[2782] in Kerberos-V5-bugs
Re: krb5-libs/467: AFS string_to_key bounds problems...
daemon@ATHENA.MIT.EDU (Ezra Peisach)
Fri Aug 29 23:05:05 1997
To: "Theodore Y. Ts'o" <tytso@MIT.EDU>
Cc: krb5-bugs@MIT.EDU, epeisach@MIT.EDU, krb5-unassigned@rt-11.MIT.EDU,
gnats-admin@rt-11.MIT.EDU, krb5-prs@rt-11.MIT.EDU
In-Reply-To: Your message of "Fri, 29 Aug 1997 22:29:55 EDT."
<199708300229.WAA15276@dcl.MIT.EDU>
Date: Fri, 29 Aug 1997 23:04:54 EDT
From: Ezra Peisach <epeisach@MIT.EDU>
>I haven't yet had a chance to look at the relevant code yet, but --- is
>there a good reason why mit_afs_string_to_key doesn't use salt->length
>to determine the lentgh of the realm?
Yeah - it's called abstraction... The salt->length is set to -1 and
krb5_string_to_key "knows" that this means we want an AFS string to
key included in this mess. I suppose an alternate solution would be to set the
length to negative of the required length - but I would have to think of the
"0" case - could we get there, etc....
Ezra
