From nobody Tue Aug 26 16:35:39 2025
X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4cBCvf1X4Qz65nrB
	for <freebsd-current@mlmmj.nyi.freebsd.org>; Tue, 26 Aug 2025 16:35:42 +0000 (UTC)
	(envelope-from glebius@freebsd.org)
Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "smtp.freebsd.org", Issuer "R13" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4cBCvf0DN6z3kgy;
	Tue, 26 Aug 2025 16:35:42 +0000 (UTC)
	(envelope-from glebius@freebsd.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim;
	t=1756226142;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=/Sc2DZZ2Pcd1mfjOTtacuWBRwfAx/yQ9R5LS5Sjq3Cg=;
	b=Y2so3nZ2yw85hi5BFVf9EHEJmy2MQZ8BOCHHvRuzPVZKQ0K5ZbfG8lJd8Ecui55WYLCsdg
	gfBDPnno3Q2iR2n0n/7kqm7lKxs5nQehQyRRpSV10OjZLK/JGyRxeKYjRont1Qf7iysXyE
	S/KeXf3VAzS6F8hyecAPJ0giNhhI6tbV4J38p++LA4jW316UKtjQzP1m+OeURaNzGEXx8g
	2IQ6PEsj6aWPnIroP6/zG2cpsGHopypQ1S0LPKpHNcHfdjZu9Se72zCYmfI8vi5phECnVO
	A60E9mDNAFrHrdo/jEA7Dr59W4Va/Hw4qluI6uR4rfMPAShVKQ0vAPIXbdeXCA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1756226142;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=/Sc2DZZ2Pcd1mfjOTtacuWBRwfAx/yQ9R5LS5Sjq3Cg=;
	b=cROiaGRDQ3qNK2mdmjCHn+ZVcSBdN+mjWnM7jIaERIvbS2u+CZsDAD8gzi/m5xYLWx3cN3
	mEHjWKPHGDTcoiQrKXTe3uQfWySF3nKkjV1i2HWoiWy8XRbknAmJXCWK3KBugtfshO2Ltm
	ctcgzbh2Tkk6nzyu58SVinVz8zUi3UiOpGfxyJNAbrpmYELvYKa9QqTTWEoqm9vxztc7fo
	GM+sN4qKE65KGoZhtL6oCp2bxo2doKd/+JVqQGVCZT2OpBqy6J5X3qjP73DkZLoDoZaCNM
	4LVW9CXsfw0a+UbuN02rmsoBiBM0lnY0Qw2muSgdrwRbBAGcDCCHcYEpYz2jeg==
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1756226142; a=rsa-sha256; cv=none;
	b=Kf9dgimUCc22geejTtajK4OzsCtCoawP0vBOO2c9whzOeAJ8LqohGU4oKBNyIHq3dEZVTT
	90ypkkBADakwsjcvnnTlBXDGi5ndDsvbZBnjCcgWjEmUSNxvczMeCxFbSJqDvv1bcdD0IX
	bUka9aOShGHJ9XNO3PShkTVRXKpsueSWGTngDgdXctWewdhMwIjaX9nz6iIP1XVoPrQc2w
	+4qnIEuF14H5LsHG5VejcPRhgnSC4Pb/x4D7FZ0RqT58P7Q/1FJNx4AdMv59D0YALBdY7w
	71a+yKinGYHsiPkBdB4rqLf0I6CHxM2Fh2bEXkvXSn059xN9dEYIB0O3JEQEQw==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
Received: from cell.glebi.us (glebi.us [162.251.186.162])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	(Authenticated sender: glebius)
	by smtp.freebsd.org (Postfix) with ESMTPSA id 4cBCvd3ftJzqYS;
	Tue, 26 Aug 2025 16:35:41 +0000 (UTC)
	(envelope-from glebius@freebsd.org)
Date: Tue, 26 Aug 2025 09:35:39 -0700
From: Gleb Smirnoff <glebius@freebsd.org>
To: Rick Macklem <rick.macklem@gmail.com>,
	Cy Schubert <Cy.Schubert@cschubert.com>
Cc: freebsd-current@freebsd.org
Subject: Re: heimdal -> MIT kdc migration
Message-ID: <aK3iW189fZ2_xSyB@cell.glebi.us>
References: <aKwYB4d6l4ze-yXA@cell.glebi.us>
 <aKxcwqKqW3ZpA3Po@cell.glebi.us>
 <56dd78c6-a53a-4c4c-989a-335cc5fed405@FreeBSD.org>
 <CAM5tNy5sNv8z0zW2ZFt+9=ytUpjGVudsYbcSC2mQSudi3iWSfQ@mail.gmail.com>
 <CAM5tNy73KwR-DBqc28bqRPKqW7UqXN7RXYB=p-Za5Lsoy9jFcw@mail.gmail.com>
 <1578a4eac5402d0496d8989e5258bc78@Leidinger.net>
 <CAM5tNy42Xvj8M+q4qDO35T31wWLO-2pC9H0_V0rVM2uZmSL2RA@mail.gmail.com>
 <CAM5tNy5m8tEaivQdC4G-=VNpf3ng6JcdpeJKvxA8oM==OdbMUw@mail.gmail.com>
 <aK3TQbWXkr_r24sW@cell.glebi.us>
List-Id: Discussions about the use of FreeBSD-current <freebsd-current.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-current
List-Help: <mailto:freebsd-current+help@freebsd.org>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Subscribe: <mailto:freebsd-current+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-current+unsubscribe@freebsd.org>
Sender: owner-freebsd-current@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <aK3TQbWXkr_r24sW@cell.glebi.us>

On Tue, Aug 26, 2025 at 08:31:13AM -0700, Gleb Smirnoff wrote:
T> On Tue, Aug 26, 2025 at 08:13:26AM -0700, Rick Macklem wrote:
T> R> Ok. If you install FreeBSD-13.5 and then "pkg install heimdal", you get a
T> R> working Heimdal-7.8 in ports.
T> R> 
T> R> Now, I have another challenge. Fixing the master passwords.
T> R> I'll work on it later to-day.
T> 
T> I have applied two commits from Heimdal from 2012 that add 'kadmin dump -f MIT'
T> feature to our base heimdal and polished them to compile.  So far it doesn't
T> work yet, either create an empty dump or create a core dump, instead of
T> database dump :) I'll see how difficult it is going to further resolve that to
T> a working condition. If I succeed, then having 'dump -f MIT' in base without
T> any ports would be the best solution.  Can also be merged to FreeBSD 14.4.

Good news.  In the above paragraph I was testing my change incorrectly - threw
the new binary on a system running unpatched libraries.  When run correctly,
it successfully produced something that looks like a correct dump in MIT format.
I haven't yet tried to load it into MIT kdc yet, though.

I will finalize the branch promptly and share it.  The above experience also
indicated that I need to do a library version bump.

-- 
Gleb Smirnoff