From 818eee31343b7f3b0a0a00a1404085b23054eeef Mon Sep 17 00:00:00 2001 From: Greg Hudson Date: Fri, 7 Apr 2017 11:05:16 -0400 Subject: [PATCH] Un-deprecate krb5_auth_con_initivector() The kprop protocol uses cipher state via this call, perhaps along with other. As there is no replacement, the call should not be deprecated in the API. ticket: 8572 (new) --- src/include/krb5/krb5.hin | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) diff --git a/src/include/krb5/krb5.hin b/src/include/krb5/krb5.hin index 4be51160f4..58a270796d 100644 --- a/src/include/krb5/krb5.hin +++ b/src/include/krb5/krb5.hin @@ -6002,15 +6002,19 @@ krb5_error_code KRB5_CALLCONV krb5_auth_con_getremoteseqnumber(krb5_context context, krb5_auth_context auth_context, krb5_int32 *seqnumber); -#if KRB5_DEPRECATED -/** @deprecated Not replaced. +/** + * Cause an auth context to use cipher state. + * + * @param [in] context Library context + * @param [in] auth_context Authentication context * - * RFC 4120 doesn't have anything like the initvector concept; - * only really old protocols may need this API. + * Prepare @a auth_context to use cipher state when krb5_mk_priv() or + * krb5_rd_priv() encrypt or decrypt data. + * + * @retval 0 Success; otherwise - Kerberos error codes */ -KRB5_ATTR_DEPRECATED krb5_error_code KRB5_CALLCONV +krb5_error_code KRB5_CALLCONV krb5_auth_con_initivector(krb5_context context, krb5_auth_context auth_context); -#endif /** * Set the replay cache in an auth context. -- 2.47.2