diff options
Diffstat (limited to 'usr.sbin/xntpd/lib/a_md5encrypt.c')
-rw-r--r-- | usr.sbin/xntpd/lib/a_md5encrypt.c | 68 |
1 files changed, 68 insertions, 0 deletions
diff --git a/usr.sbin/xntpd/lib/a_md5encrypt.c b/usr.sbin/xntpd/lib/a_md5encrypt.c new file mode 100644 index 000000000000..a26e8f0d2afc --- /dev/null +++ b/usr.sbin/xntpd/lib/a_md5encrypt.c @@ -0,0 +1,68 @@ +/* authmd5encrypt.c,v 3.1 1993/07/06 01:07:54 jbj Exp + * md5crypt - MD5 based authentication routines + */ + +#include "ntp_types.h" +#include "ntp_string.h" +#include "md5.h" +#include "ntp_stdlib.h" + +extern U_LONG cache_keyid; +extern char *cache_key; +extern int cache_keylen; + +/* + * Stat counters, imported from data base module + */ +extern U_LONG authencryptions; +extern U_LONG authdecryptions; +extern U_LONG authkeyuncached; +extern U_LONG authdecryptok; +extern U_LONG authnokey; + +/* + * For our purposes an NTP packet looks like: + * + * a variable amount of encrypted data, multiple of 8 bytes, followed by: + * NOCRYPT_OCTETS worth of unencrypted data, followed by: + * BLOCK_OCTETS worth of ciphered checksum. + */ +#define NOCRYPT_OCTETS 4 +#define BLOCK_OCTETS 16 + +#define NOCRYPT_LONGS ((NOCRYPT_OCTETS)/sizeof(U_LONG)) +#define BLOCK_LONGS ((BLOCK_OCTETS)/sizeof(U_LONG)) + + +int +MD5authencrypt(keyno, pkt, length) + U_LONG keyno; + U_LONG *pkt; + int length; /* length of encrypted portion of packet */ +{ + MD5_CTX ctx; + int len; /* in 4 byte quantities */ + + authencryptions++; + + if (keyno != cache_keyid) { + authkeyuncached++; + if (!authhavekey(keyno)) { + authnokey++; + return 0; + } + } + + len = length / sizeof(U_LONG); + + /* + * Generate the authenticator. + */ + MD5Init(&ctx); + MD5Update(&ctx, cache_key, cache_keylen); + MD5Update(&ctx, (char *)pkt, length); + MD5Final(&ctx); + + bcopy((char *)ctx.digest, (char *) &pkt[NOCRYPT_LONGS + len], BLOCK_OCTETS); + return 4 + BLOCK_OCTETS; /* return size of key and MAC */ +} |