[krbdev.mit.edu #6589] SVN Commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Nov 30 20:36:43 EST 2009
AES messages never need to be padded because the confounder ensures
that the plaintext is at least one block long. Remove a check in
krb5int_dk_decrypt_iov which was rejecting short AES messages because
it didn't count the header length.
http://src.mit.edu/fisheye/changelog/krb5/?cs=23397
Commit By: ghudson
Revision: 23397
Changed Files:
U trunk/src/lib/crypto/krb/dk/dk_aead.c
More information about the krb5-bugs
mailing list