lighttpd1.4/src/http_auth_digest.c

#include <string.h>
#include "http_auth_digest.h"

#include "config.h"
#include "buffer.h"

#ifndef USE_OPENSSL
# include "md5_global.h"
# include "md5.h"
#endif

void CvtHex(IN HASH Bin, OUT HASHHEX Hex) {
	unsigned short i;

	for (i = 0; i < HASHLEN; i++) {
		Hex[i*2] = int2hex((Bin[i] >> 4) & 0xf);
		Hex[i*2+1] = int2hex(Bin[i] & 0xf);
	}
	Hex[HASHHEXLEN] = '\0';
}

/* calculate H(A1) as per spec */
void DigestCalcHA1(
    IN char * pszAlg,
    IN char * pszUserName,
    IN char * pszRealm,
    IN char * pszPassword,
    IN char * pszNonce,
    IN char * pszCNonce,
    OUT HASHHEX SessionKey
    )
{
      MD5_CTX Md5Ctx;
      HASH HA1;

      MD5_Init(&Md5Ctx);
      MD5_Update(&Md5Ctx, (unsigned char *)pszUserName, strlen(pszUserName));
      MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      MD5_Update(&Md5Ctx, (unsigned char *)pszRealm, strlen(pszRealm));
      MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      MD5_Update(&Md5Ctx, (unsigned char *)pszPassword, strlen(pszPassword));
      MD5_Final(HA1, &Md5Ctx);
      if (strcasecmp(pszAlg, "md5-sess") == 0) {
            MD5_Init(&Md5Ctx);
            MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHLEN);
            MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
            MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));
            MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
            MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));
            MD5_Final(HA1, &Md5Ctx);
      }
      CvtHex(HA1, SessionKey);
}

/* calculate request-digest/response-digest as per HTTP Digest spec */
void DigestCalcResponse(
    IN HASHHEX HA1,           /* H(A1) */
    IN char * pszNonce,       /* nonce from server */
    IN char * pszNonceCount,  /* 8 hex digits */
    IN char * pszCNonce,      /* client nonce */
    IN char * pszQop,         /* qop-value: "", "auth", "auth-int" */
    IN char * pszMethod,      /* method from the request */
    IN char * pszDigestUri,   /* requested URL */
    IN HASHHEX HEntity,       /* H(entity body) if qop="auth-int" */
    OUT HASHHEX Response      /* request-digest or response-digest */
    )
{
      MD5_CTX Md5Ctx;
      HASH HA2;
      HASH RespHash;
       HASHHEX HA2Hex;

      /* calculate H(A2) */
      MD5_Init(&Md5Ctx);
      MD5_Update(&Md5Ctx, (unsigned char *)pszMethod, strlen(pszMethod));
      MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      MD5_Update(&Md5Ctx, (unsigned char *)pszDigestUri, strlen(pszDigestUri));
      if (strcasecmp(pszQop, "auth-int") == 0) {
            MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
            MD5_Update(&Md5Ctx, (unsigned char *)HEntity, HASHHEXLEN);
      };
      MD5_Final(HA2, &Md5Ctx);
       CvtHex(HA2, HA2Hex);

      /* calculate response */
      MD5_Init(&Md5Ctx);
      MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHHEXLEN);
      MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));
      MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      if (*pszQop) {
          MD5_Update(&Md5Ctx, (unsigned char *)pszNonceCount, strlen(pszNonceCount));
          MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
          MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));
          MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
          MD5_Update(&Md5Ctx, (unsigned char *)pszQop, strlen(pszQop));
          MD5_Update(&Md5Ctx, (unsigned char *)":", 1);
      }
      MD5_Update(&Md5Ctx, (unsigned char *)HA2Hex, HASHHEXLEN);
      MD5_Final(RespHash, &Md5Ctx);
      CvtHex(RespHash, Response);
}
moved everything below trunk/ and added branches/ and tags/ git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@30 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-02-20 14:27:00 +00:00			`#include <string.h>`
			`#include "http_auth_digest.h"`

			`#include "config.h"`
			`#include "buffer.h"`

			`#ifndef USE_OPENSSL`
			`# include "md5_global.h"`
			`# include "md5.h"`
			`#endif`

			`void CvtHex(IN HASH Bin, OUT HASHHEX Hex) {`
			`unsigned short i;`

			`for (i = 0; i < HASHLEN; i++) {`
			`Hex[i*2] = int2hex((Bin[i] >> 4) & 0xf);`
			`Hex[i*2+1] = int2hex(Bin[i] & 0xf);`
			`}`
			`Hex[HASHHEXLEN] = '\0';`
			`}`

			`/* calculate H(A1) as per spec */`
			`void DigestCalcHA1(`
			`IN char * pszAlg,`
			`IN char * pszUserName,`
			`IN char * pszRealm,`
			`IN char * pszPassword,`
			`IN char * pszNonce,`
			`IN char * pszCNonce,`
			`OUT HASHHEX SessionKey`
			`)`
			`{`
			`MD5_CTX Md5Ctx;`
			`HASH HA1;`

			`MD5_Init(&Md5Ctx);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszUserName, strlen(pszUserName));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszRealm, strlen(pszRealm));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszPassword, strlen(pszPassword));`
			`MD5_Final(HA1, &Md5Ctx);`
			`if (strcasecmp(pszAlg, "md5-sess") == 0) {`
			`MD5_Init(&Md5Ctx);`
			`MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHLEN);`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));`
			`MD5_Final(HA1, &Md5Ctx);`
			`}`
			`CvtHex(HA1, SessionKey);`
			`}`

			`/* calculate request-digest/response-digest as per HTTP Digest spec */`
			`void DigestCalcResponse(`
			`IN HASHHEX HA1, /* H(A1) */`
			`IN char * pszNonce, /* nonce from server */`
			`IN char * pszNonceCount, /* 8 hex digits */`
			`IN char * pszCNonce, /* client nonce */`
			`IN char * pszQop, /* qop-value: "", "auth", "auth-int" */`
			`IN char * pszMethod, /* method from the request */`
			`IN char * pszDigestUri, /* requested URL */`
			`IN HASHHEX HEntity, /* H(entity body) if qop="auth-int" */`
			`OUT HASHHEX Response /* request-digest or response-digest */`
			`)`
			`{`
			`MD5_CTX Md5Ctx;`
			`HASH HA2;`
			`HASH RespHash;`
			`HASHHEX HA2Hex;`

			`/* calculate H(A2) */`
			`MD5_Init(&Md5Ctx);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszMethod, strlen(pszMethod));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszDigestUri, strlen(pszDigestUri));`
			`if (strcasecmp(pszQop, "auth-int") == 0) {`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)HEntity, HASHHEXLEN);`
			`};`
			`MD5_Final(HA2, &Md5Ctx);`
			`CvtHex(HA2, HA2Hex);`

			`/* calculate response */`
			`MD5_Init(&Md5Ctx);`
			`MD5_Update(&Md5Ctx, (unsigned char *)HA1, HASHHEXLEN);`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszNonce, strlen(pszNonce));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`if (*pszQop) {`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszNonceCount, strlen(pszNonceCount));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszCNonce, strlen(pszCNonce));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`MD5_Update(&Md5Ctx, (unsigned char *)pszQop, strlen(pszQop));`
			`MD5_Update(&Md5Ctx, (unsigned char *)":", 1);`
			`}`
			`MD5_Update(&Md5Ctx, (unsigned char *)HA2Hex, HASHHEXLEN);`
			`MD5_Final(RespHash, &Md5Ctx);`
			`CvtHex(RespHash, Response);`
			`}`