Author: abartlet Date: 2005-09-11 09:26:55 +0000 (Sun, 11 Sep 2005) New Revision: 468
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=lorikeet&rev=468 Log: This patch adds a new function: OM_uint32 gsskrb5_wrap_size ( OM_uint32 * /*minor_status*/, const gss_ctx_id_t /*context_handle*/, int /*conf_req_flag*/, gss_qop_t /*qop_req*/, OM_uint32 /*req_input_size*/, OM_uint32 * /*output_size*/ ); This tells the caller what the wrapped size would be, given an input size. From there, I can tell what the 'signature' portion would be, as well as correctly filling in the length in the DCE/RPC header. My testing so far has been on AES and ARCFOUR over DCE/RPC, where this seems to match up with the results of the actual sealing. I've posted it to the samba-technical and heimdal-discuss lists, but I'm still happy to get comments on this patch. (as well as any hints towards any testing setup that may already exist for the size_limit function). I have renamed it from gss_wrap_size(), as it was correctly pointed out that mechs other than krb5 may not provide such a simple link. Andrew Bartlett Modified: trunk/heimdal/lib/gssapi/arcfour.c trunk/heimdal/lib/gssapi/arcfour.h trunk/heimdal/lib/gssapi/cfx.c trunk/heimdal/lib/gssapi/cfx.h trunk/heimdal/lib/gssapi/gssapi.h trunk/heimdal/lib/gssapi/wrap.c Changeset: Sorry, the patch is too large (337 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=lorikeet&rev=468