svn commit: r259449 - in stable/8: . crypto/heimdal/lib/gssapi/krb5 sys/sys

Glen Barber gjb at
Mon Dec 16 03:40:46 UTC 2013

On Mon, Dec 16, 2013 at 02:30:57AM +0000, Benjamin Kaduk wrote:
> Author: bjk (doc committer)
> Date: Mon Dec 16 02:30:56 2013
> New Revision: 259449
> URL:
> Log:
>   MFC r259286,259424,259425:
>     Apply patch from upstream Heimdal for encoding fix
>     RFC 4402 specifies the implementation of the gss_pseudo_random()
>     function for the krb5 mechanism (and the C bindings therein).
>     The implementation uses a PRF+ function that concatenates the output
>     of individual krb5 pseudo-random operations produced with a counter
>     and seed.  The original implementation of this function in Heimdal
>     incorrectly encoded the counter as a little-endian integer, but the
>     RFC specifies the counter encoding as big-endian.  The implementation
>     initializes the counter to zero, so the first block of output (16 octets,
>     for the modern AES enctypes 17 and 18) is unchanged.  (RFC 4402 specifies
>     that the counter should begin at 1, but both existing implementations
>     begin with zero and it looks like the standard will be re-issued, with
>     test vectors, to begin at zero.)

This breaks stable/8 build.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 834 bytes
Desc: not available
URL: <>

More information about the svn-src-stable-8 mailing list