Corrected calculation of hmac with extra parameters (protocol v. 2). Corrected calculation of sl return value (use float inside)

2025-02-20 21:54:20 +01:00 · 2009-12-08 16:07:08 +00:00 · 2009-12-08 16:07:08 +00:00 · 7be831db12
commit 7be831db12
parent 8a22c88648
2 changed files with 10 additions and 9 deletions
--- a/ykval-synclib.php
+++ b/ykval-synclib.php
@ -321,8 +321,7 @@ class SyncLib
    /*
     Send out requests
    */
-    if (count($urls)>=$ans_req) $ans_arr=$this->retrieveURLasync($urls, $ans_req, $timeout);
-    else return false;
+    $ans_arr=$this->retrieveURLasync($urls, $ans_req, $timeout);

    if (!is_array($ans_arr)) {
      $this->log('warning', 'No responses from validation server pool'); 
--- a/ykval-verify.php
+++ b/ykval-verify.php
@ -33,13 +33,8 @@ $timestamp = getHttpVal('timestamp', 0);
 if ($protocol_version>=2.0) {

  $sl = getHttpVal('sl', '');
-  if (strcasecmp($sl, 'fast')==0) $sl=$baseParams['__YKVAL_SYNC_FAST_LEVEL__'];
-  if (strcasecmp($sl, 'secure')==0) $sl=$baseParams['__YKVAL_SYNC_SECURE_LEVEL__'];
-  if (!$sl) $sl=$baseParams['__YKVAL_SYNC_DEFAULT_LEVEL__'];
-
  $timeout = getHttpVal('timeout', '');  

-  if (!$timeout) $timeout=$baseParams['__YKVAL_SYNC_DEFAULT_TIMEOUT__'];
 }

 //// Get Client info from DB
@ -71,6 +66,7 @@ if ($h != '') {
  if ($timestamp) $a['timestamp'] = $timestamp;
  if ($sl) $a['sl'] = $sl;
  if ($timeout) $a['timeout'] = $timeout;
+  
  $hmac = sign($a, $apiKey);
  // Compare it
  if ($hmac != $h) {
@ -203,13 +199,19 @@ if (!$sync->queue($otpParams, $localParams)) {
  exit;
 }

+/* Change default protocol "strings" to numeric values */
+if (strcasecmp($sl, 'fast')==0) $sl=$baseParams['__YKVAL_SYNC_FAST_LEVEL__'];
+if (strcasecmp($sl, 'secure')==0) $sl=$baseParams['__YKVAL_SYNC_SECURE_LEVEL__'];
+if (!$sl) $sl=$baseParams['__YKVAL_SYNC_DEFAULT_LEVEL__'];
+if (!$timeout) $timeout=$baseParams['__YKVAL_SYNC_DEFAULT_TIMEOUT__'];
+
 $nr_servers=$sync->getNumberOfServers();
-$req_answers=ceil($nr_servers*$sl/100);
+$req_answers=ceil($nr_servers*$sl/100.0);
 if ($req_answers>0) {
  $syncres=$sync->sync($req_answers, $timeout);
  $nr_answers=$sync->getNumberOfAnswers();
  $nr_valid_answers=$sync->getNumberOfValidAnswers();
-  $sl_success_rate=floor($nr_valid_answers / $nr_servers * 100);
+  $sl_success_rate=floor(100.0 * $nr_valid_answers / $nr_servers);
  
 } else {
  $nr_answers=0;