/krb5-1.9-beta2.tar.gz

  /krb5-1.9-beta2.tar.gz.asc

  /krb5-1.9-beta2-pdf.tar.bz2

  /krb5-1.19.1.tar.gz.asc

  /krb5-1.19.2.tar.gz

  /krb5-1.19.2.tar.gz.asc

  From: Robbie Harwood <rharwood@redhat.com>

  Date: Tue, 23 Aug 2016 16:29:58 -0400

  Subject: [PATCH] [downstream] ksu pam integration

   create mode 100644 src/clients/ksu/pam.h

  diff --git a/src/aclocal.m4 b/src/aclocal.m4

  --- a/src/aclocal.m4

  +++ b/src/aclocal.m4

     OPENLDAP_PLUGIN=yes

   fi

   ])dnl

  +])dnl

  +

  diff --git a/src/clients/ksu/Makefile.in b/src/clients/ksu/Makefile.in

  --- a/src/clients/ksu/Makefile.in

  +++ b/src/clients/ksu/Makefile.in

  @@ -3,12 +3,14 @@ BUILDTOP=$(REL)..$(S)..

   clean:

   	$(RM) ksu

  diff --git a/src/clients/ksu/main.c b/src/clients/ksu/main.c

  --- a/src/clients/ksu/main.c

  +++ b/src/clients/ksu/main.c

  @@ -26,6 +26,7 @@

       }

  diff --git a/src/clients/ksu/pam.c b/src/clients/ksu/pam.c

  new file mode 100644

  --- /dev/null

  +++ b/src/clients/ksu/pam.c

  @@ -0,0 +1,389 @@

  +#endif

  diff --git a/src/clients/ksu/pam.h b/src/clients/ksu/pam.h

  new file mode 100644

  --- /dev/null

  +++ b/src/clients/ksu/pam.h

  @@ -0,0 +1,57 @@

  +void appl_pam_cleanup(void);

  +#endif

  diff --git a/src/configure.ac b/src/configure.ac

  --- a/src/configure.ac

  +++ b/src/configure.ac

   AC_PATH_PROG(GROFF, groff)

   # Make localedir work in autoconf 2.5x.

   if test "${localedir+set}" != set; then

       localedir='$(datadir)/locale'

  From: Robbie Harwood <rharwood@redhat.com>

  Date: Tue, 23 Aug 2016 16:30:53 -0400

  Subject: [PATCH] [downstream] SELinux integration

   create mode 100644 src/util/support/selinux.c

  diff --git a/src/aclocal.m4 b/src/aclocal.m4

  --- a/src/aclocal.m4

  +++ b/src/aclocal.m4

  @@ -85,6 +85,7 @@ AC_SUBST_FILE(libnodeps_frag)

   KRB5_LIB_PARAMS

   KRB5_AC_INITFINI

   KRB5_AC_ENABLE_THREADS

   AC_SUBST(PAM_MAN)

   AC_SUBST(NON_PAM_MAN)

   ])dnl

  +AC_SUBST(SELINUX_LIBS)

  +])dnl

  diff --git a/src/build-tools/krb5-config.in b/src/build-tools/krb5-config.in

  --- a/src/build-tools/krb5-config.in

  +++ b/src/build-tools/krb5-config.in

  @@ -41,6 +41,7 @@ DL_LIB='@DL_LIB@'

       echo $lib_flags

  diff --git a/src/config/pre.in b/src/config/pre.in

  --- a/src/config/pre.in

  +++ b/src/config/pre.in

  @@ -177,6 +177,7 @@ LD = $(PURE) @LD@

   INSTALL=@INSTALL@

   INSTALL_STRIP=

   # HESIOD_LIBS is -lhesiod...

   HESIOD_LIBS	= @HESIOD_LIBS@

   GSS_LIBS	= $(GSS_KRB5_LIB)

   # needs fixing if ever used on macOS!

  diff --git a/src/configure.ac b/src/configure.ac

  --- a/src/configure.ac

  +++ b/src/configure.ac

   KRB5_WITH_PAM

   if test "${localedir+set}" != set; then

       localedir='$(datadir)/locale'

  diff --git a/src/include/k5-int.h b/src/include/k5-int.h

  --- a/src/include/k5-int.h

  +++ b/src/include/k5-int.h

  @@ -128,6 +128,7 @@ typedef unsigned char   u_char;

   #define KRB5_KDB_MAX_RLIFE      (60*60*24*7) /* one week */

  diff --git a/src/include/k5-label.h b/src/include/k5-label.h

  new file mode 100644

  --- /dev/null

  +++ b/src/include/k5-label.h

  @@ -0,0 +1,32 @@

  +#endif

  +#endif

  diff --git a/src/include/krb5/krb5.hin b/src/include/krb5/krb5.hin

  --- a/src/include/krb5/krb5.hin

  +++ b/src/include/krb5/krb5.hin

  @@ -87,6 +87,12 @@

   #include <stdlib.h>

  diff --git a/src/kadmin/dbutil/dump.c b/src/kadmin/dbutil/dump.c

  --- a/src/kadmin/dbutil/dump.c

  +++ b/src/kadmin/dbutil/dump.c

  @@ -148,12 +148,21 @@ create_ofile(char *ofile, char **tmpname)

           com_err(progname, errno, _("while creating 'ok' file, '%s'"), file_ok);

           goto cleanup;

  diff --git a/src/kdc/main.c b/src/kdc/main.c

  --- a/src/kdc/main.c

  +++ b/src/kdc/main.c

       FILE *file;

       unsigned long pid;

           return errno;

       pid = (unsigned long) getpid();

  diff --git a/src/kprop/kpropd.c b/src/kprop/kpropd.c

  --- a/src/kprop/kpropd.c

  +++ b/src/kprop/kpropd.c

       krb5_enctype etype;

       int database_fd;

       char host[INET6_ADDRSTRLEN + 1];

       signal_wrapper(SIGALRM, alarm_handler);

       alarm(params.iprop_resync_timeout);

           free(name);

           exit(1);

       }

                               KRB5_LOCKMODE_EXCLUSIVE | KRB5_LOCKMODE_DONTBLOCK);

       if (retval) {

  diff --git a/src/lib/kadm5/logger.c b/src/lib/kadm5/logger.c

  --- a/src/lib/kadm5/logger.c

  +++ b/src/lib/kadm5/logger.c

  @@ -309,7 +309,7 @@ krb5_klog_init(krb5_context kcontext, char *ename, char *whoami, krb5_boolean do

                   set_cloexec_file(f);

                   log_control.log_entries[lindex].lfu_filep = f;

  diff --git a/src/lib/kdb/kdb_log.c b/src/lib/kdb/kdb_log.c

  --- a/src/lib/kdb/kdb_log.c

  +++ b/src/lib/kdb/kdb_log.c

  @@ -480,7 +480,7 @@ ulog_map(krb5_context context, const char *logname, uint32_t ulogentries)

               retval = errno;

               goto cleanup;

  diff --git a/src/lib/krb5/ccache/cc_dir.c b/src/lib/krb5/ccache/cc_dir.c

  --- a/src/lib/krb5/ccache/cc_dir.c

  +++ b/src/lib/krb5/ccache/cc_dir.c

  @@ -183,10 +183,19 @@ write_primary_file(const char *primary_path, const char *contents)

                     _("Credential cache directory %s does not exist"),

                     dirname);

  diff --git a/src/lib/krb5/keytab/kt_file.c b/src/lib/krb5/keytab/kt_file.c

  --- a/src/lib/krb5/keytab/kt_file.c

  +++ b/src/lib/krb5/keytab/kt_file.c

  @@ -735,14 +735,14 @@ krb5_ktfileint_open(krb5_context context, krb5_keytab id, int mode)

                   goto report_errno;

               writevno = 1;

  diff --git a/src/lib/krb5/os/trace.c b/src/lib/krb5/os/trace.c

  --- a/src/lib/krb5/os/trace.c

  +++ b/src/lib/krb5/os/trace.c

       fd = malloc(sizeof(*fd));

       if (fd == NULL)

           return ENOMEM;

           free(fd);

           return errno;

  diff --git a/src/plugins/kdb/db2/adb_openclose.c b/src/plugins/kdb/db2/adb_openclose.c

  --- a/src/plugins/kdb/db2/adb_openclose.c

  +++ b/src/plugins/kdb/db2/adb_openclose.c

  @@ -152,7 +152,7 @@ osa_adb_init_db(osa_adb_db_t *dbp, char *filename, char *lockfilename,

                * maybe someone took away write permission so we could only

                * get shared locks?

  diff --git a/src/plugins/kdb/db2/kdb_db2.c b/src/plugins/kdb/db2/kdb_db2.c

  --- a/src/plugins/kdb/db2/kdb_db2.c

  +++ b/src/plugins/kdb/db2/kdb_db2.c

  @@ -694,8 +694,8 @@ ctx_create_db(krb5_context context, krb5_db2_context *dbc)

           retval = errno;

           goto cleanup;

  diff --git a/src/plugins/kdb/db2/libdb2/btree/bt_open.c b/src/plugins/kdb/db2/libdb2/btree/bt_open.c

  --- a/src/plugins/kdb/db2/libdb2/btree/bt_open.c

  +++ b/src/plugins/kdb/db2/libdb2/btree/bt_open.c

  @@ -60,6 +60,7 @@ static char sccsid[] = "@(#)bt_open.c	8.11 (Berkeley) 11/2/95";

   	} else {

  diff --git a/src/plugins/kdb/db2/libdb2/hash/hash.c b/src/plugins/kdb/db2/libdb2/hash/hash.c

  --- a/src/plugins/kdb/db2/libdb2/hash/hash.c

  +++ b/src/plugins/kdb/db2/libdb2/hash/hash.c

  @@ -51,6 +51,7 @@ static char sccsid[] = "@(#)hash.c	8.12 (Berkeley) 11/7/95";

   		(void)fcntl(hashp->fp, F_SETFD, 1);

   	}

  diff --git a/src/plugins/kdb/db2/libdb2/recno/rec_open.c b/src/plugins/kdb/db2/libdb2/recno/rec_open.c

  --- a/src/plugins/kdb/db2/libdb2/recno/rec_open.c

  +++ b/src/plugins/kdb/db2/libdb2/recno/rec_open.c

  @@ -51,6 +51,7 @@ static char sccsid[] = "@(#)rec_open.c	8.12 (Berkeley) 11/18/94";

   	if (fname != NULL && fcntl(rfd, F_SETFD, 1) == -1) {

  diff --git a/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_services.c b/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_services.c

  --- a/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_services.c

  +++ b/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_services.c

  @@ -190,7 +190,7 @@ kdb5_ldap_stash_service_password(int argc, char **argv)

           if (newfile == NULL) {

               com_err(me, errno, _("Error creating file %s"), tmp_file);

  diff --git a/src/util/profile/prof_file.c b/src/util/profile/prof_file.c

  --- a/src/util/profile/prof_file.c

  +++ b/src/util/profile/prof_file.c

  @@ -33,6 +33,7 @@

           retval = errno;

           if (retval == 0)

  diff --git a/src/util/support/Makefile.in b/src/util/support/Makefile.in

  --- a/src/util/support/Makefile.in

  +++ b/src/util/support/Makefile.in

  @@ -74,6 +74,7 @@ IPC_SYMS= \

  diff --git a/src/util/support/selinux.c b/src/util/support/selinux.c

  new file mode 100644

  --- /dev/null

  +++ b/src/util/support/selinux.c

  @@ -0,0 +1,406 @@

  +}

  +

  +#endif /* USE_SELINUX */

  From: Robbie Harwood <rharwood@redhat.com>

  Date: Tue, 23 Aug 2016 16:49:25 -0400

  Subject: [PATCH] [downstream] fix debuginfo with y.tab.c

   2 files changed, 6 insertions(+), 1 deletion(-)

  diff --git a/src/kadmin/cli/Makefile.in b/src/kadmin/cli/Makefile.in

  --- a/src/kadmin/cli/Makefile.in

  +++ b/src/kadmin/cli/Makefile.in

  @@ -37,3 +37,8 @@ clean-unix::

  +	$(YACC.y) $< 

  +	$(CP) y.tab.c $@

  diff --git a/src/plugins/kdb/ldap/ldap_util/Makefile.in b/src/plugins/kdb/ldap/ldap_util/Makefile.in

  --- a/src/plugins/kdb/ldap/ldap_util/Makefile.in

  +++ b/src/plugins/kdb/ldap/ldap_util/Makefile.in

  @@ -20,7 +20,7 @@ $(PROG): $(OBJS) $(KADMSRV_DEPLIBS) $(KRB5_BASE_DEPLIB) $(GETDATE)

   install:

   	$(INSTALL_PROGRAM) $(PROG) ${DESTDIR}$(ADMIN_BINDIR)/$(PROG)

  From: Robbie Harwood <rharwood@redhat.com>

  Date: Tue, 26 Mar 2019 18:51:10 -0400

  Subject: [PATCH] [downstream] Remove 3des support

  to user other enctypes.  Mark the 3DES enctypes UNSUPPORTED and retain

  their constants.

  [antorres@redhat.com: remove diffs for:

       - src/kdamin/testing/proto/kdc.conf.proto

       - src/lib/kadm5/unit-test/api.current/chpass-principal-v2.exp

       - src/lib/kadm5/unit-test/api.current/get-principal-v2.exp

       - src/lib/kadm5/unit-test/api.current/randkey-principal-v2.exp

   since they were removed by Remove-TCL-based-libkadm5-API-tests.patch]

  ---

   doc/admin/advanced/retiring-des.rst           |  11 +

   doc/admin/conf_files/kdc_conf.rst             |   7 +-

   doc/conf.py                                   |   2 +-

   doc/mitK5features.rst                         |   2 +-

   src/Makefile.in                               |   4 +-

   src/include/krb5/krb5.hin                     |  10 +-

   src/kdc/kdc_util.c                            |   4 -

   src/lib/crypto/Makefile.in                    |   8 +-

   src/lib/crypto/builtin/Makefile.in            |   6 +-

   src/lib/crypto/builtin/des/ISSUES             |  13 -

   src/lib/crypto/builtin/des/des_int.h          | 285 -------------

   src/lib/crypto/builtin/des/destest.c          | 240 -----------

   src/lib/crypto/builtin/des/doc/libdes.doc     | 208 ---------

   src/lib/crypto/builtin/des/f_cbc.c            | 256 ------------

   src/lib/crypto/builtin/des/f_tables.h         | 285 -------------

   src/lib/crypto/builtin/des/keytest.data       | 171 --------

   src/lib/crypto/builtin/des/t_verify.c         | 395 ------------------

   src/lib/crypto/crypto_tests/t_cf2.expected    |   1 -

   src/lib/crypto/crypto_tests/t_cf2.in          |   5 -

   src/lib/crypto/crypto_tests/t_cksums.c        |  10 -

   src/lib/crypto/crypto_tests/t_encrypt.c       |   1 -

   src/lib/crypto/crypto_tests/t_short.c         |   1 -

   src/lib/crypto/crypto_tests/t_str2key.c       |  52 ---

   src/lib/crypto/krb/Makefile.in                |   3 -

   src/lib/crypto/krb/cksumtypes.c               |   6 -

   src/lib/crypto/krb/default_state.c            |  10 -

   src/lib/crypto/krb/enctype_util.c             |   3 +

   src/lib/crypto/krb/etypes.c                   |  21 -

   src/lib/crypto/krb/prf_des.c                  |  47 ---

   src/lib/crypto/libk5crypto.exports            |   1 -

   src/lib/crypto/openssl/Makefile.in            |   8 +-

   src/lib/crypto/openssl/des/Makefile.in        |  20 -

   .../crypto/openssl/enc_provider/Makefile.in   |   3 -

   src/lib/crypto/openssl/enc_provider/deps      |  11 -

   src/lib/gssapi/krb5/accept_sec_context.c      |   1 -

   src/lib/gssapi/krb5/gssapiP_krb5.h            |   6 +-

   src/lib/gssapi/krb5/k5seal.c                  |  35 +-

   src/lib/gssapi/krb5/k5sealiov.c               |  27 +-

   src/lib/gssapi/krb5/k5unsealiov.c             |  38 +-

   src/lib/gssapi/krb5/util_crypt.c              |  11 -

   src/lib/krb5/krb/init_ctx.c                   |   3 -

   src/lib/krb5/krb/s4u_creds.c                  |   2 -

   src/lib/krb5/krb/t_etypes.c                   |  48 +--

   src/lib/krb5/os/t_trace.c                     |   4 +-

   src/lib/krb5/os/t_trace.ref                   |   2 +-

   src/plugins/preauth/pkinit/pkcs11.h           |   6 +-

   src/plugins/preauth/spake/t_vectors.c         |  25 --

   src/tests/gssapi/t_enctypes.py                |  33 +-

   src/tests/gssapi/t_invalid.c                  |  12 -

   src/tests/gssapi/t_pcontok.c                  |  16 +-

   src/tests/t_salt.py                           |   5 +-

   src/util/k5test.py                            |   7 -

   .../leash/htmlhelp/html/Encryption_Types.htm  |  13 -

   delete mode 100644 src/lib/crypto/builtin/des/ISSUES

   delete mode 100644 src/lib/crypto/builtin/des/Makefile.in

   delete mode 100644 src/lib/crypto/builtin/des/d3_aead.c

   delete mode 100644 src/lib/crypto/openssl/enc_provider/des3.c

  diff --git a/doc/admin/advanced/retiring-des.rst b/doc/admin/advanced/retiring-des.rst

  --- a/doc/admin/advanced/retiring-des.rst

  +++ b/doc/admin/advanced/retiring-des.rst

  @@ -10,6 +10,13 @@ ability have rendered DES vulnerable to brute force attacks on its 56-bit

   -------------

  diff --git a/doc/admin/conf_files/kdc_conf.rst b/doc/admin/conf_files/kdc_conf.rst

  --- a/doc/admin/conf_files/kdc_conf.rst

  +++ b/doc/admin/conf_files/kdc_conf.rst

   compatibility but not recommended for use.

   ==================================================== =========================================================

   aes256-cts-hmac-sha1-96 aes256-cts aes256-sha1       AES-256 CTS mode with 96-bit SHA-1 HMAC

   aes128-cts-hmac-sha1-96 aes128-cts aes128-sha1       AES-128 CTS mode with 96-bit SHA-1 HMAC

   aes256-cts-hmac-sha384-192 aes256-sha2               AES-256 CTS mode with 192-bit SHA-384 HMAC

   arcfour-hmac-exp rc4-hmac-exp arcfour-hmac-md5-exp   Exportable RC4 with HMAC/MD5 (weak)

   camellia256-cts-cmac camellia256-cts                 Camellia-256 CTS mode with CMAC

   camellia128-cts-cmac camellia128-cts                 Camellia-128 CTS mode with CMAC

   aes                                                  The AES family: aes256-cts-hmac-sha1-96, aes128-cts-hmac-sha1-96, aes256-cts-hmac-sha384-192, and aes128-cts-hmac-sha256-128

   rc4                                                  The RC4 family: arcfour-hmac

   camellia                                             The Camellia family: camellia256-cts-cmac and camellia128-cts-cmac

   Types or families can be prefixed with a plus sign ("+") for symmetry;

   it has the same meaning as just listing the type or family.  For

   example, "``DEFAULT -rc4``" would be the default set of encryption

   While **aes128-cts** and **aes256-cts** are supported for all Kerberos

  diff --git a/doc/admin/enctypes.rst b/doc/admin/enctypes.rst

  --- a/doc/admin/enctypes.rst

  +++ b/doc/admin/enctypes.rst

  @@ -129,7 +129,7 @@ enctype                    weak?      krb5     Windows

   Migrating away from older encryption types

  diff --git a/doc/admin/troubleshoot.rst b/doc/admin/troubleshoot.rst

  --- a/doc/admin/troubleshoot.rst

  +++ b/doc/admin/troubleshoot.rst

  @@ -73,11 +73,10 @@ credential verification failed: KDC has no support for encryption type

   .. _err_cert_chain_cert_expired:

  diff --git a/doc/appdev/refs/macros/index.rst b/doc/appdev/refs/macros/index.rst

  --- a/doc/appdev/refs/macros/index.rst

  +++ b/doc/appdev/refs/macros/index.rst

  @@ -36,7 +36,6 @@ Public

      CKSUMTYPE_NIST_SHA.rst

      CKSUMTYPE_RSA_MD4.rst

  diff --git a/doc/conf.py b/doc/conf.py

  --- a/doc/conf.py

  +++ b/doc/conf.py

  @@ -278,7 +278,7 @@ else:

   .. |copy| unicode:: U+000A9

   '''

  diff --git a/doc/mitK5features.rst b/doc/mitK5features.rst

  --- a/doc/mitK5features.rst

  +++ b/doc/mitK5features.rst

  @@ -37,7 +37,7 @@ Database backends: LDAP, DB2, LMDB

   Interoperability

   ----------------

  diff --git a/src/Makefile.in b/src/Makefile.in

  --- a/src/Makefile.in

  +++ b/src/Makefile.in

  @@ -130,7 +130,7 @@ WINMAKEFILES=Makefile \

   ##DOS##	$(WCONFIG) config < $@.in > $@

   ##DOS##lib\crypto\builtin\camellia\Makefile: lib\crypto\builtin\camellia\Makefile.in $(MKFDEP)

  diff --git a/src/configure.ac b/src/configure.ac

  --- a/src/configure.ac

  +++ b/src/configure.ac

  diff --git a/src/include/krb5/krb5.hin b/src/include/krb5/krb5.hin

  --- a/src/include/krb5/krb5.hin

  +++ b/src/include/krb5/krb5.hin

  @@ -426,8 +426,8 @@ typedef struct _krb5_crypto_iov {

   #define ENCTYPE_AES128_CTS_HMAC_SHA1_96     0x0011 /**< RFC 3962 */

   #define ENCTYPE_AES256_CTS_HMAC_SHA1_96     0x0012 /**< RFC 3962 */

   #define ENCTYPE_AES128_CTS_HMAC_SHA256_128  0x0013 /**< RFC 8009 */

   #define CKSUMTYPE_RSA_MD5       0x0007

   #define CKSUMTYPE_RSA_MD5_DES   0x0008

   #define CKSUMTYPE_NIST_SHA      0x0009

  -#define CKSUMTYPE_HMAC_SHA1_DES3      0x000c

  +#define CKSUMTYPE_HMAC_SHA1_DES3      0x000c /* @deprecated removed */

   #define CKSUMTYPE_HMAC_SHA1_96_AES128 0x000f /**< RFC 3962. Used with

                                                   ENCTYPE_AES128_CTS_HMAC_SHA1_96 */

  diff --git a/src/kdc/kdc_util.c b/src/kdc/kdc_util.c

  --- a/src/kdc/kdc_util.c

  +++ b/src/kdc/kdc_util.c

           name = "rsaEncryption-EnvOID";

       else if (ktype == ENCTYPE_RSA_ES_OAEP_ENV)

           name = "id-RSAES-OAEP-EnvOID";

       else

           return krb5_enctype_to_name(ktype, FALSE, buf, buflen);

   enctype_requires_etype_info_2(krb5_enctype enctype)

   {

       switch(enctype) {

       case ENCTYPE_ARCFOUR_HMAC_EXP :

           return 0;

  diff --git a/src/lib/crypto/Makefile.in b/src/lib/crypto/Makefile.in

  --- a/src/lib/crypto/Makefile.in

  +++ b/src/lib/crypto/Makefile.in

   SHLIB_LDFLAGS= $(LDFLAGS) @SHLIB_RPATH_DIRS@

   ##DOS##LIBNAME=$(OUTPRE)crypto.lib

   all-unix: all-liblinks

   install-unix: install-libs

  diff --git a/src/lib/crypto/builtin/Makefile.in b/src/lib/crypto/builtin/Makefile.in

  --- a/src/lib/crypto/builtin/Makefile.in

  +++ b/src/lib/crypto/builtin/Makefile.in

  @@ -1,6 +1,6 @@

   BUILDTOP=$(REL)..$(S)..$(S)..

  -SUBDIRS=camellia des aes md4 md5 sha1 sha2 enc_provider hash_provider

  +SUBDIRS=camellia aes md4 md5 sha1 sha2 enc_provider hash_provider

   ##DOS##BUILDTOP = ..\..\..

   	$(srcdir)/pbkdf2.c	

  -STOBJLISTS= des/OBJS.ST md4/OBJS.ST 	\

   	md5/OBJS.ST sha1/OBJS.ST sha2/OBJS.ST	\

   	enc_provider/OBJS.ST 		\

   	hash_provider/OBJS.ST 		\

   	camellia/OBJS.ST 		\

   	OBJS.ST

   		hash_provider/OBJS.ST 		\

  diff --git a/src/lib/crypto/builtin/des/ISSUES b/src/lib/crypto/builtin/des/ISSUES