26 May
2025
26 May
'25
3:05 p.m.
On Mon May 26 14:55:27 2025 +0000, Dmitry Timoshkov wrote:
I used https://web.mit.edu/kerberos/krb5-1.17/doc/appdev/gssapi.html as a reference, and it says "The DATA buffer will be initialized to point to the decrypted data within the STREAM buffer, unless it has the **GSS_C_BUFFER_FLAG_ALLOCATE** flag set, in which case it will be initialized with a copy of the decrypted data."
We should use GSS_C_BUFFER_FLAG_ALLOCATE then, the app may not expect the stream buffer to be modified.