krb5: Use iovecs internally for checksum verification

When verifying checksums, pass iovecs through to the individual verify routines.
2018-05-14 15:00:05 +01:00
parent ca756f0f7f
commit 8f947638c7
5 changed files with 19 additions and 14 deletions
--- a/lib/krb5/crypto.c
+++ b/lib/krb5/crypto.c
@@ -286,6 +286,7 @@ krb5_hmac(krb5_context context,
 {
    struct _krb5_checksum_type *c = _krb5_find_checksum(cktype);
    struct _krb5_key_data kd;
+
    krb5_error_code ret;

    if (c == NULL) {
@@ -524,7 +525,7 @@ verify_checksum(krb5_context context,
    iov[0].flags = KRB5_CRYPTO_TYPE_DATA;

    if(ct->verify) {
-	ret = (*ct->verify)(context, dkey, data, len, usage, cksum);
+	ret = (*ct->verify)(context, dkey, usage, iov, 1, cksum);
 	if (ret)
 	    krb5_set_error_message(context, ret,
 				   N_("Decrypt integrity check failed for checksum "