4 * Copyright 2003-2004 Oliver Feiler <kiza@kcore.de>
8 * This is the sample implementation from RFC 2617.
9 * The code has been modified to work with Colin Plumb's
10 * MD5 implementation rather than using RSA's.
26 for (i = 0; i < HASHLEN; i++) {
27 j = (Bin[i] >> 4) & 0xf;
31 Hex[i*2] = (j + 'a' - 10);
34 Hex[i*2+1] = (j + '0');
36 Hex[i*2+1] = (j + 'a' - 10);
38 Hex[HASHHEXLEN] = '\0';
41 /* calculate H(A1) as per spec */
44 IN char * pszUserName,
46 IN char * pszPassword,
49 OUT HASHHEX SessionKey
52 struct MD5Context Md5Ctx;
56 MD5Update(&Md5Ctx, pszUserName, strlen(pszUserName));
57 MD5Update(&Md5Ctx, ":", 1);
58 MD5Update(&Md5Ctx, pszRealm, strlen(pszRealm));
59 MD5Update(&Md5Ctx, ":", 1);
60 MD5Update(&Md5Ctx, pszPassword, strlen(pszPassword));
61 MD5Final(HA1, &Md5Ctx);
62 if (strcmp(pszAlg, "md5-sess") == 0) {
65 MD5Update(&Md5Ctx, HA1, HASHLEN);
66 MD5Update(&Md5Ctx, ":", 1);
67 MD5Update(&Md5Ctx, pszNonce, strlen(pszNonce));
68 MD5Update(&Md5Ctx, ":", 1);
69 MD5Update(&Md5Ctx, pszCNonce, strlen(pszCNonce));
70 MD5Final(HA1, &Md5Ctx);
72 CvtHex(HA1, SessionKey);
75 /* calculate request-digest/response-digest as per HTTP Digest spec */
76 void DigestCalcResponse(
77 IN HASHHEX HA1, /* H(A1) */
78 IN char * pszNonce, /* nonce from server */
79 IN char * pszNonceCount, /* 8 hex digits */
80 IN char * pszCNonce, /* client nonce */
81 IN char * pszQop, /* qop-value: "", "auth", "auth-int" */
82 IN char * pszMethod, /* method from the request */
83 IN char * pszDigestUri, /* requested URL */
84 IN HASHHEX HEntity, /* H(entity body) if qop="auth-int" */
85 OUT HASHHEX Response /* request-digest or response-digest */
88 struct MD5Context Md5Ctx;
95 MD5Update(&Md5Ctx, pszMethod, strlen(pszMethod));
96 MD5Update(&Md5Ctx, ":", 1);
97 MD5Update(&Md5Ctx, pszDigestUri, strlen(pszDigestUri));
98 if (strcmp(pszQop, "auth-int") == 0) {
99 MD5Update(&Md5Ctx, ":", 1);
100 MD5Update(&Md5Ctx, HEntity, HASHHEXLEN);
102 MD5Final(HA2, &Md5Ctx);
105 /* calculate response */
107 MD5Update(&Md5Ctx, HA1, HASHHEXLEN);
108 MD5Update(&Md5Ctx, ":", 1);
109 MD5Update(&Md5Ctx, pszNonce, strlen(pszNonce));
110 MD5Update(&Md5Ctx, ":", 1);
113 MD5Update(&Md5Ctx, pszNonceCount, strlen(pszNonceCount));
114 MD5Update(&Md5Ctx, ":", 1);
115 MD5Update(&Md5Ctx, pszCNonce, strlen(pszCNonce));
116 MD5Update(&Md5Ctx, ":", 1);
117 MD5Update(&Md5Ctx, pszQop, strlen(pszQop));
118 MD5Update(&Md5Ctx, ":", 1);
120 MD5Update(&Md5Ctx, HA2Hex, HASHHEXLEN);
121 MD5Final(RespHash, &Md5Ctx);
122 CvtHex(RespHash, Response);