Fossil SCM
Adjust comment to http_build_login_card() to include clarification regarding the source of randomness in NONCE for the login card. No functional changes.
Commit
ea40cbb0c0520d72009060d1db7c3f463b5f9c65e9f73b3b763e7b691c89831b
Parent
02d0432ed4cd977…
1 file changed
+2
-1
+2
-1
| --- src/http.c | ||
| +++ src/http.c | ||
| @@ -52,11 +52,12 @@ | ||
| 52 | 52 | ** Construct the "login" card with the client credentials. |
| 53 | 53 | ** |
| 54 | 54 | ** login LOGIN NONCE SIGNATURE |
| 55 | 55 | ** |
| 56 | 56 | ** The LOGIN is the user id of the client. NONCE is the sha1 checksum |
| 57 | -** of all payload that follows the login card. SIGNATURE is the sha1 | |
| 57 | +** of all payload that follows the login card. Randomness for the NONCE | |
| 58 | +** must be provided in the payload (in xfer.c). SIGNATURE is the sha1 | |
| 58 | 59 | ** checksum of the nonce followed by the user password. |
| 59 | 60 | ** |
| 60 | 61 | ** Write the constructed login card into pLogin. pLogin is initialized |
| 61 | 62 | ** by this routine. |
| 62 | 63 | */ |
| 63 | 64 |
| --- src/http.c | |
| +++ src/http.c | |
| @@ -52,11 +52,12 @@ | |
| 52 | ** Construct the "login" card with the client credentials. |
| 53 | ** |
| 54 | ** login LOGIN NONCE SIGNATURE |
| 55 | ** |
| 56 | ** The LOGIN is the user id of the client. NONCE is the sha1 checksum |
| 57 | ** of all payload that follows the login card. SIGNATURE is the sha1 |
| 58 | ** checksum of the nonce followed by the user password. |
| 59 | ** |
| 60 | ** Write the constructed login card into pLogin. pLogin is initialized |
| 61 | ** by this routine. |
| 62 | */ |
| 63 |
| --- src/http.c | |
| +++ src/http.c | |
| @@ -52,11 +52,12 @@ | |
| 52 | ** Construct the "login" card with the client credentials. |
| 53 | ** |
| 54 | ** login LOGIN NONCE SIGNATURE |
| 55 | ** |
| 56 | ** The LOGIN is the user id of the client. NONCE is the sha1 checksum |
| 57 | ** of all payload that follows the login card. Randomness for the NONCE |
| 58 | ** must be provided in the payload (in xfer.c). SIGNATURE is the sha1 |
| 59 | ** checksum of the nonce followed by the user password. |
| 60 | ** |
| 61 | ** Write the constructed login card into pLogin. pLogin is initialized |
| 62 | ** by this routine. |
| 63 | */ |
| 64 |