oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

(krb5_mk_req_internal): try to handle old DCE secd's that are not able

Browse Source 
to handle MD5 checksums by defaulting to MD4 if the keytype was
DES-CBC-CRC


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6053 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Assar Westerlund
1999-04-25 17:44:01 +00:00
parent a8e18d82c4
commit 3623dc5593
1 changed files with 19 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
lib/krb5/mk_req_ext.c
View File

@@ -94,16 +94,26 @@ krb5_mk_req_internal(krb5_context context,
krb5_copy_keyblock(context, &in_creds->session, &ac->keyblock); krb5_copy_keyblock(context, &in_creds->session, &ac->keyblock);
if (in_data) { if (in_data) {
krb5_crypto crypto; if(ac->keyblock->keytype == ETYPE_DES_CBC_CRC) {
krb5_crypto_init(context, ac->keyblock, 0, &crypto); /* this is to make DCE secd (and older MIT kdcs?) happy */
ret = krb5_create_checksum(context, ret = krb5_create_checksum(context,
crypto, NULL,
usage, CKSUMTYPE_RSA_MD4,
in_data->data, in_data->data,
in_data->length, in_data->length,
&c); &c);
} else {
krb5_crypto crypto;
krb5_crypto_init(context, ac->keyblock, 0, &crypto);
ret = krb5_create_checksum(context,
crypto,
usage,
in_data->data,
in_data->length,
&c);
krb5_crypto_destroy(context, crypto); krb5_crypto_destroy(context, crypto);
}
c_opt = &c; c_opt = &c;
} else { } else {
c_opt = NULL; c_opt = NULL;