oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

fix check for keyed and collision-proof checksum

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@3546 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Assar Westerlund
1997-09-23 07:35:52 +00:00
parent 1615f1fc72
commit 1de9ecd915
2 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
kdc/kerberos5.c
View File

@@ -1001,10 +1001,8 @@ tgs_check_authenticator(krb5_auth_context ac,
ret = KRB5KRB_AP_ERR_INAPP_CKSUM; ret = KRB5KRB_AP_ERR_INAPP_CKSUM;
goto out; goto out;
} }
/* XXX */ if (!krb5_checksum_is_keyed(auth->cksum->cksumtype)
if (auth->cksum->cksumtype != CKSUMTYPE_RSA_MD4 && || !krb5_checksum_is_collision_proof(auth->cksum->cksumtype)) {
auth->cksum->cksumtype != CKSUMTYPE_RSA_MD5 &&
auth->cksum->cksumtype != CKSUMTYPE_RSA_MD5_DES){
kdc_log(0, "Bad checksum type in authenticator: %d", kdc_log(0, "Bad checksum type in authenticator: %d",
auth->cksum->cksumtype); auth->cksum->cksumtype);
ret = KRB5KRB_AP_ERR_INAPP_CKSUM; ret = KRB5KRB_AP_ERR_INAPP_CKSUM;

4
lib/krb5/rd_safe.c
View File

@@ -62,8 +62,8 @@ krb5_rd_safe(krb5_context context,
r = KRB5KRB_AP_ERR_MSG_TYPE; r = KRB5KRB_AP_ERR_MSG_TYPE;
goto failure; goto failure;
} }
/* XXX - checksum collision-proff and keyed */ if (!krb5_checksum_is_keyed(safe.cksum.cksumtype)
if (safe.cksum.cksumtype != CKSUMTYPE_RSA_MD5_DES) { || !krb5_checksum_is_collision_proof(safe.cksum.cksumtype)) {
r = KRB5KRB_AP_ERR_INAPP_CKSUM; r = KRB5KRB_AP_ERR_INAPP_CKSUM;
goto failure; goto failure;
} }