Re: [kitten] krb5 gss_pseudo_random implementation/spec variance
Jeffrey Hutzelman <jhutz@cmu.edu> Wed, 11 December 2013 22:17 UTC
Return-Path: <jhutz@cmu.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D2101AE0D6 for <kitten@ietfa.amsl.com>; Wed, 11 Dec 2013 14:17:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BRcGfuO9wa6W for <kitten@ietfa.amsl.com>; Wed, 11 Dec 2013 14:17:33 -0800 (PST)
Received: from smtp03.srv.cs.cmu.edu (smtp03.srv.cs.cmu.edu [128.2.217.202]) by ietfa.amsl.com (Postfix) with ESMTP id 98F3B1ADDD2 for <kitten@ietf.org>; Wed, 11 Dec 2013 14:17:32 -0800 (PST)
Received: from [128.237.252.124] ([128.237.252.124]) (authenticated bits=0) by smtp03.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id rBBMHPVK021074 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 11 Dec 2013 17:17:26 -0500 (EST)
Message-ID: <1386800244.25257.10.camel@destiny.pc.cs.cmu.edu>
From: Jeffrey Hutzelman <jhutz@cmu.edu>
To: kitten@ietf.org
Date: Wed, 11 Dec 2013 17:17:24 -0500
In-Reply-To: <3541_1386796395_rBBLDESk020467_x7d61qv852r.fsf@equal-rites.mit.edu>
References: <3541_1386796395_rBBLDESk020467_x7d61qv852r.fsf@equal-rites.mit.edu>
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.8.4-0ubuntu1
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Scanned-By: mimedefang-cmuscs on 128.2.217.202
Cc: jhutz@cmu.edu
Subject: Re: [kitten] krb5 gss_pseudo_random implementation/spec variance
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Dec 2013 22:17:35 -0000
On Wed, 2013-12-11 at 16:12 -0500, Greg Hudson wrote: > The MIT krb5 implementation (present since release 1.8 in early 2010) > starts at 00 00 00 00 instead of 00 00 00 01. > > The Heimdal implementation (present since release 1.4 in late 2010) also > starts at 00 00 00 00. Heimdal encoded the counter in little-endian, > but this was changed to big-endian on master on 2013-10-30. Because > both implementations start at zero, the difference in endianness > doesn't cause a discrepancy in the first block of output. ... and this is why things like this ought to have test vectors. Which, of course, only helps you if the test vectors weren't generated by running an incorrect implementation. -- Jeff
- [kitten] krb5 gss_pseudo_random implementation/sp… Greg Hudson
- Re: [kitten] krb5 gss_pseudo_random implementatio… Jeffrey Hutzelman
- Re: [kitten] krb5 gss_pseudo_random implementatio… Benjamin Kaduk
- Re: [kitten] krb5 gss_pseudo_random implementatio… Nico Williams
- Re: [kitten] krb5 gss_pseudo_random implementatio… Greg Hudson