[1913] in Kerberos_V5_Development
Re: Cygnus changes for your consideration
daemon@ATHENA.MIT.EDU (Mark Eichin)
Thu Oct 31 12:42:45 1996
To: "Barry Jaspan" <bjaspan@MIT.EDU>
Cc: tytso@MIT.EDU, krbdev@MIT.EDU
From: Mark Eichin <eichin@cygnus.com>
Date: 31 Oct 1996 12:41:04 -0500
In-Reply-To: "Barry Jaspan"'s message of Thu, 31 Oct 1996 11:36:45 -0500
the "dbutil locking trick" is the changes Barry and I talked about
earlier: fixing unlock so it only closed the database on the last
unlock, ditching the ifdefs, and then having dbutil grab a lock on
db~ (ie. the primary database) if !update so that it doesn't get
reopened/closed after each record (which was at *least* a factor of
10, maybe 20, performance hit.)
> + kadmin/cli x9 and tl_data changes (in support of X9.9 token devices)
two parts: some bugfixes to lib/kadm5 (mostly server side I think) so
that it didn't fall over when handed more than one tl_data record
(which from some recent commits you may already have fixed, I have to
look, these are based on diffs from a couple of weeks ago) and
added command to kadmin and a new tl_data type for x9.9 token device
keying material (and corresponding kdc_preauth cleanup; this way
activcard, digital pathways, and enigmal logic are treated as minor
variants of one standard device, as far as the database goes.)
