1 files changed, 1 insertions, 1 deletions
diff --git a/lib/server.cc b/lib/server.cc
index 8db97be..b1c5c3a 100644
--- a/lib/server.cc
+++ b/lib/server.cc
@@ -23,33 +23,33 @@ namespace opkele {
            /* TODO: fallback to cleartext in case of exceptions here? */
            if(!(dh = DH_new()))
                throw exception_openssl(OPKELE_CP_ "failed to DH_new()");
            c_pub = util::base64_to_bignum(pin.get_param("openid.dh_consumer_public"));
            if(pin.has_param("openid.dh_modulus"))
                dh->p = util::base64_to_bignum(pin.get_param("openid.dh_modulus"));
            else
                dh->p = util::dec_to_bignum(data::_default_p);
            if(pin.has_param("openid.dh_gen"))
                dh->g = util::base64_to_bignum(pin.get_param("openid.dh_gen"));
            else
                dh->g = util::dec_to_bignum(data::_default_g);
            if(!DH_generate_key(dh))
                throw exception_openssl(OPKELE_CP_ "failed to DH_generate_key()");
            vector<unsigned char> ck(DH_size(dh)+1);
            unsigned char *ckptr = &(ck.front())+1;
-            int cklen = DH_compute_key(&(ck.front()),c_pub,dh);
+            int cklen = DH_compute_key(ckptr,c_pub,dh);
            if(cklen<0)
                throw exception_openssl(OPKELE_CP_ "failed to DH_compute_key()");
            if(cklen && (*ckptr)&0x80) {
                (*(--ckptr)) = 0; ++cklen;
            }
            SHA1(ckptr,cklen,key_sha1);
            st = sess_dh_sha1;
        }
        assoc_t assoc = alloc_assoc(mode_associate);
        time_t now = time(0);
        pout.clear();
        pout["assoc_type"] = assoc->assoc_type();
        pout["assoc_handle"] = assoc->handle();
        /* TODO: eventually remove deprecated stuff */
        pout["issued"] = util::time_to_w3c(now);
        pout["expiry"] = util::time_to_w3c(now+assoc->expires_in());

diff --git a/lib/server.cc b/lib/server.cc index 8db97be..b1c5c3a 100644 --- a/lib/server.cc +++ b/lib/server.cc
@@ -23,33 +23,33 @@ namespace opkele {
23	/* TODO: fallback to cleartext in case of exceptions here? */	23	/* TODO: fallback to cleartext in case of exceptions here? */
24	if(!(dh = DH_new()))	24	if(!(dh = DH_new()))
25	throw exception_openssl(OPKELE_CP_ "failed to DH_new()");	25	throw exception_openssl(OPKELE_CP_ "failed to DH_new()");
26	c_pub = util::base64_to_bignum(pin.get_param("openid.dh_consumer_public"));	26	c_pub = util::base64_to_bignum(pin.get_param("openid.dh_consumer_public"));
27	if(pin.has_param("openid.dh_modulus"))	27	if(pin.has_param("openid.dh_modulus"))
28	dh->p = util::base64_to_bignum(pin.get_param("openid.dh_modulus"));	28	dh->p = util::base64_to_bignum(pin.get_param("openid.dh_modulus"));
29	else	29	else
30	dh->p = util::dec_to_bignum(data::_default_p);	30	dh->p = util::dec_to_bignum(data::_default_p);
31	if(pin.has_param("openid.dh_gen"))	31	if(pin.has_param("openid.dh_gen"))
32	dh->g = util::base64_to_bignum(pin.get_param("openid.dh_gen"));	32	dh->g = util::base64_to_bignum(pin.get_param("openid.dh_gen"));
33	else	33	else
34	dh->g = util::dec_to_bignum(data::_default_g);	34	dh->g = util::dec_to_bignum(data::_default_g);
35	if(!DH_generate_key(dh))	35	if(!DH_generate_key(dh))
36	throw exception_openssl(OPKELE_CP_ "failed to DH_generate_key()");	36	throw exception_openssl(OPKELE_CP_ "failed to DH_generate_key()");
37	vector<unsigned char> ck(DH_size(dh)+1);	37	vector<unsigned char> ck(DH_size(dh)+1);
38	unsigned char *ckptr = &(ck.front())+1;	38	unsigned char *ckptr = &(ck.front())+1;
39	int cklen = DH_compute_key(&(ck.front()),c_pub,dh);	39	int cklen = DH_compute_key(ckptr,c_pub,dh);
40	if(cklen<0)	40	if(cklen<0)
41	throw exception_openssl(OPKELE_CP_ "failed to DH_compute_key()");	41	throw exception_openssl(OPKELE_CP_ "failed to DH_compute_key()");
42	if(cklen && (*ckptr)&0x80) {	42	if(cklen && (*ckptr)&0x80) {
43	(*(--ckptr)) = 0; ++cklen;	43	(*(--ckptr)) = 0; ++cklen;
44	}	44	}
45	SHA1(ckptr,cklen,key_sha1);	45	SHA1(ckptr,cklen,key_sha1);
46	st = sess_dh_sha1;	46	st = sess_dh_sha1;
47	}	47	}
48	assoc_t assoc = alloc_assoc(mode_associate);	48	assoc_t assoc = alloc_assoc(mode_associate);
49	time_t now = time(0);	49	time_t now = time(0);
50	pout.clear();	50	pout.clear();
51	pout["assoc_type"] = assoc->assoc_type();	51	pout["assoc_type"] = assoc->assoc_type();
52	pout["assoc_handle"] = assoc->handle();	52	pout["assoc_handle"] = assoc->handle();
53	/* TODO: eventually remove deprecated stuff */	53	/* TODO: eventually remove deprecated stuff */
54	pout["issued"] = util::time_to_w3c(now);	54	pout["issued"] = util::time_to_w3c(now);
55	pout["expiry"] = util::time_to_w3c(now+assoc->expires_in());	55	pout["expiry"] = util::time_to_w3c(now+assoc->expires_in());