104 lines
3.5 KiB
C
104 lines
3.5 KiB
C
#include <string.h>
|
|
#include "http_auth_digest.h"
|
|
|
|
#include "config.h"
|
|
#include "buffer.h"
|
|
|
|
#ifndef USE_OPENSSL
|
|
# include "md5_global.h"
|
|
# include "md5.h"
|
|
#endif
|
|
|
|
void CvtHex(IN HASH Bin, OUT HASHHEX Hex) {
|
|
unsigned short i;
|
|
|
|
for (i = 0; i < HASHLEN; i++) {
|
|
Hex[i*2] = int2hex((Bin[i] >> 4) & 0xf);
|
|
Hex[i*2+1] = int2hex(Bin[i] & 0xf);
|
|
}
|
|
Hex[HASHHEXLEN] = '\0';
|
|
}
|
|
|
|
/* calculate H(A1) as per spec */
|
|
void DigestCalcHA1(
|
|
IN char * pszAlg,
|
|
IN char * pszUserName,
|
|
IN char * pszRealm,
|
|
IN char * pszPassword,
|
|
IN char * pszNonce,
|
|
IN char * pszCNonce,
|
|
OUT HASHHEX SessionKey
|
|
)
|
|
{
|
|
MD5_CTX Md5Ctx;
|
|
HASH HA1;
|
|
|
|
MD5_Init(&Md5Ctx);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszUserName, strlen(pszUserName));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszRealm, strlen(pszRealm));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszPassword, strlen(pszPassword));
|
|
MD5_Final(HA1, &Md5Ctx);
|
|
if (strcasecmp(pszAlg, "md5-sess") == 0) {
|
|
MD5_Init(&Md5Ctx);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHLEN);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));
|
|
MD5_Final(HA1, &Md5Ctx);
|
|
}
|
|
CvtHex(HA1, SessionKey);
|
|
}
|
|
|
|
/* calculate request-digest/response-digest as per HTTP Digest spec */
|
|
void DigestCalcResponse(
|
|
IN HASHHEX HA1, /* H(A1) */
|
|
IN char * pszNonce, /* nonce from server */
|
|
IN char * pszNonceCount, /* 8 hex digits */
|
|
IN char * pszCNonce, /* client nonce */
|
|
IN char * pszQop, /* qop-value: "", "auth", "auth-int" */
|
|
IN char * pszMethod, /* method from the request */
|
|
IN char * pszDigestUri, /* requested URL */
|
|
IN HASHHEX HEntity, /* H(entity body) if qop="auth-int" */
|
|
OUT HASHHEX Response /* request-digest or response-digest */
|
|
)
|
|
{
|
|
MD5_CTX Md5Ctx;
|
|
HASH HA2;
|
|
HASH RespHash;
|
|
HASHHEX HA2Hex;
|
|
|
|
/* calculate H(A2) */
|
|
MD5_Init(&Md5Ctx);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszMethod, strlen(pszMethod));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszDigestUri, strlen(pszDigestUri));
|
|
if (strcasecmp(pszQop, "auth-int") == 0) {
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)HEntity, HASHHEXLEN);
|
|
};
|
|
MD5_Final(HA2, &Md5Ctx);
|
|
CvtHex(HA2, HA2Hex);
|
|
|
|
/* calculate response */
|
|
MD5_Init(&Md5Ctx);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHHEXLEN);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
if (*pszQop) {
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszNonceCount, strlen(pszNonceCount));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
MD5_Update(&Md5Ctx, (unsigned char *)pszQop, strlen(pszQop));
|
|
MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
|
|
}
|
|
MD5_Update(&Md5Ctx, (unsigned char *)HA2Hex, HASHHEXLEN);
|
|
MD5_Final(RespHash, &Md5Ctx);
|
|
CvtHex(RespHash, Response);
|
|
}
|
|
|