt the v5 ticket, and
 	the v4 service key to encrypt the v4 ticket.

	* krb524d.c (do_connection): Use a separate v5 and v4 service key
 	so that if the KDC chooses to encrypt the v5 ticket in something
 	besides ENCTYPE_DES_CBC_CRC, we don't lose.  Also, make sure we
 	free keyblock contents and tickets on error.
	(lookup_service_key): Pass enctype to kdc_get_server_key

	(kdc_get_server_key):  Only try for v4 salt if the enctype is
	DES_CRC.  Take enctype as an argument.  This creates a problem
	if the server key has a normal and v4 salt of ENCTYPE_DES_CBC_CRC
	but I can't think of a good answer to this.


	* k524init.c (main):  Use crc32 not md5.

Wed Jan 24 20:05:47 1996  Sam Hartman  <hartmans@tertius.mit.edu>

	* krb524d.c (kdc_get_server_key): Try to find a v4 salt type key,
 	else try any des_crc32 key, else fail.
	(do_connection): Lookup a crc32 key not an md5 key.
	(init_master): Handle reading kdc profile.

Sun Nov 12 04:29:08 1995  Mark W. Eichin  <eichin@cygnus.com>

	* conv_creds.c (krb524_convert_creds_kdc): loop through all of the
	addresses returned by krb5_locate_kdc, don't just try the first one.
	* krb524d.c (do_connection): check for particular failures of
	decode_krb5_ticket, as well as for messages that are one int long
	(which will eliminate our own error replies.)

Mon Oct  9 11:34:24 1995  Ezra Peisach  <epeisach@kangaroo.mit.edu>

	* Makefile.in: s/test/krb524test/ to handle screw case where test
		is built and interferes with configure.

Mon Sep 25 00:15:47 1995  Mark Eichin  <eichin@cygnus.com>

	* krb524d.c (do_connection): if recvfrom failed, just return,
	don't try to use the (likely invalid) sockaddr in a reply message.

Thu Sep 14 17:36:11 1995  Mark Eichin  <eichin@cygnus.com>

	* krb524d.c (usage): needs to get context to pass to
	cleanup_and_exit so it does get freed, since it is allocated
	before parsing arguments.
	(main): change caller as well.

Wed Sep 06 14:20:57 1995   Chris Provenzano (proven@mit.edu)


        * cnv_tkt_skey.c, conv_creds.c, get_cred.c k524init.c krb524d.c,
	* test.c : s/keytype/enctype/g, s/KEYTYPE/ENCTYPE/g

Wed Sep  6 00:11:53 1995  Mark Eichin  <eichin@cygnus.com>

	* krb524d.c (main): set timeout inside while loop to prevent spin.
	(cleanup_and_exit): free master_princ or close keytab, and free
	the global context, to eliminate spurious storage use in malloc
	debugging.
	(init_master): free realm.

Tue Sep 05 22:10:34 1995   Chris Provenzano (proven@mit.edu)

        * cnv_tkt_skey.c, getcred.c, k524init.c, krb524d.c, test.c : 
		Remove krb5_enctype references, and replace with
                krb5_keytype where appropriate.

Thu Aug 24 18:40:22 1995  Theodore Y. Ts'o  <tytso@dcl>

	* .Sanitize: Update file list


Mon Aug 07 11:25:53 1995  Chris Provenzano  (proven@mitedu)

	* krb524d.c: Hacks to get it to compile with new kdb format.


Thu Jul 27 15:14:15 EDT 1995	Paul Park	(pjpark@mit.edu)
	* krb524d.c - Use the etype which is supplied in the krb5_keytype_array
		specified by the master key type.


Mon Jul 17 15:15:01 EDT 1995	Paul Park	(pjpark@mit.edu)
	* krb524d.c - Add NULL stash file argument to krb5_db_fetch_mkey().



Fri Jul 7 16:07:21 EDT 1995	Paul Park	(pjpark@mit.edu)
	* Makefile.in - Remove all explicit library handling and LDFLAGS.
	* configure.in - Add USE_<mumble> and KRB5_LIBRARIES.

Thu Jul 13 17:22:17 1995  Sam Hartman  <hartmans@tertius.mit.edu>

	* configure.in :  Include sys/select.h if present.



Fri Jun 30 14:38:56 EDT 1995	Paul Park	(pjpark@mit.edu)
	* configure.in - Add --with-dbm to select between Berkeley and DBM
		KDC database format.

Wed Jun 28 20:14:35 1995  Mark Eichin  <eichin@cygnus.com>

	* test.c: use PROTOTYPE.

Wed Jun 28 17:32:51 1995  Mark Eichin  <eichin@cygnus.com>

	* test.c, k524init.c, getcred.c: rewrote for old style definitiions.
	* encode.c: use PROTOTYPE instead of KRB5_PROTOTYPE.

Wed Jun 28 03:04:38 1995  Mark Eichin  <eichin@cygnus.com>

	* krb524d.c: changed main, krb5_free_keyblock_contents to use old
	style definitions.

Tue Jun 27 20:27:06 1995  Mark Eichin  <eichin@cygnus.com>

	* encode.c: make declarations use KRB5_PROTOTYPE, and use old
	style definitions, per V5 coding style.

Tue Jun 27 15:54:57 EDT 1995	Paul Park	(pjpark@mit.edu)
	* cnv_tkt_skey.c - Cast key contents argument to conform to prototype.
	* encode.c - Cast argument to match argument list of encode_bytes().
	* krb524d.c - Add signal name argument to conform to prototype.
	* sendmsg.c - Cast second argument to connect(2).
	* test.c - Cast arguments to print_key() and ctime(3).  Cast assignment
		to key.contents.


Thu Jun 22 11:55:23 EDT 1995	Paul Park	(pjpark@mit.edu)
	* krb524d.c - Change KRB_CONVERT_KEY_OUTOF_DB to decrypt_key calls.


Fri Jun 16 17:09:09 EDT 1995	Paul Park	(pjpark@mit.edu)
	* k524init.c - Inline code from krb_save_credentials, it doesn't
		exist for some K4 (e.g. /usr/athena).


Thu Jun 15 17:56:43 EDT 1995	Paul Park	(pjpark@mit.edu)
	* Makefile.in - Change explicit library names to -l<lib> form, and
		change target link line to use $(LD) and associated flags.
	* configure.in - Add shared library usage check.

Wed Jun 14 19:28:33 1995  Tom Yu  (tlyu@dragons-lair)

	* Makefile.in: added install rules

Fri Jun  9 19:16:49 1995    <tytso@rsx-11.mit.edu>

	* configure.in: Remove standardized set of autoconf macros, which
		are now handled by CONFIG_RULES.

Tue Jun  6 20:59:56 1995  Ezra Peisach  <epeisach@kangaroo.mit.edu>

	* test.c (do_remote): Case sockaddr_in * to sockaddr * in calling
		krb524_convert_creds_addr. 
		(krb4_print_ticket): issue_time should be a KRB4_32

	* encode.c (encode_v4tkt): Cast a the unsigned long mbz field of
		KTEXT to krb5_int32 for call to encode_int32.

	* conv_creds.c (krb524_convert_creds_addr): Cast sockaddr * to
		sockaddr_in *. 

Tue Jun 6 17:25:20 EDT 1995	Paul Park	(pjpark@mit.edu)
	* Makefile.in : Change $(ARCHIVE) to $(ARADD) so that updates to the
		library replace modules instead of appending them.
	* cnv_tkt_skey.c, conv_creds.c : Concatenate the two strings which
		comprise the print format.  Some compilers cannot deal with
		<string><string> (e.g. Ultrix).

Mon Jun  5 22:25:33 1995  Theodore Y. Ts'o  <tytso@dcl>

	* Makefile.in, cnv_tkt_skey.c, conv_creds.c, conv_princ.c,
		conv_tkt.c, encode.c, getcred.c, k524init.c, krb524.h,
		krb524d.c, misc.c, sendmsg.c, test.c, configure.in:
		Updated to use autoconf, and to use the new Kerberos
		library API.  
		
Wed Mar 27 21:15:00 1995  Keith Vetter (keithv@fusion.com)

	* renamed conv_tkt_skey.c to cnv_tkt_skey.c for DOS 8.3
	   compatability.
	* Makefile: reflected the above change

Tue Feb 28 02:31:22 1995  John Gilmore  (gnu at toad.com)

	* README, *.[ch]:  Avoid <...> includes for our include files.

Thu Sep 15 10:47:27 1994  Theodore Y. Ts'o  (tytso@dcl)

	* Makefile, README, RELEASE_NOTES, conv_creds.c, conv_princ.c,
	conv_tkt.c, conv_tkt.c, conv_tkt_skey.c, encode.c, getcred.c,
	globals.c, k524init.c, krb524.h, krb524_err.et, krb524d.c, misc.c,
	test.c: Applied new copyright notice (1993, Geer Zolat Associates
		--> 1994, OpenVision Technologies, Inc.)