+Sat May 18 01:49:33 1996 Theodore Y. Ts'o <tytso@mit.edu>
+
+ * md4crypto.c: Define MD4_K5BETA_COMPAT and MD4_K5BETA_COMP_DEF so
+ that we continue doing things the wrong (broken) way. All
+ hail backwards compatibility.... The code now generates
+ the old checksum, but it will verify both the old and the
+ correct checksum formats.
+
+ Also fixed two bugs in the "correct" MD4_CRYPTO
+ implementation; use a zero initialization vector, and
+ calculate the confounder at the beginning of the message,
+ not at the end.
+
Tue May 14 19:31:58 1996 Richard Basch <basch@lehman.com>
* md4crypto.c md4glue.c:
krb5_md4_crypto_verify_func PROTOTYPE((krb5_checksum FAR *cksum, krb5_pointer in,
size_t in_length, krb5_pointer seed, size_t seed_length));
+static mit_des_cblock zero_ivec = { 0 };
+
/*
* In Kerberos V5 Beta 5 and previous releases the RSA-MD4-DES implementation
* did not follow RFC1510. The folowing definitions control the compatibility
* the compatible behaviour becomes the default.
*
*/
+#define MD4_K5BETA_COMPAT
+#define MD4_K5BETA_COMPAT_DEF
static void
-krb5_md4_calculate_cksum(md4ctx, in, in_length, confound, confound_length)
+krb5_md4_calculate_cksum(md4ctx, confound, confound_length, in, in_length)
krb5_MD4_CTX *md4ctx;
- krb5_pointer in;
- size_t in_length;
krb5_pointer confound;
size_t confound_length;
+ krb5_pointer in;
+ size_t in_length;
{
krb5_MD4Init(md4ctx);
if (confound && confound_length)
RSA_MD4_DES_CKSUM_LENGTH +
RSA_MD4_DES_CONFOUND_LENGTH,
(struct mit_des_ks_struct *)eblock.priv,
- keyblock.contents,
+ zero_ivec,
MIT_DES_ENCRYPT);
if (retval) {
(void) mit_des_finish_key(&eblock);
RSA_MD4_DES_CONFOUND_LENGTH,
(struct mit_des_ks_struct *)
eblock.priv,
- keyblock.contents,
+ zero_ivec,
MIT_DES_DECRYPT);
if (retval) {
(void) mit_des_finish_key(&eblock);
projects / krb5.git / commitdiff