cdf39f1369
RFC 3961 says the simplified profile PRF should truncate the hash output to "multiple of m", which MIT krb5 interprets as the largest possible multiple of m. RFC 6113 appendix A also uses that interpretation for the KRB-FX-CF2 test vector. So the DES3 PRF should truncate the 20-byte SHA-1 result to 16 bytes, not 8. Also make krb5_crypto_prf_length work with DES3 by giving the DES3 enctype a non-zero PRF length. Signed-off-by: Nicolas Williams <nico@cryptonector.com>
Heimdal is a Kerberos 5 implementation. For information how to install see <http://www.h5l.org/compile.html>. There are briefer man pages for most of the commands. Bug reports and bugs are appreciated, see more under Bug reports in the manual on how we prefer them: <heimdal-bugs@h5l.org>. For more information see the web-page at <http://www.h5l.org/> or the mailing lists: heimdal-announce@sics.se low-volume announcement heimdal-discuss@sics.se high-volume discussion send a mail to heimdal-announce-request@sics.se and heimdal-discuss-request@sics.se respectively to subscribe.