SYNOPSIS

#include <shishi.h>

int shishi_kdc_check_nonce(Shishi * handle, Shishi_asn1 kdcreq, Shishi_asn1 enckdcreppart);

ARGUMENTS

Shishi * handle

shishi handle as allocated by shishi_init().

Shishi_asn1 kdcreq

KDC-REQ to compare nonce field in.

Shishi_asn1 enckdcreppart

Encrypted KDC-REP part to compare nonce field in.

DESCRIPTION

Verify that KDC-REQ.req-body.nonce and EncKDCRepPart.nonce fields matches. This is one of the steps that has to be performed when processing a KDC-REQ and KDC-REP exchange.

RETURN VALUE

Returns SHISHI_OK if successful, SHISHI_NONCE_LENGTH_MISMATCH if the nonces have different lengths (usually indicates that buggy server truncated nonce to 4 bytes), SHISHI_NONCE_MISMATCH if the values differ, or an error code.

REPORTING BUGS

Report bugs to <[email protected]>.

COPYRIGHT

Copyright © 2002-2010 Simon Josefsson.

Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

RELATED TO shishi_kdc_check_nonce…

The full documentation for shishi is maintained as a Texinfo manual. If the info and shishi programs are properly installed at your site, the command

  • info shishi

should give you access to the complete manual.