Home Explore Help
Register Sign In
Apq
/
389-ds-base
mirror of https://github.com/389ds/389-ds-base.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: d53e17db28
Branches Tags
389-ds-base
/
ldap
/
servers
/
plugins
/
pwdstorage
/
ssha_pwd.c

ssha_pwd.c 8.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218 
  1. /** BEGIN COPYRIGHT BLOCK
    2. 

  2.  * This Program is free software; you can redistribute it and/or modify it under
    3. 

  3.  * the terms of the GNU General Public License as published by the Free Software
    4. 

  4.  * Foundation; version 2 of the License.
    5. 

  5.  * 
    6. 

  6.  * This Program is distributed in the hope that it will be useful, but WITHOUT
    7. 

  7.  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
    8. 

  8.  * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
    9. 

  9.  * 
    10. 

  10.  * You should have received a copy of the GNU General Public License along with
    11. 

  11.  * this Program; if not, write to the Free Software Foundation, Inc., 59 Temple
    12. 

  12.  * Place, Suite 330, Boston, MA 02111-1307 USA.
    13. 

  13.  * 
    14. 

  14.  * In addition, as a special exception, Red Hat, Inc. gives You the additional
    15. 

  15.  * right to link the code of this Program with code not covered under the GNU
    16. 

  16.  * General Public License ("Non-GPL Code") and to distribute linked combinations
    17. 

  17.  * including the two, subject to the limitations in this paragraph. Non-GPL Code
    18. 

  18.  * permitted under this exception must only link to the code of this Program
    19. 

  19.  * through those well defined interfaces identified in the file named EXCEPTION
    20. 

  20.  * found in the source code files (the "Approved Interfaces"). The files of
    21. 

  21.  * Non-GPL Code may instantiate templates or use macros or inline functions from
    22. 

  22.  * the Approved Interfaces without causing the resulting work to be covered by
    23. 

  23.  * the GNU General Public License. Only Red Hat, Inc. may make changes or
    24. 

  24.  * additions to the list of Approved Interfaces. You must obey the GNU General
    25. 

  25.  * Public License in all respects for all of the Program code and other code used
    26. 

  26.  * in conjunction with the Program except the Non-GPL Code covered by this
    27. 

  27.  * exception. If you modify this file, you may extend this exception to your
    28. 

  28.  * version of the file, but you are not obligated to do so. If you do not wish to
    29. 

  29.  * provide this exception without modification, you must delete this exception
    30. 

  30.  * statement from your version and license this file solely under the GPL without
    31. 

  31.  * exception. 
    32. 

  32.  * 
    33. 

  33.  * 
    34. 

  34.  * Copyright (C) 2001 Sun Microsystems, Inc. Used by permission.
    35. 

  35.  * Copyright (C) 2005 Red Hat, Inc.
    36. 

  36.  * All rights reserved.
    37. 

  37.  * END COPYRIGHT BLOCK **/
    38. 

  38. 

  39. #ifdef HAVE_CONFIG_H
    40. 

  40. #  include <config.h>
    41. 

  41. #endif
    42. 

  42. 

  43. /*
    44. 

  44.  * slapd hashed password routines
    45. 

  45.  *
    46. 

  46.  */
    47. 

  47. 

  48. #include <stdio.h>
    49. 

  49. #include <string.h>
    50. 

  50. #include <sys/types.h>
    51. 

  51. 

  52. #include "pwdstorage.h"
    53. 

  53. #include "prtime.h"
    54. 

  54. #include "prlong.h"
    55. 

  55. 

  56. #include <pk11func.h>
    57. 

  57. #include <pk11pqg.h>
    58. 

  58. 

  59. #define SHA_SALT_LENGTH    8   /* number of bytes of data in salt */
    60. 

  60. 

  61. static void ssha_rand_array(void *randx, size_t len);
    62. 

  62. 

  63. 

  64. /* ***************************************************
    65. 

  65. 	Identical function to slapi_rand_array in util.c, but can't use
    66. 

  66. 	that here since this module is included in libds_admin, which doesn't
    67. 

  67. 	link to libslapd.
    68. 

  68.    *************************************************** */
    69. 

  69. static void
    70. 

  70. ssha_rand_array(void *randx, size_t len)
    71. 

  71. {
    72. 

  72.     PK11_RandomUpdate(randx, len);
    73. 

  73.     PK11_GenerateRandom((unsigned char *)randx, (int)len);
    74. 

  74. }
    75. 

  75. 

  76. SECStatus
    77. 

  77. sha_salted_hash(unsigned char *hash_out, char *pwd, struct berval *salt, unsigned int secOID)
    78. 

  78. {
    79. 

  79.     PK11Context *ctx;
    80. 

  80.     unsigned int outLen;
    81. 

  81.     unsigned int shaLen;
    82. 

  82.     SECStatus rc;
    83. 

  83.                                                                                                                             
    84. 

  84.     switch (secOID) {
    85. 

  85.         case SEC_OID_SHA1:
    86. 

  86.             shaLen = SHA1_LENGTH;
    87. 

  87.             break;
    88. 

  88.         case SEC_OID_SHA256:
    89. 

  89.             shaLen = SHA256_LENGTH;
    90. 

  90.             break;
    91. 

  91.         case SEC_OID_SHA384:
    92. 

  92.             shaLen = SHA384_LENGTH;
    93. 

  93.             break;
    94. 

  94.         case SEC_OID_SHA512:
    95. 

  95.             shaLen = SHA512_LENGTH;
    96. 

  96.             break;
    97. 

  97.         default:
    98. 

  98.             /* An unknown secOID was passed in.  We shouldn't get here. */
    99. 

  99.             rc = SECFailure;
    100. 

  100.             return rc;
    101. 

  101.     }
    102. 

  102. 

  103.     if (salt && salt->bv_len) {
    104. 

  104.         ctx = PK11_CreateDigestContext(secOID);
    105. 

  105.         if (ctx == NULL) {
    106. 

  106.             rc = SECFailure;
    107. 

  107.         } else {
    108. 

  108.             PK11_DigestBegin(ctx);
    109. 

  109.             PK11_DigestOp(ctx, (unsigned char*)pwd, strlen(pwd));
    110. 

  110.             PK11_DigestOp(ctx, (unsigned char*)(salt->bv_val), salt->bv_len);
    111. 

  111.             PK11_DigestFinal(ctx, hash_out, &outLen, shaLen);
    112. 

  112.             PK11_DestroyContext(ctx, 1);
    113. 

  113.             if (outLen == shaLen)
    114. 

  114.                 rc = SECSuccess;
    115. 

  115.             else
    116. 

  116.                 rc = SECFailure;
    117. 

  117.         }
    118. 

  118.     }
    119. 

  119.     else {
    120. 

  120.         /*backward compatibility*/
    121. 

  121.         rc = PK11_HashBuf(secOID, hash_out, (unsigned char *)pwd, strlen(pwd));
    122. 

  122.     }
    123. 

  123.                                                                                                                             
    124. 

  124.     return rc;
    125. 

  125. }
    126. 

  126. 

  127. char *
    128. 

  128. salted_sha_pw_enc( char *pwd, unsigned int shaLen )
    129. 

  129. {
    130. 

  130.     unsigned char hash[ MAX_SHA_HASH_SIZE + SHA_SALT_LENGTH ];
    131. 

  131.     unsigned char *salt = hash + shaLen;
    132. 

  132.     struct berval saltval;
    133. 

  133.     char *enc;
    134. 

  134.     char *schemeName;
    135. 

  135.     unsigned int schemeNameLen;
    136. 

  136.     unsigned int secOID;
    137. 

  137.                                                                                                                             
    138. 

  138.     /* Determine which algorithm we're using */
    139. 

  139.     switch (shaLen) {
    140. 

  140.         case SHA1_LENGTH:
    141. 

  141.             schemeName = SALTED_SHA1_SCHEME_NAME;
    142. 

  142.             schemeNameLen = SALTED_SHA1_NAME_LEN;
    143. 

  143.             secOID = SEC_OID_SHA1;
    144. 

  144.             break;
    145. 

  145.         case SHA256_LENGTH:
    146. 

  146.             schemeName = SALTED_SHA256_SCHEME_NAME;
    147. 

  147.             schemeNameLen = SALTED_SHA256_NAME_LEN;
    148. 

  148.             secOID = SEC_OID_SHA256;
    149. 

  149.             break;
    150. 

  150.         case SHA384_LENGTH:
    151. 

  151.             schemeName = SALTED_SHA384_SCHEME_NAME;
    152. 

  152.             schemeNameLen = SALTED_SHA384_NAME_LEN;
    153. 

  153.             secOID = SEC_OID_SHA384;
    154. 

  154.             break;
    155. 

  155.         case SHA512_LENGTH:
    156. 

  156.             schemeName = SALTED_SHA512_SCHEME_NAME;
    157. 

  157.             schemeNameLen = SALTED_SHA512_NAME_LEN;
    158. 

  158.             secOID = SEC_OID_SHA512;
    159. 

  159.             break;
    160. 

  160.         default:
    161. 

  161.             /* An unknown shaLen was passed in.  We shouldn't get here. */
    162. 

  162.             return( NULL );
    163. 

  163.     }
    164. 

  164.                                                                                                                             
    165. 

  165.     saltval.bv_val = (void*)salt;
    166. 

  166.     saltval.bv_len = SHA_SALT_LENGTH;
    167. 

  167.                                                                                                                             
    168. 

  168.     /* generate a new random salt */
    169. 

  169.         /* Note: the uninitialized salt array provides a little extra entropy
    170. 

  170.          * to the random array generation, but it is not really needed since
    171. 

  171.          * PK11_GenerateRandom takes care of seeding. In any case, it doesn't
    172. 

  172.          * hurt. */
    173. 

  173.         ssha_rand_array( salt, SHA_SALT_LENGTH );
    174. 

  174.                                                                                                                             
    175. 

  175.     /* hash the user's key */
    176. 

  176.     if ( sha_salted_hash( hash, pwd, &saltval, secOID ) != SECSuccess ) {
    177. 

  177.         return( NULL );
    178. 

  178.     }
    179. 

  179.                                                                                                                             
    180. 

  180.     if (( enc = slapi_ch_malloc( 3 + schemeNameLen +
    181. 

  181.         LDIF_BASE64_LEN(shaLen + SHA_SALT_LENGTH))) == NULL ) {
    182. 

  182.         return( NULL );
    183. 

  183.     }
    184. 

  184.                                                                                                                             
    185. 

  185.     sprintf( enc, "%c%s%c", PWD_HASH_PREFIX_START, schemeName,
    186. 

  186.         PWD_HASH_PREFIX_END );
    187. 

  187.     (void)ldif_base64_encode( hash, enc + 2 + schemeNameLen,
    188. 

  188.         (shaLen + SHA_SALT_LENGTH), -1 );
    189. 

  189.                                                                                                                             
    190. 

  190.     return( enc );
    191. 

  191. }
    192. 

  192. 

  193. /*
    194. 

  194.  * Wrapper functions for password encoding
    195. 

  195.  */
    196. 

  196. char *
    197. 

  197. salted_sha1_pw_enc( char *pwd )
    198. 

  198. {
    199. 

  199.     return salted_sha_pw_enc( pwd, SHA1_LENGTH );
    200. 

  200. }
    201. 

  201. 

  202. char *
    203. 

  203. salted_sha256_pw_enc( char *pwd )
    204. 

  204. {
    205. 

  205.     return salted_sha_pw_enc( pwd, SHA256_LENGTH );
    206. 

  206. }
    207. 

  207. 

  208. char *
    209. 

  209. salted_sha384_pw_enc( char *pwd )
    210. 

  210. {
    211. 

  211.     return salted_sha_pw_enc( pwd, SHA384_LENGTH );
    212. 

  212. }
    213. 

  213. 

  214. char *
    215. 

  215. salted_sha512_pw_enc( char *pwd )
    216. 

  216. {
    217. 

  217.     return salted_sha_pw_enc( pwd, SHA512_LENGTH );
    218. 

  218. }
    219.