[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: arcfour-hmac checksum salt value
>>> While implementing arcfour-hmac for Linux Kernel NFS use, I have run
>>> into the following issue:
>>>
>> From where do you get 13 in heimdal ?
>>
>> From what I can read, heimdal uses KRB5_KU_USAGE_SIGN that later in
>> the crypto layer is mapped to 15 for the mic checksum.
>>
> Function usage2arcfour() when given KRB5_KU_USAGE_SEAL.
>
> _gsskrb5_wrap()
> --> _gssapi_wrap_arcfour()
> --> arcfour_mic_cksum()
> --> krb5_create_checksum()
> --> usage2arcfour()
>
> I was only looking at your code (and testing my code against Solaris).
>
> Let me know if I'm misreading this...
Ah, confused wrap with mic. if you look at older drafts they uses 13
for wrap [1]. 15 must be a copy and paste error.
Love
[1] http://tools.ietf.org/html/draft-brezak-win2k-krb-rc4-hmac-02