Re: What am I waiting on for gs2?

[Simon Josefsson <simon@xxxxxxxxxxxxx>]

Simon Josefsson <simon@xxxxxxxxxxxxx> writes:

> +     7 Channel binding negotiation failed.

That was incorrect.  I've fixed this (same URL as before), and also
fixed the bitmask examples to have the bit numbers in the reverse order.

http://josefsson.org/sasl-gs2/draft-ietf-sasl-gs2.txt

/Simon

   The security layers and their corresponding bit-masks are as follows:

     1    No security layer.
     2    Integrity protection.
           Sender calls GSS_Wrap with conf_flag set to FALSE.
     4    Confidentiality protection.
           Sender calls GSS_Wrap with conf_flag set to TRUE.
     8-64 Reserved.
     128  Channel binding negotiation failed.
...
   When confidentiality is negotiated, and channel binding negotiation
   failed, the octet will encode an integer 128+4=132 as follows.

       7 6 5 4 3 2 1 0
      +-+-+-+-+-+-+-+-+
      |1|0|0|0|0|1|0|0|
      +-+-+-+-+-+-+-+-+