pwhash.c revision 1.1
1 1.1 provos /* $OpenBSD: encrypt.c,v 1.16 2002/02/16 21:27:45 millert Exp $ */ 2 1.1 provos 3 1.1 provos /* 4 1.1 provos * Copyright (c) 1996, Jason Downs. All rights reserved. 5 1.1 provos * 6 1.1 provos * Redistribution and use in source and binary forms, with or without 7 1.1 provos * modification, are permitted provided that the following conditions 8 1.1 provos * are met: 9 1.1 provos * 1. Redistributions of source code must retain the above copyright 10 1.1 provos * notice, this list of conditions and the following disclaimer. 11 1.1 provos * 2. Redistributions in binary form must reproduce the above copyright 12 1.1 provos * notice, this list of conditions and the following disclaimer in the 13 1.1 provos * documentation and/or other materials provided with the distribution. 14 1.1 provos * 15 1.1 provos * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS 16 1.1 provos * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 17 1.1 provos * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE 18 1.1 provos * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, 19 1.1 provos * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES 20 1.1 provos * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR 21 1.1 provos * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER 22 1.1 provos * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 23 1.1 provos * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 24 1.1 provos * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 25 1.1 provos * SUCH DAMAGE. 26 1.1 provos */ 27 1.1 provos 28 1.1 provos #include <sys/types.h> 29 1.1 provos #include <ctype.h> 30 1.1 provos #include <err.h> 31 1.1 provos #include <errno.h> 32 1.1 provos #include <pwd.h> 33 1.1 provos #include <stdio.h> 34 1.1 provos #include <stdlib.h> 35 1.1 provos #include <string.h> 36 1.1 provos #include <unistd.h> 37 1.1 provos #include <login_cap.h> 38 1.1 provos 39 1.1 provos /* 40 1.1 provos * Very simple little program, for encrypting passwords from the command 41 1.1 provos * line. Useful for scripts and such. 42 1.1 provos */ 43 1.1 provos 44 1.1 provos #define DO_MAKEKEY 0 45 1.1 provos #define DO_DES 1 46 1.1 provos #define DO_MD5 2 47 1.1 provos #define DO_BLF 3 48 1.1 provos 49 1.1 provos extern char *__progname; 50 1.1 provos char buffer[_PASSWORD_LEN]; 51 1.1 provos void print_passwd(char *, int , void *); 52 1.1 provos 53 1.1 provos void usage(void); 54 1.1 provos char *trim(char *); 55 1.1 provos 56 1.1 provos void 57 1.1 provos usage(void) 58 1.1 provos { 59 1.1 provos 60 1.1 provos (void)fprintf(stderr, 61 1.1 provos "usage: %s [-k] [-b rounds] [-m] [-s salt] [-p | string]\n", 62 1.1 provos __progname); 63 1.1 provos exit(1); 64 1.1 provos } 65 1.1 provos 66 1.1 provos char * 67 1.1 provos trim(char *line) 68 1.1 provos { 69 1.1 provos char *ptr; 70 1.1 provos 71 1.1 provos for (ptr = &line[strlen(line)-1]; ptr > line; ptr--) { 72 1.1 provos if (!isspace(*ptr)) 73 1.1 provos break; 74 1.1 provos } 75 1.1 provos ptr[1] = '\0'; 76 1.1 provos 77 1.1 provos for (ptr = line; *ptr && isspace(*ptr); ptr++) 78 1.1 provos ; 79 1.1 provos 80 1.1 provos return(ptr); 81 1.1 provos } 82 1.1 provos 83 1.1 provos void 84 1.1 provos print_passwd(char *string, int operation, void *extra) 85 1.1 provos { 86 1.1 provos char msalt[3], *salt; 87 1.1 provos struct passwd pwd; 88 1.1 provos login_cap_t *lc; 89 1.1 provos int pwd_gensalt(char *, int, struct passwd *, login_cap_t *, char); 90 1.1 provos void to64(char *, int32_t, int n); 91 1.1 provos 92 1.1 provos switch(operation) { 93 1.1 provos case DO_MAKEKEY: 94 1.1 provos /* 95 1.1 provos * makekey mode: parse string into separate DES key and salt. 96 1.1 provos */ 97 1.1 provos if (strlen(string) != 10) { 98 1.1 provos /* To be compatible... */ 99 1.1 provos errx(1, "%s", strerror(EFTYPE)); 100 1.1 provos } 101 1.1 provos strcpy(msalt, &string[8]); 102 1.1 provos salt = msalt; 103 1.1 provos break; 104 1.1 provos 105 1.1 provos case DO_MD5: 106 1.1 provos strcpy(buffer, "$1$"); 107 1.1 provos to64(&buffer[3], arc4random(), 4); 108 1.1 provos to64(&buffer[7], arc4random(), 4); 109 1.1 provos strcpy(buffer + 11, "$"); 110 1.1 provos salt = buffer; 111 1.1 provos break; 112 1.1 provos 113 1.1 provos case DO_BLF: 114 1.1 provos strlcpy(buffer, bcrypt_gensalt(*(int *)extra), _PASSWORD_LEN); 115 1.1 provos salt = buffer; 116 1.1 provos break; 117 1.1 provos 118 1.1 provos case DO_DES: 119 1.1 provos salt = extra; 120 1.1 provos break; 121 1.1 provos 122 1.1 provos default: 123 1.1 provos pwd.pw_name = "default"; 124 1.1 provos if ((lc = login_getclass(NULL)) == NULL) 125 1.1 provos errx(1, "unable to get default login class."); 126 1.1 provos if (!pwd_gensalt(buffer, _PASSWORD_LEN, &pwd, lc, 'l')) 127 1.1 provos errx(1, "can't generate salt"); 128 1.1 provos salt = buffer; 129 1.1 provos break; 130 1.1 provos } 131 1.1 provos 132 1.1 provos (void)fputs(crypt(string, salt), stdout); 133 1.1 provos } 134 1.1 provos 135 1.1 provos int 136 1.1 provos main(int argc, char **argv) 137 1.1 provos { 138 1.1 provos int opt; 139 1.1 provos int operation = -1; 140 1.1 provos int prompt = 0; 141 1.1 provos int rounds; 142 1.1 provos void *extra; /* Store salt or number of rounds */ 143 1.1 provos 144 1.1 provos if (strcmp(__progname, "makekey") == 0) 145 1.1 provos operation = DO_MAKEKEY; 146 1.1 provos 147 1.1 provos while ((opt = getopt(argc, argv, "kmps:b:")) != -1) { 148 1.1 provos switch (opt) { 149 1.1 provos case 'k': /* Stdin/Stdout Unix crypt */ 150 1.1 provos if (operation != -1 || prompt) 151 1.1 provos usage(); 152 1.1 provos operation = DO_MAKEKEY; 153 1.1 provos break; 154 1.1 provos 155 1.1 provos case 'm': /* MD5 password hash */ 156 1.1 provos if (operation != -1) 157 1.1 provos usage(); 158 1.1 provos operation = DO_MD5; 159 1.1 provos break; 160 1.1 provos 161 1.1 provos case 'p': 162 1.1 provos if (operation == DO_MAKEKEY) 163 1.1 provos usage(); 164 1.1 provos prompt = 1; 165 1.1 provos break; 166 1.1 provos 167 1.1 provos case 's': /* Unix crypt (DES) */ 168 1.1 provos if (operation != -1 || optarg[0] == '$') 169 1.1 provos usage(); 170 1.1 provos operation = DO_DES; 171 1.1 provos extra = optarg; 172 1.1 provos break; 173 1.1 provos 174 1.1 provos case 'b': /* Blowfish password hash */ 175 1.1 provos if (operation != -1) 176 1.1 provos usage(); 177 1.1 provos operation = DO_BLF; 178 1.1 provos rounds = atoi(optarg); 179 1.1 provos extra = &rounds; 180 1.1 provos break; 181 1.1 provos 182 1.1 provos default: 183 1.1 provos usage(); 184 1.1 provos } 185 1.1 provos } 186 1.1 provos 187 1.1 provos if (((argc - optind) < 1) || operation == DO_MAKEKEY) { 188 1.1 provos char line[BUFSIZ], *string; 189 1.1 provos 190 1.1 provos if (prompt) { 191 1.1 provos string = getpass("Enter string: "); 192 1.1 provos print_passwd(string, operation, extra); 193 1.1 provos (void)fputc('\n', stdout); 194 1.1 provos } else { 195 1.1 provos /* Encrypt stdin to stdout. */ 196 1.1 provos while (!feof(stdin) && 197 1.1 provos (fgets(line, sizeof(line), stdin) != NULL)) { 198 1.1 provos /* Kill the whitesapce. */ 199 1.1 provos string = trim(line); 200 1.1 provos if (*string == '\0') 201 1.1 provos continue; 202 1.1 provos 203 1.1 provos print_passwd(string, operation, extra); 204 1.1 provos 205 1.1 provos if (operation == DO_MAKEKEY) { 206 1.1 provos fflush(stdout); 207 1.1 provos break; 208 1.1 provos } 209 1.1 provos (void)fputc('\n', stdout); 210 1.1 provos } 211 1.1 provos } 212 1.1 provos } else { 213 1.1 provos char *string; 214 1.1 provos 215 1.1 provos /* can't combine -p with a supplied string */ 216 1.1 provos if (prompt) 217 1.1 provos usage(); 218 1.1 provos 219 1.1 provos /* Perhaps it isn't worth worrying about, but... */ 220 1.1 provos if ((string = strdup(argv[optind])) == NULL) 221 1.1 provos err(1, NULL); 222 1.1 provos /* Wipe the argument. */ 223 1.1 provos memset(argv[optind], 0, strlen(argv[optind])); 224 1.1 provos 225 1.1 provos print_passwd(string, operation, extra); 226 1.1 provos 227 1.1 provos (void)fputc('\n', stdout); 228 1.1 provos 229 1.1 provos /* Wipe our copy, before we free it. */ 230 1.1 provos memset(string, 0, strlen(string)); 231 1.1 provos free(string); 232 1.1 provos } 233 1.1 provos exit(0); 234 1.1 provos } 235
Indexes created Thu Oct 02 01:09:59 GMT 2025