summaryrefslogtreecommitdiff
path: root/source/lib/crypto
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2004-05-25 14:06:28 +0000
committerGerald (Jerry) Carter <jerry@samba.org>2007-10-10 12:56:14 -0500
commit399e2e2b1149b8d1c070aa7f0d5131c0b577d2b9 (patch)
treeed9fc99655941b4b0305df15d4f4fe728b53303f /source/lib/crypto
parent9a9244a1c66654c12abe4379661cba83a73c4c21 (diff)
downloadsamba-399e2e2b1149b8d1c070aa7f0d5131c0b577d2b9.tar.gz
r874: This patch is a pile of work on NTLMSSP:
Samba's NTLMSSP code is now fully talloc based, which should go a long way to cleaning up the memory leaks in this code. This also avoids a lot of extra copies of data, as we now allocate the 'return' blobs on a caller-supplied context. I have also been doing a lot of work towards NTLM2 signing and sealing. I have this working for sealing, but not for the verifier (MD5 integrity check on the stream) which is still incorrect. (I can aim a rpcecho sinkdata from a Win2k3 box to my server, and the data arrives intact, but the signature check fails. It does however match the test values I have...). The new torture test is cludged in - when we get a unit test suite back, I'll happliy put it in the 'right' place.... Andrew Bartlett
Diffstat (limited to 'source/lib/crypto')
-rw-r--r--source/lib/crypto/hmacmd5.c15
1 files changed, 1 insertions, 14 deletions
diff --git a/source/lib/crypto/hmacmd5.c b/source/lib/crypto/hmacmd5.c
index 8ca7dba8411..7697ac8a69f 100644
--- a/source/lib/crypto/hmacmd5.c
+++ b/source/lib/crypto/hmacmd5.c
@@ -77,20 +77,7 @@ void hmac_md5_init_limK_to_64(const uchar* key, int key_len,
key_len = 64;
}
- /* start out by storing key in pads */
- ZERO_STRUCT(ctx->k_ipad);
- ZERO_STRUCT(ctx->k_opad);
- memcpy( ctx->k_ipad, key, key_len);
- memcpy( ctx->k_opad, key, key_len);
-
- /* XOR key with ipad and opad values */
- for (i=0; i<64; i++) {
- ctx->k_ipad[i] ^= 0x36;
- ctx->k_opad[i] ^= 0x5c;
- }
-
- MD5Init(&ctx->ctx);
- MD5Update(&ctx->ctx, ctx->k_ipad, 64);
+ hmac_md5_init_rfc2104(key, key_len, ctx);
}
/***********************************************************************