cubixle/radius-rs
1
0
Fork 0
mirror of https://github.com/cubixle/radius-rs.git synced 2026-04-30 18:38:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add comment-out about how to encode the user-password attribute

Browse Source
This commit is contained in:
moznion
2020-11-29 02:41:36 +09:00
parent dc52c2fafe
commit 388abee17a
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/avp.rs
+15
View File
@@ -72,6 +72,21 @@ impl AVP {
secret: &[u8], secret: &[u8],
request_authenticator: &[u8], request_authenticator: &[u8],
) -> Result<Self, AVPError> { ) -> Result<Self, AVPError> {
// Call the shared secret S and the pseudo-random 128-bit Request
// Authenticator RA. Break the password into 16-octet chunks p1, p2,
// etc. with the last one padded at the end with nulls to a 16-octet
// boundary. Call the ciphertext blocks c(1), c(2), etc. We'll need
// intermediate values b1, b2, etc.
//
// b1 = MD5(S + RA) c(1) = p1 xor b1
// b2 = MD5(S + c(1)) c(2) = p2 xor b2
// . .
// . .
// . .
// bi = MD5(S + c(i-1)) c(i) = pi xor bi
//
// ref: https://tools.ietf.org/html/rfc2865#section-5.2
if plain_text.len() > 128 { if plain_text.len() > 128 {
return Err(AVPError::PlainTextMaximumLengthExceededError()); return Err(AVPError::PlainTextMaximumLengthExceededError());
} }