Convert HTPasswd code from Go to C
This commit is contained in:
Arthur Barr
committed by
Arthur J Barr
Arthur J Barr
parent
adbc95c5d5
commit
5fd9fc5e26
155
authservice/mqhtpass/src/htpass.c
Normal file
155
authservice/mqhtpass/src/htpass.c
Normal file
@@ -0,0 +1,155 @@
|
||||
/*
|
||||
© Copyright IBM Corporation 2020
|
||||
|
||||
Licensed under the Apache License, Version 2.0 (the "License");
|
||||
you may not use this file except in compliance with the License.
|
||||
You may obtain a copy of the License at
|
||||
|
||||
http://www.apache.org/licenses/LICENSE-2.0
|
||||
|
||||
Unless required by applicable law or agreed to in writing, software
|
||||
distributed under the License is distributed on an "AS IS" BASIS,
|
||||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
See the License for the specific language governing permissions and
|
||||
limitations under the License.
|
||||
*/
|
||||
|
||||
#include <errno.h>
|
||||
#include <stdbool.h>
|
||||
#include <stdio.h>
|
||||
#include <stdlib.h>
|
||||
#include <string.h>
|
||||
#include "log.h"
|
||||
#include <linux/limits.h>
|
||||
#include <apr_general.h>
|
||||
#include <apr_errno.h>
|
||||
#include <apr_md5.h>
|
||||
|
||||
char * find_hash(char*, char*);
|
||||
|
||||
char * find_hash(char *filename, char *user)
|
||||
{
|
||||
bool found = false;
|
||||
FILE *fp;
|
||||
char *huser;
|
||||
char *hash;
|
||||
|
||||
fp = fopen(filename, "r");
|
||||
if (fp == NULL)
|
||||
{
|
||||
log_errorf("Error %d opening htpasswd file '%s'", errno, filename);
|
||||
}
|
||||
if (fp)
|
||||
{
|
||||
const size_t line_size = 1024;
|
||||
char *line = malloc(line_size);
|
||||
while (fgets(line, line_size, fp) != NULL)
|
||||
{
|
||||
huser = strtok(line, ":");
|
||||
if (strcmp(user, huser) == 0)
|
||||
{
|
||||
hash = strtok(NULL, " \r\n\t");
|
||||
found = true;
|
||||
break;
|
||||
}
|
||||
}
|
||||
fclose(fp);
|
||||
// if (line)
|
||||
// free(line);
|
||||
// if (huser)
|
||||
// free(huser);
|
||||
// if (encPassword)
|
||||
// free(encPassword);
|
||||
}
|
||||
if (!found)
|
||||
{
|
||||
hash = NULL;
|
||||
}
|
||||
return(hash);
|
||||
}
|
||||
|
||||
bool htpass_authenticate_user(char *filename, char *user, char *password)
|
||||
{
|
||||
char *hash = find_hash(filename, user);
|
||||
bool result = false;
|
||||
// Use the Apache Portable Runtime utilities to validate the password against the hash.
|
||||
// Supports multiple hashing algorithms, but we should only be using bcrypt
|
||||
apr_status_t status = apr_password_validate(password, hash);
|
||||
// status is usually either APR_SUCCESS or APR_EMISMATCH
|
||||
if (status == APR_SUCCESS) {
|
||||
result = true;
|
||||
log_debugf("Correct password supplied. user=%s", user);
|
||||
} else {
|
||||
log_debugf("Incorrect password supplied. user=%s", user);
|
||||
}
|
||||
return(result);
|
||||
}
|
||||
|
||||
// bool htpass_authenticate_user(char *filename, char *user, char *password)
|
||||
// {
|
||||
// bool result = false;
|
||||
// FILE *fp;
|
||||
// // char line[1024];
|
||||
// char *huser;
|
||||
// char *hash;
|
||||
// // size_t len = 0;
|
||||
// // size_t read;
|
||||
// // int valid = -1;
|
||||
|
||||
// fp = fopen(filename, "r");
|
||||
// if (fp == NULL)
|
||||
// {
|
||||
// log_errorf("Error %d opening htpasswd file '%s'", errno, filename);
|
||||
// }
|
||||
// if (fp)
|
||||
// {
|
||||
// const size_t line_size = 1024;
|
||||
// char *line = malloc(line_size);
|
||||
// while (fgets(line, line_size, fp) != NULL)
|
||||
// {
|
||||
// huser = strtok(line, ":");
|
||||
// if (strcmp(user, huser) == 0)
|
||||
// {
|
||||
// hash = strtok(NULL, " \r\n\t");
|
||||
// log_debugf("Matched user in htpasswd file: user=%s hash=%s*", huser, hash);
|
||||
|
||||
// // Use the Apache Portable Runtime utilities to validate the password against the hash.
|
||||
// // Supports multiple hashing algorithms, but we should only be using bcrypt
|
||||
// apr_status_t status = apr_password_validate(password, hash);
|
||||
// // status is usually either APR_SUCCESS or APR_EMISMATCH
|
||||
// if (status == APR_SUCCESS) {
|
||||
// result = true;
|
||||
// log_debugf("Correct password supplied. user=%s", huser);
|
||||
// } else {
|
||||
// log_debugf("Incorrect password supplied. user=%s", huser);
|
||||
// }
|
||||
// // Break out of the loop, as we've found the right user
|
||||
// break;
|
||||
// // TODO: Do we need to free(hash)?
|
||||
// }
|
||||
// else
|
||||
// {
|
||||
// log_debugf("Read incorrect user in htpassword: user=%s", huser);
|
||||
// }
|
||||
// }
|
||||
// fclose(fp);
|
||||
// // if (line)
|
||||
// // free(line);
|
||||
// // if (huser)
|
||||
// // free(huser);
|
||||
// // if (encPassword)
|
||||
// // free(encPassword);
|
||||
// }
|
||||
// return result;
|
||||
// }
|
||||
|
||||
bool htpass_valid_user(char *filename, char *user)
|
||||
{
|
||||
char *hash = find_hash(filename, user);
|
||||
bool valid = false;
|
||||
if (hash != NULL)
|
||||
{
|
||||
valid = true;
|
||||
}
|
||||
return(valid);
|
||||
}
|
||||
Reference in New Issue
Block a user