struct fuzzy_session *session,
gboolean encrypted, gboolean is_shingle)
{
+ gsize len;
+
if (cmd) {
result->v1.tag = cmd->tag;
/* We need also to encrypt reply */
ottery_rand_bytes (session->reply.hdr.nonce,
sizeof (session->reply.hdr.nonce));
+
+ /*
+ * For old replies we need to encrypt just old part, otherwise
+ * decryption would fail due to mac verification mistake
+ */
+
+ if (session->epoch > RSPAMD_FUZZY_EPOCH10) {
+ len = sizeof (session->reply.rep);
+ }
+ else {
+ len = sizeof (session->reply.rep.v1);
+ }
+
rspamd_cryptobox_encrypt_nm_inplace ((guchar *)&session->reply.rep,
- sizeof (session->reply.rep),
+ len,
session->reply.hdr.nonce,
session->nm,
session->reply.hdr.mac,
break;
}
+ memcpy (session->reply.rep.digest, cmd->digest,
+ sizeof (session->reply.rep.digest));
+
if (G_UNLIKELY (cmd == NULL || up_len == 0)) {
result.v1.value = 500;
result.v1.prob = 0.0;
projects / rspamd.git / commitdiff