Questions on gss_verify_mic_iov
Greg Hudson
ghudson at mit.edu
Sat Sep 26 11:48:55 EDT 2015
On 09/23/2015 04:08 PM, Natalie Li wrote:
> 2) MS version of gss_verify_mic_iov (AKA [MS-KILE] 3.4.5.7
> GSS_VerifyMICEx()) successfully verify the MIC token even when the MIC
> token w/ the trailing zeros is passed as function argument.
>
> Can the checksum_iov_v3() be updated as we previously discussed?
Did Luke's reply adequately address this issue? You can use
gss_get_mic_iov_length() to interrogate the context for the appropriate
length of a MIC token, and truncate the received MS-RPCE token to that
value.
More information about the krbdev
mailing list