From: Paul Park Date: Fri, 7 Jul 1995 21:04:06 +0000 (+0000) Subject: Add checksum verification procedure and dispatch X-Git-Tag: krb5-1.0-beta6~1558 X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=45bc0f1a97107556fabb19d2186eaa1bc99bee94;p=krb5.git Add checksum verification procedure and dispatch git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6258 dc483132-0cff-0310-8789-dd5450dbe970 --- diff --git a/src/lib/crypto/md5/md5glue.c b/src/lib/crypto/md5/md5glue.c index db2351fbf..afaa721fc 100644 --- a/src/lib/crypto/md5/md5glue.c +++ b/src/lib/crypto/md5/md5glue.c @@ -1,10 +1,6 @@ #include "k5-int.h" #include "rsa-md5.h" -krb5_error_code -md5_sum_func KRB5_NPROTOTYPE((krb5_pointer in, size_t in_length, - krb5_pointer seed, size_t seed_length, krb5_checksum *outcksum)); - krb5_error_code md5_sum_func(in, in_length, seed, seed_length, outcksum) krb5_pointer in; @@ -29,9 +25,43 @@ krb5_checksum FAR *outcksum; return 0; } +krb5_error_code +md5_verify_func(cksum, in, in_length, seed, seed_length) +krb5_checksum FAR *cksum; +krb5_pointer in; +size_t in_length; +krb5_pointer seed; +size_t seed_length; +{ + krb5_octet *input = (krb5_octet *)in; + MD5_CTX working; + krb5_error_code retval; + + retval = 0; + if (cksum->checksum_type == CKSUMTYPE_RSA_MD5) { + if (cksum->length == RSA_MD5_CKSUM_LENGTH) { + MD5Init(&working); + MD5Update(&working, input, in_length); + MD5Final(&working); + + if (memcmp((char *) cksum->contents, + (char *) &working.digest[0], + RSA_MD5_CKSUM_LENGTH)) + retval = KRB5KRB_AP_ERR_BAD_INTEGRITY; + memset((char *)&working, 0, sizeof(working)); + } + else + retval = KRB5KRB_AP_ERR_BAD_INTEGRITY; + } + else + retval = KRB5KRB_AP_ERR_INAPP_CKSUM; + return retval; +} + krb5_checksum_entry rsa_md5_cksumtable_entry = { 0, md5_sum_func, + md5_verify_func, RSA_MD5_CKSUM_LENGTH, 1, /* is collision proof */ 0, /* doesn't use key */