--- pgp/src/passwd.c 2018/04/24 16:40:16 1.1.1.4 +++ pgp/src/passwd.c 2018/04/24 16:43:42 1.1.1.7 @@ -1,7 +1,23 @@ /* passwd.c - Password reading/hashing routines - (c) 1989 Philip Zimmermann. All rights reserved. Implemented in Microsoft C. Routines for getting a pass phrase from the user's console. + + (c) Copyright 1990-1994 by Philip Zimmermann. All rights reserved. + The author assumes no liability for damages resulting from the use + of this software, even if the damage results from defects in this + software. No warranty is expressed or implied. + + Note that while most PGP source modules bear Philip Zimmermann's + copyright notice, many of them have been revised or entirely written + by contributors who frequently failed to put their names in their + code. Code that has been incorporated into PGP from other authors + was either originally published in the public domain or is used with + permission from the various authors. + + PGP is available for free to the public under certain restrictions. + See the PGP User's Guide (included in the release package) for + important information about licensing, patent restrictions on + certain algorithms, trademarks, copyrights, and export controls. */ #include /* for fprintf() */ @@ -24,17 +40,18 @@ boolean showpass = FALSE; */ void hashpass (char *keystring, int keylen, byte *hash) { - MD5_CTX mdContext; + struct MD5Context mdContext; /* Calculate the hash */ MD5Init(&mdContext); MD5Update(&mdContext, (unsigned char *) keystring, keylen); MD5Final(hash, &mdContext); -} /* hashpass */ +} /* hashpass */ /* -** GetHashedPassPhrase - get pass phrase from user, hashes it to an IDEA key. +** GetHashedPassPhrase - get pass phrase from user, + hashes it to an IDEA key. Parameters: returns char *keystring as the pass phrase itself return char *hash as the 16-byte hash of the pass phrase @@ -52,16 +69,17 @@ int GetHashedPassPhrase(char *hash, bool if (showpass) noecho = 0; - while (TRUE) { - fprintf(pgpout,PSTR("\nEnter pass phrase: ")); + for (;;) { + fprintf(pgpout,LANG("\nEnter pass phrase: ")); getstring(keystr1,MAXKEYLEN-1,!noecho); if (noecho<2) /* no need to ask again if user can see it */ break; - fprintf(pgpout,PSTR("\nEnter same pass phrase again: ")); + fprintf(pgpout,LANG("\nEnter same pass phrase again: ")); getstring(keystr2,MAXKEYLEN-1,!noecho); if (strcmp(keystr1,keystr2)==0) break; - fprintf(pgpout,PSTR("\n\007Error: Pass phrases were different. Try again.")); + fprintf(pgpout, +LANG("\n\007Error: Pass phrases were different. Try again.")); memset(keystr2, 0, sizeof(keystr2)); } if (noecho && (filter_mode || quietmode)) @@ -74,6 +92,7 @@ int GetHashedPassPhrase(char *hash, bool /* This will have to change for EBCDIC */ hashpass (keystr1, strlen(keystr1), (byte *) hash); memset(keystr1, 0, sizeof(keystr1)); + memset(keystr2, 0, sizeof(keystr2)); return 1; -} /* GetHashedPassPhrase */ +} /* GetHashedPassPhrase */