Questions on gss_verify_mic_iov

Natalie Li at
Mon Sep 28 17:25:38 EDT 2015

On 9/26/2015 8:48 AM, Greg Hudson wrote:
> On 09/23/2015 04:08 PM, Natalie Li wrote:
>> 2) MS version of gss_verify_mic_iov (AKA  [MS-KILE]
>> GSS_VerifyMICEx()) successfully verify the MIC token even when the MIC
>> token w/ the trailing zeros is passed as function argument.
>> Can the checksum_iov_v3() be updated as we previously discussed?
> Did Luke's reply adequately address this issue?  You can use
> gss_get_mic_iov_length() to interrogate the context for the appropriate
> length of a MIC token, and truncate the received MS-RPCE token to that
> value.

Yes, it does. Thanks!

More information about the krbdev mailing list