Lib/password.h File Reference

パスワードライブラリ ヘッダ More...

#include "tools.h"
#include <pwd.h>

Include dependency graph for password.h:

This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Defines
#define	LEN_DOLLAR_SALT   12
#define	LEN_DOLLAR2_SALT   29
#define	LEN_DOLLAR5_SALT   20
#define	LEN_DOLLAR6_SALT   20
#define	LEN_MD5PASS   34
#define	LEN_MD5SALT   12
#define	LEN_DESPASS   13
#define	LEN_DESSALT   2
Functions
char *	get_passwd (char *user_id)
void	free_pw (struct passwd *pw)
int	check_passwd (char *passwd, char *cryptpass)
int	check_salt (char *passwd)
char *	x2crypt (char *pass, char *salt)

---

Detailed Description

Author:

Fumi.Iseki (C)

Definition in file password.h.

---

Define Documentation

#define LEN_DESPASS   13

Definition at line 55 of file password.h.

Referenced by check_passwd(), check_salt(), command_PASSWD(), command_USERID(), and x2crypt().

#define LEN_DESSALT   2

Definition at line 56 of file password.h.

Referenced by check_passwd(), command_USERID(), and x2crypt().

#define LEN_DOLLAR2_SALT   29

Definition at line 49 of file password.h.

Referenced by check_passwd(), and x2crypt().

#define LEN_DOLLAR5_SALT   20

Definition at line 50 of file password.h.

Referenced by check_passwd(), command_PASSWD(), command_USERID(), and x2crypt().

#define LEN_DOLLAR6_SALT   20

Definition at line 51 of file password.h.

Referenced by check_passwd(), command_PASSWD(), command_USERID(), and x2crypt().

#define LEN_DOLLAR_SALT   12

Definition at line 48 of file password.h.

Referenced by check_passwd(), command_PASSWD(), command_USERID(), and x2crypt().

#define LEN_MD5PASS   34

Definition at line 53 of file password.h.

#define LEN_MD5SALT   12

Definition at line 54 of file password.h.

---

Function Documentation

int check_passwd	(	char *	passwd,
		char *	cryptpass
	)

int check_passwd(char* passwd, char* cryptpass)

生パスワード passwd と暗号化されたパスワード cryptass(salt付き)が同じものであるかどうかチェックする．
使用できる暗号化（ハッシュ値化）は DES と $#$（自動判別）

Parameters:

	passwd	検査する生パスワード
	cryptpass	比較対象のハッシュ値化されたパスワード

Return values:

	TRUE	同じ
	FALSE	違う

Definition at line 255 of file password.c.

References cut_str(), FALSE, LEN_DESPASS, LEN_DESSALT, LEN_DOLLAR2_SALT, LEN_DOLLAR5_SALT, LEN_DOLLAR6_SALT, LEN_DOLLAR_SALT, and TRUE.

{
    int   samepass=FALSE;
    char* salt;

    if (passwd==NULL || cryptpass==NULL) return FALSE;

//  if (!strncmp("$1$", cryptpass, 3) && strlen(cryptpass)==LEN_MD5PASS) {
//  if (cryptpass[0]=='$' && cryptpass[2]=='$' && cryptpass[11]=='$') {
    if (cryptpass[0]=='$') {
        int lsalt = 0;
        if      (cryptpass[1]=='1') lsalt = LEN_DOLLAR_SALT;
        else if (cryptpass[1]=='2') lsalt = LEN_DOLLAR2_SALT;
        else if (cryptpass[1]=='5') lsalt = LEN_DOLLAR5_SALT;
        else if (cryptpass[1]=='6') lsalt = LEN_DOLLAR6_SALT;

        if (lsalt!=0) {
            salt = cut_str(cryptpass, 0, lsalt-1);
            if (!strcmp(crypt(passwd, salt), cryptpass)) {
                samepass = TRUE;
            }
            free(salt);
        }
    }
    else if (strlen(cryptpass)==LEN_DESPASS) {
        // DES
        salt = cut_str(cryptpass, 0, LEN_DESSALT-1);
        if (!strcmp(crypt(passwd, salt), cryptpass)) {
            samepass = TRUE;
        }
        free(salt);
    }

    return samepass;
}

Here is the call graph for this function:

int check_salt

(

char *

passwd

)

int check_salt(char* passwd)

パスワード passwd のsaltをチェックする

DES -- 0 $#$ -- # saltn無し -- -1

Parameters:

passwd

チェックする文字列（パスワード）

Return values:

	slat	の種類
	-1	saltが無い
	0	DES
	number	$#$........$ の #

Definition at line 309 of file password.c.

References LEN_DESPASS.

{
    int ret = -1;
    int len = strlen(passwd);

    if (LEN_DESPASS<len) {
        if (passwd[0]=='$' && passwd[2]=='$' && passwd[11]=='$') {
            ret = (short int)passwd[1] - (short int)'1' + 1;
        }
    }
    else if (LEN_DESPASS==len) {
        ret = 0;
    }

    return ret;
}

void free_pw

(

struct passwd *

pw

)

void free_pw(struct passwd* pw)

パスワード構造体 struct pw* を free する．getnisnam()の返す構造体にのみ適用すること．
一般のUNIXライブラリの返すパスワード構造体に対して適用してはいけない（セグメンテーションフォルトを起こす）．

Parameters:

pw

開放する struct pw型変数へのポインタ．

See also:

struct pw

Definition at line 172 of file password.c.

References freeNull.

Referenced by get_passwd().

{
    if (pw==NULL) return;

    freeNull(pw->pw_name);
    freeNull(pw->pw_passwd);
    freeNull(pw->pw_gecos);
    freeNull(pw->pw_dir);
    freeNull(pw->pw_shell);
    freeNull(pw);
    return;
}

Here is the caller graph for this function:

char* get_passwd

(

char *

user_id

)

char* get_passwd(char* user_id)

ユーザ user_id のパスワードを得る．
パスワードの検索順は　/etc/passwd, /etc/shadow, NIS

Parameters:

user_id

ユーザ名

Returns:

ユーザの暗号化（ハッシュ値化）されたパスワード

Return values:

NULL

失敗

Definition at line 27 of file password.c.

References free_pw(), and LPASS.

Referenced by command_USERID().

{
    struct passwd* pw;
    struct spwd*   sp;
    char*  pass;

    pass = (char*)malloc(LPASS+1);
    if (pass==NULL) return NULL;
    memset(pass, 0, LPASS+1);

    // for /etc/passwd
    pw = getpwnam((const char*)user_id);
    if (pw==NULL) {
        free(pass);
        return NULL;
    }
    strncpy(pass, pw->pw_passwd, LPASS);
    if (strcmp(pass, "*") && strcmp(pass, "x") && strcmp(pass, "!")) return pass;

#ifdef HAVE_GETSPNAM
    // for /etc/shadow
    sp = getspnam((const char*)user_id);
    if (sp!=NULL) {
        strncpy(pass, sp->sp_pwdp, LPASS);
        return pass;
    }
#endif

#ifdef HAVE_RPCSVC_YPCLNT_H
    // for NIS
    pw = getnisnam(user_id);
    if (pw!=NULL) {
        strncpy(pass, pw->pw_passwd, LPASS);
        free_pw(pw);
        return pass;
    }
#endif

    return NULL;
}

Here is the call graph for this function:

Here is the caller graph for this function:

char* x2crypt	(	char *	pass,
		char *	bsalt
	)

char* x2crypt(char* pass, char* bsalt)

pass を bsalt で2回暗号化（ハッシュ値化）する．
bsaltには改行コード(\nまたは \r\n)で区切られた2個のsaltが入っている必要がある．

Parameters:

	pass	ハッシュ値化するパスワード
	bsalt	改行コード(\nまたは \r\n)で区切られた2個の salt．

Returns:

2度ハッシュ値化された文字列．要 free

Bug:

bsaltに 2個のslatが入っていなかったときの動作は? -> 不明

Definition at line 200 of file password.c.

References cut_str(), freeNull, get_line(), LEN_DESPASS, LEN_DESSALT, LEN_DOLLAR2_SALT, LEN_DOLLAR5_SALT, LEN_DOLLAR6_SALT, and LEN_DOLLAR_SALT.

Referenced by check_auth().

{
    char* cpass;
    char* dpass = NULL;
    char* csalt;

    if (pass==NULL || bsalt==NULL) return NULL;

    csalt = get_line(bsalt, 1);
    cpass = crypt(pass, csalt);
    freeNull(csalt);
    csalt = get_line(bsalt, 2);
    if (csalt==NULL) return NULL;

    if (cpass[0]=='$') {
        int lsalt = 0;
        if      (cpass[1]=='1') lsalt = LEN_DOLLAR_SALT;
        else if (cpass[1]=='2') lsalt = LEN_DOLLAR2_SALT;
        else if (cpass[1]=='5') lsalt = LEN_DOLLAR5_SALT;
        else if (cpass[1]=='6') lsalt = LEN_DOLLAR6_SALT;

        if (lsalt!=0) {
            int passlen = strlen(cpass);
            dpass = cut_str(cpass, lsalt, passlen-1);
            cpass = crypt(dpass, csalt);
            freeNull(dpass);
            dpass = cut_str(cpass, lsalt, passlen-1);
        }
    }
    else if (strlen(cpass)==LEN_DESPASS) {
        dpass = cut_str(cpass, LEN_DESSALT, LEN_DESPASS-1);
        freeNull(cpass);
        cpass = crypt(dpass, csalt);
        freeNull(dpass);
        dpass = cut_str(cpass, LEN_DESSALT, LEN_DESPASS-1);
    }

    freeNull(csalt);
    return dpass;
}

Here is the call graph for this function:

Here is the caller graph for this function: