Re: RC4 Unicode Passwords?

[Michael B Allen <miallen@ioplex.com>]

On Sun, 1 Jun 2008 15:38:15 -0700
Love Hörnquist Åstrand <lha@kth.se> wrote:

> 
> 29 maj 2008 kl. 18.52 skrev Michael B Allen:
> 
> > In ARCHFOUR_string_to_key, can password.data be UTF-8? If so, then I
> > assume Heimdal does not support Unicode passwords. Not even Latin1.
> >
> >  for (p = s, i = 0; i < password.length; ++i) {
> >      *p++ = ((char *)password.data)[i];
> >      *p++ = 0;
> >  }
> >
> > I assume I must be incorrect about this. Otherwise someone probably
> > would have hit this already.
> 
> You are correct. If you can test trunk it should be fixed there,  
> please let me know and I'll pull them up to 1.2 branch for the 1.2.1  
> release.

Regarding:

  ret = wind_utf8ucs2(password.data, s, &len);
  if (ret) {
      krb5_set_error_string(context, "Password not an UCS2 string");

I think the error message should be more like:

  "Password is not a UTF-8 string"

Mike

-- 
Michael B Allen
PHP Active Directory SPNEGO SSO
http://www.ioplex.com/