diff options
| author | Marc Horowitz <marc@mit.edu> | 1998-10-22 21:21:33 +0000 |
|---|---|---|
| committer | Marc Horowitz <marc@mit.edu> | 1998-10-22 21:21:33 +0000 |
| commit | d5392e40a275c7be5124a2ad51243c1bd1b9d4e3 (patch) | |
| tree | 2032a9e788e4194c25e88c4595bf9a4a3098f721 /src | |
| parent | 1b04e829113627f0756f9a5e9e9799f992e9a76b (diff) | |
| download | krb5-d5392e40a275c7be5124a2ad51243c1bd1b9d4e3.zip krb5-d5392e40a275c7be5124a2ad51243c1bd1b9d4e3.tar.gz krb5-d5392e40a275c7be5124a2ad51243c1bd1b9d4e3.tar.bz2 | |
add ivec chaining
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/marc-3des@10985 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src')
| -rw-r--r-- | src/appl/bsd/kcmd.c | 22 |
1 files changed, 20 insertions, 2 deletions
diff --git a/src/appl/bsd/kcmd.c b/src/appl/bsd/kcmd.c index 7d1e761..8cbacca 100644 --- a/src/appl/bsd/kcmd.c +++ b/src/appl/bsd/kcmd.c @@ -91,6 +91,7 @@ static char des_inbuf[2*RCMD_BUFSIZ]; /* needs to be > largest read size */ static char des_outpkt[2*RCMD_BUFSIZ+4]; /* needs to be > largest write size */ static krb5_data desinbuf; static krb5_data desoutbuf; +static krb5_data encivec; static krb5_keyblock *keyblock; /* key for encrypt/decrypt */ static int (*input)(); static int (*output)(); @@ -721,6 +722,7 @@ void rcmd_stream_init_krb5(in_keyblock, encrypt_flag, lencheck) int lencheck; { krb5_error_code status; + size_t blocksize; if (!encrypt_flag) { rcmd_stream_init_normal(); @@ -733,6 +735,22 @@ void rcmd_stream_init_krb5(in_keyblock, encrypt_flag, lencheck) do_lencheck = lencheck; input = v5_des_read; output = v5_des_write; + + if (status = krb5_c_block_size(bsd_context, keyblock->enctype, + &blocksize)) { + /* XXX what do I do? */ + abort(); + } + + encivec.length = blocksize; + + if ((encivec.data = malloc(encivec.length)) == NULL) { + /* XXX what do I do? */ + abort(); + } + + /* is there a better way to initialize this? */ + memset(encivec.data, '\0', blocksize); } #ifdef KRB5_KRB4_COMPAT @@ -848,7 +866,7 @@ static int v5_des_read(fd, buf, len) plain.data = storage; /* decrypt info */ - if (krb5_c_decrypt(bsd_context, keyblock, KCMD_KEYUSAGE, 0, + if (krb5_c_decrypt(bsd_context, keyblock, KCMD_KEYUSAGE, &encivec, &cipher, &plain)) { /* probably out of sync */ errno = EIO; @@ -887,7 +905,7 @@ static int v5_des_write(fd, buf, len) cipher.ciphertext.length = sizeof(des_outpkt)-4; cipher.ciphertext.data = desoutbuf.data; - if (krb5_c_encrypt(bsd_context, keyblock, KCMD_KEYUSAGE, 0, + if (krb5_c_encrypt(bsd_context, keyblock, KCMD_KEYUSAGE, &encivec, &plain, &cipher)) { errno = EIO; return(-1); |